Skip To Main Content

Business and organizational privacy policy resources

Learn how you can help organizations create privacy policies that meet current business, government and data storage needs.

An image of a business professional pointing to a ghost image of a padlock with the Matrix data streaming down in front.

Complex business systems, a global economy and the vast collection of personal data have increased the need for organizations to create a strong, effective privacy policy.

Organizations have an obligation to protect the personal information of both their customers and employees. Good privacy is good business: protecting sensitive data is critical in preventing damage to reputation, brand or business relationships and is a key component in corporate governance and accountability.

What role can CPAs play in developing and implementing privacy policy?

As a Chartered Professional Accountant (CPA), you are a trusted business advisor who can perform a key role in helping organizations address and assess privacy risks. CPAs working in industry can help establish and monitor privacy policies, systems and controls. CPAs in public practice can provide independent advice and assurance regarding the effectiveness of privacy systems and controls.

Chartered Professional Accountants of Canada (CPA Canada) has resources to help you develop — or enhance — your organization’s policy.

You will learn:

  • the benefits of using generally accepted privacy principles (GAPP) in privacy program development
  • how to measure a privacy policy’s successes and weaknesses using the Privacy Maturity Model (PMM)
  • how The Canadian Privacy and Data Security Toolkit, Second Edition provides additional resources to help you
  • the benefits of incorporating GAPP into records management programs