Data Sharing Agreement Audit
The audit work consisted of document review, interviews with key managers and staff, and monitoring of compliance with relevant directives and directives. (For more information, see Appendix A: Examination Criteria.) The audit determined whether the 42 data files released in fiscal years 2011-12 and 2012-13 complied with the official release directive. The audit found that 38 out of 42 files were final publications and confirmed through interviews and documentary verifications that the date and time of the transfer of these files were in the Daily after the date of official publication and the official time. 4 out of 38 files were shared before the official release. The audit confirmed that the conditions, types of agreements and submission forms for the 4 files were valid and in accordance with the official release policy. The IT group`s primary responsibility for managing DSAs is the secure transmission of data via the Electronic File Transfer (e-FT) service used by Statistics Canada for the transmission of protected information. The requirements of e-FT system users are described in a guide called e-File Transfer Service – STC Internal User Guide (the guide). Due to the technical nature of the guide, it is not maintained on the Intranet site and is mainly distributed to departments that have received e-FT training. Due to time reasons and increased demand for e-T services, not all divisions have been trained in e-FT. The Manufacturing and Energy Division, which has a large number of DSAs, has developed well-documented processes and processes. It centralized the dissemination field to create ongoing capacity, including trained and experienced staff. You have created an Excel document, which is stored on a sharing disk and uses the specific procedures related to different types of data sharing in different forms of DSA. This mechanism helps the expert to easily consult the procedures and inform the partner in advance of what can and cannot be shared, thus promoting a better relationship with the partner.
With respect to compliance with the general requirements for DSA information and approval rights, the audit found that the SRI and PIA processes for verifying investigation documents and DSA texts are well managed at the divisional level. At the division level, the audit revealed the need to improve the oversight of the ISR-DSA and the requirements for approval fees when conducting the survey and collecting information on compliance performance in the areas of registration.. . . .