20-02 Personally Identifiable Information

Questions and Answers

What does PII stand for?

Private Identity Index

Public Information Inventory

Personally Identifiable Information (correct)

Personal Interrogation Information

Sensitive Data includes Social Security Numbers.

True

Who should be notified immediately in case of a breach or imminent breach of PII?

Information Technology (IT) help desk

To view or obtain a copy of any information or records collected and maintained by the Department, the individual may request records pursuant to Missouri Sunshine Law through the _____ of Records or the Office of General Counsel.

Custodian

Study Notes

Personally Identifiable Information (PII)

• The Kansas City Missouri Police Department has established guidelines for handling PII and sensitive data.
• Public access to these guidelines provides notice to the public about procedures for correcting individual PII and sensitive data.

Terminology

• Breach of security: unauthorized access to electronic PII that compromises security, confidentiality, or integrity of personal information.
• PII: information collected or stored in a program, system, online collection, or other technology that permits the identity of an individual to be directly or indirectly inferred.
• Sensitive data: information that when linked together, could adversely affect the interest or privacy of individuals when such information is lost, modified, or acquired through unauthorized access.

Examples of Sensitive Data

• Date of birth
• Social Security Number
• State Identification or Driver License Number
• Military Identification Number
• Credit card information or Card Verification System (CVS)
• Medical information
• Bank or credit card account information relating to account numbers or other information that can link an account to a specific individual
• Juvenile information

Policy

• The Department is committed to protecting PII and sensitive data from inappropriate access or disclosure.
• Guidelines apply to all Department members who use computers, have network access, communications systems, and data controlled, owned, operated, or supported by the Department.

General Information

• The Department collects PII from individuals, including citizens, vendors, license holders, applicants for employment, and employees.
• PII is collected in electronic and conventional paper format during reasonable and necessary business operations and services.
• PII is reviewed on a case-by-case basis for disclosure, transmission, or provision outside the Department.

Access to PII

• Authorized members committed to protecting PII in their respective duties.
• PII may be accessed by, used, and released to individuals or entities authorized by law, policy, duty manual, procedure, or contract.

Sharing PII with Third Parties

• PII is shared when required by contract, local, state, or federal law, regulation, or applicable agency requirement, or with individual consent.

Correcting PII Information

• Individuals may request records pursuant to the Missouri Sunshine Law to view or obtain a copy of any information or records collected and maintained by the Department concerning that individual.
• Valid legal identification is required.
• If information is incorrect or incomplete, an individual may request a correction or amendment to their own PII.

Security Breach

• Any member aware of a breach or imminent breach of PII will immediately notify the Information Technology (IT) help desk.
• The IT help desk will then immediately contact the Local Area Security Officer (LASO).

Description

This quiz is about a procedural instruction from the Kansas City Missouri Police Department regarding personally identifiable information. It covers the handling and management of sensitive data.