A. SYSTEM DESCRIPTION

Save this PDF as:

Size: px
Start display at page:

Download "A. SYSTEM DESCRIPTION"

Transcription

1 NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002 & PVR #10- Privacy Accountability and #21-Privacy Risk Management Date of Approval: August 29, 2012 PIA ID Number: What type of system is this? Legacy 1a. Is this a Federal Information Security Management Act (FISMA) reportable system? 2. Full System Name, Acronym, and Release/Milestone (if appropriate): AIMS Computer Information System, A-CIS 2a. Has the name of the system changed? If yes, please state the previous system name, acronym, and release/milestone (if appropriate): 3. Identify how many individuals the system contains information on Number of Employees: Number of Contractors: Members of the Public: Over 1,000, Responsible Parties: NA 5. General Business Purpose of System The AIMS Computer Information System (A-CIS) is an Internal Revenue Service (IRS) system that has been classified as a minor application. The application was developed as a monitoring and reporting tool used to perform detailed analysis of tax cases within examination; detailed analysis of case inventory levels; to monitor the examination process; and to effectively plan for ongoing examination operations. The application contains data retrieved from the Closed AIMS, Open AIMS, n-examined AIMS and Summary Examination Time Transmission System (SETTS) databases (DB) retrieved from the Audit Information Management System Related Reports (ARR) application. A-CIS allows its users to generate reports on case information by selecting options from drop down menus in the application s front-end user interface. By modifying the criteria used to select the case information, A- CIS users can create an unlimited number of different reports tailored to their individual needs. 6. Has a PIA for this system, application, or database been submitted previously to the Office of Privacy Compliance? (If you do not know, please contact *Privacy and request a search) 6a. If, please indicate the date the latest PIA was approved: 10/1/2009 6b. If, please indicate which of the following changes occurred to require this update. System Change (1 or more of the 9 examples listed in OMB applies) (refer to PIA Training Reference Guide for the list of system changes) System is undergoing Security Assessment and Authorization 6c. State any changes that have occurred to the system since the last PIA Virtual servers were added to production, development, and test environments. 7. If this system has an Exhibit 53 or Exhibit 300 please provide the Unique Project Identifier (UPI) number (XXX-XX- XX-XX-XX-XXXX-XX). Otherwise, enter the word 'none' or 'NA' B. DATA CATEGORIZATION Authority: OMB M & PVR #23- PII Management

2 8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? 9. Indicate the category that best describes the source that provides or originates the PII collected, displayed, stored, maintained or disseminated by this system. Most common categories follow: Taxpayers/Public/Tax Systems Employees/Personnel/HR Systems Other Other Source: 10. Indicate all of the types of PII collected, displayed, stored, maintained or disseminated by this system. Then state if the PII collected is on the Public and/or Employees. Most common fields follow: TYPE OF PII Collected? On Public? On IRS Employees or Contractors? Name Social Security Number (SSN) Tax Payer ID Number (TIN) Address Date of Birth Additional Types of PII: PII Name On Public? On Employee? Spouse SSN Dependent SSN Dependent SSN Dep. SSN 10a. What is the business purpose for collecting and using the SSN? The SSN is needed to uniquely identify a user s record. If you answered to Social Security Number (SSN) in question 10, answer 10b, 10c, and 10d. 10b. Cite the authority that allows this system to contain SSN's? (e.g. specific regulations, statutes, etc.) SSNs are permissible from Internal Revenue Code (IRC) 6109, which requires individual taxpayers to include their SSNs on their income tax returns. Additional information can be found at these two links: c. What alternative solution to the use of the SSN has/or will be applied to this system? (e.g. masking, truncation, alternative identifier) The SSN is needed to uniquely identify a user s record. alternative solutions have/or will be applied to the system.

