A to Z

The OIPC has received several questions from organizations and individuals about keeping a customer list or contact log during the COVID-19 pandemic, particularly in retail locations and at restaurants. This advisory provides considerations to ensure that organizations comply with Alberta’s Personal Information Protection Act when making and keeping lists of customers and their contact information.

As more individuals receive COVID-19 vaccinations, some organizations may be considering asking customers to provide proof of vaccination in order to receive discounts, access goods or services, or enter a store. This advisory provides guidance for organizations subject to PIPA that are considering asking for or requiring proof of vaccination from customers for these or similar purposes.

Verifying identity to prevent credit card fraud in the retail sector is a practice that has been endorsed not only by credit card companies and payment card processors, but also privacy commissioners. This fact sheet provides perspective on balancing privacy rights with the collection of personal information by organizations. Published in September 2007.

On September 22, 2014, the Commissioner wrote to the Ministers of Service Alberta and Justice and Solicitor General expressing concern about the time in which the government had to amend PIPA to ensure its validity following the Supreme Court of Canada's ruling that PIPA was unconstitutional.

On December 20, 2013, the Commissioner wrote the Ministers of Service Alberta and Justice and Solicitor General regarding the Supreme Court of Canada's (SCC) ruling that PIPA was unconstitutional. The SCC provided 12 months for the Legislative Assembly of Alberta to bring PIPA in line with the Canadian Charter of Rights and Freedoms.

This fact sheet provides seven points for organizations to remember when handling personal information. Updated in January 2018.

This policy statement on the collection, use and disclosure of a genetic test was issued in response to the federal Genetic Non-Discrimination Act. That Act prohibits any person from requiring an individual to undergo a genetic test as a condition of providing goods or services or entering into a contract. The statement was issued by the Office of the Privacy Commissioner of Canada, the Commission d'accès à l'information du Québec, the Office of the Information and Privacy Commissioner for British Columbia and the Office of the Information and Privacy Commissioner of Alberta. Issued in December 2017.

This document outlines six principles to consider when planning for an information sharing initiative. The principles are transparency, legal authority, privacy impact assessments, access and correction, accountability and oversight. It also provides links to related documents. Published in June 2017.

The OIPC developed a frequently asked questions document based on issues between landlords and tenants under the Personal Information Protection Act. Published in March 2007.

This PowerPoint presentation is to be used by health custodians or their regulatory colleges and associations to train staff or memberships on the breach reporting obligations under HIA and to provide general guidance on managing a privacy breach. Published in August 2018.

This document was prepared by the OIPC to provide privacy impact assessment (PIA) drafting guidance to insurers who may decide to prepare and submit a PIA to the OIPC ahead of offering usage-based insurance (UBI) in the province of Alberta. Published in January 2016.

This guide is meant to assist public bodies, health custodians and organizations in drafting PIAs for projects that hat have privacy risks. Please note that all mention of legislation in this guide refers to the Health Information Act as there is a legislated duty to prepare privacy impact assessments (section 64 of HIA). Published in 2010.

This guidance is meant to help public bodies, health custodians and private sector organizations know how personal or health information may be shared during a pandemic or emergency situation. Privacy laws are not a barrier to appropriate information sharing in these circumstances. Updated in March 2020.

This brochure summarizes Alberta's privacy laws. Updated in March 2021.

This brochure summarizes Alberta's privacy laws. Feel free to print for various meetings or events, or contact our office and we will provide you with printed copies. Updated in March 2021.

The OIPC, jointly with the OIPC of B.C., the Retail Council of Canada and the Access and Privacy Branch of Service Alberta developed this document to address the specific threats and challenges to privacy compliance in the Canadian retail industry. Published in March 2007.

This practice note was developed for the OIPC's reviews and inquiries in which a respondent (public body, organization or custodian) to an access request has claimed solicitor-client privilege or litigation privilege. Published in December 2016.

This Special Report was submitted to the Legislative Assembly. It requests that the FOIP Act be amended to give the Commissioner the power to require public bodies to produce records over which solicitor-client privilege and other similar privileges are claimed, when necessary. This amendment is proposed to ensure there is an accessible, affordable and timely way for Albertans to seek review of government and other public bodies’ responses to access requests. The requested amendment will also enhance Albertans’ participation in the democratic process to hold their government to account through an effective access to information regime.

On March 3, 2014, the Commissioner provided comments the proposed Health Charter and Health Advocate Regulation.

The report looked at public sector outsourcing in Alberta with a focus on the risks it presents and how these risks can be mitigated. Published in February 2006.