Skip to end of metadata
Go to start of metadata

You are viewing an old version of this content. View the current version.

Compare with Current View Version History

« Previous Version 5 Next »

Local laws : Bill 64 and the protection of personal infomation or data

The Bill 64 project (“BP64”), also known as Bill 25, on the protection of personal information has come into force on September 22, 2022.

What is the impact on security and infrastructure matter ?

Each element below is visualized according the milestones described in the PAGE Introduction.

  1. Milestone 1 (scanning in a local, physical location) : Company's compliance rules are relatively straightforward. Of course, under Quebec law, the necessary measures must be taken to protect personal information (PI). This means determining the level of physical security to be put in place. In doing so, we work with the Sécurité & Infra team.

  2. Milestone 2 (document storage and archiving) : for the same reasons as above, this involves determining :

  • the security level of both active and archived documents. This is done in collboration with the IT & Infra Security team;

  • the level of monitoring of the same documents. In collboration with the IT & Infra Security team.

  • the level of governance of document use, retrieval and modification. In collboration with the IT & Infra Security team.

  1. Milestone 3 (non-manual, fast and accurate search management) : for the reasons stated above, this requires determining:

  • the security level of both active and archived documents. This is done in collboration with the IT & Infra Security team;

  • the level of governance of document use, retrieval and modification. In collboration with the IT & Infra Security team.

What is the impact on data ?

Each element below is visualized according the milestones described in the PAGE Introduction.

  1. Milestone 1 (digitization in a local, physical location): for the same reasons stated above, this requires determining :

  • the level of security of paper documents (for example, how are they destroyed? How are stored documents protected? etc.). This is done with the Security & Infra team.

  • the security level of digitized documents (What is encrypted? What is masked? etc.). In collaboration with the Security & Infra team.

  1. Milestone 2 (document storage and archiving): for the same reasons as above, this involves determining :

  • the security level of digitized documents (What is encrypted? What is masked? How is data segmentation applied? etc.). This is done with the Security and Infra team.

  1. Milestone 3 (non-manual, fast and accurate search management) - the security level of digitized documents.

  • the security level of digitized documents (What is encrypted? What is masked? How is data segmentation applied? etc.). Doing so with the Security and Infra team.

What is the impact on governance ?

What is the impact on implementation ?

  • No labels