Attention A T users. To access the menus on this page please perform the following steps. 1. Please switch auto forms mode to off. 2. Hit enter to expand a main menu option (Health, Benefits, etc). 3. To enter and activate the submenu links, hit the down arrow. You will now be able to tab or arrow up or down through the submenu options to access/activate the submenu links.

VA Privacy Service

Menu
 

VA Privacy Policies

VA Privacy Service ensures that VA policies comply with Federal regulatory requirements and legislative mandates and it promulgates those policies throughout VA.

VA Code of Fair Information Principles (pdf)

VHA Notice of Privacy Practices

VHA Directive 1605.01 Privacy and Release of Information, 10P2C - Health Information Governance

Handbook 6300.4, Procedures for Processing Requests for Records Subject to the Privacy Act

VA Handbook 6300.5, Procedures for Establishing & Managing Privacy Act Systems of Records

VA Handbook 6500 - Risk Management Framework for VA Information Systems and Information Security Program

Directive 6502, VA Enterprise Privacy Program

Directive 6502.3, Web Page Privacy Policy

Handbook 6502.3, Webpage Privacy Policy

VA Handbook 6502.4, Procedures for Matching Programs

Directive 6507, Reducing the Use of Social Security Numbers

Handbook 6507.1, Acceptable uses of the Social Security Number (SSN) and the VA SSN Review Board

Directive 6508, Implementation of Privacy Threshold Analysis and Privacy Impact Assessment

Handbook 6508.1, Procedures for Privacy Threshold Analysis and Privacy Impact Assessment

Directive 6509, Duties of Privacy Officers

Directive 6511, Presentations Displaying Personally-Identifiable Information

Directive 6515, Social Media for Web-based Collaboration Tools

Directive 6609, Mailing of Sensitive Personal Information

Publicly Available Agency Reports on Privacy

Quarterly Report to Congress on Data Incidents: https://www.va.gov/about_va/va_notices.asp

Annual Report of Matching Program Activities to OMB: https://www.oprm.va.gov/privacy/cma.aspx

Privacy Laws Governing the Public Sector

American Recovery and Reinvestment Act of 2009, Title 13 - Health Information Technology for Economic and
Clinical Health (HITECH) Act

The Privacy Act of 1974

The Computer Matching and Privacy Protection Act

The eGovernment Act of 2002

The Freedom of Information Act

The Paperwork Reduction Act

The Right to Financial Privacy Act

The Privacy Protection Act of 1980

Health Insurance Portability And Accountability Act Of 1996

The Family Educational Rights and Privacy Act

The Electronic Communications Privacy Act

The Driver's Privacy Protection Act

Office of Management and Budget (OMB) Guidance

OMB evaluates the effectiveness of agency programs, policies, and procedures, assesses competing funding demands among agencies, and sets funding priorities. It also provides agency guidance on privacy reporting requirements, computer data matching and personal privacy.

OMB Memorandum 17-26, Reducing Burden for Federal Agencies by Rescinding and Modifying OMB Memoranda

OMB Memorandum 10-23

OMB “Cookie” Policy

OMB Memorandum 10-22

OMB Memorandum 07-16, Safeguarding Against and Responding to the Breach of Personally Identifiable Information

OMB Memorandum 06-19, Reporting Incidents Involving Personally Identifiable Information Incorporating the
Cost for Security in Agency Information Technology Investments

OMB Memorandum 06-16, Protection of Sensitive Agency Information

OMB Memorandum 06-15, Safeguarding Personally Identifiable Information

OMB Memorandum 05-08, Designation of Senior Agency Officials for Privacy

OMB Memorandum 03-22

OMB Memorandum 99-18

Other OMB Guidelines

Veterans Confidentiality Statutes

Title 38 United States Code -Section 5701, Confidential Nature of Claims

Title 38 United States Code -Section 5705, Confidentiality of Medical Quality-Assurance Records

Title 38 United States Code -Section 7332, Confidentiality of Certain Medical Records

return to top go