Name of System/Application: Customer Relationship Management (CRM) Program Office: Office of the Chief Information Officer (CIO)
|
|
- Edward Parker
- 5 years ago
- Views:
Transcription
1 PRIVACY IMPACT ASSESSMENT Name of System/Application: Customer Relationship Management (CRM) Program Office: Office of the Chief Information Officer (CIO) Once the Privacy Impact Assessment is completed and the signature approval page is signed, please submit an electronic copy and hardcopy with original signatures of the PIA to the SBA Senior Advisor to the Chief Privacy Officer in the Information Privacy Office of the OCIO. A. CONTACT INFORMATION 1. Who is the person completing this document? Kevin Adcock, Senior Technical Advisor, SBA Office of the CIO, (202) , 2. Who is the system owner? Paul Christy, Chief Information Officer, SBA Office of the CIO, , 3. Who is the system owner representative for this system or application? Kevin Adcock, Senior Technical Advisor, SBA Office of the CIO, (202) , 4. Who is the IT Security Manager who reviewed this document? Troy Thompson, Acting Chief Information Security Officer, SBA Office of the CIO, , 5. Who is the Senior Advisor who reviewed this document? Ethel Matthews, Senior Advisor to the Chief Information Officer, SBA Office of the CIO, , 6. Who is the Reviewing Official? Paul Christy, Chief Information Officer, SBA Office of the CIO, , B. SYSTEM APPLICATION/GENERAL INFORMATION 1) Does this system contain any information about individuals? If yes, explain. Yes, currently the CRM contains the names of business, their loan balances, postal addresses, EIN and SSN of the business owner a. Is the information about individual members of the public? Yes. b. Is the information about employees?
2 No. 2) What is the purpose of the system/application? The Customer Relationship Management (CRM) program meets the basic need of providing centralized customer contact data across the entirety of the SBA with focus on business and lender interaction tracking and reporting. Beyond merely centralizing contact demographic data, CRM provides the ability to easily track major performance metrics vital to the SBA such as: number of new lenders established, number of contact efforts made to customers, number of loans issued, etc These reports are quickly available to individual users and will be automated and standardized as a part of agency process to track performance for Field Operations. The CRM system has been expanded to include a detailed correspondence management system replacing an aging custom-coded system, to pull additional data feeds for 8(a) businesses, and provide detailed mapping data to citizens for the HUBZone program. 3) Is the system in the development process? Yes. 4) How will the technology investment (new or updated) affect existing privacy processes? The CRM production system will transition from a Pilot environment to the SBA HQ infrastructure around the December 2010 timeframe. 5) What legal authority authorizes the purchase or development of this system/application? The American Recovery and Reinvestment Act of 2009 (PL 111-5). 15 U.S.C. 634(b) (6), 44 U.S.C Privacy Act of 1974,5 U.S.C. 552a and related statutes (Electronic Communications Privacy Act of 1986; Computer Matching and Privacy Protection Act of 1988). Paperwork Reduction Act of 1995; 44 U.S.C Government Paperwork Elimination Act of Federal Records Act of 1950 and National Archives and Records Administration (NARA) implementing regulating at 36 C.F.R and 41 C.S.R The Office of Management and Budget (OMB) Circular A-l30, "Management of Federal Information Resources," Appendix III, "Security of Federal Automated Information Systems." OMB Circular A-130 implements a number of Federal laws relating to information resources ID (for example, the Paperwork Reduction Act, the Clinger-Cohen Act; and the Government Performance and Results Act). The Federal Information Security Management Act of 2002 (FISMA). 2
3 Additional program definition is detailed in 13 C.F.R., Part ) Privacy Impact Analysis: What privacy risks were identified and describe how they were mitigated for security and access controls? CRM is primarily a presentation tool for SBA management and employees. Access to CRM data contained in the system is restricted by security roles. Security risks have been resolved via access controls inherited from SBA LAN/WAN. Privacy risks were also mitigated by masking or hiding SSN and or EIN fields from view. C. SYSTEM DATA 1) What categories of individuals are covered in the system? Following categories of individual are covered in the CRM system: Lenders, Business Partners, Customers, Business owners, and Contacts. 2) What are the sources of the information in the system? Currently the CRM automated data sources are: Partner Information Sources (PIMS) Electronic Loan Information Systems (ELIPS) Electronic 8(a) Processing Systems (E8a) The SBA user can enter administrative information (e.g. contacts, accounts, activity records and correspondence) into the CRM system. 1) Is the source of the information from the individual or is it taken from another source? If not directly from the individual, then what other source? Currently the CRM automated Data Sources are: Partner Information Sources (PIMS) Electronic Loan Information Processing Systems (ELIPS) Electronic 8(a) Processing Systems (E8a) The SBA user can enter administrative information (e.g. contacts, accounts, activity records and correspondence) into the CRM system. 2) What Federal agencies are providing data for use in the system? None. 3) What Tribal, State and local agencies are providing data for use in the system? None. 3
