This management action plan identifies the steps the Board will take to address the recommendations from the report of the Office of the Comptroller General entitled Horizontal Internal Audit of the Protection of Personal Information in Small Departments.
|EXPECTED COMPLETION DATE
3. Departments should ensure that Privacy Impact Assessments (PIAs) are considered and conducted appropriately when developing new, or substantially modified, programs and activities.
Response: Management agrees with this recommendation.
The Board will :
1. Complete the PIA for the VRAB Scheduling Application
2. Update VRAB's Access to Information and Privacy (ATIP) procedures regarding PIA to include the following steps:
Director of Strategic and Corporate Services
28 Feb 2014 Completed.
30 June 2014