Final benchmarking report on the handling of sensitive and personal information: chapter 3


3. Objective, Scope and Methodology

The benchmarking objective was to compare ECCC’s key privacy processes to selected comparable other government departments (OGDs) to implement best practices where warranted.  Annex 1 sets out the main topics for the study and questions concerning:

The topics were selected based on requirements of the Privacy Act and TB policies relating to the protection of personal information. The study also focused on the handling of personal information specific to the staffing and procurement processes.

The study was conducted using an online survey complemented by interviews and documentation review to support the analysis and comparison of privacy management in seven departments. The selection of departments was based on their similarity in size and nature of operations. The following departments participated in the study:

The following processes were used to gather information and report on results:

The scope did not include access to information requests, correction of personal information (accuracy verification) or IT infrastructures and safeguards.

Page details

2018-12-06