Annual Report to Parliament on the Privacy Act: 2022 to 2023

From: Canada Border Services Agency

Chapter 1: Privacy Act report

Introduction

The Canada Border Services Agency (CBSA) is pleased to present to Parliament, in accordance with section 72 of the Privacy Act (the PA), its annual report on the management of this Act. The report describes the activities that support compliance with the PA for the fiscal year commencing April 1, 2022, and ending March 31, 2023. During this period, the CBSA continued to build on successful practices implemented in previous years.

The purpose of the PA is to extend the present laws of Canada that protect the privacy of individuals with respect to personal information about themselves held by a government institution and that provide individuals with a right of access to that information.^{Footnote 1}

As stated in subsections 72(1) and 72(2) of the PA, “Every year the head of every government institution shall prepare a report on the administration of this Act within the institution during the period beginning on April 1 of the preceding year and ending on March 31 of the current year… Every report prepared under subsection (1) shall be laid before each House of Parliament on any of the first 15 days on which that House is sitting after September 1 of the year in which the report is prepared.”^{Footnote 2}

Organization

1. About the Canada Border Services Agency

Since December 2003, the CBSA has been an integral part of the Public Safety Canada (PS) portfolio, which was created to protect Canadians and maintain a peaceful and safe society. The CBSA is responsible for providing integrated border services that support national security and public safety priorities and facilitate the free flow of persons and goods, including animals and plants, that meet all requirements under the program legislation.^{Footnote 3}

The CBSA carries out its responsibilities with a workforce of approximately 14,000 employees, including over 6,500 uniformed CBSA officers who provide services at approximately 1,200 points across Canada and at 39 international locations.^{Footnote 4}

2. Information sharing, access to information and Chief Privacy Office

The Information Sharing, Access to Information and Chief Privacy (ISATICP) Office is comprised of six units: an Administration section, three Case Management units, and two Policy units.

• The Administration section receives all incoming requests and consultations, ensures quality control of all outgoing correspondence, and supports the Case Management units in their day-to-day business
• The Case Management units assign branches and regions with retrieval requests, process requests for information under the PA, and provide daily operational guidance and support to CBSA employees
• The Access to Information and Privacy (ATIP) Policy and Governance Unit develops policies, tools, and procedures to support ATIP requirements within the CBSA and provides training to employees
• The Information Sharing and Collaborative Arrangements Policy (ISCAP) Unit maintains the policy framework for the CBSA’s information sharing and domestic written collaborative arrangements (WCAs)

On average, 85 full time equivalents, and three part time, casual and student employees were employed in the CBSA ISATICP Office during fiscal year 2022–2023.

The head of ATIP for the CBSA is the Director General and Chief Privacy Officer of the ISATICP Office, who reports directly to the Vice-President (VP) of the Strategic Policy Branch. Consistent with best practices identified by the Treasury Board of Canada Secretariat (TBS), the head of CBSA ATIP is positioned within two levels of the President and has full delegated authority.

The key to maintaining compliance with the statutory time requirements of the PA is the CBSA ISATICP Office’s ability to obtain personal information from branches and regions in an efficient manner. Supported by a network of ATIP liaison officers embedded within 16 offices of primary interest across the Regions and Branches, the ISATICP Office is well positioned to receive, coordinate, and process requests for personal information under the PA.

The CBSA ISATICP Office works closely with other members of the PS portfolio, including the Canadian Security Intelligence Service, the Correctional Service of Canada, the Parole Board of Canada, and the Royal Canadian Mounted Police, to share best practices and develop streamlined processes for the retrieval of jointly held records within the 30-day legislated time frame required to respond to privacy requests.

Activities and accomplishments

1. Performance

Fiscal year 2022–2023 saw record high volumes of privacy requests made to the CBSA. The volumes are largely attributable to individuals seeking copies of their history of arrival dates into Canada and those seeking copies of their Immigration file. In fiscal year 2022 to 2023, 49.9% of all privacy requests received by the CBSA came from individuals seeking their Immigration file. During the same period, 47.1% of all the privacy requests received by the CBSA came from individuals seeking their Traveller History Report (THR). THR and Immigration files contain information used to support requirements for programs administered by Immigration, Refugees and Citizenship Canada (IRCC) and Employment and Social Development Canada (ESDC).

