The General Data Protection regulation  provides a uniform legal framework for data protection in the European Union. Its implementation does not change activities of the CSB regarding data processing, as the CSB continues to comply both with requirements regarding statistical confidentiality and protection of personal data, as well as to develop its information security management system in accordance with the international standard ISO 27001.

Certificates confirming the compliance of the CSB information security management system with the international standard ISO/IEC 27001:2013:

Mission – to ensure statistical information users with independent high-quality official statistics in decision-making, research and discussions.

Vision – up-to-date, innovative, main statistics institution, which ensures qualitative statistics in the country.

To implement mission and vision, Central Statistical Bureau (further in the text – CSB) ensures compliance with requirements set in statistical confidentiality, information security and data protection areas in legal acts of the European Union and Republic of Latvia, as well as in international standard ISO/IEC 27001:2013.

In 2008 the CSB took up and constantly improves information security management system, in the framework of which internal rules were accepted and improved. According to confidentiality, integrity and availability requirements, information and technical resources classification and information security risk management was implemented.

Information security requirements determined in the CSB are binding both to employees of the CSB and to third parties as far as they are appropriate to third parties’ and CSB kind and nature of cooperation.

To ensure as comprehensive as possible scope, sphere of activity of information security management system implemented by the CSB is collection, accumulation, processing and storage of information and data for carrying out CSB functions, as well as provision of statistical information to data users.