Privacy Impact Assessments

In 2002, Treasury Board issued a policy that requires federal government institutions subject to the Privacy Act to conduct Privacy Impact Assessments (PIA) before establishing new programs, systems or policies or before making any substantial modifications to an existing program, system or policy.

During this reporting period, WD did not initiate any Privacy Impact Assessments (PIA) and, therefore, no assessments were forwarded to the Office of the Privacy Commissioner.

One Preliminary PIA (PPIA) for its Server Consolidation Phase 2 – Exchange 2003 Upgrade was undertaken and the ATIP Coordinator concurred with the findings that a full PIA was not required.  This information was forwarded to the Privacy Commissioner; no additional measures were proposed.  There was no disclosure of personal information as part of the server upgrade project.

To date, WD has not posted PPIA summaries on its institutional website.

1. Data Matching and Sharing Activities
   
   WD did not establish any new systems or processes which lead to data matching or sharing of personal information, either within the Department or any external sources.

Complaints and Investigations

In 2006-2007, WD did not received any complaints under the Privacy Act, and was not involved in any litigation throughout the reporting period.

Appeals to the Court

No appeals to the Federal Court were filed under the Privacy Act during the 2006-2007 reporting period.