Over the years we've found that reporting on Privacy Act compliance is either absent or perfunctory, so we would like to change this from a directive to a part of the Privacy Act.
We'd also like some stipulation as to what they would be reporting on. Examples might be privacy impact assessments, initiatives that might have an impact on personal information, or information-sharing agreements with other government departments and agencies, other provinces, or other jurisdictions in Canada. These are examples of data-matching or data-sharing.
All these things go on, and it's very hard to trace exactly how they're happening. The reporting is rather obscure or non-existent. This would make what's happening with their personal information more transparent for Parliament and for Canadians.