3 10d. Describe the planned mitigation strategy and forecasted implementation date to mitigate or eliminate the use of Social Security Numbers on this system? There is no planned mitigation strategy or forecasted implementation date to mitigate or eliminate the use of SSNs. Describe the PII available in the system referred to in question 10 above. Taxpayer Name, Taxpayer SSN, and Taxpayer TIN 11. Describe in detail the system's audit trail. State what data elements and fields are collected. Include employee log-in information. If the system does not have audit capabilities, explain why an audit trail is not needed. All users log-in to the A-CIS application using Active Directory. Thus, the log-in information is captured in the MITS-17 GSS audit trail. Users query the data tables on the A-CIS SQL server, where each query is captured in the A-CIS logs. The audit trails produced by A-CIS maintain a record of system activity, and are created within the C-2 Audit Trails on the SQL Server, hosted on the MITS-30 GSS. 11a. Does the audit trail contain the audit trail elements as required in current IRM Audit Logging Security Standards? 12. What are the sources of the PII in the system? Please indicate specific sources: a. IRS files and databases: If, the system(s) are listed below: System Name Audit Information Management System Related Reports (ARR) Audit Information Management System Related Reports (ARR) Current PIA? PIA Approval Date SA & A? Authorization Date 04/03/ /22/ /03/ /22/ /03/ /22/2012 b. Other federal agency or agencies: c. State and local agency or agencies: d. Third party sources: e. Taxpayers (such as the 1040): f. Employees (such as the I-9): g. Other: C. PURPOSE OF COLLECTION Authorities: OMB M & Internal Revenue Manual (IRM) , IT Security, Live Data Protection Policy & PVR #16, Acceptable Use 13. What is the business need for the collection of PII in this system? Be specific. A-CIS provides Management Information System (MIS) data and inventory information to IRS employees to analyze examination inventory levels and examination results. The application was developed as a monitoring and reporting tool used to perform detailed analysis of tax cases within examination; detailed analysis of case inventory levels; to monitor the examination process; and to effectively plan for ongoing examination operations.

4 D. PII USAGE Authority: OMB M & PVR #16, Acceptable Use 14. What is the specific use(s) of the PII? To conduct tax administration To provide taxpayer services To collect demographic data For employee purposes Other: If other, what is the use? E. INFORMATION DISSEMINATION Authority: OMB M & PVR #14- Privacy tice and #19- Authorizations 15. Will the information be shared outside the IRS? (for purposes such as computer matching, statistical purposes, etc.) 16. Does this system host a website for purposes of interacting with the public? 17. Does the website use any means to track visitors' activity on the Internet? If yes, please indicate means: Persistent Cookies Web Beacons Session Cookies YES/NO AUTHORITY Other: If other, specify: F. INDIVIDUAL CONSENT Authority: OMB M & PVR #15- Consent and #18- Individual Rights 18. Do individuals have the opportunity to decline to provide information or to consent to particular uses of the information? 19. Does the system ensure "due process" by allowing affected parties to respond to any negative determination, prior to final action? t Applicable 20. Did any of the PII provided to this system originate from any IRS issued forms? 20a. If, please provide the corresponding form(s) number and name of the form. ID Form Number Form Name series Individual series Corporate series Partnership series Employment Tax S S-Corporation series Fiduciary

5 series Estate series Gift series Excise F series F Corporation Live Data G. INFORMATION PROTECTIONS Authority: OMB M & PVR #9- Privacy as Part of the Development Life Cycle, #11- Privacy Assurance, #12- Privacy Education and Training, #17- PII Data Quality, #20- Safeguards and #22- Security Measures 21. Identify the owner and operator of the system: IRS Owned and Operated 21a. If Contractor operated, has the business unit provided appropriate notification to execute the annual security review of the contractors, when required? 22. The following people have use of the system with the level of access specified: IRS Employees: Users Managers System Administrators Developers Contractors: Contractor Users Contractor System Administrators Contractor Developers Other: / Access Level Read Only Read Only Read Only Read Write Access Read Only Access If you answered yes to contractors, please answer 22a. (All contractor/contractor employees must hold at minimum, a "Moderate Risk" Background Investigation if they have access to IRS owned SBU/PII data.) 22a. If the contractors or contractor employees act as System Administrators or have Root Access, does that person hold a properly adjudicated High Level background investigation? 23. How is access to the PII determined and by whom? A-CIS relies on the GSS common controls associated with the IRS Enterprise Active Directory domain structure to uniquely identify and verify the identity of each user. An OL5081 is required of IRS users requesting access to A- CIS and must be signed by an immediate manager, the respective Business Unit, the A-CIS Access Approval, A- CIS Application Manager, and then by ENTERPRISE LAN ACCOUNT ADMINISTRATION group, who adds the new user s account into the system. The OL5081 process ensures that the user identifier is issued to the intended party and that user identifiers are archived. For access to A-CIS, users must first successfully authenticate to their respective campus domain GSS infrastructure utilizing their IRS account provided through the Online 5081 process. Once successfully authenticated to the campus domain, A-CIS users are transparently given the proper permissions, through domain group policy, to access the A-CIS application databases to run queries and generate reports.

