COLLECTION, MANAGEMENT, SECURITY OF AND ACCESS TO INFORMATION RECORDS

Similar documents
IT Security and Employee Privacy: Tips and Guidance

PRIVACY POLICY. In this policy, the terms Adelaide Unicare and The Practice are used interchangeably and mean the same.

GENERAL INSURANCE STATISTICAL AGENCY

DATA PROTECTION POLICY

Best Practices for Protecting Individual Privacy in Conducting Survey Research (Full Version)

NOTE: SERVICE AGREEMENTS WILL BE DRAFTED BY RISK SERVICES SERVICE AGREEMENT

THE PERSONAL INFORMATION PROTECTION AND ELECTRONIC DOCUMENTS ACT (PIPEDA) PERSONAL INFORMATION POLICY & PROCEDURE HANDBOOK

Zinc Recruitment Pty Ltd Privacy Policy

City of Bellevue Records and Information Management Program

Report of the Information & Privacy Commissioner/Ontario. Review of the Canadian Institute for Health Information:

Final Version 1.0 December 2015

Order F14-16 PRIVATE CAREER TRAINING INSTITUTIONS AGENCY. Ross Alexander Adjudicator. June 2, 2014

Chapter 91. Regulation 68 Patient Rights under Health Insurance Coverage in Louisiana

3. Consent for the Collection, Use or Disclosure of Personal Information

PIPA and the Hiring Process

A Guide to Ontario Legislation Covering the Release of Students

Alberta Employment, Immigration and Industry. Outbound Call Program Privacy Scan

Accountable Privacy Management in BC s Public Sector

VIDEO SURVEILLANCE GUIDELINES

AITKIN COUNTY GUIDELINES AND PROCEDURES FOR MINNESOTA GOVERNMENT DATA PRACTICES ACT. Aitkin County

British Columbia Ministry of Education. Provincial Guidelines: Maintenance of Order under section 177 of the School Act

NC General Statutes - Chapter 108A Article 4 1

THE CITY UNIVERSITY OF NEW YORK FERPA RELEASE FORM PERMISSION FOR ACCESS TO EDUCATIONAL RECORDS

ASPEN AUSTRALIA BRANCH PRIVACY POLICY

INTRODUCTION...3 THE FREEDOM OF INFORMATION AND PROTECTION OF PRIVACY ACT...3 THE INFORMATION AND PRIVACY COMMISSIONER...5

Technical Panel of Nebraska - 30-Day Comments Period

ELECTRONIC TRANSACTIONS ACT

ALTA Title Insurance & Settlement Company Best Practices

Information Governance Policy

Document Management in the FIPPA Era

APPENDIX II PLAN OF OPERATIONS

Dispute Resolution Procedures for Administrative/Professional and Clerical/Service Staff Members

INFORMATION SHARING PROTOCOL UNDER THE YOUTH CRIMINAL JUSTICE ACT (CANADA)

APPENDIX A PRIVACY AND SECURITY STANDARDS AND IMPLEMENTATION SPECIFICATIONS FOR NON-EXCHANGE ENTITIES

4. LSS may direct that a case enter CCM where factors of the case suggest the need for case management.

Common Student Information System for Schools and School Boards. Project Summary

ORDER MO-2206 Appeal MA City of Ottawa

Final. National Health Care Billing Audit Guidelines. as amended by. The American Association of Medical Audit Specialists (AAMAS)

Parent Rights & Responsibilities in Nevada Early Intervention

Privacy and Management of Health Information: Standards for CARNA s Regulated Members

Part B PROCEDURAL SAFEGUARDS NOTICE

Instant Messaging and Personal Accounts: Meeting Your Access and Privacy Obligations

PRIVACY ACT COMPLIANCE

PART B NOTICE OF PROCEDURAL SAFEGUARDS PARENTAL RIGHTS FOR PUBLIC SCHOOL SPECIAL EDUCATION STUDENTS

North American Electric Reliability Corporation. Compliance Monitoring and Enforcement Program. December 19, 2008

Kiran Mishra, Ph.D. Licensed Clinical Psychologist. Sugar Land, TX (832) TEXAS NOTICE FORM

Brian Beamish. Commissioner (Acting) Ontario Information and Privacy Commission. Cyber Risk National Conference February 9, 2015

LEGAL UPDATE INFORMATION AND PRIVACY DECISION USE OF EMPLOYEE MONITORING SOFTWARE BY THE DISTRICT OF SAANICH

Code of Conduct For Subscribers

Moving Information: Privacy & Security Guidelines

Data Protection Policy

ORDER OF THE DIRECTOR OF THE COMMUNICATIONS REGULATORY AUTHORITY OF THE REPUBLIC OF LITHUANIA

Access and Privacy Manual

PRIVACY POLICY. Effective: January 1, 2014 Revised: March 19, Privacy Policy Page 1 of 7

Protection. Code of Practice. of Personal Data RPC001147_EN_D_19

ORDER PO Appeal PA Ministry of Community and Social Services. January 28, 2016

Pneumoconiosis and Mesothelioma (Compensation) (Assessment of Levy) Regulations (6 of 2008 s. 31) (Cap 360 section 47)

PRIVACY BREACH! WHAT NEXT?

