This document lays out steps organizations can follow to become compliant with the Personal Information Protection Act. Revised January 2005