U.S. Privacy Services

Organizations the world over must navigate a complex set of federal, state and local regulatory, compliance and business demands to ensure that both personal and business data is kept safe and secure throughout the information lifecycle.

Advances in information technology make it easier than ever for organizations large and small to obtain and process personal information about individuals. To ensure that the privacy rights of individuals are respected, personally identifiable information (or personal data) must be properly protected in accordance with current U.S. Federal and State Laws.  

For federal institutions, Lunarline provides services to maintain continuous compliance with the Privacy Act of 1974, the E-Government Act of 2002, Office of Management and Budget (OMB) memoranda and other federal requirements.  

For private companies, Lunarline can create complete data privacy programs from the ground up, or optimize existing programs to ensure compliance with federal and state laws.  Regardless of the maturity of your organization’s data privacy program, Lunarline will ensure that the proper frameworks are applied, best practices are implemented, and policies and procedures are properly drafted and implemented. 

Lunarline’s specific services include: 

  • U.S. Government Privacy Program Management including:
    • Development of Privacy Threshold Assessments (PTAs) and Systems of Records Notices (SORNs)
    • Implementing both eGovernment Act and OMB memoranda requirements for conducting Privacy Impact Assessments (PIAs)
    • Implementing Privacy Act requirements
    • Building Sharepoint and other internal workflow tracking pages/sites to support review and adjudication of these documents and provide overall transparency of process
  • Implementation of NIST Special Publication 800-53  Rev 4 Appendix J Privacy Controls Catalog
  • Implementation of Privacy by Design and System Development Lifecycle processes
  • Development of privacy policies, procedures and processes 
  • Programs for compliance with Health Insurance Portability and Accountability Act (HIPAA)'s Privacy and Security Rules
  • Personally Identifiable Information (PII) management and reduction plans
  • Website privacy support 
  • Outsourced Chief Privacy Officer (CPO) Responsibilities