Point of contact for ESA's Privacy Program
ESA's Privacy Office follows the policies, procedures, and guidance developed and maintained by the Department of Commerce (DOC) Privacy Office: http://www.commerce.gov/privacy. The following links provide more detailed information regarding DOC's Privacy Program.
DOC's Privacy Office
DOC's Privacy Office is within the Office of the Secretary, Chief Financial Officer and Assistant Secretary for Administration, Office of Privacy and Open Government:
- Senior Agency Official for Privacy (SAOP)/Chief Privacy Officer (CPO)& Director of Open Government
- Deputy Director of Departmental Privacy Operations
- Deputy Director for Privacy Act Operations
- Commerce Privacy Mission Statement
- Authority & Responsibilities
- Privacy Council
- DOC PII Breach Response Task Force
- Contact Information
Properly safeguarding personally identifiable information (PII) and business identifiable information (BII).
- Personally Identifiable Information
- Business Identifiable Information
- Employee/Contractor Responsibilities
- Ways to Protect PII
- Reporting PII Incidents
- PII Breach Incident Reporting Brochure
- PII, BII and Privacy Act (PA) Breach Response and Notification Plan
Privacy Laws, Policies & Guidance
General privacy laws, Office of Management and Budget (OMB) privacy policies and guidance, DOC policies, and bureau/operating unit privacy policies.
- General Privacy Laws Governing Federal Agencies
- Office of Management and Budget (OMB) Memoranda
- OMB Circulars
- Bureau/Operating Unit Privacy Policies
- Nature of Information Collected
- Purpose and Use of Information Collected
- Whether and to Whom Information is Disclosed
- Third-Party Social Networking
- Data Retention
- Opt Out
- Consent to Your Information being Collected
Additional privacy resources including contact information, privacy-related templates and brochures, breach response and notification plan, and System of Records Notices (SORNs).
- Contact Information
- Privacy Threshold Analysis Template
- Privacy Impact Assessment Template
- Moving PII and BII Brochure
- Protecting PII and BII during Transmission
- PII Breach Incident Reporting Brochure
- Privacy Impact Assessment (PIA) Brochure
- PII, BII and Privacy Act Breach Response and Notification Plan
- System of Records Notices (SORN)
- Privacy Act
Privacy training opportunities.
- Coming soon
Frequently Asked Questions (FAQ)
Frequently asked questions and factual information about the website.
Thank you for visiting the Department of Commerce Web site, a service of the U.S. Department of Commerce. This policy establishes how we will handle information we learn about you from your visit to our site. Please be assured that the privacy of our visitors is of utmost importance to us. We collect no personally identifiable information about you when you visit our site unless you choose to provide that information to us.
The specific practices outlined in this privacy statement apply to Web sites maintained by or on behalf of the Office of the Secretary of Commerce. Other organizations within the Department of Commerce may have slightly different practices, though the overarching commitment to your privacy will always be the same. You are encouraged to review the privacy policies of other organizations when visiting their Web sites.
Some of our Web pages contain links to Web sites outside the Department of Commerce, including those of other federal agencies, state and local governments, and private organizations. Please be aware that when you follow a link to another site, you are then subject to the privacy policies of the new site.
Your Rights under the Privacy Act
Information concerning the Privacy Act can be found on the following Web site: http://www.pueblo.gsa.gov/cic_text/fed_prog/foia/foia.htm
For each HTTP (which is what your Web browser generates when you request a page or part of a page from a Web site) request received, we collect and store only the following information:
- the date and time
- the originating IP address
- the type of browser and operating system used (if provided by the browser)
- the URL of the referring page (if provided by the browser)
- the object requested
- completion status of the request
- pages visited
How the Information is Used
We use the information that we collect to measure the number of visitors to the different areas of our sites, and to help us make our sites more useful to visitors. This includes analyzing these logs periodically to determine the traffic through our servers, the number of pages served, and the level of demand for pages and topics of interest.
How Long is the Information Retained
The logs may be preserved indefinitely and used at any time and in any way necessary to prevent security breaches and to ensure the integrity of the data on our servers.
