b"<html>\n<title> - PRIVACY IN THE HANDS OF THE GOVERNMENT: THE PRIVACY OFFICER FOR THE DEPARTMENT OF HOMELAND SECURITY</title>\n<body><pre>[House Hearing, 108 Congress]\n[From the U.S. Government Printing Office]\n\n\n\n  PRIVACY IN THE HANDS OF THE GOVERNMENT: THE PRIVACY OFFICER FOR THE \n                    DEPARTMENT OF HOMELAND SECURITY\n\n=======================================================================\n\n                                HEARING\n\n                               BEFORE THE\n\n                            SUBCOMMITTEE ON\n                   COMMERCIAL AND ADMINISTRATIVE LAW\n\n                                 OF THE\n\n                       COMMITTEE ON THE JUDICIARY\n                        HOUSE OF REPRESENTATIVES\n\n                      ONE HUNDRED EIGHTH CONGRESS\n\n                             SECOND SESSION\n\n                               __________\n\n                           FEBRUARY 10, 2004\n\n                               __________\n\n                             Serial No. 85\n\n                               __________\n\n         Printed for the use of the Committee on the Judiciary\n\n\n    Available via the World Wide Web: http://www.house.gov/judiciary\n\n\n                                 ______\n\n                    U.S. GOVERNMENT PRINTING OFFICE\n91-751                      WASHINGTON : DC\n____________________________________________________________________________\nFor Sale by the Superintendent of Documents, U.S. Government Printing Office\nInternet: bookstore.gpo.gov  Phone: toll free (866) 512-1800; (202) 512\xef\xbf\xbd091800  \nFax: (202) 512\xef\xbf\xbd092250 Mail: Stop SSOP, Washington, DC 20402\xef\xbf\xbd090001\n\n                       COMMITTEE ON THE JUDICIARY\n\n            F. JAMES SENSENBRENNER, Jr., Wisconsin, Chairman\nHENRY J. HYDE, Illinois              JOHN CONYERS, Jr., Michigan\nHOWARD COBLE, North Carolina         HOWARD L. BERMAN, California\nLAMAR SMITH, Texas                   RICK BOUCHER, Virginia\nELTON GALLEGLY, California           JERROLD NADLER, New York\nBOB GOODLATTE, Virginia              ROBERT C. SCOTT, Virginia\nSTEVE CHABOT, Ohio                   MELVIN L. WATT, North Carolina\nWILLIAM L. JENKINS, Tennessee        ZOE LOFGREN, California\nCHRIS CANNON, Utah                   SHEILA JACKSON LEE, Texas\nSPENCER BACHUS, Alabama              MAXINE WATERS, California\nJOHN N. HOSTETTLER, Indiana          MARTIN T. MEEHAN, Massachusetts\nMARK GREEN, Wisconsin                WILLIAM D. DELAHUNT, Massachusetts\nRIC KELLER, Florida                  ROBERT WEXLER, Florida\nMELISSA A. HART, Pennsylvania        TAMMY BALDWIN, Wisconsin\nJEFF FLAKE, Arizona                  ANTHONY D. WEINER, New York\nMIKE PENCE, Indiana                  ADAM B. SCHIFF, California\nJ. RANDY FORBES, Virginia            LINDA T. SANCHEZ, California\nSTEVE KING, Iowa\nJOHN R. CARTER, Texas\nTOM FEENEY, Florida\nMARSHA BLACKBURN, Tennessee\n\n             Philip G. Kiko, Chief of Staff-General Counsel\n               Perry H. Apelbaum, Minority Chief Counsel\n                                 ------                                \n\n           Subcommittee on Commercial and Administrative Law\n\n                      CHRIS CANNON, Utah Chairman\n\nHOWARD COBLE, North Carolina         MELVIN L. WATT, North Carolina\nJEFF FLAKE, Arizona                  JERROLD NADLER, New York\nJOHN R. CARTER, Texas                TAMMY BALDWIN, Wisconsin\nMARSHA BLACKBURN, Tennessee          WILLIAM D. DELAHUNT, Massachusetts\nSTEVE CHABOT, Ohio                   ANTHONY D. WEINER, New York\nTOM FEENEY, Florida\n\n                  Raymond V. Smietanka, Chief Counsel\n\n                        Susan A. Jensen, Counsel\n\n                        Diane K. Taylor, Counsel\n\n                  James Daley, Full Committee Counsel\n\n                   Stephanie Moore, Minority Counsel\n\n\n                            C O N T E N T S\n\n                              ----------                              \n\n                           FEBRUARY 10, 2004\n\n                           OPENING STATEMENT\n\n                                                                   Page\nThe Honorable Chris Cannon, a Representative in Congress From the \n  State of Utah, and Chairman, Subcommittee on Commercial and \n  Administrative Law.............................................     1\nThe Honorable Melvin L. Watt, a Representative in Congress From \n  the State of North Carolina, and Ranking Member, Subcommittee \n  on Commercial and Administrative Law...........................     2\n\n                               WITNESSES\n\nMs. Nuala O'Connor Kelly, Chief Privacy Officer, United States \n  Department of Homeland Security, Washington, DC\n  Oral Testimony.................................................     6\n  Prepared Statement.............................................     9\nThe Honorable James S. Gilmore, III, President, USA Secure \n  Corporation, Washington, DC\n  Oral Testimony.................................................    13\n  Prepared Statement.............................................    16\nMs. Sally Katzen, Visiting Professor, University of Michigan Law \n  School, Ann Arbor, MI\n  Oral Testimony.................................................    21\n  Prepared Statement.............................................    22\nJames Dempsey, Esquire, Executive Director, Center for Democracy \n  and Technology, Washington, DC\n  Oral Testimony.................................................    25\n  Prepared Statement.............................................    27\n\n                                APPENDIX\n               Material Submitted for the Hearing Record\n\nLetter and questions submitted by the Honorable Chris Cannon, to \n  Ms. Nuala O'Connor Kelly, Chief Privacy Officer, U.S. \n  Department of Homeland Security................................    43\n\n \n  PRIVACY IN THE HANDS OF THE GOVERNMENT: THE PRIVACY OFFICER FOR THE \n                    DEPARTMENT OF HOMELAND SECURITY\n\n                              ----------                              \n\n\n                       TUESDAY, FEBRUARY 10, 2004\n\n                  House of Representatives,\n                         Subcommittee on Commercial\n                            and Administrative Law,\n                                Committee on the Judiciary,\n                                                    Washington, DC.\n    The Subcommittee met, pursuant to notice, at 3:02 p.m., in \nRoom 2141, Rayburn House Office Building, Hon. Chris Cannon \n(Chair of the Subcommittee) presiding.\n    Mr. Cannon. Thank you all for coming out.\n    Let me begin by hereby welcoming our esteemed witnesses, \nsome of whom I've had the pleasure of working with on privacy \nissues and other matters over the years.\n    I also want to note that immediately following the hearing \nwe have scheduled a markup of H.R. 338, the ``Defense of \nPrivacy Act.'' Indeed, if we have a critical mass of Members to \nreport that bill, we may recess this hearing briefly to \naccomplish that task.\n    The title of today's hearing, Privacy in the Hands of \nGovernment: The Privacy Officer for the Department of Homeland \nSecurity, clearly sets out what we plan to examine this \nafternoon. We will review the work and responsibility of the \nDepartment's Privacy Officer and consider whether the statute \ncreating this position sufficiently addresses concerns about \nthe Department's handling of personally identifiable \ninformation.\n    We will also examine how the Department has met the rather \ndaunting challenge of detecting and deterring terrorism while \nsafeguarding Americans from unwanted or unwarranted \nGovernmental intrusion. I suppose all intrusion is unwanted. A \nlot of it is, in fact, unwarranted.\n    For those of you don't know, the creation of the Privacy \nOfficer Position in the Department of Homeland Security marked \nthe first time that Congress statutorily mandated a Federal \nagency to appoint a senior official to be primarily responsible \nfor privacy policy and compliance matters. Indeed, this \nSubcommittee, with the support of our Chairman, Jim \nSensenbrenner, played a major role in ensuring that the \nlegislation establishing the Department of Homeland Security \nnot only mandated the appointment of a Privacy Officer, but \nspecified the officer's responsibilities. This was done in \nresponse to concerns expressed on a bipartisan basis about the \nanticipated agency's ability to collect, manage, share, and \nsecure personally identifiable information.\n    One of the principal statutory responsibilities of the DHS \nPrivacy Officer, as set out by statute, is the duty to assure--\nto assure that the use of technologies sustain and do not erode \nprivacy protections relating to the use, collection, and \ndisclosure of personal information.\n    In addition, the Privacy Officer must assure that personal \ninformation is handled in full compliance with the Privacy Act \nand assess the effect on privacy of the Department's proposed \nrules. These are two of the areas that we hope to focus on \nduring the course of today's hearing.\n    Pursuant to this legislation, Department of Homeland \nSecurity Tom Ridge last April appointed Nuala O'Connor Kelly to \nserve as the Department's Privacy Officer. Since her \nappointment, Ms. O'Connor Kelly has played an active role in \nvarious terrorist detective initiatives undertaken by DHS. One \nof those projects has been the Computer-Assisted Passenger \nPrescreening System, also known as CAPPS II, which is intended \nto improve airline security.\n    In addition, Ms. O'Connor Kelly prepared a privacy impact \nassessment for the United States Visitor and Immigration Status \nIndicator Technology Program, also known as the US-VISIT \nprogram. This program consists of an integrated entry and exit \ndata system designed to record the entry into and exit out of \nthe United States by noncitizens. Last month, US-VISIT entry \nprocedures became operational at 115 airports and 14 seaports \ntogether with a pilot test of biometric identification \nprocedures at one airport and one seaport\n    I should note that today's hearing is one in a series the \nSubcommittee will hold on the issue of privacy in the hands of \nGovernment.\n    I now turn to my colleague, Mr. Watt, the distinguished \nRanking Member of the Subcommittee and ask him if he has any \nopening remarks?\n    Mr. Watt. Thank you, Mr. Chairman.\n    Mr. Cannon. The gentleman is recognized for 5 minutes.\n    Mr. Watt. Thank you, Mr. Chairman, for convening this \nhearing today. It must be my day to deal with privacy and \nidentity theft issues. I'll tell you what has transpired today.\n    I was seated in a meeting with representatives from various \nGovernment agencies, one of which was Social Security. And one \nof their complaints was that Government work is being \ncontracted out to private companies who don't have the kind of \nresponsibility for overseeing privacy and preventing identity \nleft. That meeting lasted for about 20, 30 minutes. During that \nmeeting three things happened.\n    One, I got placed on my desk the comments for this meeting \nhere this afternoon, which I haven't had a chance to review \nvery thoroughly but I'm going to take a stab at them when I get \nback to the formal part of this presentation.\n    Second, I got placed on my desk a message from a newspaper \nreporter at the Charlotte Observer--which is in my \nCongressional district in Charlotte, North Carolina--with an \nattached article which says a Charlotte temporary employment \nagency left more than 20 boxes filled with hundreds of job \napplications on the curbside for the better part of a day \nSunday and Monday. And goes on to ask me if I have any comments \nto make about that.\n    Then I got placed on my desk, during that same meeting, a \nletter from our minority leader asking me to join in a letter \nto the president expressing concerns about the way the CAPPS II \nprogram is being--playing itself out and asking the \nAdministration to pay more attention to the dissemination of \npersonal information.\n    This is a multidimensional problem, not only Government \ninformation that we are gathering but private information. \nWe've tried to attack it in various compartmentalized ways \nthrough Fair Credit Reporting Act in the Financial Services \nCommittee on which I sit, through various things in this \nJudiciary Committee, but this is--this already difficult issue \nhas been complicated by the events of September 11. And since \nthen our country has been confronted with the dual aspiration \nof ensuring the security of our homeland and at the same time \npreserving and securing the Civil Rights and liberties that \nmake our homeland free and unique.\n    The creation of the Department of Homeland Security was \nhistoric. Homeland Security Act of 2002 created an agency with \nthe primary responsibility of preventing terrorist attacks in \nthe United States, reducing our vulnerability to such attacks, \nminimizing damage due to any attack, and assisting in our \nability to recover from those attacks.\n    My concern here today however is that the Department not be \nso vigilant in its terrorist prevention and terrorist detection \nduties that it undermines our individual freedoms.\n    Just last May the GAO described the Department of Homeland \nSecurity's responsibilities to include ``the coordination and \nsharing of information related to threats of domestic terrorism \nwithin the Department and with and between other Federal \nagencies, State and local governments, the private sector, and \nother entities''.\n    The report recognized that to accomplish this mission the \nDepartment of Homeland Security must access, receive and \nanalyze law enforcement information, intelligence information, \nand other threat incident and vulnerability information from \nFederal and non-Federal sources.\n    Recent newspaper reports indicate that questionable \ninformation sharing occurred between JetBlue and Northwest \nAirlines and law enforcement in order to implement the CAPPS II \nComputer-Assisted Passenger Prescreening System designed to \nprescreen airline passengers. Despite the existence of a \nPrivacy Officer within the Department of Homeland Security, the \nJetBlue and Northwest Airline collaboration with the Government \nraises serious privacy issues because although these private \nentities may have their own privacy policies they are not \nsubject to the constraints of the Privacy Act.\n    This circumstance may lead to a gaping hole in safeguarding \nthe improper dissemination of personal information. This is a \nhole that I personally tried to plug last year during the \nJudiciary Committee's consideration of H.R. 4598, the Homeland \nSecurity Information Sharing Act. That bill, which did pass the \nHouse and has not passed the Senate, would have authorized \nFederal, State and local entities, including private actors, to \nshare information to the fullest extent possible in the \ninterest of national security. During its consideration I \noffered an amendment to the bill that would have placed \nconstraints on the dissemination of personal information which \nwould have prohibited any unauthorized use and that amendment \npassed in this Committee.\n    As we listen to the testimony today, I am interested in \ndetermining whether it would be useful to resurrect at least \nthe spirit of H.R. 4598 by ensuring that American citizens and \nthose traveling within our borders are fully aware of how their \npersonal information will be collected, used, and disseminated \nby whatever source in the name of national security.\n    And that, coincidentally, is exactly what the letter from \nour minority leadership is encouraging the president to focus \nhis attention on and I'm sure that new Privacy Officer will \nbe--it will filter to you at some point.\n    So we are delighted to have you here and I appreciate the \nChairman calling this hearing. He's known for getting on top of \nthese things when they are topical and interesting and covering \nmany fronts and being in front of the curve, not only reactive \nbut being proactive.\n    So I appreciate the Chairman getting this convened today, \nlook forward to the witnesses' testimony and to the markup.\n    Mr. Cannon. I thank the gentleman for those kind comments \nand I appreciate his bipartisan support. These are important \nissues that we need to actually move on.\n    Without objection, the gentleman's entire statement will be \nplaced in the record.\n    Also, without objection, all Members may place their \nstatements in the record at this point. Any objection?\n    Hearing none, so ordered.\n    Without objection, the Chair will be authorized to declare \nrecesses of the Subcommittee today at any point.\n    Hearing none, so ordered.\n    I also ask unanimous consent that Members have five \nlegislative days to submit written statements for inclusion in \ntoday's hearing record. So ordered.\n    Are there further opening statements? Mr. Coble?\n    Mr. Coble. No opening statement, Mr. Chairman.\n    Mr. Cannon. Thank you.\n    I'm pleased to introduce the witnesses for today's hearing. \nOur first witness is Nuala O'Connor Kelly, the Chief Privacy \nOfficer of the Department of Homeland Security. Ms. O'Connor \nKelly was appointed to her current position on April 16, 2003. \nJust prior to her appointment she served as the Chief Privacy \nOfficer at the Commerce Department.\n    Before entering public service, Ms. O'Connor Kelly was the \nVice President for Data Protection and Chief Privacy Officer \nfor Doubleclick, an online media services company, that she \nrescued with her privacy policies. I add that as a personal \nnote. In that capacity, Ms. O'Connor Kelly established that \ncompany's first data protection department and was responsible \nfor instituting privacy protection policies and procedures for \nDoubleclick, its clients and partners.\n    Ms. O'Connor Kelly received her undergraduate degree from \nPrinceton University and masters degree in education from \nHarvard University and a law degree from Georgetown University \nLaw Center.\n    Our second witness is the Honorable James Gilmore, the \nformer Governor of the Commonwealth of Virginia. Governor \nGilmore, as you will recall, has previously shared with this \nSubcommittee his vast expertise on technology and Internet \npolicy matters for which we are deeply grateful.\n    Today Governor Gilmore appears on behalf of USA Secure \nCorporation, a nonpartisan, not-for-profit think tank which he \nfounded. USA Secure is comprised of technology and \ninfrastructure companies that are affected by and participate \nin homeland security. It provides a forum for its members to \ndevelop integrated solutions regarding homeland security \nissues.\n    Of particular relevance to today's hearing is Governor \nGilmore's service as the Chairman of the Congressional Advisory \nPanel to Assess the Capabilities for Domestic Response to \nTerrorism Involving Weapons of Mass Destruction, all also known \nas the Gilmore Commission. The Commission was established by \nCongress to assess Federal, State and local Government's \ncapabilities to respond to the consequences of a terrorist \nattack. The Gilmore Commission, which recently submitted its \nfinal report to the President and Congress, was influential in \ndeveloping the Department of Homeland Security.\n    Governor Gilmore received his undergraduate degree in \nforeign affairs from the University of Virginia and, after a 3-\nyear tour as a U.S. Army counterintelligence agent in West \nGermany, obtained his law degree at the University of Virginia \nLaw School.\n    He continues to demonstrate his dedication to homeland \nsecurity and technology issues as a partner of the law firm of \nKelley, Drye, Warren here in Washington, D.C.\n    Our next witness is Professor Sally Katzen of the \nUniversity of Michigan Law School. We understand the Professor \nKatzen appears today solely in her personal capacity and not on \nbehalf of the University of Michigan or any other entity.\n    Prior to joining academia in 2001, Professor Katzen was \nresponsible for developing privacy policy for the Clinton \nadministration for nearly a decade. As the Administrator of the \nOffice of Information and Regulatory Affairs of the Office of \nManagement and Budget, she was effectively the chief \ninformation policy official for the Federal Government. Her \nresponsibilities included developing the Federal privacy \npolicies, including implementation of the 1974 Privacy Act.