For your eyes only: DHS develops privacy guidelines for Science and Technology Directorate
- By Kathleen Hickey
- Dec 24, 2008
The Homeland Security Department has developed new privacy guidelines for its Science and Technology Directorate.
DHS’ "Principles for Implementing Privacy Protections in S&T Research" will incorporate privacy protections into sensitive research conducted by the directorate, while allowing it to provide advanced tools, technologies and systems related to homeland security. DHS also has established a Privacy Office to address these concerns. An example of research affected by the new privacy rules is the development of new physical screening technologies.
Key principles of the guidelines include a privacy assessment, to be conducted jointly by the directorate and the Privacy Office. The privacy assessment “will be an integral part of the design, development and implementation of any S&T research project that is privacy-sensitive or involves or impacts personally identifiable information,” according to the agency. Other principles include purpose specification, transparency, data quality and integrity, data minimization, use limitation, data security, training, audit, and redress.
Purpose specification addresses the scope and purpose of any directorate project, which will be created through a review of both internal and external experts. Transparency addresses privacy impact. For transparency, privacy impact assessments will be made in conjunction with the Privacy Office for all research projects potentially impacted by privacy issues, and the group will publish privacy impact assessments for all nonclassified research.
The principles appear in an appendix to “Data Mining: Technology and Policy,” the Privacy Office’s 2008 report to Congress on DHS data mining activities. The report is available on the Privacy Office’s Web site.
Kathleen Hickey is a freelance writer for GCN.