PUBLIC RECORDS REQUEST POLICY City of Urbandale, Iowa Approved: June 23, 2015 (CL4924)

Part B PROCEDURAL SAFEGUARDS NOTICE

Illinois Freedom of Information Act Frequently Asked Questions By the Public

ROEHAMPTON UNIVERSITY DATA PROTECTION POLICY

TORONTO MUNICIPAL CODE CHAPTER 140, LOBBYING. Chapter 140 LOBBYING. ARTICLE I General Restriction on application (persons and organizations).

FACS Community Complaints Guidelines for Ageing and Disability Direct Services

Conducting Surveys: A Guide to Privacy Protection. Revised January 2007 (updated to reflect A.R. 186/2008)

Public Information Program

Data Protection Policy

CHAPTER 3. LIFE, ACCIDENT, AND HEALTH INSURANCE AND ANNUITIES Subchapter QQ, Provider Network Contract Registration 28 TAC

United States Trustee Program

The Manitoba Child Care Association PRIVACY POLICY

Chapter 4. Case Disposition

Glyncoed Primary School. Data Protection Policy

PRIVATE HEALTH INSURANCE INTERMEDIARIES. DOCUMENT 1: Self-Audit Guide for All Members of PHIIA JUNE 2015 VERSION 2

TREASURY INSPECTOR GENERAL FOR TAX ADMINISTRATION

Financial Advisors Bill: Further Submission

Privacy and Security Resource Materials for Saskatchewan EMR Physicians: Guidelines, Samples and Templates. Reference Manual

Approval Review Process: Baccalaureate Nursing Programs in New Brunswick

COLLECTION OF VOLUNTARY ABORIGINAL STUDENT SELF-IDENTIFICATION INFORMATION BY THE MINISTRY OF EDUCATION. Q and A s

NOTICE OF PRIVACY PRACTICES for the HARVARD UNIVERSITY MEDICAL, DENTAL, VISION AND MEDICAL REIMBURSEMENT PLANS

INVESTIGATION REPORT

Data Protection policy approved by the Governing Body of Ifield Community College. Ifield Community College Data Protection Policy

United States Government Accountability Office March 2011 GAO

MARYLAND RULES OF PROCEDURE TITLE 1 GENERAL PROVISIONS CHAPTER 100 APPLICABILITY AND CITATION

Cloud Computing: Privacy and Other Risks

Responsibilities of Custodians and Health Information Act Administration Checklist

External Review Request Form

REASONABLE ACCOMMODATION PROGRAM

Information and Privacy Commissioner of Ontario. Guidelines for the Use of Video Surveillance Cameras in Public Places

Early Intervention Central Billing Office. Provider Insurance Billing Procedures

SCHEDULE "C" to the MEMORANDUM OF UNDERSTANDING BETWEEN ALBERTA HEALTH SERVICES AND THE ALBERTA MEDICAL ASSOCIATION (CMA ALBERTA DIVISION)

Terms of Business for Registered Support Providers

How To Enforce The Insurance Regulation

Trustees of the College of the Holy Cross

ONLINE PRIVACY POLICY

POLICY STATEMENT 5.17

RADIATION HEALTH ADMINISTRATION REGULATION

ADULT REGISTRATION FORM. Last Name First Name Middle Initial. Date of Birth Age Identified Gender. Street Address. City State Zip Code

HYDE PARK PEDIATRICS

Catalyst Consulting & Events (CCE) takes seriously its commitment to preserve the privacy of the personal information that we collect.

SARASOTA COUNTY GOVERNMENT EMPLOYEE MEDICAL BENEFIT PLAN HIPAA PRIVACY POLICY

Transcription:

#4.00 PREAMBLE: The management of information required by due process, legislation or regulation is an important consideration for administrators and staff of the Burnaby School District. On November 3, 1994 the Provincial Government extended coverage under the Freedom of Information and Protection of Privacy Act to local public bodies, including schools and school boards. The Board recognizes its responsibility to ensure compliance with the Act, including: i. A right of access to records held by the Board; ii. A right to personal information about themselves by employees, including the right to request a correction; iii. Specifying limited exceptions to the right of access; I. Preventing unauthorized collection, use and disclosure of personal information. OBJECTIVES 1. To clarify the Board s position regarding collection, management, access to and security of information under its control in compliance with the Act (FIPPA) and other relevant legislation. 2. To provide governing and administrative authority for administrative staff of the Board to ensure compliance with the Act (FIPPA). 3. To provide for continued informal and voluntary access to information held by the Board and to implement a formal process to provide information which may not be available through other avenues while specifying limited exceptions to that right to access under the Act (FIPPA). Cross References: Statutory: Freedom of Information and Protection of Privacy Act

