Privacy Policy


To ensure that:

  1. PPI (including PPI Partners doing business as PPI Advisory, PPI Solutions Inc. and PPI Benefits) is in compliance with regulatory and self-regulatory requirements regarding Privacy (“Regulations”);
  2. PPI Privacy obligations are handled in a professional manner, in a secure environment and appropriately monitored.


Person(s) Responsible:

  • Overall responsibility for application of the corporate Privacy policy rests with the Director, Compliance. Within each PPI office the designated Compliance Officer will ensure that the policy is instituted and that staff are familiar with our policy.

Our Commitment

At PPI our Advisors and their clients are our business. As a financial services company, we are trusted with some of their clients’ most sensitive personal information. We must respect that trust and need those clients to be aware of our commitment to protect the information they provide in the course of doing business with us.

There are 10 principles that we must follow to be in compliance with PIPEDA.

  1. Accountability: An organization is responsible for personal information under its control and shall designate an individual or individuals who are accountable for the organization's compliance with the following principles.
  2. Identifying Purposes: The purposes for which personal information is collected shall be identified by the organization at or before the time the information is collected.
  3. Consent: The knowledge and consent of the individual are required for the collection, use or disclosure of personal information.
  4. Limiting Collection: The collection of personal information shall be limited to that which is necessary for the purposes identified by the organization. Information shall be collected by fair and lawful means.
  5. Limiting Use, Disclosure, and Retention: Personal information shall not be used or disclosed for purposes other than those for which it was collected, except with the consent of the individual or as required by the law. Personal information shall be retained only as long as necessary for fulfillment of those purposes.
  6. Accuracy: Personal information shall be as accurate, complete, and up-to-date as is necessary for the purposes for which it is to be used.
  7. Safeguards: Personal information shall be protected by security safeguards appropriate to the sensitivity of the information.
  8. Openness: An organization shall make readily available to individuals specific information about its policies and practices relating to the management of personal information.
  9. Individual Access: Upon request, an individual shall be informed of the existence, use and disclosure of his or her personal information and shall be given access to that information. An individual shall be able to challenge the accuracy and completeness of the information and have it amended as appropriate.
  10. Challenging Compliance: An individual shall be able to address a challenge concerning compliance with the above principles to the designated individual or individuals for the organization's compliance.


The Act is applicable to personal information only. However, it has been suggested that in keeping with the spirit of the law, PIPEDA should also be applied to information obtained on closely-held corporations which would be most, if not, all corporate clients.

PPI Privacy Officer

Kim Russell, Director, Compliance is the Privacy Officer and all inquiries / complaints shall be directed to her at:

Information Collection and Use

We collect the information required for us to complete the task for which we are engaged, whether that is insurance or money products. This information is collected on the insurance company applications and may also be collected prior to and during the underwriting process.

We may also use this information to provide you with news, event information, and updates to our services that may be of interest to you. You may receive this information in advertising via third-party sites and media properties, including in social media. You may be able to opt-out of these ads by clicking on an icon in the ad or through the privacy settings in each media property.

Changes to our Privacy Policy

PPI may, at any time and from time to time, for any reason and without notice to Users of this Website, modify, revise or amend our Privacy Policy. Any modifications will take effect when posted to the Website. Therefore, each time you access the Website, you need to review the Privacy Policy upon which access and use of this Website is conditioned. By your continuing use of the Website after changes are posted, you will be deemed to have accepted such changes.


The consent for us to establish a file and collect and maintain personal information is to be obtained by the advisor, signed by the client and placed in the client file.

Protection of Personal Information

As the principals, management and employees of PPI we are granted access to client information and must understand the need to keep the information protected and confidential. Our training procedures clearly communicate that we are to use the information only for the intended purpose(s). When hired all PPI employees initial a non-disclosure/confidentiality clause that is included in their offer letter.

Network Security

The PPI Data Centres are physically protected by actively monitored alarm systems, key card access and intermittent building security patrols. PPI uses the latest generation firewall technology with application level inspection, Advance Malware Protection and Intrusion Prevention System (IPS) protecting PPI from threats coming from the Internet. Servers and services within the Data Centres have active monitoring and alerting with 24/7 paging to members of the PPI Network Team on a rotating on call basis.

