Part 2 of the Access to Information Act outlines the need for government departments to proactively disclose information to the Canadian public. CSE is not exempt from these requirements and strives to disclose information where possible.
You can review CSE’s proactive disclosures through the government website: Proactive Disclosures.
Internal audit performance results
CSE has a comprehensive Internal Audit, Evaluation and Ethics program that continually examines our activities and operations. The team also makes sure that we are managing public resources in a responsible way, and that our employees are well-trained on our Ethics Charter.
In accordance with Treasury Board policy, CSE publishes key highlights about the performance of our internal audit program.
These reports show the extent to which:
- the internal auditors have the skills and training they need
- the audits meet international standards for the profession
- the auditors’ recommendations lead to change
- the audits help CSE achieve our mandated goals
The Treasury Board Directive on Internal Audit came into effect on April 1, 2017. No previous years’ results are available.
You can review our internal audit performance results here: Key Compliance Attributes.
Privacy Impact Assessments
CSE is committed to protecting the privacy of all Canadians through transparency and accountability measures. All programs and activities are subject to departmental privacy responsibilities which are governed by the Privacy Act and the Treasury Board Privacy Protection Policy.
Privacy impact assessment (PIAs) are an important component of risk management that ensure compliance with Privacy Act regulations and assess the privacy implications of new or substantially modified programs, activities, or services that collect personal information. Conducting PIAs allows CSE to reduce or mitigate privacy concerns.
The Government of Canada’s Directive on Privacy Impact Assessment ensures compliance in relation to privacy implications for the assessment, identification and confidentiality of personal information.