Contact Western Hemisphere Institute for Security Cooperation (WHINSEC) for information about privacy and privacy-related requirements to include Privacy Act system of record notices; DD Form 2930, Privacy Act Assessments; Office of Management and Budget control numbers required by the Paperwork Reduction Act of 1995; Privacy Act statements, social security number justification/elimination plans, and more.
32 CFR Part 505
Army Regulation 25-22
Records Management and Declassification Agency Privacy
Army G-6/CIO Privacy Impact Assessment (.pdf file)
Leader’s Guide to Protecting Personally Identifiable Information (.pdf file)
System Owner’s Guide to Accreditation and Data Protection (.pdf file)
DOD ID Number and PII Policy
Report possible and confirmed breaches of PII IAW TRADOC Regulation 1-8.
Personal information. Information about an individual that identifies, links, relates, or is unique to, or describes him or her, for example, a social security number (SSN); age; military rank; civilian grade; marital status; race; salary; home/office phone numbers; other demographic, biometric, personnel; medical; and financial information, etc. Such information is also known as PII (that is, information which can be used to distinguish or trace and individual’s identify such their name, SSN, date and place of birth, mother’s maiden name, and biometric records including any other personal information which is linked or linkable to a specified individual). This information can be in hard copy (paper copy files) or electronic format, stored on personal computers, laptops, and personal electronic devices such as blackberries and found within databases. This includes but is not limited to, education records, financial transactions, medical files, criminal records, or employment history.
PII breach. A loss of control, compromise, unauthorized disclosure, unauthorized acquisition, unauthorized access, or any similar term referring to situations where persons other than authorized users and for an other than authorized purpose have access or potential access to personally identifiable information, whether physical or electronic. This includes, but it not limited to, posting PII on public-facing websites; sending via e-mail to unauthorized recipients; providing hard copies to individuals without a need to know; loss of electronic devices or media storing PII (for example, laptops, thumb drives, compact discs, etc.); use by employees for unofficial business; and all other unauthorized access to PII.
PRIVACY ACT & SECURITY NOTICE
YOU ARE ACCESSING A U.S. GOVERNMENT (USG) INFORMATION SYSTEM (IS)
Please take a moment to review our Privacy Act & Security Notice for the Army University Web Site:
SITE SECURITY: This is a publicly accessible Information System. Records are maintained within secured buildings in areas accessible only to persons having an official need-to-know and who therefore are properly trained and screened.
By using this IS (which includes any device attached to this IS), you consent to the following conditions:
The USG routinely intercepts and monitors communications on this IS for purposes including, but not limited to, penetration testing, COMSEC monitoring, network operations and defense, personnel misconduct (PM), law enforcement (LE), and counterintelligence (CI) investigations.
At any time, the USG may inspect and seize data stored on this IS.
Communications using, or data stored on, this IS are not private, are subject to routine monitoring, interception, and search, and may be disclosed or used for any USG-authorized purpose.
This IS includes security measures (e.g., authentication and access controls) to protect USG interests–not for your personal benefit or privacy.
Notwithstanding the above, using this IS does not constitute consent to PM, LE or CI investigative searching or monitoring of the content or work product.
COOKIE INFORMATION: Western Hemisphere Institute for Security Cooperation (WHINSEC) does not use persistent cookies (tokens that stay after session closeout and pass information between the client machine and the server).
WHINSEC will use session cookies (token that remain active only until you close your browser) in order to personalize the site information.