Deadline for Web privacy policies looms

Agencies have three weeks to beef up their Web site privacy policies as required under the E-Government Act of 2002.

By Dec. 15, agencies’ online privacy policies must inform visitors:

  • If providing information is voluntary and detail how information will be used


  • How to grant consent for use of voluntary information


  • How to grant consent for use of mandatory information if the agency has plans beyond legally mandated requirements.


  • “Agencies should explain how the information is being protected, maintained and received,” said Eva Kleederman, a privacy policy analyst with the Office of Management and Budget. She spoke yesterday at a privacy event in Washington sponsored by the Center for Democracy and Technology and the Council for Excellence in Government.

    Agencies also must notify site users of their rights under the Privacy Act and other privacy laws and detail any use of tracking technology, such as session cookies, or applications that let users customize their version of a site.

    Kleederman said more and more agencies are allowing site customization, and many use tracking technology applications.

    Finally, each agency must submit to OMB a list of privacy impact assessments they have done of IT projects. Agencies had to include the assessments with their fiscal 2005 budget submissions (Click for Sept. 30 GCN story)

    OMB anticipates the inventory will identify several hundred assessments that the agency can use to get an overview of privacy projects and trends, Kleederman said.

    “Our analysis will be included in our report to Congress on how we are meeting the requirements of the E-Government Act,” she said.

    About the Author

    Connect with the GCN staff on Twitter @GCNtech.

    Featured

    • Defense
      Ryan D. McCarthy being sworn in as Army Secretary Oct. 10, 2019. (Photo credit: Sgt. Dana Clarke/U.S. Army)

      Army wants to spend nearly $1B on cloud, data by 2025

      Army Secretary Ryan McCarthy said lack of funding or a potential delay in the JEDI cloud bid "strikes to the heart of our concern."

    • Congress
      Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

      Jim Langevin's view from the Hill

      As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

    Stay Connected

    FCW INSIDER

    Sign up for our newsletter.

    I agree to this site's Privacy Policy.