Font Size: AAA // Print // Bookmark

Privacy Office

  • About the Privacy Office

    The Commodity Futures Trading Commission created the Privacy Office in July 2010. The Office evaluates Commission programs, systems and initiatives for potential privacy impacts, provides mitigation strategies to reduce privacy impacts, and ensures transparency around Commission policies and practices related to the handling of personally identifiable information.

    Mission

    The mission of the Privacy Office is to preserve and enhance privacy protections for all individuals whose personal information is handled by the Commission, and to promote transparency of Commission operations involving personal information.

    The Privacy Office:

    • Ensures compliance with applicable laws, such as the Privacy Act of 1974, and privacy provisions of the E-Government Act of 2002, Commodity Exchange Act, and Federal Information Security Management Act;
    • Strives to ensure transparency of Commission policies and practices concerning the handling of personally identifiable information (“PII”) through the publicly-available web privacy policy, System of Record Notices, Privacy Impact Assessments, and other publications;
    • Evaluates Commission regulatory proposals and contractual arrangements involving collection, use, and disclosure of PII;
    • Operates a data breach response program to ensure that incidents involving PII are properly reported, investigated and mitigated, as appropriate;
    • Responds to privacy inquiries and complaints under the Privacy Act, and provides redress as appropriate;
    • Strives to ensure that privacy considerations and PII safeguards are addressed up front, in the design phase, when planning or updating any program, system or initiative;
    • Provides training, education and outreach to build a culture of privacy across the Commission and transparency to the public; and
    • Strives to provide oversight to ensure accountability for privacy across the Commission.

    The Commission uses Fair Information Practice Principles (“FIPPs”) as a policy framework to enhance privacy protections by assessing the nature and purpose for all PII collected to fulfill the Commission’s mission. The FIPPs are five core principles of privacy protection: (1) Notice/Awareness; (2) Choice/Consent; (3) Access/Participation; (4) Integrity/Security; and (5) Enforcement/Redress. For a discussion of the FIPPs and the role they play in protecting privacy in the 21st Century, please visit the Federal Trade Commission’s site.

    Contact

    Kathy Harman-Stokes, J.D., CIPP, CIPP/G
    Chief Privacy Officer
    Office of the Executive Director
    1155 21st St., N.W.
    Washington, D.C. 20581
    By email: privacy@cftc.gov
    By phone: 202-418-6629
    By fax: 202-418-5532

See Also:

OpenGov Logo

CFTC's Commitment to Open Government

Financial Terms Montage

Report Fraud & Abuse