IPC Provides Important Guidance on New PHIPA Annual Reporting Obligations

Organizations which provide healthcare and are governed by the Personal Health Information Protection Act (PHIPA) should note that recent amendments to PHIPA require health information custodians (HICs) to file an annual report disclosing all security incidents involving theft, loss and unauthorized use or disclosure of personal health information to the Information and Privacy Commissioner. At…

Colleges and Universities: Who is the Health Information Custodian under PHIPA?

This is a short note to our college and university clients – all of whom provide various services to their communities that are properly characterized as “health care” and therefore governed by the Personal Health Information Protection Act. Recent amendments to PHIPA give rise to questions about personal health information governance and the proper identity…