Rainbow DSB

1.       Develop Privacy Breach Protocol.

a.       Define roles and responsibilities.

b.      Outline how to: respond, contain, investigate, notify and implement change.

c.       Generate employee awareness ie.  “This is a breach of privacy.”

2.       Develop guidelines for securing mobile devices.

a.       Provide instructions for setting or changing passwords or access codes.

b.      Employee awareness.

c.       Protocol for a lost or stolen device.

d.      Terms and conditions of use.

3.       Secure report card data.

a.       Introduce web-based application with secure features including “timeout”.

b.      Generate employee awareness.

Nipissing-Parry Sound Catholic DSB

1.       Communicating the Collection Notices.

2.       Create technical guidelines for data encryption (memory stick usage).

3.       Guideline for securing mobile devices.

Huron-Superior Catholic DSB

1.       Survey of all staff.

2.       Place a Privacy Statement on email for all staff.

3.       Enforce passwords for all employees on all devices and applications.

a.       Provide information on how to create and change passwords.

4.       Devices taken home and securing them.

a.       Provide procedures on proper security and have employee sign document to create the awareness.

5.       Policy concerning agendas for closed session board meetings.

Sudbury Catholic DSB

1.       All committee members to provide samples of existing policies or documents that pertain directly to Privacy or correlate to Privacy in one or another.  Currently varies by department.

2.       Awareness of PIM session at large staff gatherings within the next two months, such as Principal and Secretary meetings.

3.       Develop standardized email sign off to be used consistently board wide.   Review existing samples of efficacy and ensure the statement reflects our practices.

Algoma DSB

1.       Create a Policy Statement with accessible procedures.

a.       Create awareness through communicating the plan in SharePoint.

2.       Implement a Password procedure.

a.       Length of characters.

b.      Forced change of passwords.

3.       Workstation security (personal work environment).

a.       Password protected screen savers.

b.      Physical security of laptops.

c.       Intentional locking of workstation.

4.       Data Access Inventory.

a.       Applications.

b.      Databases.

c.       Websites.

d.      Vendors and external agencies.

DSB Ontario North East

1.       Securing mobile devices such as: BlackBerry, Palm Pilot, iPod Touch and iPhone.

a.       For board owned devices – apply password to turn on and power.

b.      For User owned devices, IT will do the same before configuring access to wireless or configuring email access.

2.       Implement password protected screen saver.

a.       Communicate the importance and timeline of implementing this protection.

b.      Adopt a top-down communication process.

c.       Implement Windows policy to automatically apply five minute screen saver policy.

3.       Transportation of report card data to and from home.

a.       Recommend the use of board email as transport mechanism for transferring files to and from home.

b.      If using a memory stick, use secure memory stick.

c.       Evaluate web-based grade book solution for future use.

Near North DSB

1.       Securing mobile devices such as BlackBerry and laptops.  Developing best practices to apply to mobile devices.

2.       Use of school data on home computers including:

a.       Saving of email attachments from board email on home computers, and

b.      Completion of report cards on home computers.

3.       Developing an Administrative Guideline to govern workspace to cover both electronic and paper records.