In September 2012, IRCC, in consultation with the CBSA, introduced a new consent-based application form which sees applicants for citizenship provide consent on their applications for IRCC to view their travel history directly. The CBSA has allocated 100 accounts to the IRCC to verify (i.e. view only) clients’ THR to Canada. IRCC has since viewed approximately 1.86 million THR, of which 121,346 were in fiscal year 2022–2023, that might otherwise have been requested formally through the CBSA by way of formal Privacy Act, or Access to Information Act requests.

The CBSA continued to see high volumes of privacy requests submitted through the Access to Information and Privacy Online Request tool. Through this tool, the CBSA received 20,335 requests, which amounted to 94.2% of all privacy requests received by the CBSA. In November 2023, the CBSA will adopt the Online Request Services/Online Management Tool developed by TBS, which will allow it to interact with the requesters directly, and also securely disclose documents to clients.

The CBSA continued to offer the electronic format for responses to privacy requests, which amounted to 96.2% of the release packages. As a result, these requests accounted for 92% of all the pages the CBSA disclosed in their entirety or disclosed in part this fiscal year.

The CBSA also provided case-by-case policy guidance to program areas related to the disclosure of information under section 8 of the PA, section 107 of the Customs Act, and on written collaborative arrangements. In total, the CBSA received 3,733 requests for guidance in fiscal year 2022–2023, representing an increase of 39.7% over the previous year.

Finally, as per Section 73.1 of the PA, the CBSA has not provided services related to any power, duty or function conferred or imposed on the CBSA under the PA to another government institution that is under the responsibility of the Minister of Public Safety and Emergency Preparedness and has not received such services from any other such government institution.

2. Education and training

In fiscal year 2022 to 2023, the CBSA continued to provide support and guidance to employees. To do so, the Office adapted to numerous changes and explored alternative measures to delivery. The CBSA provided 10 virtual training sessions to 319 employees. The training sessions are designed to ensure that the participants fully understood their responsibilities under the PA and the Access to Information Act, with a focus on requests made pursuant to the Acts and the duty to assist principles.

The CBSA maintained the Canada School of Public Service’s (CSPS) Access to Information and Privacy Fundamentals (I015) course to the list of mandatory training. This training must be successfully completed by all persons employed by the CBSA who occupy an indeterminate or term position on a full-time, part-time or seasonal basis, as well as students and casual employees. It also must be completed within six months of joining the CBSA.

Moreover, the CBSA delivered 13 training sessions on section 107 of the Customs Act, as well as basic information sharing, disclosure of intelligence-related information, and business line specific training sessions to 273 employees. In addition, before attending the training, employees are advised to complete the interactive online training course, regarding information sharing that was developed by the CBSA.

Furthermore, the CBSA continues to raise employees’ awareness of their obligations under the PA by leveraging the CBSA’s daily newsletter as a way to provide employees with important information. The communiqués include key dates, such as Data Privacy Day, and other activities at the CBSA to promote ATIP tools and resources. Additionally, a bi-annual message is sent to employees to promote the CBSA privacy breach protocol and the importance of reporting privacy breaches.

The CBSA continues to actively participate in the TBS-led ATIP coordinators, ATIP practitioners, ADM Access to information and openness committee (ATIO) and ATIP Community meetings. These meetings provide opportunities for employees of the Office to liaise with employees from other institutions to discuss various issues and challenges that have been identified by the ATIP community.

Finally, during the summer of 2022, the Canada Border Services Agency and the Treasury Board of Canada Secretariat signed a Memorandum of Understanding (MoU) to tackle capacity issues faced by ATIP practitioners in various Government of Canada institutions. This MoU is established with institutional partners to seek contributions for fiscal year (FY) 2022-23, to establish a Communities Development Office for the ATIP communities which aims to address challenges related to recruitment, retention, as well as centralized training and professional development programs.

3. New and revised privacy-related policies and procedures

During fiscal year 2022 to 2023, the CBSA continued to revise existing policies, develop new policies, and introduce new procedures.

As per TBS Privacy Implementation Notice 2022-02, the CBSA developed an ATIP ID Verification Policy. This Policy provides direction on the requirement set out in section 4.1.4 of the Directive on Personal Information Requests and Correction of Personal Information that institutions must establish procedures to validate the identity of a requester. More specifically, this Policy formalized and enhanced the CBSA’s practices in response to the extension order, which includes foreign nationals. The CBSA has continued to ensure that identity documentation is adequately verified as it is imperative to mitigate the risk of privacy breaches while delivering government services. The CBSA balances the right of access and program delivery with identity verification to provide an effortless ATIP process to Canadian citizens, permanent residents and foreign nationals.

