About the Privacy Office
The Commodity Futures Trading Commission created the Privacy Office in July 2010. The Office evaluates Commission programs, systems and initiatives for potential privacy impacts, provides mitigation strategies to reduce privacy impacts, and ensures transparency around Commission policies and practices related to the handling of personally identifiable information.
The mission of the Privacy Office is to preserve and enhance privacy protections for all individuals whose personal information is handled by the Commission, promote transparency of Commission operations involving personal information, and support the Commission in enforcing laws and regulations in the financial markets under its authority designed to protect privacy and safeguard personally identifiable information (PII).
The Privacy Office:
- Ensures compliance with applicable laws, such as the Privacy Act of 1974, and privacy provisions of the E-Government Act of 2002, Commodity Exchange Act, and Federal Information Security Management Act;
- Advises Commission staff on US and international privacy issues;
- Supports the Commission in enforcing laws and regulations in the markets under its authority designed to protect privacy and safeguard personal information;
- Evaluates Commission regulatory proposals and contractual arrangements involving collection, use, and disclosure of PII;
- Operates a data breach response program to ensure that incidents involving PII are properly reported, investigated and mitigated, as appropriate;
- Responds to privacy inquiries and complaints under the Privacy Act, and provides redress as appropriate;
- Strives to ensure that privacy considerations and PII safeguards are addressed up front, in the design phase, when planning or updating any program, system or initiative;
- Provides training, education and outreach to build a culture of privacy across the Commission and transparency to the public; and
- Strives to provide oversight to ensure accountability for privacy across the Commission..
The Commission uses Fair Information Practice Principles (“FIPPs”) as a policy framework to enhance privacy protections by assessing the nature and purpose for all PII collected to fulfill the Commission’s mission. The FIPPs are five core principles of privacy protection: (1) Notice/Awareness; (2) Choice/Consent; (3) Access/Participation; (4) Integrity/Security; and (5) Enforcement/Redress. For a discussion of the FIPPs and the role they play in protecting privacy in the 21st Century, please visit the Federal Trade Commission’s site.
Anthony C. Thompson
Senior Agency Official for Privacy
Office of the Executive Director
1155 21st St., N.W.
Washington, D.C. 20581
By email: [email protected]
By phone: 202-418-5697