REGULATIONS AND PROCEDURES #4.00.01 GOVERNING AND ADMINISTRATIVE AUTHORITY ADMINISTRATIVE REGULATIONS 1. The Burnaby School Board passed resolutions designating administrative staff who will ensure compliance with the Act in accordance with guidelines and regulations provided by the Ministry of Government Services. 2. The Board designates the Secretary-Treasurer as the official Head of the School District for the purposes of the Act. 3. The Board designates the Assistant Secretary-Treasurer as the Freedom on Information Co-ordinator, responsible for the administration of the Act. Cross References: Statutory: Freedom of Information and Protection of Privacy Act

REGULATIONS AND PROCEDURES #4.00.02 INTERNAL FORMAL PROCESS ADMINISTRATIVE REGULATIONS INTERNAL FORMAL PROCESS 1. The extension of the Freedom of Information and Protection of Privacy Act (FIPPA) to local public bodies including schools and school boards, requires the Board to establish an administrative framework to bring existing systems into compliance with the Act. 2. Provide a formal process for managing written applications for information held by the Board made under the Act. i. All written applications for information made under the Act will be directed to the Freedom of Information Co-ordinator s attention for registration, tracking, decision and correspondence. ii. Decisions to grant complete or partial access, or deny a request, will be made by the designated official head in consultation with the Co-ordinator guided by the relevant sections of the Act and the time frame specified. iii. In the event that a response to an application cannot be completed within the time frame, a written notice of extension will be drafted setting out a. The length of the extension, b. The reason(s) for the delay, c. The right of appeal to the FIPPA Commissioner. iv. A log will be kept by the Freedom of Information Co-ordinator to track formal access requests for information under the Act. The number of formal requests made under the Act by any individual may be limited as such action should normally be the avenue of last resort for those requesting information held by the Board.

v. The log will include an identification number for each request; pertinent contact information; request and receipt dates; type of information requested, i.e. general or personal; date response is due; extension information and new due date as required; copies of all correspondence; copies of appeals and appeal results. vi. Notification requirements will include acknowledgement of requests for access under the Act; requests for clarification; requests for extension of response; notice to third parties as required; approval or denial of access; notice of partial access; notice of fee changes estimate. 3. Any disputes between the Freedom of Information Co-ordinator and other departments will be forwarded to the designated Head for resolution. Cross References: Statutory: Freedom of Information and Protection of Privacy Act

REGULATIONS AND PROCEDURES #4.00.03 EXTERNAL FORMAL PROCESS ADMINISTRATIVE REGULATIONS EXTERNAL FORMAL PROCESS 1. The collection, security, management and access regarding information records will comply with the intent of the Act (FIPPA). 2. The Freedom of Information Co-ordinator will, to the best of his abilities and knowledge, ensure the accuracy of that information, its use and seek to maintain confidentiality of personal information. 3. Acknowledgement letter The Freedom of Information Co-ordinator will prepare an acknowledgement letter detailing the date received and a short description of the information requested, the identity or registration number assigned to the request and pertinent details of the person at the Board responsible for handling the request. 4. Clarification of Access Request When the request for information requires clarification the Coordinator will contact the requester by letter or telephone detailing the date of receipt of the request, the identity or registration number assigned to the request, the specific information required. 5. Notification of Time Extension As permitted under Section 10 of the Act (FIPPA), the Coordinator will contact the requester by letter detailing the reason for the delay, the additional time required, the new due date for a response and the right of appeal to the FIPPA Commissioner to review the extension. 6. Notification of Transfer of Request to another institution When the information requested is not available through the Board under Section 11 of the Act, the Co-ordinator will write to the requester detailing the original request and the name of the institution to which the request has been transferred.

7. Approval of Access Request or Approval of Partial Access Request When the request for information has been approved, the Co-ordinator will write to the requester detailing where, when and how access will be accorded. 8. Denial of Access When the request for information has been denied, the Co-ordinator will write to the requester detailing the reasons why under the Act the Board is not able to disclose the information requested and the right of appeal to the FIPPA Commissioner for a review of the decision. Cross References: Statutory: Freedom of Information and Protection of Privacy Act

REGULATIONS AND PROCEDURES #4.00.04 FEES ADMINISTRATIVE REGULATIONS FEES 1. Fees charged by the Board for information provided under the Act (FIPPA) will follow the schedule of maximum fees outlined in the FIPPA Policy and Procedures Manual, Volume II, Appendix 6. 2. Decisions to charge fees for services for formal requests made under Part 2, Section 5 of the Act will depend on the type of request and the cost of providing the information. 3. An estimate of fee costs will be provided by the Co-ordinator to the requester prior to performing the service. 4. Applicants who seek access to their own personal information will NOT be charged a fee. 5. Fees set by Regulations under the Act may be charged for a formal request under the following circumstances: Locating, retrieving and producing records; Preparing the record for disclosure; Shipping and handling the record; and Providing a copy of the record. Fees may involve hourly charges for staff time and charges for computer time. 6. Fee charges will not apply to: The first three (3) hours spent locating and retrieving records; Time spent severing information from the record; Time spent reviewing the formal request to determine whether an exception applies; and

Time spent to determine whether to sever a part of the record. 7. Fee charges may be waived by the Secretary-Treasurer as designated Head. Cross References: Statutory: Freedom of Information and Protection of Privacy Act

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information