\n    Professor Katzen later served as Deputy Assistant to the \nPresident for Economic Policy and Deputy Director of the \nNational Economic Counsel in the White House. Thereafter she \nbecame the Deputy Director for Management at OMB.\n    Before embarking on her public service career, Professor \nKatzen was a partner in the Washington, D.C. law firm of \nWilmer, Cutler and Pickering, where she specialized in \nregulatory and legislative matters.\n    Professor Katzen graduated magna cum laude from Smith \nCollege and magna cum laude from the University of Michigan Law \nSchool where she was editor-in-chief of the Law Review. \nFollowing graduation from law school, she clerked for Judge J. \nSkelly Wright of the United States Court of Appeals for the \nDistrict of Columbia Circuit\n    Our final witness is Jim Dempsey, a Judiciary Committee \nalum who we are pleased to welcome back. Mr. Dempsey is \ncurrently the Executive Director of the Center for Democracy \nand Technology where he specializes in privacy and electronic \nsurveillance issues.\n    Before joining the Center, Mr. Dempsey was the Deputy \nDirector of the Center for National Security Studies and also \nserved as Special Counsel to the National Security Archive, a \nnon-governmental organization that uses the Freedom of \nInformation Act to gain the declassification of documents \npertaining U.S. foreign policy.\n    From 1985 to 1994 Mr. Dempsey was Assistant Counsel to the \nHouse Judiciary Committee on Civil and Constitutional Rights. \nMr. Dempsey obtained his undergraduate degree from Yale College \nand his law degree from Harvard Law School.\n    We have a very distinguished panel. I extend to each of you \nmy warm regards and appreciation for your willingness to \nparticipate in today's hearing.\n    In light of the fact that your written statements will be \nincluded in hearing record, I request that you limit your oral \nremarks to 5 minutes. Accordingly, please feel free to \nsummarize and highlight the salient points of your testimony. \nAnd you have a light on--I think you're all familiar with this \nlighting system. It goes yellow when you have a minute left. \nWhen it goes red you don't have to stop, but we'd appreciate it \nif you'd sort of wrap up, if you could, so that Members have \nthe opportunity of asking questions.\n    After all the witnesses have presented their remarks, the \nSubcommittee Members, in the order that they arrive, will be \npermitted to ask questions of the witnesses subject also to the \n5 minute limit.\n    Ms. O'Connor Kelly, would you now proceed with your \ntestimony?\n\n   STATEMENT OF NUALA O'CONNOR KELLY, CHIEF PRIVACY OFFICER, \n UNITED STATES DEPARTMENT OF HOMELAND SECURITY, WASHINGTON, DC\n\n    Ms. O'Connor Kelly. Thank you, Mr. Chairman.\n    Chairman Cannon, Congressman Watt, and Members of the \nSubcommittee, it is my distinct honor to testify before you \ntoday on the activities of the United States Department of \nHomeland Security's Privacy Office, which I am privileged----\n    Mr. Cannon. Ms. O'Connor Kelly, if you wouldn't mind, we \nwill restart your clock, but I think we have a reporting \nquorum. So consistent with our earlier orders, we are going to \nrecess this hearing for a period and try and report out this \nbill. So we will go at this moment to our markup.\n    Do any of you have--I don't think this is going to take a \nlong period of time. Do any of you have significant other \nobligations that we need to meet?\n    Thank you. If you don't mind then, we will be recessed from \nthe hearing and we will open our markup.\n    [Whereupon, at 3:20 p.m., the hearing was recessed, to \nreconvene this same day at 3:35 p.m.]\n    Mr. Cannon. And now, Ms. O'Connor Kelly, we appreciate your \nindulgence and the indulgence of the panel.\n    I would now like to be informed about what is going on in \nthe new world of privacy. Thank you.\n    If you would like to proceed, we will reset the clock.\n    Ms. O'Connor Kelly. Thank you, Mr. Chairman, and thank you \nCongressman Watt and all the Members of the Committee.\n    It is a great pleasure and an honor to be with you today to \ntalk about the Department of Homeland Security's Privacy \nOffice, which I am privileged to lead as the Department's first \nPrivacy Officer.\n    The creation of the Department of Homeland Security and its \nmany programs raise no shortage of important privacy and civil \nliberty issues for this Nation to address. The Department, led \nby Secretary Ridge, and this Administration, led by President \nBush, are committed to addressing these critical issues as we \nseek to strengthen our homeland. A crucial part of this \ncommitment is the mission of the Privacy Office at the \nDepartment of Homeland Security.\n    Before this office officially opened its doors, Secretary \nRidge articulated his vision for our office, stating that the \nPrivacy Office will be involved from the very beginning with \nevery policy initiative and every program initiative that we \nconsider, to ensure that our strategy and our actions are \nconsistent with not only the Federal privacy safeguards already \non the books but also with the individual rights and civil \nliberties protected by our laws and our Constitution.\n    As Members of this Subcommittee are uniquely aware, the \nenabling statute for the Department of Homeland Security \ndirects the Secretary to appoint a senior official in the \nDepartment to assume primary responsibility for privacy policy. \nThat legislation reflects, I believe, a growing sensitivity and \nawareness on the part of our citizens regarding personal data \nflows in the public and in the private sector and the \nparticular concerns surrounding this melding of 22 former \nseparate agencies along with the unique mission and data \ncollection activities that each of those agencies brings.\n    The DHS Privacy Office works to promote best practices with \nrespect to privacy and to infuse fair information principles \nand practices into the DHS culture. A major goal for my tenure \nas Chief Privacy Officer is to operationalized privacy \nthroughout the Department. We are doing this not only by \nworking with Secretary Ridge and our senior policy leadership \nof the various agencies and directorates across the Department \nbut also with our Privacy Act and Freedom of Information Act \nteams, as well as the operational, policy, and program staff \nthroughout the Department.\n    Through internal educational outreach and the establishment \nof internal clearance procedures and milestones for program \ndevelopment we are helping this Department consider privacy \nwhenever developing new programs or revising existing ones. We \nare evaluating the use of new technologies to ensure that \nprivacy protections are considered in the development and \nimplementation of these programs at each stage.\n    In this process Departmental professionals have become \neducated about the need to consider and the framework for \nconsidering that privacy impact of technology decisions. We are \nreviewing Privacy Act systems notices before they are sent \nforward and ensuring that we collect only those records that \nare necessary to support the Department's mission.\n    We also guide Departmental agencies in developing \nappropriate privacy policies for their programs and serve as a \nresource for any questions that arise concerning privacy, \ninformation collection, or disclosure.\n    And the Privacy Office, of course, works closely with \nvarious Departmental policy teams, the Office of General \nCounsel, the Chief Information Officers to ensure that the \nmission of the Privacy Office is reflected in all DHS \ninitiatives.\n    The Privacy Office also seeks to anticipate and to satisfy \npublic needs and expectations by providing a crucial link \nbetween those outside the Department who are concerned about \nthe privacy impact of the Department's initiatives and those \ninside the Department who are diligently working to achieve the \nDepartment's mission.\n    Our role is not only to inform, to educate, and to lead \nprivacy practice within the Department but also to serve as a \nreceptive audience to those outside the Department who have \nquestions or concerns about the Department's operations. To \nthat end, the Privacy Office has engaged in consistent and \nsubstantial outreach efforts to members of the advocacy \ncommunity, industry representatives, other U.S. agencies, \nforeign governments, and most importantly, the American public. \nOur Government and our agency are grounded on principles of \nopenness and accountability tempered, of course, by the need to \npreserve the confidentiality of the most sensitive personal \ncommercial and Governmental information.\n    Our work at the Department Privacy Office is proving that \nit is, in fact, possible to achieve both responsible privacy \npractices and the critical mission of the Department of \nHomeland Security.\n    Issues of privacy and civil liberties are most successfully \nnavigated when the necessary legal, policy, and technological \nprotections are built into the systems or programs from the \nvery beginning. I am often asked whether I view my job as a \nprivacy advocate as at odds with the mission of the Department. \nAnd the answer is, without hesitation, no. As Secretary Ridge \nhas articulated on many occasions, the Department of Homeland \nSecurity's mission is more than just counterterrorism and more \nthan just the protection of people and places and things. It is \nthe protection of our liberties and our way of life.\n    That way of life includes the ability to engage in public \nlife with dignity, autonomy, and a general expectation for \nrespect for personal privacy. Thus, the protection of privacy \nis neither an adjunct nor the antithesis of the mission of the \nDepartment of Homeland Security. Privacy protection is, in \nfact, at the core of that mission.\n    I thank you for your time and the opportunity to testify \nbefore this important Committee and I look forward to hearing \nmy colleagues' testimony and to answering your questions.\n    Thank you.\n    [The prepared statement of Ms. O'Connor Kelly follows:]\n\n               Prepared Statement of Nuala O'Connor Kelly\n\n    Chairman Cannon, Ranking Member Watt, Members of the subcommittee, \nand distinguished colleagues on this panel, it is an honor to testify \nbefore you today on the activities of the United States Department of \nHomeland Security's Privacy Office, which I am privileged to lead as \nthe first Chief Privacy Officer of the Department of Homeland Security.\n    The protection of privacy, of the dignity of the individual, is not \na value that can be added on to this or any other organization later, \nand that is why I am so pleased to have been here from almost the very \nbeginning. This value is one that must be embedded in the very culture \nand structure of the organization. I know that we can and will succeed \nin this--not only because our leadership believes in protecting the \nsanctity of the individual, but also because our over 180,000 employees \nare also great Americans, who believe in and act on these values--for \nthemselves, their neighbors, and their children--each day.\n\n                ESTABLISHMENT OF THE DHS PRIVACY OFFICE\n\n    The creation of the Department of Homeland Security and its many \nprograms raise no shortage of important privacy and civil liberties \nissues for this nation to address. This Department, led by Secretary \nTom Ridge, and this Administration, led by President Bush, are \ncommitted to addressing these critical issues as they seek to \nstrengthen our homeland. A crucial part of this commitment is support \nfor the creation and the mission of the Privacy Office at the \nDepartment of Homeland Security. Secretary Ridge articulated his vision \nfor this office, stating that the privacy office ``will be involved \nfrom the very beginning with every policy initiative and every program \ninitiative that we consider,'' to ensure that our strategy and our \nactions are consistent with not only the federal privacy safeguards \nalready on the books, but also ``with the individual rights and civil \nliberties protected by our laws and our Constitution.''\n    As Members of this subcommittee are uniquely aware, the enabling \nstatute for the Department of Homeland Security contains Section 222, \nwhich directs the Secretary to appoint a senior official in the \nDepartment to assume primary responsibility for privacy policy. This \nincludes conducting and oversight of formal Privacy Impact Assessments \nto ``assure that the use of technologies sustain, and do not erode, \nprivacy protections relating to the use, collection, and disclosure of \npersonal information.'' This office also oversees the Department's \ncompliance with the Privacy Act of 1974 and the Privacy Impact \nAssessment requirements of the Electronic Government Act of 2002, and \nis directed to ``evaluate legislative and regulatory proposals \ninvolving collection, use, and disclosure of personal information by \nthe Federal Government.'' Uniquely and importantly, under the enabling \nstatute, the DHS Chief Privacy Officer provides an annual report to \nCongress on the activities of the Department that affect privacy, \nincluding complaints of privacy violations, implementation of the \nPrivacy Act, internal controls, and other matters.\n\n          KEY LEGAL FRAMEWORKS ENFORCED BY THE PRIVACY OFFICE\n\n    One of the primary legal frameworks underlying the mission of the \nDHS Privacy Office is, obviously, the federal Privacy Act of 1974. The \nPrivacy Act, 5 U.S.C. Sec. 552a, provides a code of fair information \npractices that governs the collection, maintenance, use, and \ndissemination of personal information by federal agencies. Emanating \nfrom concerns about the ability to aggregate personal information--\npartly due to new technologies like mainframe computers of that day--\nthis law provides substantial notice, access, and redress rights for \ncitizens and legal residents of the United States whose information is \nheld by some part of the executive branch of the federal government. \nThe law provides robust advance notice, through detailed ``system of \nrecords'' notices, about the creation of new technological or other \nsystems containing personal information. The law also provides the \nright of access to one's own records, the right to know and to limit \nother parties with whom the information has been shared, and the right \nto appeal determinations regarding the accuracy of those records or the \ndisclosure of those records. The Privacy Act is our country's \narticulation of Fair Information Principles; the Act both protects the \ninformation of our citizens and also provides our citizens rights to \naccess that data.\n    Under the Freedom of Information Act, 5 U.S.C. Sec. 552, the \nprinciple that persons have a fundamental right to know what their \ngovernment is doing is enforced on a daily basis. Almost any person at \nany time has the right to query a federal agency for documents and \nrecords. Our government and our agency are grounded on principles of \nopenness and accountability, tempered, of course, by the need to \npreserve the confidentiality of sensitive personal, commercial, and \ngovernmental information. The Freedom of Information Act is the primary \nstatute that attempts to balance these countervailing public concerns. \nA robust FOIA/PA program is a critical part of any agency's fundamental \nprocesses; it helps to provide assurance to the public that, in \npursuing its mission, an agency will also pursue balanced policies of \ntransparency and accountability while preserving personal privacy. The \nU.S. federal government will spend hundreds of millions of dollars \nprocessing and responding to FOIA requests next year, and thousands of \nfederal workers will spend all or part of their day compiling responses \nto those requests. Our agency alone has over 300 staff members across \nthe Department who work full or part-time on Privacy Act and FOIA \nissues.\n    This past fall, the Office of Management and Budget released its \nguidance under Section 208 of the E-Government Act of 2002--which \nmandates Privacy Impact Assessments for all federal agencies when there \nare new collections of, or new technologies applied to, personally \nidentifiable information. This, really a third pillar of the privacy \nframework at the federal level reflects, once again, a growing reliance \non technology to move data--both in government spaces and on the \nInternet. With the addition of the privacy provisions of the E-\nGovernment Act to existing privacy protections, our citizens now \nbenefit from a comprehensive framework within which government \nconsiders privacy in the ordinary course of business. The Act and \nunderlying guidance synthesize numerous prior statements and guidance \non privacy practices and notices, and will assist privacy practitioners \nin prioritizing their efforts. In particular, the guidance provides \ndirection on the content of privacy policies and on the machine-\nreadability of privacy policies.\n    Further, the act outlines the parameters for privacy impact \nassessments. Although in use by some agencies already, generally \nprivacy impact assessments are a new and important tool in the toolbelt \nof privacy practitioners across the federal government. These new \nrequirements formalize an important principle: that data collection by \nthe government should be scrutinized for its impact on the individual \nand that individual's data . . . and ideally before that data \ncollection is ever implemented. The process, the very exercise of such \nscrutiny, is a crucial step towards narrowly tailoring and focusing \ndata collection towards the core missions of government. This practice \nshould provide even greater awareness, both by those seeking to collect \nthe data and those whose data is collected, of the impact on the \nindividual and the purpose of the collection.\n    I am pleased to have been a small part of the discussions towards \nthe development of guidance on privacy impact assessments. These new \nrequirements set the bar high for privacy practitioners. These \nrequirements also reflect, I believe, a growing sensitivity and \nawareness on the part of our citizens regarding personal data flows in \nthe public and private sectors. I believe that this guidance will allow \nfederal agencies to respond to citizens' concerns about these \nactivities and also to be current with, or perhaps even slightly ahead \nof, the evolution of privacy practices in the private sector.\n    Under the Privacy Act, in concert with the Freedom of Information \nAct and the E-Government Act, citizens, legal residents, and visitors \nto the United States have been afforded almost unequalled transparency \ninto the federal government's activities and the federal government's \nuse of personal information about them. A robust FOIA/PA program is \nimperative to provide the public with assurances that any information \nDHS collects is being maintained consistent with all legal and \nregulatory requirements.\n\nOPERATIONALIZING PRIVACY THROUGHOUT THE DEPARTMENT OF HOMELAND SECURITY\n\nBest Practices through Management Leadership\n    The DHS Privacy Office works to promote best practices with respect \nto privacy and infuse respectful information privacy principles and \npractices for all employees into the DHS culture. A major and \nsubstantial goal at the outset for my tenure is to `operationalize' \nprivacy awareness and best practices throughout DHS, working not only \nwith Secretary Ridge and our senior policy leadership of the various \nagencies and directorates of the department, but also with our Privacy \nAct and FOIA teams, as well as operational staff across the Department.