Info Source

Sources of Federal Government and Employee Information

Communications Security Establishment (CSE)

Table of Contents

General Information

Introduction

Info Source: Sources of Federal Government and Employee Information provides information about the functions, programs, activities and related information holdings of government institutions subject to the Access to Information Act and the Privacy Act. It provides individuals and employees of the government (current and former) with relevant information to access personal information about themselves held by government institutions subject to the Privacy Act and to exercise their rights under the Privacy Act.

The Introduction and an index of institutions subject to the Access to Information Act and the Privacy Act are available centrally.

The Access to Information Act and the Privacy Act assign overall responsibility to the President of Treasury Board (as the designated Minister) for the government-wide administration of the legislation.

Background

The Communications Security Establishment reports to Parliament through the Minister of National Defence.

Read about CSE, including its History, Legislation, and Accountabilities.

Responsibilities

Read about CSE’s mandate and responsibilities.

Institutional Functions, Programs and Activities

Signals Intelligence

As mandated by section 273.64 of the National Defence Act, the Signals Intelligence program provides foreign intelligence that addresses the Government of Canada’s vital interests in defence, security and international affairs through the collection, processing, analysis and reporting of intelligence. It also provides technical and operational assistance to federal law enforcement and security agencies.

Intelligence - Class of Record

Description: Includes records/information resources related to acquiring and using information from the global information infrastructure in accordance with CSE’s lawful mandate, to provide foreign intelligence, concerning foreign individuals, states, organizations or terrorist groups, which has implications for Canada’s international affairs, defence or security (part a of CSE’s mandate).
Includes records/information resources related to requests for the provision of technical and operational assistance to federal law enforcement and security agencies (part c of CSE’s mandate).
Document Types: Intelligence requirements, briefings, studies, publications, plans, analyses, reports, technical documentation, policies, instructions, memoranda of understanding, information obtained from public sources, strategies, training materials, presentations, standards
Record Number: CSE MIS 080

Communications Security Establishment (CSE) - Foreign Intelligence Files CSE PPU 040 - Personal Information Bank

Description: This bank contains personal information relating to sensitive aspects of Canada's international relations, security and defence.
Note: This bank is designated by the Governor-in Council as an exempt bank pursuant to section 18(1) and based on section 21 of the Privacy Act. This PIB was transferred from the Department of National Defence.
Class of Individuals: This bank applies to the general public.
Purpose: The purpose of this bank is to advise the government regarding international affairs, security and defence.
Consistent Uses: There are no other consistent uses.
Retention and Disposal Standards: Information in this bank is held indefinitely.
RDA Number: 98/005
Related Record Number: CSE MIS 080
TBS Registration: 20130231
Bank Number: CSE PPU 040

Information Technology Security

The Information Technology Security Program provides advice, guidance and services to help ensure the protection of electronic information and information systems of importance to the Government of Canada, as mandated by section 273.64 (1)(b) of the National Defence Act and in accordance with the Policy on Government Security.

Cyber Defence - Class of Record

Description: Cyber Defence includes records/information related to cyber defence activities that strengthen the ability to prevent and reduce the probability of successful cyber intrusions. The records/information are used in the provision of cyber defence activities, monitor government networks to detect potential cyber threats and to analyze, evaluate, mitigate and defend against cyber activities that threaten or potentially threaten the Government of Canada (GC) systems and networks and systems of importance to the GC.
Document Types: Document types include threat analysis and reporting vehicles and related documentation. For example, records include threat analysis and mitigation advice, policies, briefings, reports, strategies and technical documentation.
Record Number: CSE 002

Communications Security Establishment (CSE) - Cyber Defence, CSE PPU 007 - Personal Information Bank

Description: This bank relates to the personal information that may be collected by CSE during its assessment activities, in support of information infrastructures of importance to the Government of Canada to help them identify, isolate or prevent harm to their computer systems or networks. Personal information collected may include, full name, email address, IP address and any incidental personal information that is contained in electronic routing and identification information.
Note: This bank applies to personal information obtained as part of CSE’s statutory mandate set out at Paragraph 273.64(1)(b)of the National Defence Act. CSE is required by law to ensure that its activities are subject to measures to protect the privacy of Canadians.
Class of Individuals: This bank applies to potentially any individual who communicates electronically or has electronic transactions with an information infrastructure of importance to the Government of Canada while CSE is conducting an assessment of that institution’s electronic information and / or information technology infrastructure.
Purpose: Personal information may be used to assess potential threats to information technology systems subject to the assessment, and to help ensure the security of these electronic systems.
Consistent Uses: Where evidence of possible illegal activities are identified within the originating institution during CSE’s assessment, CSE may report the matter to that institution having the control of the personal information, for further action. The personal information described in this bank that is part of a cyber threat assessment may be disclosed to domestic investigative bodies for the fulfillment of their lawful duties or foreign bodies in accordance with agreements or Ministerial Direction.
Retention and Disposal Standards: Information in this bank is held for up to thirty years then transferred to Library and Archives Canada.
RDA Number: 2002/011
Related Record Number: CSE 002
TBS Registration: 20130234
Bank Number: CSE PPU 007

