|
A. Resources for Individuals and Organizations B. Resources for CA Firms C. Presentations A. Resources for Individuals and Organizations 1. Records Management - Integrating Privacy Using Generally Accepted Privacy Principles This paper discusses the importance of designing privacy into an organization’s records management program and how that can be accomplished using Generally Accepted Privacy Principles (GAPP). This publication will - explain what is personal information and why privacy is an important business issue.
- identify privacy concerns regarding records management.
- explain how GAPP can be used to integrate privacy into a records management program.
Click here to download for free. 2. Map of Canadian Privacy Laws  The map presents the privacy laws applicable in each jurisdiction in Canada.
Click here to download. for free.
3. 20 Questions Businesses Should Ask About Privacy. Click here to download for free. This publication describes the most important questions on privacy that businesses should know the answers to. It serves as a good introduction for businesses in the process of developing their privacy programs and is a useful checklist for businesses who have already implemented a privacy initiative. 4. Incident Response Plan This Incident Response Plan Template can be used to help you design, develop or adapt your own plan and better prepare you for handling a breach of personal information within your organization. This template is intended to be comprehensive. Smaller organizations can use it as a model to identify key steps and processes that need to be considered by any organization regardless of size should an incident such as a privacy breach occur. Click here to download for free. Or click here to download free Word document. 5. Solutions for Today's Privacy Issues – Privacy Resource Guide The Privacy Resource Guide is an 11-chapter binder and CD-ROM offering knowledge, tools and methods to organizations to assist them to assess privacy risk, to benchmark their privacy program, to design and implement an appropriate privacy policy and to manage and sustain privacy policies and procedures against measurable criteria. For members in industry and businesses in general , the Privacy Resource Guide describes how to develop sound privacy programs with appropriate controls to minimize risks. It saves businesses time and money by providing templates that can easily be adapted to meet there needs and by offering audit checklists that management can use to self-assess their privacy program and identify areas for improvement. It contains useful material for management including chapters on designing privacy policies and communications, developing privacy procedures and controls, implementing the privacy program and sustaining and managing the privacy program. To order, visit https://www.knotia.ca/kStore/Home.cfm or call the CICA order department at 416-977-0748 (Toronto) or 1-800-268-3793 (rest of Canada). Item #02980 $250.00 6. Privacy Compliance: A Guide for Organizations & Assurance Practitioners. Click here to download for free. This 80 page guide defines "privacy", summarizes the requirements of the PIPEDA legislation, and identifies issues to consider in developing, implementing, and monitoring an organization's privacy program. For members in industry and businesses in general , the guide provides advice on developing, implementing, and monitoring their privacy policies and procedures. It also includes a privacy readiness assessment checklist. B. Resources for CA Firms 1. Privacy Guidance for CA Firms. Click here to download for free. There have been a number of publications designed to assist organizations in dealing with privacy. None have been published, however, that are specifically intended to assist public accounting firms in assessing the impact on PIPEDA on either the services they provide or the management of their practice. This document highlights many of the privacy issues that a practitioner must face when providing professional services to its clients. It also highlights some of the privacy issues a practitioner or firm must address in managing a practice. It includes useful guidance on assessing privacy risk when providing professional services and sample privacy policy disclosures that can be tailored to the specific circumstances of any firm or practitioner. Some of the key issues addressed include: - Identifying personal information and affording it appropriate treatment;
- Policies for documenting personal information in client files;
- Policies for staff access to files;
- Policies for file security.
2. Impact of Federal Privacy Legislation on Professional Services Provided by Practitioners. As part of the Assurance Standards Risk Alert newsletter, Impact of Federal Privacy Legislation on Professional Services Provided by Practitioners describes how the new federal privacy laws affect the audit and other professional services offered by practitioners. 3. Solutions for Today's Privacy Issues – Privacy Resource Guide For members in practice, the Privacy Resource Guide serves as a reference of practical procedures, methods and tools for providing value-added privacy services for all types of organizations. It includes templates and audit checklists that make it easy for practitioners to transition their audit and advisory skills in to the privacy area. It provides useful guidance to practitioners who may be asked to provide or are providing professional help to clients with respect to privacy. The guide provides useful material to help a practitioner provide privacy assurance including practical help in preparing engagement letters, engagement planning, engagement execution and reporting. The guide is supplemented by useful tools including samples of worksheets, forms and checklists used in practice. These are designed so that they can be adapted easily. To order, visit https://www.knotia.ca/kStore/Home.cfm or call the CICA order department at 416-977-0748 (Toronto) or 1-800-268-3793 (rest of Canada). Item #02980 $250.00 4. Privacy Compliance: A Guide for Organizations & Assurance Practitioners. Click here to download for free. For members in practice, the guide provides advice on assessing management's compliance with the PIPEDA requirements and includes a privacy compliance control checklist.
C. Presentations 1. Building a Privacy Program Using Generally Accepted Privacy Principles (GAPP) - June 2007. Click here to download. 2. Top Privacy Issues in a Public Accountancy - August 2007. Click here to download.
|