4 4) From what other third party sources will data be collected? None. 5) What information will be collected from the employee and the public? The SBA users may record and modify administrative information. 3) Accuracy, Timeliness, and Reliability a. How is data collected from sources other than SBA records verified for accuracy? Currently the CRM system contains information that is migrated through Microsoft BizTalk adapter services from existing SBA data sources and SBA users may record administrative information from existing and or new customers. Additionally, quality assurance processes will be executed to ensure data quality and to verify and validate the CRM system for accuracy, timeliness and reliability. b. How is data checked for completeness? Quality assurance efforts will be executed to ensure data quality and to verify and validate the completeness of the CRM system. c. Is the data current? What steps or procedures are taken to ensure the data is current and not out-of-date? Name the document (e.g., data models). The data is updated daily via automated updates from PIMS, E8a and ELIPS. A quality assurance effort will be implemented to ensure data quality and to verify and validate CRM. d. Are the data elements described in detail and documented? Yes. 4) Privacy Impact Analysis: Discuss what privacy risks were identified and how they were mitigated for the types of information collected? CRM privacy risks are limited due to security access controls inherited from the SBA LAN/WAN systems which authenticate the user at time of login for valid credentials. Privacy risks are further mitigated in that end-users are granted access to CRM on an individual basis, according to a pre-defined system security process. D. DATA ATTRIBUTES 4
5 1) Is the use of the data both relevant and necessary to the purpose for which the system is being designed? Yes. 2) Will the system derive new data or create previously unavailable data about an individual through aggregation from the information collected, and how will this be maintained and filed? No. 3) Will the new data be placed in the individual s record? 4) Can the system make determinations about employees or members of the public that would not be possible without the new data? 5) How is the new data verified for relevance, timeliness and accuracy? 6) If the data is being consolidated, what controls are in place to protect the data from unauthorized access or use? 7) If processes are being consolidated, are the proper controls remaining in place to protect the data and prevent unauthorized access? If process are not be consolidated please state, N/A. 8) How will the data be retrieved? Does a personal identifier retrieve the data? If yes, explain and list the identifiers that will be used to retrieve information on the individual. Data is retrieved by searching on key terms or unique identifiers such as name of lender, location/state, name of business, loan number and customer name. The SSN and/or EIN information is stored as part of the data feed and used as a blindkey, but is never accessible or viewable in search results or displayed fields. The SSN and/or EIN information is always hidden from CRM users. 5
6 9) What kinds of reports can be produced on individuals? What will be the use of these reports? Who will have access to them? Reports can only be produced currently on loan, business, and lender information. Only internal SBA employees and contractors who have gone through the clearance process will have access to the CRM data. SBA program and field office end users will use the CRM tool to support outreach campaigns and provide service to SBA s customers. 10) What opportunities do individuals have to decline to provide Information (i.e., where providing information is voluntary) or to consent to particular uses of the information (other than required or authorized uses), and how individuals can grant consent. 11) Privacy Impact Analysis: Describe any types of controls that may be in place to ensure that information is used as intended. Prior to accessing CRM, all users accept a "Rules of Behavior" contained in the security warning banner which states, in part, that they are prohibited from accessing or attempting to access system or information for which they are not authorized. The form stipulates that users may not read, store, or transfer information for which they are not authorized, and that disciplinary action may result from any unauthorized use of SBA systems and computer resources for non-work-related activities. E. MAINTENANCE AND ADMINISTRATIVE CONTROLS 1) If the system is operated in more than one site, how will consistent use of the system and data be maintained in all sites? All users will go through training on proper use of the system to ensure consistent use. Data is delivered from a centralized data store. 2) What are the retention periods of data in this system? Retention of the information provided is indefinite. Since the average loan can be financed for at least 30 years, loan and lender data must remain for the life of the loan. 3) What are the procedures for disposition of the data at the end of the retention period? How long will the reports produced be kept? Where are the procedures documented? 6
