Table of contents
- CDIC Narrative Report for 2018-2019 – Tab A
- CDIC Privacy Act Delegation Order (April 25, 2018) – Tab B
- CDIC Privacy Act Statistical Report for 2018-2019 – Tab C
(also attached – Appendix A (New Exemption Table) to the Statistical Report on Privacy Act)
Tab A
Introduction
The Privacy Act (the “Act”) provides Canadian citizens and permanent residents with the right to access personal information held by government institutions and protection of that information against unauthorized use and disclosure. This annual report, covering the period from April 1, 2018 to the end of the financial year, March 31, 2019, is prepared and submitted by the Canada Deposit Insurance Corporation (“CDIC”) for tabling in Parliament in accordance with section 72 of the Privacy Act.
Mandate and Governance
CDIC was established in 1967 by the Canada Deposit Insurance Corporation Act. The objects of the Corporation are:
- to provide insurance against the loss of part or all of deposits;
- to promote and otherwise contribute to the stability of the financial system in Canada;
- to pursue the objects set out in paragraphs (a) and (b) for the benefit of persons having deposits with member institutions and in such manner as will minimize the exposure of the Corporation to loss; and
- to act as the resolution authority for its members.
CDIC is administered by a board of directors headed by the Chairperson, who is appointed by the Governor in Council. There are five ex officio directors (the Governor of the Bank of Canada, the Deputy Minister of Finance, the Superintendent of Financial Institutions, a Deputy Superintendent of Financial Institutions or an officer of the Office of the Superintendent of Financial Institutions appointed by the Minister, and the Commissioner of the Financial Consumer Agency of Canada), as well as five private sector directors appointed by the Governor in Council.
Applicable Legislation
- Canada Deposit Insurance Corporation Act
- Access to Information Act
- Privacy Act
Main Publications
- Annual Report
- “Protecting Your Deposits” Brochure
- Summary of the Corporate Plan
Administration of the Act
CDIC is a relatively small Crown corporation, which typically receives very few requests for personal information in any given year. As a result, CDIC does not have a formalized Access to Information and Privacy (“ATIP”) office with staff dedicated to ATIP matters on a full-time basis. Rather, the Vice-President, Corporate Affairs, General Counsel and Corporate Secretary assumes the role of ATIP Coordinator and is supported in this capacity by the Director, Legal Services as primary contact and by the Legal Services Department as required. The Law Clerk & ATIP Officer in the Legal Services Department assists with ATIP matters on a part-time basis. In order to ensure timely and accurate responses to ATIP requests, CDIC has standby agreements with several external ATIP consultants who are available to assist as needed.
Delegation by Head of Corporation
A copy of the Delegation Order dated April 25, 2018 (the “2018 Delegation Order”) designating the President & CEO, Vice-President, Corporate Affairs, General Counsel and Corporate Secretary or Director, Legal Services to exercise certain powers and perform certain duties and functions of the Chairperson under the Act is attached hereto and forms part of this annual report report (Tab B).
Privacy Act
Statistical Report and Interpretation
CDIC’s statistical report for 2018-2019 is attached to and forms part of this annual report (Tab C). During the period covered by this report, CDIC did not receive any requests under the provisions of the Act (i.e. formal requests) and received three informal requests, of which two were subsequently abandoned. No requests were carried forward from the previous reporting period.
Five-Year Trend
| Requests | 2014-2015 | 2015-2016 | 2016-2017 | 2017-2018 | 2018-2019 |
|---|---|---|---|---|---|
| No. of Requests Received | 0 | 2 | 2 | 0 | 0 |
| No. of Requests Closed | 0 | 2 | 2 | 0 | 0 |
| No. of Consultations Received | 0 | 0 | 0 | 0 | 0 |
| No. of Consultations Closed | 0 | 0 | 0 | 0 | 0 |
| Percentage of Requests Responded to within relevant period | 100% | 100% | 100% | N/A | N/A |
Disposition
As noted above, CDIC did not receive any requests under the Act during the reporting period.
Method of Access
No requests were processed.
Net Fees Collected
No fees were collected.
Education and Training Activities
In 2018-2019, all CDIC employees completed annual declarations of compliance with CDIC policies, including CDIC’s Privacy Policy.
