Privacy 101
Personal Information
Privacy Acronyms
Privacy Policies
Privacy is Everyone's Business
100

General Bank respects and maintains the privacy of the Personal Information of these two classes of people

What is customers and staff (employees)

100

This is information that uniquely identifies an individual

What is Personal Information?

100

The CPO is responsible to develop and implement General Bank's Privacy program

What is Chief Privacy Officer?

100

This person is responsible to develop and implement General Bank's Privacy program

What is the chief Privacy Officer?

100

These people within General Bank are responsible to manage our privacy risk

What is everyone?

200

PIPEDA will be succeeded by this new legislation

What is Consumer Privacy Protection Act

200

Personal Information creates privacy risk for General Bank and this other type of risk

What is reputational risk?

200

General Bank's Privacy program and processes support us to protect PII

What is Personally Identifiable Information?

200

These three sets of people are responsible to adhere to the Privacy Policy

What is staff, contractors and agents?

200

An effective clean desk effort involving the participation and support of all employees can greatly protect  this type of information about our employees, clients and vendors.

What is sensitive information?

300

General Bank must obtain this from new clients to collect, use or disclose their Personal Information

What is express consent?

300

This is the definition of Personal Information

What is any information that uniquely identifies an individual and includes name, mailing, physical or email address, telephone number, date of birth, gender, personal references, employment records, income from all sources, residence status, and unique identification numbers (including social insurance number, driver’s license information, birth certificate, passport number and personal financial records including credit history). (Name at least 5 types of personal information)

300

When an organization experiences a privacy breach it reports to the OPC

What is the Office of the Privacy Commissioner?

300

Requests for access to Personal Information are directed to this person

What is the Chief Privacy Officer?

300

Staff should ensure that these people are identified

What is non-staff in a General Bank work area without a visitor badge

400

All Personal Information collected by General Bank and only be used for the purpose for which it was intended and the purpose be this use

What is a business use?

400

General Bank complies with these other privacy-related regulatory requirements

What is Canada’s Anti-Spam Legislation (“CASL”) and the National Do Not Call List (DNCL) Rules.  

400

PIPEDA is the main privacy - related regulatory requirement that General Bank must comply with

What is Personal Information Protection and Electronic Documents Act?

400

This document governs how we interact on professional and non-professional social media platforms in any capacity

What is the Social Media policy?

400

This information, that every staff must protect, relates to any data that would cause damage to General Bank if accessed by a competitor or the public. This can include financial data, trade secrets, supplier information, customer data as well as any other sensitive materials.

What is business information?

500

General Bank's privacy obligations extends to these parties

What is third parties?

500

General Bank discloses its Privacy Policy to its customers this way

What is in its conditional sales agreement and via its website?

500

 The CPPA is the new federal regulatory requirement that will apply to General Bank

What is Consumer Privacy Protection Act?

500
A breach of this policy could lead to a breach of General Bank's Code of Conduct

What is the Social Media policy?

500

We do this to ensure that all our staff are aware of and understand basic privacy protection responsibilities

What is training?

M
e
n
u