Privacy Documents for the Transportation Security Administration (TSA)

DHS/TSA/PIA-001 - Vetting and Credentialing Screening Gateway System (CSG)

DHS/TSA/PIA-001 Vetting and Credentialing Screening Gateway System - January 14, 2005 (PDF, 15 pages - 103 KB) The Consolidated Screening Gateway is the system of hardware, software and communications infrastructure used by the Transportation Security Administration to conduct security threat assessments on various transportation worker and other populations related to transportation.

Associated SORN(s)

• The CSG is an IT infrastructure system and not an agency program, it does not independently collect or maintain personally identifiable information. However, many (if not all) of the TSA programs that use the CSG collect and maintain PII that are subject to the Privacy Act. The data for these programs are part of existing TSA Privacy Act systems of records and each program's PIA identifies which system of records applies to that program's data.

Back To Top

DHS/TSA/PIA-002 - Hazardous Materials Endorsement (HME)

DHS/TSA/PIA-002 Hazardous Materials Endorsement, Amendment - September 16, 2005 (PDF, 14 pages - 188 KB) TSA conducts security threat assessments on individuals applying for, renewing or transferring a Hazardous Materials Endorsement (HME) for a commercial drivers license (CDL).

DHS/TSA/PIA-002(a) Hazardous Materials Endorsement - January 26, 2005 (PDF, 15 pages - 75 KB) 
DHS/TSA/PIA-002(b) Security Threat Assessment for Individuals Holding a Hazardous Materials Endorsement for a Commercial Driver's License Update - June 1, 2004 (PDF, 7 pages - 215 KB)
Initial PIA - April 15, 2004

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-003 - Airspace Waiver and Flight for Certain Aviation Operations (Including DCA)

DHS/TSA/PIA-003 Airspace Waivers and Flight for Certain Aviation Operations (Including DCA), Update - September 20, 2005 (PDF, 10 pages - 219 KB ) For airspace waivers, through aircraft operators, TSA collects and retains personal information that is used to conduct a security threat assessment on the flight crewmembers and passengers who will be onboard the aircraft while it is operating in restricted airspace. The collection of information will differ slightly depending on the type of waiver/authorization requested.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-004 - Visitor Management System (VMS)

DHS/TSA/PIA-004 Visitor Management System (VMS) Update - October 19, 2007 (PDF 15 pages - 186 KB) The Visitor Management System (VMS) utilized by the Office of Security is a system by which computerized visitor logs will be generated and temporary self-expiring paper badges will be issued for all visitors entering the TSA Headquarters Buildings and the Transportation Security Operations Center.

Associated SORN(s):

• All information in the VMS is stored and retrieved exclusively by date. Therefore, the VMS does not create a Privacy Act system of records and does not require a Privacy Act notice.

Back To Top

DHS/TSA/PIA-005 - TSA Office of Transportation Redress

DHS/TSA/PIA-005 TSA Office of Transportation Redress - August 31, 2006 (PDF 20 pages - 397 KB) The TSA Traveler Identity Verification Program was developed as a voluntary program to provide a forum for individuals who believe they have been unfairly or incor rectly delayed, denied boarding, or identified for additional screening at our nation's airports to request redress.

Associated SORN(s):

• DHS/TSA 006, Correspondence and Matters Tracking Records - April 13, 2010 75 FR 18863
• DHS/TSA 011, Transportation Security Intelligence Service Files. April 13, 2010 75 FR 18867

Back To Top

DHS/TSA/PIA-006 - Crew Vetting Program

DHS/TSA/PIA-006 Crew Vetting Program - July 28, 2004 (PDF, 8 pages - 69 KB) TSA conducts security threat assessments on persons authorized to be cockpit and cabin crewmembers on all TSA- regulated passenger and all-cargo flights and non-crewmembers on all-cargo flights. Air carriers and operators are required to provide this information in Master Crew Lists for all crewmembers and non-crewmembers, where appropriate, who potentially will be authorized to be on flights into, out of, or overflying the territorial United States and for all foreign air carrier/operator flights within the territorial United States.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-007 - Airport Access Authorization to Commercial Establishments Beyond the Screening Checkpoint (AAACE)

DHS/TSA/PIA-007 Airport Access Authorization To Commercial Establishments Beyond The Screening Checkpoint (AAACE) Program - November 22, 2006 (PDF, 15 pages - 291 KB) The airport operating authorities seek to establish the Airport Access Authorization To Commercial Establishments Beyond The Screening Checkpoint (AAACE) Program. Under this pilot program, each airport operator may issue an Authorization Form to current registered overnight hotel guests (Registered Guest) at certain hotels physically connected to the airport terminal, who have requested access to commercial establishments beyond the screening checkpoint in the sterile area of the airport if they meet the requirements of the program.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383
• DHS/TSA 011, Transportation Security Intelligence Service Files. April 13, 2010 75 FR 18867

