The U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) has developed the voluntary CyberSentry program to enhance the cyber resilience of organizations that own or operate critical infrastructure. CyberSentry uses sensors to monitor the Information Technology and Operational Technology networks of a participating Critical Infrastructure (CI) partner for cybersecurity threats. CISA is conducting this Privacy Impact Assessment (PIA) because CyberSentry’s network monitoring capabilities may create the potential for disclosure of personally identifiable information (PII).

This Instruction provides guidance on the case-by-case analysis of the application of Freedom of Information Act (FOIA) exemptions to withhold Department employee personally identifiable informarion.

The U.S. Immigration and Customs Enforcement (ICE) Office of the Chief Information Officer (OCIO) operates the Information Technology Service Management (ITSM) - ServiceNow enterprise solution (ServiceNow). To better support its mission of streamlining the management of time-sensitive service requests, OCIO implemented a software as a service (SaaS) cloud-based tool that can be customized based on the needs of ICE program offices to provide support to ICE personnel (i.e., employees, contractors) and non-ICE personnel who have access to ICE systems for official business. ICE is publishing this Privacy Impact Assessment (PIA) to provide a thorough analysis of the privacy risks associated with ServiceNow’s collection, use, and maintenance of personally identifiable information (PII).

The U.S. Department of Homeland Security (DHS) has issued discretionary guidance to its Components designed to prevent the spread of infectious disease or illness among its workforce in the event of a declared public health emergency. These processes include workforce accountability tracking, basic health screening of individuals attempting to enter to DHS facilities, laboratory testing of personnel and visitors scheduled to occupy or visit certain DHS facilities, and contact tracing to identify members of the DHS workforce or visitors who might have been exposed while at a DHS worksite. DHS is conducting this Privacy Impact Assessment (PIA) because some of these processes involve the collection and use of personally identifiable information (PII).

U.S. Customs and Border Protection (CBP) assists the Department of Health and Human Services (HHS), Centers for Disease Control and Prevention (CDC) with its public health response efforts.CBP is publishing this Privacy Impact Assessment (PIA) to discuss CBP’s efforts to assist CDC by providing public health emergency response-related personally identifiable information (PII) to CDC.

The Cybersecurity and Infrastructure Security Agency (CISA) Infrastructure Security Division (ISD) Chemical Security Subdivision, hereafter referred to as Chemical Security, receives notification of security incidents at high-risk chemical facilities. This Privacy Impact Assessment (PIA) describes the incident and suspicious activity reporting actions previously performed by CISA’s legacy National Infrastructure Coordinating Center (NICC) and now performed by Chemical Security.

U.S. Customs and Border Protection (CBP) is tasked with safeguarding America’s borders while enhancing the nation’s global economic competitiveness by enabling legitimate trade and travel. As part of this mission, CBP conducts inspections of travelers and their belongings at the border. CBP is conducting this Privacy Impact Assessment (PIA) on the Unified Secondary module because CBP collects, maintains, and disseminates personally identifiable information throughout the secondary inspection process.

The Law Enforcement Officers Safety Act of 2004 (LEOSA) exempts “qualified law enforcement officers” and “qualified retired law enforcement officers” from most state and local laws prohibiting the carriage of concealed firearms. The U.S. Department of Homeland Security (DHS) and its law enforcement Components have established procedures with respect to qualified retiring, retired, separating, and separated law enforcement officers (LEO) and the application of the relevant provisions of LEOSA. This Privacy Impact Assessment (PIA) documents how DHS collects, uses, and maintains personally identifiable information (PII) of LEOs who apply to carry concealed firearms pursuant to LEOSA.

The U.S. Department of Homeland Security (DHS) U.S. Citizenship and Immigration Services (USCIS) developed ATLAS (not an acronym) to automate, streamline, and support accurate exchange of data among USCIS, DHS, and non-DHS systems used to support biometric and biographic-based screening and vetting of immigration requests. ATLAS is used as both an automated check service platform and rule-based screening platform for USCIS. This Privacy Impact Assessment (PIA) evaluates the privacy risks and mitigations associated with ATLAS.

The U.S. Department of Homeland Security (DHS) U.S. Customs and Border Protection (CBP) Web Emergency Operations Center (WebEOC) is CBP’s primary emergency notification, event tracking, and incident management system. CBP uses WebEOC for a variety of purposes across the CBP enterprise, including incident management, event tracking, workforce emergency notifications, facility and asset management during disasters, and incident simulations and exercise.