Privacy Act System of Records
To better serve our visitors, we use technology to track new and returning visitors actions while on the website. These small files are commonly referred to as "cookies." Our cookies don't not contain any personally-identifiable information. Our web measurement applications compare the behavior of new and returning visitors in the aggregate to help us identify work flows and trends and also resolve common problems on our site. Cookies are small files that Web servers place on a user's hard drive. They can serve several functions:
- they allow the Web site to identify you as a previous visitor each time you access a site;
- they track what information you view at a site (important to the Economics and Statistics Administration to ensure visitors find what they are looking for);
- in the more advanced cases they track your movements through many Web sites but not the whole Web;
- businesses use them for customer convenience to allow them to produce a list of items to buy and pay for them all at one time and to garner information about what individuals are buying at their sites;
- advertisers use them to determine the effectiveness of their marketing and offer insights into consumer preferences and tastes by collecting data from many Web sites; and
- they can be used to help a Web site tailor screens for each customer's preference.
We will retain data the technology makes available only as long as required by law, or specific program need as specified by the National Archives and Records Administration's General Records Schedule 20, which pertains to Electronic Records or other approved records schedule as applicable.
If you are concerned about the potential use of the information gathered from your computer by cookies, you can set your browser to prompt you before it accepts a cookie. You can remove or block the use of web measurement and customization technologies by changing the setting of your browser to block cookies as described at http://www.usa.gov/optout_instructions.shtml.
Personal Information via Forms
Some of our sites provide forms allowing visitors to submit search engine queries, questionnaires, feedback, or other information. Some of these forms may request personally identifiable information (e.g., name, address, e-mail address) for specific purposes, such as when the submitter is requesting a personal response, registering for a conference, or subscribing to a mailing list.
All information submitted by visitors is voluntary
We may store non-personally identifiable information we collect (such as search engine queries and anonymous survey responses) indefinitely to help us better understand and meet the needs of our visitors. We may share non-personally identifiable information with others, including the public, in aggregated form (for instance, in a list of our most popular search engine queries), in partial or edited form (such as in a report summarizing responses to a questionnaire), or verbatim (for example, in a complete listing of survey responses). Before collecting personally identifiable information, we will prominently disclose:
- why we are requesting the information;
- how it will be used;
- how long it may be retained; and
- under what conditions, and with whom, it may be shared.
Consent to Information Collection /Sharing
Generally, we will not share any personally identifiable information you give us with any other government agency, private organization, or the public, except with your consent or as required by law. By pressing the "submit" button, each visitor constitutes consent to use the information for purposes stated in this policy.
How e-mail is Handled
By sending us an electronic mail message (for example, an e-mail message containing an official Freedom of Information Act request), you may be sending us personally-identifying information. In these cases, we may retain the information as long as necessary to respond to your request or otherwise resolve the subject matter of your e-mail. Please be aware that email is not necessarily secure from interception or misdirection. For your own protection you may wish to communicate sensitive information using a method other than email.
We want to be very clear: regardless of the information being transmitted to any unit of the Department of Commerce, we will protect all such information consistent with applicable law including, but not limited to, the Privacy Act of 1974 and the Freedom of Information Act.
For site security purposes and to ensure that this service remains available to all users, this government computer system employs software programs to monitor network traffic to identify unauthorized attempts to upload or change information, or otherwise cause damage to the information on our Web sites. Unauthorized attempts to upload information or change information on this service are strictly prohibited and may be punishable under the Computer Fraud and Abuse Act of 1986 and the National Information Infrastructure Protection Act.
Except for authorized law enforcement investigations, no other attempts are made to identify individual users or their usage habits. Raw data logs are used for no other purposes and are scheduled for regular destruction in accordance with National Archives and Records Administration General Schedule 20.
The Office of the Secretary may share information received from its Web sites with other Federal agencies. For example, if a breach of our IT security protections were to occur, the information collected by our servers and staff could be shared with appropriate law enforcement and Homeland Security officials. Department of Commerce Endorsement Policy: links to web sites outside the U.S. Federal Government or the use of trade, firm, or corporation names within the Department of Commerce web sites are for the convenience of the user. Such use does not constitute an official endorsement or approval by the U.S. Commerce Department of any private sector website, product, or service.
If for some reason you believe this site has not adhered to these principles, please notify Economics and Statistics Administration by e-mail at ESAwebmaster@doc.gov. If our web pages are not fully in compliance with our stated policies, they will be corrected.