|
NASA Procedural Requirements
|
NPR 1382.1
Effective Date: August 10, 2007
Expiration Date: August 10, 2012
|
COMPLIANCE IS MANDATORY
Subject: NASA Privacy Procedural Requirements
Responsible Office: Office of the Chief Information Officer
View all pages in PDF
Table of Contents
Preface
P.1 Purpose
P.2 Applicability
P.3 Authority
P.4 Applicable Documents
P.5 Measurement/Verification
P.6 Cancellation
1.1 Information on Individuals
1.2 Governing Statutes
1.3 Complying with Statutory Requirements
1.4 Required Activities by Life-Cycle Phases
2.1 General
2.2 Mobile Devices
2.3 Remote Access
2.4 Data Transport and Remote Storage
2.5 Personnel Training and Security Awareness
2.6 Extracted Data
3.1 General
3.2 When to Conduct an IPTA
3.3 When to Conduct a PIA
3.4 When PIAs are Not Required
3.5 Conducting a PIA
3.6 Review, Approval, and Publication of a PIA
3.7 Relationship to Requirements under the Paperwork Reduction Act
3.8 Relationship to Requirements under the Privacy Act
4.1 General
3.2 Privacy Policy on NASA Web Sites
4.3 Collecting PII
5.1 General
5.2 Creating or Modifying a Privacy Act SOR
5.3 Collecting Information for a Privacy Act SOR
5.4 Using Privacy Act Records
5.5 Maintaining and Disposing of Privacy Act Records
5.6 Contractors and Systems of Records
Appendix A. Glossary
Appendix B. Acronym List
Appendix C. Tracking Waiver Template
Appendix D. References
Appendix E. Privacy Actions by Information Stage
Appendix F. Guidance for Privacy Impact Assessments
Appendix G. Web Privacy Guidance
Appendix H. Privacy Act Guidance
Appendix I. Measurement/Verification Matrix
DISTRIBUTION:
NODIS
This Document Is Uncontrolled When Printed.
Check the NASA Online Directives Information System (NODIS) Library
to Verify that this is the correct version before use:
http://nodis3.gsfc.nasa.gov