Personal Health Information Protection Act (PHIPA) and Personal Information Protection and Electronic Documents Act (PIPEDA):
Regarding end-customer individuals' right to access their data, how2trak information requests are submitted through their respective authorized contacts (end-users or account managers) who can look-up the stored information, including complete audit histories, as well as submit corrections and amendments directly online.
PIPEDA (Canada) and Patriot Act (U.S.):
These acts provide essentially the same protections in Canada and the U.S., respectively. Following the European model of privacy legislation and the established findings of The Office of the Privacy Commissioner of Canada, Scush employs contracts with organizations and countries providing compatible levels of protection. Further, Scush is fully transparent with the handling and protection of data within our care.
An interesting note to keep in mind is that the Patriot Act in the U.S. provided new limitations on access to foreign intelligence and specifically builds further on the existing mutual cooperation between the U.S. and Canadian governments. Canadian and U.S. entities and individuals enjoy remarkable levels of privacy and Intellectual Property protections.
"Above and Beyond":
Working beyond the legislated privacy protections, how2trak employs dual encryption with hashing of sensitive data such as account passwords and patient-identifiable data. In the extremely unlikely event entire databases were physically stolen, the data is non-identifiable and privacy continues to remain protected.