osd/js privacy office

Items of Interest

Privacy: Basic Principles
References, Policies, and Forms
System Notice Review Template (XLS | 44 KB)
Self Assessments (PDF | 902 KB)
FAQs - General Info
Training
Reporting

Writing Guidelines

How and When to Write a Privacy Act Statement(PAS)

Guidelines for Establishing a New or Revised Privacy Act System of Records Notice

Helpful Links

Defense Privacy and Civil Liberties Office
Defense Privacy Board Advisory Opinions
DoD SORNS
OSD/JS SORNs
DefenseLINK
Defense.gov

Other FOIA OFFICES

OSD/JS FOIA Office
OSD/JS Policy Office

Report A Breach

Reporting a breach is a three step process. For further information, see Paragraph C10.6, Lost, Stolen or Compromised Information, DoD 5400.11-R.

  1. Report the Breach to US-CERT.
    Select the link below within one hour after discovery to access the US-CERT Incident Reporting System. Review the instructions provided and complete the on-line questionnaire.
    UNITED STATES COMPUTER EMERGENCY RESPONSE TEAM (US-CERT)


  2. Report the Breach to DoD/CIO, Defense Privacy Office, and OSD/JS Privacy Office.
    If there is a Privacy Breach, report it to the Senior Component Official for Privacy immediately, and obtain a SD Form 826. Complete the form and submit it to privacy@whs.mil within 24 hours after discovery. This form can also be used to report updates to previous submissions.

  3. Report the Breach to the Affected Individual(s).
    Select the link below for the format required to notify affected individuals of the breach. You will need to have the mailing address for each affected individual and address the unique issues pertaining to each breach.
    Sample Privacy Breach Notification Letter

You will need Adobe Acrobat® Reader™ to view PDF files located on this site. If you do not already have Adobe Acrobat® Reader™, you can download it here for free.

This page was last modified on: July 19, 2010 2:26 PM
DoD CIO - PRIVACY ACT IMPACT ASSESSMENTS | E-GOVERNMENT ACT | PRIVACY & SECURITY | DISCLAIMER