May Audit and Compliance Program Charter
|
|
- Coral Julia Wiggins
- 6 years ago
- Views:
Transcription
1 May 2015 Audit and Cmpliance Prgram Charter
2 TABLE OF CONTENTS PAGE 1.0 BACKGROUND AUDIT AND COMPLIANCE ASSESSMENT KEY LEGISLATIVE AUTHORITY AND POWERS VALUES STEPS IN THE ASSESSMENT PROCESS Step One: Planning 5.2 Step Tw: Backgrund Research 5.3: Step Three: Fieldwrk 5.4: Step Fur: Analysis and Reprting 6.0 LIMITATIONS OF ASSESSMENTS APPENDIX 1: LEGISLATIVE AUTHORITIES AND POWERS 14
3 Audit and Cmpliance Prgram Charter BACKGROUND The Office f the Infrmatin and Privacy Cmmissiner fr BC ( OIPC ) has established an Audit and Cmpliance Prgram t assess the extent t which public bdies and private sectr rganizatins are prtecting persnal infrmatin and cmplying with access prvisins under the Freedm f Infrmatin and Prtectin f Privacy Act ( FIPPA ) and the Persnal Infrmatin Prtectin Act ( PIPA ). This dcument prvides the framewrk fr the Audit and Cmpliance Prgram and is designed t assist public bdies and rganizatins t understand the authrity and functin f the OIPC in cnducting assessments as well as the basic steps leading up t and during an assessment. 2.0 AUDIT AND COMPLIANCE ASSESSMENTS The OIPC s Audit and Cmpliance Prgram draws frm a cmbinatin f cmpliance assessment; peratinal audit; infrmatin management and infrmatin technlgy audit; prgram evaluatin; and prcess imprvement methdlgies. The purpse f the Audit and Cmpliance Prgram is t prvide a mechanism t: enhance versight regarding the management f persnal infrmatin acrss BC; measure the level f cmpliance emplyed by public bdies and rganizatins with prvincial privacy and access legislatin, relevant plicies and guidelines, and privacy principles; and make recmmendatins, where needed, t imprve privacy and access practices, plicies, guidelines, and legislatin. The Audit and Cmpliance Prgram will cmprise fair and bjective assessments f public bdies r private sectr rganizatins t determine: hw well entities cmply with bligatins under FIPPA r PIPA, relevant plicies and prcedures, guidelines, and privacy principles; whether entities maintain adequate administrative, physical and technlgical safeguards t prtect persnal infrmatin frm unauthrized access, cllectin, use, disclsure, dispsal r similar risks; the extent t which an entity has established and maintains adequate prcedures fr managing requests fr infrmatin; and the extent t which an entity has established and maintains an effective and accuntable privacy management prgram. Assessments will identify bth the areas where an entity may excel with regard t cmpliance, safeguards, and verall access r privacy management; as well as areas where imprvements are needed in rder t cmply with legislatin and guidelines. There are many aspects within access r privacy management prgrams that can be assessed t determine the extent t which public bdies and private sectr rganizatins are prtecting
4 Audit and Cmpliance Prgram Charter 4 persnal infrmatin and cmplying with access prvisins. Sme f these include, fr example: Management, Plicies and Prcedures: Reviewing an entity s management f access t infrmatin and prtectin f privacy prgrams; access t infrmatin and privacy plicies and prcedures; and infrmatin and data sharing agreements. Cllectin, Use, Disclsure and Retentin: Assessing the cllectin, use, disclsure and retentin f persnal infrmatin by the entity; whether apprpriate ntice and cnsent has been btained; and whether the entity limits cllectin, use, disclsure and retentin f persnal infrmatin t nly what they need t administer a prgram r business. Prtectins and Safeguards: Examining an entity s access, disclsure r prtectin prvisins; their administrative, technical and physical safeguards; staff knwledge and training related t privacy and the prtectin f persnal infrmatin; and whether and hw an entity prtects persnal infrmatin in its custdy r under its cntrl by making reasnable security arrangements against such risks as unauthrized access, cllectin, use, disclsure r dispsal. Access Prcesses: Reviewing an entity s access t infrmatin prcesses; hw it handles access-related requests r cmplaints; timelines fr respnding t access requests; and cmpliance with ther access-related bligatins under FIPPA r PIPA. Accuntability and Cmpliance Mnitring: Evaluating hw the entity mnitrs cmpliance with its privacy plicies and prcedures; accuntability practices; hw it handles privacy-related cmplaints; whether they cnduct internal r external audits f safeguards; and whether they analyze breaches that may have ccurred. In rder t bjectively identify lcatins and tpics fr assessment, OIPC staff will interview stakehlders; cnduct analysis f internal files (cmplaints, requests fr review and breaches); review infrmatin cllected frm ther entities; and cnsider ther investigatins and plicy prjects recently cmpleted, currently underway r abut t be initiated. 3.0 KEY LEGISLATIVE AUTHORITY AND POWERS Public bdies r rganizatins being reviewed under the Audit and Cmpliance Prgram may be assessed n any aspect f their FIPPA r PIPA bligatins with regard t access, cllectin, use, disclsure, prtectin, retentin, r dispsal f persnal infrmatin. The Cmmissiner has the fllwing pwers with regard t such assessments: mnitring and cmpliance (FIPPA s. 42 and PIPA s. 36) investigate r audit t ensure cmpliance with any prvisin f these Acts r regulatins, make rders resulting frm investigatins r audits, receive cmments frm the public, and engage in r cmmissin research int anything affecting the achievement f the purpses f the Acts;
5 Audit and Cmpliance Prgram Charter 5 cmpel recrds and answers t questins (FIPPA s. 44 and PIPA s. 38); entry and inspectin (PIPA s. 38); infrm the public abut the Acts r make cmment (FIPPA s. 42 and PIPA s. 36); and delegate her duties, pwers and functins t any persn (FIPPA s. 49 and PIPA s. 43) Assessments may cmprise investigatin, audit, research r any cmbinatin f the mnitring and cmpliance functins. There are als several sectins in bth FIPPA and PIPA that prvide certain prtectins t individuals wh have made statements r answered questins during an assessment by the OIPC, including: general restrictin n disclsure by Cmmissiner and staff (FIPPA s. 47 and PIPA s. 41) the Cmmissiner r staff cannt be cmpelled t give evidence in curt respecting infrmatin cllected while perfrming their duties (FIPPA s. 45 and PIPA s. 39); prtectin against libel r slander actins (FIPPA s. 46 and PIPA s. 40); and whistleblwer prtectins (FIPPA s and PIPA s. 54). Please see Appendix 1 fr mre detail regarding the legislative authrity and pwers f the Cmmissiner. 4.0 VALUES All activities related t the planning and implementatin f an assessment will be cnducted in accrdance with a set f values prmted by the OIPC. OIPC staff members cnducting assessments will endeavur t act at all times with: independence; cnfidentiality; due care; integrity; bjectivity; cmpetence; a systematic and structured apprach; secure handling f infrmatin; and apprpriate supervisin.