6 24. How will each data element of SBU/PII be verified for accuracy, timeliness, and completeness? The data is validated on the AIMS system from which it is extracted. If an error exists in the data received from the AIMS or SETTS data, the A-CIS developer sends an to the AIMS and SETTS personnel for research and resolution. Upon resolution, the A-CIS developer then notifies the end user. Discretionary checks of the data are performed by the A-CIS Database Administrator (DBA) and personnel from the Examination Management Information section. 25. Are these records covered under the General Records Schedule (GRS), or have a National Archives and Records Administration (NARA) archivist approved a Record Control Schedule (RCS) for the retention and destruction of official agency records stored in this system? 25a. If, how long are the records required to be held under the corresponding RCS and how are they disposed of? In your response, please include the complete IRM number 1.15.XX and specific item number and title. A-CIS is unscheduled. Application staff are working with the IRS Records and Information Management (RIM) Office to draft and seek National Archives approval of A-CIS data retention instructions. If, how long are you proposing to retain the records? Please note, if you answered no, you must contact the IRS Records and Information Management Program to initiate records retention scheduling before you dispose of any records in this system. A-CIS is unscheduled. Application staff are working with the IRS Records and Information Management (RIM) Office to draft and seek National Archives approval of A-CIS data retention instructions. 26. Describe how the PII data in this system is secured, including appropriate administrative and technical controls utilized. Access controls are in place to restrict access to the PII data to authorized users only. In addition, only authorized database administrators have access to administer the database on the database server. 26a. Next, explain how the data is protected in the system at rest, in flight, or in transition. EFTU is used to transfer data to other applications 27. Has a risk assessment (e.g., SA&A) been conducted on the system to ensure that appropriate security controls have been identified and implemented to protect against known risks to the confidentiality, integrity and availability of the PII? 28. Describe the monitoring/evaluating activities undertaken on a regular basis to ensure that controls continue to work properly in safeguarding the PII. IRS Enterprise Continuous Monitoring procedures are in place for the application. These procedures are completed annually to ensure the application and its data are properly secured. In addition, the Security Assessment and Authorization (SA&A) process is completed every three years or when a significant change is made to the system. 29. Is testing performed, in accordance with Internal Revenue Manual (IRM) IT Security, Live Data Protection Policy? 29a. Has approval been received from the Office of Privacy Compliance to use Live Data in testing (if appropriate)? 29b. If you have received permission from the Office of Privacy Compliance to use Live Data, when was the approval granted? 05/29/2012

7 H. PRIVACY ACT & SYSTEM OF RECORDS Under the statute, any employee who knowingly and willfully maintains a system of records without meeting the Privacy Act notice requirements is guilty of a misdemeanor and may be fined up to $5000. Authority: OMB M & Privacy Act, 5 U.S.C. 552a (e) (4) & PVR #13-Transparency 30. Are 10 or more records containing PII maintained/stored/transmitted through this system? 31. Are records on the system retrieved by any identifier for an individual? (Examples of identifiers include but are not limited to Name, SSN, Photograph, IP Address) 31a. If YES, the System of Records tice(s) (SORN) published in the Federal Register adequately describes the records as required by the Privacy Act? Enter the SORN number and the complete name of the SORN. SORN Number SORN Name Treasury/IRS Treasury/IRS Treasury/IRS Treasury/IRS Treasury/IRS Audit Information Management System (AIMS)--Treasu Exam Administrative Files IRS Audit Trail and Security Records System Customer Account Data Engine Individual Master Fil Compliance Programs and Project Files

8 I. ANALYSIS Authority: OMB M & PVR #21- Privacy Risk Management 32. What choices were made or actions taken regarding this IT system or collection of information as a result of preparing the PIA? Resulted in the removal of PII from the system (e.g., SSN use reduced/eliminated) Provided viable alternatives to the use of PII within the system New privacy measures have been considered/implemented Other: 32a. If to any of the above, please describe: A-CIS gives the users the ability to export data without the PII fields. This was implemented in May 2012.

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

Taxpayers/Public/Tax Systems Employees/Personnel/HR Systems Other Source: State agencies provide payment information via EFTPS and SDT

Taxpayers/Public/Tax Systems Employees/Personnel/HR Systems Other Source: State agencies provide payment information via EFTPS and SDT NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03 22, OMB Guidance for Implementing the Privacy Provisions of the E Government Act of 2002 & PVR #10 Privacy Accountability

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

Issue Based Management Information System (Redesign) is a Small Other system/application sponsored by LB&I.

