Many countries recognize informational privacy, or the right to protect an individual’s personal information, this as an important human right and have developed laws to protect individuals’ personal information. Bermuda has enshrined such rights with the passage of the Personal Information Protection Act 2016 (PIPA), which received Royal Assent on July 27, 2016 and will come fully into force on January 1, 2025.
The PIPA outlines the requirements for organisations that use personal information, as well as the rights that individuals have regarding the use of their personal information by organisations. This legislation, which follows international best practice, applies to all organisations, businesses and the government that use personal information in Bermuda. While organisations require the use of personal information to provide services, it is important that individuals have control over their information and how it is used and shared. Privacy legislation is also critical in the digital age. It plays a major role in the development of a country’s cybersecurity framework and is a key driver for a successful digital economy.
An independent Privacy Commissioner has been appointed to ensure compliance and that the purposes of the PIPA are being achieved. The Privacy Commissioner provides information and education to both organisations and the public. The Privacy Commissioner’s Office (PrivCom) issues guidance and other information related to the PIPA at www.privacy.bm