Health and Information Protection Act, 2016 (HIPA) passed third reading

On May 5, 2016, the Health Information Protection Act, 2016 (HIPA) passed third reading in the Ontario legislature. The Act will make a number of amendments to the Personal Health Information Protection Act, 2004 (PHIPA) and the Regulated Health Professions Act, 1991, amongst others. The Act has not yet been proclaimed.

The following changes contained in the HIPA will be of significance for those who handle personal health information:

  • Mandatory privacy breach reporting to the Information and Privacy Commissioner and, in certain circumstances, to relevant regulatory colleges;
  • Removing the requirement under PHIPA that prosecutions must be commenced within six months of when the alleged offence occurred, which allows for a broader range of liability;
  • Doubling the maximum fines for privacy offences from $50,000 to $100,000 for individuals and from $250,000 to $500,000 for organizations.

Details about the HIPA and the Ontario government’s efforts to improve privacy protections with respect to personal health information is available at

For further information please contact Porter Heffernan at 613-940-2764, Carolyn Dunlop at 613-940-2760, or Adam Gamwell at 613-940-2736.

Related Articles

Ontario Superior Court of Justice Declares Bill 124 Void and of no Effect

On November 29, 2022, the Ontario Superior Court of Justice released its much anticipated decision regarding ten applications which challenged…

Federal Government Announces Release of New Regulations to Support the Implementation of Paid Sick Leave under the Canada Labour Code

Regular Focus Alert readers will recall that on December 17, 2021, Bill C-3, An Act to amend the Criminal Code…

New Criminal Conspiracy Provision in the Competition Act Addresses Wage-Fixing Agreements and No-Poach Agreements

Earlier this year, Bill C-19, the Budget Implementation Act, 2022, No. 1 (the “Bill”) was passed by the federal legislature…