The Digital Governance Standards Institute (DGSI) has amended a Canadian national standard seeking to establish a recognized and credible benchmark for the qualifications and core competencies required of professionals focusing on privacy, data, and access to information.
The revised national standard seeks to consistently assess and maintain professional excellence in privacy roles and reflect the country’s continuing commitment to establishing trusted digital environments, according to a news release from the DGSI.
The DGSI noted that adjustments to “CAN/DGSI 109-1: Privacy – Part 1: Qualification and Proficiency of Access to Information, Privacy, and Data Protection Professionals” included:
- defined knowledge fields required for privacy certification exams
- guidelines and expectations for reevaluation cycles to maintain professional standing
- a reinforced alignment with the legislation relevant to privacy, data protection, and access to information
- a modular framework designed for public, private, and hybrid sector organizations alike
In its news release, the DGSI explained that the updated national standard intends to provide an enhanced certification and accountability framework with a more practical roadmap for ensuring compliant and competent privacy teams.
Specifically, the DGSI said the revisions aim to help:
- ensure privacy professionals have the current knowledge and skills needed to manage risk, achieve compliance, and promote public trust
- inform hiring criteria
- develop internal training programs
- structure national certification schemes
“This revised standard offers employers and professionals a concrete, standards-based foundation for building strong privacy teams that are prepared for today’s challenges and tomorrow’s risks,” said Darryl Kingston, DGSI executive director, in the news release.
Applicability
According to the DGSI, the national standard caters to:
- privacy officers and advisors
- access to information professionals
- data protection officers
- HR and talent professionals building privacy teams
- certification and training bodies
- regulatory and compliance leaders
In its news release, the DGSI noted that organizations feel more pressure than ever to ensure their privacy teams are compliant and competent, given the increasing complexity of digital systems, the growing volume and sensitivity of the data handled, and the evolving legal, technological, and ethical considerations.
“Privacy is not just a legal obligation,” Kingston said in the DGSI’s news release. “It is a strategic competency.”
The DGSI encouraged organizations to review the updated standard and make changes accordingly.