6 Audit and Cmpliance Prgram Charter STEPS IN THE ASSESSMENT PROCESS 5.1 Step One: Planning Identifying Scpe and Objectives: the What and Why The scpe f an OIPC assessment will ften cmprise an evaluatin f cmpliance with any aspect f FIPPA, PIPA, OIPC guidelines, entity plicies, and/r safeguards fr prtecting persnal infrmatin. The bjectives may include measuring cmpliance; cntributing t a bdy f knwledge n a particular tpic; updating OIPC guidance dcuments; recmmendatins fr amendments t plicy r legislatin; r ther purpses Assessment Targets: the Wh The OIPC will select tpics r entities t assess based n a variety f factrs and resurces, including: cmplaints received by the OIPC; media reprts relating t privacy practices within a particular entity, sectr r tpic; fllw-up with previusly assessed entities; ther assessments that pint t further need t explre a similar entity, tpic, gegraphical regin; cmments frm cnsultatin with FOI, privacy and security experts; infrmatin that an entity cllects r uses a substantial amunt f persnal infrmatin, r very sensitive persnal infrmatin; and/r a need t explre a particular tpic r entity fr input int plicy r legislative amendments Ntifying the Entity: the When and Where The OIPC will ntify invlved entities in advance f an assessment. We will send a letter t the head(s) f the entity(ies) invlved utlining the intentin t cnduct an assessment as well as a general utline f the scpe, bjectives, methdlgy and anticipated timelines. The OIPC will als share a draft f a cmprehensive Assessment Plan with entity representatives in advance. The Assessment Plan will prvide high level infrmatin n: the reasns why an entity was selected fr assessment; the scpe, bjectives and basic methdlgy fr the assessment; the tpics, prgrams, technlgy r initiatives that will be assessed; the jb functins f entity staff wh will be interviewed; backgrund materials t be made available prir t the nsite visit; materials that will be reviewed thrughut the curse f the assessment; OIPC assessment team members and their rle fr the assessment; and estimated timelines fr key assessment activities.
7 Audit and Cmpliance Prgram Charter 7 The success f any assessment depends primarily n the cperatin frm entity staff; access t the systems and infrmatin needed fr the assessment; and the availability f evidence fr inclusin in the assessment. As such, key staff frm the entity(ies) invlved will be invited t cmment n any challenges r issues they feel may interfere with successful cmpletin f the assessment. In additin, advance cnsultatin allws the assessment team t gain a better understanding f the tpics intended fr assessment; the types f materials available; and the structure f the entity Chsing the Methdlgy: the Hw Each assessment will have unique requirements and bjectives and, as such, the assessment team will select methdlgy fr specific assessments based n the particular circumstances f the tpics and entities invlved. The assessment team will ften use a cmbinatin f the fllwing methdlgies: interviews with senir entity staff; interviews r fcus grups with key prgram area staff; inspectin f the premises, with attentin t prgrams that cllect persnal infrmatin and safeguards emplyed by the entity (fr example: inspectin f electrnic prgrams r databases, reviews f security prcedures, r examinatin f physical security measures); file reviews based n the nature f the business (fr example, inspectin f client files, access lgs, cmmunicatins, etc.); and questinnaires t assess knwledge and awareness f, satisfactin with, r attitudes tward privacy plicies and prcesses Deliverables: Letter f Intent, Assessment Plan As discussed abve, the OIPC assessment team will draft the fllwing deliverables during the planning phase f an assessment: letter f intent prvided t the head f the entity; and the Assessment Plan. 5.2 Step Tw: Backgrund Research Understanding the Lay f the Land As nted abve, the OIPC will prvide advance ntice t entities invlved in an assessment. The cmprehensive Assessment Plan will utline the backgrund materials that will be requested fr review prir t an nsite visit. Examples f backgrund materials include: relevant written plices r prcedures; rganizatinal charts; cntact infrmatin fr key staff; descriptins f safeguards emplyed t prtect persnal infrmatin; cpies f privacy management assessments and risk assessments cnducted by the entity invlved in the assessment r by ther rganizatins;
8 Audit and Cmpliance Prgram Charter 8 internal reprts relating t prgrams under review r persnal infrmatin management; data sharing agreements; privacy impact assessments; cpies f cntracts related t service prviders r thers wh may cllect, use, disclse r retain persnal infrmatin n behalf f the entity invlved in the assessment; a small sample f the types f files that may be included in a file review; cpies f training materials and/r details regarding training prgrams; cpies f cmmunicatin materials regarding a prgram r service, and mems r directives t staff; r additinal materials requested by the OIPC assessment team r materials that the entity invlved in the assessment may identify. The OIPC assessment team will review the backgrund materials in rder t build understanding f the cntext fr the specific tpic and entity. Mst ften, the team will review these materials at OIPC ffices; hwever if materials are required t remain nsite at the entity, the team may review dcuments n lcatin Building Assessment Criteria Assessment criteria are standards against which cmpliance can be evaluated and assessed. The OIPC assessment team will select criteria fr assessments based n apprpriateness fr the tpic and entity fr each specific assessment. Criteria are t be relevant, unbiased, fulsme, understandable and reliable. Cmmn surces the team will use t develp assessment criteria include: FIPPA; PIPA; OIPC guidance dcuments: Accuntable Privacy Management in BC's Public Sectr, Getting Accuntability Right with a Privacy Management Prgram (private sectr), A Guide t PIPA fr Businesses and Organizatins, Privacy Breaches: Tls and Resurces, and Other relevant guidance dcuments; plicies, standards, directives and guidelines develped by ther Privacy Cmmissiners r relevant versight entities; privacy principles: Canadian Standards Assciatin: Mdel Cde fr the Prtectin f Persnal Infrmatin, and Canadian Institute f Chartered Accuntants and American Institute f Certified Public Accuntants: Generally Accepted Privacy Principles;
9 Audit and Cmpliance Prgram Charter 9 relevant entity plicies, agreements and cntract terms relating t hw persnal infrmatin is managed; standards relating t infrmatin security and infrmatin management develped by internatinal standards bdies: Internatinal Organizatin fr Standardizatin ( ISO ), and Infrmatin Systems Audit and Cntrl Assciatin ( ISACA ); ther relevant legislatin, regulatins, directives r enactments; recmmendatins frm previus assessments r audits (internal r external); criteria develped by the OIPC assessment team; and ther criteria relevant t specific assessment bjectives. Once several assessments have been cmpleted, the OIPC will have a standard set f criteria that can be cnsidered in future assessments. The OIPC assessment team wuld still review specific criteria t determine its relevance r adaptability t the particular assessment Drafting the Tls Assessment tls are instruments n which t recrd the findings f any particular data cllectin during an assessment. The assessment team will either: (1) build these tls in advance f an assessment and review r amend them prir t the nsite visit r (2) build them after the review f backgrund materials. The types and cntent f assessment tls will depend n the bjectives f the specific assessment and will be develped frm the assessment criteria utlined abve. Examples f tls that the assessment team may use include: guides fr use during interviews r fcus grups; questinnaires fr cnducting surveys; inspectin checklists fr use during physical examinatin f persnal infrmatin safeguards r review f electrnic prgrams r databases; and spreadsheets t be used during inspectin f prgram files Deliverables: Cntext Descriptin, Assessment Tls During the backgrund research phase f an assessment, the assessment team will create these deliverables: a summary f the backgrund f a particular prgram r service and the entity invlved in the assessment (fr inclusin in the final reprt); a descriptin f the persnal infrmatin cllected and the plicies and prcesses used t manage that infrmatin (fr inclusin in the final reprt); and cpies f assessment tls t be used during the fieldwrk phase f the assessment.