\n\nConsistent Policies and Education Efforts\n    Through internal educational outreach and the establishment of \ninternal clearance procedures, we are sensitizing DHS directorates and \ncomponents to consider privacy whenever developing new programs or \nrevising existing ones. We are reviewing new technologies to ensure \nthat privacy protections are incorporated in the development and \nimplementation of these new systems. Our headquarters staff has been \nreviewing all Privacy Impact Assessments being conducted throughout the \nDepartment. In this process, DHS professionals have become educated \nabout to the need to consider--and the framework for considering--the \nprivacy impact of their technology decisions. We are reviewing Privacy \nAct systems notices before they are sent forward and ensuring that we \ncollect only those records that are necessary to support our mission. \nWe also guide DHS agencies in developing appropriate privacy policies \nfor their programs and serve as a resource for any question that may \narise concerning privacy, information collection or disclosure. We work \nclosely with various DHS policy teams, the Office of the General \nCounsel, and the Chief Information Officers to ensure that the mission \nof the Privacy Office is reflected in all DHS initiatives. And of \ncourse we also work in concert with the Department's Office for Civil \nRights and Civil Liberties, which is the other statutorily mandated \noffice at DHS Headquarters with an individual liberties focus.\n\nIntegrated Privacy and Disclosure Mandates\n    The work of the Privacy Office includes not only the statutory \nPrivacy Act and Privacy Impact Assessement work, but also integrates \nFreedom of Information Act oversight for the Department. This \nadditional responsibility was redelegated to the Privacy Office last \nsummer by Secretary Ridge, in recognition of the close connection \nbetween privacy and disclosure laws, and the functional synergies of \nthe work of our Privacy Act and FOIA specialists across the Department.\n\n                TRANSPARENCY AND OUTREACH TO THE PUBLIC\n\n    The DHS Privacy Office also seeks to anticipate and satisfy public \nneeds and expectations, by providing a crucial link between those \noutside DHS who are concerned about the privacy impact of the \nDepartment's initiatives, and those inside the Department who are \ndiligently working to achieve the Department's mission. Our role is not \nonly to inform, educate, and lead privacy practice within the \nDepartment, but also to serve as listeners and as a receptive audience \nto those outside the Department who have questions or concerns about \nthe Department's operations. To that end, my office has engaged in \nconsistent and substantial outreach efforts to members of the advocacy \ncommunity, industry representatives, other U.S. agencies, foreign \ngovernments, and most importantly, the American public, not only to \ninform and educate those constituencies, but also, even more \nimportantly, to hear their concerns, to share those concerns with the \nDepartment's leadership, and to see that those concerns are addressed \nin our programs and in the development of our policies. Recent coverage \nof our privacy program, in particular our Privacy Impact Assessment, or \nPIA, of the US-VISIT program, demonstrated how information-collection \nefforts, especially those employing new or unfamiliar technology, can \nbe done in a privacy-sensitive way. Operationally, this particular PIA \ndemonstrated an effective internal system whereby staff from across the \ndepartment worked together to create a document that was at once \ntechnologically detailed and also reader-friendly.\n\n                         KEY POLICY CHALLENGES\n\nThe Use of Private-Sector Data\n    I can think of no more compelling public policy issue, particularly \none that affects the privacy of our citizens and visitors to this \ncountry, than the sharing of personal information between the public \nand private sector. It is one that has been successfully--and less \nsuccessfully--navigated by other agencies within the Federal \ngovernment, and it is one that we examine and grapple with in programs \nwithin every single directorate and agency within the Department of \nHomeland Security almost every day.\n    It is the Privacy Office's role to facilitate this conversation \nabout and this examination of the responsible uses of information by \ngovernment agencies within DHS. That role sometimes requires us to \nencourage, and even force conversation between those who label \nthemselves as being concerned only with privacy, and those who consider \nthemselves all about security. I challenge those who feel the need to \nbe one or the other. It is, in fact, possible, to achieve both \nresponsible privacy practices and achieve the mission of the Department \nof Homeland Security. Issues of privacy and civil liberties are most \nsuccessfully navigated when the necessary legal and policy protections \nare built in to the systems or programs from the very beginning--both \nin the intelligent use of technology, and in the responsible execution \nof programs. Further, clear rules--both in the private sector and in \nthe public sector--are necessary to ensure that such information \nsharing is done in a legitimate, respectful, and limited fashion.\n\nInternational Cooperation\n    A key focus of the Privacy Office's work has been to engage the \ndata protection authorities internationally. Privacy professionals the \nworld over share a common interest in assuring public trust in \ngovernment operations by encouraging transparency, as well as respect \nfor fair information principles such as collection limitation, purpose \nspecification, use limitation, data quality, security safeguards, \nopenness, participation, and accountability. Our office has \nparticipated in the meetings of the International Association of Data \nProtection and Privacy Commissioners, although the office is not \nrecognized at this time as an accredited data protection authority. We \nhave also worked cooperatively with data protection authorities, or \nDPAs, to enable cross-border dispute resolution of personal data \nissues. Our office is both a point of appeals for complaints about our \nvarious directorates' programs, and also a point of contact for our \ninternational counterparts, whether acting to communicate policy \nconcerns or individual citizens' complaints.\n\n              BALANCING THE NEED FOR TRANSPARENCY AND THE \n                    NEED FOR SECURITY IN OPERATIONS\n\n    Perhaps the most difficult issue in a law enforcement or counter-\nterrorism context is the need to afford transparency and access to \ninformation for individuals, while also safeguarding information that \nis essential to an ongoing investigation of some type. Our office seeks \nto assist the agency in achieving this balance in a number of ways. \nFirst, rules and procedures for accessing information must be clear, \neasily attainable by individuals, and easily understood. Second, \ndeterminations that information is sensitive or otherwise protected \nmust be narrowly tailored and well grounded. Third, systems must be in \nplace whereby individuals can be assisted in correcting information \nthat may impact them in some way, even when that information is deemed \nprotected. An example of this is the use of citizen advocates or \nombudsmen, where by government employees who have security clearance or \naccess to information act on behalf of individuals to correct \nmisidentifications or incorrect information that is associated with an \nindividual. In addition, these processes must be efficient and \nminimally burdensome on the individual, and must provide for an appeal \nor further redress process that is adequately independent to ensure \nfairness for the individual. These processes exist in certain places \nwithin our Department, and should be implemented where personal \ninformation is collected by the government and used in a way that \nimpacts the individual. The DHS Privacy Office plays a role in \nperforming that independent review and appeal process for our \ndirectorates and citizens.\n\n                       THE DEFENSE OF PRIVACY ACT\n\n    The DHS Privacy Office applauds the subcommittee for its interest \nin privacy issues, and even more, privacy practices across the federal \ngovernment. We in government are often quick to point to private-sector \nlapses in privacy policy, and we should be equally vigilant about our \nown use of personal data. While the federal government benefits from \nthe requirements of the Privacy Act of 1974, it is also true that new \ntechnologies have allowed data sharing in new and perhaps unexpected \nways. The Privacy Impact Assessment requirements of the E-Government \nAct of 2002 recognize these new technological challenges and seek to \nprovide reader-friendly information about such data collections in a \nnew and perhaps more technologically savvy fashion.\n    The proposed Defense of Privacy Act shares many similarities with \nthe PIA requirements under the E-Government Act, ones that are worth \nnoting, such as the need for a ``senior agency official with primary \nresponsibility for privacy policy.'' While the need for a statutory \nprivacy officer at DHS may be virtually unique in the federal \ngovernment, given the agency's size and the co-mingling of parts of \nmore than 22 former federal agencies, the need for senior policy \nleadership at any agency that affects public data is certainly \nrecognized.\n    Further, the Act does clarify the timing of PIAs, to be both a \nprospective document, issued at the NPRM stage, and a final document, \nissued in response to public comments. We at DHS have, and fully intend \nto continue to publish PIAs for public comment and we believe that this \npublic dialogue is essential to our understanding of public concerns \nabout DHS programs. I should note that the Administration continues to \nreview this legislation, and we may have additional comments at a later \ntime.\n\n                       INTERNAL AND EXTERNAL ROLE\n\n    I am often asked whether I view my job as a privacy advocate and \nthus at odds with the activities of the Department. The answer is \nabsolutely not. As Secretary Ridge has articulated on many occasions, \nthe Department of Homeland Security's mission is more than just \ncounter-terrorism, more than just the protection of people and places \nand things. It is also the protection of our liberties and our way of \nlife, and that includes the ability to engage in public life with \ndignity, autonomy, and a general expectation of respect for personal \nprivacy. Thus, the protection of privacy is neither an adjunct nor the \nantithesis to the mission of the Department of Homeland Security. \nPrivacy protection, in fact, is at the core of that mission.\n    I am very much in agreement with the statutory definition of my \noffice's position as being both ``within'' and ``without'' the \nDepartment of Homeland Security. As part of the department, we are able \nto serve as educators, as leaders, and as full participants in the \npolicy direction of important programs. And as outsiders, we are able \nto turn a critical eye on the most controversial and the most mundane \naspects of the Department's operations. But I do not position my office \nas the enemy of the mission of this department. Rather, I see it as \ncrucial, fundamental to successfully achieving that mission.\n    On a daily basis, I am aware of what it means to set parameters for \nthe federal government's use of personal information--information that \nhas been given to us in our capacity as the provider of services, as \nthe caretaker of the public's physical security, and, most importantly, \nthe custodian of the public's trust. Secretary Ridge has said that \n``Fear of government abuse of information . . . is understandable, but \nwe cannot let it stop us from doing what is right and responsible.'' \nThe antidote to fear, as he has said, ``is an open, fair, and \ntransparent process that guarantees the protection and the privacy of \nthat data.'' I commit to this Committee, to the American people whom we \nserve, and to our neighbors around the globe, that the Privacy Office \nis implementing this philosophy on a daily basis at the Department of \nHomeland Security.\n    I thank you for your time, and for your interest in and support of \nthe Department of Homeland Security Privacy Office.\n\n    Mr. Cannon. Thank you.\n    We appreciate the exceptional job you're doing and point \nout that it's actually historic since other people are going to \nlook at what you have done. And I appreciate that attitude that \nthings exactly work better when you think about the privacy \nimplications in advance.\n    Governor Gilmore, you'll be recognized for 5 minutes.\n\n STATEMENT OF HONORABLE JAMES S. GILMORE, III, PRESIDENT, USA \n               SECURE CORPORATION, WASHINGTON, DC\n\n    Mr. Gilmore. Chairman Cannon and Ranking Member Watt and \nMembers of the Subcommittee, thank you for the opportunity to \nbe here to talk to you today. I'm acquainted with most all the \nMembers and it's a pleasure to be back here with all of you \nagain.\n    A copy of my statement is put into the record, I believe.\n    Mr. Chairman, I'm going to--I don't typically come back to \nCongress these days and read a lot of things. But I think I \nmight this time because I put this together and well, I kind of \nlike it. So I think I'm going to read it to you, at least part \nof it to you.\n    I want to applaud the Committee for its leadership in this \nkey area. It's been my privilege to serve as Chairman of the \nAdvisory Panel to Assess Domestic Response Capabilities \nInvolving Terrorism and Weapons of Mass Destruction for this \nCongress and reporting to this Congress and to the president \nfor the past 5 years.\n    In my private business and in my law practice I represent \nclients in homeland security matters. I'm president of an \norganization called USA Secure, which the Chairman made \nreference to. It's a private group of companies that come \ntogether and right now it's working mostly in bioterrorism \nissues.\n    But my main attention over the past 5 years has been as \nChairman of the Advisory Panel on behalf of this Congress.\n    In the history of this panel we've produced five advisory \nreports to the Congress and to the president. The first report, \nin 1999, assessed the threat. The second report, in 2000, \ndeveloped the fundamentals of a national strategy. The third \nreport was dedicated to one of our members who died at the \nWorld Trade Center and went through key subject areas. The \nfourth report continued to fill out the idea of a national \nstrategy focusing particularly on intelligence gathering and \nintelligence sharing.\n    And the last report, which we just issued to you on \nDecember the 15 of this past year, tries to express some end \nvision about where we're trying to be and with regard to a \nnational strategy, and also focuses a great deal on the issue, \nfrankly, of the civil freedoms of the country because of an \nabiding concern of the panel as we go at the door on that \nissue.\n    Today I'm here to speak to you for just a moment about the \nPrivacy Officer position at the Department of Homeland \nSecurity. With the leadership of this Committee and the \nSubcommittee and the Department of Homeland Security, it has \nestablished a position of Privacy Officer in accordance with \nyour statute. The foundation of the Congress' thinking was the \nprotection of privacy will enhance the protection of American \nfreedom. And as such, the primary responsibility for this \npolicy includes oversight of the use of technologies to make \nsure they sustain and don't erode privacy protections, and puts \na special emphasis on the Privacy Act.\n    In its drive to make the country more secure the United \nStates is applying all of its managerial and technological \nexpertise to the creation of security in the homeland. Now \nthese are enormously powerful forces because of this highly \nmanagerial society that we're in and also that we are the \ngreatest technological society developed in the history of \nmankind as has been demonstrated by this gigantic war-making \ncapacity that we have just seen.\n    These twin forces of management and technology applied to \nhomeland security can be applied to create a very secure \nsociety. But without institutional checks and balances it may \noverride the traditional constitutional protections in this \ncountry.\n    Many might argue that our traditional values of privacy, \nanonymity, and freedom are out of date and rendered obsolete by \nthe terrorist threat.\n    As chairman of the Advisory Panel and as a private citizen, \nI could not more emphatically disagree with the concepts that \nour freedoms must take second place as against the goal of \ncreating greater security in the United States. The Congress, \nthrough this Committee and the Subcommittee, has agreed by \nenshrining the Privacy Officer within the statute establishing \nthe Department of Homeland Security.\n    Now I want to congratulate Secretary Ridge and his \nDepartment for supporting the Privacy Officer and empowering \nher as greatly as they have. Through the first Privacy Officer, \nNuala O'Connor Kelly, this Department contains an instinct \ntoward the creation of a culture of privacy that will allow the \npersonal data of people to remain as confidential as possible \nwithin an environment of trying to weed out stealth attacks.\n    Now we've got laws to protect the confidentiality of \nprivate citizens, but how does the American citizen know that \nhis confidential and private information will not be made \npublic or even disseminated to other agencies or other \norganizations to disempower him by impinging upon his private \ninformation? We live in the society of the anonymous but cannot \ncontinue the society of the empowered individual if the \nGovernment has the ability to take all of the private \ninformation and then to handle that information in such a way \nto expose personal information.\n    We have long tradition of the independence of the American \ncitizen. Now this can't continue either without systematic \nthinking and advocacy by someone in Government to preserve the \nfreedoms and values of the American people. This is the duty of \nthe Congress primarily and those of the Executive Branch who \nare so clearly dedicated to those freedoms. To provide that \ncheck institutionally within the Executive Branch, the Congress \nhas provided for the Privacy Officer.\n    I've worked very closely with Ms. O'Connor Kelly and the \nDepartment on these issues. Their dedication to the privacy of \nthe American people is extraordinary. Their proactive ability \nto inject herself into these issues is essential and real. And \nthe office provides a check against bulling ahead to create \nsecurity while running over the privacies and the freedoms of \nthe American people. And I congratulate the Committee, the \nSubcommittee, the Congress, and the Department for doing that.\n    I urge upon the Congress we may be entering into a historic \ntime in which bad decisions now may have consequences to the \nfreedoms of the American people throughout the future. Privacy \nis an essential element of American liberty. The ability to \nkeep personal information secure from prying eyes gives the \nmental empowerment to people to live as free citizens. Without \nthat security American citizens are vulnerable and insecure, \nnever knowing whether their personal information will be put \ninto the hands of someone who will use that information against \ntheir interests, to make them weaker, or to destroy their \nindividuality. Now this debate goes to the fundamental \nrelationship between citizens and Government and ultimately \nwill go beyond the simple issue of privacy.\n    In closing, we're engaged in a debate of the American \ncitizens' roll in his own society within the context of \nterrorism and security. Some societies have always been more \ncomfortable with the citizen fitting into the entire community \nand being subject to identification cards, reporting \nrequirements, stops by police, the presentation of papers, \nsubjecting citizens to interrogation, checkpoints, frisking, \nand prying into the personal business of citizens more than the \nUnited States has ever been willing to tolerate.\n    The fundamental question that the Congress must ask is \nwhether this view of the individual is the future of the United \nStates. The American tradition has been much more focused on \nthe individual and his role in society. The individual has \nnever been a creature of the Government or the entire State but \nrelies upon the State to create an environment which he can \ngrow on his own, establish his independence, and exist without \nthe permission of the Government or the overall State.\n    The question the Congress has to answer as they consider \nthis and other pieces of legislation is did the enemy \nfundamentally change the American relationship because of its \nattacks on September 11? This is the debate that will go \nforward in the years ahead. But in the meantime, I congratulate \nthis Congress and the Department for the creation of the \nPrivacy Officer and giving her the ability to go into these \nissues and to safeguard these liberties in this highly risky \nmoment in American history.