Data Breach Policy

1. Purpose and Scope

This policy outlines TEN AI TECH's procedures for responding to data breaches in accordance with PIPEDA and Saskatchewan privacy laws. It applies to all personal information we collect, use, and store.

2. Definition of Data Breach

A data breach is defined as unauthorized access to, or unauthorized collection, use, or disclosure of personal information. This includes:

  • Lost or stolen devices containing personal information
  • Unauthorized access to our systems
  • Accidental disclosure of personal information
  • Cyber attacks resulting in data compromise

3. Breach Response Team

Our breach response team consists of:

  • Privacy Officer
  • IT Security Lead
  • Legal Counsel
  • Communications Director

4. Response Protocol

4.1 Immediate Response (24 Hours)

Initial steps to be taken:

  • Contain the breach and conduct preliminary assessment
  • Document all available information about the breach
  • Notify the Privacy Officer and activate response team
  • Implement immediate security measures

4.2 Assessment (48-72 Hours)

Evaluation process:

  • Evaluate the risks and potential harm
  • Determine if the breach meets reporting thresholds
  • Identify affected individuals
  • Document the cause and extent of the breach

4.3 Notification

Communication steps:

  • Notify affected individuals if risk of significant harm exists
  • Report to Privacy Commissioner of Canada if applicable
  • Notify law enforcement if criminal activity is suspected
  • Inform relevant regulatory bodies

5. Notification Content

Notifications to affected individuals will include:

  • Description of the breach
  • Type of information compromised
  • Steps taken to reduce risk of harm
  • Steps individuals can take to protect themselves
  • Contact information for additional information
  • Right to file a complaint with the Privacy Commissioner

6. Prevention and Training

We maintain:

  • Regular security assessments
  • Employee privacy and security training
  • Up-to-date security protocols
  • Incident response drills

7. Record Keeping

We maintain records of all data breaches, including:

  • Date and time of breach discovery
  • Scope and nature of the breach
  • Type of personal information involved
  • Cause of the breach
  • Actions taken to contain and resolve the breach
  • Notifications made to individuals and authorities

8. Contact Information

For questions about this policy or to report a data breach:

Privacy Officer

TEN AI TECH

1121 Horace Street

Regina, SK S4T 5L5

Email: info@tenaitech.com

Phone: (306) 331-4802

Ready to Transform Your Real Estate Business?

Join successful agents who have revolutionized their business with AI. Focus on what matters most - building relationships and closing more deals.

90%
Less Paperwork
24/7
Lead Engagement
45%
More Closings
Start Closing More DealsSchedule a Strategy Call