10 Audit and Cmpliance Prgram Charter Step Three: Fieldwrk Gathering Evidence: Multiple Methds Evidence can include any infrmatin gleaned during the curse f an assessment that assists evaluatrs in determining whether individual assessment criteria have been met. Evidence can cme frm interviews; physical inspectins and bservatins; system r files reviews; r questinnaires depending n the nature f the assessment and its bjectives. Evidence may als be derived frm analysis f such infrmatin. In each f these methds f evidence gathering, evidence will be dcumented n checklists, spreadsheets, survey frms r by ther means. Mst ften, the OIPC assessment team will be gathering evidence by cnducting ne-n-ne interviews with key entity r prgram area staff. Where pssible, the team may prvide in advance a basic interview guide cntaining sme f the questins t be asked r pints the interview is intending t cver. These interviews help the assessment team t gain knwledge abut the entity and its relevant prgrams r prcesses, determine staff awareness and learn frm staff abut the tpic being assessed, and cllect and crrbrate evidence t answer assessment questins. OIPC team members will take ntes and may digitally recrd during the interviews in rder t ensure evidence is available fr later analysis and t substantiate cnclusins drawn. These ntes are used fr the OIPC staff t review and analyze fr the purpses f the assessment and will nt be shared with anyne utside f the OIPC. See Appendix 1 fr further infrmatin n prtectins fr thse wh prvide statements t the OIPC r answer questins during an assessment. The OIPC assessment teams will seek t gather sufficient vlume and cmpleteness f evidence t be able t develp cnclusins that are valid and sund enugh that a reasnable persn may reach the same cnclusins when reviewing evidence included in the assessment. There may be ccasins where the assessment team requests additinal evidence (fr example: additinal recrds fr review, fllw-up interviews with staff t clarify pints r ask additinal questins, r dcuments that may nt have been requested frm the entity earlier) Dcumenting Evidence: Substantiatin Binders The assessment team will maintain substantiatin binders that detail the evidence used t supprt the findings dcumented in assessment reprts. Substantiatin binders may cntain, fr example: cpies f relevant cmmunicatins and backgrund materials; initial assessment planning dcuments; interview r fcus grup ntes; cmpleted inspectin r bservatin check-lists; and aggregate findings frm questinnaires r statistical analysis. Substantiatin binders will be used fr internal peer review f assessment reprts in rder t prvide a secndary check t ensure that all findings and statements made within the reprt are supprted by available and crrbrating evidence Sharing Initial Findings: Prviding Entity Feedback The OIPC assessment will endeavur t prvide entities invlved in the assessment with feedback thrughut the prcess. The assessment team will raise gaps r challenges fund during the cllectin and initial analysis f evidence with the management r executive f the entity being assessed. Open cmmunicatin and cntinuus feedback are beneficial in allwing entities the chance t implement quality imprvement measures as sn as pssible. The
11 Audit and Cmpliance Prgram Charter 11 ultimate gal f the OIPC Audit and Cmpliance Prgram is t imprve privacy r access practices and supprt infrmatin rights f British Clumbians Deliverable: Evidence Cllected, Substantiatin Binders The OIPC assessment team will create the tw key deliverables during the fieldwrk phase f an assessment, including: dcumented evidence frm each methd used t gather evidence during the assessment; and substantiatin binders cntaining key evidence. 5.4 Step Fur: Analysis and Reprting Analyzing Results The OIPC assessment team will analyze the evidence cllected during the fieldwrk stage in rder t answer the questins raised thrugh the assessment plan (step ne) and detailed by the assessment criteria (step tw). Analysis may be qualitative r quantitative. Qualitative analysis is ften used t explre descriptins r bservatins that may cntain deeper meaning, fr example, t determine recurring themes acrss interviews r fcus grups. Quantitative analysis fcuses n numbers and may be used, fr example, t examine a bulk f questinnaires r t cunt the prevalence f a particular errr r issue in a sample f files. The assessment team uses bth qualitative and quantitative analytical methds t interpret whether the infrmatin cllected during fieldwrk shws that the entity has met the assessment criteria. Analysis will reveal whether there is sufficient evidence t supprt an assessment finding Drafting the Reprt and OIPC Internal Review The assessment team will summarize findings discvered thrugh fieldwrk and analysis, alng with ptential recmmendatins, in a preliminary reprt. The preliminary and all subsequent reprts will usually include, at minimum: a descriptin f the entity and tpic being assessed; an utline f the bjectives, scpe and criteria fr the assessment; a descriptin f the methdlgy used t cnduct the assessment; an verall assessment pinin r summary statement; key findings and a summary f related evidence; a summary f the gaps r challenges fund and why these are imprtant t address; and recmmendatins t address the gaps r challenges fund. The assessment team will share this preliminary reprt with ther OIPC internal reviewers and the Deputy Registrar/Assistant Cmmissiner. The assessment team will incrprate the feedback and then submit a draft reprt t the Cmmissiner fr review.
12 Audit and Cmpliance Prgram Charter Entity Review and Cmment Once the draft reprt has been apprved by the Cmmissiner, entities that are invlved with the assessments will receive a cpy f the draft reprt. Entities will be able t prvide feedback relating t any errrs, missins r misinterpretatins in the reprt(s). If entity reviewers have cncerns regarding reprt findings, they can discuss them with the OIPC assessment team. The assessment team will then review the feedback and determine what changes t incrprate in the final reprt. Entities will als be asked t prvide an fficial respnse t the reprt findings and whether r nt they accept the OIPC s recmmendatins. If entities have already implemented r initiated sme f the recmmendatins, the assessment team will cnsider updating the reprt t include a descriptin f the changes that have been undertaken. The team may als include the fficial respnse letter frm the entity in its entirety in an appendix t the reprt Final Reprt and Public Release The assessment team will prvide the final reprt t the Deputy Registrar/Assistant Cmmissiner and the Cmmissiner fr review and apprval. Cmmunicatins will be prepared fr public release f the reprt. If instead the Cmmissiner decides that the reprt will nt be made public in its entirety, then the assessment team will prepare a smaller versin r an executive summary f the reprt fr public distributin. Prir t public release, the Cmmissiner will send a final cpy f the full reprt (and, if applicable, the smaller versin r executive summary fr public distributin) t the entities invlved in the examinatin. In mst cases, the Cmmissiner will prvide a news release relating t the assessment and the final reprt. Media utlets may als request the Cmmissiner t participate in radi, print r televisin interviews regarding the assessment reprt, its findings, the recmmendatins, r related tpics Fllw-up n Recmmendatins The OIPC may ask entities invlved in the assessment t prvide an actin plan detailing hw the recmmendatins will be implemented, alng with the timelines fr implementatin. The OIPC assessment team will fllw-up with the entities as necessary t determine the level f implementatin. It is pssible that a fllw-up assessment will als be cnducted t determine the level f cmpliance with the recmmendatins and/r t determine whether the implemented changes nw meet the riginal assessment criteria Deliverables: Draft Reprt, Final Reprt The assessment team will prepare the fllwing deliverables during the analysis and reprting step f an OIPC assessment: dcumented analyses in summary dcuments, excel spreadsheets, highlighting r cmments n interview ntes; preliminary reprt and cmments frm internal reviewers; draft reprt and a summary f the feedback prvided by the entities invlved in the assessment; the final reprt; and cmmunicatins materials.
13 Audit and Cmpliance Prgram Charter 13 Deliverables frm any fllw-up cnducted will depend n the extent f the fllw-up. 6.0 LIMITATIONS OF ASSESSMENTS It is imprtant t keep in mind that any assessment will be limited in its applicability by its scpe and bjectives; the perid f time captured in fieldwrk; the specific areas f the entity that were assessed; the availability f applicable infrmatin; and the margin f errr. Such details may limit the generalizability f assessment findings acrss the wider entity, ther time perids, and ther like entities. As such, the final reprt shuld nt be seen as a definitive accunt f an entity s ttal persnal infrmatin handling practices; nr shuld the reprt be seen as an endrsement f the entity's cmpliance with its bligatins under FIPPA r PIPA.