Back To Top

DHS/TSA/PIA-008 - Sensitive Security Information for Use in Litigation

DHS/TSA/PIA-008 Sensitive Security Information for use in Litigation - December 28, 2006 (PDF, 17 pages - 249 KB) TSA will conduct security threat assessments and criminal history record checks on individuals seeking access to Sensitive Security Information (SSI) in a civil proceeding in a Federal court that demonstrates substantial need for relevant SSI in preparation of the party's case may request access to SSI. In order to determine if an individual representing the party may be granted access to SSI for this purpose.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-009 - Claims Management System (CMS)

DHS/TSA/PIA-009 Claims Management System - February 5, 2007 (PDF, 13 Pages - 195 KB) The TSA Claims Management Office (CMO) investigates and adjudicates Federal tort claims filed against TSA. The CMO developed the Claims Management System (CMS) as the primary tool for the CMO to receive, investigate, and adjudicate Federal tort claims against TSA.

Associated SORN(s):

• DHS/TSA 006, Correspondence and Matters Tracking Records - April 13, 2010, 75 FR 18863
• DHS/TSA 009, General Legal Record - August 18, 2003, 68 FR 49496

Back To Top

DHS/TSA/PIA-010 - Universal Commercial Driver’s License Security Threat Assessment (CDL)

DHS/TSA/PIA-010 Universal Commercial Driver's License (CDL) Security Threat Assessment - October 12, 2007 (PDF, 18 pages - 222 KB ) The Transportation Security Administration (TSA) will conduct security threat assessments on Commercial Driver's License (CDL) holders. CDL holders are licensed to operate large commercial motor vehicles that potentially pose threats to transportation security. Congress directed TSA to perform threat assessments on certain CDL holders in the SAFE PORT Act Pub. L. No.109-347, 120 Stat. 1884 (2006). Since the potential threat extends beyond ports, TSA will perform security threat assessments on all CDL holders pursuant to its authority under 49 U.S.C. §114 (f) which gives TSA broad authority "to assess threats to transportation" including vetting persons who could pose a threat to transportation.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-011 - Airmen Certificate Vetting Program

DHS/TSA/PIA-011 Airmen Certificate Vetting Program - October 22, 2007 (PDF 17 pages - 282 KB) TSA will conduct a security threat assessment on all Federal Aviation Administration (FAA) Airmen Certificate applicants and holders to ensure that the individual does not pose or is not suspected of posing a threat to transportation or national security. FAA Airmen Certificate holders include pilots, air crews, and others required to hold a certificate pursuant to FAA regulations.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-012 - Transportation Worker Identification Credential (TWIC) Program

DHS/TSA/PIA-012 Transportation Worker Identification Credential Program Final Rule - October 5, 2007 PDF, 23 pages - 211 KB) TSA published a joint Final Rule with the United States Coast Guard (Coast Guard) to implement a Transportation Worker Identification Credential (TWIC) program to provide a biometric credential that can be used to confirm the identity of workers in the national transportation system. TSA will conduct a security threat assessment and criminal history record check before issuing the credential.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-013 - Federal Flight Deck Officer Program (FFDO)

DHS/TSA/PIA-013 Federal Flight Deck Officer Program - January 10, 2008 (PDF, 17 Pages - 350 KB) Under Federal Flight Deck Officer (FFDO) program, TSA deputizes qualified volunteer pilots and flight crewmembers of passenger and cargo aircraft as law enforcement officers to defend the flight deck of aircraft against acts of criminal violence or air piracy. TSA collects data on pilots to assess the qualification and suitability of prospective and current FFDOs through an online application, and to administer the program.

Associated SORN(s):

• DHS/TSA 001, Transportation Security Enforcement Record System. May 19, 2010 75 FR 28042
• DHS/TSA 013, Federal Flight Deck Officer Record System. April 13, 2010 75 FR 18860
  • Final Rule for Privacy Act Exemptions June 25, 2004, 69 FR 35536
• OPM/GOVT-1, General Personnel Records. June 19, 2006 71 FR 35356

Back To Top

DHS/TSA/PIA-014 - Crew Member Self Defense Training (CMSDT)

DHS/TSA/PIA-014 Crew Member Self Defense Training (CMSDT) Program - February 6, 2008 (PDF, 14 Pages - 326 KB) TSA has developed the Crew Member Self-Defense Training Program (CMSDT), a voluntary self-defense training course, for air carrier crew members. TSA will collect name, last 4 numerals of the Social Security Number (SSN), contact information, employer information including employee identification number, and course location preferences in order to verify a crew member's eligibility for the program and to provide the self-defense training.

