7.1  The Scotiabank Group Member safeguards personal information from loss or theft, and from unauthorized access, disclosure, duplication, use, or modification.

7.2  The Scotiabank Group Member's safeguards vary depending on the sensitivity, amount, distribution, format, and storage of the personal information. The Scotiabank Group Member gives the highest level of protection to the most sensitive personal information.

7.3  The Scotiabank Group Member safeguards personal information through security measures. For example:

• Physical security, such as secure locks on filing cabinets and restricted access to offices.
• Organizational security, such as controlled entry in data centres and limited access to relevant information.
• Electronic security, such as passwords, personal identification numbers, and encryption.

7.4  The Scotiabank Group Member informs its staff regularly about the Scotiabank Group Member's policies and procedures for protecting customers' personal information, and emphasizes the importance of complying with them. As a condition of employment, employees are required to conform to the Scotiabank Group Member's policies and procedures.

7.5  The Scotiabank Group Member may disclose personal information to third parties for printing cheques, data processing services or administrative services, collection, or for other goods and services. The Scotiabank Group Member requires these third parties to safeguard all personal information in a way that is consistent with the Scotiabank Group Member's measures, or as regulated by law.

7.6  The Scotiabank Group Member may, with the customer's consent, disclose personal information to businesses such as, credit bureaus, credit insurers and lenders, and with regards to insurance products; medical information to Insurance Crime Prevention Bureaus, insurer's advisory organizations, underwriting and claims information networks. The Scotiabank Group Member uses procedures and/or contracts to protect the privacy of that personal information. The Scotiabank Group Member relies on the added protection of credit reporting legislation to ensure that credit bureaus protect personal information.

7.7  As referred to in section 5.6, the Scotiabank Group Member uses care when disposing of or destroying personal information, to prevent unauthorized access to the information.