Privacy Policy Guidance
The DHS Privacy Office has primary authority for privacy policy at the Department. The Office works to ensure that the use of technology sustains and does not erode privacy protections relating to the collection, use, dissemination, and maintenance of personal information. All Department personnel, including federal employees, independent consultants, and government contractors involved in Department programs must comply with DHS privacy policies.
Privacy Policy Directives and Instructions
- Privacy Policy and Compliance Directive 047-01, July 2011
- Privacy Policy for the Operational Use of Social Media Directive 110-01, June 2012
- Computer Matching Agreements and the Data Integrity Board Directive 262-01, December 2011
- Freedom of Information Act Compliance Directive 0460.1
Privacy Policy Guidance Memoranda/Directives
- Privacy Policy Guidance Memoranda 2007-01/Privacy Policy Directive 262-12, Regarding Collection, Use, Retention, and Dissemination of Information on Non-U.S. Persons.
- Privacy Policy Guidance Memoranda 2007-02/Privacy Policy Directive 140-11, Regarding the use of Social Security numbers at DHS.
- Privacy Policy Guidance Memoranda 2008-01/Privacy Policy Directive 140-06, The Fair Information Practice Principles: Framework for Privacy Policy at the Department of Homeland Security.
- Fact Sheet: "The FIPPS at Work" provides examples of how the Department implements them.
- Privacy Policy Guidance Memoranda 2008-02/Privacy Policy Directive 140-09, DHS Policy Regarding Privacy Impact Assessments.
- Privacy Policy Guidance Memoranda 2009-01/Privacy Policy Directive 262-11, DHS’s Federal Information Sharing Environment Privacy and Civil Liberties Policy.
- Privacy Policy Guidance Memoranda 2011-01/Privacy Policy Directive 140-08, Privacy Act Amendment Requests.
- Privacy Policy Guidance Memoranda 2011-02/Privacy Policy Directive 262-09, Roles and Responsibilities for Shared IT Services.
Other Privacy Policy Guidance/Directives
- DHS Action Memorandum, Review of Safeguarding Policies and Procedures for Personnel-Related Data, June 2007 with attachments.
- Privacy Technology Implementation Guide (PTIG)/Privacy Policy Directive 140-05. August 2007
- Privacy Incident Handling Guidance (PIHG)/Privacy Policy Directive 140-07. January 2012.
- Handbook for Safeguarding Sensitive Personally Identifiable Information/Privacy Policy Directive 140-10. Revised March 2012.
Additional Privacy and FOIA-Related Policy Documents
Last Published Date:
October 25, 2016