Issue Based Management Information System (Redesign) is a Small Other system/application sponsored by LB&I. NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

Permit Power of Attorney (PoA) to establish an agreement on behalf of the taxpayer

Permit Power of Attorney (PoA) to establish an agreement on behalf of the taxpayer NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

A. SYSTEM DESCRIPTION

A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

Were there other system changes not listed above? No 3. Check the current ELC (Enterprise Life Cycle) Milestones (select all that apply)

Were there other system changes not listed above? No 3. Check the current ELC (Enterprise Life Cycle) Milestones (select all that apply) Date of Approval: October 9, 2015 PIA ID Number: 1448 A. SYSTEM DESCRIPTION 1. Enter the full name and acronym for the system, project, application and/or database. AIMS Centralized Information System,

More information

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes

8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

Date of Submission: November 25, 2015 PIA ID Number: 1528

Date of Submission: November 25, 2015 PIA ID Number: 1528 Date of Submission: vember 25, 2015 PIA ID Number: 1528 A. SYSTEM DESCRIPTION 1. Enter the full name and acronym for the system, project, application and/or database. Federal Student Aid-Datashare, FSA-D

More information

A. SYSTEM DESCRIPTION 1. Enter the full name and acronym for the system, project, application and/or database. Withholding Compliance, WHCS

A. SYSTEM DESCRIPTION 1. Enter the full name and acronym for the system, project, application and/or database. Withholding Compliance, WHCS Date of Approval: April 24, 2015 PIA ID Number: 1125 A. SYSTEM DESCRIPTION 1. Enter the full name and acronym for the system, project, application and/or database. Withholding Compliance, WHCS 2. Is this

More information

NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION

NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

Management Information System Data Warehouse (MISDW) Privacy Impact Assessment

Management Information System Data Warehouse (MISDW) Privacy Impact Assessment Management Information System Data Warehouse (MISDW) Privacy Impact Assessment PIA Date Mar. 18, 2009 System Overview: Management Information System Data Warehouse (MISDW) serves as a common shared service

More information

2a. If no, is there a PIA for this system? Yes If yes, enter the full name, acronym, and milestone of the most recent PIA. Contact Center - GSS-15

2a. If no, is there a PIA for this system? Yes If yes, enter the full name, acronym, and milestone of the most recent PIA. Contact Center - GSS-15 NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy

More information

Federal Trade Commission Privacy Impact Assessment. Conference Room Scheduling PIA

Federal Trade Commission Privacy Impact Assessment. Conference Room Scheduling PIA Federal Trade Commission Privacy Impact Assessment Conference Room Scheduling PIA July 2014 1. System Overview The Federal Trade Commission (FTC) uses conference spaces in various FTC facilities and FTC-leased

More information

Were there other system changes not listed above? 3. Check the current ELC (Enterprise Life Cycle) Milestones (select all that apply)

Were there other system changes not listed above? 3. Check the current ELC (Enterprise Life Cycle) Milestones (select all that apply) Date of Approval: July 1, 2015 PIA ID Number: 1358 A. SYSTEM DESCRIPTION 1. Enter the full name and acronym for the system, project, application and/or database. Bring Your Own Device - Good for Enterprise,

More information

Recruitment Tracking System (R-TRAK) Privacy Impact Assessment

Recruitment Tracking System (R-TRAK) Privacy Impact Assessment Recruitment Tracking System (R-TRAK) Privacy Impact Assessment PIA Approval Date Dec. 16, 2008 Requested Operational Date January 2009 System Overview The R-TRAK Proof of Concept (POC) is a recruitment

More information

U.S. Securities and Exchange Commission. Mailroom Package Tracking System (MPTS) PRIVACY IMPACT ASSESSMENT (PIA)

U.S. Securities and Exchange Commission. Mailroom Package Tracking System (MPTS) PRIVACY IMPACT ASSESSMENT (PIA) U.S. Securities and Exchange Commission (MPTS) PRIVACY IMPACT ASSESSMENT (PIA) February 24, 2013 General Information 1. Name of Project or System. (MPTS) 2. Describe the project and its purpose or function

More information

Privacy Impact Assessment. For Person Authentication Service (PAS) Date: January 9, 2015

Privacy Impact Assessment. For Person Authentication Service (PAS) Date: January 9, 2015 For Person Authentication Service (PAS) Date: January 9, 2015 Point of Contact and Author: Hanan Abu Lebdeh Hanan.Abulebdeh@ed.gov System Owner: Ganesh Reddy Ganesh.Reddy@ed.gov Office of Federal Student

More information

Privacy Impact Assessment For Management Information System (MIS) Date: September 4, 2015. Point of contact: Hui Yang hui.yang@ed.