14 Audit and Cmpliance Prgram Charter APPENDIX 1: LEGISLATIVE AUTHORITIES AND POWERS Mnitring and Cmpliance (FIPPA s. 42 and PIPA s. 36) With regard t the public sectr, s. 42(1) utlines the Cmmissiner s respnsibilities fr mnitring hw FIPPA is administered and states that the Cmmissiner may: investigate r audit t ensure cmpliance with any prvisin f this Act r regulatin; make rders resulting frm investigatins r audits; receive cmments frm the public; and engage in r cmmissin research int anything affecting the achievement f the purpses f the Act. The crrespnding sectin fr the private sectr rganizatins is s. 36(1) f PIPA. This sectin is similar t the abve with the exceptin that the Cmmissiner may investigate r audit if there are reasnable grunds t believe that an rganizatin is nt cmplying. The Cmmissiner may als exchange infrmatin with ther privacy Cmmissiners acrss Canada fr the purpse f crdinating activities. Assessments may cmprise investigatin, audit, research r any cmbinatin f the mnitring and cmpliance functins. Inspectin and Cllectin f Evidence (FIPPA s. 44 and PIPA s. 38) Cmpel Recrds and Answers t Questins (FIPPA s. 44 and PIPA s. 38) Fr the purpses f cnducting an assessment, s. 44 f FIPPA and s. 38 f PIPA authrize the Cmmissiner t make an rder requiring a persn t answer questins r t prduce a recrd, including a recrd cntaining persnal infrmatin. The Cmmissiner may als apply t the Supreme Curt fr an rder directing a persn t cmply with the Cmmissiner s rder. These prvisins als apply in situatins where a recrd is subject t slicitr client privilege (such privilege is nt affected by disclsing the recrd t the OIPC). Entry and Inspectin (PIPA s. 38) Sectin 38(2) f PIPA als permits the Cmmissiner t enter any premises at any reasnable time (ther than a persnal residence) ccupied by an rganizatin after satisfying security requirements f the rganizatin relating t the premises. Prtectins (FIPPA ss. 30.3, and PIPA ss , 54 55) Peple may have cncerns abut liability with regard t statements made t the OIPC during an assessment. There are sectins in bth FIPPA and PIPA that prvide certain prtectins t individuals wh have made statements r respnded t questins asked by the OIPC. Restrictins n Disclsure by Cmmissiner (FIPPA s. 47 and PIPA s. 41) Sectins 47(3) f FIPPA and 41 f PIPA cntain a general prhibitin against disclsure by the Cmmissiner and her staff related t any infrmatin btained in perfrming their duties, pwers and functins under the Acts. In additin, FIPPA s. 3 ntes that FIPPA des nt apply t recrds created by r fr, in the custdy r cntrl f, r that relate t the exercise f the
15 Audit and Cmpliance Prgram Charter 15 Cmmissiner s functins. This means that the OIPC s peratinal recrds are nt subject t access fr infrmatin requests. Evidence in Prceedings (FIPPA s. 47(2.1) and PIPA s. 39) Sectin 47(2.1) f FIPPA and s. 39 PIPA state that the Cmmissiner r her staff must nt give r be cmpelled t give evidence in a curt r ther prceedings in respect f infrmatin cllected while perfrming their duties (again, except with regard t perjury, prsecutin fr an ffence under the Acts, r in an applicatin fr judicial review r an appeal). Prtectin Against Libel r Slander Actins (FIPPA s. 46 and PIPA s. 40) Similarly, s. 46 f FIPPA and s. 40 f PIPA state that anything said, any infrmatin supplied r any recrd prduced by a persn during an investigatin by the Cmmissiner is privileged in the same manner as if the investigatin were a prceeding in a curt. Whistleblwer Prtectin (FIPPA s and PIPA s. 54) FIPPA s and PIPA s. 54 state that emplyers must nt dismiss, suspend, demte, discipline, harass r therwise disadvantage an emplyee, r deny that emplyee a benefit, because the emplyee has: disclsed t the Cmmissiner that any ther persn has cntravened r is abut t cntravene this Act; has dne r has intentin f ding anything required in rder t avid a cntraventin f this Act; r has refused t d anything in cntraventin f this Act. Reprting (FIPPA s. 42 and PIPA s. 36) Sectins 42 f FIPPA and 36 f PIPA allw the Cmmissiner t infrm the public abut the Act and cmment n: implicatins fr access r prtectin f privacy f legislative schemes, prgrams, activities f public bdies; prtectin f persnal infrmatin f prgrams prpsed by rganizatins; and autmated systems r data-linking initiatives by public bdies r private sectr rganizatins. This includes public psting f reprts r ther materials that result frm an OIPC assessment. Determinatins f whether t infrm the public abut the results f an assessment, alng with the type f infrmatin that may be shared, will be made n a case-by-case basis. Delegatin (FIPPA s. 49 and PIPA s. 43) FIPPA s. 49 and PIPA s. 43 allws the Cmmissiner t delegate her duties, pwers and functins t any persn. One exceptin t the ability t delegate under FIPPA is that the Cmmissiner may nt delegate the pwer t examine infrmatin referred t in s. 15 (disclsure harmful t law enfrcement) if the head f a plice frce r the Attrney General has refused t disclse that infrmatin and has requested the Cmmissiner nt t delegate the pwer t examine that infrmatin. Respnsibility fr planning, cnducting, reprting and fllwing-up n Audit and Cmpliance Prgram assessments sits with the OIPC s Senir Investigatr f Audit and Cmpliance and may als include ther investigatrs, plicy analysts, intake fficers r assistant Cmmissiners. Interactins with Other Legislatin There are n legislative prvisins in ther Acts that prevent the OIPC frm accessing recrds and cnducting assessments f public bdies r private sectr rganizatins.
TERMS OF REFERENCE FOR THE PROVISION OF OUTSOURCED INTERNAL AUDIT SERVICE
W&RSETA Standard Bidding Dcuments Terms f Reference TERMS OF REFERENCE FOR THE PROVISION OF OUTSOURCED INTERNAL AUDIT SERVICE 1 W&RSETA Standard Bidding Dcuments Terms f Reference 1. BACKGROUND TO W&RSETA
More informationPSNC Briefing on the NHS Complaints procedure (from 1 April 2009)
PSNC Briefing n the NHS Cmplaints prcedure (frm 1 April 2009) Under the prvisins f the Natinal Health Service (Pharmaceutical Services) Regulatins 2005 1 pharmacy cntractrs are required t make arrangements
More informationAudit and Risk Management Committee Charter
Audit and Risk Management Cmmittee Charter Pivtal Systems Crpratin ("Cmpany") 1. Objectives The Audit and Risk Management Cmmittee (Cmmittee) has been established by the bard f directrs (Bard) f the Cmpany.
More informationAudit Committee Charter. St Andrew s Insurance (Australia) Pty Ltd St Andrew s Life Insurance Pty Ltd St Andrew s Australia Services Pty Ltd
Audit Cmmittee Charter St Andrew s Insurance (Australia) Pty Ltd St Andrew s Life Insurance Pty Ltd St Andrew s Australia Services Pty Ltd Versin 3.0, 19 February 2018 Apprver Bard f Directrs St Andrew
More informationInformation concerning the constitution, goals and functions of the agency, including 1 :
Annual Reprt cmpliance checklist This checklist utlines the gvernance, perfrmance, reprting cmpliance and prcedural requirements f the Financial Administratin and Audit Act 1977 and the Financial Management
More informationJAUPT Appraisal Criteria Centre Application. November 2016
JAUPT Appraisal Criteria Centre Applicatin Nvember 2016 1. Intrductin T be able t assess centre applicatins fr the suitability f Peridic Training many factrs have t be taken int accunt and cnsidered befre
More informationStakeholder Relations and Communications Policy
Stakehlder Relatins and Cmmunicatins Plicy Effective January 15, 2008 Apprved by the Bard f Directrs n January 15, 2008 TABLE OF CONTENTS Sectin I Stakehlder Relatins and Cmmunicatins Plicy 1 NOVA SCOTIA
More informationAUDIT and ASSURANCE COMMITTEE TERMS OF REFERENCE
AUDIT and ASSURANCE COMMITTEE TERMS OF REFERENCE P U R P O S E The Cmmittee is an perating Cmmittee f the Grup Bard and is charged with the respnsibility f gaining assurance fr the Grup Bard that the rganisatin
More informationSubject Access Requests
Subject Access Requests The Data Prtectin Act 1998 gives rights t individuals in respect f the persnal data that rganisatins hld abut them. One f thse rights is the right t get a cpy f the infrmatin that
More informationGuidelines for submission to the NSW Population and Health Services Research Ethics Committee. Version June 2015
Guidelines fr submissin t the NSW Ppulatin and Health Services Research Versin 3.0 18 June 2015 Cntents Sectin 1: Intrductin... 3 Sectin 2: Research Gvernance... 4 Sectin 3: Submissins t the NSW PHSREC...
