Skip to main content
Privacy Horizon
Privacy & Security

Privacy & Security Services in Prince Edward Island

End-to-end privacy and security support for organizations in Prince Edward Island.

Prince Edward Island businesses engaged in commercial activity are governed by Canada's federal Personal Information Protection and Electronic Documents Act, PIPEDA, with oversight from the Office of the Privacy Commissioner of Canada. PEI does not have its own general private-sector privacy law, so the federal framework applies broadly across the province's private sector. PIPEDA's ten fair information principles set the rules for how organizations collect, use, and disclose personal information — covering everything from the scope of collection to the security safeguards required to protect it — and individual complaints about private-sector privacy practices in PEI go to the federal commissioner.

Health information on Prince Edward Island is governed separately. The province's Health Information Act gives individuals a right to access and request correction of their personal health information and requires custodians to protect it. Oversight sits with the Information and Privacy Commissioner of Prince Edward Island. The Health Information Act's scope is limited to personal health information held by custodians — it is not a general private-sector privacy law, and commercial activity outside the health-custodian category remains governed by federal PIPEDA rather than by provincial statute.

Privacy Horizon provides Prince Edward Island organizations with privacy and security services that reflect this regulatory structure accurately. For the majority of PEI businesses — those governed by PIPEDA — our work covers the full compliance lifecycle: privacy impact assessments, gap analyses that benchmark practices against the federal commissioner's guidance and expectations, compliance programs built for your organization's specific scale and operations, and on-call senior advisory for the decisions that require experience rather than just a reference to the legislation. For health-sector custodians operating under PEI's Health Information Act, we bring the sector-specific knowledge the statute requires. We also deliver staff and leadership training programs that are grounded in PEI's actual regulatory environment, not a generic national overview, so your team builds working knowledge they can apply in practice.

Privacy & security regulation in Prince Edward Island

Regulator: Information and Privacy Commissioner of Prince Edward Island

In Prince Edward Island, private-sector businesses are governed by Canada's federal privacy law, PIPEDA, overseen by the Office of the Privacy Commissioner of Canada. Personal health information held by custodians is separately governed by the Health Information Act, with oversight by the Information and Privacy Commissioner of Prince Edward Island.

PIPEDAPersonal Information Protection and Electronic Documents Act

PIPEDA is Canada's federal private-sector privacy law. It sets out ten fair information principles governing how organizations collect, use, and disclose personal information in the course of commercial activity. It applies wherever a province has not enacted substantially similar legislation — and, even in provinces that have (Alberta, British Columbia, Québec), it continues to apply to federally regulated businesses such as banks, airlines, and telecommunications, and to personal information that flows across provincial or national borders.

Read the legislation

Health Information Act (PEI)Health Information Act (Prince Edward Island)

Prince Edward Island's health-sector privacy law (RSPEI 1988, c. H-1.41), which gives individuals a right to access and request correction of their personal health information and requires custodians to protect it. Oversight is by the Information and Privacy Commissioner of Prince Edward Island. General private-sector commercial activity in PEI is governed by federal PIPEDA.

Read the legislation

What Privacy & Security includes

From assessments to compliance programs and ongoing advisory, we provide the full range of privacy and security support organizations need under Canadian law.

Assessments

Privacy impact assessments, threat & risk assessments, and gap analysis.

Compliance Programs

Guided programs to reach and maintain compliance.

Advisory

On-call senior privacy and security guidance.

Training

Practical training for staff and leadership.

PIPEDA compliance tailored to PEI's business environment

The fundamentals of PIPEDA compliance — accountability, consent, data minimization, safeguards, and individual rights — apply to every organization regardless of province or size. But the practical shape of a compliance program differs significantly between a large national enterprise and a PEI organization operating primarily within the province. Privacy Horizon designs compliance programs that are proportionate to your scale and operations, focused on the obligations that actually apply to how you work, and built to demonstrate the kind of accountability that the Office of the Privacy Commissioner looks for when it receives a complaint or initiates an investigation.

Health Information Act compliance for PEI custodians

PEI's Health Information Act creates obligations that differ from the PIPEDA framework — custodians must meet the Act's specific requirements for collection, use, disclosure, and individual access, and they must be prepared to work within the IPC's oversight process. Privacy Horizon works with health-sector organizations in PEI to assess compliance under the Health Information Act, develop the policies and procedures the statute requires, and build responsive processes for individual access requests and potential complaints to the provincial commissioner.

What's Protecting Your Business from the Next Threat?

Don't wait for a breach to expose your vulnerabilities. Let Privacy Horizon secure your data, ensure compliance, and build lasting trust.