How Does HIPAA Differ from PIPEDA?

How Does HIPAA Differ from PIPEDA

The Personal Information Protection and Electronic Document Act (PIPEDA) is Canada's federal law on patient privacy. It is comparable to the Health Insurance Portability and Accountability Act (HIPAA) in the United States, however, there are a few key differences to be aware of.

What is the biggest difference?

In the United States, HIPAA is a federal law that governs the privacy and security of personal health information for certain sectors in the health industry. These sectors mainly include health insurers, healthcare providers and health exchange organizations.

In Canada, PIPEDA applies to all personal data, whether in the healthcare industry or elsewhere, regardless of the entity. As Servercloud Canada explains it, once an organization collects data, regardless of the province, industry or type, that organization becomes fully responsible for the protection of the collected data. It is important to note that each Canadian province has the discretion to have its own rules and regulations as long as the core values of PIPEDA remain intact.

Where does the data go?

Much like HIPAA, data collected and protected by PIPEDA can be stored abroad. In the Canadian provinces of British Columbia and Nova Scotia, governmental restrictions make it mandatory for data to be stored in Canada only.


What health data is covered?

HIPAA protects any personally identifiable information that is created or received by:

  • Healthcare provider
  • Health plan authority
  • Employer
  • Life insurer
  • School or University

The data collected and protected covers past, present, and future health conditions, treatments or payments.

In Canada, any data, including users, statistics, and volume, must be available to the covered entities. This data is important in accountability procedures of privacy violations. PIPEDA also protects sensitive personally identifiable information such as age, name, ID numbers, income, ethnic origin, blood type, medical records, opinions, evaluations, comments, social statements, payment information and more.

Client Success

  • 50% reduction in time to deploy Giva's change, incident, problem, asset management and knowledgebase modules
  • 60% reduction in the 5 year Total Cost of Ownership (TCO)
  • Saved at least 1 FTE due to lower ongoing administration
  • Saved 1 week per month due to easy to use reports
  • Increased to 90% achievement in meeting service level agreements
  • 70% reduction in generating reports and admin; eliminated 35 hours/month
  • 50% faster to create/assign a service request
  • 60% increase in information captured during the initial phone call
  • 50% increase in the number of service requests created due to intuitive design
  • 80% increase in productivity by using Giva's dashboards and reports
  • 60% increase in meeting service level agreements
  • 45% increase in the number of the calls logged due to Giva's intuitiveness and ease of use
  • 50% increase in productivity by using Giva's integrated custom forms