The CBSA has continued to take a number of measures to enhance and promote ATIP tools that are readily accessible to CBSA employees by utilizing Apollo (GCDocs). To this end, it ensures that the CBSA intranet site is up to date and available to all CBSA employees. This allows the Office to quickly share information and best practices, as well as facilitate collaboration across the CBSA.

The CBSA continued to receive ATIP related audio/video redacting requests. In response, the CBSA ISATICP Office, in partnership with the Information, Science and Technology Branch, and as part of an Innovation Solution Canada challenge initiative, was involved in a project allowing private companies to introduce applied concept for the redaction of video recording. The project ended successfully with two products brought to market, and the CBSA is currently exploring the purchase of one of the solutions for our own use.

During the second half of fiscal year 2022 to 2023, the CBSA began to use a Robotic Process Automation (RPA) tool, as it became fully operational, to register new incoming access to information and privacy requests without the requirement for human intervention. The CBSA is working on expanding the use of RPA tools to perform other routine processes to create further efficiencies in order to better respond to increasing volumes.

The CBSA remains an active and key participant in the PA Modernization working group, to help establish the CBSA’s position on the modernization of this Act. The CBSA believes that a modernized Act should facilitate the government work while continuing to respect individuals’ privacy rights and the Canadian Charter of Rights and Freedom. The CBSA will continue to develop policy options, and to work on transition advice, alongside the Department of Justice, in the modernization of the PA.

During the fiscal year 2022 to 2023, the CBSA approved and published two updated national information sharing policies:

• The Policy on the Order in Council to the CBSA, as well as a number of working tools, to aid in the day-to-day management of activities related to the Order in Council (OiC) and the Avoiding Complicity in Mistreatment by Foreign Entities Act (ACA). This milestone marks the completion of the first phase of implementation for the updated policy and governance framework
• The Policy on sharing information pursuant to the Security of Canada Information Disclosure Act (SCIDA) which provides functional guidance on the disclosure of CBSA program information to specific federal departments with a security of Canada mandate

The CBSA also introduced the updated Policy and Guide for the Development of Written Collaborative Arrangements (WCA). The updated policy provides a standardized step-by-step guide for the development of domestic WCAs, including a simplified WCA Flowchart and WCA templates.

The CBSA continued to provide the service of informally reviewing CBSA records for internal programs as if they had been requested under the PA. The intent was for proactive publication. The Office received 150 internal requests of this nature in fiscal year 2022 to 2023.

The CBSA closely monitors the time it takes to process privacy requests. Monthly reports, which show trends and performance, are submitted to the Assistant Directors, the Director of the Case Management units, and to the Director General and Chief Privacy Officer of the ISATICP Office. Finally, monthly reports consisting of statistics on the performance of the offices of primary interest are also distributed to all ATIP liaison officers.

4. Reading room

The CBSA, in accordance with the PA, maintains a reading room for applicants who wish to review material in person at the CBSA. Applicants may access the reading room by contacting the CBSA's ISATICP Office by telephone at 343-291-7021 or by sending an email to atip-aiprp@cbsa-asfc.gc.ca. The reading room is located at:

Place Vanier Complex
14 flr Tower A
333 N River Rd
Ottawa ON  K1A 0L8

5. Audits of, and investigations into the privacy practices of the Canada Border Services Agency

In 2022 to 2023, the ISATICP Office underwent a review conducted by the Agency’s Internal Audit and Program Evaluation. The review focused on the Management of Written Collaborative Arrangements (WCA). The review was completed in fiscal year 2022 to 2023 and the recommendations are as follows:

Further, an audit of the Management of Information Technology Security (MITS) – Phase III was conducted in fiscal year 2022 to 2033 and the recommendation is as follow:

6. Privacy impact assessments

In fiscal year 2022 to 2023, the CBSA did not complete any privacy impact assessment (PIA). Despite not having completed any PIAs, the CBSA continued to work closely with program areas on many initiatives that are in the process of completion in 2024, such as:

The Canada Border Services Agency (CBSA) Assessment and Revenue Management (CARM)