More informationHUMAN RESOURCES AND COMPENSATION COMMITTEE CHARTER
HUMAN RESOURCES AND COMPENSATION COMMITTEE CHARTER PURPOSE The Human Resurces and Cmpensatin Cmmittee (the Cmmittee ) f Precisin Drilling Crpratin (the Crpratin ) is a standing cmmittee f the bard f directrs
More informationTERMS OF REFERENCE. Audit and Risk Committee (the "Committee") of Wilmcote Holdings Plc (the "Company")
References t the "Bard" shall mean the full Bard f Directrs. MEMBERSHIP - The Bard has reslved t establish a cmmittee f the Bard t be knwn as the Audit and Risk Cmmittee. - The Cmmittee shall cmprise at
More informationInternational Standard on Auditing (Ireland) 265. Communicating Deficiencies in Internal Control to Those Charged with Governance and Management
Internatinal Standard n Auditing (Ireland) 265 Cmmunicating Deficiencies in Internal Cntrl t Thse Charged with Gvernance and Management MISSION T cntribute t Ireland having a strng regulatry envirnment
More informationAUDIT & RISK COMMITTEE CHARTER
AUDIT & RISK COMMITTEE CHARTER Rle and Respnsibilities The Bard f The Institute f Internal Auditrs Australia (IIA-Australia) has established a Bard Audit & Risk Cmmittee as part f its respnsibilities in
More informationMiFID Supervisory Briefing Suitability
MiFID Supervisry Briefing Suitability 19 December 2012 ESMA/2012/850 Date: 19 December 2012 ESMA/2012/850 I. Backgrund 1. ESMA is required t play an active rle in building a cmmn supervisry culture by
More informationUCEA/ECU Age Discrimination Working Group Guidance. Age Discrimination Legislation Guidance Note 1: Pay and Benefits A UCEA Publication
UCEA/ECU Age Discriminatin Wrking Grup Guidance Age Discriminatin Legislatin 2006 Guidance Nte 1: Pay and Benefits A UCEA Publicatin Scpe f guidance This guidance nte addresses the implicatins f the Emplyment
More information[AGENCY NAME] Mandate and Roles Document. (Pure Advisory Committees)
[This sample dcument has been develped by the Agency Gvernance Secretariat. It is intended t be used fr infrmatinal purpses nly. Agencies are encuraged t adapt the dcument t meet their specific needs.
More informationThe CIA certification has 4 parts. The CCSA exam and the CGAP exam are single part specialty exams.
Abut this bk The CIA certificatin has 4 parts. The CCSA exam and the CGAP exam are single part specialty exams. The CIA exam parts are: PART 1 THE INTERNAL AUDIT ACTIVITY S ROLE PART 2 CONDUCTING THE INTERNAL
More informationStrategic Plan Request for Proposals. March 2018
Strategic Plan 2018-2022 Request fr Prpsals March 2018 Cntact: Denyse Newtn, Executive Directr Alzheimer Sciety Durham Regin 202 1600 Champlain Avenue Whitby, Ontari L1N 9B2 (905) 576-2567 ext 5223 dnewtn@alzheimerdurham.cm
More informationGuidelines and Recommendations Guidelines on periodic information to be submitted to ESMA by Credit Rating Agencies
Guidelines and Recmmendatins Guidelines n peridic infrmatin t be submitted t ESMA by Credit Rating Agencies 23 June 2015 ESMA/2015/609 Table f Cntents 1 Scpe... 3 2 Definitins... 3 3 Purpse f Guidelines...
More informationTERMS AND CONDITIONS FOR APPOINTMENT OF INDEPENDENT DIRECTOR
TERMS AND CONDITIONS FOR APPOINTMENT OF INDEPENDENT DIRECTOR 1 PRIVATE & CONFIDENTIAL Date: T, Independent Directrs, Subject: Appintment as an Independent Directr InfBeans Technlgies Limited Dear Sir/Madam,
More informationAudit Committee Charter
Audit Cmmittee Charter I. Purpse f Audit Cmmittee The purpse f the Audit Cmmittee, which is part f the Bard, shall be (a) t assist the Bard s versight f (i) the integrity f the Cmpany s financial statements,
More informationChapter 1. Introduction and Overview of Audit & Assurance
Assurance & Auditing Textbk Ntes Chapter 1 Intrductin and Overview f Audit & Assurance Audit prcess in Fcus 1.1 Auditing & Assurance Defined - An assurance is an engagement where an auditr r cnsultant
More informationWHOLESALE AND RETAIL SETA. Skills Development for Economic Growth. ETQA Assessor and Moderator Registration Policy
WHOLESALE AND RETAIL SETA Skills Develpment fr Ecnmic Grwth ETQA Assessr and Mderatr Registratin Plicy WHOLESALE AND RETAIL SETA ETQA ASSESSOR AND MODERATOR POLICY Effective Date: 00/00/2007 Dc ID: Rev:
More informationEnforceable Undertakings Operational Policy
Enfrceable Undertakings Operatinal Plicy Enfrceable Undertakings Operatinal Plicy. Nvember 2018 Page 1 f 13 Enfrceable Undertakings Operatinal Plicy This plicy sets ut Maritime NZ s apprach t enfrceable
More informationProducer Statements will be accepted only in accordance with this policy.
Prducer Statements Plicy This plicy has been prepared t ensure that Cuncil has clearly dcumented plicies and prcedures fr the request fr and acceptance f Prducer Statements in cnnectin with applicatins
More informationHIPAA Privacy Rule LINKS AND RESOURCES AFFECTED ENTITIES IMPACT ON EMPLOYERS. Provided by Brown & Brown of Louisiana, LLC
Prvided by Brwn & Brwn f Luisiana, LLC HIPAA Privacy Rule The HIPAA Privacy Rule establishes natinal standards t prtect individuals medical recrds and ther persnal health infrmatin. The Privacy Rule applies
More informationDATA PROTECTION POLICY FOR PUPILS AND PARENTS
DATA PROTECTION POLICY FOR PUPILS AND PARENTS This Plicy is relevant t the whle schl including EYFS Cntents 1.0 Intrductin 2.0 Respnsibility fr data prtectin 3.0 Types f persnal data prcessed by the schl
More informationAre you ready for the FUTURE of your Quality Management system?
