---

Title of the PIA

Privacy Impact Assessment on the Natural Infrastructure Fund

Government Institution

Infrastructure Canada (INFC)

Head of INFC or Delegate for Section 10 of the Privacy Act

Melanie Davis, Director, ATIP and Executive Correspondence

Senior Official or Executive Responsible for the New Initiative

Annie Geoffroy, Senior Director, Climate Mitigation and Adaptation Community Programs

Name and Description of the Program or Activity of the Government Institution

Natural Infrastructure Fund

Legal Authority

The legal authority for the collection of personal information is Order in Council P.C. 2004-0325.

Personal Information Bank

There is currently no registered personal information bank for this program. However, there is a class of personal information – Grant and Contribution Programs.

Short Description of the New Initiative

The Natural Infrastructure Fund will deliver $200 million in funding over the next three years to support natural and hybrid infrastructure projects. This will help to improve well-being, mitigate the impacts of climate change, and prevent costly extreme weather events. This initiative will demonstrate the value of natural and hybrid infrastructure projects and encourage its consideration, where appropriate, alongside traditional grey infrastructure for the delivery of community services, such as climate change resilience, climate change mitigation, access to nature, environmental quality, biodiversity, and employment and economic opportunities. 

Risk Area Identification and Categorization

The following section contains risks identified in the PIA for the new or modified program. The numbered risk scale is presented in an ascending order: the first level (1) represents the lowest level of potential risk for the risk area; the fourth level (4) represents the highest level of potential risk for the given risk area.

Type of Program or Activity

Program or activity that does not involve a decision about an identifiable individual.

Level of risk to privacy: 1

Type of Personal Information Involved and Context

Only personal information, with no contextual sensitivities, collected directly from the individual or provided with the consent of the individual for disclosure under an authorized program. (For example, the renewal of a licence.)

Level of risk to privacy: 1

Program or Activity Partners and Private Sector Involvement

Within the institution (among one or more programs within the same institution), with other government institutions, with other institutions or a combination of federal, provincial or territorial, and municipal governments and private sector organizations.

Level of risk to privacy: 4

Duration of the Program or Activity

Short‑term program or activity

Level of risk to privacy: 2

Program Population

Personal information is collected from individuals outside INFC. However, it is not used for an administrative purpose, but it is placed in a database and it is retrievable by name.

Level of risk to privacy: 1

Technology & Privacy

The new initiative involves implementation of a new electronic system or the use of a new application or software, including collaborative software (or groupware), to support the program or activity in terms of the creation, collection or handling of personal information.

Level of risk to privacy: 2

Personal Information Transmission

The personal information is transmitted using wireless technologies.

Level of risk to privacy: 4

Risk Impact to the Individual or Employee in the Event of a Privacy Breach

Inconvenience, reputation harm, embarrassment

Level of risk to privacy: 2