A PIA is a tool to help Schools/Districts ensure compliance with applicable privacy legislation. This document helps mitigate and evaluate many of the unintended risks and consequences that can develop as a result of not anticipating multiple perspectives and circumstances with a new system or project. As part of the process, Schools/Districts are taking the appropriate steps to ensure that parents, students, and educators understand what measures are taken with regard to the safety and security of personal information and the importance of informed consent.

School/District staff need to contact the privacy office(r) or PIA Drafter at their School/District, to determine internal policies for review and signing-off of a Privacy Impact Assessment. Staff may submit PIAs to their Superintendent of Schools for consideration. If you have any questions about this PIA template or FIPPA in general, you may contact the designated PIA Drafter, or call the provincial Privacy and Access Helpline at Enquiry BC. Completed PIAs must be retained in a secure location at the School/District for the purpose of a Privacy Commissioner’s Audit.

Note: This process can help identify and reduce many of the unintended risks and consequences that may potentially jeapordize student and educator privacy and security issues.

Best practices indicate that School/Districts should still complete Part 1 of the PIA and submit it along with the signature pages to their privacy office(r) even if it is thought that no personal information is involved. This process ensures that the initiative has been accurately assessed to meet the requirements of FOIPPA.

Note: The definition of personal information is: Recorded information about an identifiable individual other than contact information.

The following examples are a non-exhaustive list of personal information:

  • Name, address, email address, or telephone number;
  • Age, sex, religious beliefs, sexual orientation, marital or family status, blood type;
  • Information about an individual’s health care history, including a physical or mental disability;
  • Information about an individual’s education, financial, criminal, or employment history;
  • Social Insurance Number(SIN) and Personal Education Number (PEN); and
  • Personal views, opinions, religious or political beliefs, or associations.
When you visit a website, information about you is already being collected – information like the songs or plug-ins you’ve downloaded, your computer’s technical configurations, addresses of previous sites you’ve visited, even your e-mail address! Owners of websites can view all of these things – and more. If you combine this with information that you’ve posted about yourself on social networking sites or information you’ve submitted to buy things, enter contests, download songs or register for websites. If people are so inclined, they can find out an awful lot about you (See “Guides” under the Resources Section on this site).
In many ways. You give it voluntarily whether you’re playing a game on the Internet, or just surfing. It’s easy to forget that others are out looking for your personal information. Each time you register or join an online community; create a personal profile to meet others with similar interests; take an online personality test; complete online marketing surveys; fill out an entry form for an online contest, send an e-card; subscribe to a newsletter; or take advantage of “free stuff” being offered such as discount coupons or promotional screensavers and photos.