Enterprise Mobile Device Management Evolution solution

The Enterprise Mobile Device Management (EMDM) Evolution solution provides a mobile device management system for mobile computing devices (Android and iOS-based smartphones and tablets) for Shared Services Canada (SSC) and Government of Canada (GC) partners. EMDM aims to maintain the GC security posture for these mobile computing devices. EMDM is a Software as a Service (SaaS) application that sits between an organization’s on-premises infrastructure and a cloud service provider’s infrastructure to enable access to email, contacts, enterprise applications and partner internal resources.

While this is a fully managed service, SSC relies on the BlackBerry SaaS vendor to facilitate the service offering. The BlackBerry SaaS and EMDM BlackBerry Connectivity Nodes (BCN) are used to manage mobile computing devices and facilitate access to partner proxy and internal cloud services, websites and private applications from anywhere, on any mobile computing device.

The scope for this addendum is much narrower than it is in the original EMDM privacy impact assessment (PIA). This addendum only focuses on the personal information under the control of SSC, which is limited to login credentials used to authenticate EMDM administrators. In the EMDM PIA, there were some uncertainties regarding what personal information would be under the control of SSC vs partner tenants. However, as the EMDM Evolution project has matured, it has become apparent that personal information is under the control of partner tenants. This addendum reflects the enterprise activities required to stand up the EMDM Evolution service. References to “Tenant” encompass federal departments and agencies that are serviced by SSC.

A PIA addendum was triggered in accordance with the Directive on Privacy Impact Assessment, Standard on Privacy Impact Assessment, which states that an existing PIA must be updated, “When substantial modifications are to be made to an existing program or activity that uses personal information for an administrative purpose, including through the use of any new or modified information technology or other process.”

The EMDM PIA addendum provides updates on the compliance gaps that were noted in the initial EMDM PIA 2019 and identifies gaps that may have been introduced by the deployment and migration of EMDM Evolution from On-premises Mobile Device Management.

The EMDM PIA addendum identifies no privacy risks.

Telephony Services, telephones, mobile devices and faxes Class of Record SSC TS 400

Enterprise Mobile Device Management (EMDM) Service Personal Information Bank SSC PCU 612