Loading... Please Wait
In 2010, under the Personal Information Protection Act, Alberta became the first jurisdiction in Canada to require breach notification from private sector organizations where there exists "a real risk of significant harm" to an individual as a result of the loss or unauthorized access to or disclosure of personal information.
The Commissioner publicly makes available the decisions where a real risk of significant harm was identified and notification to affected individuals was required. Decisions where there was no real risk of significant harm identified are not published.
Note: The search function for the table is limited to the content in the table, such as body name and summary. It does not scan all PDFs. However, the general search function in the top navigation of the website scans PDFs during a search.
Although the OIPC makes every effort to ensure that all information posted on the website is accurate and complete, the OIPC cannot guarantee its integrity. If there is any discrepancy between the information posted on our website and the original paper versions, the original paper document is authoritative.
| Decision | Date | Body |
|---|---|---|
| P2019-ND-153 | Aug 21 2019 | Leduc Beaumont Family Physicians Group NPC |
| Summary: An employee inadvertently created a memo from a template that had several other pages attached to... [More] | ||
| P2019-ND-152 | Aug 21 2019 | National Capital Poison Center |
| Summary: The organization determined there was unauthorized access to a database server after it discovered... [More] | ||
| P2019-ND-151 | Aug 21 2019 | Primevest Equities Inc. |
| Summary: Shortly after the organization was unable to access its file server it received a ransom demand... [More] | ||
| P2019-ND-150 | Aug 21 2019 | Mercedes-Benz Financial Services Canada Corporation |
| Summary: The organization determined that a box containing paper copies of credit applications and customer... [More] | ||
| P2019-ND-149 | Aug 20 2019 | Loblaw Companies Ltd. |
| Summary: The organization determined that certain loyalty program websites it operates were targeted by... [More] | ||
| P2019-ND-148 | Aug 20 2019 | Grant Thornton Limited |
| Summary: An employee of the organization printed counselling documents prior to a session with clients. When... [More] | ||
| P2019-ND-147 | Aug 19 2019 | KARO Dental Care |
| Summary: The organization rents a storage locker to store inactive patient files and archived accounting... [More] | ||
| P2019-ND-146 | Aug 19 2019 | Tina Cowan, Counseling Services, Registered Provisional Psychologist, Alberta |
| Summary: The organization found that a briefcase and cellphone had been stolen from a shared office space.... [More] | ||
| P2019-ND-145 | Aug 19 2019 | North American Title Company |
| Summary: As a result of a phishing incident, the organization determined that an unauthorized third party... [More] | ||
| P2019-ND-144 | Aug 16 2019 | Calder Bateman Communications Ltd. |
| Summary: Malware affected the organization's website, which is operated by a service provider, and may have... [More] | ||
| P2019-ND-143 | Aug 16 2019 | Calder Bateman Communications Ltd. |
| Summary: Malware affected the organization's website, which is operated by a service provider, and may have... [More] | ||
| P2019-ND-142 | Aug 16 2019 | Calder Bateman Communications Ltd. |
| Summary: Malware affected the organization's website, which is operated by a service provider, and may have... [More] | ||
| P2019-ND-141 | Aug 16 2019 | Community Options: A Society for Children and Families |
| Summary: A car belonging to one of the organization's employees was broken into and a file case was taken.... [More] | ||
| P2019-ND-140 | Aug 15 2019 | The Children's Cottage Society of Calgary |
| Summary: An employee of the organization, prior to leaving the organization, emailed the information at... [More] | ||
| P2019-ND-139 | Aug 15 2019 | AeroGrow International, Inc. |
| Summary: Through the use of malicious code, the organization learned that an unauthorized person may have... [More] | ||
Copyright 2019 OIPC. All rights reserved.