Privacy
The DHS Privacy Office is responsible for evaluating the Department programs, systems, and initiatives for potential privacy impacts, and providing strategies to reduce the privacy impact.
-
DHS/CBP/PIA-069 CBP Translate Application
The U.S. Department of Homeland Security (DHS), U.S. Customs and Border Protection (CBP), Office of Field Operations (OFO) inspects and processes travelers from all over the world. The diversity of languages spoken by travelers can pose linguistic challenges throughout the inspection process. To assist CBP Officers (CBPO) in meeting these translation challenges, CBP developed CBP Translate, a mobile and web application that will assist CBPOs in communicating with travelers. CBP is submitting this new Privacy Impact Assessment (PIA) to assess the privacy risks and provide notice of CBP Translate, which captures and stores written transcripts and audio recordings of translated conversations, images of documents containing text, and travel document information from travelers encountered at U.S. Ports of Entry (POE).
-
DHS/CBP/PIA-066 CBP Support of CDC for Public Health Contact Tracing
U.S. Customs and Border Protection (CBP) continues to assist the Department of Health and Human Services (HHS), Centers for Disease Control and Prevention (CDC) with its public health response efforts. In December 2020, CBP issued a Privacy Impact Assessment (PIA) documenting CBP efforts to support CDC public health efforts.
-
DHS/CISA/PIA-037 CyberSentry
The U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) has developed the voluntary CyberSentry program to enhance the cyber resilience of organizations that own or operate critical infrastructure. CyberSentry uses sensors to monitor the Information Technology and Operational Technology networks of a participating Critical Infrastructure (CI) partner for cybersecurity threats. CISA is conducting this Privacy Impact Assessment (PIA) because CyberSentry’s network monitoring capabilities may create the potential for disclosure of personally identifiable information (PII).
-
FOIA Compliance Instruction 262-11-004: DHS Employee Personal Identifiable Information Protection
This Instruction provides guidance on the case-by-case analysis of the application of Freedom of Information Act (FOIA) exemptions to withhold Department employee personally identifiable information.
-
DHS/CISA/PIA-036 Chemical Facility Anti-Terrorism Standards Program Suspicious Activity Reports
The Cybersecurity and Infrastructure Security Agency (CISA) Infrastructure Security Division (ISD) Chemical Security Subdivision, hereafter referred to as Chemical Security, receives notification of security incidents at high-risk chemical facilities. This Privacy Impact Assessment (PIA) describes the incident and suspicious activity reporting actions previously performed by CISA’s legacy National Infrastructure Coordinating Center (NICC) and now performed by Chemical Security.
-
DHS/ALL/PIA-087 Law Enforcement Officers Safety Act Program (LEOSA)
The Law Enforcement Officers Safety Act of 2004 (LEOSA) exempts “qualified law enforcement officers” and “qualified retired law enforcement officers” from most state and local laws prohibiting the carriage of concealed firearms. The U.S. Department of Homeland Security (DHS) and its law enforcement Components have established procedures with respect to qualified retiring, retired, separating, and separated law enforcement officers (LEO) and the application of the relevant provisions of LEOSA. This Privacy Impact Assessment (PIA) documents how DHS collects, uses, and maintains personally identifiable information (PII) of LEOs who apply to carry concealed firearms pursuant to LEOSA.
-
DHS/CBP/PIA-065 CBP Web Emergency Operations Center (WebEOC)
The U.S. Department of Homeland Security (DHS) U.S. Customs and Border Protection (CBP) Web Emergency Operations Center (WebEOC) is CBP’s primary emergency notification, event tracking, and incident management system. CBP uses WebEOC for a variety of purposes across the CBP enterprise, including incident management, event tracking, workforce emergency notifications, facility and asset management during disasters, and incident simulations and exercise. Due to its customizable event tracking functionality, CBP also uses WebEOC as the intake point for CBP electronic medical records and individual health assessments of individuals in CBP custody. CBP is publishing this Privacy Impact Assessment (PIA) to provide transparency regarding WebEOC and its many uses, including as the point of collection for Electronic Medical Records (EMR) of individuals in CBP custody, and to provide notice of the privacy risks and mitigations associated with the system. (October 2024)
-
DPIAC Meeting October 27, 2020
The Data Privacy and Integrity Advisory Committee will hold a public meeting on October 27, 2020.
-
Privacy Act Statement
Federal agencies are required to provide what is commonly referred to as a “Privacy Act Statement” to all persons asked to provide personal information about themselves, which will go into a system of records (i.e., the information will be stored and retrieved using the individual’s name or other personal identifier such as a Social Security number).
-
DHS/USSS/PIA-030 Comprehensive Financial Investigative System
The United States Secret Service (USSS) Investigative Support Division (ISD) uses the Comprehensive Financial Investigative System (CFIS) in support of data capture to maintain records for financial investigations from case initiation to completion. USSS is conducting this Privacy Impact Assessment (PIA) because CFIS collects and maintains personally identifiable information (PII) regarding subjects of criminal financial investigations.