It is highly probable that your small company o personal business holds sensitive information. This is because information linked to an individual identity can be used to commit fraud.
There are many kinds of sensitive information so that it is a business’s responsibility to take care of handling and destroying effectively these records.
Examples include of Sensitive Information are:
- personal information
- financial or commercially sensitive information
- information given in confidence
- information relating to an investigation
- information posing a security risk.
The legal definition of personal information is provided by section 4 of the PPIP Act. Section 4 of the PPIP Act defines ‘personal information‘ as:
“Information or an opinion (including information or an opinion forming part of a database and whether or not in a recorded form) about an individual whose identity is apparent or can be reasonably be ascertained from the information or opinion”.