BIP’s Security Policy
BIP is committed to protecting the personal information it holds by using appropriate security measures, given the sensitivity of the information.
- BIP is committed to protecting personal information against such risks as loss or theft, unauthorized access, disclosure, copying, use, modification or destruction by using appropriate security measures, regardless of the form in which such information exists.
- BIP is committed to protecting the personal information disclosed to third parties through contractual agreements stipulating the confidentiality of the information and the purpose for which it can be used.
- All BIP employees who have access to personal information must sign a contract under which they agree to respect the confidentiality of such information.
- The nature of recommended security measures may vary depending on the sensitivity of the information involved, its quantity, distribution, format and method of storage. A higher level of protection thus ensures the security of more sensitive information.
- Protection methods include:
- physical measures, for example: locked filing cabinets and restricted access to offices;
- administrative measures, for example: controlled entry to data centres and selective access to information;
- technological measures, for example: the use of passwords and encryption;
- investigative measures, in cases where BIP has reasonable grounds to believe that personal information has been collected, used or disclosed inappropriately.