Curious if anyone has experience with the Personal Information Protection and Electronic Documents Act enacted in Canada.  Part 6 documents MODEL CODE FOR THE PROTECTION OF PERSONAL INFORMATION, CAN/CSA-Q830-96.  Is this considered part of the actual law, an implementation standard much like the Privacy Rule is to HIPAA in the US or is this more of guiding principles similar to what the Federal Trade Commission would publish in the US?  I was specifically looking at data sanitization and disposal requirements.  Part 6 contains provisions but I don't see anything elsewhere in the legislation. 
 

Here's the link to what I'm looking at: 

http://laws.justice.gc.ca/en/P-8.6/text.html