Confidentiality Guidelines of a Public Body Collecting Personal Information Through Technological Means
The present guidelines stem from the obligation of the ÐãÉ«Ö±²¥ (ÐãÉ«Ö±²¥), under section 63.4 of the Act respecting Access to documents held by public bodies and the Protection of personal information, to publish its confidentiality governance on its website, in simple and clear terms, when it collects personal information by technological means. These guidelines are part of the other frameworks applicable to the ÐãÉ«Ö±²¥, such as its , and apply to the websites of the ÐãÉ«Ö±²¥, including those of its educational institutions.
Directive Relating to the Governance Rules of the ÐãÉ«Ö±²¥ Regarding Personal Information
This directive is based on sections 52.2 and 63.3 of the Act respecting Access to documents held by public bodies and the Protection of personal information (CQLR, c. A-2.1, hereinafter “ARA”).
This directive must be read in conjunction with the Directive, frameworks or other tools in effect at the ÐãÉ«Ö±²¥, hereinafter “ÐãÉ«Ö±²¥”, regarding the protection of personal information.
Directive Respecting Roles and Responsibilities in the Event of a Confidentiality Incident
The present directive stems from sections 63.8 to 63.11 of the Act Respecting Access to Documents Held by public bodies and the Protection of personal information (CRLQ, c. A-2.1, hereinafter “ARA”).
This directive must be read in conjunction with the various tools available at the ÐãÉ«Ö±²¥, hereinafter “ÐãÉ«Ö±²¥”, concerning the protection of personal information.