• Categories

  • Archives

    « Home

    Congress Daily: NIST privacy board calls for overhaul of privacy regulations

    Congress Daily reports that the National Institute of Standards and Technology’s Information Security and Privacy Advisory Board has sent a letter (pdf) to Peter Orszag, director of the Office of Management and Budget, calling for an overhaul of federal privacy laws and regulations, including the Privacy Act of 1974.

    In the letter, the Board explains:

    Attached to this letter is a Board report that analyzes issues and makes recommendations around updating privacy law and policy in light of technological change. The Privacy Act of 1974 is the basis for much of the legal and policy framework by which the U.S. Government handles personal information. At the same time, vast changes in technology since 1974 have transformed how Federal agencies collect, use, and distribute information in major ways. While the fundamentals of the Act—the principles of fair information practices—remain relevant and current, the letter of the Act and related law and policy may not reflect the realities of current technologies and information systems and do not protect against many important threats to privacy. Moreover, new technologies, not covered by the Act, are generating new questions and concerns; and government use of private-sector databases now allows the collection and use of detailed personal information with little privacy protection.

    The Board’s report notes: “Inattention by policymakers to the underlying problems, and relatively little White House guidance, has meant that privacy policy is left to the individual agencies. There has been a lack of government-wide direction, and only a few privacy leaders in key agencies have been empowered by their internal leadership to fill the policy vacuum.” 

    The recommendations “to create a new framework to protect privacy” are:

    Amendments to the Privacy Act of 1974 and Section 208 of the E‐Government Act of 2002 are needed to:

    • Improve Government privacy notices;
    • Update the definition of System of Records to cover relational and distributed systems based on government use, not holding, of records.
    • Clearly cover commercial data sources under both the Privacy Act and the E‐Government Act.

    Government leadership on privacy must be improved.

    • OMB should hire a full‐time Chief Privacy Officer with resources.
    • Privacy Act Guidance from OMB must be regularly updated.
    • Chief Privacy Officers should be hired at all “CFO agencies.”
    • A Chief Privacy Officers’ Council should be developed.

    Other changes in privacy policy are necessary

    • OMB should update the federal government’s cookie policy.
    • OMB should issue privacy guidance on agency use of location information. 
    • OMB should work with US‐CERT to create interagency information on data loss across the government
    • There should be public reporting on use of Social Security Numbers

    2 Responses to “Congress Daily: NIST privacy board calls for overhaul of privacy regulations”

    1. NIST Announces $120 Million in Competitive Grants | Gaithersburg Local Says:

      […] Privacy Lives » Blog Archive » Congress Daily: NIST privacy board … […]

    2. Dontpayfortwitter Says:

      Please do not consider this spam. This is for a important cause. I am posting this on as many sites as I can. Please tell your friends to come too! I will be putting up a petition soon.

      Not subscriptions, not ANY form of paid accounts, twitter this is WRONG and you will drive away a lot of users. Join this group to protest against Twitter’s proposals of paid accounts. We urge Twitter to advertise on their site rather than charge users to use it.

      Twitter’s servers are already cracking under the strain of the traffic they get. Who would want to pay for something that is slow & goes down all the time. What will they give us, a ‘premium failwhale’?

      Recent news is that b/c of a spammer, twitter is coming out this summer with premium accounts that will cost money. One of the best things about twitter, is that it’s free to tweet! I for one will not pay, join in my group if you won’t either!

    Leave a Reply