HHS Machine-Readable Privacy Policy Guide - Substance Abuse ...
HHS Machine-Readable Privacy Policy Guide - Substance Abuse ...
HHS Machine-Readable Privacy Policy Guide - Substance Abuse ...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
<strong>Machine</strong>-<strong>Readable</strong> <strong>Privacy</strong> <strong>Policy</strong> <strong>Guide</strong><br />
US Department of Health and Human Services<br />
<br />
<br />
<br />
Usage—for what business purpose collected data is used and disclosed<br />
Sharing—with whom data is shared and why and whether sharing is optional<br />
Expiration—how long information is retained.<br />
1.3 Scope<br />
All <strong>HHS</strong> websites should have a machine-readable privacy policy on all public<br />
websites to ensure compliance with the E-Government Act of 2002. <strong>Machine</strong>readable<br />
privacy policies are not required on <strong>HHS</strong> Intranet websites. This guide<br />
applies to all <strong>HHS</strong> personnel, which includes the Operating Divisions (OPDIV) and<br />
contractors responsible for managing and operating public websites on behalf of <strong>HHS</strong><br />
or OPDIVs.<br />
This guide will familiarize <strong>HHS</strong> personnel with machine-readable privacy<br />
requirements set forth in the E-Government Act of 2002 and machine-readable<br />
privacy specification, Platform for <strong>Privacy</strong> Preferences (P3P), developed by the World<br />
Wide Web Consortium (W3C).<br />
1.4 Document Organization<br />
The remainder of the document is structured as follows:<br />
<br />
<br />
<br />
<br />
<br />
Section 1 describes federal privacy requirements.<br />
Section 2 provides roles and responsibilities during the implementation<br />
process.<br />
Section 3 describes the process of implementing a machine-readable privacy<br />
policy.<br />
Section 4 provides step by step guidance on how to develop and implement a<br />
machine-readable privacy policy.<br />
Section 5 provides a conclusion summarizing the points of this guide.<br />
This guide also contains the following appendices:<br />
<br />
<br />
<br />
<br />
<br />
<br />
Appendix A provides a feedback form for use in submitting comments on this<br />
document to <strong>HHS</strong>.<br />
Appendix B lists the acronyms used in this document.<br />
Appendix C defines terms most frequently used in this document.<br />
Appendix D lists references for this document.<br />
Appendix E provides the <strong>Machine</strong>-<strong>Readable</strong> Data Analysis Worksheet.<br />
Appendix F provides a list of all documents associated with the <strong>HHS</strong><br />
Information Security Program.<br />
Page 7