For Official Use Only (FOUO) and Similar Designations NPS Security Office

Slides:

Advertisements

Similar presentations

FREEDOM OF INFORMATION EXECUTIVE BRIEFING PART II.

Advertisements

FOIA Exemption 1 & E.O Classified National Security Information

U.S. Energy Information Administration Independent Statistics & Analysis Controlled Unclassified Information FCSM Conference Jacob Bournazian,

Overview of the Privacy Act

HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.

HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.

HIPAA Basic Training for Privacy & Information Security Vanderbilt University Medical Center VUMC HIPAA Website:

Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.

The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.

HIPAA HIPAA Health Insurance Portability and Accountability Act of 1996.

A dialogue with FMUG: Sensitive Data & Filemaker MIT Policy and Data Classifications ** DRAFT ** Guidelines Feedback and Discussion Tim McGovern 2 June.

Department of the Navy Information Security Program

SAFEGUARDING UNCLASSIFIED INFORMATION PROTECTED FOR RELEASE BY THE ARMS EXPORT CONTROL ACT Arms Export Control Act; Executive Order and DoD Directive.

Section One: Classification System Overview Note: All classified markings contained within this presentation are for training purposes only.

1 DEFENSE LOGISTICS AGENCY AMERICA’S COMBAT LOGISTICS SUPPORT AGENCY DEFENSE LOGISTICS AGENCY AMERICA’S COMBAT LOGISTICS SUPPORT AGENCY WARFIGHTER SUPPORT.

UNCLASSIFIED1 COMSEC BRIEFING Having been selected to perform duties which will require access to classified COMSEC information, it is essential you be.

ROLES & RESPONSIBILITIES PRIVACY ACT (PA) SYSTEMS OF RECORDS MANAGERS.

PA/FOIA INTERFACE OSD/JS Privacy Office (703)

MINNESOTA GOVERNMENT DATA PRACTICES ACT How the law affects University employees and recordkeeping Susan McKinney Records & Information Management.

 Freedom of Information Act General Background. Access to Army Records. Exemptions. Exclusions. Procedural Rules for Processing FOIA Requests for Army.

Code of Federal Regulations Title 42, Chapter 1, Subchapter A Part 2 – CONFIDENTIALITY OF ALCOHOL AND DRUG ABUSE PATIENTS BRYANT D. MILLER CAC II, MAC,

JO807: Advanced Journalism Research JO807: Week 13 “Freedom of Information Act” and the WWW.

Data Classification & Privacy Inventory Workshop

FAMILY EDUCATIONAL RIGHTS AND PRIVACY ACT Electronic Signatures This work is the intellectual property of the author. Permission is granted for this material.

Section Three: Protection of Controlled Unclassified Information Note: All classified markings contained within this.

HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.

Department of Commerce Records Management Training.

DEFENSE PRIVACY & CIVIL LIBERTIES OFFICE Safeguarding Personally Identifiable Information (PII) Samuel P. Jenkins Director for Privacy Defense Privacy.

Section Eight: Communication Security (COMSEC) Note: All classified markings contained within this presentation are for.

The Privacy Act of 1974: An Introduction The Privacy Act of 1974: An Introduction September 2010 For Official Use Only 0.

Newsgathering: Access to Meetings & Records. Access and the First Amendment How has the U.S. Supreme Court responded to claims that the First Amendment.

CUI Statistical: Collaborative Efforts of Federal Statistical Agencies Eve Powell-Griner National Center for Health Statistics.

DFARS & What is Unclassified Controlled Technical Information (UCTI)?

HIPAA PRIVACY AND SECURITY AWARENESS.

Using NIMA Limited Distribution Data & Products Many of NIMA’s data and products are Unclassified Limited Distribution (LIMDIS). These materials are used.

UNCLASSIFIED FREEDOM OF INFORMATION ACT (FOIA) OVERVIEW The Public’s Right to Federal Records.

Privacy and Security of Protected Health Information NorthPoint Health & Wellness Center 2011.

Headquarters U. S. Air Force I n t e g r i t y - S e r v i c e - E x c e l l e n c e Headquarters Air Force FOIA Exemptions Brief Della Macias HAF/IMII.