1 Are yu ready fr the FUTURE f yur Quality Management system? BACKGROUND Quality Management System standard, ISO 9001 has made sme majr changes released in September 2015. Organizatins are studying and
More informationInternational Standard on Auditing (UK) 265
Standard Audit and Assurance Financial Reprting Cuncil June 2016 Internatinal Standard n Auditing (UK) 265 Cmmunicating Defi ciencies in Internal Cntrl t Thse Charged With Gvernance and Management The
More informationPERFORMANCE DEVELOPMENT SYSTEM. Supervisory and Management Staff Appraisal. Department: Reviewer s Name: Review Period:
PERFORMANCE DEVELOPMENT SYSTEM Supervisry and Management Staff Appraisal Emplyee Name: Title: Department: Reviewer s Name: Title: Review Perid: t Date f Entry t Psitin: Date f Last Review: Type f Review:
More informationAUDIT COMMITTEE CHARTER
AUDIT COMMITTEE CHARTER WBHO Audit Cmmittee Charter Page 1 f 9 Intrductin The Audit Cmmittee is cnstituted as a statutry cmmittee f the Cmpany in respect f its statutry duties in terms f Sectin 94(1) f
More informationInternal Control Requirements for Adopting New Accounting Standards
Internal Cntrl Requirements fr Adpting New Accunting Standards Backgrund In previus articles, BKD discussed the U.S. Securities and Exchange Cmmissin s (SEC) expectatins regarding the requirement t disclse
More informationTerms of Reference - Board of Directors (approved by the Board on 12 April 2018)
Terms f Reference - Bard f Directrs (apprved by the Bard n 12 April 2018) 1. Respnsibility and Principal Duties The Bard f Directrs has the verall respnsibility fr the gvernance f the Cmpany and fr supervising
More informationUsing the Work of an Auditor s Expert
SINGAPORE STANDARD ON AUDITING SSA 620 Using the Wrk f an Auditr s Expert This SSA 620 supersedes SSA 620 Using the Wrk f an Expert in September 2009. Auditrs are required t cmply with the auditing standards
More informationCHARTER OF RESERVES, HEALTH, SAFETY, ENVIRONMENT AND SOCIAL RESPONSIBILITY COMMITTEE 2018
CHARTER OF RESERVES, HEALTH, SAFETY, ENVIRONMENT AND SOCIAL RESPONSIBILITY COMMITTEE 2018 The Reserves, Health, Safety, Envirnment and Scial Respnsibility Cmmittee Charter utlines the specific rles and
More informationSound Management of Electronic Wastes in North America Operating Year(s):
2011 2012 Operatinal Plan Prject Descriptin Sund Management f Electrnic Wastes in Nrth America Operating Year(s): 2011 2012 Planned Budget: C$400,000.00 2011: C$165,000.00 2012: C$235,000.00 Strategic
More informationCanadian Association for the Study of the Liver Endorsement Policy
Canadian Assciatin fr the Study f the Liver Endrsement Plicy 1. Purpse: The purpse f this CASL plicy is t define the criteria and the prcess that will be fllwed fr requests frm utside rganizatins, agencies,
More informationAudit & Risk Committee Charter
Audit & Risk Cmmittee Charter AUDIT & RISK COMMITTEE CHARTER The Audit & Risk Cmmittee has been established by reslutin f the Bard f Macmahn Hldings Limited ( Macmahn r the Cmpany ). Membership The Audit
More informationAUDIT, RISK MANAGEMENT AND COMPLIANCE COMMITTEE CHARTER
AUDIT, RISK MANAGEMENT AND COMPLIANCE COMMITTEE CHARTER August 2012 OPUS Grup Limited Audit, Risk Management and Cmpliance Cmmittee 1. GENERAL PURPOSE The primary bjective f the Audit, Risk Management
More informationSchool Business Manager
Plicy Title: Risk Assessment Plicy Authr: Schl Business Manager Audience: Staff Reviewed by: Gvernrs Review frequency: Annual Reviewed when: Octber 2016 Risk Assessment Plicy Intrductin Nrthease Manr Schl
More informationAUDIT & RISK COMMITTEE (ARC)
AUDIT & RISK COMMITTEE (ARC) The Audit and Risk Cmmittee is an independent appraisal bdy appinted by the chapter bard t assist the bard in fulfilling its versight respnsibilities pertaining t the integrity
More informationLMA GUIDANCE: GDPR CORE USES INFORMATION NOTICE
LMA GUIDANCE: GDPR CORE USES INFORMATION NOTICE FEBRUARY 2018 NOTE: This guidance and the Lndn Market Cre Uses Infrmatin Ntice will be updated when the UK Data Prtectin Bill is enacted the Bill currently
More informationEXECUTIVE SUMMARY INTERNAL AUDIT REPORT. IOM Mogadishu SO November 7 December 2018
EXECUTIVE SUMMARY INTERNAL AUDIT REPORT IOM Mgadishu SO201701 27 Nvember 7 December 2018 Issued by the Office f the Inspectr General Page 1 f 12 Reprt n the Audit f IOM Mgadishu Executive Summary Audit
More informationCYBG PLC BOARD REMUNERATION COMMITTEE. Charter
Charter Cmmittee Rle The Bards Remuneratin Cmmittee will act as the bard level Remuneratin Cmmittee fr Clydesdale and Yrkshire Banking Grup ( CYBG ) PLC and its subsidiaries, including fr the avidance
More informationCONSENT FOR TREATMENT
Thank yu fr chsing 2 nd Street Dental, LLC as yur dental prvider. We are cmmitted t yur treatment being successful. Please understand that payment f yur fees is cnsidered part f yur treatments. The fllwing
More informationTASSAL GROUP LIMITED ABN Procedures for the Oversight and Management of Material Business Risks. (Approved by the Board 28 May 2015)
Prcedures fr the Oversight and Management f Material Business Risks TASSAL GROUP LIMITED ABN 15 106 067 270 Prcedures fr the Oversight and Management f Material Business Risks (Apprved by the Bard 28 May
More informationJune Dear Chairman Cuttita and Members of the Board of Fire Commissioners:
THOMAS P. DiNAPOLI COMPTROLLER STATE OF NEW YORK OFFICE OF THE STATE COMPTROLLER 110 STATE STREET ALBANY, NEW YORK 12236 GABRIEL F. DEYO DEPUTY COMPTROLLER DIVISION OF LOCAL GOVERNMENT AND SCHOOL ACCOUNTABILITY
More informationDetails of Rate, Fee and Other Cost Information
Details f Rate, Fee and Other Cst Infrmatin Accunt terms are nt guaranteed fr any perid f time. All terms, including fees and APRs fr new transactins, may change in accrdance with the Credit Card Agreement
More informationCommission d évaluation de l enseignement collégial. Analytical Framework. Evaluating the Effectiveness of Strategic Plans in the Cégeps
Cmmissin d évaluatin de l enseignement cllégial Analytical Framewrk Evaluating the Effectiveness f Strategic Plans in the Cégeps April 2008 Dcument prepared and written by Katie Bérubé, Prject Crdinatr
More informationHow to Become a Delaware Public Benefit Corporation
Hw t Becme a Delaware Public Benefit Crpratin This utline describes the majr steps required fr an existing Delaware crpratin t becme a Delaware public benefit crpratin. 1. Summary. In rder t becme a public
More informationTHE CLOROX COMPANY AUDIT COMMITTEE CHARTER. [Effective May 8, 2017]
THE CLOROX COMPANY AUDIT COMMITTEE CHARTER [Effective May 8, 2017] PURPOSE AND AUTHORITY The Audit Cmmittee ( Cmmittee ) is established by the Bard f Directrs ( Bard ) fr the purpses f: 1. Representing
More informationPolicy Coversheet. Link Tutors: appointment and responsibilities
Plicy Cversheet Name f Plicy: Link Tutrs: appintment and respnsibilities Purpse f Plicy: Intended audience(s): Apprval fr this plicy given by: T utline the arrangements fr the appintment f University Link
