See Also: Skyway West Customer Terms & Conditions | Acceptable Use Policy
Privacy Policy
Skyway West Business Internet Solutions (“Skyway”) provides a broad range of internet services to business customers in Canada. Skyway is committed to maintaining the privacy, confidentiality, security and accuracy of customer and employee personal information.
We are currently developing a comprehensive Privacy Policy, a formal statement of principles and guidelines concerning the minimum requirements for the protection of personal information provided by Skyway to its customers and employees. The objective of the Privacy Policy is responsible and transparent practices in the management of personal information, in accordance with the Canadian Standards Association (CSA) Model Code and federal privacy legislation as set out in the Personal Information Protection and Electronic Documents Act, S.C. 2000, c.5, as amended (PIPEDA).
The foundation of PIPEDA are the ten principles summarized below, usually referred to as “fair information principles”. The full text of each principle is available in Schedule 1 of the Personal Information Protection and Electronic Documents Act (PIPEDA).
In addition to these principles, the Act contains an overriding obligation that any collection, use or disclosure of personal information must only be for purposes that a reasonable person would deem appropriate given the circumstances.
Skyway is committed to assuming the responsibility for the protection and fair handling of personal information at all times. This applies throughout our organization and in dealings with third parties. We believe care in the handling of personal information is essential to continued consumer confidence and good will.
Principle 1 – Accountability
An organization is responsible for personal information under its control. It must appoint someone to be accountable for its compliance with these fair information principles.
Principle 2 – Identifying Purposes
The purposes for which the personal information is being collected must be identified by the organization before or at the time of collection.
Principle 3 – Consent
The knowledge and consent of the individual are required for the collection, use, or disclosure of personal information, except where inappropriate.
Principle 4 – Limiting Collection
The collection of personal information must be limited to that which is needed for the purposes identified by the organization. Information must be collected by fair and lawful means.
Principle 5 – Limiting Use, Disclosure, and Retention
Unless the individual consents otherwise or it is required by law, personal information can only be used or disclosed for the purposes for which it was collected. Personal information must only be kept as long as required to serve those purposes.
Principle 6 – Accuracy
Personal information must be as accurate, complete, and up-to-date as possible in order to properly satisfy the purposes for which it is to be used.
Principle 7 – Safeguards
Personal information must be protected by appropriate security relative to the sensitivity of the information.
Principle 8 – Openness
An organization must make detailed information about its policies and practices relating to the management of personal information publicly and readily available.
Principle 9 – Individual Access
Upon request, an individual must be informed of the existence, use, and disclosure of their personal information and be given access to that information. An individual shall be able to challenge the accuracy and completeness of the information and have it amended as appropriate.
Principle 10 – Challenging Compliance
An individual shall be able to challenge an organization’s compliance with the above principles. Their challenge should be addressed to the person accountable for the organization’s compliance with PIPEDA, usually their Chief Privacy Officer.