Retention of Personal Information

Personal information will be retained on file as long as is necessary to facilitate the underwriting and ongoing administration of the policy or as long as is legally required.

Privacy Choices

Clients may request copies of our privacy policies and procedures at any time.

Clients may request access to their information. We must respond to this request as quickly as possible, however no later than 30 days after the receipt of the request.

Clients may withdraw their consent at any time by contacting our Privacy Officer. However, they will be made aware that failure to provide adequate information may prevent us from completing the task for which we were engaged.


Clients may file complaints about our privacy procedures as well as a breach in our privacy policy. Complaints should be received in writing and forwarded to the Privacy Officer. The Privacy Officer will contact the client and obtain further details. The Privacy Officer will then review the circumstances of the complaint and determine if there is reason to alter the existing privacy policy. Insurance carriers should be notified of any complaint involving their clients/products.

Exceptions to client access

Organizations must refuse an individual access to personal information:

  • if it would reveal personal information about another individual unless there is consent or a life-threatening situation
  • if the organization has disclosed information to a government institution for law enforcement or national security reasons. Upon request, the government institution may instruct the organization to refuse access or not to reveal that the information has been released. The organization must refuse the request and notify the Privacy Commissioner. The organization cannot inform the individual of the disclosure to the government institution, or that the institution was notified of the request, or that the Privacy Commissioner was notified of the refusal.

Organizations may refuse access to personal information if the information falls under one of the following:

  • solicitor-client privilege
  • confidential commercial information
  • disclosure could harm an individual’s life or security
  • it was collected without the individual’s knowledge or consent to ensure its availability and accuracy, and the collection was required to investigate a breach of an agreement or contravention of a federal or provincial law (the Privacy Commissioner must be notified)
  • it was generated in the course of a formal dispute resolution process.

PPI Underwriting Privacy Policy


  • PPI Underwriters (the Advanced Underwriting team) are currently located in the PPI Advisory offices in Edmonton and Montreal.
  • Each member of the Advanced Underwriting team has the ability to work remotely as required; each have their own company laptop and personal computers are not used for work purposes.
  • All laptops require access to the PPI network through a secure connection; an added encryption program (Bitlocker) has been installed on PPI laptops as a further safeguard. If a laptop is lost or stolen this encryption program provides an extra layer of protection making it difficult to access the hard drive.


  • Access to a PPI Underwriting office is restricted to members of the PPI Advisory Advanced Underwriting team.
  • Each PPI underwriter has their own private locked office within the PPI Advisory main office (the main PPI Advisory offices are locked in off hours and have reception support during the day to screen any visitors).
  • Keys to the PPI Underwriting offices are not widely distributed and are provided to the person housed within that office. In the event of an emergency, a master key would be available to PPI Advisory senior management personnel.

Privacy Policies and Procedures for Underwriting

  • PPI acknowledges the sensitivity of the information we’re privy to, and our carriers can be assured that privacy and confidentiality is taken very seriously by the Advanced Underwriting team.
  • The majority of information is obtained and stored electronically. Access to the repository where information is stored is limited to members of the team.
  • If a team member has to step away from their desk or office, their computer/keyboard is locked to prevent others from accessing or seeing information that may be on-screen; office doors are also kept closed/locked when not occupied.
  • In the event a paper file is used, a “clean desk” policy is in place and all documentation is cleared and stored in a lockable cabinet or drawer at the end of the day.
  • Any Associate meetings, etc. would take place in a meeting room; PPI Underwriting offices are not open to anyone outside of PPI.
  • PPI Underwriting offices are not open to anyone outside of PPI.
  • All PPI employees are subject to signing a non-disclosure agreement as part of their condition of employment.

Advanced Underwriting support personnel are bound by the same rules as PPI Underwriters. Though not housed in their own locked office, support personnel are situated in a private area within the PPI Advisory offices and these areas are not accessible by anyone outside of PPI.