This project is a multi-year initiative that will transform the collection of duties and taxes for goods imported into Canada. Through CARM, the CBSA will modernize and streamline the process of importing commercial goods. Once fully implemented, CARM will:

• simplify the overall importing process
• provide a modern interface for importing into Canada
• give importers self-service access to their information
• reduce the cost of importing into Canada
• improve consistency of compliance with trade rules

ArriveCAN Primary Inspection Kiosk PIA Annex

In partnership with Public Health Agency of Canada (PHAC), and in response to COVID-19, the CBSA introduced the ArriveCAN app. ArriveCAN allowed travellers to electronically provide the Government of Canada their contact, quarantine, and health screening information under the Quarantine Act. Expanding on the success of the Primary Inspection Kiosk platform and the ArriveCAN service, the CBSA leveraged and improved existing technologies to facilitate travel and made ArriveCAN a one-stop tool for submitting advance travel information, eliminating the need to use two separate platforms and capitalizing on the higher user uptake and familiarity with the brand. After consultation with the Office of the Privacy Commissioner (OPC), the CBSA will be writing an independent ArriveCAN PIA after PHAC has relinquished their portion of the ArriveCAN application.

Preclearance

Preclearance is a border management program designed to enhance border security, improve cross-border flow of legitimate travellers and goods and allow for border infrastructure to be used more efficiently. Preclearance allows border officers of the inspecting country to determine the admissibility of travellers and goods before they enter into the territory of the inspecting country. In Canada, United States air preclearance has been in place and operating successfully since the 1950s.

Alcohol, Tobacco, Firearms and Explosives (ATF) and Drug Enforcement Administration (DEA) Memorandum of Understanding (MOU)

On February 23, 2021, Prime Minister Justin Trudeau and United States President Joseph R. Biden met and unveiled the Roadmap for a Renewed US-Canada Partnership, detailing commitments on various issues, including the illegal cross-border flows of firearms, drugs, and currency, organized crime, mass marketing fraud, and human trafficking. This commitment led to the development of Memorandum of Understandings between the CBSA and US Bureau of Alcohol, Tobacco, Firearms and Explosives (ATF) and Drug Enforcement Administration (DEA). A PIA was written to describe and assess the MOUs as well as the processes followed in responding to and requesting information from the ATF and DEA.

Update to the Alternatives to Detention PIA

Significant funds were allocated pre-pandemic to create the Alternative to Detention (ATD) program, aiming to modernize how the CBSA interacts with supervised immigrants and refugees entering Canada. The program provides the CBSA with more monitoring options, offering flexibility to agents and a humane experience for those under supervision. The ATD Program initially included Community Case Management Supervision (CCMS), the Voice Reporting System (VRS), and Electronic Monitoring (EM) ankle bracelets. However, the VRS was a pilot program to assess technology options and operational viability. It is set to expire in February 2024. The new ReportIN system replaces VRS, improving verification accuracy with facial recognition and introducing two-way messaging between CBSA officers and clients for instant communication.

Digital Workplace

The Digital Workplace program, aligned with the Government of Canada's digital strategy and the Policy on Service and Digital, is an initiative by the CBSA to establish a fully digital workforce. Starting with the implementation of M365 services, specifically Teams Chat, in May 2020 as a response to the pandemic, the program initially focused on providing communication and collaboration tools like MS Teams to enable virtual work for CBSA employees. The program's development and implementation were expedited due to the global pandemic, the adoption of Microsoft cloud services, and the Digital Communications and Collaboration Project (DCCP) led by Shared Services Canada (SSC). The DCCP serves to validate the strategy, approach, and network reliability for the broader migration of the Government of Canada to a unified and modern digital communications and collaboration service toolset.

The full executive summaries for previous PIAs completed can be found on the CBSA’s Privacy impact assessments.

Finally, the CBSA continued playing a critical role in ensuring that all privacy implications were considered during the development of programs and has remained committed to ongoing collaboration with the OPC for the development of our PIAs.

Disclosures made pursuant to paragraph 8(2)(e) of the Privacy Act

During the 2022 to 2023 fiscal year, the CBSA made 226 disclosures pursuant to paragraph 8(2)(e) of the PA.

Disclosures made pursuant to paragraph 8(2)(m) of the Privacy Act

During the 2022 to 2023 fiscal year, the CBSA made two public interest disclosure pursuant to paragraph 8(2)(m) of the PA.

