Privacy Impact Assessments (PIAs) are required by Section 208 of the E-Government Act for all Federal agencies that develop or procure new information technology involving the collection, maintenance, or dissemination of information in identifiable form. It is also required when substantial changes are made to existing information technology that manages information in identifiable form.
A PIA is an analysis of how information in identifiable form is collected, stored, protected, shared, and managed. The purpose of a PIA is to demonstrate that system owners and developers have incorporated privacy protections throughout the entire life cycle of a system. The Act requires the Army to make PIAs publicly available, except when the Army, in its discretion, determines publication of the PIA would raise security concerns, reveal classified (i.e., national security) information, or sensitive (e.g., potentially damaging to a nation interest, law enforcement effort or competitive business interest contained in the assessment) information.
Please contact Army CIO, Enterprise Services Agency, Army Records Management Directorate via email at usarmy.belvoir.hqda-esa.mbx.rmda-foia-privacy-alert@army.mil. For more information on PIAs, please refer to the following links:
Policy and Instructions
- Department of Justice Overview of the Privacy Act of 1974
- Section 208 of the E-Government Act of 2002
- DoD Instruction 5400.11, DoD Privacy and Civil Liberties Program
- DoD Instruction 5400.16, DoD Privacy Impact Assessment (PIA) Guidance
- Army Regulation 25-22, The Army Privacy and Civil Liberties Program
- Army Regulation 25-1, Army Information Technology
- Department of the Army Pamphlet 25-1-1, Army Information Technology Implementation Instructions
- Department of Defense Memorandum, Subject: Requirement to Update New Privacy-Related System Data
Social Sharing