C. Assurance of confidentiality, privacy and security
Description
A national statistical ofce (NSO) is entrusted with the authority to compel individuals, businesses and institutions
to provide information. Implicit in this provision are certain obligations regarding the NSO’s “stewardship”
4
of
information provided to it. The NSO must justify the benets of obtaining information and minimize the burden that
its collection imposes, in terms of both invasion of privacy and demands on respondent time and effort. The NSO
must also safeguard its data holdings, in particular information attributable to individual respondents, from
unauthorized disclosure, access or use.
Three important concepts in data stewardship are condentiality, privacy and security. Confidentiality is the
protection of information attributable to an identiable unit
5
from unauthorized disclosure. Privacy, in the statistical
context, is the protection of respondents from intrusive enquiries and the provision that individuals have some
access to and control over information about themselves. Security refers to the policies and practices NSOs
use to prevent condential information from being improperly disclosed, accessed or used. Disclosure control
refers to the development and implementation of measures that identify and address data items that could expose
condential information in outputs such as data tabulations and public-use microdata les. Examples of disclosure
control measures include cell suppression and data perturbation.
The Statistics Act enshrines the authority of Statistics Canada to collect, process and publish statistical
information. It also prescribes the responsibilities of the Agency to protect the condentiality of identiable
individual responses. The Statistics Act gives Statistics Canada authority to obtain information from citizens
and businesses through mandatory surveys, and also guarantees the Agency access to records maintained by
organizations. The Statistics Act also provides the Agency with discretion to authorize the release, by executive
order, of data that would otherwise be protected.
Other federal laws, primarily the Privacy Act and the Access to Information Act, establish the responsibilities of
all federal departments regarding personal information held in government records. The Privacy Act requires that
individuals be informed of the authority under which data are collected and the intended uses of the information.
Information collected by Statistics Canada is for statistical purposes, dened as description or analysis of
characteristics of a population to which the individual belongs. As the Privacy Act also recognizes statistical
purposes as a legitimate secondary use of information, Statistics Canada is able to additionally obtain information
collected elsewhere for other purposes. In particular, the Agency is able to obtain information collected for
administrative
6
purposes. However the Privacy Act dictates that information collected for statistical purposes must
not be used for administrative purposes. The Access to Information Act ensures that respondents have the right to
obtain information they provided to Statistics Canada and other federal departments.
Assessment
Statistics Canada’s efforts pertaining to condentiality, privacy and security are assessed by evaluating the extent
to which the Agency:
1. develops and implements policies and practices to fulll the obligations of the Statistics Act, the Privacy
Act, the Access to Information Act and any other statutes
2. minimizes the intrusiveness of data collection through use of alternate sources of information and effective
design of data collection instruments
3. facilitates response by informing respondents of their rights and obligations, the importance of responding
and the protection their data will be afforded
4. implements organizational, physical and technological measures to protect the condentiality and ensure
the security of statistical data
4.
See “Data Stewardship at Statistics Canada” by Gordon Brackstone and Pamela White.
5.
Examples of units include persons, households, enterprises and institutions.
6.
Administrative purposes are those related to making decisions about the individual to whom the information pertains. An example is determining eligibility for a government program based
on financial information pertaining to a specific person, household or business.
Statistics Canada – Catalogue no. 12‑586‑X
18
Statistics Canada Quality Assurance Framework