Information Policy
- Privacy Guidance
- Standards Policy
- Information Quality Government-wide Initiatives
- Freedom of Information Reform Act
- Government Paperwork Elimination Act (GPEA)
- OMB-Specific Information Quality Web page
- Computer Security
-
Privacy Guidance
-
Federal Register Notice on Reissuance of OMB Circular No. A-108, "Federal Agency Responsibilities for Review, Reporting, and Publication under the Privacy Act" (December 23, 2016)
- Circular A-108, Federal Agency Responsibilities for Review, Reporting, and Publication under the Privacy Act (December 23, 2016) (45 pages, 273 kb)
- M-16-24, Role and Designation of Senior Agency Officials for Privacy (September 15, 2016) (5 pages, 288 kb)
- Circular A-130, Managing Information as a Strategic Resource (July 28, 2016) (85 pages, 538 kb)
- Circular A-123, Management’s Responsibility for Enterprise Risk Management and Internal Control (July 15, 2016) (51 pages, 1.56 mb)
- M-14-06, Guidance for Providing and Using Administrative Data for Statistical Purposes (February 14, 2014) (38 pages, 755 kb)
- M-13-20, Protecting Privacy while Reducing Improper Payments with the Do Not Pay Initiative (August 16, 2013) (18 pages, 10 mb)
- M-13-13, Open Data Policy – Managing Information as an Asset (May 9, 2013) (12 pages, 6 mb)
- Model Privacy Impact Assesment for Agency Use of Third-Party Websites and Applications (December 29, 2011) (14 pages, 644 kb)
- M-10-23, Guidance for Agency Use of Third-Party Websites and Applications (June 25, 2010) (9 pages, 78 kb)
- M-10-22, Guidance for Online Use of Web Measurement and Customization Technologies (June 25, 2010) (9 pages, 130 kb)
- M-03-22, OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002 (September 30, 2003)
- M-01-05, Guidance on Inter-Agency Sharing of Personal Data - Protecting Personal Privacy (December 20, 2000)
- Status of Biennial Reporting Requirements under the Privacy Act and the Computer Matching and Privacy Protection Act (June 21, 2000) (2 pages, 229 kb)
- M-99-18, Privacy Policies on Federal Web Sites (June 2, 1999)
- M-99-05, Instructions on Complying with President's Memorandum of May 14, 1998, "Privacy and Personal Information in Federal Records" (January 7, 1999)
- M-98-09, Updated Guidance on Developing a Handbook for Individuals Seeking Access of Public Information (April 23, 1998)
- Privacy Act Responsibilities for Implementing the Personal Responsibility and Work Opportunity Reconciliation Act of 1996 (November 3, 1997) (3 pages, 431 kb)
- M-97-10, Guidance on Developing a Handbook for Individuals Seeking Access to Public Information (April 7, 1997)
- Computer Matching and Privacy Protection Amendments of 1990 and the Privacy Act o1 1974, 56 FR 18599 (April 23, 1991) (3 pages, 592 kb)
- Final Guidance Interpreting the Provisions of Public Law 100-503, the Computer Matching and Privacy Protection Act of 1988, 54 FR 25818 (June 16, 1989) (12 pages, 1.45 mb)
- Guidance on Privacy Act Implementations of Call Detail Programs, 54 FR 12290 (April 20, 1987) (4 pages, 543 kb)
- Privacy Act Guidance -- Update (May 24, 1985) (10 pages, 647 kb)
- M-83-11, Guidelines on the Relationship Between the Privacy Act of 1974 and the Debt Collection Act of 1982 48 FR 15556, April 11, 1983 (March 30, 1983) (5 pages, 1.39 mb)
- Implementation of the Privacy Act of 1974, Supplemental Guidance, 40 FR 5674, (December 4, 1975) (3 pages, 215 kb)
- Congressional Inquiries which Entail Access to Personal Information Subject to the Privacy Act (October 3, 1975) (2 pages, 265 kb)
-
Privacy Act Implementation, Guidelines and Responsibilities, 40 FR 28948 (July 9, 1975) (3 pages, 4.62 mb)
-
Federal Register Notice on Reissuance of OMB Circular No. A-108, "Federal Agency Responsibilities for Review, Reporting, and Publication under the Privacy Act" (December 23, 2016)
-
Standards Policy
- Federal Register Notice on Revision of OMB Circular No. A-119, “Federal Participation in the Development and Use of Voluntary Consensus Standards and in Conformity Assessment Activities”.