7 As this is an electronic system, no paper reports are produced, therefore no processes are needed for the disposal of hardcopy. Electronic records will be archived when a business no longer has a relationship with SBA or its lending partners. Archiving will be managed in accordance with SBA and NARA record scheduling and best practices 4) Is the system using technologies in ways that the SBA has not previously employed (e.g., monitoring software, Smart Cards, Caller-ID)? No. This data already resides in existing systems. 5) How does the use of this technology affect public/employee privacy? Confidential SSN/EIN information on a citizen are and will continue to be masked from all CRM users. 6) Will this system provide the capability to identify, locate, and monitor individuals? If yes, explain. No. 7) What kinds of information are collected as a function of the monitoring of individuals? 8) What controls will be used to prevent unauthorized monitoring? 9) Under which Privacy Act systems of records notice (SORN) does the system operate? Provide number and name. SBA Privacy Act System of Records Notice (SORN) SBA 21 10) If the system is being modified, will the Privacy Act system of records notice require amendment or revision? F. DATA ACCESS 1) Who will have access to the data in the system? Designated SBA employees and designated SBA contractors who have completed the background check and clearance process. 7
8 2) How is access to the data by a user determined? Are criteria, procedures, controls, and responsibilities regarding access documented? User Access to the system will be role based. Level of access will depend upon a designated role. 3) Will users have access to all data on the system or will the user s access be restricted? Explain. CRM users have access to views, reports, and data that correspond to their assigned system roles. System roles and user access will be controlled by a system administrator. 4) What controls are in place to prevent the misuse (e.g., unauthorized browsing) of data by those having access? (Please list processes and training materials) CRM user access is limited through the control of User IDs, password, along with the assignment of a User Role profile to all User IDs or Workgroups. Each user role comes with a pre-determined set of privileges, limiting data that may be accessible. A CRM user manual will detail the various roles within the system and explain the access associated with each User Role profile. 5) Are contractors involved with the design and development of the system and will they be involved with the maintenance of the system? If yes, were Privacy Act contract clauses inserted in their contracts and other regulatory measures addressed? Yes, contractors were involved in development, maintenance and delivery of the CRM production system. Privacy Act clauses have been included in the contract. 6) Do other systems share data or have access to the data in the system? If yes, explain. CRM will receive a daily unidirectional data feed from the existing PIMS, E8a and ELIPS systems. 7) Who will be responsible for protecting the privacy rights of the public and employees affected by the interface? All users of the system will be responsible for privacy and security of the data. 8) Will other agencies share data or have access to the data in this system via transferred or transmitted (Federal, State, and Local, Other (e.g., Tribal))? No. 8
9 9) How will the shared data be used by the other agency? 10) What procedures are in place for assuring proper use of the shared data? 11) Privacy Impact Analysis: Discuss what privacy risks were identified and how they were mitigated for information shared internal and external. CRM is primarily a presentation tool for SBA management and employees. Access to CRM data contained in the system is restricted by security roles. Security risks have been resolved via access controls inherited from SBA LAN/WAN systems. Privacy risks were also mitigated by masking or hiding SSN and or EIN fields from view. 9
10 . Privacy Impact Assessment PIA Approval Page The Following Officials Have Approved this Document: 1) System Owner ---"-A----""' (t l=j..:... --'Co;.:. l..;; I:;K:..;;, --::-_' _(Signature) Mt<\.K(. A.. ~~ {CI A.I C 16 ' J i Name: Paul T. Christy Title: Chief Information Officer I... (... D'--_(Date) 2) System <>:"n~r Repyentative _VY~r-,- _--,l~ i f- / '-'I /~"'"+- _ -..;.../_-:<.:- /.--~d~ ~-..:::::~v/l,-'" Name: Kevin Adcock Title: Senior Technical Advisor (Signature) _ 1./- 61- /;.:-13_.-': _/;.:,... /..;..,. J (Date) 3) IT ~ securi~ger "f(b, = (Signature) /~ (Date) Name: Troy Thompson Title: Acting Chief Information Security Officer 4) Senior Advisor to the Chief Privacy Officer #4. ~~ (Signature) (Date)?' Name: Ethel Matthews Title: Senior Advisor to the Chief Privacy Officer 10
PRIVACY IMPACT ASSESSMENT
Name of System/Application: LAN/WAN PRIVACY IMPACT ASSESSMENT U. S. Small Business Administration LAN/WAN FY 2011 Program Office: Office of the Chief Information Officer A. CONTACT INFORMATION 1) Who is
Name ofsystem/application: CRM-Correspondence Management Program Office: Office ofthe Executive Secretariat
PRIVACY IMPACT ASSESSMENT Name ofsystem/application: CRM-Correspondence Management Program Office: Office ofthe Executive Secretariat A. CONTACT INFORMATION 1) Who is the person completing this document?
