A Brief History of US Federal Data Privacy Laws

This is a brief timeline of US related data privacy laws and policies

The major US Laws are represented by a red banner. ;xNLx;;xNLx;Memos from the Office of Management & Budget (the primary agency for many data privacy concerns) directing policy are highlighted with yellow banners

Federal Advisory Committee Act (FACA) Defines how federal advisory committees operate.

HEW report - “Records, Computers and the Rights of Citizens" The US Dept of Health, Education and Welfare releases its report which establishes 5 Fair Information Practice Principles:

Family Educational Rights & Privacy Act (FERPA) Protects the privacy of student education records

US Federal Privacy Act 1st major data privacy legislation. Office of Management & Budget (OMB) is chosen to provide oversight of data privacy policy.

Government in Sunshine Act Specifies that 'every portion of every meeting of an agency shall be open to public observation’.

Foreign Intelligence Surveillance Act (FISA) Describes process for requesting judicial authorization for electronic surveillance & physical search of persons engaged in espionage or terrorism against the US

Computer Matching & Privacy Protection Act Amended the Privacy Act of 1974 by adding certain protections for those whose records are used in automated matching programs.

Paperwork Reduction Act Reduces the total amount of paperwork burden the federal government imposes on private businesses and citizens

HIPPA Health Insurance Portability & Accountability Act (HIPAA) enacted to protect the privacy of individually identifiable health information

M-99-18 Privacy Policies on Federal Web Sites

Children’s Online Privacy Protection Act (COPPA) Protects children under the age of 13 from collection of PII

OMB A-130 Management of Federal Information Resources

OMB Memo April 7, 2010 Social Media, Web-Based Interactive Technologies, and the Paperwork Reduction Act

Data Quality Act Focuses on ensuring and maximizing the quality, objectivity, utility, and integrity of information

Federal Information Security Management Act (FISMA) Enacted as Title III of the E-Government Act

Confidential Information Protection and Statistical Efficiency Act (CIPSEA) Enacted as Title V of the E-Government Act

E-Government Act Enhances the management and promotion of electronic Government services and processes

M-03-22 OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002

M-04-04 E-Authentication Guidance for Federal Agencies

M-04-26 Personal Use Policies and "File Sharing" Technology

M-05-08 Designation of Senior Agency Officials for Privacy

M-06-16 Protection of Sensitive Agency Information

M-06-19 Reporting Incidents Involving PII and Incorporating the Cost for Security in Agency IT Investments

M-07-16 Safeguarding Against and Responding to the Breach of Personally Identifiable Information

HITECH Health Information Technology for Economic & Clinical Health Act (HITECH) promotes the adoption and meaningful use of health information technology

M-10-06 Open Government Directive

M-10-23 Guidance for Agency Use of 3rd Party Websites and Applications

M-10-22 Guidance for Online Use of Web Measurement and Customization Technologies