Health and Information Protection Act, 2016 (HIPA) passed third reading

On May 5, 2016, the Health Information Protection Act, 2016 (HIPA) passed third reading in the Ontario legislature. The Act will make a number of amendments to the Personal Health Information Protection Act, 2004 (PHIPA) and the Regulated Health Professions Act, 1991, amongst others. The Act has not yet been proclaimed.

The following changes contained in the HIPA will be of significance for those who handle personal health information:

  • Mandatory privacy breach reporting to the Information and Privacy Commissioner and, in certain circumstances, to relevant regulatory colleges;
  • Removing the requirement under PHIPA that prosecutions must be commenced within six months of when the alleged offence occurred, which allows for a broader range of liability;
  • Doubling the maximum fines for privacy offences from $50,000 to $100,000 for individuals and from $250,000 to $500,000 for organizations.

Details about the HIPA and the Ontario government’s efforts to improve privacy protections with respect to personal health information is available at

For further information please contact Porter Heffernan at 613-940-2764, Carolyn Dunlop at 613-940-2760, or Adam Gamwell at 613-940-2736.

Related Articles

New Canada Labour Code Termination Entitlements to Come Into Effect on February 1, 2024

In 2018, as part of the federal government’s efforts to modernize its labour standards regime, the Budget Implementation Act, 2018,…

New Licensing Requirement for Temporary Help Agencies and Recruiters: Online Applications Now Open

In recent years, investigations by Ministry of Labour, Immigration, Training and Skills Development (the “Ministry”) officers have reportedly uncovered issues…

Arbitrator Determines that National Day for Truth and Reconciliation was “Proclaimed” a Holiday Under Collective Agreements

In a past focus alert, we discussed the implementation of a new statutory holiday. The National Day for Truth and…