PRIVACY IMPACT ASSESSMENT TEMPLATE
PRIVACY IMPACT ASSESSMENT TEMPLATE Name of System/Application: TeamMate Automated Audit Documentation System Program Office: Office of Inspector General Once the Privacy Impact Assessment is completed
Name of System/Application: E8(a) Program Office: Government Contracting and Business Development
PRIVACY IMPACT ASSESSMENT TEMPLATE Name of System/Application: E8(a) Program Office: Government Contracting and Business Development Once the Privacy Impact Assessment is completed and the signature approval
PRIVACY IMPACT ASSESSMENT
PRIVACY IMPACT ASSESSMENT Once the Privacy Impact Assessment is completed and the signature approval page is signed, please submit an electronic copy and hard copy with original signatures of the PIA to
Name of Project: Auditing Management Information System (AMIS) Program Office: Office of Inspector General, Auditing Division
Name of Project: Auditing Management Information System (AMIS) Program Office: Office of Inspector General, Auditing Division A. CONTACT INFORMATION: 1. Who is the person completing this document? (Name,
Department of the Interior Privacy Impact Assessment
Department of the Interior Name of Project: Facebook Bureau: Office of the Secretary Project s Unique ID (Exhibit 300): March 1, 2011 A. CONTACT INFORMATION: Departmental Privacy Office Office of the Chief
Department of the Interior Privacy Impact Assessment Template
Department of the Interior Privacy Impact Assessment Template Name of Project: Reclamation Electronic Document System (REDS) Bureau: Bureau of Reclamation Project s Unique ID: 010-10-01-07-1011-00-404-142
Bank Secrecy Act E-Filing. Privacy Impact Assessment (PIA) Bank Secrecy Act E-Filing. Version 1.5
Bank Secrecy Act E-Filing Privacy Impact Assessment (PIA) Bank Secrecy Act E-Filing Version 1.5 August13, 2014 E-Filing Privacy Impact Assessment Revision Number Change Effective Date Revision History
Department of the Interior Privacy Impact Assessment
Department of the Interior August 15, 2014 Name of Project: email Enterprise Records and Document Management System (eerdms) Bureau: Office of the Secretary Project s Unique ID: Not Applicable A. CONTACT
Department of the Interior Privacy Impact Assessment Template
Department of the Interior Template May 28, 2014 Name of Project: Consolidated Financial System (CFS) Bureau: Office of the Secretary Project s Unique ID: 010-000000308 A. CONTACT INFORMATION: Teri Barnett
Name of System/Application: Customer Service Center Telecommunication System (CSCTCS)
PRIVACY IMPACT ASSESSMENT (PIA) Name of System/Application: Customer Service Center Telecommunication System (CSCTCS) Program Office: Office of Disaster Assistance, Buffalo Customer Service Center Once
Department of the Interior Privacy Impact Assessment
Department of the Interior September 8, 2014 Name of Project: Enterprise Data-at Rest (DAR) Encryption Bureau: Office of the Secretary Project s Unique ID: 010-000000666 Once the PIA is completed and the
Department of the Interior Privacy Impact Assessment
Department of the Interior Privacy Impact Assessment Name of Project: Performance Management Database System (PMDS) Bureau: National Park Service Project s Unique ID: DOI_NPS_167 A. CONTACT INFORMATION:
Department of the Interior Privacy Impact Assessment
Department of the Interior Privacy Impact Assessment Name of Project: Electronic Access Control and Surveillance System (EACSS) May 2, 2011 Bureau: Bureau of Reclamation Project s Unique ID: DOI_BOR_81
The Bureau of the Fiscal Service. Privacy Impact Assessment
The Bureau of the Fiscal Service Privacy Impact Assessment The mission of the Bureau of the Fiscal Service (Fiscal Service) is to promote the financial integrity and operational efficiency of the federal
Customer Tracking and Fulfillment
Privacy impact assessment p I a, double black lines. This is a heading that repeat on all following pages Department of the Treasury BUREAU OF ENGRAVING AND PRINTING Customer Tracking and Fulfillment 25
The Bureau of the Fiscal Service. Privacy Impact Assessment
The Bureau of the Fiscal Service Privacy Impact Assessment The mission of the Bureau of the Fiscal Service (Fiscal Service) is to promote the financial integrity and operational efficiency of the federal
Department of the Interior Privacy Impact Assessment
Department of the Interior Privacy Impact Assessment Name of Project: Facility Management Software System (FMSS) Bureau: National Park Service Project s Unique ID: 010-00-01-25-01-1010 DEAR System ID:
Department of the Interior Privacy Impact Assessment (PIA) Updated February 2011
Department of the Interior Privacy Impact Assessment (PIA) Updated February 2011 Name of Project: Electronic Time and Attendance System (E-TAS) Bureau: Bureau of Reclamation Project s Unique ID: DOI_BOR_5
