The U.S. Department of Homeland Security (DHS), U.S. Customs and Border Protection (CBP), launched a new public-facing mobile application, CBP One™, to provide the public a single portal to a variety of CBP services. CBP One™ will eventually replace and upgrade existing CBP public-facing mobile applications to improve user interaction and services. CBP One™ includes different functionality for travelers, importers, brokers, carriers, and International Organizations under a single consolidated log-in and uses guided questions to help users determine the correct services, forms, or applications needed. CBP is conducting this Privacy Impact Assessment (PIA) to address privacy risks in the deployment and use of the CBP One™ mobile application.
U.S. Customs and Border Protection (CBP) continues to assist the Department of Health and Human Services (HHS), Centers for Disease Control and Prevention (CDC) with its public health response efforts. In December 2020, CBP issued a Privacy Impact Assessment (PIA) documenting CBP efforts to support CDC public health efforts.
The U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) has developed the voluntary CyberSentry program to enhance the cyber resilience of organizations that own or operate critical infrastructure. CyberSentry uses sensors to monitor the Information Technology and Operational Technology networks of a participating Critical Infrastructure (CI) partner for cybersecurity threats. CISA is conducting this Privacy Impact Assessment (PIA) because CyberSentry’s network monitoring capabilities may create the potential for disclosure of personally identifiable information (PII).
Blog post from Privacy Perspectives, a newsletter of the International Association of Privacy Professionals, on January 19, 2021.
This Instruction provides guidance on the case-by-case analysis of the application of Freedom of Information Act (FOIA) exemptions to withhold Department employee personally identifiable informarion.
The U.S. Immigration and Customs Enforcement (ICE) Office of the Chief Information Officer (OCIO) operates the Information Technology Service Management (ITSM) - ServiceNow enterprise solution (ServiceNow). To better support its mission of streamlining the management of time-sensitive service requests, OCIO implemented a software as a service (SaaS) cloud-based tool that can be customized based on the needs of ICE program offices to provide support to ICE personnel (i.e., employees, contractors) and non-ICE personnel who have access to ICE systems for official business. ICE is publishing this Privacy Impact Assessment (PIA) to provide a thorough analysis of the privacy risks associated with ServiceNow’s collection, use, and maintenance of personally identifiable information (PII).
The U.S. Department of Homeland Security (DHS) U.S. Citizenship and Immigration Services (USCIS) uses Pangaea, a suite of customized data-driven applications that provide actionable intelligence for USCIS to make informed operational decisions. The first application that USCIS plans to use is Pangaea Text, a secure web-based system, to assist in safeguarding the integrity of the asylum program by identifying fraud, national security, and public safety concerns. USCIS is issuing this Privacy Impact Assessment (PIA) to discuss the risks and mitigations associated with the use of Pangaea Text.
The U.S. Department of Homeland Security (DHS) has issued discretionary guidance to its Components designed to prevent the spread of infectious disease or illness among its workforce in the event of a declared public health emergency. These processes include workforce accountability tracking, basic health screening of individuals attempting to enter to DHS facilities, laboratory testing of personnel and visitors scheduled to occupy or visit certain DHS facilities, and contact tracing to identify members of the DHS workforce or visitors who might have been exposed while at a DHS worksite. DHS is conducting this Privacy Impact Assessment (PIA) because some of these processes involve the collection and use of personally identifiable information (PII).