Why Work With Us
10 Principle Code for the Protection of Personal Information
Urban Jiujitsu Canada follows the 10 principle code for the protection of personal information under Canada’s Personal Protection and Electronic Documents Act. The 10 principles for protecting personal information in Ontario are the Canadian Standards Association (CSA) Model Code, which forms the basis for federal and provincial privacy laws, including the private-sector components of Ontario's privacy legislation and the Personal Information Protection and Electronic Documents Act (PIPEDA). These principles are: 1. Accountability, 2. Identifying Purposes, 3. Consent, 4. Limiting Collection, 5. Limiting Use, Disclosure, and Retention, 6. Accuracy, 7. Safeguards, 8. Openness, 9. Individual Access, and 10. Challenging Compliance. Some examples are:
Principle 1 – Accountability
An organization is responsible for personal information under its control. It must appoint someone to be accountable for its compliance with these fair information principles.
Principle 2 – Identifying purposes
The purposes for which the personal information is being collected must be identified by the organization before or at the time of collection.
The knowledge and consent of the individual are required for the collection, use, or disclosure of personal information, except where inappropriate.
Principle 4 – Limiting collection
The collection of personal information must be limited to that which is needed for the purposes identified by the organization. Information must be collected by fair and lawful means.
Principle 5 – Limiting use, disclosure, and retention
Unless the individual consents otherwise or it is required by law, personal information can only be used or disclosed for the purposes for which it was collected. Personal information must only be kept as long as required to serve those purposes.
Personal information must be as accurate, complete, and up-to-date as possible in order to properly satisfy the purposes for which it is to be used.
Personal information must be protected by appropriate security relative to the sensitivity of the information.
An organization must make detailed information about its policies and practices relating to the management of personal information publicly and readily available.
Upon request, an individual must be informed of the existence, use, and disclosure of their personal information and be given access to that information. An individual shall be able to challenge the accuracy and completeness of the information and have it amended as appropriate.
An individual shall be able to challenge an organization’s compliance with the above principles. Their challenge should be addressed to the person accountable for the organization’s compliance with PIPEDA, usually their Chief Privacy Officer.
The OPC has determined that the following purposes would generally be considered inappropriate by a reasonable person (i.e., no-go zones):
- collecting, using or disclosing personal information in ways that are otherwise unlawful;
- profiling or categorizing individuals in a way that leads to unfair, unethical or discriminatory treatment contrary to human rights law;
- collecting, using or disclosing personal information for purposes that are known or likely to cause significant harm to the individual;
- publishing personal information with the intent of charging people for its removal;
- requiring passwords to social media accounts for the purpose of employee screening; and
- conducting surveillance on an individual using their own device’s audio or video functions.
Experienced professionals dedicated to your success.
Proven results that speak for themselves.
Welcome to Our World
We believe in creating meaningful experiences that inspire and connect. Let us help you bring your vision to life.
Quality First
We deliver exceptional feedback , ensuring your satisfaction at every step.
Expert Care
Careful Mind
