Comprehensive Suite of Privacy Services to Meet your Needs.

 

​

We have been helping government institutions with privacy impact assessments and advice for 25 years.

 

​

We specialize in Privacy Impact Assessments (PIA)

We have prepared hundreds of PIAs over the last 25 years for programs, systems, processes and practices for government departments and agencies that are increasingly accountable for managing a complex personal information environment.

 

​

Understanding emerging technology and transformation. 

With the emergence of government data-driven policies, business intelligence requirements, cloud storage and computing, outsourcing, navigating complex data structures and system interdependencies, strategies for managing data-lakes, and records management obligations, your organization is increasingly vulnerable to data breaches, accidental disclosures, or prohibited uses. Our PIAs include mitigation strategies and tangible action plans to help your programs, practices, systems and operations reduce the levels of risk.

​

​

Designed for Your Needs

Our comprehensive PIAs use our proven methodology, a process based on government policies and guidelines. Cyrus Echo’s well established and practiced PIA methodology makes the process easy through a tailored process that recognizes your organization’s unique needs, practices and culture.

 

Our process:

• supports you in meeting legal, regulatory and policy obligations

• eliminates surprises with regular informative briefings

• engages all key stakeholders (business, program, operations, IT, legal and ATIP)

• helps you navigate through mitigation/risk acceptance in accordance with your organizational risk appetite 

• provides Action Plans to support and guide your stakeholders in mitigating risks

• provides guidance and support from engagement to project sign-off

 

​

​

Comprehensive Service

• Legislative and regulatory examination: we examine authorities, data-flows, inter dependencies, roles and responsibilities, applicable legislation, regulations, and policies to assess risks and offer mitigation strategies. Our team examines relevant legislation and regulations for authorities and interdependencies as part of our assessment and gap analysis processes.

• Information Management and Technology: our team is well versed in information management, technology, records management, cloud computing and data storage.

• Trans-border data flow: we assess cross-border data flow and risks associated with the application of extraterritorial laws to your organization’s data and business practices as part of PIA preparation or privacy gap analyses. 

• Statement of Sensitivity: we review and provide advice on whether the confidentiality, integrity and availability attributes of the data are commensurate with safeguarding measures

• Personal Information Banks: we review all PIBs and Classes of Records associated with the project and identify potential deficiencies

 

​

Experienced Privacy Team

Our team is comprised of senior privacy, security and access specialists who have led hundreds of PIAs. Our team has been assisting government with their privacy policy gap analysis, policy framework development, Personal Information Bank updates and Privacy Notice Statements for over 25 years.

​

​

Contact us to discuss how we can help with your project.

​

​