A comprehensive powerpoint presentation concerning ATIP is available on CDIC’s intranet portal to all employees. CDIC does not track access by employees to this portal. During 2018-2019, all employees (120) received ethics training and all new employees received security training of which both include information regarding their ATIP responsibilities.
New/revised Policies, Guidelines and Procedures
In 2018-2019, CDIC did not implement any new or revised internal policies, guidelines or procedures relating to privacy.
Complaints, Investigations and Appeals
As at March 31, 2019, no complaint, investigation, or appeal was brought to the attention of CDIC in relation to the processing and outcome of privacy requests.
Monitoring Processing Time of Requests
CDIC has established procedures to monitor the time to process privacy requests by completing an internal tracking log spreadsheet, which is updated to reflect key dates and activities for all requests, including deadlines, and automated reminders are set. The ATIP Coordinator oversees the ATIP program at CDIC, and receives reports from the Director, Legal Services as the status of any requests change.
CDIC uses ATIP case management software which assists in the monitoring, processing and reporting on privacy requests.
Material Privacy Breaches
During the period covered by this report, no material privacy breaches occurred at CDIC.
Privacy Impact Assessments (PIA)
During the period covered by this report, CDIC did not complete any PIAs.
Disclosures under Paragraph 8(2)(m) of the Act
During the period covered by this report, CDIC did not disclose personal information pursuant to paragraph 8(2)(m) of the Act.
Tab B
Privacy Act Delegation Order
The Chairperson of Canada Deposit Insurance Corporation, pursuant to section 73 of the Privacy Act, hereby delegates to the persons holding the positions set out below, or the persons occupying those positions on an acting basis, the exercise of the powers and functions of the Chairperson, as the head of a government institution under the Privacy Act, as follows:
| Position | Delegation of Authority under Privacy Act and Regulations |
|---|---|
| President & Chief Executive Officer | Full authority |
| Vice-President, Corporate Affairs, General Counsel and Corporate Secretary/Access to Information and Privacy Coordinator | Full authority |
| Director, Legal Services | Full authority |
This designation replaces and repeals all previous Privacy Act delegation orders.
Original signed by
Robert Sanderson, Chair
April 25, 2018
Tab C
Statistical Report on the Privacy Act
Part 1: Requests under the Privacy Act
| Number of requests | |
|---|---|
| Received during reporting period | 0 |
| Outstanding from previous reporting period | 0 |
| Total | 0 |
| Closed during reporting period | 0 |
| Carried over to next reporting period | 0 |
Part 2: Requests Closed During the Reporting Period
2.1 Disposition and completion time
| Disposition of requests | Completion time | |||||||
|---|---|---|---|---|---|---|---|---|
| 1 to 15 days | 16 to 30 days | 31 to 60 days | 61 to 120 days | 121 to 180 days | 181 to 365 days | More than 365 days | Total | |
| All disclosed | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Disclosed in part | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| All exempted | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| All excluded | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| No records exist | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Request abandoned | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Neither confirmed nor denied | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
2.2 Exemptions
| Section | Number of requests |
|---|---|
| 18(2) | 0 |
| 19(1)(a) | 0 |
| 19(1)(b) | 0 |
| 19(1)(c) | 0 |
| 19(1)(d) | 0 |
| 19(1)(e) | 0 |
| 19(1)(f) | 0 |
| 20 | 0 |
| 21 | 0 |
| 22(1)(a)(i) | 0 |
| 22(1)(a)(ii) | 0 |
| 22(1)(a)(iii) | 0 |
| 22(1)(b) | 0 |
| 22(1)(c) | 0 |
| 22(2) | 0 |
| 22.1 | 0 |
| 22.2 | 0 |
| 22.3 | 0 |
| 23(a) | 0 |
| 23(b) | 0 |
| 24(a) | 0 |
| 24(b) | 0 |
| 25 | 0 |
| 26 | 0 |
| 27 | 0 |
| 28 | 0 |
2.3 Exclusions
| Section | Number of requests |
|---|---|
| 69(1)(a) | 0 |
| 69(1)(b) | 0 |
| 69.1 | 0 |
| 70(1) | 0 |
| 70(1)(a) | 0 |
| 70(1)(b) | 0 |
| 70(1)(c) | 0 |
| 70(1)(d) | 0 |
| 70(1)(e) | 0 |
| 70(1)(f) | 0 |
| 70.1 | 0 |
2.4 Format of information released
| Disposition | Paper | Electronic | Other formats |
|---|---|---|---|
| All disclosed | 0 | 0 | 0 |
| Disclosed in part | 0 | 0 | 0 |
| Total | 0 | 0 | 0 |
2.5 Complexity
