Consolidated Statutes and Regulations
Consolidated Statutes
Consolidated Regulations
Annual Statutes and Regulations
Annual Statutes
Annual Regulations
Additional information
Québec Official Publisher
What’s new?
Information note
Policy of the Minister of Justice
Laws: Amendments
Laws: Provisions not in force
Laws: Provisions brought into force
Annual Statutes: PDF versions since 1996
Regulations: Amendments
Annual Regulations: PDF versions since 1996
Court Decisions
G-1.03 - Act respecting the governance and management of the information resources of public bodies and government enterprises
Section 12.6
Disposition versions
12.6. The government chief information security officer assumes the following responsibilities:
(1) directing government action with respect to information security;
(2) recommending to the Minister rules to ensure information security, including authentication and identification rules, and targets applicable to public bodies with respect to information security;
(3) establishing the government digital data security classification model based on the data’s nature, characteristics and use, and the rules governing them, and obtaining approval for the model from the Minister;
(4) communicating expectations to public bodies with respect to information security and making application instructions for them;
(4.1) making tools and best practices in that area available to public bodies and informing the Minister of the results observed;
(5) overseeing the implementation by public bodies of the information security obligations resulting from the application of this Act, seeing to compliance with those obligations and evaluating the measures taken by public bodies in that area;
(6) reporting to the Minister, according to the conditions and procedures determined by the latter, on target results as well as on compliance with obligations and making any necessary recommendation; and
(7) exercising any other function assigned by the Minister or by the Government.
12.6. The government chief information security officer assumes the following responsibilities:
(1) directing government action with respect to information security;
(2) recommending to the Minister rules to ensure information security, including authentication and identification rules, and targets applicable to public bodies with respect to information security;
(3) establishing the government digital data security classification model based on the data’s nature, characteristics and use, and the rules governing them, and obtaining approval for the model from the Minister;
(4) communicating expectations to public bodies with respect to information security and making application instructions for them;
(5) overseeing the implementation by public bodies of the information security obligations resulting from the application of this Act, seeing to compliance with those obligations and evaluating the measures taken by public bodies in that area;
(6) reporting to the Minister, according to the conditions and procedures determined by the latter, on target results as well as on compliance with obligations and making any necessary recommendation; and
(7) exercising any other function assigned by the Minister or by the Government.
12.6. The government chief information security officer assumes the following responsibilities:
(1) directing government action with respect to information security;
(2) recommending to the Conseil du trésor rules to ensure information security, including authentication and identification rules, and recommending to the Chair of the Conseil du trésor performance targets applicable to public bodies with respect to information security;
(3) establishing the government digital data security classification model based on the data’s nature, characteristics and use, and the rules governing them, and obtaining approval for the model from the Conseil du trésor;
(4) communicating expectations to public bodies with respect to information security and making application instructions for them;
(5) overseeing the implementation by public bodies of the information security obligations resulting from the application of this Act, seeing to compliance with those obligations and evaluating the measures taken by public bodies in that area;
(6) reporting to the Chair of the Conseil du trésor, according to the conditions and procedures determined by the latter, on performance target results as well as on compliance with obligations and making any necessary recommendation; and
(7) exercising any other function assigned by the Chair of the Conseil du trésor or by the Government.