Associated SORN(s):

• DHS/TSA 003, Employee Transportation Facilitation Records December 10, 2004 69 FR 71828

Back To Top

DHS/TSA/PIA-015 - Tactical Information Sharing System Update (TISS)

DHS/TSA/PIA-015 Tactical Information Sharing System (TISS) Update - June 1, 2008 (PDF, 15 pages - 202 KB) The Tactical Information Sharing System (TISS) receives, assesses, and distributes intelligence information related to transportation security to Federal Air Marshals (FAMs) and other Federal, State, and local law enforcement. TISS applies to all transportation modes, not just aviation.

Associated SORN(s):

• DHS/TSA 001, Transportation Security Enforcement Record System. May 19, 2010 69 FR 71828

Back To Top

DHS/TSA/PIA-016(a) - Screening of Passengers by Observation Techniques (SPOT) Program

DHS/TSA/PIA-016(a) Screening of Passengers by Observation Techniques (SPOT) Program, August 5, 2011 (PDF, 4 pages – 139 KB). The Screening of Passengers by Observation Techniques (SPOT) program is a behavior observation and analysis program designed to provide the Transportation Security Administration (TSA) Behavior Detection Officers (BDOs) with a means of identifying persons who pose or may pose potential transportation security risks by focusing on behaviors indicative of high levels of stress, fear, or deception. The SPOT program is a derivative of other behavioral analysis programs that have been successfully employed by law enforcement and security personnel both in the U.S. and around the world. This PIA update reflects that TSA will pilot the use of BDOs as part of the security checkpoint process, by incorporating BDO interaction with passengers.

Associated SORN(s):

• DHS/TSA 001, Transportation Security Enforcement Record System May 19, 2010 75 FR 28042

Back To Top

DHS/TSA/PIA-017 - Large Aircraft Security Program (LASP)

TSA has issued a Notice of Proposed Rule Making (NPRM) which would establish a security program called the, Aircraft Security Program (LASP) for the large aircraft operators and will require security threat assessments (STAs) for various categories of individuals Large. This Privacy Impact Assessment (PIA) is being conducted in conjunction with a the NPRM. The PIA will be updated to reflect any changes made prior to publication of the Final Rule. No information will be collected by TSA prior to publication of the Final Rule.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-018(e) - Secure Flight Program Update

DHS/TSA/PIA-018(e) Secure Flight Program Update – April 13, 2012 (PDF, 7 pages - 155 KB) The Transportation Security Administration (TSA) Secure Flight program screens aviation passengers and certain non-travelers before they access airport sterile areas1 or board aircraft.2 This screening compares these individuals to the No Fly and Selectee portions of the consolidated and integrated terrorist watch list, against other watch lists maintained by the federal government when warranted by security considerations,3 and against a list of passengers with redress numbers, i.e., passengers who have been assigned a unique number by the Department of Homeland Security (DHS) Traveler Redress Inquiry Program (TRIP).4 In August 2011, TSA updated the Secure Flight PIA to reflect a number of changes, including:

1. the initiation of a Known Traveler proof of concept starting with individuals enrolled within Customs and Border Protection (CBP) Trusted Traveler programs, and expected to expand to include other populations such as transportation sector workers receiving TSA security threat assessments and members of the military; and

2. the receipt by Secure Flight of aircraft operator frequent flyer status codes for use in conjunction with risk-based security rules using Secure Flight Passenger Data (SFPD).

This PIA update reflects the transition from proof of concept to operational program of the Known Traveler and frequent flyer concepts within a program known as TSA Preü™. In addition to the populations noted above, TSA intends to initiate new pilot programs designed to test the expansion of the Known Traveler program to other populations, such as eligible members of the U.S. Armed Forces and certain active security clearance holders. In addition, TSA will create, maintain, and screen against a watch list of individuals who, based upon their involvement in violations of security regulations of sufficient severity or frequency, are disqualified from receiving expedited screening for some period of time or permanently.

This PIA Update further provides updated information on TSA’s use of CBP’s Automated Targeting System (ATS). Unless otherwise noted, the information provided in previously published PIAs remain in effect. Individuals are encouraged to read all program PIAs to have an understanding of TSA’s privacy assessment of the Secure Flight program.

