293 - Information & Privacy, Protection of Privacy
Records relating to the collection, use, disclosure, and protection of personal information as regulated under section 26 to 34 of the Freedom of Information and Protection of Privacy Act (FOIPPA) (RSBC 1996, c. 165). This primary also relates to the identification and description of personal information banks, the correction of personal information, and the notification of correction of personal information. In addition this primary covers the development of privacy impact assessments as required under FOIPPA (s. 69).
Records types include correspondence and reports.
For information security, see primary 470.
For information system documentation, see primary 6450.
For requests for information and related correction of personal information, see secondary 292-30 or 292-40.
The ministry or agency OPR is the information access office unless otherwise specified below.
non-OPR NOTE: Offices will retain non-OPR copies of records for SO nil DE
|293-00||Policy and procedures||SO||nil||DE|
|293-02||Release of personal information||CY+1y||nil||DE|
|293-03||Use of personal information||CY+1y||nil||DE|
|293-04||Correction of personal information||CY+1y||nil||DE|
|293-05||Collection of personal information||CY+1y||nil||DE|
|293-20||Personal information banks||SO||5y||DE||PIB|
|293-30||Requests to correct personal information
SO = when personal information has been updated, annotated, or request has been transferred to another public body
NOTE: Classify requests to correct personal information resulting from FOI requests on the appropriate file under secondary 292-30 or 292-40.
|293-50||Protection of privacy issues
SO = when issue has been resolved, the information is no longer current, and/or the information is no longer required for reference purposes
DE = Records classified under this secondary can be destroyed because protection of privacy issues are sufficiently documented in executive records and central agency records under the Information and Privacy ORCS.
|293-60||Privacy impact assessments
(also known as PIAs)
SO = upon disposition of records covered by the PIA or completion of a new PIA
NOTE: Privacy impact assessments are conducted to determine if new legislation, systems, projects, or programs meet the requirements of part 3 of the Act. For related legislation, system, project, and program files see primaries 140, 6450, and 400 respectively.