Fiscal Year 2021 Privacy and Data Protection Inspection

View Report

Date Issued

Friday, March 29, 2024

Submitting OIG

Federal Communications Commission OIG

Other Participating OIGs

Federal Communications Commission OIG

Agencies Reviewed/Investigated

Federal Communications Commission

Report Number

21-INSP-10-01

Report Description

This inspection concluded that the FCC has effectively implemented five of the nine privacy requirements in Title 42 U.S.C. § 2000ee-2. Four of the nine requirements had not been effectively implemented for the period covered by our review. The final report includes four findings and offers seven recommendations intended to improve the Commission’s privacy and data protection policies and procedures

Report Type

Inspection / Evaluation

Location

Washington, DC
United States

Number of Recommendations

Questioned Costs

Funds for Better Use

Additional Details

https://www.fcc.gov/inspector-general/reports/audit

External Entity

N/A

External Link

https://www.fcc.gov/sites/default/files/21-insp-10-01_fy21_pdp-insp_03292024.pdf

Open Recommendations

This report has 4 open recommendations.

Recommendation Number	Significant Recommendation	Recommended Questioned Costs	Recommended Funds for Better Use
2	No	$0	$0
Implement a baseline of technologies that sustain and do not erode privacy protectionsrelating to the use, collection, and disclosure of information.
3	No	$0	$0
Implement the EDR tool that was previously acquired for privacy protection.
4	No	$0	$0
Identify and implement other technologies that will bring the FCC into fullcompliance with the requirement for continuous auditing of compliance with statedprivacy policies and practices.
5	No	$0	$0
Document a formal process to perform PIAs for proposed rules, including details on thetype of personally identifiable information collected and the number of people affected, inthe FCC Privacy Act Manual, as a requirement.