2.5.1 Relevant pages processed and disclosed
| Disposition of requests | Number of pages processed | Number of pages disclosed | Number of requests |
|---|---|---|---|
| All disclosed | 0 | 0 | 0 |
| Disclosed in part | 0 | 0 | 0 |
| All exempted | 0 | 0 | 0 |
| All excluded | 0 | 0 | 0 |
| Request abandoned | 0 | 0 | 0 |
| Neither confirmed nor denied | 0 | 0 | 0 |
| Total | 0 | 0 | 0 |
2.5.2 Relevant pages processed and disclosed by size of requests
| Disposition | Less than 100 pages processed | 101 to 500 pages processed | 501 to 1,000 pages processed | 1,001 to 5,000 pages processed | More than 5,000 pages processed | |||||
|---|---|---|---|---|---|---|---|---|---|---|
| Number of requests | Pages disclosed | Number of requests | Pages disclosed | Number of requests | Pages disclosed | Number of requests | Pages disclosed | Number of requests | Pages disclosed | |
| All disclosed | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Disclosed in part | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| All exempted | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| All excluded | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Request abandoned | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Neither confirmed nor denied | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
2.5.3 Other complexities
| Disposition | Consultation required | Legal advice sought | Interwoven Information | Other | Total |
|---|---|---|---|---|---|
| All disclosed | 0 | 0 | 0 | 0 | 0 |
| Disclosed in part | 0 | 0 | 0 | 0 | 0 |
| All exempted | 0 | 0 | 0 | 0 | 0 |
| All excluded | 0 | 0 | 0 | 0 | 0 |
| Request abandoned | 0 | 0 | 0 | 0 | 0 |
| Neither confirmed nor denied | 0 | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 | 0 |
2.6 Deemed refusals
2.6.1 Reasons for not meeting statutory deadline
| Number of requests closed past the statutory deadline | Principal reason | |||
|---|---|---|---|---|
| Workload | External consultation | Internal consultation | Other | |
| 0 | 0 | 0 | 0 | 0 |
2.6.2 Number of days past deadline
| Number of days past deadline | Number of requests past deadline where no extension was taken | Number of requests past deadline where an extension was taken | Total |
|---|---|---|---|
| 1 to 15 days | 0 | 0 | 0 |
| 16 to 30 days | 0 | 0 | 0 |
| 31 to 60 days | 0 | 0 | 0 |
| 61 to 120 days | 0 | 0 | 0 |
| 121 to 180 days | 0 | 0 | 0 |
| 181 to 365 days | 0 | 0 | 0 |
| More than 365 days | 0 | 0 | 0 |
| Total | 0 | 0 | 0 |
2.7 Requests for translation
| Translation Requests | Accepted | Refused | Total |
|---|---|---|---|
| English to French | 0 | 0 | 0 |
| French to English | 0 | 0 | 0 |
| Total | 0 | 0 | 0 |
Part 3: Disclosures Under Subsections 8(2) and 8(5)
| Paragraph 8(2)(e) | Paragraph 8(2)(m) | Subsection 8(5) | Total |
|---|---|---|---|
| 0 | 0 | 0 | 0 |
Part 4: Requests for Correction of Personal Information and Notations
| Disposition for Correction Requests Received | Number |
|---|---|
| Notations attached | 0 |
| Requests for correction accepted | 0 |
| Total | 0 |
Part 5: Extensions
5.1 Reasons for extensions and disposition of requests
| Disposition of requests where an extension was taken | 15(a)(i) Interference with operations |
15(a)(ii) Consultation |
15(b) Translation or conversion |
|
|---|---|---|---|---|
| Section 70 | Other | |||
| All disclosed | 0 | 0 | 0 | 0 |
| Disclosed in part | 0 | 0 | 0 | 0 |
| All exempted | 0 | 0 | 0 | 0 |
| All excluded | 0 | 0 | 0 | 0 |
| No records exist | 0 | 0 | 0 | 0 |
| Request abandoned | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 |
5.2 Length of extensions
| Length of extensions | 15(a)(i) Interference with operations |
15(a)(ii) Consultation |
15(b) Translation purposes |
|
|---|---|---|---|---|
| Section 70 | Other | |||
| 1 to 15 days | 0 | 0 | 0 | 0 |
| 16 to 30 days | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 |
Part 6: Consultations Received From Other Institutions and Organizations
6.1 Consultations received from other Government of Canada institutions and other organizations
| Consultations | Other Government of Canada institutions | Number of pages to review | Other organizations | Number of pages to review |
|---|---|---|---|---|
| Received during the reporting period | 0 | 0 | 0 | 0 |
| Outstanding from the previous reporting period | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 |
| Closed during the reporting period | 0 | 0 | 0 | 0 |
| Pending at the end of the reporting period | 0 | 0 | 0 | 0 |
6.2 Recommendations and completion time for consultations received from other Government of Canada institutions