Disclosure pursuant to 8(2)(m)(i) – Public Interest Disclosure

The disclosure was to inform next of kin of a death that occurred while an individual was in custody in a detention center. The Office of the Privacy Commissioner was notified after the disclosure had occurred due to the urgency of the notification. The media was also notified, however, the disclosure included limited information.

Disclosure pursuant to 8(2)(m)(ii) – Benefit to the individual

The disclosure was to conduct a wellness check due to threats of self harm. As the threat raised concerns for the safety of the individual, the CBSA verified with local Police if they would provide assistance. The police service stated that they considered this to be a serious matter and that an officer(s) would be dispatched to conduct a “wellness check”. The Office of the Privacy Commissioner was notified after the disclosure had occurred due to the urgency of the notification.

Delegation order

See Annex A for a signed copy of the delegation order.

Chapter 2: Statistical report

Statistical report on the Privacy Act

See Annex B for the CBSA's statistical report on the Privacy Act (the PA).

Interpretation of the statistical report

1. Requests received and completed under the Privacy Act

The CBSA received 21,577 privacy requests in fiscal year 2022–2023, which was an increase of 51.6% compared to the previous year. Moreover, the CBSA responded to 18,773 PA requests, representing 78.4% of the total number of requests received and outstanding from the previous reporting periods. Finally, the CBSA processed 362,877 pages under the PA.

For the past five years, the CBSA has consistently been among the top government departments and agencies in terms of the number of PA requests received. While receiving a substantial number of requests each year, the CBSA has consistently been one of the top performing institutions, responding within legislative timeframes more than 90% in a year which saw the greatest number of requests received.

Text description

Access to information requests received/completed

Fiscal year	Requests received	Completed requests
2018 to 2019	13,447	13,873
2019 to 2020	14,102	13,866
2020 to 2021	11,997	12,126
2021 to 2022	14,230	13,086
2022 to 2023	21,577	18,773

2. Completion time

In fiscal year 2022 to 2023, a total of 18,773 requests were completed. The graph below presents the response times for the requests that the CBSA completed during this fiscal year.

Text description

Response times for the requests that the CBSA completed this fiscal year (days)

Completion time (days)	Number of requests
121 or more	278
61 to 120	539
31 to 60	2,435
30 or less	15,521

Of the 18,773 completed requests, the CBSA was successful in responding to 95.5% within the legislated timelines, an increase from the 94.2% achieved last fiscal year.

The chart below provides an overview of the disposition of these completed requests.

Text description

Disposition of completed requests

Fully disclosed	62.14%
Partially disclosed	29.66%
No records exist	2.15%
Request abandoned	5.99%
Other	0.06%

Of the completed requests, 10,590 records were fully disclosed and 6,983 were partially disclosed. See Annex B for all the details on the disposition of the completed requests.

Of the 5,184 requests carried over to fiscal year 2023–2024, 424 were on time and 4,760 were late. The graph below provides an overview of the requests carried over that were within or beyond legislated timelines.

Text description

Outstanding requests carried over

Fiscal year	Requests within legislated timelines	Requests beyond legislated timelines
2016 to 2017	0	0
2017 to 2018	0	3
2018 to 2019	0	11
2019 to 2020	0	67
2020 to 2021	34	290
2021 to 2022	618	1,357
2022 to 2023	420	4,157

See Annex C for all the details related to the number of outstanding requests carried over to next fiscal year.

3. Extensions

In total, 1,546 extensions were applied for during fiscal year 2022 to 2023. This represents a significant decrease in extensions in comparison to the previous fiscal year. The implementation of a more robust processing solution for immigration requests reduced reliance on extensions. Extensions were applied 99.9% of the time because of workload and meeting the original 30-day time limit would have resulted in unreasonable interference with the CBSA operations. The remaining 0.1% of the time was for consulting with third parties or other government institutions, or for additional time for translation purposes or for the purposes of converting the personal information into an alternative format.

4. Consultations received from other institutions and organizations

In 2022 to 2023, the CBSA completed 57 consultation requests from other government institutions and organizations. This represents a decrease of 5% in comparison to the previous fiscal year. To respond to these requests, 1,224 pages were reviewed, an increase of 54.2% from the previous fiscal year.

5. Completion time of consultations on Cabinet confidences

Although Cabinet confidences are excluded from the application of the PA (section 70), the policies of TBS require agencies and departments to consult their legal services to determine if requested information should be excluded. If there is any doubt or if the records contain discussion papers, legal counsel must consult the Office of the Counsel to the Clerk of the Privy Council Office (PCO).