Department of the Interior Privacy Impact Assessment
Department of the Interior Privacy Impact Assessment March 25, 2013 Name of Project: Laserfiche Document Management System (LDMS) Major Application (MA) Bureau: Office of the Secretary (OS) Project s Unique
Office of Financial Research Constituent Relationship Management Tool Privacy Impact Assessment ( PIA ) April, 2015
Office of Financial Research Constituent Relationship Management Tool Privacy Impact Assessment ( PIA ) April, 2015 A. Identification System Name: OMB Unique Identifier: System Owner: Constituent Relationship
Department of State Privacy Impact Assessment Electronic Medical Record System Updated July 2008
Department of State Privacy Impact Assessment Electronic Medical Record System Updated July 2008 A. CONTACT INFORMATION: Who is the Agency Privacy Coordinator who is conducting this assessment? (Name,
Privacy Impact Assessment May 2014
U.S. Department of the Interior US Geological Survey Office of Administration and Enterprise Information Financial Management and Security System FMS Privacy Impact Assessment May 2014 Prepared for the
Treasury Retail Securities Software Application (TRSSA) / Treasury Services Contact Center (TSCC) Privacy Impact Assessment (PIA)
Treasury Retail Securities Software Application (TRSSA) / Treasury Services Contact Center (TSCC) Privacy Impact Assessment (PIA) August 30, 2012 System Information Name of System, Project or Program:
Department of the Interior Privacy Impact Assessment
Department of the Interior September 8, 2014 Name of Project: Enterprise Forms System Bureau: Office of the Secretary Project s Unique ID (Exhibit 300): 010-000000312 Once the PIA is completed and the
Financial Management Service. Privacy Impact Assessment
Financial Management Service Privacy Impact Assessment The Financial Management Service (FMS) Mission is to provide central payment services to Federal Program Agencies, operate the federal government's
Recruitment System RECRUIT
DEPARTMENT OF STATE FISCAL YEAR 2008 PRIVACY IMPACT ASSESSMENT Recruitment System RECRUIT Conducted by: Bureau of Administration Information Sharing Services Office of Information Programs and Services
Privacy Impact Assessment Federal Reserve Electronic Tax Application
U.S. Department of the Treasury Financial Management Service Privacy Impact Assessment Federal Reserve Electronic Tax Application Major Application Version 2.0 FRETA-PIA Clean.DOC Financial Management
DEPARTMENT OF STATE FISCAL YEAR 2008 PRIVACY IMPACT ASSESSMENT
DEPARTMENT OF STATE FISCAL YEAR 2008 PRIVACY IMPACT ASSESSMENT Security Management System-enterprise (SMSe) Conducted by: Bureau of Administration Information sharing and Services Office of Information
The Bureau of the Fiscal Service. Privacy Impact Assessment
The Bureau of the Fiscal Service Privacy Impact Assessment The mission of the Bureau of the Fiscal Service (Fiscal Service) is to promote the financial integrity and operational efficiency of the federal
DEPARTMENT OF STATE FISCAL YEAR 2008 PRIVACY IMPACT ASSESSMENT
DEPARTMENT OF STATE FISCAL YEAR 2008 PRIVACY IMPACT ASSESSMENT Post Capabilities Database (PCD) FY 2008, Quarter 3 Conducted by: Bureau of Administration Information Sharing Services Office of Information
The Bureau of the Fiscal Service. Privacy Impact Assessment
The Bureau of the Fiscal Service Privacy Impact Assessment The mission of the Bureau of the Fiscal Service (Fiscal Service) is to promote the financial integrity and operational efficiency of the federal
National Park Service Point of Sale System (POSS)
National Park Service Point of Sale System (POSS) Privacy Impact Assessment 21 June 2013 NPS Point of Sale System (POSS) Privacy Impact Assessment National Park Service Recreation Fee Program 1201 I Street,
Privacy Impact Assessment
U.S. Department of the Interior Bureau of Reclamation Capital Asset and Resource Management Application (CARMA) Project Number: [010-10-01-07-00-003] Privacy Impact Assessment February 2010 Prepared for
1. Describe the information (data elements and fields) available in the system in the following categories:
Legal Authority(ies ): 44 USC 2108 Purpose of this System/ Application: The system is a large index used to identify, maintain and track open OPF files stored at the Federal Records Center in Lee's Summit,
The Bureau of the Fiscal Service. Privacy Impact Assessment
The Bureau of the Fiscal Service Privacy Impact Assessment The mission of the Bureau of the Fiscal Service (Fiscal Service) is to promote the financial integrity and operational efficiency of the federal
Small Business Administration Privacy Impact Assessment
