Under the ATIPP Act, both the Records Manager and the public body have the duty to assist an applicant. The duty to assist obliges both to meet a threshold of reasonableness in responding to a request for records. "Every reasonable effort" is an effort which a fair and rational person would expect to be done or would find acceptable. The use of "every" indicates that efforts to assist will be thorough and comprehensive. The public body and Records Manager must be able to verify the completeness of efforts to assist an applicant, best accomplished by keeping records of the processes, actions and decisions taken to respond to a request.

Guideance for Public Bodies on Time Extension Request to the OIPC under s.63 of the ATIPP Act (2018).

This guide is written for public bodies who have received a request for review under the Access to Information and Protection of Privacy Act (ATIPP Act).

Public bodies are often called upon to undertake searches for records in response to access requests made under the Access to Information and Protection of Privacy Act. This guidance document offers suggestions and outlines steps that public body employees should consider when conducting a search for records in response to an access to information request.

Canadian privacy laws all contain provisions that allow for the disclosure of personal information or personal health information in the event of an emergency. This document provides guidance on the provisions in Yukon's privacy laws.

The Yukon Information and Privacy Commissioner is reminding public bodies and custodians to ensure the protection of personal information and personal health information when employees working from home use this information. This document provides guidance on how to do so.

Ideas for individuals, businesses & public organizations – how to manage the risk of ransomware

The purpose of these guidelines is to assist public bodies identify when it is appropriate to use video surveillance and evaluate whether in using video surveillance involving the collection, use and disclosure of personal information the requirements of the ATIPP Act can be met.

The only way for a public body to effectively assess and manage privacy risks for any project involving personal information is to conduct a privacy impact assessment (PIA). Completing a PIA enables a public body to identify any risks associated with the collection, use or disclosure of personal information and ensure the information is properly managed in compliance with the ATIPP Act.

This document provides step-by-step guidance for Yukon's public bodies on how to implement an effective privacy management program.

This tool is designed as a resource for public bodies  to ‘self-evaluate’ the maturity of their privacy management program.

The COVID-19 pandemic has led to the development and use of new variations of cybercrime. In particular, texting, email, phone calls and social media are being used to trick people into giving out personal or financial information, often by playing on fears and concerns about COVID-19. This advisory is meant to create additional awareness of these problems and provide advice about what to do.

The Yukon Information and Privacy Commissioner (IPC) is issuing this advisory to inform Yukoners about a recent cyber security incident involving the Zoom videoconferencing application and to provide information about how to reduce risks to privacy.

The Yukon Information and Privacy Commissioner provides advice to government, public organizations, businesses, employees and the public in regard to protecting personal information while working from home or other remote locations, in particular in regard to applications that support remote work and the potential privacy risks of using them.