Shared on behalf of the Privacy Office
As of January 1, 2024, the Information and Privacy Commissioner of Ontario can issue penalties of up to a maximum of $50,000 for individuals and $500,000 for organizations that violate the Personal Health Information Protection Act (PHIPA).
Last year in Ontario three former hospital employees were charged under the Personal Health Information Protection Act (PHIPA) following investigations into unrelated alleged breach of patient privacy incidents. Offences under PHIPA can carry a maximum penalty of $200,000 and up to one year in prison.
Snooping in the electronic health records or paper documents of yourself, family members, friends or co-workers is considered a breach under (PHIPA).
Thunder Bay Regional Health Sciences Centre is not immune to snooping and we take it very seriously as described in Policy HIS-08 – Privacy of Personal Health Information.
