Capabilities Compliance Services

Capabilities Compliance Services

Privacy Impact Assessment

Any organization using systems that collect electronic information on individuals must ensure compliance with the Privacy Act. TDI can help you conduct a Privacy Impact Assessment and develop a remediation plan to address any potential weaknesses.

The E-Government Act of 2002 recognized that advances in computer technologies, digitized networks, and Internet access have had a tremendous impact on the protection of personal data contained in electronic records and IT systems. TDI can help you address this concern by conducting a Privacy Impact Assessment (PIA) in line with United States Office of Management and Budget (OMB) Memorandum 03-22: OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002. In doing so, TDI can examine your organizationís information systems to identify privacy data that requires special handling. Upon completion of this task, you will be able to answer: what information is being collected (e.g., nature and source); why the information is being collected (e.g., to determine eligibility); the intended use of the information (e.g., to verify existing data); with whom the information will be shared (e.g., another agency for a specified programmatic purpose); what opportunities individuals have to decline to provide information (i.e., where providing information is voluntary) or to consent to particular uses of the information (other than required or authorized uses), and how individuals can grant consent; how the information will be secured (e.g., administrative and technological controls); and whether a system of records is being created under the Privacy Act, 5 U.S.C. 552a. Finally, TDI has extensive experience in guiding organizations on synchronizing PIA events with established Certification & Accreditation timelines in order to streamline your overall security compliance support operations.