Small Business Administration Privacy Impact Assessment Name of Project: Personal Identity Verification (PIV)/ Homeland Security Presidential Directive 12 (HSPD-12) (Note: This PIA is intended to cover
The Bureau ofthe Fiscal Service. Debt Information Management System. Privacy Impact Assessment
The Bureau ofthe Fiscal Service Debt Information Management System Privacy Impact Assessment The mission of the Bureau ofthe Fiscal Service (Fiscal Service) is to promote the financial integrity and operational
The Bureau of the Fiscal Service. Privacy Impact Assessment
The Bureau of the Fiscal Service Privacy Impact Assessment The mission of the Bureau of the Fiscal Service (Fiscal Service) is to promote the financial integrity and operational efficiency of the federal
DEPARTMENT OF STATE PRIVACY IMPACT ASSESSMENT
DEPARTMENT OF STATE PRIVACY IMPACT ASSESSMENT Integrated Document Management and Analysis System (IDMAS) (Updated April 2008) Conducted by: Bureau of Administration Information Sharing Services Office
Department of the Interior Privacy Impact Assessment
Department of the Interior Privacy Impact Assessment Name of Project: Enterprise Web Bureau: U.S. Geological Survey Project's Unique ID: 010-12-03-00-01-3004-00 A. CONTACT INFORMATION: Nancy Sternberg
Financial Management Service. Privacy Impact Assessment
Financial Management Service Privacy Impact Assessment The Financial Management Service (FMS) Mission is to provide central payment services to Federal Program Agencies, operate the federal government's
Department of the Interior Privacy Impact Assessment
Department of the Interior September 3, 2013 Name of Project: BisonConnect Google Apps for Government Bureau: Office of the Secretary Project s Unique ID: 010-000000330 Once the PIA is completed and the
Privacy Impact Assessment for the Volunteer/Contractor Information System
Federal Bureau of Prisons Privacy Impact Assessment for the Volunteer/Contractor Information System Issued by: Sonya D. Thompson Deputy Assistant Director/CIO Reviewed by: Approved by: Vance E. Hitch,
Priyacy Impact Assessment. Legal Authority(ies): 44 USC Chapters 21, 29,31 and 33
Priyacy Impact Assessment Name of Project: Project's Unique ID: Access to Archiyal Databases AAD Legal Authority(ies): 44 USC Chapters 21, 29,31 and 33 Purpose of this System/Application: The Access to
Savings Bond Replacement System (SaBRe) Privacy Impact Assessment (PIA) May 31, 2012
Savings Bond Replacement System (SaBRe) Privacy Impact Assessment (PIA) May 31, 2012 System Information Name of System, Project or Program: Savings Bond replacement System (SaBRe) OMB Unique Identifier:
U.S. Nuclear Regulatory Commission
ADAMS ML081410105 U.S. Nuclear Regulatory Commission Privacy Impact Assessment (Designed to collect the information necessary to make relevant determinations regarding the applicability of the Privacy
Verizon Notification Service (VNS)
ADAMS ML12067A167 U.S. Nuclear Regulatory Commission Revised Privacy Impact Assessment Designed to collect the information necessary to make relevant determinations regarding the applicability of the Privacy
Federal Trade Commission Privacy Impact Assessment for:
Federal Trade Commission Privacy Impact Assessment for: DCBE Websites and Blogs Consumer.ftc.gov, Consumidor.ftc.gov, OnGuardOnline, AlertaenLinea, Consumer.gov, Consumidor.gov and the BCP Business Center
PRIVACY IMPACT ASSESSMENT
PRIVACY IMPACT ASSESSMENT Name of System/Application: Business Development Management Information System (BDMIS) Program Office: Government Contracting & Business Development Once the Privacy Impact Assessment
Recruitment Activity Tracking System (RATS)
ADAMS ML081050423 U.S. Nuclear Regulatory Commission (NRC) Privacy Impact Assessment (PIA) (Designed to collect the information necessary to make relevant determinations regarding the applicability of
U.S. Nuclear Regulatory Commission
ADAMS ML14268A299 U.S. Nuclear Regulatory Commission Privacy Impact Assessment Designed to collect the information necessary to make relevant determinations regarding the applicability of the Privacy Act,
PRIVACY IMPACT ASSESSMENT (PIA) GUIDE
U.S. Securities and Exchange Commission Office of Information Technology Alexandria, VA PRIVACY IMPACT ASSESSMENT (PIA) GUIDE Revised January 2007 Privacy Office Office of Information Technology PRIVACY
Privacy Impact Assessment
Privacy Impact Assessment Name of Project: NARA Online Ordering System Project s Unique ID: 393-00-01-04-01-005-00 Legal Authority(ies): NARA s GPEA / ENOS and e-government Program stems from a 1998 OMB
Privacy Impact Assessment. For. Non-GFE for Remote Access. Date: May 26, 2015. Point of Contact and Author: Michael Gray michael.gray@ed.