More informationPrivacy & Data Protection Policy
Privacy & Data Prtectin Plicy Whitby & District Fishing Industry Training Schl Limited and 54 Nrth Maritime Training ("Whitby Fishing Schl", WDFITS, 54 Nrth Maritime "we" r "us") are cmmitted t prmting
More informationHuntington Bancshares Incorporated
Audit Cmmittee Apprved By: Bard f Directrs Huntingtn Bancshares Incrprated Apprval Date 1 f 6 Purpse f Cmmittee The Audit Cmmittee (Cmmittee) is established by the Bard f Directrs (Bard) t assist the Bard
More informationNCTJ Conflicts of Interest Policy and Procedures
NCTJ Cnflicts f Interest Plicy and Prcedures Purpse This plicy aims t draw attentin t the pssibility f cnflicts, minimise r prevent a cnflict ccurring and manage cnflicts that have arisen. Definitin f
More informationSRI LANKA AUDITING STANDARD 580 WRITTEN REPRESENTATIONS CONTENTS
SRI LANKA AUDITING STANDARD 580 WRITTEN REPRESENTATIONS (Effective fr audits f financial statements fr perids beginning n r after 01 January 2014) CONTENTS Paragraph Intrductin Scpe f this SLAuS... 1-2
More informationData Protection Policy
Data Prtectin Plicy PLEASE NOTE: A new Data Prtectin Plicy, cmpliant with the requirements f the Data Prtectin Act 2018 and the Eurpean General Data Prtectin Regulatin (GDPR), is currently underging the
More informationARIZONA FIRE DISTRICT ASSOCIATION FINANCIAL PROCEDURES POLICY
FINANCIAL PROCEDURES POLICY 1. PURPOSE The purpse f these Financial Prcedures is t prvide cnsistent applicatin f cnduct and prper internal cntrls t safeguard the assets f the Arizna Fire District Assciatin
More informationAudit Follow Up. Citywide Cash Controls Development and Transportation Services (Report #0134, Issued August, 2001) As of March 31, 2002
Audit Fllw Up As f March 31, 2002 Sam M. McCall, CPA, CIA, CGFM City Auditr Citywide Cash Cntrls Develpment and Transprtatin Services (Reprt #0134, Issued August, 2001) Reprt #0231 July 25, 2002 Summary
More informationEngineering IT Application Development Governance Workflow
Apprved April 6, 2018 Engineering IT Applicatin Develpment Gvernance Wrkflw This dcument is intended t define the gvernance structure and prcesses t be used in guiding the activities f the Engineering
More informationPractice Review and Internal Audit Plan
Office f the Auditr General f Canada Practice Review and Internal Audit Plan Lng-term audit plan, fiscal years 2009 10 t 2011 12 June 2009 Table f Cntents 1 Executive Summary 3 2 Intrductin 5 3 External
More informationBoard Committee Charters
Charter Released by the Bard f Directrs f Snva Hlding AG n June 17, 2014. Audit Cmmittee ( AC ) Charter Art. 1: Purpse The Audit Cmmittee ( AC ) reviews n behalf f the Bard the wrk and effectiveness f
More informationEXECUTIVE SUMMARY INTERNAL AUDIT REPORT. IOM Kingston JM JULY 2017
EXECUTIVE SUMMARY INTERNAL AUDIT REPORT IOM Kingstn JM201701 17-21 JULY 2017 Issued by the Office f the Inspectr General Page 1 f 9 Reprt n the Audit f IOM Kingstn Executive Summary Audit File N. JM201701
More informationWhat do you need? Copy of the HIPAA Policy on Amendment of Protected Health Information
HIPAA Privacy Prcedure #4 Effective Date: April 14, 2003 Reviewed Date: February, 2011 Amendment f Prtected Health Revised Date: February, 2011 Infrmatin Scpe: Radiatin Onclgy ************************************************************************************
More informationNANOSTRING TECHNOLOGIES, INC. COMPENSATION COMMITTEE CHARTER. (Adopted as of October 16, 2012 and amended as of April 26, 2017)
NANOSTRING TECHNOLOGIES, INC. COMPENSATION COMMITTEE CHARTER (Adpted as f Octber 16, 2012 and amended as f April 26, 2017) PURPOSE The purpse f the Cmpensatin Cmmittee (the Cmmittee ) f the Bard f Directrs
More informationApproval Process and Arrangements for University Consultancy Work
Apprval Prcess and Arrangements fr University Cnsultancy Wrk 1 Intrductin Cnsultancy activities can be separated int tw types: thse undertaken in City s name (University cnsultancy) and thse undertaken
More informationCHARTER OF THE COMPENSATION COMMITTEE OF THE BOARD OF DIRECTORS OF PLURALSIGHT, INC. Adopted May 3, 2018
CHARTER OF THE COMPENSATION COMMITTEE OF THE BOARD OF DIRECTORS OF PLURALSIGHT, INC. Adpted May 3, 2018 PURPOSE The purpse f the Cmpensatin Cmmittee (the Cmpensatin Cmmittee ) f the Bard f Directrs (the
More informationNEW PROCEDURES FOR ORDER MARKER CORRECTIONS
Rules Ntice Guidance Nte UMIR Please distribute internally t: Legal and Cmpliance Trading Cntact: Felix Mazer Plicy Cunsel Telephne: 416.646.7280 Fax: 416.646.7265 e-mail: fmazer@iirc.ca 08-0033 July 15,
More informationPolicy Planning and Analysis Team (PAT) Charter
Plicy Planning and Analysis Team (PAT) Charter Purpse f this Charter Dcument This charter defines the missin, guiding principles, scpe, rles, membership, and peratins fr the Plicy Planning and Analysis
More informationAnnex E - Special Event Emergency Planning Guide
Annex E - Special Event Emergency Planning Guide 1 1.0 Purpse 2.0 Scpe 1.1. The Special Event Emergency Planning Guide is issued t assist WVU Beckley Special Event Crdinatrs develp actin plans fr any majr
More informationA-1110 Wien. Privacy Notice
Eurfins Lebensmittelanalytik Tel. +43 (1) 944 33 44-0 ffice@eurfins.at www.eurfins.at Privacy Ntice Table f cntents 1 Cntrller infrmatin... 2 2 What infrmatin shuld yu give Eurfins?... 2 3 Why d we use
More informationThe Committee is specifically charged with the following duties and responsibilities:
CORPORATE GOVERNANCE POLICY AND PROCEDURES MANUAL AUDIT AND RISK COMMITTEE CHARTER The Bard has reslved t establish a Cmmittee f the Bard t be knwn as the Audit and Risk Cmmittee. This Cmmittee will replace
More informationOverview of Statements of Investment Policies and Procedures (SIPP) Requirements
Financial Services Cmmissin f Ontari Cmmissin des services financiers de l Ontari SECTION: INDEX NO.: TITLE: APPROVED BY: PUBLISHED: Investment Guidance Ntes IGN-005 Overview f Statements f Investment
More informationCopiague Chamber of Commerce
Cpiague Chamber f Cmmerce Est. 1955 BASIC REQUIREMENTS AND RESPONSIBILITIES FOR HOLDING OFFICE & POSITION DESCRIPTIONS 2016 Table f Cntents The basic requirements and respnsibilities fr hlding Office Psitin
More informationLocal Code Of Corporate Governance
Lcal Cde Of Crprate Gvernance Apprved by Jint Cmmittee 26 June 2017 Reprt N JC 09/2017 LOCAL CODE OF CORPORATE GOVERNANCE INTRODUCTION Crprate gvernance is the cmbinatin f prcesses and structures implemented
More informationInvestor Money Regulations
Investr Mney Regulatins A new regime fr fund service prviders in Ireland On the 30 th March 2015, the new Investr Mney Regulatins were brught int effect by Statutry Instrument 105 f 2015, with crrespnding
More informationInformation Incident Management Process
September 2011 Infrmatin Incident Management Prcess Office f the Gvernment Chief Infrmatin Officer Ministry f Citizens Services and Open Gvernment Table f Cntents Plicy Overview... 3 Objectives... 3 Scpe...