Associated SORN(s):

• DHS/TSA 001, Transportation Security Enforcement Record System. May 19, 2010 75 FR 28042
• DHS/TSA 011, Transportation Security Intelligence Service Files. April 13, 2010 75 FR 18867
• DHS/TSA 019, Secure Flight Records. November 9, 2007 72 FR 63711

Back To Top

DHS/TSA/PIA-019 - Air Cargo Security Requirements

DHS/TSA/PIA-019 Air Cargo Security Requirements Update - November 12, 2008 (PDF, 8 pages - 294 KB) Pursuant to the Final Rule for Air Cargo Security Requirements, TSA will collect and retain personal information about four sets of individuals for the purposes of conducting a security threat assessment. The first set consists of certain individuals who have, or are applying for, unescorted access to air cargo. The second set consists of each individual who is a sole proprietor, general partner, officer or director of an IAC or an applicant to be an IAC, and certain owners of an IAC or an applicant to be an IAC. The third set consists of known shippers who are individuals. The fourth set consists of individuals who in addition to having unescorted access to cargo have responsibilities for screening cargo under 49 CFR 1544.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-020 - Security Threat Assessment for Airport Badge and Credential Holders (SIDA)

DHS/TSA/PIA-020 Security Threat Assessment for Airport Badge and Credential Holders - June 2, 2008 (PDF, 13 Pages - 204 KB) TSA will conduct security threat assessments on individuals with unescorted access authority to Security Identification Display Areas (SIDA) of airports, workers who perform duties in airport sterile areas, and individuals who are applying for these positions (referred to collectively as SIDA and Sterile Area Workers).

• DHS/TSA/PIA-020(a)  Security Threat Assessment for SIDA and Sterile Area Workers - August 10, 2005 (PDF, 7 pages - 169 KB) 
• DHS/TSA/PIA-020(b)  SIDA and Sterile Area Workers - June 15, 2004 (PDF, 7 pages - 201 KB) 

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-021 - Stand-Off Detection (SPO)

DHS/TSA/PIA-021 Stand-Off Detection (SPO) - December 23, 2008 (PDF, 8 pages - 182 KB) TSA will deploy advanced explosives detection technology using passive millimeter wave (PMMW) screening technologies as part of the agency's efforts to ensure the safety of travelers. The objective is to identify individuals who may seek to detonate explosives in transportation facilities.

Associated SORN(s):

• DHS/TSA 001, Transportation Security Enforcement Record System. May 19, 2010 75 FR 28042

Back To Top

DHS/TSA/PIA-022 - Maryland Three (MD-3) Airports

DHS/TSA/PIA-022 Maryland Three (MD-3) Airports - February 20, 2009 (PDF, 14 pages - 159 KB) TSA conducts security threat assessments and fingerprint-based Criminal History Records Checks (CHRCs) on pilots who operate aircraft and apply for privileges to fly to or from the three General Aviation airports in the Washington, D.C. restricted flight zones (Potomac Airfield, Washington Executive/Hyde Field, and College Park Airport), otherwise known as the Maryland Three (MD-3) program, and for the Airport Security Coordinator (ASC) at a MD-3 airport.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-023 - HR Access Program

DHS/TSA/PIA-023 HR Access Program - July 28, 2009, (PDF, 17 pages - 171 KB) The HRAccess Program streamlines TSA human capital functions utilized to collect, store, and disseminate payroll, benefits, and other workforce-related information for employees and candidates.

Associated SORN(s):

• DHS/TSA-022, National Finance Center Payroll/Personnel System (NFC). July 17, 2006, 71 FR 40530-40532
• DOL/GOVT-1, Office of Workers' Compensation Programs, Federal Employees' Compensation Act File. April 8, 2002, 67 FR 16826-16829
• MSPB/GOVT-1 Appeals and Case Records. November 21, 2002, 67 FR 70254-70256
• OGE/GOVT-1 Executive Branch Public Financial Disclosure Reports and Other Ethics Program Records, January 22, 2003, 68 FR 3099-3101
• OGE/GOVT-2, Confidential Statements of Employment and Financial Interests, January 22, 2003, 68 FR 3101-3103
• OPM/GOVT-1 General Personnel Records. June 19, 2006, 71 FR 35342-35347
• OPM/GOVT-2 Employee Performance File System Records, June 19, 2006, 71 FR 35347-35350
• OPM/GOVT-3 Records of Adverse Actions, Performance Based Reduction in Grade and Removal Actions, and Termination of Probationers, June 19, 2006 71 FR 35350-35351
• OPM/GOVT-5 Recruiting, Examining, and Placement Records, June 19, 2006 71 FR 35351-35354
• OPM/GOVT-6 Personnel Research and Test Validation Records, June 19, 2006 71 FR 35354-35356
• OPM/GOVT-7 Applicant Race, Sex, National Origin, and Disability Records, June 19, 2006 71 FR 35356-35358
• OPM/GOVT-9 Position Classification Appeals, Job Grading Appeals, and Retained Grade or Pay Appeals, June 19, 2006 71 FR 35358-35360
• OPM/GOVT-10 Employee Medical File System Records, June 19, 2006 71 FR 35360-35363
• TREASURY/BPD.002, United States Savings-Type Securities, July 23, 2008 72 FR 42906-42909
• SSA/60-0059 Earnings Recording and Self-Employment Income System, January 11, 2006 71 FR 1819-1823