-
Federal Register Notice on Requests for Comments on a Proposed Revision to OMB Circulate No. A-119 "Federal Participation in the Development and Use of Voluntary Consensus Standards and In Conformity Assessment Activities" (published on 2/11/2014).
- Proposed Revisions to the Circular posted on 2/10/2014 (58 pages, 500 kb)
- [OMBlog]: Updating Guidance on Use of Voluntary Consensus Standards to Promote Smarter Regulation, Collaboration, and Technological Innovation (February 14, 2014)
- Federal Register Notice on Federal Participation in the Development and Use of Voluntary Consensus Standards and in Conformity Assessment Activities - Request for Information and Notice of Public Workshop (March 30, 2012)
- National Archives and Records Administration Federal Register Notice on Incorporation by Reference (February 29, 2012)
- Joint Memo to Heads of Executive Departments and Agencies on Principles for Federal Engagement in Standards Activities to Address National Priorities (January 17, 2012)
- Circular A-119: Federal Participation in the Development and Use of Voluntary Consensus Standards and in Conformity Assessment Activities (February 10, 1998)
- National Institute of Standards and Technology (NIST) Standards Portal
-
Information Quality Government-wide Initiatives
-
M-07-24, Updated Principles for Risk Analysis (September 19, 2007) (13 pages, 156 kb)
- News Release, OMB and OSTP Statements on Updated 1995 Principles for Risk Analysis (September 19, 2007)
-
Proposed Bulletin on Risk Assessment
- Link to Public Comments on Proposed Risk Assessment Bulletin
- Link to National Academy of Sciences (NAS) review of draft Risk Bulletin
- OMB Proposed Bulletin on Risk Assessment (January 9, 2006) (26 pages, 157 kb)
- OMB Requests Peer Review of Proposed Risk Assessment Bulletin (Press Release, January 9, 2006) (1 page, 44 kb)
- Federal Register Notice announcing Proposed Bulletin on Risk Assessment (January 17, 2006) (1 page, 71 kb)
- OMB Peer Review Agenda for Proposed Bulletin on Risk Assessment (1 page, 18 kb)
-
Final Information Quality Bulletin for Peer Review
- Issuance of OMB's Final Information Quality Bulletin for Peer Review (December 16, 2004) (45 pages, 263 kb)
- Federal Register Notice for Final Bulletin (January 14, 2005) (14 pages, 145 kb)
- Response to Comments on the Revised Proposal for Bulletin on Peer Review (December 15, 2004) (6 pages, 45 kb)
- Memorandum from John D. Graham to the President's Management Council, "Posting of Information Quality Correction Requests and Responses" (August 30, 2004) (1 page, 34 kb)
- Information Quality: A Report to Congress (April 30, 2004) (122 pages, 739 kb)
-
Revised Information Quality Bulletin on Peer Review (April 15, 2004) (36 pages, 197 kb)
- Submitting Comments on the Revised Information Quality Bulletin on Peer Review
- Summary of Public and Agency Comments on Proposed Bulletin on Peer Review and Information Quality, Including Responses by OMB (April 15, 2004) (14 pages, 84 kb)
- Public Comments on the Revised Proposal for Bulletin on Peer Review
- Memorandum from John D. Graham for the President's Management Council, "Guidance for the Information Quality Annual Agency Report to OMB" (October 17, 2003) (8 pages, 174 kb)
-
Peer Review and Information Quality Proposed Bulletin and Request for Comment (August 29, 2003) (14 pages, 189 kb)
- Extension of Comment Period to December 15, 2003 (September 15, 2003) (7 pages, 105 kb)
- Public Comments on the Peer Review and Information Quality Proposed Bulletin
- Agency Information Quality Guidelines
- Memorandum from John D. Graham for the President's Management Council, "Executive Branch Information Quality Law" (October 4, 2002) (4 pages, 68 kb)
- Final Office of Management and Budget Information Quality Guidelines (October 1, 2002) (9 pages, 98 kb)
-
Draft Office of Management and Budget Information Quality Guidelines and Request for Comment (May 1, 2002) (10 pages, 140 kb)
- Extension of Comment Period (June 13, 2002) (1 page, 49 kb)
- Memorandum from John D. Graham for the President's Management Council, "Agency Final Information Quality Guidelines" (September 5, 2002) (3 pages, 154 kb)
- Memorandum from John D. Graham for the President's Management Council, "Agency Draft Information Quality Guidelines" (June 10, 2002) (12 pages, 140 kb)