Privacy Impact Assessment For Management Information System (MIS) Date: September 4, 2015. Point of contact: Hui Yang hui.yang@ed. Privacy Impact Assessment For Management Information System (MIS) Date: September 4, 2015 Point of contact: Hui Yang hui.yang@ed.gov System Owner: Wanda Scott wanda.scott@ed.gov Author: Oscar Rosario oscar.rosario@ed.gov

More information

U.S. Securities and Exchange Commission. Integrated Workplace Management System (IWMS) PRIVACY IMPACT ASSESSMENT (PIA)

U.S. Securities and Exchange Commission. Integrated Workplace Management System (IWMS) PRIVACY IMPACT ASSESSMENT (PIA) U.S. Securities and Exchange Commission (IWMS) PRIVACY IMPACT ASSESSMENT (PIA) March 21, 2013 General Information 1. Name of Project or System. (IWMS) 2. Describe the project and its purpose or function

More information

Date of Submission: December 7, 2015 PIA ID Number: 1459

Date of Submission: December 7, 2015 PIA ID Number: 1459 NOTE: The following reflects the information entered in the PIAMS website. Date of Submission: December 7, 2015 PIA ID Number: 1459 A. SYSTEM DESCRIPTION 1. Enter the full name and acronym for the system,

More information

Privacy Impact Assessment. For. Non-GFE for Remote Access. Date: May 26, 2015. Point of Contact and Author: Michael Gray michael.gray@ed.

Privacy Impact Assessment. For. Non-GFE for Remote Access. Date: May 26, 2015. Point of Contact and Author: Michael Gray michael.gray@ed. For Non-GFE for Remote Access Date: May 26, 2015 Point of Contact and Author: Michael Gray michael.gray@ed.gov System Owner: Allen Hill allen.hill@ed.gov Office of the Chief Information Officer (OCIO)

More information

Federal Trade Commission Privacy Impact Assessment. for the: Gilardi & Co., LLC Claims Management System and Online Claim Submission Website

Federal Trade Commission Privacy Impact Assessment. for the: Gilardi & Co., LLC Claims Management System and Online Claim Submission Website Federal Trade Commission Privacy Impact Assessment for the: Gilardi & Co., LLC Claims Management System and Online Claim Submission Website January 2015 Page 1 of 14 1 System Overview The Federal Trade

More information

Federal Trade Commission Privacy Impact Assessment for:

Federal Trade Commission Privacy Impact Assessment for: Federal Trade Commission Privacy Impact Assessment for: DCBE Websites and Blogs Consumer.ftc.gov, Consumidor.ftc.gov, OnGuardOnline, AlertaenLinea, Consumer.gov, Consumidor.gov and the BCP Business Center

More information

Federal Trade Commission Privacy Impact Assessment

Federal Trade Commission Privacy Impact Assessment Federal Trade Commission Privacy Impact Assessment for the: W120023 ONLINE FAX SERVICE December 2012 1 System Overview The Federal Trade Commission (FTC, Commission or the agency) is an independent federal

More information

1. Describe the information (data elements and fields) available in the system in the following categories:

1. Describe the information (data elements and fields) available in the system in the following categories: Legal Authority(ies ): 44 USC 2108 Purpose of this System/ Application: The system is a large index used to identify, maintain and track open OPF files stored at the Federal Records Center in Lee's Summit,

More information

Federal Trade Commission Privacy Impact Assessment

Federal Trade Commission Privacy Impact Assessment Federal Trade Commission Privacy Impact Assessment for the: StenTrack Database System September, 2011 1 System Overview The Federal Trade Commission (FTC) protects America s consumers. As part of its work

More information

Federal Trade Commission Privacy Impact Assessment. for the: Analytics Consulting LLC Claims Management System and Online Claim Submission Website

Federal Trade Commission Privacy Impact Assessment. for the: Analytics Consulting LLC Claims Management System and Online Claim Submission Website Federal Trade Commission Privacy Impact Assessment for the: Analytics Consulting LLC Claims Management System and Online Claim Submission Website January 2015 Page 1 of 14 1 System Overview The Federal

More information

Federal Trade Commission Privacy Impact Assessment. for the:

Federal Trade Commission Privacy Impact Assessment. for the: Federal Trade Commission Privacy Impact Assessment for the: Rust Consulting, Inc. Integrated Settlement Information System and Online Claim Submission Websites January 2015 Page 1 of 15 1 System Overview

More information

FHFA. Privacy Impact Assessment Template FM: SYSTEMS (SYSTEM NAME)

FHFA. Privacy Impact Assessment Template FM: SYSTEMS (SYSTEM NAME) FHFA Privacy Impact Assessment Template FM: SYSTEMS (SYSTEM NAME) This template is used when the Chief Privacy Officer determines that the system contains Personally Identifiable Information and a more

More information

Federal Trade Commission Privacy Impact Assessment. for the: Secure File Transfer System

