Most businesses, regardless of size, collect sensitive information from both clients and employees. We may not be aware, but all of us possess vital records/personal information, some more so than others.
Such vital records/documents could be permanent (e.g., birth records), archival (e.g., tax records), and incidental or temporary (e.g., bank statements) in nature. If confidential data does get lost or disclosed, the consequences can be embarrassment or reputational damage at best, serious legal liability at worst. Non-compliance to federal and provincial regulations may expose you or your company to hefty fines.
PULP SHRED provides assured destruction of your confidential documents in compliance with the relevant federal and provincial data privacy and information security regulations. As a NAID member organization, PULP SHRED adheres to the stringent security practices and procedures established by the National Association for Information Destruction.
Federal Legislative Acts
Personal Information and Electronic Act (PIPEDA)
The Act addresses the issue of electronic storage of information in Canada. Businesses in Canada must comply with the Personal Information and Electronic Act (PIPEDA) and all applicable provincial privacy laws. PIPEDA requires that confidential documents containing private information be disposed of in a manner that prevents the disclosure of personal information.
Freedom of Information and Protection of Privacy Act (FOIP)
The FOIP Act provides governing principles about protecting the privacy of personal information held by public bodies. The FOIP Act has two major parts:
Part 1, which deals with access to records held by public bodies as defined under the Act.
Part 2, which deals with rules concerning protection of the privacy of personal information about individuals that is held by public bodies.
The FOIP Act does not apply to private businesses, non-profit organizations or professional regulatory organizations operating in Alberta. In these cases, Alberta’s Personal Information Protection Act (PIPA) may apply.
The details concerning a person’s health status have long been considered the most sensitive type of information. The HIA sets out rules governing the collection, use and disclosure of health information. these rules apply to all custodians, including health services providers who have been designated as custodians in the regulations.
Europe’s new data protection law came into effect on May 25, 2018. The GDPR has important global implications that affect many Canadian firms. Any Canadian business that collects personal information about residents of the European Union – whether they are tourists, students, or online customers – risks maximum fines of $30 million or more if they violate the EU privacy law. The GDPR may become the model for forthcoming PIPEDA amendments.
If you operate a business in Canada, including a home business, you’re required by the Canada Revenue Agency (CRA) to retain financial documents for specific periods of time. For GST/HST, income taxes, source deductions (EI, CPP), business income and expenses, property and motor vehicle use, you must keep all records and supporting documents (including electronic records) a minimum of 6 years from the end of the last tax year they relate to.
Employee Pay Records
There is no harmonized triggering event across Canada. For Alberta, the triggering event is when the record was made. Alberta requires employers to retain employment record for at least 3 years from the data each record is made. The triggering event to start the retention period running depends on the province. The employment record includes leaves and vacations.
Patient Records
The Alberta College of Physicians and Surgeons Retention Schedule states that chart destruction may occur 10 years for adults and 20 years for minors, after the end of the year in which the last visit was recorded.
Condominium Documents
The Condominium Property Act does not specify how long boards need to keep the condominium corporation’s documents and records.
Corporate Records
This information includes trade secrets, acquisition plans, financial data, and supplier and customer information. Additionally, executive-level correspondence, contracts, and other HR data like employee medical records and performance appraisals.
Other Documents
Even if you have a high risk-tolerance threshold, protecting the information on your discarded paper documents should be a top priority. Always shred the following documents when they become obsolete:
Personal information
Business & Personal Financial Records
Government/Municipal records
Land titles
Deeds/wills
Patents
Medical Records
Utility Bills
Credit Card Receipts
Bank Statements
Pay Stubs
Tax, Mortgage and Insurance Documents
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept All”, you consent to the use of ALL the cookies. However, you may visit "Cookie Settings" to provide a controlled consent.
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
Cookie
Duration
Description
cookielawinfo-checkbox-analytics
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional
11 months
The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy
11 months
The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.