Office of the Information and Privacy Commissioner
September 20, 2017

Office of the Information and Privacy Commissioner - Provident¹⁰ and Privacy Breaches Reported to the OIPC

In 2016 the provincial government passed legislation that created the Public Service Pension Plan Corporation and placed it outside of provincial laws that protect the privacy of personal information and provide access to information about the Corporation’s operations, including spending and salaries. That corporation was subsequently rebranded as Provident¹⁰.

In recent weeks we have received several complaints from pension plan members alleging breaches of their privacy by Provident¹⁰. One complaint from a plan member involved their personal information being sent to a different person with a different name. That personal information included details that create a significant risk of identity theft.

The Office of Newfoundland and Labrador’s Information and Privacy Commissioner has no jurisdiction to investigate privacy breaches involving Provident¹⁰ under the Access to Information and Protection of Privacy Act, 2015. Plan members who wish to complain about unauthorized disclosures of their personal information should contact the Office of the Privacy Commissioner of Canada at:

(www.priv.gc.ca/en/report-a-concern/file-a-formal-privacy-complaint/file-a-complaint-about-a-business/file-a-complaint-under-pipeda/)

If the Office of the Privacy Commissioner of Canada is satisfied that Provident¹⁰ falls within its jurisdiction pursuant to the federal Personal Information Protection and Electronic Documents Act, your complaint may be investigated.

- 30 -

Media contact
Sean Murray
Director of Special Projects
(709) 729-6309

2017 09 20                              3:20 p.m.