Back To Top

DHS/TSA/PIA-024 - Credential Authentication Technology/Boarding Pass Scanning System (CAT/BPSS)

DHS/TSA/PIA-024 Credential Authentication Technology/ Boarding Pass Scanning System Update - August 11, 2009 (PDF, 77 pages - 163.1 KB) CAT/BPSS validates the authenticity of individuals' identity credentials (aka Passenger ID) and boarding passes at the TSA security checkpoint and compares the information contained on both documents for consistency. The CAT/BPSS displays machine readable data from an individual's identity credential and boarding pass for confirmation against the human readable portions of those documents to verify that they are legitimate and have not been tampered with. Once confirmed, the displayed data is deleted from the CAT/BPSS.

DHS/TSA/PIA-024  Boarding Pass Scanning System - November 29, 2007 (PDF, 7 Pages - 163KB) 

Associated SORN(s):

• The CAT/BPSS does not does not retain any information once the boarding pass has been scanned.

Back To Top

DHS/TSA/PIA-025 - e-Law Enforcement Officer Logbook Program (e-Logbook)

DHS/TSA/PIA-025 e-Law Enforcement Officer Logbook Program - August 31, 2009 (PDF, 16 pages - 190 KB) The e-Logbook is as an electronic means of logging and confirming the identity of Law Enforcement Officers with a need to Fly Armed (hereinafter LEOFA). LEOFAs must satisfy the requirements set forth in 49 CFR § 1544.219, carriage of accessible weapons, prior to being admitted into an airport's sterile area or on-board a commercial aircraft.

Associated SORN(s):

• DHS/TSA 001, Transportation Security Enforcement Record System. May 19, 2010 75 FR 28042

Back To Top

DHS/TSA/PIA-026 - Alien Flight Student Program (AFS)

DHS/TSA/PIA-026 Alien Flight Student Program - December 4, 2009 (PDF, 5 pages - 173 KB) TSA will collect personal information about certain flight-training candidates to conduct the security threat assessments required by Aviation and Transportation Security Act, and Section 612 of Vision 100 Century of Aviation Reauthorization Act. For pilots seeking recurrent training, the Alien Flight Student Program (AFSP) will verify eligibility for recurrent training. This information will enable TSA to identify individuals who may pose a threat to aviation or national security, or who may be wanted for the commission of a crime in the United States or elsewhere, or are currently in violation of United States immigration laws or regulations.

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-027 - Workplace Violence Prevention Program

DHS/TSA/PIA-027 Workplace Violence Prevention Program - March 30, 2010, (PDF, 11 pages - 156 KB) The Workplace Violence Prevention Program provides: national guidance to TSA program coordinators regarding the prevention of, and response to, incidents of actual or alleged workplace violence; reviews reports of credible threats or actual incidents of workplace violence; provides advice and guidance to program coordinators and management regarding agency action; and coordinates training for program coordinators and TSA employees and contractors.

Associated SORN(s):

• DHS/TSA 023 - Workplace Violence Prevention Program. February 23, 2010, 75 FR 8096

Back To Top

DHS/TSA/PIA-028 - MyTSA Mobile Application (MyTSA)

DHS/TSA/PIA-028 MyTSA Mobile Application July 1, 2010 (PDF, 9 pages - 194 KB) Transportation Security Administration’s (TSA) MyTSA consists of a mobile and an iTunes application that provides the traveling public access to relevant TSA travel information via any mobile phone with internet access. MyTSA enables individuals to access such information as the types of items that may be carried through TSA security checkpoints, basic information regarding TSA checkpoint policy, estimated wait times at TSA checkpoints, and current travel conditions. The MyTSA application does not collect or use personally identifiable information. This Privacy Impact Assessment (PIA) addresses the privacy impact of TSA's use of mobile media for delivering information to the public.

Associated SORN(s):

• Notice of Proposed Rulemaking for Secure Flight (PDF, 16 pages - 43 KB), August 9, 2007.