1 DEFENSE LOGISTICS AGENCY AMERICA’S COMBAT LOGISTICS SUPPORT AGENCY DEFENSE LOGISTICS AGENCY AMERICA’S COMBAT LOGISTICS SUPPORT AGENCY WARFIGHTER SUPPORT.

Theme: classification & distribution of government control of FEA.

Marking OUO Documents Office of Health, Safety and Security Office of Classification Office of Quality Management 1.

FAR Part 1 The Federal Acquisition Regulation System.

The right item, right place, right time. DLA Privacy Act Code of Fair Information Principles.

Information Asset Classification Community of Practicerev. 10/24/2007 Information Asset Classification What it means to employees.

Headquarters U. S. Air Force I n t e g r i t y - S e r v i c e - E x c e l l e n c e Freedom Of Information Act/Privacy Act Interface Freedom Of Information.

Sample only Order at Security Awareness Training A threat awareness briefing. A defensive security briefing. An overview of the.

SECURITY BRIEFING A threat awareness briefing A defensive security briefing An overview of the security classification system Employee reporting obligations.

FOIA & Posting Records Online Melanie Ann Pustay Director, Office of Information Policy Department of Justice 1.

Sensitive But Unclassified (SBU) Information

Information Security IBK3IBV01 College 2 Paul J. Cornelisse.

Privacy Act United States Army (Managerial Training)

Providing access to your data: Handling sensitive data Robert R. Downs, PhD NASA Socioeconomic Data and Applications Center (SEDAC) Center for International.

Sharing Information (FERPA) FY07 REMS Initial Grantee Meeting December 5, 2007, San Diego, CA U.S. Department of Education, Office of Safe and Drug-Free.

FOIA Processing and Privacy Awareness at NOAA Prepared by Mark H. Graff NOAA FOIA Officer OCIO/GPD (301)

DON Code of Privacy Act Fair Information Principles DON has devised a list of principles to be applied when handling Protected Personal Information (PPI).

You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only. By using this IS (which includes any device.

The Health Insurance Portability and Accountability Act (HIPAA) requires Plumas County to train all employees in covered departments about the County’s.

1 Office of the Information Commissioner of Canada September 28, 2010 Balancing Openness and the Public Interest In Protecting Information Vanessa R. Brinkmann.

Freedom of Information Act: Protecting your Information from Public Disclosure Ryan K. Manger.

Providing Access to Your Data: Handling sensitive data

Data Security Policies

Derivative Classification Overview

Army FOIA/Privacy/Records Management Course

Army Automatic Declassification Program

HIPAA PRIVACY AWARENESS, COMPLIANCE and ENFORCEMENT

Disability Services Agencies Briefing On HIPAA

Marking & Protecting Controlled Unclassified Information (CUI)

The Privacy Act of 1974: An Introduction September 2010

Export Controls – Export Provisions in Research Agreements

State of florida tax information sharing Paula Barfield August 5, 2015

Presentation transcript:

For Official Use Only (FOUO) and Similar Designations NPS Security Office

Controlled Unclassified Information (CUI) Any information the loss, misuse, or unauthorized access to or modification of which could adversely affect the national interest or the conduct of Federal programs, or the privacy to which individuals are entitled under section 552a of title 5, United States Code (the Privacy Act), but which has not been specifically authorized under criteria established by executive order or an Act of Congress to be kept secret in the interest of national defense or foreign policy. This includes information in routine DON payroll, finance, logistics, inventory, and personnel management systems.

For Official Use Only (FOUO) Document designation, not a classification. –Used by Department of Defense and a number of other federal agencies to identify information or material which, although unclassified, may not be appropriate for public release.

No national policy governing use of the For Official Use Only designation. –DoD Directive defines For Official Use Only information as "unclassified information that may be exempt from mandatory release to the public under the Freedom of Information Act (FOIA)." –Policy is implemented by DoD Regulation R and R.