More informationTD Insurance s Multi-Year Accessibility Plan
TD Insurance s Multi-Year Accessibility Plan TABLE OF CONTENTS... 1 INTRODUCTION AND STATEMENT OF COMMITMENT... 1 OUR PLAN... 1 ACCESSIBILITY POLICIES...1 TRAINING...1 INFORMATION COMMUNICATION STANDARDS...2
More informationAcademic and Administrative and Other Related Staff Annual Review
Academic and Administrative and Other Related Staff Annual Review Intrductin Heads f Cllege/Budget Centre (r nminated representative) have the pprtunity t cnsider and t make the fllwing recmmendatins fr
More informationGrant Application Guidelines
Grant Applicatin Guidelines The prgram staff f the Cmmunity Fundatin f Greater New Britain lks frward t wrking with yu. This frm is fr rganizatins that have submitted a Letter f Intent t us and were invited
More informationWritten Representations
SINGAPORE STANDARD ON AUDITING SSA 580 Written Representatins This revised and redrafted SSA 580 supersedes SSA 580 Management Representatins in August 2008. Auditrs are required t cmply with the auditing
More informationRenewing an Insurance Policy
AGENTS, BROKERS Renewing an Insurance Plicy This renewal prcedure is designed t help representatives respect their bligatins when renewing an insurance plicy. Essentially, these bligatins are spelled ut
More informationensuring staff are aware of the Principles they must follow when handling personal data ensuring appropriate controls are in place and are effective
Swan Husing Assciatin Jb Descriptin Jb Title: Sectin: Reprts t: Direct Reprts: Head f Business Intelligence Business Intelligence Unit Executive Directr f IT & Private Sectr Services Innvatin Manager Applicatin
More informationRisk and Audit Committee charter
Risk and Audit Cmmittee charter 1. Intrductin The Bard f Cffey Internatinal Limited ( Cffey r the Cmpany ) has established a Risk and Audit Cmmittee ( Cmmittee ). It is nted that the Cmmittee is a sub-cmmittee
More informationCORPORATE GOVERNANCE POLICY
CORPORATE GOVERNANCE POLICY Bard Missin Sagicr Real Estate X Fund Limited ( X Fund r the Cmpany ) was incrprated in 2011 under the laws f St. Lucia as an Internatinal Business Cmpany (IBC). X Fund is cmmitted
More informationNUMBER: BUSF 3.30 Business and Finance. Other Educational and General Program Accounts ("E" Funds) Date: October 18, 2006 I. PURPOSE OF THE POLICY
NUMBER: BUSF 3.30 SECTION: Business and Finance SUBJECT: Other Educatinal and General Prgram Accunts ("E" Funds) Date: Octber 18, 2006 Plicy fr: Prcedure fr: Authrized by: Issued by: All Campuses All Campuses
More informationAudit Committee Charter
www.subsea7.cm Audit Cmmittee Charter 5 23.May.17 Mark Fley VP Grup Financial Cntrller Dd Fraser Chairman f the Audit Cmmittee Revisin Revisin Date Dcument Owner Dcument Apprver Revisin: 5 Audit Cmmittee
More informationCITIGROUP INC. AUDIT COMMITTEE CHARTER As of January 18, 2018
CITIGROUP INC. AUDIT COMMITTEE CHARTER As f January 18, 2018 Missin The Audit Cmmittee ( Cmmittee ) f Citigrup Inc. ( Citigrup r the Cmpany ) is a standing cmmittee f the Bard f Directrs ( Bard ). The
More informationFCA Final Notice: Market abuse systems and controls
FCA Final Ntice: Market abuse systems and cntrls regulkar Key issues frm the Final Ntice issued by the Financial Cnduct Authrity t W H Ireland Limited n 22 February 2016. 16 March 2016 simmns-simmns.cm
More informationScope of Services and Timeline. PHASE 1: Project Organization & Best Practices Research Week Completed
Organizatin Scpe f Services and Timeline Versin f December 9, 2011 PHASE 1: Prject Organizatin & Best Practices Research Cmpleted CONSULTANT Aug 8 12 Aug 15 19 Aug 22 26 Aug 29 Oct 28 CONSULTANT Nv 13
More informationUK Employment Law Changes in 2010: New Statutory Rates, Limits and Entitlements
February 2010 UK Emplyment Law Changes in 2010: New Statutry Rates, Limits and Entitlements BY CHRIS BRACEBRIDGE AND ANNA SANFORD At a Glance Varius changes t emplyment related cmpensatin, benefit and
More informationJOHN L. LITTLE, D.D.S, P.A ACKNOWLEDGEMENT OF RECEIPT OF NOTICE OF PRIVACY PRACTICES. May Refuse to Sign This Acknowledgement-
JOHN L. LITTLE, D.D.S, P.A ACKNOWLEDGEMENT OF RECEIPT OF NOTICE OF PRIVACY PRACTICES -Yu I, Privacy Practices. May Refuse t Sign This Acknwledgement- ---, have received a cpy f this ffice's Ntice f {Please
More informationUNITED NATIONS OFFICE FOR PROJECT SERVICES (UNOPS) INTERNAL AUDIT REPORT 3 JUNE 2014
UNITED NATIONS OFFICE FOR PROJECT SERVICES (UNOPS) INTERNAL AUDIT REPORT 3 JUNE 2014 PROJECT NAME: PROJECT NUMBER: 00075434 COUNTRY: AUDITOR: SECOND CUSTOMS REFORM AND TRADE FACILITATION PROJECT AFGHANISTAN
More informationVIVINT SOLAR, INC. COMPENSATION COMMITTEE CHARTER. (Adopted as of May 9, 2014)
VIVINT SOLAR, INC. COMPENSATION COMMITTEE CHARTER (Adpted as f May 9, 2014) PURPOSE The purpse f the Cmpensatin Cmmittee (the Cmmittee ) f the Bard f Directrs (the Bard ) f Vivint Slar, Inc. (the Cmpany
More informationDepartment of Environment Land, Water and Planning
Department f Envirnment Land, Water and Planning Psitin purpse The Senir Plicy Officer is part f the Building Unit which is respnsible fr the delivery f plicies and brad based strategies t achieve imprved
More informationBill 92 extra billing provisions Information for Practitioners
Bill 92 extra billing prvisins Infrmatin fr Practitiners Q1. What is extra billing? Extra billing invlves charging a MSP beneficiary r their representative fr a benefit cvered by MSP, r fr any matter related
More informationNARACOORTE LUCINDALE COUNCIL COUNCIL POLICY 94 PUBLIC CONSULTATION AND COMMUNITY ENGAGEMENT
RESPONSIBLE OFFICER: RELEVANT DELEGATIONS: Chief Executive Officer Manager Gvernance and Cmmunity Develpment LEGISLATION AND REFERENCES: Lcal Gvernment Act 1999 sectins 12, 50, 92, 122,123, 151, 156, 193,
More informationOSHA INSPECTION CHECKLIST
OSHA INSPECTION CHECKLIST HANDLING AN OSHA INSPECTION The Occupatinal Safety and Health Act (OSH Act) authrizes the Occupatinal Safety and Health Administratin (OSHA) t cnduct wrkplace inspectins and investigatins
More informationRISK MANAGEMENT AND BUSINESS CONTINUANCE A FAIS Standard. An AC Guidance Note. July 2010
RISK MANAGEMENT AND BUSINESS CONTINUANCE A FAIS Standard An AC Guidance Nte July 2010 Risk Management and Business Cntinuance - A FAIS standard The General Cde f cnduct deals in a number f ways with the
More information