\n    [The prepared statement of Mr. Gilmore follows:]\n\n          Prepared Statement of Governor James S. Gilmore, III\n\n    Chairman Cannon, Ranking Member Watt, and members of the \nSubcommittee on Commercial and Administrative Law. The Committee on the \nJudiciary and the Subcommittee have played a major leadership role in \nincluding privacy considerations in the overall development of the \nDepartment of Homeland Security. I applaud the Committee for its \nleadership in this key area. It has been my privilege to serve as the \nChairman of the Advisory Panel to Assess Domestic Response Capabilities \nfor Terrorism Involving Weapons of Mass Destruction for the past five \nyears. In my private business and law practice I represent clients in \nhomeland security matters. I also am President of USA Secure, a group \nof private sector companies and non-profit organizations that come \ntogether to deal with significant homeland security issues. USA \nSecure's primary focus has been on bioterrorism issues to this date. My \nmain attention in homeland security over the past five years has been \nas Chairman of the Advisory Panel on behalf of this Congress.\n\n                         CONGRESSIONAL MANDATE\n\n    The Advisory Panel was established by Section 1405 of the National \nDefense Authorization Act for Fiscal Year 1999, Public Law 105-261 \n(H.R. 3616, 105thCongress, 2nd Session) (October 17, 1998). That Act \ndirected the Advisory Panel to accomplish several specific tasks. It \nsaid:\n    The panel shall--\n\n        1.  Assess Federal agency efforts to enhance domestic \n        preparedness for incidents involving weapons of mass \n        destruction;\n\n        2.  Assess the progress of Federal training programs for local \n        emergency responses to incidents involving weapons of mass \n        destruction;\n\n        3.  Assess deficiencies in programs for response to incidents \n        involving weapons of mass destruction, including a review of \n        unfunded communications, equipment, and planning requirements, \n        and the needs of maritime regions;\n\n        4.  Recommend strategies for ensuring effective coordination \n        with respect to Federal agency weapons of mass destruction \n        response efforts, and for ensuring fully effective local \n        response capabilities for weapons of mass destruction \n        incidents; and\n\n        5.  Assess the appropriate roles of State and local government \n        in funding effective local response capabilities.\n\n    That Act required the Advisory Panel to report its findings, \nconclusions, and recommendations for improving Federal, State, and \nlocal domestic emergency preparedness to respond to incidents involving \nweapons of mass destruction to the President and the Congress three \ntimes during the course of the Advisory Panel's deliberations--on \nDecember 15 in 1999, 2000, and 2001.\n    The Advisory Panel's tenure was extended for two years in \naccordance with Section 1514 of the National Defense Authorization Act \nfor Fiscal Year 2002 (S. 1358, Public Law 107-107, 107th Congress, \nFirst Session), which was signed into law by the President on December \n28, 2001. By virtue of that legislation, the panel was required to \nsubmit two additional reports--one on December 15 of 2002, and one on \nDecember 15, 2003.\n\n                       ADVISORY PANEL COMPOSITION\n\n    Mister Chairman, please allow me to pay special tribute to the men \nand women who serve on our panel.\n    This Advisory Panel is unique in one very important way. It is not \nthe typical national ``blue ribbon'' panel, which in most cases \nhistorically have been composed almost exclusively of what I will refer \nto as ``Washington Insiders''--people who have spent most of their \nprofessional careers inside the Beltway. This panel has a sprinkling of \nthat kind of experience--a former Member of Congress and Secretary of \nthe Army, a former State Department Ambassador-at-Large for \nCounterterrorism, a former senior executive from the CIA and the FBI, a \nformer senior member of the Intelligence Community, the former head of \na national academy on public health, two retired flag-rank military \nofficers, a former senior executive in a non-governmental charitable \norganization, and the head of a national law enforcement foundation. \nBut what truly makes this panel special and, therefore, causes its \npronouncement to carry significantly more weight, is the contribution \nfrom the members of the panel from the rest of the country:\n\n        <bullet>  Three directors of state emergency management \n        agencies, from California, Iowa, and Indiana, two of whom now \n        also serve their Governor's as Homeland Security Advisors\n\n        <bullet>  The deputy director of a state homeland security \n        agency\n\n        <bullet>  A state epidemiologist and director of a state public \n        health agency\n\n        <bullet>  A former city manager of a mid-size city\n\n        <bullet>  The chief of police of a suburban city in a major \n        metropolitan area\n\n        <bullet>  Senior professional and volunteer fire fighters\n\n        <bullet>  A senior emergency medical services officer of a \n        major metropolitan area\n\n        <bullet>  And, of course--in the person of your witness--a \n        former State governor\n\n    These are representatives of the true ``first responders''--those \nheroic men and women who put their lives on the line every day for the \npublic health and safety of all Americans. Moreover, so many of these \npanel members are also national leaders in their professions: our EMS \nmember is a past president of the national association of emergency \nmedical technicians; one of our emergency managers is the past \npresident of her national association; our law officer now is president \nof the international association of chiefs of police; our \nepidemiologist is past president of her professional organization; one \nof our local firefighters is chair of the terrorism committee of the \ninternational association of fire chiefs; the other is chair of the \nprestigious national Interagency Board for Equipment Standardization \nand InterOperability.\n    Those attacks continue to carry much poignancy for us, because of \nthe direct loss to the panel. Ray Downey, Department Deputy Chief and \nchief-in-charge of Special Operations Command, Fire Department of the \nCity of New York, perished in the collapse of the second tower in the \nSeptember 11 attack on the New York World Trade Center.\n\n                             PANEL REPORTS\n\n    In the history of the Panel, we have produced five advisory reports \nto the Congress and to the President of the United State. The first \nreport in 1999 assessed threat. The second report in 2000 developed the \nfundamentals of a national strategy for combating terrorism. The third \nreport, dedicated to Ray Downey who lost his life in the World Trade \nCenter, filled out a national strategy in five key subject areas: state \nand local response capabilities, health and medical capabilities, \nimmigration and border control, cybersecurity, and use of the military. \nOur fourth report in 2002, issued in the year following the 9/11 \nattacks, further made recommendations on how to marshal the national \neffort towards a national strategy. It paid special attention to the \nneeds of intelligence sharing and the proper structure for \ncounterterrorism activities inside the United States. Our last report \nwas issued about one and a half months ago, on December 15, 2003. That \nfinal report sought to express some end-vision and direction for the \nUnited States as it develops its national strategy and makes the \ncountry safer.\n\n         FIFTH REPORT (2003)-- FORGING AMERICA'S NEW NORMALCY: \n             SECURING OUR HOMELAND, PRESERVING OUR LIBERTY\n\n    Mister Chairman, the Advisory Panel released its fifth and final \nreport on December 15, 2003. In that report, the strategic vision, \nthemes, and recommendations were motivated by the unanimous view of the \npanel that its final report should attempt to define a future state of \nsecurity against terrorism--one that the panel has chosen to call \n``America's New Normalcy.''\n\n        <bullet>  That strategic vision offered by the panel reflects \n        the guiding principles that the panel has consistently \n        enumerated throughout its reports:\n\n        <bullet>  It must be truly national in scope, not just Federal.\n\n        <bullet>  It should build on the existing emergency response \n        system within an all-hazards framework.\n\n        <bullet>  It should be fully resourced with priorities based on \n        risk.\n\n        <bullet>  It should be based on measurable performance.\n\n        <bullet>  It should be truly comprehensive, encompassing the \n        full spectrum of awareness, prevention, preparedness, response, \n        and recovery against domestic and international threats against \n        our physical, economic and societal well-being.\n\n        <bullet>  It should include psychological preparedness.\n\n        <bullet>  It should be institutionalized and sustained.\n\n        <bullet>  It should be responsive to requirements from and \n        fully coordinated with State and local officials and the \n        private sector as partners throughout the development, \n        implementation, and sustainment process.\n\n        <bullet>  It should include a clear process for strategic \n        communications and community involvement.\n\n        <bullet>  It must preserve civil liberties.\n\n    In developing the report, panel members all agreed at the outset \nthat it could not postulate, as part of its vision, a return to a pre-\nSeptember 11 ``normal.'' The threats from terrorism are now recognized \nto be a condition that we must face far into the future. It was the \npanel's firm intention to articulate a vision of the future that \nsubjects terrorism to a logical place in the array of threats from \nother sources that the American people face every day--from natural \ndiseases and other illnesses to crime and traffic and other accidents, \nto mention a few. The panel firmly believes that terrorism must be put \nin the context of the other risks we face, and that resources should be \nprioritized and allocated to that variety of risks in logical fashion.\n    The panel has proffered a view of the future--five years hence--\nthat it believes offers a reasonable, measurable, and attainable \nbenchmark. It believes that, in the current absence of longer-term \nmeasurable goals, this benchmark can provide government at all levels, \nthe private sector, and our citizens a set of objectives for readiness \nand preparedness. The panel did not claim that the objectives presented \nin this future view are all encompassing. Neither do they necessarily \nreflect the full continuum of advances that America may accomplish or \nthe successes that its enemies may realize in the next five years. The \nview is a snapshot in time for the purpose of guiding the actions of \ntoday and a roadmap for the future.\n    The panel said that America's new normalcy in January of 2009 \nshould reflect:\n\n        <bullet>  Both the sustainment and further empowerment of \n        individual freedoms in the context of measurable advances that \n        secure the homeland.\n\n        <bullet>  Consistent commitment of resources that improve the \n        ability of all levels of government, the private sector, and \n        our citizens to prevent terrorist attacks and, if warranted, to \n        respond and recover effectively to the full range of threats \n        faced by the nation.\n\n        <bullet>  A standardized and effective process for sharing \n        information and intelligence among all stakeholders--one built \n        on moving actionable information to the broadest possible \n        audience rapidly, and allowing for heightened security with \n        minimal undesirable economic and societal consequences.\n\n        <bullet>  Strong preparedness and readiness across State and \n        local government and the private sector with corresponding \n        processes that provide an enterprise-wide national capacity to \n        plan, equip, train, and exercise against measurable standards.\n\n        <bullet>  Clear definition about the roles, responsibilities, \n        and acceptable uses of the military domestically--that \n        strengthens the role of the National Guard and Federal Reserve \n        Components for any domestic mission and ensures that America's \n        leaders will never be confronted with competing choices of \n        using the military to respond to a domestic emergency versus \n        the need to project our strength globally to defeat those who \n        would seek to do us harm.\n\n        <bullet>  Clear processes for engaging academia, business, all \n        levels of government, and others in rapidly developing and \n        implementing research, development, and standards across \n        technology, public policy, and other areas needed to secure the \n        homeland--a process that focuses efforts on real versus \n        perceived needs.\n\n        <bullet>  Well-understood and shared process, plans, and \n        incentives for protecting the nation's critical infrastructures \n        of government and in the private sector--a unified approach to \n        managing our risks.\n\n    The panel's Future Vision 2009 included specifics details \ninvolving:\n\n        <bullet>  State, Local, and Private Sector Empowerment\n\n        <bullet>  Intelligence\n\n        <bullet>  Information Sharing\n\n        <bullet>  Training, Exercising, Equipping, and Related \n        Standards\n\n        <bullet>  Enhanced Critical Infrastructure Protection\n\n        <bullet>  Research and Development, and Related Standards\n\n        <bullet>  Role of the Military\n\n    To support its strategic vision, the panel offered a ``Roadmap for \nthe Future,'' in which it made 20 substantive recommendations in six \nareas. (Advisory Panel recommendations are highlighted below in bold \nitalics).\n\n                   CIVIL LIBERTIES AT THE FOUNDATION\n\n    The panel addressed the on-going debate in the United States about \nthe tradeoffs between security and civil liberties. It concluded that \nhistory teaches, however, that the debate about finding the right \n``balance'' between security and civil liberties is misleading, that \nthe traditional debate implies that security and liberty are competing \nvalues and are mutually exclusive. It assumes that our liberties make \nus vulnerable and if we will give up some of these liberties, at least \ntemporarily, we will be more secure. It concluded that civil liberties \nand security are mutually reinforcing. The panel said that we must, \ntherefore, evaluate each initiative along with the combined effect of \nall initiatives to combat terrorism in terms of how well they preserve \nall of the ``unalienable rights'' that the founders believed were \nessential to the strength and security of our nation--rights that have \nbecome so imbedded in our society and ingrained in our psyche that we \nmust take special precautions, take extra steps, to ensure that we do \nnot cross the line. It is more than the clearly defined protections in \nthe Constitution--protections against unreasonable search and seizure; \nand against self-incrimination. It is also that less well-defined but \nnevertheless exceptionally important ``right to privacy'' that we have \ncome to expect and that our judicial system has come increasingly to \nrecognize. We recommend that the President establish an independent, \nbipartisan civil liberties oversight board to provide advice on any \nchange to statutory or regulatory authority or implementing procedures \nfor combating terrorism that has or may have civil liberties \nimplications (even from unintended consequences).\n\n                          THE PRIVACY OFFICER\n\n    With the leadership of this Committee and Subcommittee, the \nDepartment of Homeland Security has established the position of Privacy \nOfficer in accordance with statute. The foundation of the Congress's \nthinking was the protection of privacy will enhance the protection of \nAmerican freedom. As such, the primary responsibility for the privacy \npolicy includes an oversight of the use of technologies to make sure \nthat they sustain and do not erode privacy protections relating to the \ncollection and disclosure of personal information. It places special \nemphasis on the Privacy Act of 1974 and empowers the Privacy Officer to \nevaluate legislative and regulatory proposals involving the disclosure \nof personal information.\n    In its drive to make the country secure, the United States is \napplying all of its managerial and technological expertise to the \ncreation of national security in the homeland. These are enormously \npowerful forces because of the highly managerial society that the \nUnited States is today. The United States is also the greatest \ntechnologically developed society in the history of mankind as has been \ndemonstrated by our gigantic war-making capacity. These twin forces of \nmanagement and technology, applied to the homeland security issue, can \nbe applied to create a very secure society, but without institutional \nchecks and balances, may override our traditional Constitutional \nprotections.\n    Many might quickly argue that our traditional values of privacy, \nanonymity, and freedom are out of date and rendered obsolete by the \nterrorist threat. As Chairman of the Advisory Panel, and as a private \ncitizen, I could not more emphatically disagree with the concept that \nour freedoms must take second place as against the goal of creating \ngreater security in the United States. The Congress, through this \nCommittee and Subcommittee, has agreed by enshrining the Privacy \nOfficer within the statute establishing the Department of Homeland \nSecurity.\n    I congratulate Secretary Ridge and his Department for supporting \nthe Privacy Officer and empowering her so greatly. Through its first \nPrivacy Officer, Nuala O'Connor Kelly, the Department contains an \ninstinct towards the creation of a ``culture of privacy'' that will \nallow the personal data of people to remain as confidential as possible \nwith an environment of trying to weed out stealth attacks by anonymous \nterrorists. We have laws to protect the confidentiality of private \ninformation of the American citizen; but, how does the American citizen \nknow that his confidential and private information will not be made \npublic or even disseminated to other governmental agencies or other \norganizations to disempower him by impinging upon his private \ninformation. We live in the culture of the anonymous leak, but we \ncannot continue the society of the empowered individual if government \nhas the ability to take all of their private information and then to \nhandle that information in such a way that citizens' private \ninformation is exposed.\n    We have a long tradition of the independence of the American \ncitizen. This, too, cannot continue without systematic thinking and \nadvocacy by someone in government to preserve the freedoms and values \nof the American people. This is fundamentally and primarily the duty of \nthe United States Congress--the elected representatives of the people \nand the members of the Executive Branch who are so clearly dedicated to \nthose freedoms. To provide that check institutionally within the \nExecutive Branch, the Congress has provided for the Privacy Officer. In \nthe course of my official capacity and my private capacity I have had \nongoing communications with Nuala O'Connor Kelly and the Department of \nHomeland Security on these issues. Ms. Kelly and her Office's \ndedication to the privacy of the American people is extraordinary and \nsolid. Her proactive ability to inject herself into these issues and \nthe policy formation process within the department is essential. The \nvery existence of her Office provides a check against bulling ahead to \ncreate security while running over the privacies and freedoms of the \nAmerican people, and I congratulate the Committee, the Subcommittee, \nand the United States Congress and the Department of Homeland Security \nfor the foresight to build in this institutional check and balance.