Below is a list of IT resources that I personally find useful and believe you would as well. I will be adding to the list as I come across something you may find helpful. If you see something that is missing or would like more detail on something that you have seen, please feel free to reach out.

PIPEDA – The most often cited reason for altering workflows or dealing with vendors. There is always a lot of discussion on how this act affects universities, and I would recommend you start with the following statement from the office of the privacy commissioner of Canada.

“our Office is of the view that, as a general rule, PIPEDA does not apply to the core activities of municipalities, universities, schools, and hospitals. By core activities we mean those activities that are central to the mandate and responsibilities of these institutions.”

This doesn’t mean you can just ignore PIPEDA, however if your activities are tied directly to the University mission and core values, it does help provide a case that it is covered entirely under provincial legislation instead. PIPEDA can be used to help improve security and privacy but it shouldn’t be used as a way to prevent progress.

The Patriot Act – A Canadian view of the Patriot act. This is a government of Canada site that provides info with some very high level information. easily searchable and clickable links to take you to what you are looking for. It is a great place to start.

DisasterRecovery.org – A great resource for templates, information and overall resources for disaster recovery and business continuity.

NACCU.org – A great resources in general. It is a membership based group specializing in the campus card industry. Webinars, templates, and general information are all available for all members at no additional cost.