Presentation is loading. Please wait.

Presentation is loading. Please wait.

Mirjana Boshnjak Skopje, 20 to 22 September 2017

Published byMay Hutchinson Modified over 7 years ago

Similar presentations

Presentation on theme: "Mirjana Boshnjak Skopje, 20 to 22 September 2017"— Presentation transcript:

1 Mirjana Boshnjak Skopje, 20 to 22 September 2017
Data confidentiality and statistical registers in the Macedonian statistical system Mirjana Boshnjak Skopje, 20 to 22 September 2017

2 Contents Introduction Confidentiality measures Conclusions

3 Introduction State statistics is an independent professional activity, which conducted on a scientific basis, provides users (legal and natural persons) with data on the economy, demography, social life, environmental protection and other areas.

4 Introduction The SSO is authorised to establish and maintain databases and statistical registers in the country, based on a prescribed statistical methodology. The use of administrative sources is becoming increasingly important for establishing and maintaining statistical registers.

5 Introduction Data from statistical registers are used exclusively for statistical purposes and are strictly confidential Article 4-a of the Law on State Statistics “statistical confidentiality” shall mean that data collected from reporting units through statistical surveys or indirectly, from administrative or other sources, are confidential and shall be used for statistical purposes only, which prohibits the use of data for non-statistical purposes and their unlawful disclosure.

6 Confidentiality measures
Administrative Technical - infrastructure Organisational

7 Measures - administrative
Policy on Statistical Confidentiality - it is a basic policy that serves as a basis for a number of general procedures which describe: user responsibilities, risk management, administration procedures. The protection of statistical confidentiality is a complex concept and covers several phases of the statistical business process model: data collection, processing and dissemination.

8 Measures - administrative
Policy on Statistical Confidentiality – defines responsibilities between: Owner of the data Staff of the IT Department Users of data in statistical registers

9 Measures - organisational
Organisational framework for security administration: Department/sector level User administrator level Resource administrator level

10 Measures - organisational
Department/sector level - includes deciding “how much” security is needed, defining the security organisation at the level of department/sector User administrator level - decides how many groups for access are needed in the department/sector, provides each person a user ID, and ensures that each user has only the authorisations needed to perform their work Resource administrator level - ensures that all security authorisations are assigned on a need-to-work basis

11 Measures - technical (infrastructure)
Within the scope of the infrastructure, the main task is to support Systems, Internet Access and Other Systems in the SSO. The SSO has a general policy for standard files. With regard to confidentiality, the SSO has defined a policy for IT privileges for system administrators and access to production data at the network level, the database level and the application level. Special tools are available to manage those authorisations.

12 Monitoring procedures
Monitoring procedures at different levels: The administrator of the information system checks the functionality of the system and safety copies on a daily basis. The Officer for Data Protection records and monitors the overall process. The annual internal audit in accordance with the Audit Plan.

13 Graphical view of the organisation for security administration

14 Conclusions The confidentiality system in the SSO is established in a way that provides field data protection and protection of the data derived from administrative sources. Continuous efforts are made to educate employees and raise awareness of the importance of statistical confidentiality, its aspects, legal bases, procedures, and above all the fact that the weakest link in the system is always the human factor, rather than the legal and technological measures.

15 Thank you

Download ppt "Mirjana Boshnjak Skopje, 20 to 22 September 2017"

Similar presentations

Module N° 4 – ICAO SSP framework

Module N° 4 – ICAO SSP framework
Workshop on HRM and Training in Statistical Offices, Budapest 5-7 September 2012 REPUBLIC OF MACEDONIA STATE STATISTICAL OFFICE Human Resources Training.

Workshop on HRM and Training in Statistical Offices, Budapest 5-7 September 2012 REPUBLIC OF MACEDONIA STATE STATISTICAL OFFICE Human Resources Training.
PRESENTATION ON MONDAY 7 TH AUGUST, 2006 BY SUDHIR VARMA FCA; CIA(USA) FOR THE INSTITUTE OF INTERNAL AUDITORS – INDIA, DELHI CHAPTER.

PRESENTATION ON MONDAY 7 TH AUGUST, 2006 BY SUDHIR VARMA FCA; CIA(USA) FOR THE INSTITUTE OF INTERNAL AUDITORS – INDIA, DELHI CHAPTER.
USG INFORMATION SECURITY PROGRAM AUDIT: ACHIEVING SUCCESSFUL AUDIT OUTCOMES Cara King Senior IT Auditor, OIAC.

USG INFORMATION SECURITY PROGRAM AUDIT: ACHIEVING SUCCESSFUL AUDIT OUTCOMES Cara King Senior IT Auditor, OIAC.
Workshop on Energy Statistics, China September 2012 Institutional Arrangements and Legal Framework 1.

Workshop on Energy Statistics, China September 2012 Institutional Arrangements and Legal Framework 1.
The Office of Information Technology Information Security Administrator Kenneth Pierce, Vice Provost for IT and Chief Information Officer.

The Office of Information Technology Information Security Administrator Kenneth Pierce, Vice Provost for IT and Chief Information Officer.
PUBLIC SECTOR INTERNAL AUDIT IN THE REPUBLIC OF LITHUANIA Mr. Jonas Vaitkevičius Head of Internal Audit and Financial Control Methodology and Monitoring.

PUBLIC SECTOR INTERNAL AUDIT IN THE REPUBLIC OF LITHUANIA Mr. Jonas Vaitkevičius Head of Internal Audit and Financial Control Methodology and Monitoring.
© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.

© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.
Quality evaluation and improvement for Internal Audit

Quality evaluation and improvement for Internal Audit
Purpose of the Standards

Purpose of the Standards
Property of Common Sense Privacy - all rights reserved 01875340890 THE DATA PROTECTION ACT 1998 A QUESTION OF PRINCIPLES Sheelagh F M.

Property of Common Sense Privacy - all rights reserved THE DATA PROTECTION ACT 1998 A QUESTION OF PRINCIPLES Sheelagh F M.
Network security policy: best practices

Network security policy: best practices
IAEA International Atomic Energy Agency Reviewing Management System and the Interface with Nuclear Security (IRRS Modules 4 and 12) BASIC IRRS TRAINING.

IAEA International Atomic Energy Agency Reviewing Management System and the Interface with Nuclear Security (IRRS Modules 4 and 12) BASIC IRRS TRAINING.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.

Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
Archival information system ARHiNET Croatian national archival information system Vlatka Lemić Croatian State Archives, Croatia.

Archival information system ARHiNET Croatian national archival information system Vlatka Lemić Croatian State Archives, Croatia.
KAPLAN SCHOOL OF INFORMATION SYSTEMS AND TECHNOLOGY Unit 4 IT 484 Networking Security Course Name – IT484-01 Networking Security 1203C Term Instructor.

KAPLAN SCHOOL OF INFORMATION SYSTEMS AND TECHNOLOGY Unit 4 IT 484 Networking Security Course Name – IT Networking Security 1203C Term Instructor.
Practice Management Quality Control

Practice Management Quality Control
Frameworks for the Access and Use of Administrative Data, With the Example of Current Practice in the UK Steven Vale Office for National Statistics UK.

Frameworks for the Access and Use of Administrative Data, With the Example of Current Practice in the UK Steven Vale Office for National Statistics UK.
Audit Planning Process

Audit Planning Process
Legal and institutional foundation of economic statistics Overview of international experience Regional Workshop for African Countries on Compilation of.

Legal and institutional foundation of economic statistics Overview of international experience Regional Workshop for African Countries on Compilation of.

Similar presentations

Ads by Google