OTTAWA, April 7, 2021 – The CIO Strategy Council is pleased to announce the publication of a Publicly Available Specification, CIOSC/PAS 100-6:2021, Data Governance – Part 6: Specification for the responsible collection and use of digital contact tracing and monitoring data in the workplace. The Specification responds to an urgent market need and represents the consensus of subject matter experts.
Concurrently, the CIO Strategy Council invites stakeholders to provide further input on these minimum requirements, which will contribute to the publication of a National Standard of Canada. The published National Standard of Canada will supersede the Specification. This document is available for public review until May 19, 2021.
The Specification sets minimum requirements for the acceptable and responsible collection and use of contact tracing and monitoring data in the workplace. It applies to the governance of current and future use of data that is created, collected, stored or controlled by contact tracing and monitoring solutions, and impacts the management processes and decisions relating to data security and privacy. The Specification addresses privacy by design principles, data minimization, identity management, access controls methods, and data sharing with public health agencies – among others.
The Specification does not cover the use of contact tracing, monitoring and surveillance solutions applied in public health.
“Organizations around the world are evaluating digital strategies to reopen workplaces safely” said Keith Jansa, Executive Director of the CIO Strategy Council. “The specification responds to an urgent need to maintain the health of employees, contractors and the public as COVID-19 restrictions loosen and businesses reopen.”
In 2020, the CIO Strategy Council’s Standards Policy Committee tasked the Council’s Technical Committee on Data Governance with developing this standard.
For more information or any questions about the Council’s standards development activities, please contact Matthew MacNeil.
Additional Background
About CIO Strategy Council
The CIO Strategy Council is Canada’s national forum that brings together the country’s most forward-thinking chief information officers and executive technology leaders to collectively mobilize on common digital priorities. Cutting across major sectors of the Canadian economy – public, private, and not for profit – the Council harnesses the collective expertise and action of Canada’s CIOs to accelerate Canada’s digital transformation. In 2019, the Standards Council of Canada accredited the CIO Strategy Council to develop National Standards of Canada supporting the data-driven economy. Learn more at www.ciostrategycouncil.com.
About CIO Strategy Council Standards Policy Committee
The Standards Policy Committee governs the Council’s standardization policies, sets standardization priorities and is responsible for coordinating standards development activities by establishing, dissolving and assigning responsibility to technical committees; approving new technical work; determining priorities; and maintaining the Council’s standards policies, procedures and other rules for the technical work.
About CIO Strategy Council Technical Committee on Data Governance
The Technical Committee is responsible for the development of standards and specifications for the acceptable and ethical use of data within and exchanged between organizations, including its availability, collection, usability, consistency, integrity, and security.
-30-
For media inquiries:
Katie Gibson
Vice President, Strategy and Partnership
CIO Strategy Council
katie.gibson@ciostrategycouncil.com