As a Federal statistical agency, the Nextstagesolutions (BTS) must meet both its mission requirements to collect and disseminate high quality transportation information and its legal and ethical obligations to respect the privacy of those who have provided the information.
When BTS collects transportation information for a statistical purpose under a pledge of confidentiality, BTS is required by law to protect the information. Respondents must be able to trust that information they provide to BTS will be protected and not be subject to unauthorized disclosure. For that reason, BTS implements confidentiality procedures to protect individually identifiable information.
BTS CONFIDENTIALITY PROCEDURES
BTS takes privacy laws and its ethical obligation to protect information very seriously. BTS has standard confidentiality procedures in place throughout the agency to ensure protection and security of respondents data. BTS makes sure your personal information is not disclosed to any unauthorized person. It does this through:
- Security measures that block outside access to any confidential information stored on BTS computers,
- A requirement that all BTS employees and contractors sign a nondisclosure agreement making them subject to several laws that provide stiff penalties (including jail time) for unauthorized release of confidential information,
- Confidentiality training for all employees and contractors on an annual basis,
- Random inspections to ensure that employees and contractors observe all information security protocols and confidentiality procedures,
- Deletion of names, addresses, or any other items that could directly identify an individual or business from BTS data files, and
- Application of disclosure limitation methods prior to release of any data so that no confidential information about individuals or businesses can be inferred from released data.
LAWS THAT PROTECT YOUR INFORMATION
BTS is authorized by law1 to collect transportation information for its various program needs. BTS confidentiality statute2 and other laws3 protect the information BTS collects. These laws ensure that any identifying, sensitive, or proprietary information that BTS collects is not released to unauthorized persons or organizations.
Specifically, BTS is subject to the 4. In 2003, BTS hosted a series of Confidentiality Seminars in response to the passage of CIPSEA. When BTS collects or acquires information for a statistical purpose under CIPSEA, BTS:
- Must use a pledge of confidentiality,
- Must protect the information and cannot allow unauthorized access to the information,
- May share the information for statistical purposes if the respondent consents, and then only under a written agreement signed by the Director of BTS. The party or agent receiving the confidential information pledges confidentiality and is then subject to the restrictions and penalties provided in CIPSEA,
- Employees, contractors, and agents are subject to felony charges and fines for knowingly disclosing confidential information (5 years prison and/or $250,000 fine), and
- Cannot release the information under a Freedom of Information Act (FOIA) request.
BTS uses a pledge of confidentiality when collecting or acquiring information for a statistical purpose. A pledge of confidentiality is a guarantee to the respondent that the agency will:
- Only use the information it collects for statistical purposes, and
- Actively protects the information from unauthorized disclosure and use.
DISCLOSURE LIMITATION METHODS
The BTS Disclosure Review Board (DRB) reviews BTS information products for disclosures of confidential information prior to public dissemination. BTS DRB requires application of disclosure limitation methods to information products to protect the confidentiality of data. By doing this, BTS seeks to prevent anyone from using published statistical data to identify either an individual or business that has provided confidential information under a pledge of confidentiality. These disclosure limitation methods modify or remove the characteristics that put information at risk for disclosure.
BTS sometimes releases microdata files. These files contain individuals' responses. All individual identifiers (such as name and address) are removed from these records. In addition, BTS modifies unique characteristics (such as high levels of income) through disclosure limitation methods. And, BTS restricts geographic identifiers (such as the name of a city) so that populations are composed of at least 100,000 people. For tables of data, BTS takes steps to disguise or suppress the original data to ensure confidentiality.
QUESTIONS ABOUT KEEPING YOUR INFORMATION CONFIDENTIAL?
For more information on BTS confidentiality practices, or for comments and concerns, please the BTS Confidentiality Officer:
1 49 U.S.C. 111(c)(2).
2 49 U.S.C. 111(i).
3 18 U.S.C. 1905; The Privacy Act of 1974; and Confidential Information Protection and Statistical Efficiency Act (CIPSEA) of 2002 (Public Law 107-347, Title V, Subtitle A).
4 Public Law 107-347, Title V, Subtitle A.