New framework added: Personal Health Information Protection Act (PHIPA)

What's new?

Scrut now supports the Personal Health Information Protection Act (PHIPA) as part of our expanding compliance framework library (currently, with 60+ frameworks).

Who is it for?

The PHIPA (Personal Health Information Protection Act) outlines the rules for the collection, use and disclosure of personal health information. Compliance is vital for all health information custodians operating within the province of Ontario, Canada, as well as for individuals and organizations that receive personal health information from these custodians.

How it works

Navigate to the Frameworks module in Scrut and search for "Personal Health Information Protection Act (PHIPA)".

• All requirements, controls, and evidence tasks are pre-configured for quick adoption.

• Controls are mapped to Scrut's policy templates, existing evidence, and other frameworks (e.g., GDPR, ISO 27001) to reduce duplication.

• Assign control owners, set due dates, and track implementation progress directly within the platform.

• Export reports for auditors, regulators, and internal teams with a click.

Need help?

Your Customer Success Manager is always ready to help if you need assistance.
Explore all recent product updates → View now.