Privacy Threshold Analysis (PTA)

Project or Program Name:

FEMA Mitigation Success Story Database

Component:

Office or Program:

Federal Insurance and Mitigation Administration (FIMA)

TAFISMA Name:

Click here to enter text.

TAFISMA Number:

Click here to enter text.

Type of Project or Program:

Project or program status:

Name:

Eugene Luke

Office:

FIMA/BMD/COM

Title:

Emergency Mgt. Spec.

Phone:

202-646-7902

Email:

[email protected]

Name:

Click here to enter text.

Phone:

Click here to enter text.

Email:

Click here to enter text.

Date submitted to Component Privacy Office:

May 22, 2013

Date submitted to DHS Privacy Office:

May 22, 2013

Date approved by DHS Privacy Office:

Click here to enter a date.

1. Please describe the purpose of the project or program:

Please provide a general description of the project and its purpose in a way a non-technical person could understand.

Individuals and communities submit Mitigation Best Practices describing what project they have undertaken to reduce loss of life or property that could be an example for others. The Best Practices are reviewed and if approved submitted into our database and are available to the general public. Examples of Best Practices are elevating homes, purchasing flood insurance, building safe rooms, and implementing procedures for evacuation during a disaster. Many of these projects are funded in part with FEMA grants. This information is part of OMB ICR 1660-0089) Best practices are posted for public viewing using the FEMA Lessons Learned Information Sharing (LLIS.gov). The LLIS PTA was adjudicated on February 10, 2011 with coverage by the DHS Web Portals Privacy Impact Assessment and the DHS/ALL-004-General Information Technology Access Account Records System (GITAARS) System of Records Notice.

2. Project or Program status

Date first developed:

June 1, 2007

Pilot launch date:

June 1, 2007

Date last updated:

June 1, 2007

Pilot end date:

June 1, 2207

3. From whom does the Project or Program collect, maintain, use or disseminate information?

Please check all that apply.

DHS Employees

Contractors working on behalf of DHS

Members of the public

This program does not collect any personally identifiable information¹

4. What specific information about individuals could be collected, generated or retained?

Please provide a specific description of information that might be collected, generated or retained such as names, addresses, emails, etc.

Submitters have the option of including their name in the Best Practice.

Does the Project or Program use Social Security Numbers (SSNs)?

If yes, please provide the legal authority for the collection of SSNs:

NA

If yes, please describe the uses of the SSNs within the Project or Program:

NA

5. Does this system employ any of the following technologies:

If project or program utilizes any of these technologies, please contact Component Privacy Officer for specialized PTA.

Closed Circuit Television (CCTV)

Sharepoint-as-a-Service

Social Media

Mobile Application (or GPS)

Web portal²

None of the above

If this project is a technology/system, does it relate solely to infrastructure?

For example, is the system a Local Area Network (LAN) or Wide Area Network (WAN)?

No. Please continue to next question.

Yes. If a log kept of communication traffic, please answer the following question.

If header or payload data³ is stored in the communication traffic log, please detail the data elements stored.

Click here to enter text.

6. Does this project or program connect, receive, or share PII with any other DHS programs or systems⁴?

No.

Yes. If yes, please list:

Click here to enter text.

7. Does this project or program connect, receive, or share PII with any external (non-DHS) partners or systems?

No.

Yes. If yes, please list:

Click here to enter text.

Is this external sharing pursuant to new or existing information sharing access agreement (MOU, MOA, LOI, etc.)?

Please describe applicable information sharing governance in place.

Click here to enter text.

Component Privacy Office Reviewer:

Click here to enter text.

Date submitted to DHS Privacy Office:

Click here to enter a date.

Component Privacy Office Recommendation:

Please include recommendation below, including what new privacy compliance documentation is needed.

Click here to enter text.

DHS Privacy Office Reviewer:

Click here to enter text.

Date approved by DHS Privacy Office:

Click here to enter a date.

PCTS Workflow Number:

Click here to enter text.

Privacy Sensitive System:

If “no” PTA adjudication is complete.

Category of System:

If “other” is selected, please describe: Click here to enter text.

Determination: PTA sufficient at this time.

Privacy compliance documentation determination in progress.

New information sharing arrangement is required.

DHS Policy for Computer-Readable Extracts Containing Sensitive PII applies.

Privacy Act Statement required.

Privacy Impact Assessment (PIA) required.

System of Records Notice (SORN) required.

PIA:

If covered by existing PIA, please list: Click here to enter text.

SORN:

If covered by existing SORN, please list: Click here to enter text.

DHS Privacy Office Comments:

Please describe rationale for privacy compliance determination above.

Click here to enter text.