Privacy Impact Assessments (PIA) Collection
The Privacy Impact Assessment (PIA) is a decision tool to identify and mitigate privacy risks that notifies the public what Personally Identifiable Information (PII) DHS is collecting, why the PII is being collected and how the PII will be collected, used, accessed, shared, safeguarded and stored.
Use the “Filter” field to search PIAs by keyword and select a “Topic” to narrow results.
-
DHS/ICE/PIA-039 Acquisition and Use of License Plate Reader Data from a Commercial Service
The Department of Homeland Security, U.S. Immigration and Customs Enforcement (ICE) has procured query-based access to a vendor-owned commercial License Plate Reader (LPR) data service that stores recorded vehicle license plate data from cameras equipped with license plate reader technology. ICE uses LPR data from this service in support of its criminal and administrative law enforcement missions. In March 2015, ICE published a Privacy Impact Assessment (PIA) announcing ICE’s intention to procure access to a commercial LPR database and describing the controls ICE would put in place to ensure the agency complies with privacy and civil liberties requirements when using the service. This PIA Update explains ICE’s operational use of the service it has procured and describes the privacy and civil liberties protections that have been implemented by the agency and the vendor.
-
DHS/FEMA/PIA-013 Grant Management Programs
The Federal Emergency Management Agency (FEMA) administers and manages grants to enhance the level of preparedness of its customers and stakeholders, and the public’s ability to prevent, mitigate, respond to and recover from all hazards. FEMA determines awards for both disaster and non-disaster grants, and manages the grant lifecycle for all grantees, as well as internal and external partners, and ensures critical and measurable results. FEMA updated and republished this Privacy Impact Assessment (PIA) because FEMA collects personally identifiable information (PII) from grant applicants as part of the grant application process.
-
DHS/CISA/PIA-020 State, Local, Tribal and Private Sector Clearance Program for Critical Infrastructure
The Department of Homeland Security (DHS), Cybersecurity and Infrastructure Security Agency (CISA) is updating the Private Sector Clearance Program for Critical Infrastructure’s (PSCP) Privacy Impact Assessment (PIA) to account for the organizational changes that have taken place in the administration of the program at CISA. This update outlines changes to the program clearance process and to DHS Form 9014, State, Local, Tribal and Private Sector Clearance Request Form, since the publication of the Privacy Impact Assessment Update in April 2018.
-
DHS-ALL-049 Performance and Learning Management System (PALMS)
DHS-ALL-049 Performance and Learning Management System (PALMS)
-
DHS/USCIS/PIA-023 Enterprise Citizenship and Immigrations Services Centralized Operational Repository (eCISCOR)
U.S. Citizenship and Immigration Services (USCIS) uses the Enterprise Citizenship and Immigrations Services Centralized Operation Repository (eCISCOR) to streamline access to relevant information necessary to administrate the Immigration and Nationality Act. eCISCOR is a repository that consolidates information collected during the adjudication of applications and petitions for immigration benefits. USCIS updated and reissued this privacy impact assessment (PIA) to clarify eCISCOR’s functionalities, and to discuss all source systems and interconnected systems to eCISCOR. The Department of Homeland Security (DHS), U.S. Citizenship and Immigration Services (USCIS) uses the Enterprise Citizenship and Immigration Services Centralized Operational Repository (eCISCOR) to streamline access to relevant data necessary to administer the Immigration and Nationality Act and to accomplish mission support-related tasks. Historically, eCISCOR has been used as a data repository that primarily consolidates data collected during the adjudication of applications and petitions for immigration benefits. In 2015, USCIS issued DHS/USCIS/PIA-023(a) eCISCOR to update eCISCOR’s functionalities and add appendices to include all source and interconnected systems.
-
-
Privacy Compliance Review for the Analytical Framework for Intelligence
The DHS Privacy Office and CBP issued a Privacy Impact Assessment (PIA) and System of Records Notice (SORN) for AFI in 2012. Due to the sensitive nature of the AFI system, including its search and aggregation capabilities, AFI was developed in coordination with the DHS Privacy Office to minimize privacy risks. These privacy risks are identified and discussed in the 2012 AFI PIA. The DHS Privacy Office also required that AFI undergo a Privacy Compliance Review (PCR) within 12 months of the system’s operational deployment. The objective of this PCR is to assess compliance with the existing compliance documentation published by AFI and ensure the privacy protections in the PIA are followed. This is the first PCR on the AFI system. Between August 2013 and May 2014, the DHS Privacy Office Oversight Team assessed these privacy protections.
-
DHS/USCIS/PIA-013 Fraud Detection and National Security Data System (FDNS-DS)
U.S. Citizenship and Immigration Services (USCIS) created the Fraud Detection and National Security Directorate (FDNS) to strengthen the integrity of the nation’s immigration system, and to ensure that immigration benefits are not granted to individuals that may pose a threat to national security and/or public safety. In addition, FDNS is responsible for detecting, deterring, and combating immigration benefit fraud. USCIS is updating and reissuing this Privacy Impact Assessment (PIA), originally published on July 30, 2012 as DHS/USCIS/PIA-013(a), to include FDNS’s sharing with law enforcement agencies, and include the DHS/USCIS/ICE/CBP-001-Alien File, Index and National File Tracking System of Records, published November 21, 3013 at 78 FR 69864 as coverage for initiatives under this PIA.
-
DHS-ALL-PIA-048 Foreign Access Management System
The Department of Homeland Security (DHS), Under Secretary for Management (USM), Office of the Chief Security Officer (OCSO), Center for International Safety and Security (CISS) manages the Foreign Access Management (FAM) program that vets foreign nationals,foreign entities, and certain United States Persons (USPER) that seek access to DHS personnel, information, facilities, programs, or systems. This Privacy Impact Assessment (PIA) update reflects the end of the Foreign Access Management Enterprise (FAME) Pilot program and the end of the agreement between OCSO/CISS and the Office of the Director of National Intelligence (ODNI) National Counterintelligence and Security Center (NCSC).
-
DHS-ICE-PIA-040 FALCON-Roadrunner
The U.S. Immigration and Customs Enforcement (ICE) Office of Homeland Security Investigations (HSI) has deployed a new information system called FALCON-Roadrunner, which is a module of the larger HSI FALCON environment. This system generates investigative leads and conducts trend analysis to identify illicit procurement networks, terrorist groups, and hostile nations attempting to illegally obtain U.S. military products; sensitive dual-use technology; weapons of mass destruction (WMD); or chemical, biological, radiological, and nuclear materials. FALCON-Roadrunner gives HSI investigators and analysts the ability to perform research, and generate leads for investigations of export violations within the jurisdiction of HSI. FALCON-Roadrunner analyzes trade, law enforcement, financial, and screening data across large, disparate datasets to identify statistically anomalous trade transactions that may warrant investigation of export violations. This Privacy Impact Assessment (PIA) was necessary because FALCON-Roadrunner accesses and stores Personally Identifiable Information (PII) retrieved from data systems owned by DHS and other government agencies, as well as commercially and publicly available data.