Federal Data Miners Urged To Better Address Citizen Privacy - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Infrastructure

Federal Data Miners Urged To Better Address Citizen Privacy

GAO says agencies aren't complying with all related laws and guidance to protect personal information in five data-mining programs.

Federal investigators say the government isn't doing all it should to notify citizens that information about them is being collected by systems employing data-mining techniques.

The Government Accountability Office, the investigative arm of Congress, reviewed five data-mining efforts employed by the Small Business Administration, Agriculture's Risk Management Agency, the Internal Revenue Service, the State Department, and the FBI.

In an 82-page report requested by Sen. Daniel Akaka, D-Hawaii, the ranking minority member of the Homeland Security and Government Affairs Subcommittee on Oversight of Government Management, the GAO said the five agencies didn't comply with all related laws and guidance to protect personal information, though they did take some key stops to offer those safeguards.

Most agencies notified the public that they collected and used personal information and provided chances for individuals to review personal information when required by the Privacy Act. But government law and rules require agencies to furnish notice to individual respondents explaining why the information is being collected.

The GAO said only two agencies provided this notice, one did not provide it, and two claimed an allowable exemption from this requirement because the systems were used for law enforcement. The GAO also contends agency compliance with key security requirements was inconsistent. And, it says, three of the five agencies completed privacy impact assessments -- important for analyzing the privacy implications of a system or data collection -- but none of the assessments fully complied with Office of Management and Budget guidance.

"Until agencies fully comply with these requirements," writes Linda Koontz, GAO director of information-management issues, "they lack assurance that individual privacy rights are being appropriately protected."

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
News
How GIS Data Can Help Fix Vaccine Distribution
Jessica Davis, Senior Editor, Enterprise Apps,  2/17/2021
Commentary
Graph-Based AI Enters the Enterprise Mainstream
James Kobielus, Tech Analyst, Consultant and Author,  2/16/2021
Slideshows
11 Ways DevOps Is Evolving
Lisa Morgan, Freelance Writer,  2/18/2021
White Papers
Register for InformationWeek Newsletters
The State of Cloud Computing - Fall 2020
The State of Cloud Computing - Fall 2020
Download this report to compare how cloud usage and spending patterns have changed in 2020, and how respondents think they'll evolve over the next two years.
Video
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you.
Slideshows
Flash Poll