Regulatory Requirements, Guidance and Resources
Federal Law
E-Government (E-Gov) Act of 2002, Section 208
Department of Defense (DoD)
DoDI 5400.16, DoD Privacy Impact Assessment (PIA) Guidance, February 12, 2009
DoDI 8510.01, DoD Information Assurance Certification and Accreditation Process (DIACAP), November 28, 2007
DoDI 8500.2, Information Assurance (IA) Implementation, February 6, 2003
DoD 8580.02-R, DoD Health Information Security Regulation, July 12, 2007
DoD 5400.11-R, Department of Defense Privacy Program, May 14, 2007
DoD 6025.18-R, DoD Health Information Privacy Regulation, January 24, 2003
Office of Management and Budget (OMB)
OMB Memorandum 10-23, Guidance for Agency Use of Third-Party Websites and Applications, June 25, 2010
OMB Memorandum 10-15, FY 2010 Reporting Instructions for the Federal Information Security Management Act and Agency Privacy Management, , April 21, 2010
OMB Memorandum 03-22, OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002, September 26, 2003
OMB Circular No. A-11, Section 53
OMB Circular A-130, Transmittal Memorandum #4, Management of Federal Information Resources
TRICARE Management Activity (TMA)
Privacy Impact Assessment (PIA) Overview Information Paper (Updated July 2011)
Machine-Readable Policies Information Paper (Updated July 2011)