U.S. flag

An official website of the United States government

Government Website

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Safely connect using HTTPS

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Privacy Policy

In accordance with DHS Policy Directive, Privacy Policy & Compliance, the Chief Privacy Officer (CPO) has primary authority for issuing privacy policy for the Department. Pursuant to this policy, all DHS staff are required to follow all DHS privacy policy established by the CPO. Additionally, DHS Component heads are responsible for implementing DHS privacy policy and procedures, and for working with the Privacy Office to ensure Department activities follow DHS privacy policy and apply privacy protections across the Department in a consistent manner.

DHS privacy policy Directives and their related Instructions are organized below by topic or associated policy.

  • Directive: A Directive articulates DHS policies, missions, programs, or activities of a continuing nature. Directives are often required or authorized by statute, rulemaking, the President, or the Secretary to initiate, govern or regulate actions or conduct by DHS Components, officers, and employees.
  • Instruction: An Instruction explains how to implement the policies or requirements of a Directive, Executive Order, regulation, or Federal Register notice.

NOTICE: DHS strives to provide equal access to information and data to people with disabilities in accordance with Section 508 of the Rehabilitation Act of 1973. Not all of the documents on this page are fully Section 508 compliant. If you have problems with any of the documents on this page and need assistance, please contact the FOIA Office at 202-343-1743.

  1. Privacy Policy & Compliance Directive, 2011.This Directive applies throughout DHS regarding the collection, use, maintenance, disclosure, deletion, and destruction of Personally Identifiable Information (PII) and any other activity that impacts the privacy of individuals as determined by the Chief Privacy Officer. Most new privacy policies and instructions are derived from this Directive.
  2. Regarding the Collection, Use, Retention, and Dissemination of Personally Identifiable Information Directive, 2022
  3. Computer Matching Agreements Directive, 2011
  4. Federal Information Sharing Environment Privacy and Civil Liberties Protection Policy Directive, 2009
  5. Privacy Act Amendment Requests Directive, 2011
  6. Privacy Impact Assessment Directive, 2008
  7. Research Programs and Projects Directive, 2012
  8. Social Media Operational Use Directive, 2012
  9. 139-02 Information Quality Directive, Revision:01
  10. 140-01 Information Technology Security Program Directive
  11. 140-06 Privacy Policy for Research Programs and Projects, Revision:00
  12. 141-02 Forms Management, Revision:00
  13. 141-01 Records and Information Management, Revision:01
  14. 142-01 Information Collection Management Program, Revison:01
  15. 262-15 DHS Federal Information Sharing Environment Privacy and Civil Liberties Protection Policy
  16. 262-13 DHS Data Framework Terms and Conditions
  17. 262-11 Freedom of Information Act Compliance, Revision:00
  18. 262-08 Protected Critical Infrastructure Information Program, Revision: 00
  19. 262-05 Information Sharing and Safeguarding
  20. 262-04 DHS Web (Internet and Extranet Information), Revision: 00
  21. 262-03 DHS Information Sharing Environment Technology Program, Revision: 00
  22. 262-02 Disclosure of Asylum or Refugee Information for Counterterrorism and Intelligence Purposes, Revision: 00
  23. 262-01 Computer Matching Agreements and the Data Integrity Board, Revision: 00
  24. 262-07 Disclosure of Homeland Security Information, Revision: 00
  25. MD 4600.1 Personal Use of Government Office Equipment
  26. MD 4900 Individual Use and Operation of DHS Information Systems/Computers
  27. 140-05 Privacy Technology Implementation Guide
  28. 142-02 Information Technology Integration and Management
  29. 262-14 Roles & Responsibilities for Shared IT Services

Management Instructions and Directives

  1. 139-05 Accessible Systems and Technology Program Directive
  2. 140-02 Cybersecurity Workforce Management Support
  3. 142-03 Electronic Mail Usage Maintenance
  4. 262-06 Digital Government Strategy
  5. 262-09 Enterprise Information Technology Service Management, Revision: 00
  6. 262-10 DHS Digital Transformation
  7. 262-12 Lexicon Program and Standardization of Department Terminology, Revision: 00
  8. MD 4700-1 Personal Communications Device Distribution
  9. MD 4800 – Telecommunications Operations

The Fair Information Practice Principles (FIPP): Framework for Privacy Policy at the Department of Homeland Security, 2008. The FIPPs provide the foundational principles for privacy policy and guideposts for their implementation at DHS.

  1. DHS Privacy Policy Regarding the Collection, Use, Retention, and Dissemination of Personally Identifiable Information, 2017
    • Privacy Policy 2017-01 Questions and Answers
  2. Privacy Policy Guidance Memorandum 2007-02/Privacy Policy Directive 140-11, Regarding the use of Social Security numbers at DHS.
  3. Privacy Policy Guidance Memorandum 2007-01/Privacy Policy Directive 262-12, Regarding Collection, Use, Retention, and Dissemination of Information on Non-U.S. Persons.
  4. DHS Action Memorandum, Review of Safeguarding Policies and Procedures for Personnel-Related Data.

 

Last Updated: 09/26/2024
Was this page helpful?
This page was not helpful because the content