The Department of Homeland Security’s Privacy Office has released its “Third Quarter Fiscal Year 2013 Report to Congress” (pdf). The report covers activities from Sept. 1, 2012 to Nov. 30, 2012. The quarterly report is required under Section 803 of the “Implementing Recommendations of the 9/11 Commission Act of 2007 (9/11 Commission Act).” The report includes:
- Number and types of privacy reviews of Department actions undertaken;
- Type of advice provided and the response given to such advice; and
- Number and nature of privacy complaints received by DHS for alleged violations along with a summary of the disposition of such complaints.
In addition, we include information and data on privacy training and awareness activities conducted by the Department to help prevent privacy incidents.
The privacy reviews, which number 208 for the quarter, include:
- Privacy Threshold Analyses, the DHS foundational mechanism for reviewing IT systems, programs, and other activities for privacy protection issues to determine whether a more comprehensive analysis is necessary through the Privacy Impact Assessment process;
- Privacy Impact Assessments, as required under the E-Government Act of 2002, the Homeland Security Act of 2002, and DHS policy;
- System of Records Notices, as required under the Privacy Act of 1974, (Privacy Act) and any associated Final Rules for Privacy Act exemptions;
- Privacy Act Statements, as required under the Privacy Act to provide notice to individuals at the point of collection;
- Computer Matching Agreements, as required under the Privacy Act;
- Data Mining Reports, as required by Section 804 of the 9/11 Commission Act of 2007;
Among the Privacy Impact Assessments are: “The Office of Operations Coordination and Planning (OPS), National Operations Center (NOC), leads the Publicly Available Social Media Monitoring and Situational Awareness Initiative to assist DHS and its components involved in fulfilling OPS statutory responsibility to provide situational awareness and establish a common operating picture for the Federal Government, and for state, local, and tribal governments, as appropriate”: EINSTEIN 3 Accelerated, “Under the direction of DHS, ISPs will administer intrusion prevention and threat-based decision- making on network traffic entering and leaving participating federal civilian Executive Branch agency networks”; and “The Centralized Area Video Surveillance System (CAVSS), a system of cameras and separate microphones recording video and audio, respectively, furthers CBP’s mission by collecting and maintaining video images and audio recordings of persons involved in any incidents or disturbances while seeking entry or admission into the United States at a designated port of entry, including secondary inspections.”