Privacy Impact Assessments

A Privacy Impact Assessment (PIA) is an analysis of how personally identifiable information (PII) is collected, used, shared, and maintained by a specific system, program, or tool. The E-Government Act of 2002 requires federal agencies to conduct a PIA prior to developing, procuring, or using information technology to create, collect, use, process, store, maintain, disseminate, disclose, or dispose of PII.

The purpose of a PIA is to demonstrate that program managers and system owners have consciously incorporated privacy protections throughout the development life cycle of a system or program.

By conducting PIAs, the NCUA ensures that:

  • Information collected is used only for the intended purpose;
  • Information collected is timely and accurate;
  • Information is protected according to applicable laws and regulations while in the NCUA's possession;
  • The impact of a system or program on individual privacy is fully addressed; and
  • The public is aware of the information the NCUA collects and how the agency uses the information.

Below are NCUA's key PIAs. If you have any questions, please contact the Senior Agency Official for Privacy.

CAPRIS
CUO
CUSO
ECDR
ePACS
EPSME
ESS
GSS
NCUA Connect
NPW
PASS

The NCUA is committed to providing an excellent user experience to all individuals, including persons with disabilities. If you require an accommodation to access information on or to use this website, contact Section508@NCUA.gov to request one. Please visit the NCUA’s Accessibility Statement for additional information.

Last modified on
12/20/22