A Privacy Impact Assessment (PIA) is an analysis of how personally identifiable information (PII) is collected, used, shared, and maintained by a specific system, program, or tool. The E-Government Act of 2002 requires federal agencies to conduct a PIA prior to developing, procuring, or using information technology to create, collect, use, process, store, maintain, disseminate, disclose, or dispose of PII.
The purpose of a PIA is to demonstrate that program managers and system owners have consciously incorporated privacy protections throughout the development life cycle of a system or program.
By conducting PIAs, the NCUA ensures that:
- Information collected is used only for the intended purpose;
- Information collected is timely and accurate;
- Information is protected according to applicable laws and regulations while in the NCUA's possession;
- The impact of a system or program on individual privacy is fully addressed; and
- The public is aware of the information the NCUA collects and how the agency uses the information.
Below are NCUA's key PIAs. If you have any questions, please contact the Senior Agency Official for Privacy.
CAPRIS (opens new window)
CUO (opens new window)
CUSO (opens new window)
ECDR (opens new window)
ePACS (opens new window)
EPSME (opens new window)
ESS (opens new window)
GSS (opens new window)
NCUA Connect (opens new window)
NPW (opens new window)
PASS (opens new window)