Profitable Giving Canada (PGC) is committed to maintaining values of integrity, diligence, and accountability with respect to the privacy of personal information within its control. PGC respects, and is committed to protecting, all personal information. To fulfill this commitment, PGC complies with all applicable privacy laws.
This policy outlines the principles and practices PGC follows in protecting the personal information that is in its custody, or control, by virtue of performing its regulatory duties amongst other functions. This includes, but is not limited to, personal information of current and former members, clients, donors, employees, agents, directors, officers, partners and others collected from parties under jurisdiction (“Regulated Persons”).
“Personal Information” means information about an identifiable individual. This can include information such as age, home address and telephone number, social insurance number, marital status, religion, income, medical information, educational and employment history, but does not include business contact information, such as position name or title, business address, telephone or fax number. Under certain privacy legislation, “personal information” does not include “work product” information, such as information prepared or collected by a person as part of his or her employment or business responsibilities or information about how a person goes about fulfilling those responsibilities.
The PGC Executive Committee is responsible for ensuring PGC's compliance with this policy and all applicable privacy laws. The PGC Executive Committee may be contacted at [email protected] .
PGC collects, uses, retains and discloses personal information in order to perform its regulatory functions, which include registration services, monitoring, investigating and enforcing compliance with the PGC code of conduct as appropriate. In doing so, PGC engages in a number of activities which may involve the collection, use, retention or disclosure of personal information, such as (without limitation): RPGA promotional activity; investigating reports of abuse; conducting compliance and other regulatory audits; investigating potential regulatory and statutory violations; compiling and maintaining regulatory databases; conducting enforcement or disciplinary proceedings; and reporting to legal regulators.
In some situations, PGC may disclose personal information, whether obtained from Regulated Persons or from other persons, to other organizations including tax and charity regulatory authorities, regulated marketplaces, other self and social regulatory organizations, and law enforcement agencies.
Applicable privacy laws may permit the collection, use, retention, or disclosure of personal information without consent and/or its collection from a source other than the individual. Where consent is required by applicable privacy laws, PGC obtains such consent. Some of the personal information that PGC collects, uses, retains, and discloses is disclosed to PGC by Regulated Persons and others who are subject to applicable privacy laws. Under such laws, Regulated Persons, and others, must obtain appropriate consents when required. For more information, please see the Joint Regulatory Notice on Federal and Provincial Privacy Legislation, issued on December 3, 2003.
Non Regulatory Purposes
PGC will not collect Personal Information without your knowledge and permission. We will not knowingly disclose your Personal Information to third parties without your consent, except as needed to provide the service you request or as otherwise stated in specific terms and conditions associated with a product or service you request. We will allow you to view, correct or modify your Personal Information, and we will take reasonable steps to protect the security of the Personal Information we collect from you.
PGC makes reasonable efforts to ensure that the personal information it collects is limited to what is necessary for its intended use.
Limiting use, disclosure, and retention
PGC does not use or disclose personal information for the purposes inconsistent with PGC's stated Regulatory, and other, purposes unless required by law. PGC does not sell personal information to other parties. Personal information is retained for as long as necessary for regulatory, or other, purposes or as required by law.
PGC has put in place procedures and practices reasonably appropriate to the sensitivity of the personal information PGC collects, uses, retains and discloses for protecting it against loss, theft, unauthorized access and similar risks. PGC reviews and updates its policies and controls on a reasonable basis to ensure ongoing personal information security.
PGC 300-1 Issue 1.0