Back to blogCollect only what's necessary for the stated purpose Get your meaningful consent before collecting or sharing data Allow you to access your records and correct errors Delete your data on request (subject to legal retention requirements) Protect data with appropriate security measures Data minimization: Transfer forms collect only your name, phone, and current pharmacy — nothing more. Canadian data residency: All patient data is stored in AWS ca-central-1 (Montreal), not US servers. Encryption: Data is encrypted at rest (AES-256) and in transit (TLS 1.3). Access controls: Row-level security in our database means only you (and pharmacy staff with a legitimate purpose) can read your records.
Privacy·February 10, 2025·6 min read
Your Health Data in Canada: What PIPEDA Means for You
Canada's privacy law gives patients real rights over their health information.
Clinical Pharmacist at Pill4Me
Your health information is among the most sensitive data that exists. Canada's *Personal Information Protection and Electronic Documents Act* (PIPEDA) gives you meaningful rights over how it's collected, used, and shared.
What PIPEDA requires
Any organization handling personal information for commercial purposes — including pharmacies — must:
What this means at Pill4Me
We've built our systems with PIPEDA compliance from day one:
Your rights in practice
To exercise your PIPEDA rights, email privacy@pill4.me. We respond within 30 days.
For more detail, see our Privacy Policy.
Ready to experience a better pharmacy?
Transfer your prescription in under 60 seconds — no login required.
Transfer my prescription →