What is a Privacy Impact Assessment?
In accordance with section 69 of the Freedom of Information and Protection of Privacy Act, public bodies (including UNBC) must complete a Privacy Impact Assessment for new and changing activities, initiatives, programs, projects, and systems. Privacy Impact Assessments support UNBC by ensuring personal information under the custody and control of UNBC is adequately protected, handled transparently, handled with accountability, and disposed of when no longer required.
If Privacy Impact Assessments are completed early in the project timeline, they can provide current and future cost savings by identifying privacy risks early to prevent investment in information management practices, products, and services that do not meet FIPPA requirements. The PIA can make the difference between privacy invasive and privacy enhancing initiatives.
The PIA process is also designed as an education and accountability tool. The drafter or project manager needs to know all of the details regarding how information is managed on internal systems, in software and by service providers, and be able to communicate information management practices concisely and transparently before the PIA can be completed. UNBC, and the individual departments within UNBC, are responsible for managing personal information in our custody and control, even if the personal information is in the custody of external service providers or contractors.
Are you planning to implement a new activity, initiative, program, project or system? Complete your PIA today!
Download the Privacy Impact Assessment Form, fill in as much of the form as you can, and submit to the Information Governance Officer. Please provide at least two weeks in your project timeline before implementation for the Privacy Impact Assessment to be reviewed. This additional time allows any questions to be addressed and any clarification requests addressed before the project deadline. The Information Governance Officer will schedule a meeting with you to go through the questions to ensure all required information is captured.
For more information on PIAs in British Columbia, please visit: http://www2.gov.bc.ca/gov/content/governments/services-for-government/information-management-technology/privacy/privacy-impact-assessments