Data is a valuable commodity in the digital economy, so demand is growing for competent privacy professionals who can safeguard it. But it can be difficult for organizations to identify candidates who are properly qualified for these complex roles, which require a solid understanding of technology, best practices, and the law.
The CIOSC’s Technical Committee on Privacy and Access Control has now published a national standard indicating core competencies required for access and privacy professionals. These cover a range of key areas, including information privacy, access to information, and data protection. The standard applies across public, private, and nonprofit organizations and will be equally relevant to all sectors of the economy.
“For the past 18 years, the Privacy & Access Council of Canada has set the standard of competency for privacy, access-to-information and data protection professionals. We are proud of the forward-thinking members of PACC’s executive, Board of Directors, and Advisory Board who articulated just what it takes to work in this field and are encouraged to see that definition evolve to become the national standard of competency for the profession across the public, private, and non-profit sectors. Proficiency standards are a foundational—and welcome—shift in how organizations meet public expectations and legislated obligations.”
—Sharon Polsky MAPP, President of the Privacy and Access Council of Canada
“In this era of data breaches and the demise of the access to information regime, Canadians can now depend on a National Standard of Competency to ensure their privacy and keep government transparent and accountable.”
–Marc-Roger Gagné MAPP, Director, Privacy and Access Council of Canada
“Every organization is now a data organization and must do more than comply with privacy and access laws, they need to meet the public’s expectations that personal information will be properly safeguarded. The CIO Strategy Council is proud to announce the publication of CAN/CIOSC 109-1, Qualification and Proficiency of Access-to-Information, Privacy, and Data Protection Professional, a National Standard of Canada that provides benchmarks for the people entrusted to oversee the protection of privacy. The standard gives data protection professionals, and newcomers to the industry, a clear roadmap of skills, experience, and education they need to do the work and have a successful career in privacy and data protection.”
–Darryl Kingston, CIO Strategy Council – Senior Director, Standards
The new National Standard of Canada, (CAN/CIOSC 109-1: 2022) is available here for download.
For media inquiries:
Senior Project Manager, Standards
CIO Strategy Council
About the CIO Strategy Council
The CIO Strategy Council is Canada’s national forum that brings together the country’s most forward-thinking chief information officers and executive technology leaders to collectively mobilize on common digital priorities. Cutting across major sectors of the Canadian economy – public, private and not for profit – the Council harnesses the collective expertise and action of Canada’s CIOs to propel Canada as a digital-first nation. The CIO Strategy Council is accredited by the Standards Council of Canada and develops standards that support the data-driven economy.
About the Privacy & Access Council of Canada
PACC is the voice for privacy and access.
PACC is Independent • Non-profit • Non-partisan • Non-government
PACC is dedicated to the development and promotion of the access-to-information, information privacy, and data governance profession across the private, public, and non-profit sectors
PACC is uniquely positioned to effect change to strengthen the profession and uphold the highest standards of practice
PACC offers the only professional certification that complies with the National Standard of Qualification and Proficiency of Privacy and Access Control Professionals