Internal Services

Internal Services are groups of related activities and resources that are administered to support the needs of programs and other corporate obligations of an organization. These groups are: Management and Oversight Services; Communications Services; Legal Services; Human Resources Management Services; Financial Management Services; Information Management Services; Information Technology Services; Real Property Services; Materiel Services; Acquisition Services; and Travel and Other Administrative Services. Internal Services include only those activities and resources that apply across an organization and not to those provided specifically to a program.

Acquisitions

Acquisition Services involve activities undertaken to acquire a good or service to fulfill a properly completed request (including a complete and accurate definition of requirements and certification that funds are available) until entering into or amending a contract.

Communications Services

Communications Services involve activities undertaken to ensure that Government of Canada communications are effectively managed, well coordinated and responsive to the diverse information needs of the public. The communications management function ensures that the public – internal or external – receives government information, and that the views and concerns of the public are taken into account in the planning, management and evaluation of policies, programs, services and initiatives.

Financial Management

Financial Management Services involve activities undertaken to ensure the prudent use of public resources, including planning, budgeting, accounting, reporting, control and oversight, analysis, decision support and advice, and financial systems.

Human Resources Management

Human Resources Management Services involve activities undertaken for determining strategic direction, allocating resources among services and processes, as well as activities relating to analyzing exposure to risk and determining appropriate countermeasures. They ensure that the service operations and programs of the federal government comply with applicable laws, regulations, policies, and/or plans.

Information Management

Information Management Services involve activities undertaken to achieve efficient and effective information management to support program and service delivery; foster informed decision making; facilitate accountability, transparency, and collaboration; and preserve and ensure access to information and records for the benefit of present and future generations.

Information Technology

Information Technology Services involve activities undertaken to achieve efficient and effective use of information technology to support government priorities and program delivery, to increase productivity, and to enhance services to the public.

Legal Services

Legal Services involve activities undertaken to enable government departments and agencies to pursue policy, program and service delivery priorities and objectives within a legally sound framework.

Management and Oversight Services

Management and Oversight Services involve activities undertaken for determining strategic direction, and allocating resources among services and processes, as well as those activities related to analyzing exposure to risk and determining appropriate countermeasures. They ensure that the service operations and programs of the federal government comply with applicable laws, regulations, policies, and/or plans.

Materiel

Materiel Services involve activities undertaken to ensure that materiel can be managed by departments in a sustainable and financially responsible manner that supports the cost-effective and efficient delivery of government programs.

Real Property

Real Property Services involve activities undertaken to ensure real property is managed in a sustainable and financially responsible manner, throughout its life cycle, to support the cost-effective and efficient delivery of government programs.

Travel and Other Administrative Services

Travel and Other Administrative Services include Government of Canada (GC) travel services, as well as those other internal services that do not smoothly fit with any of the internal services categories.

Manuals

  • Administrative Policy Manual
  • Operational Policy Manual
  • Human Resources Policy Manual
  • Security Integrity Index Manual
  • Security Policy Manual
  • Security Screening Procedures Manual

Additional Information

The Government of Canada encourages the release of information through requests outside the ATIP process. The Access to Information Act also specifies that it is intended to complement existing procedures for obtaining government information and is not to limit in any way the type of information that is normally available to the public, thereby denoting the importance of informal access. You may wish to consult the Communication Security Establishment's completed Access to Information summaries. To obtain information on how to make a formal request or informal request under the legislation we invite you to the following link: CSE ATIP.

Reading Room

In accordance with the Access to Information Act and the Privacy Act, the applicant may wish to review the material in person. Should you wish to review the CSE materials in Ottawa, Ontario, you must make an advance appointment by calling the Access to Information and Privacy Office at 613-991-8443, or by email at atip-aiprp@cse-cst.gc.ca.