For Non-GFE for Remote Access Date: May 26, 2015 Point of Contact and Author: Michael Gray michael.gray@ed.gov System Owner: Allen Hill allen.hill@ed.gov Office of the Chief Information Officer (OCIO)
8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes
NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
Automated Standard Application for Payment (ASAP) System
ADAMS ML081550350 U.S. Nuclear Regulatory Commission Privacy Impact Assessment (Designed to collect the information necessary to make relevant determinations regarding the applicability of the Privacy
Privacy Impact Assessment
Technology, Planning, Architecture, & E-Government Version: 1.1 Date: April 14, 2011 Prepared for: USDA OCIO TPA&E Privacy Impact Assessment for the April 14, 2011 Contact Point Charles McClam Deputy Chief
The Bureau of the Fiscal Service. Privacy Impact Assessment
The Bureau of the Fiscal Service Privacy Impact Assessment The mission of the Bureau of the Fiscal Service (Fiscal Service) is to promote the financial integrity and operational efficiency of the federal
Privacy Impact Assessment: Infrastructure Systems
Infrastructure Systems Data in the System Privacy Impact Assessment: Infrastructure Systems SECTION V PRIVACY QUESTIONS 1. Generally describe the information to be used in the system in each of the following
Privacy Impact Assessment
MAY 24, 2012 Privacy Impact Assessment matters management system Contact Point: Claire Stapleton Chief Privacy Officer 1700 G Street, NW Washington, DC 20552 202-435-7220 claire.stapleton@cfpb.gov DOCUMENT
Federal Trade Commission Privacy Impact Assessment
Federal Trade Commission Privacy Impact Assessment for the: StenTrack Database System September, 2011 1 System Overview The Federal Trade Commission (FTC) protects America s consumers. As part of its work
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
Issue Based Management Information System (Redesign) is a Small Other system/application sponsored by LB&I.
NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
A. SYSTEM DESCRIPTION
A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03 22, OMB Guidance for Implementing the Privacy Provisions of the E Government Act of 2002 & PVR #10 Privacy Accountability
Federal Trade Commission Privacy Impact Assessment. Conference Room Scheduling PIA
Federal Trade Commission Privacy Impact Assessment Conference Room Scheduling PIA July 2014 1. System Overview The Federal Trade Commission (FTC) uses conference spaces in various FTC facilities and FTC-leased
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
Privacy Impact Assessment Forest Service Computer Base Legacy
Forest Service Computer Base Legacy Cyber and Privacy Policy and Oversight Version: 2.0 Date: July 19, 2010 Prepared for: USDA OCIO CPPO Privacy Impact Assessment for the Forest Service Computer Base Legacy
U.S. Nuclear Regulatory Commission
ADAMS ML14344A108 U.S. Nuclear Regulatory Commission Privacy Impact Assessment Designed to collect the information necessary to make relevant determinations regarding the applicability of the Privacy Act,
Personal Information Collection and the Privacy Impact Assessment (PIA)
SEPTEMBER 27, 2012 Privacy Impact Assessment NATIONWIDE MORTGAGE LICENSING SYSTEM AND REGISTRY Contact Point: Claire Stapleton Chief Privacy Officer 1700 G Street, NW Washington, DC 20552 202-435-7220
US Federal Student Aid Datashare (SBU-PII) Application and Database
Date of Submission: vember 25, 2015 PIA ID Number: 1528 A. SYSTEM DESCRIPTION 1. Enter the full name and acronym for the system, project, application and/or database. Federal Student Aid-Datashare, FSA-D
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
Privacy Impact Assessment for TRUFONE Inmate Telephone System
Federal Bureau of Prisons Privacy Impact Assessment for TRUFONE Inmate Telephone System Issued by: Sonya D. Thompson Reviewed by: Approved by: Vance E. Hitch, Chief Information Officer, Department of Justice
Crew Member Self Defense Training (CMSDT) Program
for the Crew Member Self Defense Training (CMSDT) Program February 6, 2008 Contact Point Michael Rigney Federal Air Marshal Service Flight Programs Division Michael.Rigney@dhs.gov Reviewing Officials Peter
