Title page
Contents
Summary 2
The Privacy Act: Principles and Framework 7
Fair Information Practice Principles (FIPPs) 7
Relationship to the Freedom of Information Act 8
Definitions of Key Terms and Scope 9
Identifying Particulars and Personally Identifiable Information (PII) 10
10 Exemptions for Certain Records and Systems of Records 11
Investigatory Material 11
Statistical Records 12
Conditions of Disclosure 13
Disclosure to the Individual 13
Disclosure to Third Parties 14
Congressional Casework 14
Veterans' Benefits and Next of Kin 14
Written Consent 15
12 Exceptions to Written Consent 16
Need to Know 17
Disclosure Under FOIA 17
Routine Use 18
Statistical Information and Census 19
Agency Requirements and Roles 19
Systems of Records Notices (SORNs) 20
Privacy Impact Assessments (PIAs) 21
Senior Agency Officials for Privacy 22
Federal Privacy Council 23
Issues for Congress: The Privacy Act and the Future of Privacy Policy 23
Individual Participation 24
Examining Written Consent 25
Ascertaining Identity 25
Minimization 26
Mosaic Effect 26
What Is Considered to Be "Identifiable Form"? 27
Purpose Specification and Use Limitation 28
Information Collections and the Paperwork Reduction Act 29
Exploring the Concept of a Data Clearinghouse 30
Appendix. Additional Resources 32
Author Information 34
Disclaimer 35
Table A-1. Fair Information Practice Principles (FIPPs), as Described by the Federal Privacy Council 32
Table A-2. 10 Exemptions from the Privacy Act 33
Table A-3. 12 Exceptions to the Privacy Act 34