\n    I urge upon the Congress that we may be entering into a historic \ntime in which bad decisions now may have consequences to the freedoms \nof the American people throughout their future. Privacy is an essential \nelement of American liberty. The ability to keep personal information \nsecure from prying eyes gives the mental empowerment to people to live \nas free citizens. Without that security American citizens are \nvulnerable and insecure, never knowing whether their personal \ninformation will be put into the hands of someone who will use that \ninformation against their interests to make them weaker or to destroy \ntheir individuality. This debate, now, goes to the fundamental \nrelationship between citizens and government, and should, and \nultimately will, go far beyond just the issue of privacy.\n    We are now engaged in a debate of the American citizen's role in \nhis own society within the context of terrorism and security. Some \nsocieties have always been much more comfortable with the citizen \nfitting into the entire community and being subject to the entire \ncommunity or the state. As such, identification cards, reporting \nrequirements, stops by police, the presentation of papers, subjecting \ncitizens to interrogation, checkpoints, frisking, and prying into the \npersonal business of citizens has always been much more accepted in \nmany countries of the world than in the United States.\n    The fundamental question the Congress must ask is whether this view \nof the individual is the future of the United States. The American \ntradition has been much more focused on the individual and his role in \nsociety. The individual has never been a creature of the government or \nthe entire state, but relies upon the state to create an environment in \nwhich he can grow on his own, establish his independence, and exist \nwithout the permission of the government or of the overall state.\n    Did the enemy fundamentally redefine the American relationship \nbecause of its attacks on September 11, 2001? This is the policy debate \nfor the years ahead as we reach for further security inside the \nhomeland. In the meanwhile, the Privacy Officer and her office \nrepresent a fundamental protection while this debate is going on. By \nvirtue of her official duty and position, she facilitates this dialogue \nwith the American people and helps to safeguard their liberties in this \nhighly risky moment in American history. It is my pleasure to be here \ntoday to endorse the role of the Privacy Officer and the offices \nestablished within the Department.\n\n    Mr. Cannon. Thank you, Governor. We appreciate your service \nchairing that committee.\n    Ms. Katzen?\n\n STATEMENT OF SALLY KATZEN, VISITING PROFESSOR, UNIVERSITY OF \n               MICHIGAN LAW SCHOOL, ANN ARBOR, MI\n\n    Ms. Katzen. Thank you, Mr. Chairman, Ranking Member Watt, \nMembers of the Committee. I appreciate very much your inviting \nme to testify today on a subject of interest to millions of \nAmericans.\n    As the Chairman noted, the views that I am expressing are \nmy own and not those of any of the entities which may I may be \naffiliated.\n    This Committee is indeed to be congratulated, not only for \nits leadership in creating a statutory Privacy Officer in the \nDepartment of Homeland Security, but also for being vigilant in \nits oversight of that office. Given the Committee's extensive \nexperience in this area, it is not necessary to speak at length \non the centrality of privacy in our country. It is a value that \nhas been cherished, prized, protected and defended throughout \nour country and throughout history.\n    Before September 11, 2001, privacy concerns polled off the \ncharts. Since then Americans have acknowledged the importance \nof security and the need for combating terrorism, but their \ncommitment to privacy has not been diminished. And some would \nargue, with much force, that if in protecting our Nation we're \nnot able to preserve a free and open society for public lives \nwith commensurate respect for the privacy of our personal \nlives, then perhaps the terrorists will have won.\n    For that reason, again, I believe it was necessary and \ndesirable to create a Privacy Officer within the Department of \nHomeland Security. Ms. Kelly has been there for approximately a \nyear and we have heard this afternoon about her qualifications, \nwhich are genuinely impressive, and her activities to date, the \nearliest signs of which are indeed encouraging. And I will not \ntry to repeat any of that.\n    I draw two lessons from Ms. Kelly's tenure at DHS. First, \nthe existence of a statutory Privacy Officer is highly \nbeneficial. We now know that some attention is being paid to \nprivacy concerns and steps are being taken to advance this \nimportant value that might otherwise not have occurred.\n    The Chairman mentioned the CAPPS II project. There she \ninherited a Privacy Act notice that was issued last winter that \nwas dreadful and she greatly improved it. In my written \ntestimony I suggest some areas where additional work could, I \nbelieve should, be done to make it even better.\n    I also talk about the US-VISIT program and again would \nrefer you to my written testimony.\n    But there is no doubt that the work that she has done has \nbeen good and is highly beneficial.\n    Now as someone outside the Government, it is hard to know \nhow influential she will be if, and it inevitably will happen, \nthere is a direct conflict between what a program office wants \nand what she counsels against.\n    Secretary Ridge has said all of the right things in \nsupporting the Privacy Officer and we know he can do well in \nthat regard. But we do not know what will happen when the \nrubber hits the road. This Committee, however, can further \nempower the Privacy Officer and lay the foundations for \nremedying any problems that may arise by maintaining its \noversight and inquiring pointedly into how the Department \nhandles these issues.\n    The second lesson that I would take from the experience to \ndate with the Privacy Officer at DHS is that there has been no \ndiminution in the capacity of the Department to fulfill and \npursue its mission. This is wholly consistent with what most \nAmericans think, that national security and privacy are \ncompatible.\n    Now the fact that there is no evidence that the existence \nor any activity of the Privacy Officer has caused DHS to falter \nleads me to suggest that the Committee consider expanding the \nnumber of statutory privacy officers from one to 24, covering \nall of the major departments, or at least a handful of critical \nagencies.\n    I mean, imagine the salutary effect that a privacy officer \nwho is statutorily empowered could have at the Department of \nJustice, the Treasury, the IRS, DOD and VA, SSA, and HHS. All \nof these have some sort of privacy officer in place but they \nare, for the most part, processing Privacy Act complaints and \nnot being involved in the underlying activities of their \nagencies and their departments.\n    I would go one step further and suggest, indeed strongly \nurge, that you create a statutory privacy office at OMB, an \noffice headed, as we called it in the Clinton administration, \nby the chief counselor for privacy. We had such an office and \nit served us well. In my written testimony I give you the range \nof ideas and subjects that have been--that were discussed.\n    I believe it is unfortunate that the current Administration \nhas chosen not to fill that position. As a result, there is no \nsenior official in the Executive Office of the President who \nhas privacy in his or her title or who is charged with \noversight of Federal privacy practices, monitoring of \ninteragency processes where privacy is implicated, or \ndeveloping national privacy policies.\n    Perhaps it was the absence of such a person that led the \nBush administration to its initial lack of support for the \ndesignation of a Privacy Officer at DHS, which it has now come \nto embrace. Perhaps if someone had been appointed to the \nposition, the Administration would not appear to some to be so \ntone deaf to privacy concerns in such areas as the PATRIOT Act \nor any other number of law enforcement issues that have \nappeared in the papers over the last several years.\n    An office inside OMB can provide both institutional memory \nand sensitivity to combat the unfortunate tendency of some \nwithin Government to surveil first and think later.\n    I have also in my written testimony a series of comments on \nthe bill that I hope you will have a chance to review. And \nagain, I thank you for your kind attention and look forward to \nresponding to any questions you might have.\n    [The prepared statement of Ms. Katzen follows:[\n\n                   Prepared Statement of Sally Katzen\n\n    Thank you for inviting me to testify today on a vitally important \nsubject--``Privacy in the Hands of the Government.'' This Committee is \nto be congratulated, not only for its leadership in creating a \nstatutory Privacy Officer in the Department of Homeland Security (DHS), \nbut also for being vigilant in its oversight of that office.\n    I am currently a Visiting Professor at the University of Michigan \nLaw School, where one of my courses is a seminar on ``Technology Policy \nin the Information Age''--a significant portion of which is devoted to \nexamining both the government and the private sector's privacy policies \nand practices. I have been involved in privacy policy for over a \ndecade. In early 1993, I began serving as the Administrator of the \nOffice of Information and Regulatory Affairs (OIRA) in the Office of \nManagement and Budget (OMB); the ``I'' in OIRA signaled that I was, in \neffect, the chief information policy official for the federal \ngovernment. Among other responsibilities, my office was charged with \ndeveloping federal privacy policies, including implementation of the \n1974 Privacy Act. Later in 1993, I was asked to chair the Information \nPolicy Committee of the National Information Infrastructure Task Force, \nwhich had been convened by the Vice President and chaired by then \nSecretary of Commerce Ronald Brown. One of the first deliverables we \nproduced was from my committee's Privacy Working Group--a revision of \nthe 1973 Code of Fair Information Practices, entitled ``Principles for \nProviding and Using Personal Information.'' During President Clinton's \nsecond term, I worked with the Vice President's Domestic Policy Advisor \nto create a highly visible and effective office for privacy advocacy in \nOMB; we selected Peter Swire to head that office and be the first Chief \nCounselor for Privacy, and I worked closely with him when I served as \nDeputy Director for Management at OMB during the last two years of the \nClinton Administration. Since leaving government, I have, as indicated \nearlier, been teaching both at the graduate and undergraduate level.\n    Given the Committee's extensive work in this area, it is not \nnecessary to speak at length on the importance of privacy in the \nhistory and culture of our country. Nonetheless, to provide context for \nthe comments that follow, I want to be clear that, from my perspective, \nprivacy is one of the core values of what we are as Americans. Whether \nyou trace its roots from the first settlers and the ``frontier'' \nmentality of the early pioneers, or from the legal doctrines that \nflowed from Justice Brandeis' oft-quoted recognition in the late 19th \ncentury of ``the right to be let alone,'' privacy has been one of the \nhallmarks of America--cherished, prized, protected and defended \nthroughout our country and throughout our history.\n    The ``Information Age'' has brought new opportunities to benefit \nfrom the free flow of information, but at the same time it has also \nraised privacy concerns to a new level. Computers and networks can \nassemble, organize and analyze data from disparate sources at a speed \n(and with an accuracy) that was unimaginable only a few decades ago. \nAnd as the capacity--of both the government and the private sector--to \nobtain and mine data has increased, Americans have felt more \nthreatened--indeed, alarmed--at the potential for invasion (and \nexploitation) of their privacy.\n    Before September 11, 2001, privacy concerns polled off the charts. \nSince then, there has been a recognition of the importance of security \nand the need for combating terrorism. But, as the Pew Internet surveys \n(and others) have found, Americans' commitment to privacy has not \ndiminished, and some would argue (with much force) that if, in \nprotecting our nation, we are not able to preserve a free and open \nsociety for our public lives, with commensurate respect for the privacy \nof our private lives, then the terrorists will have won. For that \nreason, it was both necessary and desirable in creating a Department of \nHomeland Security to statutorily require the Secretary to appoint a \nsenior official with primary responsibility for privacy policy. Ms. \nKelly was selected for that position and took office about six months \nago.\n    We thus have some--albeit limited--operational experience with the \nstatutory scheme, and it is therefore timely to see what we have \nlearned and what more could (and should) be done by this Committee to \nbe responsive to privacy concerns.\n    I would draw two lessons from Ms. Kelly's tenure to date at DHS.\n    First, the existence of a Privacy Officer at DHS, especially \nsomeone who comes to the position with extensive knowledge of the \nissues and practical experience with the federal government, is highly \nbeneficial. We know that some attention is now being paid to privacy \nconcerns and that steps are being taken to advance this important value \nthat might otherwise not have occurred.\n    Consider the CAPPS II project, in which Ms. Kelly has recently been \ninvolved. She inherited a Privacy Act Notice issued last winter that \nwas dreadful. She produced a Second Privacy Act Notice that reflected \nmuch more careful thought about citizens' rights and provided more \ntransparency about the process. Regrettably, there was some \nbacksliding: the initial concept was that the information would be used \nonly to combat terrorism, whereas the second Notice indicated that the \ninformation would be used not only for terrorism but also for any \nviolation of criminal or immigration law. Also, the document was vague \n(at best) on an individual's ability to access the data and to have \ncorrections made. And there was more that should have been said about \nthe manner in which the information is processed through the various \ndata bases. But there is no question that the Second Notice was greatly \nimproved from the first.\n    Ms. Kelly was also involved with the US VISIT program, where she \nproduced a Privacy Impact Analysis (PIA). Some had argued that a PIA \nwas not required because the program did not directly affect American \ncitizens or permanent residents. Nonetheless, to her credit, she \nprepared and issued a PIA that was quite thoughtful and was well \nreceived. Whether one agrees or disagrees with the underlying program, \nat least we know that someone was engaged in the issues that deserve \nattention and the product of that effort was released to the public.\n    As someone outside the government, it is hard to know how \ninfluential Ms. Kelly will be if--and it inevitably will happen--there \nis a direct conflict between what a program office within DHS wants to \ndo and what the Privacy Officer would counsel against for privacy \nreasons. Effectiveness in this type of position depends on autonomy and \nauthority--that is, on the aggressiveness of the office holder to call \nattention to potential problems and on support from the top. We may \ntake some comfort from Secretary Ridge's comments; he has said all the \nright things about supporting the Privacy Officer. But we cannot now \nknow what will happen when the ``rubber meets the road.''\n    This Committee, however, can further empower the Privacy Officer, \nand lay the foundation for remedying any problems that may arise, by \nmaintaining its oversight and inquiring pointedly into how the \nDepartment operates. For example, Ms. Kelly (and Secretary Ridge) \nshould be asked at what stage she is alerted to or brought into new \ninitiatives; what avenues are open for her to raise any questions or \nconcerns; and whether the Secretary will be personally involved in \nresolving any dispute in which she is involved. The timing of the \nrelease of the PIA for the US VISIT program suggests that Ms. Kelly may \nnot always be consulted on a timely basis. As I read the E-Government \nAct of 2002, an agency is to issue a PIA before it develops or procures \ninformation technology that collects, maintains or disseminates \ninformation that is in an identifiable form. In this instance, the PIA \nwas released much further down the road, when the program was about to \ngo on line. Anything that helps the Privacy Officer become involved in \nnew initiatives at the outset, before there is substantial staff (let \nalone money) invested in a project, would be highly salutary.\n    The second lesson that I take from the experience to date with the \nPrivacy Officer at DHS is that there has been no diminution in the \ncapacity of the Department to pursue its mission. Or as a political wag \nwould say, the existence of a Privacy Officer in DHS has not caused the \ncollapse of western civilization as we know it. This is wholly \nconsistent with what most Americans think--that national security and \nprivacy are compatible and are not intrinsically mutually exclusive.\n    The fact that there is no evidence that the existence, or any \nactivity, of the Privacy Officer has caused DHS to falter leads me to \nsuggest that the Committee consider expanding the number of statutory \nprivacy offices from one to 24, covering all major Departments (the so-\ncalled Chief Financial Officers Act agencies) or at least a handful of \ncritical agencies. Imagine the salutary effect that a statutory privacy \noffice could have at the Department of Justice, the Department of the \nTreasury (and the Internal Revenue Service), the Department of Defense \nand the Veterans Administration, the Social Security Administration, \nand the Department of Health and Human Services. All of these agencies \nalready have some form of privacy office in place, although many simply \nprocess Privacy Act complaints, requests, notices, etc. and do not \ninvolve themselves in the privacy implications of activities undertaken \nby their agencies. It is significant, I believe, that OMB guidance from \ntwo administrations (issued first during the Clinton Administration and \nrepeated recently by the Bush Administration) has called for the \ncreation of such offices in Executive Branch agencies. With the \nimprimatur of Congress, these offices can achieve the status (and \nincreased influence) and gain the respect that the Privacy Officer has \nenjoyed at DHS. Equally important, by establishing statutory privacy \noffices, the Congress will be able to engage in systematic oversight of \nthe attention paid to this important value in the federal government--\nsomething which has not occurred before this hearing today.\n    I hope I do not seem presumptuous to suggest--indeed, strongly \nurge--one further step: establishing at OMB a statutory office headed \nby a Chief Counselor for Privacy. As noted above, we had created such a \nposition during the Clinton Administration, and it served us well. \nPeter Swire, the person we selected to head that office, was able to \nbring his knowledge, insights, and sensitivity to privacy concerns to a \nwide range of subjects. In his two years as Chief Counselor, he worked \non a number of difficult issues, including privacy policies (and the \nrole of cookies) on government websites, encryption, medical records \nprivacy regulations, use and abuse of social security numbers, and \ngenetic discrimination in federal hiring and promotion decisions, to \nname just some of the subjects that came from various federal agencies. \nHe was also instrumental in helping us formulate national privacy \npolicies that arose in connection with such matters as the financial \nmodernization bill, proposed legislation to regulate internet privacy, \nand the European Union's Data Protection Directive.