Federal Trade Commission Privacy Impact Assessment. for the: Secure File Transfer System Federal Trade Commission Privacy Impact Assessment for the: Secure File Transfer System June 2011 1 System Overview The Federal Trade Commission (FTC, Commission or the agency) is an independent federal

More information

Central Application Tracking System (CATS) Privacy Impact Assessment (PIA) Version 1.0. April 28, 2013

Central Application Tracking System (CATS) Privacy Impact Assessment (PIA) Version 1.0. April 28, 2013 Central Application Tracking System (CATS) Privacy Impact Assessment (PIA) Version 1.0 April 28, 2013 Prepared by: Office of the Comptroller of the Currency (OCC) Security & Compliance Services (SCS) DOCUMENT

More information

Privacy Impact Assessment. For. Institute of Education Sciences Peer Review Information Management Online (PRIMO) Date: May 4, 2015

Privacy Impact Assessment. For. Institute of Education Sciences Peer Review Information Management Online (PRIMO) Date: May 4, 2015 For Institute of Education Sciences Peer Review Information Management Online (PRIMO) Date: May 4, 2015 Point of Contact and System Owner: Dr. Anne Ricciuti anne.ricciuti@ed.gov Author: Ellie Pelaez ellie.pelaez@ed.gov

More information

Education Resources Information Center (ERIC)

Education Resources Information Center (ERIC) Privacy Impact Assessment for Education Resources Information Center (ERIC) Date: April 29, 2011 Point of Contact: Luna Levinson, (202) 208-2321luna.levinson@ed.gov System Owner: Sue Betka, (202)219-2236,

More information

Department of Homeland Security Use of Google Analytics

Department of Homeland Security Use of Google Analytics for the DHS/ALL 033 June 9, 2011 Contact Point Kathleen McShea Director of New Media and Web Communications Office of Public Affairs (202) 282-8166 Reviewing Official Mary Ellen Callahan Chief Privacy

More information

Privacy Impact Assessment (PIA)

Privacy Impact Assessment (PIA) Privacy Impact Assessment () Farm Service Agency Customer Name/Address Systems (CN/AS) Customer Name/Address (CN/A) Revised: November 09, 2012 Template Version: FSA--2011-08-19-A Customer Name/Address

More information

Privacy Impact Assessment (PIA) for the. Certification & Accreditation (C&A) Web (SBU)

Privacy Impact Assessment (PIA) for the. Certification & Accreditation (C&A) Web (SBU) Privacy Impact Assessment (PIA) for the Cyber Security Assessment and Management (CSAM) Certification & Accreditation (C&A) Web (SBU) Department of Justice Information Technology Security Staff (ITSS)

More information

PRIVACY IMPACT ASSESSMENT (PIA) For the

PRIVACY IMPACT ASSESSMENT (PIA) For the PRIVACY IMPACT ASSESSMENT (PIA) For the Naval Audit Service Information Management System (NASIMS) Department of the Navy - DON/AA - NAVAUDSVC SECTION 1: IS A PIA REQUIRED? a. Will this Department of Defense

More information

Privacy Impact Assessment

Privacy Impact Assessment Technology, Planning, Architecture, & E-Government Version: 1.1 Date: April 14, 2011 Prepared for: USDA OCIO TPA&E Privacy Impact Assessment for the April 14, 2011 Contact Point Charles McClam Deputy Chief

More information

PRIVACY IMPACT ASSESSMENT (PIA) GUIDE

PRIVACY IMPACT ASSESSMENT (PIA) GUIDE U.S. Securities and Exchange Commission Office of Information Technology Alexandria, VA PRIVACY IMPACT ASSESSMENT (PIA) GUIDE Revised January 2007 Privacy Office Office of Information Technology PRIVACY

More information

Privacy Impact Assessment Forest Service Computer Base Legacy

Privacy Impact Assessment Forest Service Computer Base Legacy Forest Service Computer Base Legacy Cyber and Privacy Policy and Oversight Version: 2.0 Date: July 19, 2010 Prepared for: USDA OCIO CPPO Privacy Impact Assessment for the Forest Service Computer Base Legacy

More information

Student Administration and Scheduling System

Student Administration and Scheduling System for the Student Administration and Scheduling System DHS/FLETC/PIA-002 February 12, 2013 Contact Point William H. Dooley Chief, Office of IT Budget, Policy, & Plans (912) 261-4524 Reviewing Official Jonathan

More information

Date: 09/24/2012. SOI Control Number (if applicable): CS-12-373 SECTION I - INTRODUCATION

Date: 09/24/2012. SOI Control Number (if applicable): CS-12-373 SECTION I - INTRODUCATION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002 & BRRM PVR #10- Privacy Accountability and #21-Privacy

More information

Privacy Impact Assessment. For. TeamMate Audit Management System (TeamMate) Date: July 9, 2014. Point of Contact: Hui Yang Hui.Yang@ed.

