Privacy Impact Assessment (PIA)

Section 208 of Public Law 107-347, "E-Government Act of 2002," requires all federal government agencies to conduct a PIA for all new or substantially changed information technology (IT) systems that collect, maintain, or disseminate PII. A PIA allows for the evaluation and mitigation of possible privacy risks throughout the lifecycle of a program or system.

PIA Forms