Virtual Visits Privacy Guidance and Reference Library

Virtual visits involve the collection, use, disclosure, retention, and/or transmission of personal health information (PHI) and personal information (PI). In addition, access, transfer and disposal, when required, of PHI/PI are fundamental to the solution capabilities

Ontario Health has published a Virtual Visits Verification Privacy Guidance resource to support solution providers and health service providers in their efforts to comply with the privacy requirements of the Virtual Visit Verification Program (VVV) Standard.

Maintaining privacy while delivering care using virtual visit solutions involves unique challenges that can lead to unintended risks, such as data breaches.

Solution Providers can mitigate many of these risks by implementing appropriate privacy and security policies, procedures, and practices including conducting of Privacy Impact Assessments (PIAs). 

Participation in the Virtual Visit Verification Program requires adherence to mandatory requirements. From a privacy standpoint, in addition to the VVV Standard, there are numerous guidance documents available to the public, which may assist Solution Providers in their compliance efforts. The Office of the Information and Privacy Commissioner of Ontario (IPC) publishes documents that offer practical guidance to promote compliance with Ontario’s access and privacy laws. The purpose of this Resource Library is to provide health service providers and solution providers with practical guidance and tools to support compliance with Ontario’s privacy laws and standards when delivering care through virtual visits.

• Personal Health Information Protection Act 
• Freedom of Information and Protection of Privacy Act
• IPC All Guidance and Resources
  • IPC De-identification Guidelines for Structured Data
  • IPC Privacy Breaches: Guidelines for Public Sector Organizations
  • IPC Privacy Management Handbook for Small Health Care Organizations
  • IPC Privacy and Access in Public Sector Contracting with Third Party Service Providers
  • IPC Frequently Asked Questions: Personal Health Information Protection Act
  • IPC Privacy Impact Assessment Guidelines for the Ontario Personal Health Information Protection Act
  • IPC Privacy and Security Considerations for Virtual Health Care Visits
  • IPC Planning for Success: Privacy Impact Assessment Guide for Ontario’s public institutions

Please note: The resource links are provided for convenience and informational purposes only and Ontario Health is not responsible for the information contained within them. The links may direct you to third party websites and publications and you are responsible for complying with any applicable terms associated with the website and/or publications.