Privacy Impact Assessment. For. TeamMate Audit Management System (TeamMate) Date: July 9, 2014. Point of Contact: Hui Yang Hui.Yang@ed. For TeamMate Audit Management System (TeamMate) Date: July 9, 2014 Point of Contact: Hui Yang Hui.Yang@ed.gov System Owner: Wanda Scott Wanda.Scott@ed.gov Author: Mike Burgenger Office of the Inspector

More information

Physical Access Control System

Physical Access Control System for the Physical Access Control System DHS/ALL 039 June 9, 2011 Contact Point David S. Coven Chief, Access Control Branch (202) 282-8742 Reviewing Official Mary Ellen Callahan Chief Privacy Officer (703)

More information

Privacy Impact Assessment. For Education s Central Automated Processing System (EDCAPS) Date: October 29, 2014

Privacy Impact Assessment. For Education s Central Automated Processing System (EDCAPS) Date: October 29, 2014 For Education s Central Automated Processing System (EDCAPS) Date: October 29, 2014 Point of Contact and Author: D Mekka Thompson DMekka.Thompson@ed.gov System Owner: Greg Robison Greg.Robison@ed.gov Office

More information

U.S. Securities and Exchange Commission. Easy Lobby PRIVACY IMPACT ASSESSMENT (PIA)

U.S. Securities and Exchange Commission. Easy Lobby PRIVACY IMPACT ASSESSMENT (PIA) U.S. Securities and Exchange Commission Easy Lobby PRIVACY IMPACT ASSESSMENT (PIA) September 30, 2013 General Information 1. Name of Project or System. Easy Lobby v10.0.8 Upgrade: Administrator and SVM

More information

Department of the Interior Privacy Impact Assessment

Department of the Interior Privacy Impact Assessment Department of the Interior August 15, 2014 Name of Project: email Enterprise Records and Document Management System (eerdms) Bureau: Office of the Secretary Project s Unique ID: Not Applicable A. CONTACT

More information

The Bureau of the Fiscal Service. Privacy Impact Assessment

The Bureau of the Fiscal Service. Privacy Impact Assessment The Bureau of the Fiscal Service Privacy Impact Assessment The mission of the Bureau of the Fiscal Service (Fiscal Service) is to promote the financial integrity and operational efficiency of the federal

More information

Department of the Interior Privacy Impact Assessment

Department of the Interior Privacy Impact Assessment Department of the Interior Name of Project: Facebook Bureau: Office of the Secretary Project s Unique ID (Exhibit 300): March 1, 2011 A. CONTACT INFORMATION: Departmental Privacy Office Office of the Chief

More information

PRIVACY IMPACT ASSESSMENT

PRIVACY IMPACT ASSESSMENT Name of System/Application: LAN/WAN PRIVACY IMPACT ASSESSMENT U. S. Small Business Administration LAN/WAN FY 2011 Program Office: Office of the Chief Information Officer A. CONTACT INFORMATION 1) Who is

More information

Privacy Impact Assessment. For Rehabilitation Services Administration Management Information System (RSA-MIS) Date: November 19, 2014

Privacy Impact Assessment. For Rehabilitation Services Administration Management Information System (RSA-MIS) Date: November 19, 2014 For Rehabilitation Services Administration Management Information System (RSA-MIS) Date: November 19, 2014 Point of Contact and Author: Ken Schellenberg Ken.Schellenberg@ed.gov System Owner: Ed Anthony

More information

Privacy Impact Assessment for the. Standardized Tracking and Accounting Reporting System- Financial Management System (STARS-FMS)

Privacy Impact Assessment for the. Standardized Tracking and Accounting Reporting System- Financial Management System (STARS-FMS) Privacy Impact Assessment for the Standardized Tracking and Accounting Reporting System- Financial Management System (STARS-FMS) United States Marshals Service Contact Point William E. Bordley Associate

More information

Accounting Package (ACCPAC)

Accounting Package (ACCPAC) for the (ACCPAC) DHS/FEMA/PIA-024 June 8, 2012 Contact Point Cheryl Ferguson Office of Chief Financial Officer (540) 504-1783 Reviewing Official Mary Ellen Callahan Chief Privacy Officer Department of

More information

Privacy Impact Assessment

Privacy Impact Assessment AUGUST 16, 2013 Privacy Impact Assessment CIVIL PENALTY FUND AND BUREAU-ADMINISTERED REDRESS PROGRAM Contact Point: Claire Stapleton Chief Privacy Officer 1700 G Street, NW Washington, DC 20552 202-435-7220

