You're reading the Manitoba version.Change province →
MB

Patient Privacy in Manitoba

Last verified:

Source: PIPEDA, S.C. 2000, c. 5; Provincial health privacy statutes (Ontario: PHIPA, 2004; Alberta: HIA; Saskatchewan: HIPA)

Reviewed by the Commoner Law Editorial Team. Sourced from Canadian federal statutes and official sources. Provincial information reflects each province's own legislation and court rulings. Written in plain language for general understanding — this is educational content, not legal advice. Our editorial standards

Canadian Federal Law

What is this right?

Your health information is protected at both the federal level (PIPEDA) and by provincial health privacy laws. Most provinces have dedicated health privacy statutes, such as Ontario's PHIPA, Alberta's HIA, and Saskatchewan's HIPA.

The key principles are:

  • Only collect, use, and disclose what is necessary
  • Require your knowledge and consent (with limited exceptions like public health reporting)
  • Keep your data secure
  • Retain records only as long as needed

You have the right to access your own medical records — providers must typically respond within 30 days. You can also request corrections to errors in your file and file complaints with the privacy commissioner if your information is improperly disclosed.

When does it apply?

  • Every patient whose health information is collected by healthcare providers, hospitals, pharmacies, or labs.

What to Do If Your Medical Information Is Shared Without Your Consent in Canada

  • Request your medical records in writing — the provider must respond within approximately 30 days.
  • Ask who has access to your health information and why.
  • Request corrections if you find errors in your medical records.
  • File a complaint with the provincial privacy commissioner if your health information is disclosed without your consent.
  • Use patient portals where available to monitor who is accessing your records.

What should you NOT do?

  • Don't assume providers automatically share records — there is no single national electronic health record system in Canada.
  • Don't ignore breach notifications — if a provider tells you your data was compromised, take it seriously and follow up.
  • Don't share your health card number casually — it can be used for identity fraud.
  • Don't assume your employer can access your full medical details — they are only entitled to fit-for-duty information, not your diagnosis or treatment specifics.
Manitoba Law

How Manitoba differs from federal law

Patient privacy in Manitoba is protected by The Personal Health Information Act (PHIA), CCSM c. P33.5, which is one of the most comprehensive health privacy laws in Canada.

  • PHIA governs how health information custodians (doctors, hospitals, clinics, pharmacies, Manitoba Health) collect, use, disclose, and protect your personal health information.
  • Your personal health information can only be collected, used, or disclosed for purposes that are necessary and authorized under the Act. Your healthcare provider cannot share your records with others without your consent, except in limited circumstances (such as providing information needed for your treatment, mandatory public health reporting, or court orders).
  • You have the right to access your own health records. A custodian must respond to your access request within 30 days.
  • You have the right to request corrections to your health records if information is inaccurate or incomplete.
  • Health information custodians must have security safeguards in place to protect your information from unauthorized access, theft, loss, or destruction.

Additional Steps in Manitoba

To access your health records, submit a written request to your healthcare provider or the health facility. They must respond within 30 days. If you believe your health information was improperly accessed or disclosed, file a complaint with the Manitoba Ombudsman (who oversees PHIA compliance) at 204-982-9130 or 1-800-665-0531. The Ombudsman can investigate and make recommendations.

Relevant Law: The Personal Health Information Act, CCSM c. P33.5

Common Questions

When does patient privacy apply?

Every patient whose health information is collected by healthcare providers, hospitals, pharmacies, or labs.

What should I do if my health information in Canada was disclosed without my permission?

Request your medical records in writing — the provider must respond within approximately 30 days.Ask who has access to your health information and why.Request corrections if you find errors in your medical records.File a complaint with the provincial privacy commissioner if your health information is disclosed without your consent.Use patient portals where available to monitor who is accessing your records.

What mistakes should I avoid with patient privacy?

Don't assume providers automatically share records — there is no single national electronic health record system in Canada.Don't ignore breach notifications — if a provider tells you your data was compromised, take it seriously and follow up.Don't share your health card number casually — it can be used for identity fraud.Don't assume your employer can access your full medical details — they are only entitled to fit-for-duty information, not your diagnosis or treatment specifics.

Patient Privacy in other states

Same topic, different jurisdiction. Pick the one that applies to you.

More in Healthcare Rights

Medicare and Universal Coverage (in Manitoba)The federal Canada Health Act (CHA) sets five principles that every province and territory must follow to receive federa...Read more →Informed Consent (in Manitoba)Before any treatment, you have the right to receive clear information so you can make an informed decision. This include...Read more →Emergency Care (in Manitoba)Emergency departments in Canada assess and treat patients based on medical urgency, not your ability to pay or insurance...Read more →

Related Topics

Family LawSpousal Support (in Manitoba)Workers' RightsWrongful Dismissal (in Manitoba)
← Browse all Healthcare Rights

Last verified:

You came here to know your rights — help someone else know theirs.

Support This Mission