\n    I believe it is unfortunate that the current Administration has \nchosen not to fill that position. As a result, there is no senior \nofficial in the Executive Office of the President who has ``privacy'' \nin his/her title or who is charged with oversight of federal privacy \npractices, monitoring of interagency processes where privacy is \nimplicated, or developing national privacy polices. Perhaps it was the \nabsence of such a person that led to the Bush Administration's initial \nlack of support for the designation of a Privacy Officer at the \nDepartment of Homeland Security. Perhaps if someone had been appointed \nto that position, the Administration would not have appeared to be so \ntone deaf to privacy concerns in connection with the Patriot Act or any \nnumber of law enforcement issues that have made headlines over the past \nseveral years. An ``insider'' can provide both institutional memory and \nsensitivity to counterbalance the unfortunate tendency of some within \nthe government to surveil first and think later. At the least, the \nappointment of a highly qualified privacy guru at OMB would mean that \nsomeone in a senior position, with visibility, would be thinking about \nthese issues before--rather than after--policies are announced.\n    Finally, I understand that after this Hearing, the Committee will \nmove to mark up H.R. 338, ``The Defense of Privacy Act.'' That bill \nreflects a commendable desire to ensure that privacy impact statements \nare prepared by federal agencies as they develop regulations which may \nhave a significant privacy impact on an individual or have a privacy \nimpact on a substantial number of individuals. I was struck in \nreviewing the E-Government Act of 2002 for this testimony that it \nrequires an agency to prepare a PIA not only before it develops or \nprocures information technology that implicates privacy concerns, but \nalso before the agency initiates a new collection of information that \nwill use information technology to collect, maintain or disseminate any \ninformation in an identifiable form. This law has gone into effect, OMB \nhas already issued guidance on how to prepare the requisite PIAs, and \nthe agencies are learning how to prepare these PIAs using that model. \nRather than impose another regime on agencies when they are developing \nregulations (which are frequently the basis for the information \ncollection requests referenced in the E-Government Act of 2002), it \nmight be preferable to amend the E-Government Act to expand its \nrequirements to apply to regulations that implicate privacy concerns. \nThat approach would have the added benefit of eliminating the \ninevitable debate over the judicial review provisions of H.R. 338, \nwhich go significantly beyond the judicial review provisions of any of \nthe comparable acts (e.g., Reg.Flex., NEPA, Unfunded Mandates, etc.). \nLastly, if you were to amend the E-Government Act to include privacy-\nrelated regulations, you might also consider including privacy-related \nlegislative proposals from the Administration. As you know, Executive \nBranch proposals for legislation are reviewed by OMB before they are \nsubmitted to the Congress. If there were a Chief Counselor for Privacy \nat OMB, s/he would be able to provide input for the benefit of the \nAdministration, the Congress and the American people.\n    Again, thank you for inviting me to testify today. This Committee \nhas been an effective leader on privacy issues, and it is encouraging \nthat you are continuing the effort. I would be pleased to elaborate on \nthese comments or answer any questions that you may have.\n\n    Mr. Cannon. Thank you Ms. Katzen.\n    Mr. Dempsey, you're recognized for 5 minutes.\n\nSTATEMENT OF JAMES DEMPSEY, ESQUIRE, EXECUTIVE DIRECTOR, CENTER \n          FOR DEMOCRACY AND TECHNOLOGY, WASHINGTON, DC\n\n    Mr. Dempsey. Chairman Cannon, Ranking Member Watt, Members \nof the Subcommittee, thank you for this opportunity to testify \ntoday about the Privacy Officer at the Department of Homeland \nSecurity. It's always a privilege to appear before the \nSubcommittee, and especially today on a panel with three of the \nmost serious and insightful public officials--public servants \nthat I know.\n    Based on the record of the Department of Homeland Security \nPrivacy Office to date, it is clear that a statutory Privacy \nOfficer participating in senior level policy deliberations and \nusing tools like the Privacy Act notice and privacy impact \nassessments can be an important mechanism for raising and \nmitigating privacy concerns surrounding the Government's use of \npersonal information.\n    Certainly the Department of Homeland Security Privacy \nOfficer legislation should be a model for other agencies \nincluding the Department of Justice.\n    With proper laws and policies, statutory privacy officers \ncan be an important element of the overall approach to meeting \nthe public's interest in privacy protection even as the \nGovernment pursues urgent missions like counterterrorism. And \nthere's no more persuasive spokesperson and no more persuasive \nsource for the proposition that we can and must protect privacy \nat the same time that we are pursuing the mission of \ncounterterrorism than the five reports that Governor Gilmore \nhas submitted to this Congress and his overall advocacy for the \nneed to both preserve privacy and enhance our national \nsecurity.\n    One of the best ways to protect privacy is to raise privacy \nconcerns early in the development of any new program so that \nthose concerns can be addressed and mitigated in advance. We \ncall this privacy by design, building in the privacy \nprotections from the ground up before a system is implemented \nand before it's too late to avoid the problem. That's one of \nthe roles that the chief privacy officer plays, perhaps one of \nthe primary roles that person plays.\n    Congress and this Committee were very foresightful when you \ninsisted on creating a statutory Privacy Officer in the \nHomeland Security Act of 2002, but that so far is the only \nprivacy officer statutorily created in the entire Government.\n    While this is a new position, Nuala O'Connor Kelly has set \nthe benchmark and it is now clear that we can extend the model \nto other agencies.\n    It seems, based upon the evidence so far and the \nexperience, that there are four elements of an effective \nprivacy officer. One is a statutory basis. As Ms. Katzen has \nreferenced, there are Privacy Act officers and privacy officers \nin other Federal agencies, but they don't have the stature that \ncomes from a statutory basis and a statutory charter.\n    Second, adequate staff.\n    Third, inclusion in the senior level policy deliberations, \nwhich partly flows from the statutory charter.\n    And finally, legislative tools like the privacy impact \nassessment.\n    And on the fourth point, we should all recognize that \nprivacy officers are part of the answer but that they cannot be \neffective unless the laws and policies are in place. One of \nthose tools is the privacy impact assessment. The E-Government \nAct of 2002 requires that Federal agencies conduct privacy \nimpact assessments whenever they are initiating a new \ncollection of personal information or purchasing new \ntechnology. And one of the first PIAs was performed by the \nDepartment of Homeland Security Privacy Officer on the US-VISIT \nprogram.\n    Mr. Chairman, if I may, we have--the Center for Democracy \nand Technology filed some written comments on that privacy \nimpact assessment and I'd like to ask that those be entered \ninto the record.\n    Mr. Cannon. You can certainly just include those with your \nwritten statement.\n    Mr. Dempsey. Thank you, Mr. Chairman.\n    A further step is the bill that was just reported favorably \nby the Committee, H.R. 338. And just to second some of the \ncomments made by Congressman Coble and by Mr. Watt, this was \nnot a surprise that this was going to be marked up. It was long \noverdue. It is legislation that I personally testified in favor \nof at an earlier hearing of this Subcommittee. It's time to get \nthat moving and hopefully get it through the Senate as well.\n    We had some specific suggestions on improving that bill as \nit moves through the process and I understand the pressure to \nmove that bill as it has previously passed the Committee, but \nby the time the legislative process is completed on that, I \nhope that you can reconcile the language in this privacy impact \nassessment legislation for regulations with the privacy impact \nassessment requirements that are in the E-Government Act. It's \nbeen hard enough getting the E-Government Act PIAs going. \nThere's no need to have two separate sets of requirements or \ndefinitions and you really need to mesh H.R. 338 with section \n208 of the E-Government Act.\n    Other issues Congressman Watt and other Members have \nalluded to need to be addressed. The Privacy Act of 1974 has \nnot really kept pace with changing technology, particularly as \nwe're seeing the Government increasingly turn to commercial \ndatabases in carrying out particularly its counterterrorism \nactivities. We need to have strong guidelines on use of that \nkind of information, and on the sharing of that information.\n    And finally, we need the continued involvement of the \nSubcommittee through the oversight process. So with H.R. 338 \nyou've taken another incremental step with the Privacy Officer \nat the Department of Homeland Security and hopefully \nproliferating that model through the Government is another \nstep. And the question of the continued currency of the Privacy \nAct should be another issue that I believe the Committee and \nthe Congress will need to address.\n    Thank you, Mr. Chairman.\n    [The prepared statement of Mr. Dempsey follows:]\n\n                 Prepared Statement of James X. Dempsey\n\n    Chairman Cannon, Ranking Member Watt, Members of the Subcommittee, \nthank you for the opportunity to testify today about the Privacy \nOfficer for the Department of Homeland Security. Based upon the short \nbut significant record of that office to date, it is clear that a \nstatutory Privacy Officer, participating in senior level policy \ndeliberations and using the tools of Privacy Act notices and Privacy \nImpact Assessments, can be an important mechanism for raising and \nmitigating privacy concerns surrounding the government's use of \npersonal information. Certainly, the DHS Privacy Officer legislation is \na model for other agencies, including the Department of Justice. With \nsome further reforms we support, including enactment of the Defense of \nPrivacy Act and improvements to the Privacy Act of 1974, statutory \nPrivacy Officers should be an important element of the overall approach \nto meeting the public's deeply-held and constitutionally-based interest \nin privacy protection even in the pursuit of urgent governmental \nmissions like counterterrorism.\n    The Center for Democracy and Technology is a non-profit, public \ninterest organization dedicated to promoting civil liberties and \ndemocratic values for the Internet. Our core goals include enhancing \nprivacy protections both in consumer transactions and between citizens \nand their government. We are also strong supporters of electronic \ngovernment, having worked closely with key Members of the House and \nSenate for enactment of the E-Government Act of 2002. We commend you \nfor your sustained attention to the important privacy issues associated \nwith the government's collection and use of personal information. We \nlook forward to ongoing work with you on these matters.\n\n                               I. SUMMARY\n\n    The federal government has many legitimate needs for collection and \nuse of personal information, ranging from administration of benefits \nprograms to tax collection to winning the war on terrorism. Especially \nin light of the digital revolution, this government demand for \ninformation brings with it heightened risk to privacy and the \nassociated values of Fair Information Practices--including notice; \nlimits on collection, use, disclosure and retention; data quality; \nsecurity; and the citizen's right to review and correct information \nheld about himself.\n    One of the best ways to protect privacy, while facilitating the \neffective collection and use of information where necessary to carry \nout a governmental function, is to raise privacy concerns early in the \ndevelopment of a new program, so that those concerns can be addressed \nand mitigated in advance. We call this ``privacy by design''--building \nin privacy protections from the ground up. Watchdog groups like CDT and \neven Members of Congress often find out about a privacy problem only \nafter a system has been implemented. Then, it is often difficult to \ncorrect the problem. To ensure that privacy issues are addressed early \non, many private companies and some government agencies have created a \nChief Privacy Officer position--someone inside the organization, who \ncan be consulted during the conceptualization phase of a new project \ninvolving collection of personal information.\n    In the Federal government, the Department of Homeland Security \n(DHS) has a statutorily created Privacy Officer--the only such \nstatutory position in the U.S. government today. While this is a new \nposition, CDT has been impressed with the role that Nuala O'Connor \nKelly has assumed within the Department. We believe that the DHS \nexperience should serve a model for agencies across the government.\n    We would also like to take this time to again voice our support for \nthe Defense of Privacy Act (DOPA), which will require agencies to \npublish Privacy Impact Assessments (PIAs) for all regulations. DOPA \nwill serve as a sound complement to Section 208 of the E-Government Act \nof 2002, which requires that federal agencies conduct PIAs whenever \nthey purchase a new information technology or initiate a new collection \nof personally identifiable information. One of the first published PIAs \nwas the one written by the DHS Privacy Officer on the US-VISIT (United \nStates Visitor and Immigrant Status Indicator Technology) program. It \nis an important document and has served to bring greater transparency \nto that program. PIAs can be especially effective if they are published \nbefore the system design or regulatory process is completed.\n\n                       II. CHIEF PRIVACY OFFICERS\n\nA. History of Chief Privacy Officers in the Federal Government\n    For years, many federal agencies have had ``Privacy Act Officers.'' \nIn some agencies, this has actually been a part-time job. Privacy Act \nOfficers often spend much of their time not on privacy issues per se, \nbut in dealing with requests from individuals who want to see their \ngovernment records under the access provisions of the Privacy Act. In \naddition, these officers usually are also responsible for the other \nmajor records disclosure law, the Freedom of Information Act. Privacy \nAct Officers, despite their title, have no statutory basis in the \nPrivacy Act. There is no mechanism for including them in internal \ndeliberations on matters affecting privacy. They are often mid-level \ncareer officials and do not have the ability to intervene at a policy \nlevel even when a major privacy issue comes to their attention. They \nare often brought into discussions about a program only at the last \nminute to draft a notice required under the Privacy Act when the \ngovernment creates or changes a ``system of records,'' but that notice \ngenerally serves no role in shaping policy.\n    Realizing that this system was not effective, the Clinton \nAdministration in 1998 required all agencies to ``designate a senior \nofficial within the agency to assume primary responsibility for privacy \npolicy.'' \\1\\ The Clinton Administration used these ``privacy leaders'' \nto review Privacy Act compliance within each agency. The next year, \nPeter Swire was named Chief Privacy Counselor for the Administration \nwithin the Office of Management and Budget. Mr. Swire worked on both \ncommercial and government privacy issues and had a voice in \ndeliberations concerning agencies across the government. Among his \naccomplishments was requiring all government Web sites to include \nprivacy notices.\n---------------------------------------------------------------------------\n    \\1\\ William J. Clinton, ``Memorandum for the Heads of Executive \nDepartments and Agencies,'' May 14, 1998, <http://www.cdt.org/privacy/\nsurvey/presmemo.html>.\n---------------------------------------------------------------------------\n    At the same time, many companies in the private sector began to \nhire or promote employees to be ``Chief Privacy Officers.'' The CPO \nposition is now very common in the e-commerce, banking and health care \nindustries. Several membership organizations of CPOs have formed. The \nlargest of these, the International Association of Privacy \nProfessionals (IAPP), now meets twice yearly and includes a wide range \nof industry and government representatives from around the world.\n    In 2001, many of the privacy leaders within federal agencies--\nmostly political appointees--left government service with the change in \nadministrations. Despite urging from privacy advocates,\\2\\ the Bush \nAdministration did not hire a new Chief Privacy Counselor and only a \nfew agencies kept their privacy leaders. Some of these privacy leaders \nthrived in new full time roles as Chief Privacy Officers. In fact, a \nfew of the federal government Chief Privacy Officers have been among \nthe most innovative in the world, in either the public or private \nsectors.\n---------------------------------------------------------------------------\n    \\2\\ Several privacy groups and academics including CDT wrote to OMB \nDirector Mitch Daniels urging him to continue the position <http://\nwww.cdt.org/privacy/010416omb.shtml>.\n---------------------------------------------------------------------------\nB.  Two Examples of Chief Privacy Officers in the US Federal Government\n            --Internal Revenue Service\n    After a series of hearings in the late 1990s, which exposed \nextraordinary privacy abuses by IRS agents, the IRS began to take \nprivacy more seriously and appointed Peggy Irving to the position of \n``Privacy Advocate.'' Ms. Irving drew upon the Canadian model of \nPrivacy Impact Assessments to ensure that program managers understood \nthe privacy implications of their projects, took proper steps to \nprotect personal information, and trained employees on the privacy \naspects of new programs or systems. The Federal Chief Information \nOfficer (CIO) Council soon recognized this model as a best practice and \nit became the basis for the E-Government Act's requirements for Privacy \nImpact Assessments as well as a model for private sector PIAs. In 2003, \nMs. Irving left for a job with the federal courts and Maya Bernstein \nfilled the Privacy Advocate position. Ms. Bernstein has already begun \nto take a leadership role in the privacy community and has been active \nin government-wide discussions on privacy policy.\n\n            --US Postal Service\n    The Postal Service collects a wide range of personal information \nfrom individuals in order to deliver the mail properly, yet it \nmaintains one of the most trusted brand names among Americans.\\3\\ In \n2001, Zoe Strickland became the agency's first Chief Privacy Officer. \nMs. Strickland worked with the Postal Service's CIO to reexamine the \norganization's Privacy Act Systems of Records and data flows within the \nagency, improving both efficiency and privacy simultaneously. After \nthis process was complete, Ms. Strickland helped put together for \nproject managers a full ``business impact assessment'' process that \nexamines a wide range of potential issues, including privacy and \nsecurity impact assessments. Ms. Strickland has also been a strong \nadvocate for simplifying the often complex and legalistic privacy \nnotices published both on Web sites and in the Federal Register. Ms. \nStrickland is frequently mentioned in the media as one of the top \nprivacy officers in the world.\n---------------------------------------------------------------------------\n    \\3\\ According to a ``privacy trust'' survey of government agencies, \nindustries and others conducted by Carnegie Mellon University and the \nPonemon Institute, the Postal Service placed 5th of 26 categories, just \nabove law enforcement and charitable organizations. DHS finished 25th \nof 26. Dr. Larry Ponemon, ``In Whom Do You Trust,'' Darwin Magazine, \nNovember 2003. <http://www.darwinmag.com/read/110103/trust.html>.