Privacy Impact Assessments (PIA) Collection
The Privacy Impact Assessment (PIA) is a decision tool to identify and mitigate privacy risks that notifies the public what Personally Identifiable Information (PII) DHS is collecting, why the PII is being collected and how the PII will be collected, used, accessed, shared, safeguarded and stored.
Use the “Filter” field to search PIAs by keyword and select a “Topic” to narrow results.
-
DHS-CBP-PIA-007 Electronic System for Travel Authorization
The Electronic System for Travel Authorization (ESTA) is an application and screening system used to determine whether citizens and nationals from countries participating in the Visa Waiver Program (VWP) are eligible to travel to the United States. The U.S. Department of Homeland Security (DHS), U.S. Customs and Border Protection (CBP) is publishing this Privacy Impact Assessment (PIA) update for ESTA to provide notice and assess the privacy risks associated with recent enhancements to ESTA, including the launch of a new mobile application. The ESTA program and information collection has undergone several enhancements since the previous Privacy Impact Assessment published on September 1, 2016.
-
DHS-ALL-PIA-045 Loaned Executive Program
DHS’s Private Sector Office (PSO) manages the Department-wide Loaned Executive Program (LEP). The LEP is a special unpaid opportunity for executive-level private sector, academia, and cyber security experts to share their expertise with DHS. Through the LEP, DHS seeks innovative solutions to its homeland security challenges. DHS conducted this Privacy Impact Assessment because the LEP collects Personally Identifiable Information from members of the public.
-
DHS-CBP-PIA-022 Border Surveillance Systems (BSS)
The Department of Homeland Security (DHS) U.S. Customs and Border Protection (CBP) deploys Border Surveillance Systems (BSS) to provide comprehensive situational awareness along the United States border for border security and national security purposes, and to assist in detecting, identifying, apprehending, and removing individuals illegally entering the United States at and between ports of entry or otherwise violating U.S. law. BSS includes commercially available technologies such as fixed and mobile video surveillance systems, range finders, thermal imaging devices, radar, ground sensors, and radio frequency sensors.
-
DHS-FEMA-PIA – 039 Federal Insurance and Mitigation Administration Risk Insurance Division Underwriting and Claims Operation Review Tool
The Federal Emergency Management Agency (FEMA)’s Federal Insurance and Mitigation Administration (FIMA) Risk Insurance Division (RID) owns and operates the Underwriting and Claims Operation Review Tool (“U-CORT” or “Tool”). U-CORT is a modernization of previously manual oversight mechanisms to improve the management of the National Flood Insurance Program (NFIP) underwriting and claim loss adjustment process. This Privacy Impact Assessment (PIA) documents how U-CORT collects, uses, disseminates, and maintains Personally Identifiable Information (PII) of NFIP policy holders associated with underwriting and claim operation reviews.
-
DHS/ALL/PIA-014 Personal Identity Verification/Identity Management System (PIV/IDMS)
The Department of Homeland Security (DHS) is updating the Personal Identity Verification (PIV) Privacy Impact Assessment (PIA) Update, issued on June 18, 2009, to reflect changes in Departmental requirements and enhanced interoperability with US-VISIT Automated Biometric Identification System (IDENT) and the Federal Bureau of Investigation (FBI) Criminal Justice Information Services (CJIS) Integrated Automated Fingerprint Identification System (IAFIS), DHS Component Physical Access Control Systems (PACS), DHS Component Active Directories, as well as issuance of PIV compatible credentials to visitors to DHS.
-
DHS-FEMA-PIA-015 Quality Assurance Recording System (QARS)
The Federal Emergency Management Agency (FEMA)’s Office of Response and Recovery (ORR), Recovery Directorate, National Processing Service Center (NPSC) Division operates the Quality Assurance Recording System (QARS). QARS captures telephone and computer screen recordings for the purpose of evaluating employee and contractor performance. These evaluations are designed to improve customer service to disaster assistance applicants requesting assistance under the Robert T Stafford Disaster Relief and Emergency Assistance Act. FEMA conducted this Privacy Impact Assessment (PIA) because QARS captures Personally Identifiable Information (PII) about Individual Assistance and Public Assistance applicants, as well as FEMA employees and contractors.
-
DHS-USSS-PIA-001 - Customer Proprietary Network Information (CPNI)
The US Secret Service (USSS) and the Federal Bureau of Investigation (FBI) co-sponsor and manage the Customer Proprietary Network Information (CPNI) reporting website, which is a tool for telecommunications carriers to report a breach of its customer proprietary network information to law enforcement. The USSS and the FBI conducted this Privacy Impact Assessment (PIA) because the CPNI reporting website contains personally identifiable information (PII).
-
DHS-TSA-PIA - 045 Security Threat Assessment for Conditional Access to Sensitive Security Information
The Transportation Security Administration (TSA) occasionally discloses Sensitive Security Information (SSI) to individuals so that they can assist with the design, implementation, or review of TSA security programs, techniques, or technology, or when needed to understand TSA functions. TSA may conclude that the individuals must undergo a security threat assessment (STA) as a condition of being granted access to the SSI. This Privacy Impact Assessment (PIA) was conducted because TSA will collect, maintain, and disseminate information in identifiable form on members of the public in order to conduct the STA.
-
DHS-TSA-PIA-026 Alien Flight Student Program
The Transportation Security Administration (TSA) conducts Security Threat Assessments (STA) on individuals who are not U.S. citizens or nationals and other individuals designated by TSA seeking flight instruction or recurrent training from Federal Aviation Administration (FAA)-certified flight training providers. TSA previously conducted a Privacy Impact Assessment (PIA) and PIA Updates for the Alien Flight Student Program (AFSP). TSA conducted this PIA because several updates to AFSP have been made, including: 1) TSA performs recurrent vetting of covered individuals; 2) The Defense Attaché collects biographic information and creates a record in AFSP about foreign military pilots endorsed by the Department of Defense (DoD) for flight training in the United States; and 3) TSA has submitted an updated National Archives and Records Administration (NARA) schedule to change records retention to 80 years in order to permit TSA to comply with a requirement that it re-use fingerprints for recurrent flight training during the life of the covered individual. This PIA should be read as a stand-alone document. Upon publication of this PIA, the previous PIA and PIA Updates for AFSP will be retired.
-
DHS-USCIS-PIA-054 National Customer Service Center
USCIS operates the National Customer Service Center (NCSC) to provide nationwide telephonic assistance to customers calling with immigration service and benefit inquiries. The NCSC uses a wide variety of systems, applications, and tools as part of its call center infrastructure to ensure calls are queued and processed as quickly as possible. This Privacy Impact Assessment (PIA) discusses the USCIS systems used to operate NCSC, and evaluates the privacy risks and mitigation associated with the collection, use, and maintenance of Personally Identifiable Information (PII).