More information

Department of the Interior Privacy Impact Assessment (PIA) Updated February 2011

Department of the Interior Privacy Impact Assessment (PIA) Updated February 2011 Department of the Interior Privacy Impact Assessment (PIA) Updated February 2011 Name of Project: Electronic Time and Attendance System (E-TAS) Bureau: Bureau of Reclamation Project s Unique ID: DOI_BOR_5

More information

PRIVACY IMPACT ASSESSMENT (PIA) For the

PRIVACY IMPACT ASSESSMENT (PIA) For the PRIVACY IMPACT ASSESSMENT (PIA) For the Data Backup and Protection Solution (Yosemite) US Army Medical Command - DHP Funded Application SECTION 1: IS A PIA REQUIRED? a. Will this Department of Defense

More information

LITIGATION SUPPORT SYSTEM (SYSTEM NAME)

LITIGATION SUPPORT SYSTEM (SYSTEM NAME) Privacy Impact Assessment Form LITIGATION SUPPORT SYSTEM (SYSTEM NAME) This template is used when the Chief Privacy Officer determines that the system contains Personally Identifiable Information and a

More information

Priyacy Impact Assessment. Legal Authority(ies): 44 USC Chapters 21, 29,31 and 33

Priyacy Impact Assessment. Legal Authority(ies): 44 USC Chapters 21, 29,31 and 33 Priyacy Impact Assessment Name of Project: Project's Unique ID: Access to Archiyal Databases AAD Legal Authority(ies): 44 USC Chapters 21, 29,31 and 33 Purpose of this System/Application: The Access to

More information

The Bureau of the Fiscal Service. Privacy Impact Assessment

The Bureau of the Fiscal Service. Privacy Impact Assessment The Bureau of the Fiscal Service Privacy Impact Assessment The mission of the Bureau of the Fiscal Service (Fiscal Service) is to promote the financial integrity and operational efficiency of the federal

More information

Federal Trade Commission Privacy Impact Assessment for:

Federal Trade Commission Privacy Impact Assessment for: Federal Trade Commission Privacy Impact Assessment for: DCBE Websites and Blogs Consumer.ftc.gov, Consumidor.ftc.gov, OnGuardOnline, AlertaenLinea, Consumer.gov, Consumidor.gov and the BCP Business Center

More information

Financial Management Service. Privacy Impact Assessment

Financial Management Service. Privacy Impact Assessment Financial Management Service Privacy Impact Assessment The Financial Management Service (FMS) Mission is to provide central payment services to Federal Program Agencies, operate the federal government's

More information

Enterprise Forensics and ediscovery (EnCase) Privacy Impact Assessment

Enterprise Forensics and ediscovery (EnCase) Privacy Impact Assessment Enterprise Forensics and ediscovery (EnCase) Privacy Impact Assessment PIA Approval Date Mar. 14, 2011 System Overview The Enterprise Forensics and ediscovery (EnCase) solution is a major application that

More information

PRIVACY IMPACT ASSESSMENT (PIA) For the

PRIVACY IMPACT ASSESSMENT (PIA) For the PRIVACY IMPACT ASSESSMENT (PIA) For the Online Employee Scheduling Software and Workforce Management Systems Subscription Service (Aladtec ) US Army Medical Command DHP Funded System SECTION 1: IS A PIA

More information

U.S. DEPARTMENT OF COMMERCE UNITED STATES PATENT AND TRADEMARK OFFICE. Privacy Impact Assessment

U.S. DEPARTMENT OF COMMERCE UNITED STATES PATENT AND TRADEMARK OFFICE. Privacy Impact Assessment U.S. DEPARTMENT OF COMMERCE UNITED STATES PATENT AND TRADEMARK OFFICE Privacy Impact Assessment Cardinal Intellectual Property (CIP) Patent Cooperation Treaty Search Recordation System (PCTSRS) DOC50PAPT0601026

More information

Network Infrastructure - General Support System (NI-GSS) Privacy Impact Assessment (PIA)

Network Infrastructure - General Support System (NI-GSS) Privacy Impact Assessment (PIA) Network Infrastructure - General Support System (NI-GSS) Privacy Impact Assessment (PIA) System Categorization: Moderate Version 1.5 May 30, 2013 Prepared by: Security & Compliance Services (SCS) and Infrastructure

More information

Department of State SharePoint Server PIA

Department of State SharePoint Server PIA 1. Contact Information A/GIS/IPS Director Department of State SharePoint Server PIA Bureau of Administration Global Information Services Office of Information Programs and Services 2. System Information

More information