In 2022 to 2023, the CBSA did not consult CBSA Legal services regarding Cabinet confidence exclusions, due to the fact that requesters are excluding Cabinet confidences from their requests.

6. Complaints and investigations

Subsection 29(1) of the PA describes how the Office of the Privacy Commissioner of Canada (OPC) receives and investigates complaints from individuals regarding their personal information held by a government institution. Examples of complaints the OPC may choose to investigate include a refusal of access to personal information; an allegation that personal information about an individual that is held by a government institution has been misused or wrongfully disclosed; or failure to provide access to personal information in the official language requested by the individual.

For 2022 to 2023, 69 PA complaints were filed against the CBSA, which represents an increase of 64.3% compared to fiscal year 2021 to 2022. For context, the number of complaints filed relate to only 0.4% of the 18,773 privacy requests completed during this period. The complaints received during the fiscal year were related to the following issues: time delay (52); application of exemptions (4); missing / incomplete records (2); early resolution (1); use and disclosure (8); and collection (2).

Of the 42 complaints that were closed in fiscal year 2022–2023, 12 were deemed well-founded, and one was deemed not well-founded. Additionally, 27 complaints were resolved; none were discontinued; and two were settled. Where complaints are substantiated, the matter is reviewed by the delegated Assistant Directors and processes are adjusted if required.

At the end of fiscal year 2022 to 2023, the CBSA had 87 active complaints that were outstanding from previous reporting periods. The graph below provides an overview of the active complaints that are outstanding.

Text description

Outstanding active complaints

Fiscal year	Active complaints
2015 to 2016 or earlier	1
2016 to 2017	0
2017 to 2018	4
2018 to 2019	8
2019 to 2020	2
2020 to 2021	4
2021 to 2022	11
2022 to 2023	57

7. Privacy breaches

There were no material privacy breaches reported during fiscal year 2022–2023.

8. COVID-19: Impact on the CBSA ISATICP Office

Since the beginning of the pandemic, the CBSA has played a critical role in managing the border in a safe and efficient manner, contributing to the health and security of Canadians. During fiscal year 2022 to 2023, many CBSA employees were reassigned, and called upon to work around the clock to provide critical and essential services to Canadians and travelers. Despite the implementation of these new measures, the CBSA was able to maintain the ability to process requests received under the PA in a timely manner, responding to requests within their statutory timelines in more than nine out of 10 cases.

This success is also due to the implementation of interim measures for processing PA requests and the office already had remote access capability which enabled the employees to continue to work from home. In September 2022, the CBSA ISATICP Office partially returned to the office and documents classified as secret were once again accessible.

During this period, the CBSA collaborated closely with TBS and coordinators in the access to information and privacy community. Every two weeks, the CBSA has completed the TBS request capacity questionnaire on the status of ATIP offices during COVID-19, which is being published on the Open Government website.

9. Conclusion

The achievements portrayed in this report reflect the CBSA’s commitment to ensuring that every reasonable effort is made to meet its obligations under the PA. The CBSA strives to provide Canadians with their personal information to which they have a right in a timely and helpful manner while protecting the privacy rights of all Canadians.

Annex A: Delegation order

Annex B: Statistical report

Statistical report on the Privacy Act on the Privacy Act

Name of institution: Canada Border Services Agency

Reporting period: April 1, 2022 to March 31, 2023

Section 1: Requests under the Privacy Act

Section 2: Informal requests

Section 3: Requests closed during the reporting period

3.5 Complexity

3.6 Closed requests

3.7 Deemed refusals

Section 4: Disclosures under subsections 8(2) and 8(5)

Section 5: Requests for correction of personal information and notations

Section 6: Extensions

Section 7: Consultations received from other institutions and organizations

Section 8: Completion time of consultations on cabinet confidences

Section 9: Complaints and investigations notices received

Section 10: Privacy impact assessments (PIA) and personal information banks (PIB)

Section 11: Privacy breaches

Section 12: Resources related to the Privacy Act

Annex C: Supplemental statistical report on the Privacy Act

Section 1: Capacity to receive requests

Section 2: Capacity to process records

Section 3: Open requests and complaints

Section 5: Social Insurance Number (SIN)

Section 6: Universal Access under the Privacy Act