Council of Private Investigators - Privacy Code principles:
1. Accountability
Each member organization if responsible for personal information
under its control. The CPIO will assist Members with training and
will certify members as being compliant with the CPIO's Code of
Privacy.
2. Identifying purposes
The purposes for which personal information is collected shall be
identified by the Member at or before the time the information is
collected.
The purpose for which Members collect personal information is to
facilitate the investigation of contraventions of the law and
breaches of agreements.
3. Consent
The knowledge and consent of the individual is required for the
collection, use, or disclosure of personal information, except where
inappropriate. Personal information will only be collected, used,
and disclosed by Members in accordance with section 7 of the
Personal Information Protection and Electronic Documents Act, S.C.
2000, c.5.
4. Limiting Collection
The collection of personal information shall be limited to that
which is necessary for the purposes identified by the Member.
Information shall be collected by fair and lawful means.
Members will collect information about individuals only if there are
reasonable grounds to believe that the information relates to
dishonest conduct, breaches of agreements, or contraventions of the
laws of Canada, a province, or a foreign jurisdiction. Members of
the CPIO will only collect the personal information that is required
for the preventative and investigative purposes set out herein.
5. Limiting use, disclosure, and retention
Personal information shall not be used or disclosed for purposes
other than those for which is was collected, except with the consent
of the individual or as required by law. Personal information shall
be retained only as long as is necessary for the fulfillment of
those purposes.
6. Accuracy
Personal information shall be as accurate, complete, and up-to-date
as necessary for the purposes for which it was collected.
7. Safeguards
Security safeguards appropriate to the sensitivity of the
information shall protect personal information.
8. Openness
Members shall make readily available specific information about its
policies and practices relating to the management of personal
information.
9. Individual Access
Upon request, an individual shall be informed of the existence, use,
and disclosure of his or her personal information and shall be given
access to that information. An individual shall be able to
challenge the accuracy and completeness of that information and have
it amended as appropriate.
10. Challenging Compliance
An individual shall be able to challenge the CPIO or its Member
concerning compliance with the above principles. Individuals may
address any such challenge to the person or persons responsible for
privacy within a Member organization and may address any complaint
to the CPIO's Ethics Committee.
