Privacy Act Manual
Abstract
U.S. EPA Directive 2190 - Privacy Act Manual (Revised December 2005) establishes policy and procedures for protecting the privacy of individuals who are identified in the Environmental Protection Agency's information systems and informs Agency employees and officials of their rights and responsibilities under the Privacy Act (5 U.S.C. 552a).
Quick Table of Contents
- Chapter 1 - Policy and Responsibilities
- Chapter 2 - Procedures for Creating, Altering, or Terminating a System of Records
- Chapter 3 - Access and Amendment (Revised December 2005)
- Chapter 4 - Physical Safeguards
Full Table of Contents
Chapter 1 - Policy and Responsibilities
- Purpose
- Policy
- Scope
- Definitions
- Legal Authority and Administrative Guidelines
- Basic Requirements of the Privacy Act
- Responsibilities
- Penalties
- Existing Privacy Systems
- Other Pertinent EPA Directives
Figures
- 1-1. Definitions Applicable to the Privacy Act
- 1-2. Exceptions to the Privacy Act Prohibition Against Disclosure
- 1-3. EPA Systems of Records
Chapter 2 - Procedures for Creating, Altering, or Terminating a System of Records
- Purpose
- Responsibility
- New System of Records
- Significant Alteration of a System of Records
- Documentation of New System or Significant Alteration of Existing System
- Requests for Waiver of OMB's Sixty Day Advance Notice Period
- Minor Alterations to System of Records
- Termination of System of Records
Figures
- 2-1. Documentation Instructions--New System and Major Alterations
- 2-2. Documentation Instructions--Termination of System
Chapter 3 - Access and Amendment (Revised December 2005)
- Purpose
- Processing Requests for Access
- Processing Access Appeals
- Processing Requests for Amendments
- Establishing Privacy Act Case Files
Figures
- 3-1. Sample Privacy Act Request Letter
Chapter 4 - Physical Safeguards
- Purpose
- Policy
- Protection of Privacy Act Records
- Transfer/Destruction of Privacy Act Records