Canada | All industries
PIPEDA (Canada)
The Personal Information Protection and Electronic Documents Act (PIPEDA) is the Canadian federal privacy law that regulates how private-sector organizations handle personal information when engaging in “commercial activity,” which PIPEDA defines as “any particular transaction, act or conduct or any regular course of conduct that is of a commercial character, including the selling, bartering or leasing of donor, membership or other fundraising lists.” PIPEDA applies to any businesses that operate in Canada and handle personal information that crosses provincial or national borders.
The 10 PIPEDA principles give individuals the right to know why their personal information is being collected, how it will be used, and to whom it will be disclosed, and to have the means to ask for access to, or correction of, their personal information.
While Google Cloud customers are responsible for their own due diligence, we’ve created a whitepaper to help our customers understand how customer data is stored, processed, maintained, accessed, and secured in Google Cloud and how it relates to the principles of PIPEDA when using Google Cloud and Google Workspace products. Furthermore, we engaged an independent third party to conduct a Privacy Impact Assessment (PIA) and Threat Risk Assessment (TRA) of Google Cloud to ease the process, cost, and resources of conducting your due diligence.
Related offerings
PHIPA
GDPR
APPs (Australia)
The Privacy Act (New Zealand)