We offer a number of standard services designed to help you achieve compliance with Canadian privacy laws:

Privacy Impact Assessments

A Privacy Impact Assessment (or “PIA”) is a process that helps organizations to identify, measure, and mitigate the risks associated with the introduction of a new program or service.  PIAs also help to anticipate and avoid the reputational risks attached to a new product offering. When properly performed, a PIA allows project managers to fully consider the privacy impacts of an initiative, before that initiative is rolled out.
Privacy Impact Assessments are mandatory for federal institutions implementing new or substantially modified programs involving personal information. PIAs must be submitted to the Office of the Privacy Commissioner (OPC) for review, and to the Treasury Board of Canada Secretariat (TBS) for approval. Although the performance of a Privacy Impact Assessment is not mandatory for private-sector organizations, they are considered an industry best practice and are employed by many of the world’s leading companies.

Are you introducing a new product or service involving the use of personal information, or modifying an old one? We can help.

Contact Us

Privacy Audits & Investigative Services

Privacy audits are an independent and objective way to assess and improve upon the effectiveness of privacy controls in your organization. Undertaking a privacy audit can help create a baseline for the ongoing development of privacy and information management policies, or to improve upon existing privacy practices. Not only do privacy audits help your organization avoid the reputational risks involved in a privacy breach or complaint, they assist senior managers exercise oversight and control over potentially privacy invasive practices.
Our privacy audits help assess the adequacy and effectiveness of management controls supporting your handling of personal information. Where required, the audit can be tailored to provide senior management, regulators and other stakeholders with the independent assurance you need to demonstrate that your organization is operating in compliance with Canadian privacy laws.

Have you integrated privacy audits into your internal audit plan? Could you benefit from an arm’s length review of your organization’s privacy practices? We can help.

Contact Us

Privacy Policy & Governance

Our clients are committed to protecting the personal information of their customers. For most, protecting client or customer information is an essential element in maintaining public trust. While no organization is “privacy perfect”, being privacy sensitive begins with the development of good personal information handling practices. Ensuring a high standard of care for personal information under your control plays a key role in ensuring that the privacy of your clients or customers is being protected.
As privacy experts, we work with public and private organizations to develop privacy management frameworks, privacy protocols, and corporate or institutional privacy policies which support good personal information handling practices. We also offer privacy training and awareness seminars to make sure that our clients are kept up-to-date on the latest policy developments and changes in Canadian privacy laws.

Need the help of a specialist to develop internal policies or programs which support good privacy practices? We support the development and drafting of governance documents that help your organization comply with statutory and privacy policy requirements in Canada.

Contact Us