\n---------------------------------------------------------------------------\nC. The DHS Privacy Officer\n    Based on these positive experiences, Congress created the first \nstatutory privacy officer in Section 222 of the Homeland Security Act \nof 2002. The DHS Privacy Officer's statutory responsibilities include \n``evaluating legislative and regulatory proposals involving collection, \nuse, and disclosure of personal information by the Federal Government'' \nand ``conducting a privacy impact assessment of proposed rules of the \nDepartment . . .. including the type of personal information collected \nand the number of people affected.'' The Privacy Officer reports \ndirectly to the Secretary.\n    In April, 2004, Nuala O'Connor Kelly was named to the post. In \nCDT's opinion, Ms. Kelly was the right person for a difficult job. She \nhad privacy sector experience dealing with a startup company that was \ntrying to rapidly improve privacy protection while expanding its \nbusiness, and she had experience within the Bush Administration as \nChief Privacy Officer at the Commerce Department. She was well known to \nprivacy advocates and industry.\n    In only ten months on the job, Ms. Kelly has been able to show why \nthe Privacy Officer position is so vital to the success of the new \ndepartment. She has become a trusted participant in internal agency \ndeliberations while at the same time reaching out to privacy advocates \nand increasing public transparency of some of the most controversial \nprograms in government today.\n    For example, despite the tight time pressures created in the \nimplementation of the US-VISIT program in January, DHS released a \nforthright and clear analysis of the privacy issues involved with the \nprogram. After the PIA was released, the Privacy Officer hosted a \nmeeting for a wide range of privacy advocates and immigration groups \nwith the US-VISIT team. Advocates expressed their concerns about issues \nsuch as the lack of information on redress issues for visitors who \nbelieve that information held about them may be incorrect or \nincorrectly interpreted and the unclear nature of the data quality and \ndata retention rules. Ms. Kelly and the US-VISIT team promised that \nthese issues will be actively addressed as the program moves forward.\n    We do have specific criticisms of the way DHS has handled privacy \nissues. The PIA on US-VISIT would have been far more meaningful if it \nhad been issued before the program was actually being implemented. \nAfter all, the PIA is intended to surface privacy issues so they can be \nresolved with public input before a program is implemented. Ms. Kelly \nhas stated that the agency will release future PIAs in advance of the \nprogram launch. In addition, as noted above, the US VISIT PIA was \ndeficient on the question of redress and should have been more specific \non data quality and data retention.\n    These criticisms should not detract from the basic point: the DHS \nPrivacy Officer is an important institution and one that deserves \nsupport. CDT looks forward to continued work with the Privacy Officers \nas she actively builds an internal team and hones the tools she will \nneed to ensure that privacy is adequately respected in all homeland \nsecurity projects.\n\nD. Statutory Authority for Privacy Officers\n    Based upon the DHS experience, as well as the experience at other \nagencies and in the private sector, CDT believes that every federal \nagency should have a statutory Privacy Officer with authorities similar \nto those provided under the Homeland Security Act. This officer would \nhave the stature and authority to gain attention to this important \nissue and effectively conduct privacy impact assessments and train \nagency staff in their privacy responsibilities.\n    The essential elements of an effective Privacy Officer function, as \nwe see it are three-fold: (1) statutory basis; (2) adequate staff; (3) \ninclusion in senior-level policy deliberations.\n    Even with these elements, the Privacy Officer is not a panacea. \nCongress cannot create Privacy Officers and claim to have solved the \nprivacy problems associated with government in the digital age. \nContinued oversight will be needed. And the underlying statutory \nauthorities must be strengthened. Privacy Officers alone cannot \nmitigate, for example, the problems associated with data mining and the \nblurring of the lines between government and private sector databases. \nThat will require Congressional and Executive Branch action to detail \nthe standards and guidelines for information access and sharing.\n\n                  III. FURTHER PRIVACY REFORMS NEEDED\n\n    Privacy Officers are part of the answer to the privacy challenge, \nbut they cannot be effective if the privacy laws remain outmoded for \nchanging technology. The best, most effective Privacy Officer will \nachieve nothing if she does not have good laws to work with.\n    PIAs have become a key tool for Privacy Officers, Congress and the \npublic to monitor federal programs. Under the Section 208 of the E-\nGovernment Act, signed into law by President Bush at the end of 2002, \nfederal agencies were supposed to begin posting PIAs in April 2003. \nThose that have been made available have been high quality documents, \nyet, unfortunately, most agencies have not been making their PIAs \npublicly available. This is partly due to the fact that OMB only \npublished guidance for Section 208 in November 2003. But more \nimportantly now, OMB has encouraged agencies not to make PIAs available \nuntil after their budgets are finalized. This is inconsistent with the \npurpose and value of PIAs. PIAs should be released as soon as they are \ncompleted, to promote public participation in the debate over pressing \nprivacy concerns.\n    There is also a need for greater awareness within government of the \nnew privacy provisions of the E-Government Act. CDT has been working \nwith key partners to organize a series of workshops to educate \ngovernment officials on what they need to do to comply with the Act's \ncore requirements. In April 2003, CDT co-hosted a workshop on the new \nprivacy rules that were being drafted under the Act. Speakers included \nthe DHS Chief Privacy Officer and representatives from OMB. In \nNovember, CDT co-hosted a public workshop to help agencies craft and \nreview the reports on privacy activities required under Act. In 2004, \nwe will be hosting further workshops on implementation of the E-\nGovernment Act. The first of these already took place on January 22, \nwhen CDT co-hosted a forum to help agencies comply with the Act's \nprovisions on machine readable privacy notices. And on March 31, CDT \nwill be hosting, along with the Council for Excellence in Government \nand the American Council for Technology, a workshop on PIAs.\n    CDT previously testified that the Privacy Impact Assessments \nrequired under the Defense of Privacy Act will complement the PIA \nrequirements of the E-Gov Act. We are very pleased that the \nSubcommittee is planning to report the bill. As DOPA moves forward, we \nrecommend that you ensure that the PIA provisions of DOPA and the E-\nGovernment Act are congruent. Our initial thoughts are that this should \nbe done by making the list of factors to be considered in a PIA the \nsame in both laws, and by making it clear that when a new collection of \ninformation is initiated by rule, the notice and comment provisions of \nthe Defense of Privacy Act apply to the privacy impact assessment \nprocess. Indeed, the publication requirement of DOPA is an improvement \nover the E-Government Act; it may be desirable to amend the latter to \nmake it clear that PIAs must generally be published for comment before \na system is procured or a program is implemented.\n    Other privacy issues that need to be addressed include the need to \nupdate the Privacy Act. One of the Act's key definitions--``system of \nrecords''--is ill-suited to the current data environment, in which much \ninformation useful to the government is held by the private sector. \nUnder current law, the government may be able to bypass the Privacy Act \nby accessing existing private sector databases rather than collecting \nthe information itself. When citizens and policymakers alike are \nconcerned about the potential abuses of ``data-mining'' techniques, \nCongress obtain a full reporting from all agencies as to their uses of \ncommercial databases and should insist that there be clear guidelines \nas to the access to and use of commercial data.\n\n                             IV. CONCLUSION\n\n    CDT commends the Subcommittee for holding this important hearing. \nThe excellent work of the DHS Chief Privacy Officer provides a vision \nof what could be. Privacy Officers cannot alone solve every privacy \nproblem that will face the federal government. However, if the Privacy \nOfficer position is statutorily chartered for each agency and if \nPrivacy Impact Assessments are required to be published for both \nregulations and information collections, the public will be insured \ngreater accountability and responsibility on this important issue.\n\n    Mr. Cannon. Thank you, Mr. Dempsey.\n    Without objection, I would like to recognize the sponsor \nand then the primary co-sponsor for questioning out of order. \nWe'll go back to the time people arrived for questioning after \nthat. So Mr. Chabot, the gentleman from Ohio is recognized for \n5 minutes.\n    Mr. Chabot. Thank you, Mr. Chairman. I appreciate that very \nmuch.\n    Clearly, as we've seen from the testimony of all the \nwitnesses here today, protecting the American people from \nterrorist threats is a paramount importance, yet protecting the \ncivil liberties that Americans cherish and their privacy is \nalso a critical issue. Balancing security and civil liberties \nin the face of terrorist threats around the world is a \ndifficult task that must be carefully considered.\n    Ms. Kelly, thank you for your service at the Department of \nHomeland Security and for appearing before the Subcommittee \ntoday. We appreciate it very much. Your testimony will be \ntremendously helpful as Congress deliberates on how best to \nprotect the privacy of our Nation's citizens\n    As the Chief Privacy Officer for the Department of Homeland \nSecurity--I've got a couple questions. I'll just put them all \ntogether rather than keep going over them. But you're really in \na unique position to evaluate the benefits of privacy impact \nassessments in the Federal regulatory process.\n    Could you detail for the Subcommittee, this is my first \nquestion, how preparing privacy impact assessments have \naffected the regulatory process at the Department of Homeland \nSecurity? Specifically, one of the primary goals of the bill \nwhich just passed the Committee a little while ago is to urge \nFederal agencies to reconsider regulations that are potentially \nharmful to the privacy rights of the American people and \nultimately pursue less intrusive alternatives.\n    In your experience at DHS, has the consideration of privacy \nrights as regulations are formulated affected the ultimate \nproduct? Or has the preparation of privacy impact statements \nresulted in the reconsideration of any proposed regulations or \nthe pursuit of alternative plans?\n    And finally, a few concerns have been raised about the \nburden preparing privacy impact assessments might have on the \nFederal regulatory process. Have you experienced any \nsignificant burden associated with preparing privacy impact \nassessments at the Department of Homeland Security?\n    You can address them in any order that you'd like.\n    Ms. O'Connor Kelly. Thank you so much for those questions.\n    It is actually one of the most important programs, I think, \nwithin the Department of Homeland Security's Privacy Office, to \noversee the development of privacy impact assessments for the \nDepartment. And if I might, I'd like to detail a little bit the \nprocess that we follow.\n    We actually have given our directorates written \ninstructions that the program office for each of the \ndirectorates is responsible for the initial drafting of a \nprivacy impact assessment. That makes the program officials and \npolicymakers for each of the various 22 agencies that now make \nup the Department on the hook and responsible for the initial \ndetermination of whether a privacy impact assessment is \nrequired from the very beginning of an idea.\n    And of course, that can be done in direct consultation with \nmy office. It should also be done in consultation with the \nPrivacy Act and Privacy Officers within the directorate and \nwith the chief information officers for that directorate so \nthat privacy impact assessment requirements will be considered \nfrom the very beginning of any program development.\n    And of course, it should be said that the section 208 \nrequirements skew more toward the new technology developments \nand new program developments rather than toward notice of \nproposed rulemakings as the proposed legislation does.\n    I would have to say that it is again one of the most \nimportant processes, I think, for the evaluation of privacy \nimpact of any new program for the Department. It forces the \nanalysis to occur at the earliest possible stages. And we have \nalso endeavored to make those privacy impact assessments public \nso that, as your proposed legislation suggests, citizens can \ncomment on the PIA and the proposed program at the earliest \nimplementation or proposed stages.\n    So I don't see it as a burden, although if you want to talk \nabout man-hours or person-hours, to do a good privacy impact \nassessment does require substantial amount of time by employees \nof the program office, of the Chief of Information's Office, \nand also of my office. But we don't necessarily see that as a \nnegative burden but it is certainly a cost and it should be \nconsidered.\n    Mr. Chabot. Thank you, very much.\n    Mr. Chairman, I know the light is ready to turn red here. \nMy follow-up question was just going to be with the other \nwitnesses to see if they wanted to comment on the legislation \nthat we've considered here today, but I'm sure the other \nMembers of the panel will get into that so I'll refrain from \nasking that at this time.\n    Mr. Cannon. The gentleman yields back. The gentleman from \nNew York, Mr. Nadler, is recognized for 5 minutes.\n    Mr. Nadler. Thank you.\n    Thank you. Let me start by just asking the other witnesses \nif they'll comment on the questions of the gentleman from Ohio. \nI would have a similar question on the impact of this \nlegislation. Mr. Dempsey first.\n    Mr. Dempsey. Congressman, if I could. As the Chairman said, \nof course, the Budget Office has looked at this and concluded \nthat it will not have a significant monetary impact. But I \nthink more importantly than that, these are issues that have to \nbe addressed anyhow in the design of the system. The privacy \nimpact assessment, whether it's on the regulatory side or on \nthe procurement side, you have to--program managers better be \naddressing what information are they collecting, why are they \ncollecting it, how long are they keeping it for, who's going to \nhave access to it, how the security of it will be protected, \nhow they will ensure the accuracy of the information--after all \nthe system is not going to be worth anything and we're going to \njust be wasting money if the information is inaccurate--how do \ncitizens correct information in the system, and what sort of \noversight and audit mechanism is there?\n    So those are issues that any good program manager should be \naddressing strictly from an efficiency standpoint. Again, this \nis one of the areas where the privacy interest and the \nGovernmental mission are not at odds with each other. You have \nto walk through the information issues.\n    I think a better term than privacy is fair information \npractices. How are we using information? That's one of the \nthings that the PIA process helps you do. And at the end of the \nday if you don't do that you're going to end up with either an \nembarrassment or a system that doesn't work or citizen \ndisrespect for the system, in which case perhaps citizens will \nstart entering faulty data, et cetera.\n    So in order to create trust and in order to create an \nefficient system to serve the Government mission, whenever it \nis, you have to address these questions.\n    That's why I say that I don't really see this at all as \nimposing a cost. I see it really as helping the efficiency of \nthe Government.\n    Mr. Nadler. It imposes a cost, in other words, only if the \nGovernment agencies weren't going to do what they should be \ndoing?\n    Mr. Dempsey. That's correct.\n    Mr. Nadler. Does anyone else have a brief comment to make, \nbecause I have one other question?\n    Ms. Katzen. I would just add one thing to that, sir, and \nthat is, as Mr. Dempsey mentioned earlier, there is already in \nthe law and OMB has issued guidance and the agencies are \nlearning how to do PIAs for not only information technology \nprograms, which is what the CAPPS II and the US-VISIT programs \nare. They are not regulations, they are programs.\n    But also the E-Government Act applies whenever there is an \ninformation collection, paperwork, that calls for personally \nidentifiable information.\n    Now, often those paperwork exercises are the product of \nrules, regulations. And I think it is well taken that it should \nbe clear that the E-Government Act applies in those \ncircumstances.\n    But I would support what Mr. Dempsey said--make sure \nthey're the two same regimes and not different regimes for the \nsame process.\n    Mr. Nadler. Thank you.\n    Ms. Kelly, let me ask you the following. Much of the debate \nover privacy is centered about the accumulation of information \nabout individuals by Government agencies. But this Committee \nhas been advised on numerous occasions that information \ngathered by contractors or other third parties is sometimes \nused or reviewed by those third parties and never actually \nretained by the Government agency. What steps are Federal \nagencies--have Federal agencies taken to ensure the information \ngathered and held by third party contracts for the Federal \nGovernment is protected?\n    And to the extent that some of these data functions are \nbeing contracted out overseas what steps are Federal agencies \ntaking to ensure that once the data is outside the U.S. it is \nnot missed used or mishandled abroad?\n    Ms. O'Connor Kelly. Thank you, very much, Mr. Nadler.\n    I think that the sharing of personal information between \nthe public and the private sector is likely one of the most \ncompelling privacy issues confronted by my department and by \nmost Federal agencies in trying to leverage the best of \ntechnology and the most efficient and cost-effective processes \nto achieve their departmental mission but while also protecting \nthe personal information that is used in those programs or \nmissions.\n    In my experience at the Department of Homeland Security, we \nvery routinely cover contractors who are providing services to \nthe Department by the Privacy Act expressly in Privacy Act \nsystems of records notices which bind the activities and the \nbehavior of the contractor to be subject to the Privacy Act of \n1974 equally as if those activities were performed by a Federal \nGovernment employee.\n    But your point is still extraordinary well taken that in \ninstances that a private sector company is not acting as a \ncontractor but is simply a partner or somehow a regulated \nentity the rules are less clear. And my office is also working \ndiligently with a number of industry groups to develop \nresponsible rules for that kind of information sharing across \nthe public and private sector divide.\n    I think some of the points that Ranking Member Watt made \nearlier about the incidents of information sharing in the past \nare extraordinarily important and illustrative that we need \nthose kind of rules in place on a voluntary basis in the \nprivate sector as well as good instruction in the public sector \non how to handle private sector information.\n    Mr. Nadler. I see the red light so I won't follow up. Thank \nyou.\n    Mr. Cannon. The gentleman yields back.\n    Mr. Coble, the gentleman from North Carolina, is recognized \nfor 5 minutes.