|
Size: 1288
Comment:
|
Size: 1282
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 29: | Line 29: |
| The [[UnitedStates/InformationLaw/FederalInformationSecurityManagementAct|Federal Information Security Management Act]] ('''FISMA''') identifies security controls on the use of PII. The Office of Management and Budget (OMB) has produced guides and memoranda to further specify the requirements of these acts. | The [[UnitedStates/InformationLaw/FederalInformationSecurityManagementAct|Federal Information Security Management Act]] (FISMA) identifies security controls on the use of PII. The Office of Management and Budget (OMB) has produced guides and memoranda to further specify the requirements of these acts. |
Personally Identifiable Information
Contents
Definition
Any information that can be used to distringuish or trace an identity, whether alone or when used in connection with other information.
PHI is a subclass of PII with additional requirements and considerations.
Privacy Act
The Privacy Act of 1974 established requirements for the federal government's use of PII. Agencies can and have been held legally and financially liable for leads of PII.
FISMA
The Federal Information Security Management Act (FISMA) identifies security controls on the use of PII. The Office of Management and Budget (OMB) has produced guides and memoranda to further specify the requirements of these acts.
Department of Defense Privacy Program
DoD 5400.11-R defines the Privacy Program which controls the use of PII within the U.S. Department of Defense.
Freedom of Information Act
The Freedom of Information Act defines PII-based restrictions on freedom of information requests.