U.S. flag

An official website of the United States government

Government Website

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Safely connect using HTTPS

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

  1. Home
  2. Publications Library
  3. Privacy Impact Assessments (PIA) Collection

Privacy Impact Assessments (PIA) Collection

The Privacy Impact Assessment (PIA) is a decision tool to identify and mitigate privacy risks that notifies the public what Personally Identifiable Information (PII) DHS is collecting, why the PII is being collected and how the PII will be collected, used, accessed, shared, safeguarded and stored.

Use the “Filter” field to search PIAs by keyword and select a “Topic” to narrow results.

Return to the Privacy Impact Assessments page.

  • DHS/ALL/PIA-032 DHS Information Sharing Environment Suspicious Activity Reporting Initiative

    This Privacy Impact Assessment (PIA) updates a previously published PIA describing the Nationwide Suspicious Activity Reporting Initiative, a key aspect of the federal Information Sharing Environment (ISE) created by Congress in the Intelligence Reform and Terrorism Prevention Act of 2004. The NSI supports intergovernmental sharing of “official documentation of observed behavior reasonably indicative of pre-operational planning related to terrorism or other criminal activity [related to terrorism],” known as Suspicious Activity Reports (SAR). As a result of the NSI’s successes, the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) will continue the effort and transition the management to a jointly managed program. DHS is conducting this PIA update because SARs contain personally identifiable information (PII).

  • DHS/ICE/PIA-042 Forensic Analysis of Electronic Media

    Digital evidence examination is the forensic acquisition and analysis of computer hard drives, thumb drives, cell phones, and any other data storage device obtained in the course of an investigation. The Office of Homeland Security Investigations within Immigration and Customs Enforcement (ICE) uses a variety of electronic tools to conduct criminal investigations that encompass analyzing digital media. ICE uses these tools and technologies to analyze the volume of stored digital evidence data given its rate of growth and ubiquity. ICE is conducting this Privacy Impact Assessment (PIA) because these electronic tools may be used to collect and maintain personally identifiable information (PII).

  • DHS-ICE-PIA-041 National Intellectual Property Rights Coordination Center

    DHS-ICE-PIA-041 National Intellectual Property Rights Coordination Center

  • DHS/USCG/PIA-006 Vessel Requirements for Notices of Arrival and Departure (NOAD) and Automatic Identification System (AIS)

    Vessel Requirements for the Notice of Arrival and Departure (NOAD) and Automatic Identification System (AIS) Rulemaking, April 28, 2015. The United States Coast Guard (USCG) is updating this Privacy Impact Assessment (PIA) following a recently published final rule after considering comments received on the notice of proposed rulemaking (NPRM) published December 16, 2008. The USCG prepared this PIA update because the Notice of Arrival (NOA) portion of this final rule requires an expansion of an existing collection of personally identifiable information (PII).

  • DHS/ICE/PIA-039 Acquisition and Use of License Plate Reader Data from a Commercial Service

    The Department of Homeland Security, U.S. Immigration and Customs Enforcement (ICE) has procured query-based access to a vendor-owned commercial License Plate Reader (LPR) data service that stores recorded vehicle license plate data from cameras equipped with license plate reader technology. ICE uses LPR data from this service in support of its criminal and administrative law enforcement missions. In March 2015, ICE published a Privacy Impact Assessment (PIA) announcing ICE’s intention to procure access to a commercial LPR database and describing the controls ICE would put in place to ensure the agency complies with privacy and civil liberties requirements when using the service. This PIA Update explains ICE’s operational use of the service it has procured and describes the privacy and civil liberties protections that have been implemented by the agency and the vendor.

  • DHS/FEMA/PIA-013 Grant Management Programs

    The Federal Emergency Management Agency (FEMA) administers and manages grants to enhance the level of preparedness of its customers and stakeholders, and the public’s ability to prevent, mitigate, respond to and recover from all hazards. FEMA determines awards for both disaster and non-disaster grants, and manages the grant lifecycle for all grantees, as well as internal and external partners, and ensures critical and measurable results. FEMA updated and republished this Privacy Impact Assessment (PIA) because FEMA collects personally identifiable information (PII) from grant applicants as part of the grant application process.

  • DHS/CISA/PIA-020 State, Local, Tribal and Private Sector Clearance Program for Critical Infrastructure

    The Department of Homeland Security (DHS), Cybersecurity and Infrastructure Security Agency (CISA) is updating the Private Sector Clearance Program for Critical Infrastructure’s (PSCP) Privacy Impact Assessment (PIA) to account for the organizational changes that have taken place in the administration of the program at CISA. This update outlines changes to the program clearance process and to DHS Form 9014, State, Local, Tribal and Private Sector Clearance Request Form, since the publication of the Privacy Impact Assessment Update in April 2018.

  • DHS-ALL-049 Performance and Learning Management System (PALMS)

    DHS-ALL-049 Performance and Learning Management System (PALMS)

  • DHS/USCIS/PIA-023 Enterprise Citizenship and Immigrations Services Centralized Operational Repository (eCISCOR)

    U.S. Citizenship and Immigration Services (USCIS) uses the Enterprise Citizenship and Immigrations Services Centralized Operation Repository (eCISCOR) to streamline access to relevant information necessary to administrate the Immigration and Nationality Act. eCISCOR is a repository that consolidates information collected during the adjudication of applications and petitions for immigration benefits. USCIS updated and reissued this privacy impact assessment (PIA) to clarify eCISCOR’s functionalities, and to discuss all source systems and interconnected systems to eCISCOR. The Department of Homeland Security (DHS), U.S. Citizenship and Immigration Services (USCIS) uses the Enterprise Citizenship and Immigration Services Centralized Operational Repository (eCISCOR) to streamline access to relevant data necessary to administer the Immigration and Nationality Act and to accomplish mission support-related tasks. Historically, eCISCOR has been used as a data repository that primarily consolidates data collected during the adjudication of applications and petitions for immigration benefits. In 2015, USCIS issued DHS/USCIS/PIA-023(a) eCISCOR to update eCISCOR’s functionalities and add appendices to include all source and interconnected systems.

  • DHS-FEMA-PIA-034(a) Electronic Fingerprint System

    DHS-FEMA-PIA-034(a) Electronic Fingerprint System