December 01, 2022
Initially introduced in 2000, the Personal Information Protection and Electronic Documents Act (PIPEDA) is a Canadian law that protects data privacy.
Data privacy and video surveillance go hand-in-hand, and many PIPEDA-compliant organizations may wonder what is required of them, and how video surveillance fits into their security strategy. In this blog, we’ll look at PIPEDA, how it pertains to video security cameras, and how you can use video surveillance to strengthen overall security compliance throughout your organization.
PIPEDA stands for Personal Information Protection and Electronic Documents Act. It was established to protect an individual's personal information by dictating how businesses collect, use, and disclose such information.
According to the Office of the Privacy Commissioner of Canada, in order to comply with PIPEDA, an organization must:
Under PIPEDA (Personal Information Protection and Electronic Documents Act), personal information includes any factual or subjective information, recorded or not, about an identifiable individual.
This includes information in any form, such as:
PIPEDA applies to any Canadian organization that collects personal information in the course of commercial activity. This includes federally regulated industries and the healthcare sector.
PIPEDA generally does not apply to non-profits, charity groups, or political parties. Certain organizations are typically covered by provincial laws as opposed to PIPEDA—such as universities, schools, hospitals, and municipalities.
The basic goal of PIPEDA is to protect personal data from misuse and to give individuals control over how their personal information is used in the private sector.
To comply with PIPEDA and follow best practices for data privacy, businesses are responsible for following the ten fair information principles:
Under Canadian privacy laws, footage and images captured by security cameras are considered personal information and are protected by PIPEDA. For this reason, it’s important to make sure that your video surveillance setup is PIPEDA-compliant.
Video surveillance in the private sector is subject to Canadian privacy laws, including PIPEDA. The Office of the Privacy Commissioner of Canada has outlined several guidelines to help organizations use security cameras in a PIPEDA-compliant manner. We’ll go over the key ones below.
Keep in mind that because footage captured by security cameras is considered personal information protected by PIPEDA, it may only be used for the purposes for which individuals have given consent. For example, if a retailer plans to use video surveillance to analyze consumer behavior, this use case should be disclosed in the signage so that individuals may make informed decisions.
Data privacy is a core priority at Rhombus, and the platform is designed to make it easy for Canadian organizations to comply with PIPEDA and other privacy laws.
From end-to-end encryption to granular user permissions, Rhombus has many features that allow businesses to effortlessly maintain best-in-class cybersecurity and data privacy protocols. These include:
Protect system access with strict user permissions
Automatic security updates
Rhombus can also be used as a tool to achieve compliance through means of providing audio and video evidence to back up an individual’s consent. It also provides an easy way to share captured footage with individuals if they request access to it via Principle 9.
PIPEDA applies to organizations that collect personal information. Rhombus does not collect, use, or distribute any personal information, and as such, PIPEDA is not applicable to Rhombus. In other words, there’s no way for a video security provider like Rhombus to be compliant or non-compliant. Due to the nature of how PIPEDA establishes ‘compliance’, it simply doesn’t apply.
The organization that is collecting video footage is responsible for maintaining PIPEDA compliance.
Surveillance cameras are a helpful tool that many private sector organizations use to secure their facilities. By following several best practices, it’s easy to use security cameras in a PIPEDA-compliant way to increase your organization’s safety and visibility.
PIPEDA compliance can be complicated, and Rhombus often addresses questions among prospects about video surveillance, security cameras, and data privacy regulations. Feel free to request a personalized demo or reach out to one of our experts if you have any questions on how to best roll out video security within your organization.
Rhombus has worked with numerous organizations that use cloud security cameras as part of their compliance strategy and hopes to aid anyone considering the use of security cameras in their organization.
See why school districts, cities, and Fortune 500 companies use Rhombus.Start Trial