At the Defense Information Systems Agency, we are committed to protecting the privacy of our customers and employees, especially as we modernize our information and employee management systems. We make privacy a priority by addressing it throughout the development of our systems and integrating protections into their lifecycle. A Privacy Impact Assessment is the primary tool we use to identify and address privacy concerns during system development. Through the PIA process, we also ensure compliance with laws and regulations that govern privacy for our customers and employees.

Section 208 of the E-Government Act of 2002 requires all government agencies to conduct, review and publish PIAs. In line with DOD guidance, we review how privacy considerations are handled when we acquire or develop new IT systems or begin collecting new electronic information that includes personally identifiable information. We conduct PIAs for all new or significantly modified IT systems or projects that collect, maintain, or share personal information about the public, federal personnel, contractors, or foreign nationals working at U.S. military facilities abroad.

We use PIAs to:

• Inform the public about the information we collect about them.
• Address the privacy impacts of our systems.
• Ensure we collect only the personal information we need to administer our programs.

PIAs also confirm that:

• We use personal information only for its intended purpose.
• We keep information accurate and up to date.
• We protect the data while we use it and hold it only for as long as necessary.

DOD and DISA Privacy Impact Assessment Guidance

• OMB Memoranda M-03-22 "OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002"
• DoD Instruction 5400.16, "DoD Privacy Impact Assessment (PIA) Guidance"
• DoD CIO Privacy Impact Assessment Web site
• DISA Approved Format for a Privacy Impact Assessment

Completed DISA Privacy Impact Assessments

• Automated Spectrum Coordination System (ASCS)
• Account Tracking and Automation Tool (ATAT)
• ACROPOLIS
• Automated Security Validation (ASV)
  
• Budget Execution Reporting Tool (BERT)
• C2 Software Factory (C2SF)
• Cloud Based Internet Isolation (CBII)
• Complex Tools - ServiceNow (CT-S)
• Comply to Connect Enterprise Reporting Manager (C2C ERM)
• Corporate Management Information Systems (CMIS)
• Computerized Maintenance Management System (CMMS)
• Consolidated Database Architecture (CDBA)
• Contract Support System (CSS)
• Department of Defense Secure Access File Exchange (DoD SAFE)
• Department of Defense Network-Unclassified Domain Services (DoDNet-U-DS)
• Defense Enterprise Directory Services (DEDS)
• Defense Enterprise Office Solution - U (DEOS-U)/DoD365-Joint Microsoft Sentinel
• Defense Collaboration Service (DCS)/Department of Defense Safe Access File Exchange (DOD SAFE)
• Department of Defense Privacy Information Management System (DPIMS)
• Digital Policy Management System (DPMS)
• DISA Concierge AI
• DISA Data Cataloging Governance (DISA-DC)
• DISA Financial Management Systems (DFMS)
• DISA Integrated Management and Execution System (DIMES)
• DISA Service Platform (DSP)
• DISA Storefront (DSF)
• DoD Automated Time Attendance and Production System (DoD ATAAPS)
• DoD Enterprise Identity, Credential, and Access Management (DoD E-CAM)
• DoD Enterprise Portal Services (DEPS)
• DoD Mobility Classified Capability-TS (DMCC-TS)
• DoD Mobility Unclassified Capability (DMUC)
• DoD Mobility NIPR Lab
• DoD Network Unclassified Cloud (DoDNet-U Clould)
• DoD Network Unclassified Domain System (DoDNet)
• DoD Public Key Infrastructure (PKI)
• Endpoint Security Solutions E-Policy Orchestrator Infrastructure (ESS EPO Infrastructure)
• Enterprise Application and Services Forest (EASF)
• Enterprise Privileged User Authentication Services (EPUAS) 
• Enterprise Mission Assurance Support Service (EMASS)
• Enterprise Systems Management
• Enterprise Voice over IP (ECVOIP)
• Electromagnetic Battle Management Joint Decision Support (EMBM-J DS)
• ESSI Lab Azure Cloud
• Financial Accounting and Budget System (FABS)
• Financial Accounting Management Information System (FAMIS-WCF)
• FULL CONTENT INSPECTION (FCI)
• Global Test Cloud Service (GTC)
• Global Command and Control System -Joint Cloud
• Global Content Delivery Service (GCDS)
• Global Electromagnetic Spectrum Information (GEMSSIS)
• Global Federated User Domain (GFUD)
• Hosting and Computer Center (HaCC) DocuSign (DS)
• HYPORI IL5 SAAS
• Identity, Credential, and Access Management (ICAM)
• Identity Synchronization Service (IdSS)
• Integrated Defense Enterprise Acquisition System (IDEAS)
• Integrated Workspace Management System (IWMS)
• Intranet Services (IS)
• JITC-FHU/GEX
• Joint Command and Control Global Information Grid Computing Node (JC2GCN)
• Joint Department of Defense 365 (DoD365) Joint (SharePoint On-Line, Exchange On-Line, and Office Automation)
• Joint Interoperability Test Command - Fort Huachuca
• Joint Interoperability Test Command - Fort Huachuca/Joint Analysis Net-Centric Evaluation Testing Toolkit (JANETT)
• Joint Interoperability Test Command - Fort Huachuca/TEST AND EVALUATION DASHBOARD
• Joint Incident Management System (JIMS)
• Joint Management System (JMN)
• Joint Management System (JMS)
• Joint Operational Edge (JOE) Cloud
• Joint Planning Execution Services (JPES)
• Joint Regional Security Stack (JRSS)
• Joint Satellite Communications Management Enterprise (JSME)
• Joint Spectrum Center (JSC)
  
• Network Change and Configuration Management - Replacement (NCCM-R)
• Open Sensor Platform (OSP)
• Open Source Corporate Management Information System (OS-CMIS)
• Operational Support System -Network Management System (OSS-NMS)
• Operational Support System - System Integration Environment (OSS-SIE)
• PACIFIC ENTERPRISE SERVICES – HAWAII (PES-HI)
• SATCOM Ordering Management and Situational Awareness Tools (SOMSAT)
• SIEM (Security Information Event Manager) SaaS(Software as a Service)
• Spectrum XXI Version 5 (SXXI v5) 
• SD DevSecOps
• SHARKFRENZY
• SharkShadow
• Tactical Data Link (TDL) Configuration Management Tool (TCMT)
• TELECOM Services Information Technology Services (TSEAS) Inventory and Billing information (TIBI)
• Thunderdome
• United States Message Text Format Configuration Management - Web Application
• WHS Identity Synchronization Service (IdSS)
• World Wide Online System (WWOLS)