- Letter from John D. Graham to Selected Agencies Regarding Draft Information Quality Guidelines (May 22, 2002) (10 pages, 14 kb)
- OIRA Administrator Speech: OMB’S ROLE IN OVERSEEING INFORMATION QUALITY (Remarks to Public Workshop on Information-Quality Guidelines, Sponsored by Committee on Data Quality, Science, Technology and Law Program, National Research Council/National Academy of Sciences, Washington, DC (March 21, 2002) (12 pages, 18 kb)
- Guidelines for Ensuring and Maximizing the Quality, Objectivity, Utility, and Integrity of Information Disseminated by Federal Agencies (February 22, 2002) (10 pages, 162 kb)
- Guidelines for Ensuring and Maximizing the Quality, Objectivity, Utility, and Integrity of Information Disseminated by Federal Agencies (September 28, 2001)
-
M-07-24, Updated Principles for Risk Analysis (September 19, 2007) (13 pages, 156 kb)
-
Freedom of Information Reform Act
- The Freedom of Information Reform Act of 1986: Uniform Freedom of Information Act Fee Schedule and Guidelines (March 27, 1987) (9 pages, 738 kb)
-
Government Paperwork Elimination Act (GPEA)
- Progress Report on Implementing the Government Paperwork Elimination Act (GPEA) (May 15, 2003) (4 pages, 156 kb)
- Progress Report on Implementing the Government Paperwork Elimination Act (GPEA) (August 9, 2002) (5 pages, 147 kb)
- Progress Report on Implementing the Government Paperwork Elimination Act (GPEA) (September 24, 2001) (9 pages, 69 kb)
-
Implementation of the Government Paperwork Elimination Act (May 2, 2000)
-
Computer Security
- Fiscal Year 2008 Report to Congress on Implementation of The Federal Information Security Management Act of 2002 (March 1, 2009) (125 pages, 720 kb)
- Fiscal Year 2007 Report to Congress on Implementation of The Federal Information Security Management Act of 2002 (March 1, 2008) (22 pages, 177 kb)
- Reminder - Ensuring Competition When Acquiring Information Technology and Using Common Security Configurations (December 19, 2007) (2 pages, 61 kb)
- M-07-19, FY 2007 Reporting Instructions for the Federal Information Security Management Act and Agency Privacy Management (July 25, 2007) (43 pages, 251 kb)
- M-07-11, Implementation of Commonly Accepted Security Configurations for Windows Operating Systems (March 22, 2007) (1 page, 28 kb)
- FY 2006 Report to Congress on Implementation of The Federal Information Security Management Act of 2002 (March 1, 2007) (Note: reposted to correct minor typographical errors) (144 pages, 772 kb)
- M-06-20, FY 2006 Reporting Instructions for the Federal Information Security Management Act and Agency Privacy Management (July 17, 2006) (42 pages, 301 kb)
- FY 2005 Report to Congress on Implementation of The Federal Information Security Management Act of 2002 (March 1, 2006) (86 pages, 437 kb)
- M-05-16, Regulation on Maintaining Telecommunication Services During a Crisis or Emergency in Federally-owned Buildings (June 30, 2005) (4 pages, 59 kb)
- M-05-15, FY 2005 Reporting Instructions for the Federal Information Security Management Act and Agency Privacy Management (June 13, 2005)
- Federal Information Security Management Act (FISMA) 2004 Report to Congress (March 1, 2005) (56 pages, 642 kb)
-
M-04-25, FY 2004 Reporting Instructions for the Federal Information Security Management Act (August 23, 2004) (28 pages, 270 kb)
- Section E -- FY04 FISMA Reporting Template (Excel, 164 kb)
- M-04-15, Development of Homeland Security Presidential Directive (HSPD) - 7 Critical Infrastructure Protection Plans to Protect Federal Critical Infrastructures and Key Resources (June 17, 2004) (14 pages, 119 kb)
- FY 2003 Report to Congress on Federal Government Information Security Management (March 1, 2004) (78 pages, 690 kb)
- FY 2002 OMB Report to Congress on Federal Government Information Security Reform (May 16, 2003) (131 pages, 1.24 mb)
- Improved FedCIRC Incident Reporting System (November 14, 2002)
- FY 2001 Report to Congress on Federal Government Information Security Reform (February 13, 2002) (112 pages, 1,079 kb)
- M-00-07, Incorporating and Funding Security in Information Systems Investments (February 28, 2000)
- M-99-20, Security of Federal Automated Information Resources (June 23, 1999)