Back To Top

DHS/TSA/PIA-029 - Operations Center Incident Management System Update (OCIMS)

DHS/TSA/PIA-029 Operations Center Incident Management System (OCIMS) Update July 12, 2010 (PDF, 15 pages - 174 KB) Under the Aviation and Transportation Security Act (ATSA), the Transportation Security Administration (TSA) has “responsibility for security in all modes of transportation.” TSA uses an operations center incident management system called WebEOC to perform incident management, coordination, and situation awareness functions for all modes of transportation. The system will store information that it receives about the following categories of individuals: 1) individuals who violate, or are suspected of violating transportation security laws, regulations, policies or procedures; 2) individuals whose behavior or suspicious activity resulted in referrals by Ticket Document Checkers (TDC) to Behavior Detection Officer (BDO) or Law Enforcement Officer (LEO) interview (primarily at airports); or 3) individuals whose identity must be verified, or checked against federal watch lists. Individuals whose identity must be verified includes both those individuals who fail to show acceptable identification documents to compare to boarding documents and law enforcement officials seeking to fly armed. The system also collects and compiles reports from federal, state, local, tribal, or private sector security officials related to incidents that may pose a threat to transportation or national security. TSA is republishing this PIA to clarify that the TSA Operations Center will record telephonic communications. The PIA previously disclosed in section 1.4 that telephone calls were a source of information but did not explicitly state that telephone calls would be recorded. Daily reports will be provided to executives at TSA and the Department of Homeland Security (DHS) to assist in incident and operational response management.

Associated SORN(s):

• DHS/TSA 001, Transportation Security Enforcement Record System. May 19, 2010 69 FR 71828
• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383
• DHS/TSA 011, Transportation Security Intelligence Service Files. April 13, 2010 75 FR 18867

Back To Top

DHS/TSA/PIA-030 - Access to Sensitive Seucrity Information in Contract Solicitations (SSI)

DHS/TSA/PIA-030 Access to Sensitive Security Information in Contract Solicitations September 9, 2010 (PDF, 12 pages - 210 KB) Transportation Security Administration (TSA) is responsible for the acquisition of services and supplies related to protecting the nation’s transportation system. If determined necessary for the proposal preparation process, TSA may permit offerors to have access to Sensitive Security Information (SSI) necessary to prepare a proposal. SSI is a form of unclassified information that if publicly released would be detrimental to transportation security. The standards governing SSI are promulgated under 49 U.S.C. §114(r) in 49 C.F.R. part 1520. In order to determine if a potential offer or may be granted access to SSI in the pre-contract award acquisition process, TSA will conduct a security threat assessment (STA) of the individuals and company. The STA may include a verification of site facility clearance in the National Industrial Security Program (NISP), contractor suitability determination or other federal background investigation, individual security clearance(s), and if required, a criminal history records check (CHRC) and/or a check against terrorism databases. Because this program entails a new collection of information about members of the public in identifiable form, the E-Government Act of 2002 and the Homeland Security Act of 2002 requires that TSA conduct a Privacy Impact Assessment (PIA).

Associated SORN(s):

• DHS/TSA 002, Transportation Security Threat Assessment System. May 19, 2010 70 FR 33383

Back To Top

DHS/TSA/PIA-031 - Exit Line Breach Control (ELBC)

DHS/TSA/PIA-031 ELBC System: Exit Line Breach Control System December 28, 2010 (PDF, 6 pages – 164 KB) The Transportation Security Administration (TSA) is conducting an assessment of Exit Lane Breach Control (ELBC) systems for use in airports. The assessment will evaluate the ELBC systems’ capability to monitor traffic flow at the exit lanes from the sterile areas of the airport and initiate an automated response if it appears that an individual is entering the sterile area through the exit lane. TSA will make results of the assessment available to airports seeking to implement such systems. This Privacy Impact Assessment (PIA) is being conducted to provide transparency into TSA testing affecting the public and the collection of images as part of the assessment. If TSA decides to implement such systems for its own use, a new PIA will be conducted.

Back To Top

DHS/TSA/PIA-032 - Advanced Imaging Technology (AIT)

DHS/TSA/PIA-032 AIT: Advanced Imaging Technology Update - January 25, 2011 (PDF, 11 pages - 256 KB) The Transportation Security Administration (TSA) is deploying Advanced Imaging Technologies (AIT), including backscatter x-ray and millimeter wave devices, for operational use to detect threat objects carried on persons entering airport sterile areas. AIT creates an image of the full body that highlights objects that are on the body. To mitigate the privacy risk associated with creating an image of the individual's body, TSA isolates the TSA officer (the image operator) viewing the image from the TSA officer interacting with the individual. TSA does not store any personally identifiable information from AIT screening. A PIA on the pilot was published on January 2, 2008, updated on October 17, 2008 and updated again on July 23, 2009 as program developments warranted. TSA plans to test, and implement as appropriate, Automatic Target Recognition software for AIT machines that display anomalies on a generic figure, as opposed to displaying the image of a specific individual's body. Since the technology uses a generic image that provides greater privacy protections for the individual being screened, systems using Automatic Target Recognition will not isolate the operator viewing the image from the individual being screened. Individuals will continue to be given the option of undergoing a physical screening as an alternative to AIT screening.