For Official Use Only designation also used by CIA and a number of other federal agencies. –Each agency is responsible for determining how it shall be used. The categories of protected information may be quite different from one agency to another, although in every case the protected information must be covered by one of the nine categories of information that are exempt from public release under FOIA.exempt from public release under FOIA.

Some agencies use different terminology for the same types of information. For example: –Department of Energy uses Official Use Only (OUO) –Department of State uses Sensitive But Unclassified (SBU), formerly called Limited Official Use (LOU). –The Drug Enforcement Administration uses DEA Sensitive. In all cases the designations refer to unclassified, sensitive information that is or may be exempt from public release under the Freedom of Information Act.

The fact that information is marked FOUO does not mean it is automatically exempt from public release under FOIA. –If a request for the information is received, it must be reviewed to see if it meets the FOIA dual test: (1) It fits into one of the nine FOIA exemption categories, and (2) There is a legitimate government purpose served by withholding the information. On the other hand, the absence of the FOUO or other marking does not automatically mean the information must be released in response to a FOIA request.

Statutory/Regulatory Responsibilities & Obligations Each government department or agency defines what information shall be protected and how its protected information shall be handled. The following information pertains only to Department of Defense FOUO information. When dealing with sensitive but unclassified information from another department or agency, check with the originator regarding appropriate handling.

Access to FOUO Information FOUO information may be disseminated within the DoD components and between officials of the DoD components and DoD contractors, consultants, and grantees as necessary in the conduct of official business. –FOUO information may also be released to officials in other departments and agencies of the executive and judicial branches in performance of a valid government function.

Marking FOUO Information Unclassified documents and material containing FOUO information shall be marked as follows: Documents will be marked FOR OFFICIAL USE ONLY at the bottom of the front cover (if there is one), the title page (if there is one), the first page, and the outside of the back cover (if there is one). Pages of the document that contain FOUO information shall be marked FOR OFFICIAL USE ONLY at the bottom.

Each paragraph containing FOUO information shall be marked with the abbreviation FOUO in parentheses at the beginning of the FOUO portion. Material other than paper documents (for example, slides, computer media, films, etc.) shall bear markings which alert the holder or viewer that the material contains FOUO.

FOUO documents and material transmitted outside the Department of Defense must bear an expanded marking on the face of the document so that non-DoD holders understand the status of the information. A statement similar to this one should be used: This document contains information exempt from mandatory disclosure under the FOIA. Exemption(s) apply.

When FOUO information is contained within a classified document, the same rules apply except that full pages that contain FOUO information but no classified information shall be marked FOR OFFICIAL USE ONLY at both the top and bottom of the page.

Safeguarding FOUO Information FOUO information should be handled in a manner that provides reasonable assurance that unauthorized persons do not gain access. During working hours, reasonable steps should be taken to minimize risk of access by unauthorized personnel. After working hours, FOUO may be stored as a minimum in unlocked containers, desks or cabinets if government or government-contract building security is provided. If government or government-contract building security is not provided, it must be stored at a minimum in a locked desk, file cabinet, bookcase, locked room, or similar place.

FOUO documents and material may be transmitted via first class mail, parcel post, or -- for bulk shipments -- fourth class mail. Fax or transmission of FOUO information (voice, data or facsimile) should be by encrypted communications systems whenever practical. FOUO information may be put on an Internet web site only if access to the site is limited to a specific target audience and the information is encrypted. See the DOD Web Policy.DOD Web Policy

Foreign nationals may not have access to FOUO or other CUI without approval from a DON official who has been specifically delegated disclosure authority. FOUO documents may be destroyed by shredding or tearing into pieces and discarding the pieces in a regular trash container unless circumstances suggest a need for more careful protection.

Enforcement Administrative penalties may be imposed for misuse of FOUO information. Criminal penalties may be imposed depending on the actual content of the information (privacy, export control, etc.).

Legal & Regulatory Authorities 5 USC Departmental Regulations DoD Regulation R - The Information Security Program DoD Directive The Freedom of Information Act (FOIA) Program DoD Regulation R – The DoD Freedom of Information Act Program DoD Regulation R – Department of Defense Privacy Program

Reference Portion marking of unclassified documents containing FOUO information is required by DoD Regulation R.