privacy act banner
HOME | POLICY | ROUTINE USES | REPORTING | REPORT A BREACH | SYSTEM NOTICES | CONTACT US | SEARCH

About Us
The Privacy Act of 1974
Defense Privacy Office
DPO Advisory Opinions
Privacy: Basic Principles
 Forms & Publications
References
Writing Guidelines
System Notice Template
Self Assessments
FAQs - General Info
Training
OSD/JS FOIA Office

logologo

Report A Breach

Reporting a breach is a three step process.   For further information, see Paragraph C10.6, Lost, Stolen or Compromised Information, DoD 5400.11-R.

1. Report the Breach to US-CERT.

Select the link below within one hour after discovery to access the US-CERT Incident Reporting System. Review the instructions provided and complete the on-line questionnaire.

UNITED STATES COMPUTER EMERGENCY RESPONSE TEAM (US-CERT)

2. Report the Breach to DoD/CIO, Defense Privacy Office, and OSD/JS Privacy Office.

If there is a Privacy Breach, please report to the Senior Component Official for Privacy immediately. Select the link below within 48 hours after discovery to the DoD/CIO, Defense Privacy Office, and OSD/JS Privacy Office. This form can also be used to report updates to previous submissions.

Reporting Lost, Stolen, or Compromised Personally Identifiable Information--OSD Components

3. Report the Breach to the Affected Individual(s).

Select the link below for the format required to notify affected individuals of the breach. You will need to have the mailing address for each affected individual and address the unique issues pertaining to each breach.

Sample Privacy Breach Notification Letter

 

 

 

 

DoD CIO - PRIVACY ACT IMPACT ASSESSMENTS | E-GOVERNMENT ACT | PRIVACY & SECURITY | DISCLAIMER