privacymatters.ubc.ca
Can’t find what you’re looking for? Try visiting our dedicated information security and privacy website privacymatters.ubc.ca.
The Privacy and Information Security Management (PrISM)-SRS team’s mission is to reduce the risk of a privacy or information security breach impacting the UBC community, while enabling strategic risk acceptance in support of UBC’s strategic plan.
Menu
Privacy & Information Security
Privacy Impact Assessment (PIA)
Privacy & Information Security Fundamentals Training
Compliance Support Program
Other Services
Services
We provide the following services to the UBC community to fulfil this mission:
Privacy Impact Assessment (PIA)
Privacy Impact Assessment (PIA): Perform PIAs for new or existing projects / systems that are being substantially modified; thereby, fulfilling a legal requirement under FIPPA and better protecting the information in UBC’s custody.
Performing custom risk assessments and investigations into emerging, or prevalent risk areas helps us to better understanding and mitigate against privacy and information security risk.
Learn more about the Privacy Impact Assessment.
Privacy & Information Security Training
Nearly every UBC faculty and staff member has access to Confidential Information, including personal information or payment card data. As the disclosure of this information could be very harmful, it’s important for you to know how to protect it.
The Privacy & Information Security Training is comprised of the following topics:
Fundamentals Part 1
- Privacy and Personal Information
- Transmission and Sharing of Information
- Phishing
- Storage and Encryption of Information
- Working Remotely
- General Privacy and Information Security Tips
Fundamentals Part 2
- Disclosure of Information
- Freedom of Information Requests
- Managing Records and Information
- Managing Accounts and Passwords
- Tips and Reminders
IT Professionals
- Obligations of an IT Professional
- Securing & Managing Accounts and Passwords
- Protecting Systems
- Acquiring, Developing & Modifying Software Applications
- Logging and Monitoring
- Incident Response
Access the Privacy & Information Security Training.
Compliance Support Program
The Compliance Support Program exists to communicate essential controls, clarify accountability for securing information systems, and support units in understanding their gaps so as to be able to develop plans and processes to improve security.
Learn more about the Compliance Support Program.
^ Back to Top
Other Services
Undertake special projects to better identify, measure or mitigate key privacy or information security risks and provide (privacy and information security-related) consulting services to the community.
^ Back to Top