DHS/TSA/PIA-032(a) Whole Body Imaging Update - July 23, 2009 (PDF, 10 pages - 183 KB)
DHS/TSA/PIA-032(b) Whole Body Imaging - October 17, 2008 (PDF, 10 Pages - 213 KB) 
Initial - January 14, 2008
Whole Body Imaging – January 2, 2008 (PDF, 9 pages – 170 KB)

Associated SORN(s):

• TSA has configured the AIT technologies it is using such that they do not retain the images once the individual has been screened.

Back To Top

DHS/TSA/PIA-033 - TSA Enterprise Search Portal (ESP)

DHS/TSA/PIA-033 Transportation Security Administration Enterprise Search Portal (ESP) - May 5, 2011 (PDF, 12 pages - 200 KB) The Transportation Security Administration (TSA) is implementing a search capability to enable authorized users to search or discover1data held by separate databases within TSA. The search function will be known as the Enterprise Search Portal (ESP). TSA is conducting this Privacy Impact Assessment to assess privacy impacts associated with this capability to search across multiple databases. The systems being searched are covered by other PIAs or are otherwise compliant with the E-Government Act of 2002.

Associated SORN(s):

•  
• Transportation Security Enforcement Record System (TSERS), DHS/TSA 001, May 19, 2010, 75 FR 28042
• Transportation Security Threat Assessment System (TSTAS), DHS/TSA 002, May 19, 2010, 75 FR 28046
• Transportation Security Intelligence Service (TSIS) Operation Files, DHS/TSA 011, April 13, 2010, 75 FR 18867

Back To Top

DHS/TSA/PIA-034 - TSA Enterprise Performance Management Platform (EPMP)

DHS/TSA/PIA-034 Transportation Security Administration Enterprise Performance Management Platform (EPMP) May 10, 2011 (PDF, 15 pages – 200 KB) The Transportation Security Administration (TSA) Enterprise Performance Management Platform (EPMP) is designed to assist in performing security management functions using a wide variety of data associated with security, equipment, and screening processes from TSA’s security activities. EPMP will now maintain personally identifiable information (PII) about members of the public in excess of basic contact information, which requires TSA to conduct a new Privacy Impact Assessment (PIA). This PIA focuses on the portions of EPMP using PII.

Associated SORN(s):

• DHS/TSA 006 AIM: Correspondence and Matters Tracking, April 13, 2010,75 FR 18863
• OPM/GOV'T-1 Office of Personnel Management, General Personnel Records, June 19, 2006, 71 FR 35356
• DHS/TSA 022 National Finance Center Payroll Personnel System, July 17, 2006, 71 FR 40530
• DHS/TSA 001 PMIS: Transportation Security Enforcement Record System (TSERS), May 19, 2010, 75 FR 28042
• DHS/TSA 011 Transportation Security Intelligence Service (TSIS) Operation Files, April 13, 2010, 75 FR 18867

Back To Top

DHS/TSA/PIA-036 - TSA Canine Website System (CWS)

DHS/TSA/PIA-036 Transportation Security Administration Canine Website System (CWS) January 13, 2012 (PDF, 15 pages – 212 KB) Under the Aviation and Transportation Security Act (ATSA), the Transportation Security Administration (TSA) is responsible for security in all modes of transportation.1TSA’s National Explosives Detection Canine Team Program (NEDCTP) prepares dogs and handlers to quickly locate and identify dangerous materials that may present a threat to transportation systems. The NEDCTP operates the Canine Website System (CWS), which is a web-based system designed to assist in coordinating operations. The CWS is the central management database for all NEDCTP records and operations. The CWS collects personally identifiable information (PII) to facilitate training, foster communication, and to perform administrative functions. Because this program entails a new collection of information by TSA about members of the public in an identifiable form, the E-Government Act of 2002 and the Homeland Security Act of 2002 require that the TSA conduct a Privacy Impact Assessment (PIA).

Associated SORN(s):

• DHS/All-003 - Department of Homeland Security General Training Records November 25, 2008, 73 FR 71656
  • Final Rule for Privacy Act Exemptions November 25, 2008, 73 FR 71521
• DHS/ALL-004 - General Information Technology Access Account Records System (GITAARS) September 29, 2009, 74 FR 49882

Back To Top

Retired PIAs

Aircraft and Heliport Operators
Security Threat Assessment for Aircraft and Heliport Operators, August 16, 2004 (PDF, 9 pages - 55 KB) Under the Aviation and Transportation Security Act (ATSA) and authority delegated from the Secretary of Homeland Security, the Assistant Secretary of Homeland Security for Transportation Security Administration (TSA) has "the responsibility for security in all modes of transportation..."