\n    Mr. Coble. Thank you, Mr. Chairman. And Chairman Cannon \nsaid earlier, we appreciate you all being with us, I say to \neach of the four witnesses.\n    Mr. Chairman, I've got to depart for a meeting that started \nat four o'clock, but prior to my departure I wanted to put a \nquestion to Ms. O'Connor Kelly regarding last fall's \ndisclosure, Ms. O'Connor Kelly, that JetBlue provided travel \nrecords I think in excess of one million of its passengers to a \ndefense contractor presumably in violation of its own policies.\n    I recall there were several press releases or reports \nshortly after that was revealed that indicated that you were \ncommencing an investigation into matter. I'm curious to know \nthe current status of your investigation.\n    Ms. O'Connor Kelly. Thank you, very much, Mr. Coble.\n    Again, a very high profile and high priority for my office \nis the investigation of any misuse of individual data by any \nemployee of the Department of Homeland Security that would \nviolate the Privacy Act. And certainly the case that you refer \nto is probably one of the more high-profile cases in the last \n12 months. We certainly did announce that we were looking into \nparticularly any activities by Department of Homeland Security \nemployees. We are still in the process of accumulating many, \nmany pages of documents that we are reviewing in my office to \nascertain any wrongdoing by any employee.\n    I think though the case illustrates a larger point which is \nin the days and weeks after September 11th, many companies \nvoluntarily came forward in the spirit of trying to help \nFederal Government agencies and we need to have clearer rules \nin place where companies who want to help the homeland security \nmission know how to do that effectively and with respect for \ntheir customers' information and with respect for the privacy \npolicies that are in place at the time that data is collected.\n    Mr. Coble. And I also presume or hopefully that their \npurpose in doing so was well-intentioned. Is that your reading?\n    Ms. O'Connor Kelly. That's very much my understanding, yes, \nsir.\n    Mr. Coble. I thank you and I yield back, Mr. Chairman.\n    Mr. Cannon. I thank the gentleman. I apologize for causing \nhim to be late by going out of order earlier.\n    Mr. Coble. I will hold you harmless.\n    Mr. Cannon. Thank you, my friend.\n    The gentleman from Massachusetts, Mr. Delahunt, is \nrecognized for 5 minutes.\n    Mr. Delahunt. Thank you, Mr. Chairman. And Professor Katzen \nand Mr. Dempsey, to follow up on your reference to how the--\nthis concept, this privacy information office should be \nexpanded, I've had discussions with the gentleman to my right \nhere, although he's usually to my left but today he's to my \nright, Mr. Nadler. He and I intend to file, and we will be \nlooking for co-sponsors, legislation to insert this--insert \nthis particular initiative into the Department of Justice. So \nwe'll be looking to you for guidance, as well as--as well as \nyou, Ms. Kelly.\n    Having said that, my concern is about the enforcement \nmechanism. I think it was the GAO study last year that \nindicated that compliance with the Privacy Act by various \nFederal agencies is--I think the word was uneven. And there--in \nthe memo prepared by the Chairman to Members of the Committee, \nthere's a sentence in there, and let me read it to you. And \nthen I would pose the question and ask comments--ask if you can \nprovide information to the Committee.\n    An agency that releases such information in violation of \nthe Privacy Act may be sued for damages sustained by an \nindividual as a result of such violation under certain \ncircumstances.\n    Presumably the--it's the Federal Tort Claims Act that would \nbe implicated? Or is there a different piece of legislation \nthat allows a suit? Professor Dempsey?\n    Mr. Dempsey. I'm not a professor but I think I can answer \nthe question.\n    It's actually in the Privacy Act itself, where there is a \ndamages provision.\n    Mr. Delahunt. Are there caps on the damages?\n    Mr. Dempsey. No, I don't think there are. There's a \nliquidated damages provision and then there's also a whatever \ndamages you can prove.\n    Mr. Delahunt. So this outside the Federal Tort Claims Act \nthen?\n    Mr. Dempsey. Yes, it's a separate statutory scheme, yes, \nsir.\n    Mr. Delahunt. In terms of the enforcement mechanism?\n    Mr. Dempsey. Yes.\n    Mr. Delahunt. Do we have data available to us in terms of \nthe number of suits that have been brought?\n    Mr. Dempsey. Well, one of the issues, actually an issue \nthat's now before the Supreme Court--and it's one we should all \nwatch carefully--is the question of the statutory or liquidated \ndamages provision of that law. In many cases, of course, it may \nbe difficult to prove specific monetary losses, although in the \ncase of a victim of identity theft that could be significant. \nAn awful lot of people sue under the liquidated damages \nprovision where there is a----\n    Mr. Delahunt. You said an awful lot. Do you have any \nempirical information that you can provide?\n    Mr. Dempsey. Not with me sir, but we could certainly try to \nfind some of that and get----\n    Mr. Delahunt. I really think that's important because we \ncan have a policy but if we have, within the provision allowing \nfor lawsuits by individuals against the Government, impediments \nthat are burdensome then I don't see the necessary deterrence, \nif you will, to Federal agencies to not comply, if you will.\n    Mr. Dempsey. Well and I--we will definitely look at----\n    Mr. Delahunt. Or incentive. Let me rephrase it, incentive \nto comply with the Privacy Act.\n    Mr. Dempsey. Congressman, we're happy to look that up.\n    Mr. Delahunt. And if there are settlements, too, I'd like \nto have that information.\n    Mr. Dempsey. And I think you're also on the right track \nhere generally, which is that you can have an office like the \nprivacy officer, and that's important, but you need to look at \nthe question of what are the laws that he or she is enforcing. \nAnd if those laws themselves don't have any teeth to them, then \nthat person is only as good as their internal persuasive powers \nare and they're going to win some and lose some.\n    Mr. Delahunt. Well, I'm sure Ms. Kelly's persuasive powers \nare substantial, but I'd like to have some teeth.\n    Mr. Dempsey. You need some teeth.\n    Mr. Delahunt. In terms of the--again, in terms of creating \nincentive for compliance because, you know, we can have \noversight hearings and we can be people of--we can have all the \ngood intentions in the world. But if we do not have a \ndeterrence, if you will, then I think we will continue to find \nthat compliance will be, as the GAO study indicated, uneven. \nAnd that's a real danger.\n    Anyone else went to comment?\n    Mr. Gilmore. Mr. Delahunt, let me add one thing. I know the \nemphasis of the question is on not getting information. There \nare going to be a large number of programs and Governmental \nfunctions that are, by their very nature, going to accumulate \nsome information from people. And then I think, at that point, \nthe real focus needs to be what rules, what technologies, what \nregulations are applied in order to--how to control that \ninformation. Who gets it? Where is it stored? How long is it \nstored? Who can get it and who can't? What can you do with it?\n    These are the ultimate issues that are going to provide the \nsecurity to the people of the United States as we go forward.\n    For example, there are--Mr. Nadler, Congressman Nadler \nasked a question about how the Department could influence some \nof these matters. And I think they're doing it by issuing \ncontracts that place important privacy considerations within \nthem and requirements that private contractors address those \nissues and actually come forward with their way of dealing with \nit so that it can be assessed by the Privacy Officer and by the \nDepartment.\n    You are, in effect, beginning to set down the structures \nand institutional checks and balance necessary that will give \nyou the opportunity for oversight.\n    Mr. Delahunt. Thank you.\n    Mr. Cannon. The gentleman's time has expired.\n    Let me suggest to the gentleman from Massachusetts and also \nthe gentleman from New York that I believe we have a provision \nin this so far unreported DOJ reauthorization bill that we \ncould create the privacy officer for the Department of Justice. \nSo you may want to take a look at that bill and see how that \nwould fit in.\n    Without objection, Members may submit questions to the \nwitnesses, written questions, and we'll try and include the \nanswers to those in the record, if there are any of those.\n    And now Mr. Watt, the gentlemen from North Carolina is \nrecognized for 5 minutes.\n    Mr. Watt. Thank you, Mr. Chairman. I want to pick up on a \ncouple of things that have come out in the testimony, if I have \ntime. The most important one is kind of a segue from your last \ncomment, Mr. Chairman, and from Professor Katzen and Mr. \nDempsey's suggestion that we really need to have privacy \nofficers in all 20 departments, however many departments there \nare.\n    I may be expecting too much of Ms. Kelly to ask her to \ncomment on that because she's probably going to have the \nfeeling that she would be meddling in other people's business. \nBut I would, if she cares to comment on it, like to hear from \nher on whether she thinks that's a good idea. I would certainly \nlike to hear from Governor Gilmore on whether he thinks it's a \ngood idea.\n    And I guess the subtext for that is is there really enough \nexpertise in our agencies now to do effective privacy impact \nanalyses without a privacy officer? And secondarily, is there \nenough focus on it, on the importance of it, without having \nsomebody who has direct responsibility for it?\n    So with those--with that kind of backdrop let me--I'll give \nMs. Kelly an opportunity to kind of frame how she might want to \nmeddle in this while we listen to Governor Gilmore.\n    Mr. Gilmore. Congressman Watt, I guess that the two \nelements I was thinking about as you asked your question is \nnumber one, what is--what are you trying to do? And I think \nthat there's going to be a big debate here as time goes on as \nwe apply security measures about how that impinges on the \noverall freedoms of the American people. Not just privacy. \nPrivacy is only really a single element. And I know the \nSubcommittee is focused on it because of the Privacy Act and \nthe underlying House--H.R. 338. But it's going to be a big \nissue.\n    But I guess I would want to reflect upon whether or not you \nwant to put 28 privacy officers into all these different \ndepartments. It certainly would require an awful lot of staff. \nIt would require an awful lot of slowing up, potentially.\n    And mainly, I wonder about one privacy officer in one \ndepartment making a rule on a particular concept and then \nanother privacy officer somewhere else making the same ruling \nor a different ruling on the same concept. And after a while \nthe Government becomes so snarled up about what's privacy and \nwhat isn't that you may really slow things up in a way that \ncould be detrimental.\n    I'd think about that. You might want to just consolidate \nall of this under Nuala O'Connor Kelly, give her about 5,000 \nemployees or redeploy them, if you will----\n    Mr. Watt. Not only now you've got her going to meddling, \nyou've got her to empire building.\n    Mr. Gilmore. Empire building. But I would redeploy.\n    Mr. Watt. You've laid a good framework for whatever comment \nshe might want to make.\n    Mr. Gilmore. I guess those are my initial thoughts.\n    Mr. Watt. Ms. Kelly?\n    Ms. O'Connor Kelly. Well, I have to say that this entire \npanel is in violent agreement that we are all very happy with \nthe work that's been done and that there's much more to be \ndone, both at our agency and at other agencies. So you're \nright, Congressman Watt, that I try not to be meddlesome, \nalthough I'm sure that I've been accused of that in my personal \nlife and elsewhere.\n    But I should note that the OMB guidance under section 208 \nof the E-Government Act impliedly requires all agencies to have \na senior privacy official. And you echo that language in the \nproposed Federal Agency Protection of Privacy Act, as it's \ncalled now.\n    Mr. Watt. Is there enough expertise on this issue, though, \nin most agencies, in your opinion, without somebody whose sole \nresponsibility is that?\n    Ms. O'Connor Kelly. There's a surprising amount of \nexpertise in the agencies that have a historic mission that \naffects personal information. I think it's no accident that you \nsee tremendously well formed privacy programs at agencies like \nthe Internal Revenue Service and the United States Postal \nService. I know both of those privacy officers in those \nprograms quite well. Because certainly incidents have happened \nin the past where people were concerned about those agencies' \nwork but also because such a crucial lifeblood of their mission \ninvolves personal information.\n    I certainly would say that we need to look at the hierarchy \nof agency missions and of the language of the proposed bill as \nwell in that light, that we certainly may not need PIAs for \nrules that have absolutely no impact on human beings at all but \nsimply deal with statistics or other intangible objects. But \ncertainly agencies and programs that impact personal \ninformation should be, I think, our first line of attack.\n    Mr. Watt. Go-ahead.\n    Ms. Katzen. If I may, I'm not in the Government right now \nbut my experience is that the amount of expertise in the field \nof privacy has been increasing exponentially, and that we have \na cadre of people who understand the concept and know how the \nFederal Government works and that there would be a good pool to \nfeed this process.\n    But the solution is to have a statutory office in OMB, the \nChief Counselor For privacy, so you would not have the kinds of \ndisagreements among agencies that Governor Gilmore was \nsuggesting.\n    Mr. Watt. So you're not saying you might not need 20 of \nthem, you might need one super privacy czar, in OMB?\n    Ms. Katzen. Exactly. If you had that then you could have a \nhandful of agencies, five or six agencies max, where, as Ms. \nKelly has indicated, we have the expertise because for years \nthey have been dealing with personally sensitive information, \neither financial or medical records, SSA, those kinds of areas, \nwith it topped by an OMB official would be, I think, very \nsensible.\n    Mr. Dempsey. Congressman Watt, just two quick--two or three \nquick points.\n    First of all, the Center for Democracy and Technology, \nrecognizing this question about expertise, has been conducting \na series of workshops--we held two last year, we held one in \nJanuary, we're holding a second one on March 31--for Government \nofficials to help actually walk them through the implementation \nof the E-Government Act, including the preparation of privacy \nimpact assessments and some of the other provisions there. \nWe've had roughly 150 agency officials at each one of those so \nfar, working with OMB.\n    Now, I'll say that OMB has not been fully fulfilling, I \nthink, it's mission here. They were late in issuing the \nguidance on preparation of privacy impact assessments. They \nclearly have a role to do that. They were late in doing that.\n    And they're now unfortunately encouraging agencies to \nwithhold the privacy impact assessments that they have done \nuntil after the budget process is completed. And really, the \nwhole purpose of the privacy impact assessment is to do it, get \nit out there for comment so that both this Congress and members \nof the public can take a look at it and comment upon it before \nsomething is set in stone.\n    I think the recommendation of Ms. Katzen is 100 percent \ncorrect, that one way perhaps to strike the right balance here \nis to have that designated chief privacy counselor in OMB, \npreferably with some statutory basis, and then to go agency by \nagency where it's particularly necessary, with the Department \nof Justice, with the Social Security Administration. We have \ntwo very, very good non-statutory privacy officers at the \nPostal Service and at the IRS, both of whom are excellent but \nhave no real statutory basis. And those are agencies that \nclearly need them.\n    Mr. Watt. Thank you, Mr. Chairman. You've been very \ngenerous.\n    Mr. Cannon. We appreciate it. Thank you, Mr. Watt. The \ngentleman yields back.\n    And we thank the panel for your comment. I do have a couple \nof comments but first of all, without objection, Members will \nhave--be allowed 7 days to submit questions \\1\\ for the members \nof the panel. Hearing no objection, so ordered.\n---------------------------------------------------------------------------\n    \\1\\ Post-hearing questions were submitted by the Honorable Chris \nCannon, Chairman of the Subcommittee, to Ms. Nuala O'Connor Kelly, \nChief Privacy Officer, U.S. Department of Homeland Security. No \nresponse had been received by the Subcommittee at the time this hearing \nwas printed. A copy of the questions submitted by Mr. Cannon can be \nfound in the Appendix.\n---------------------------------------------------------------------------\n    Let me just point out that the testimony today was \nappropriate and interesting and remarkably coherent. And I \nthink we have our work cut out for us here. May I just say, in \nthe first place, we intend to oversee this process rigorously. \nAnd secondly, we will take the comments and suggestions very \nmuch into consideration between now and the time that we mark \nup this bill at full Subcommittee and appreciate that.\n    I believe at this point that there is good reason to have \nmore statutory--more privacy officers with statutory authority. \nI think that's worked very well. I said earlier that I thought \nthat Ms. O'Connor Kelly's work was historic and, in fact, I \nthink it is groundbreaking and it's the foundation for what we \ndo.\n    I might just add my own comments. I think the \nAdministration has done a remarkably good job in this regard. \nAnd maybe it's a little different. Somebody called it--said we \nought to have a czar, a privacy czar at OMB. I forget who \nactually used that term.\n    But my sense is that having done what we've done at DHS, \nand which Ms. O'Connor Kelly has really led on, gives us a much \nbetter sense of what can be done and frankly and particularly \nthe importance of statutory authority, which I think Mr. \nDempsey you talked about with particularity.\n    I think that that has a tendency to grow the ideas. And I \nview that if we get a privacy czar at OMB, I wouldn't think of \nhim as a czar so much as a best practices kind of person who is \nwatching what happens. Because I don't think you can force \nprivacy down. I think you need agencies to get the gospel, \nwhich is that if you--and I think you said this with great \nclarity, Mr. Dempsey. If you consider these in the design of \nthe program with regulation, you end up with a much lower cost \noverall and a much better outcome.\n    My experience with OMB, and I don't mean to disagree with \nyou on this, Ms. Katzen, but it's always very bitter. It's just \ndifficult when you're pounding on these guys who have great \nauthority.\n    And I don't think this is an issue that resolves itself \nwell by a young person who comes in the Government and serves \nin OMB where he is given a robe of authority that transcends \nanything he could imagine or she could imagine in advance of \nthat, and now is going to tell people who have actually got \nexperience in an and agency and in the problems and the \nprograms of that agency, how they're going to do business. I \nthink it works much better if it goes the other way.\n    But we are going to deal with that issue I can assure you, \nand I suspect we're going to see several more privacy officers \nbecause I think this has worked out well.\n    So I thank the panel and Members for coming today. With \nthat, we will stand adjourned.\n    [Whereupon, at 4:35 p.m., the Subcommittee was adjourned.]\n\n\n                            A P P E N D I X\n\n                              ----------                              \n\n\n               Material Submitted for the Hearing Record\n\n<GRAPHIC(S) NOT AVAILABLE IN TIFF FORMAT>\n\n                                 <all>\n\x1a\n</pre></body></html>\n"