| Recommendation | Number of days required to complete consultation requests | |||||||
|---|---|---|---|---|---|---|---|---|
| 1 to 15 days | 16 to 30 days | 31 to 60 days | 61 to 120 days | 121 to 180 days | 181 to 365 days | More than 365 days | Total | |
| All disclosed | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Disclosed in part | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| All exempted | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| All excluded | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Consult other institution | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Other | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
6.3 Recommendations and completion time for consultations received from other organizations
| Recommendation | Number of days required to complete consultation requests | |||||||
|---|---|---|---|---|---|---|---|---|
| 1 to 15 days | 16 to 30 days | 31 to 60 days | 61 to 120 days | 121 to 180 days | 181 to 365 days | More than 365 days | Total | |
| All disclosed | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Disclosed in part | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| All exempted | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| All excluded | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Consult other institution | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Other | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
Part 7: Completion Time of Consultations on Cabinet Confidences
7.1 Requests with Legal Services
| Number of Days | Fewer Than 100 Pages Processed | 101‒500 Pages Processed | 501-1000 Pages Processed | 1001-5000 Pages Processed | More Than 5000 Pages Processed | |||||
|---|---|---|---|---|---|---|---|---|---|---|
| Number of Requests | Pages Disclosed | Number of Requests | Pages Disclosed | Number of Requests | Pages Disclosed | Number of Requests | Pages Disclosed | Number of Requests | Pages Disclosed | |
| 1 to 15 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 16 to 30 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 31 to 60 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 61 to 120 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 121 to 180 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 181 to 365 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| More than 365 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
7.2 Requests with Privy Council Office
| Number of Days | Fewer Than 100 Pages Processed | 101‒500 Pages Processed | 501-1000 Pages Processed | 1001-5000 Pages Processed | More Than 5000 Pages Processed | |||||
|---|---|---|---|---|---|---|---|---|---|---|
| Number of Requests | Pages Disclosed | Number of Requests | Pages Disclosed | Number of Requests | Pages Disclosed | Number of Requests | Pages Disclosed | Number of Requests | Pages Disclosed | |
| 1 to 15 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 16 to 30 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 31 to 60 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 61 to 120 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 121 to 180 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| 181 to 365 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| More than 365 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
| Total | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
Part 8: Complaints and Investigations Notices Received
| Section 31 | Section 33 | Section 35 | Court action | Total |
|---|---|---|---|---|
| 0 | 0 | 0 | 0 | 0 |
Part 9: Privacy Impact Assessments (PIAs)
| Number of PIA(s) completed | 0 |
|---|
Part 10: Resources Related to the Privacy Act
10.1 Costs
| Expenditures | Amount | |
|---|---|---|
| Salaries | $4,353 | |
| Overtime | $0 | |
| Goods and Services | $9,793 | |
|
$9,793 | |
|
$0 | |
| Total | $14,146 | |
10.2 Human Resources
| Resources | Person years dedicated to privacy activities |
|---|---|
| Full-time employees | 0.07 |
| Part-time and casual employees | 0.00 |
| Regional staff | 0.00 |
| Consultants and agency personnel | 0.01 |
| Students | 0.00 |
| Total | 0.08 |
Note: Enter values to two decimal places.
Appendix A (New Exemption Table) to the Statistical Report on Privacy Act for Canada Deposit Insurance Corporation for the reporting period of 2018-04-01 to 2019-03-31
Statistical Report on the Privacy Act
| Section | Number of requests |
|---|---|
| 22.4 National Security and Intellingence Committee | 0 |
| 27.1 Patent or Trademark privilege | 0 |