Federal Data Miners Urged To Better Address Citizen Privacy - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Infrastructure

Federal Data Miners Urged To Better Address Citizen Privacy

GAO says agencies aren't complying with all related laws and guidance to protect personal information in five data-mining programs.

Federal investigators say the government isn't doing all it should to notify citizens that information about them is being collected by systems employing data-mining techniques.

The Government Accountability Office, the investigative arm of Congress, reviewed five data-mining efforts employed by the Small Business Administration, Agriculture's Risk Management Agency, the Internal Revenue Service, the State Department, and the FBI.

In an 82-page report requested by Sen. Daniel Akaka, D-Hawaii, the ranking minority member of the Homeland Security and Government Affairs Subcommittee on Oversight of Government Management, the GAO said the five agencies didn't comply with all related laws and guidance to protect personal information, though they did take some key stops to offer those safeguards.

Most agencies notified the public that they collected and used personal information and provided chances for individuals to review personal information when required by the Privacy Act. But government law and rules require agencies to furnish notice to individual respondents explaining why the information is being collected.

The GAO said only two agencies provided this notice, one did not provide it, and two claimed an allowable exemption from this requirement because the systems were used for law enforcement. The GAO also contends agency compliance with key security requirements was inconsistent. And, it says, three of the five agencies completed privacy impact assessments -- important for analyzing the privacy implications of a system or data collection -- but none of the assessments fully complied with Office of Management and Budget guidance.

"Until agencies fully comply with these requirements," writes Linda Koontz, GAO director of information-management issues, "they lack assurance that individual privacy rights are being appropriately protected."

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
InformationWeek Is Getting an Upgrade!

Find out more about our plans to improve the look, functionality, and performance of the InformationWeek site in the coming months.

Commentary
New Storage Trends Promise to Help Enterprises Handle a Data Avalanche
John Edwards, Technology Journalist & Author,  4/1/2021
Slideshows
11 Things IT Professionals Wish They Knew Earlier in Their Careers
Lisa Morgan, Freelance Writer,  4/6/2021
Commentary
How to Submit a Column to InformationWeek
InformationWeek Staff 4/9/2021
White Papers
Register for InformationWeek Newsletters
The State of Cloud Computing - Fall 2020
The State of Cloud Computing - Fall 2020
Download this report to compare how cloud usage and spending patterns have changed in 2020, and how respondents think they'll evolve over the next two years.
Video
Current Issue
Successful Strategies for Digital Transformation
Download this report to learn about the latest technologies and best practices or ensuring a successful transition from outdated business transformation tactics.
Slideshows
Flash Poll