What is PIPEDA (Personal Information Protection and Electronic Documents Act)? How does PIPEDA restrict the use of personal information by organizations?

Information systems questions

Business Processes and Information Systems:

Mini case: A customer just visited his doctor and got a prescription. The prescription is about getting one medicine which has one refill. Assuming you are a manger in a pharmacy where this customer will fill the prescription.

Q1, Please break the pharmacy IS (information system) business process (starting from the time point when a prescription arrives at your pharmacy to the time point when this customer receives all the medicine including the refill) into 10-15 smaller IS-related business processes. For each smaller business process, please identify and describe the 4 components of that business process (i.e. activity, resource, facility, and information).  Note: You can either draw a graph or use text. Any format will do as long as the contents of your analysis are correct.

Q2. At each of these business processes, if an IS is used, please identify its components: IT (hardware, software, networks, data), people, and business process.

Q3. As a manager of a pharmacy, how can you improve some of the small business processes (i.e. those in Q1) with a new IS or a new IS function in order to create more business value?

IT governance and privacy

Q4. What is PIPEDA (Personal Information Protection and Electronic Documents Act)? How does PIPEDA restrict the use of personal information by organizations? Can an individual sue an organization because of PIPEDA?

Q5. What kind of policies should you set up in your pharmacy in order to comply with PIPEDA?

Thanks