Strategy for Minimizing Identifiable Data Related to Individuals
EPA Reviews and Updates PII Collection Practices
The Environmental Protection Agency (EPA) is taking steps to reduce the collection of Personally Identifiable Information (PII) and improve data security. In the second quarter of FY2017, the EPA began a comprehensive review of its Agency Privacy Impact Assessments (PIAs) for all federal information systems (FIS). This review aimed to update and reassess the need for PII collections, with a focus on eliminating unnecessary elements.
Simultaneously, the EPA embarked on a mission to review all Agency Websites to determine if PII is collected and if any PII elements are needed. The Agency also conducted a review of all Agency Privacy Notices (PN) to ensure adequacy.
In the third quarter of FY2017, the EPA conducted a data call to review and update Agency forms and websites for PII collections. This data call was part of the NPP's biannual effort to identify the collection and uses of PII across the Agency.
During this period, the EPA identified four new SORNs and two new PIAs. The Agency is surveying these forms to determine the current need for PII and, if excessive elements are found, modifications are made to eliminate any superfluous uses of PII.
However, specific details about the changes made in Q3 FY2017 to EPA forms and websites as part of the FY16 Implementation Plan could not be definitively determined from the available information. For authoritative, detailed data on this topic, it is recommended to consult EPA's official website privacy program archives, EPA’s Federal Register notices related to PII reduction for FY2017, and EPA Annual or Quarterly Privacy Reports for FY2017.
In addition, an inventory of Agency forms is being established, and the EPA's National Privacy Program (NPP) reviews Privacy Threshold Analysis (PTA) and Privacy Impact Assessments (PIA) at the start of a system's life cycle to determine the necessity of collection.
These efforts by the EPA are part of a broader initiative to minimise data collection, enhance data security measures, and protect the privacy of individuals interacting with the Agency.
The Environmental Protection Agency (EPA) is also looking to modernize its operations, including the business sector, by incorporating advanced technology in its review and updating of the collection and use of Personally Identifiable Information (PII). This initiative, part of a broader effort to ensure data security and privacy protection, aims to streamline processes and improve efficiency.
Moreover, the EPA's National Privacy Program (NPP) is working on establishing an inventory of Agency forms, using technology for efficient data management and automated assessments. This move aligns with the Agency's commitment to enhancing data security measures and minimizing data collection.