Federal Bureau of Prisons. Privacy Impact Assessment for the HR Automation System. Issued by: Sonya D. Thompson Deputy Assistant Director/CIO
Federal Bureau of Prisons Privacy Impact Assessment for the HR Automation System Issued by: Sonya D. Thompson Deputy Assistant Director/CIO Reviewed by: Approved by: Eric Olson, Acting Chief Information
DEPARTMENT OF STATE PRIVACY IMPACT ASSESSMENT. Paper Check Conversion System (PCC) July 28, 2008
DEPARTMENT OF STATE PRIVACY IMPACT ASSESSMENT Paper Check Conversion System (PCC) July 28, 2008 Prepared by: Bureau of Administration Information Sharing Services Information Programs and Services SYSTEM
Corporate Property Automated Information System CPAIS. Privacy Impact Assessment
Corporate Property Automated Information System CPAIS Privacy Impact Assessment May 2003 CONTENTS Background...3 Access to the Data...5 Maintenance of Administrative Controls...9 1 Introduction The Office
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
United States Citizenship and Immigration Services (USCIS) Enterprise Service Bus (ESB)
for the United States Citizenship and Immigration Services (USCIS) June 22, 2007 Contact Point Harry Hopkins Office of Information Technology (OIT) (202) 272-8953 Reviewing Official Hugo Teufel III Chief
FHFA. Privacy Impact Assessment Template FM: SYSTEMS (SYSTEM NAME)
FHFA Privacy Impact Assessment Template FM: SYSTEMS (SYSTEM NAME) This template is used when the Chief Privacy Officer determines that the system contains Personally Identifiable Information and a more
8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes
NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
Integrated Financial Management Information System (IFMIS) Merger
for the Information System (IFMIS) Merger DHS/FEMA/PIA-020 December 16, 2011 Contact Point Michael Thaggard Office of Chief Financial Officer (202) 212-8192 Reviewing Official Mary Ellen Callahan Chief
U.S. Securities and Exchange Commission. Mailroom Package Tracking System (MPTS) PRIVACY IMPACT ASSESSMENT (PIA)
U.S. Securities and Exchange Commission (MPTS) PRIVACY IMPACT ASSESSMENT (PIA) February 24, 2013 General Information 1. Name of Project or System. (MPTS) 2. Describe the project and its purpose or function
8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes
NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
Privacy Impact Assessment. Name of Project: Presidential Libraries Museum Collections Management Database - TMS S (The Museum System)
Privacy Impact Assessment Name of Project: Presidential Libraries Museum Collections Management Database - TMS S (The Museum System) Project's Unique ID : MCMD-TM S Legal Authority(ies): 44 U.S.C 2108.
8. Does this system collect, display, store, maintain or disseminate Personally Identifiable Information (PII)? Yes
NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
Taxpayers/Public/Tax Systems Employees/Personnel/HR Systems Other Source: State agencies provide payment information via EFTPS and SDT
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS Website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy
InCompass, Privacy Impact Assessment (PIA) 8/3/2011
DEPARTMENT OF TREASURY Washington, D.C. 20220 InCompass, Privacy Impact Assessment (PIA) 8/3/2011 A. Identification System Name: InCompass Former System Name: Integrated Talent Management (ITM) OMB Unique
Federal Trade Commission Privacy Impact Assessment for:
Federal Trade Commission Privacy Impact Assessment for: DCBE Websites and Blogs Consumer.ftc.gov, Consumidor.ftc.gov, OnGuardOnline, AlertaenLinea, Consumer.gov, Consumidor.gov and the BCP Business Center
U.S. Nuclear Regulatory Commission Privacy Impact Assessment
ADAMS ML052920123 Yes No Make Public After President Submits Budget (For OIS Use Only) U.S. Nuclear Regulatory Commission Privacy Impact Assessment Instructions: Section A, B, C, and D must be completed
A. SYSTEM DESCRIPTION
NOTE: The following reflects the information entered in the PIAMS website. A. SYSTEM DESCRIPTION Authority: Office of Management Budget (OMB) Memorandum (M) 03-22, OMB Guidance for Implementing the Privacy