Airport Access Control Pilot Project Airport Access Control Pilot Project, June 18, 2004 (PDF, 7 pages - 122 KB) The purpose of TSA's Airport Access Control Pilot Program is to implement pilot projects at airports to evaluate and demonstrate applications of new and emerging technologies that enhance the performance of access controls to ensure that unauthorized persons cannot gain access to sensitive areas in airports.

Registered Traveler Pilot TSA Registered Traveler, September 1, 2006 (PDF, 27 pages - 409 KB) Pursuant to TSA's authority to operate trusted traveler programs and following two sets of pilot programs, TSA is conducting the next phase of Registered Traveler at approximately 10-20 participating airports to further test and evaluate this type of trusted passenger program. This phase introduces interoperability among participating airports/air carriers and operating with larger populations.

TSA Registered Traveler Pilot (Private Sector Subpilot), September 20, 2005 (PDF, 13 pages - 233 KB) The purpose of this Privacy Impact Assessment (PIA) is to revise the PIA for the Private Sector Known Traveler (PSKT) sub-pilot. The PSKT subpilot revises TSA's role by incorporating a Private Sector Partner (PSP) that will carry out certain responsibilities. The PSKT is designed to have a structure that is very similar to the other pilots in the Registered Traveler (RT) Pilot Program. The difference between PSKT and the other RT pilots centers on the division of responsibilities between TSA and its Private Sector Partner. TSA's role will focus on conducting the initial security threat assessment and periodic reassessments, conducting security threat assessment screening, and oversight. The Private Sector Partner will have responsibility for procurement, marketing and operational functions consistent with TSA guidelines and Federal technology standards for Information Technology and biometric security. The Private Sector Partner collects the KT applicant's pertinent biographic and biometric information and sends it to TSA to conduct security threat assessments including running the applicant's biographical information through Federal databases, such as the Terrorist Screening Data Base (TSDB) and the TSA selectee list, databases containing outstanding wants and warrants, and against other governmental sources. Once TSA completes the initial security threat assessment, the agency will inform the Private Sector Partner whether the KT applicant has been approved or not approved; however, the details of the security threat assessments will be retained by TSA and not shared with the Private Sector Partner or KT applicant. The Private Sector Partner will inform the individual KT applicant whether he or she has or has not been accepted.

Registered Traveler Pilot (Private Sector Subpilot), June 20, 2005 (PDF, 11 pages - 61 KB) Because of the success of the Registered Traveler Pilot Program, TSA is now exploring the feasibility of applying the RT concept to a modified model that uses a Private Sector Partner. A Private Sector Partner may include airport authorities, air carriers, or other entities designated by TSA. To test the proposed model, TSA is launching a sub-pilot program known as the Private Sector Known Traveler (PSKT) in conjunction with the Greater Orlando Aviation Authority (GOAA).

Registered Traveler Pilot, June 24, 2004 (PDF, 9 pages - 176 KB) Under the Registered Traveler Program as envisioned by TSA, qualified travelers will be positively identified via advanced identification technologies to confirm that these travelers are not suspected of posing a threat to aviation security.

U.S. Port Access Threat Assessments
TSA U.S. Port Access Threat Assessments, April 28, 2006 (PDF, 14 pages - 252 KB) TSA has broad authority to assess threats and threat information and to plan and execute such actions as may be appropriate to address threats to transportation. Working in conjunction with the United States Coast Guard and its statutory mandate, TSA will conduct security threat assessments of port workers in order to ensure that individuals who are allowed access to U.S. port facilities do not pose or are not suspected of posing a threat to transportation security.

TSA P&O Ports North America, Inc. Threat Assessments
TSA P&O Ports North America, Inc. Threat Assessments, March 22, 2006 (PDF, 13 pages - 250 KB). The Ports, Customs and Free Zone Corporation (PCFC) recently acquired P&O Ports North America, Inc. (P&O NA). On January 6, 2006, PCFC and P&O NA provided the U.S. Department of Homeland Security (DHS) certain national security assurances in connection with DHS's review of the foregoing acquisition in the Committee on Foreign Investment in the United States (CFIUS), 50 U.S.C. App. 2170. One of those assurances is to make P&O NA books and records available to DHS upon request. DHS has requested information about P&O NA employees in order to undertake security threat assessments on these employees pursuant to the authority of the Transportation Security Administration (TSA) under 49 U.S.C. §114(f) to assess threats and threat information and to plan and execute such actions as may be appropriate to address threats to transportation. P&O NA will provide the name, job title, date of birth, and social security number, as well as alien registration number if applicable, for all of its employees operating in the United States.

Back To Top