Skip to main content

Military Health System

Need larger text?

Privacy Impact Assessments

A Privacy Impact Assessment (PIA) is an analysis of how personally identifiable information (PII) is handled in DOD information systems or electronic collections. The PIA examines and evaluates protections for handling information to mitigate potential privacy risks. A PIA also analyzes and describes the following information about a system:

  • What information is being collected?
  • Why the information will be collected?
  • What is the intended use of the information?
  • With whom will the information be shared?
  • How will the information be secured?

The Defense Health Agency (DHA) PIA program coordinates the PIA process within DHA, in compliance with the E-Government (E-Gov) Act of 2002, Section 208, OMB M-03-22, and DODI 5400.16.

The DHA PIA team assists information system owners and developers who collect, maintain and/or disseminate PII in demonstrating the incorporation of required protections throughout the entire life cycle of a system.

MHS PIA List

In accordance with DODI 5400.16, DHA is required to publish section 1 of DD Form 2930 (DOD PIA template). The following systems have a completed and approved DD Form 2930 on file with the DHA Privacy and Civil Liberties Office (PCLO). For more information regarding PIAs, please contact the PCLO PIA office via email at dha.pia@health.mil.

File Date
3D Bio CAD 3 Shape TRIOS 3 2/28/2022
59th MDW Wilford Hall WHEN MEDCOI PIA 9/20/2022
88 MDG Medical Treatment Facility - HOST Enclave 1/16/2015
Active Directory Domain Services (AD DS) 7/29/2014
AHLTA-Theater/AHLTA-Mobile/Mobile Computing Capability (AHLTA-T/AHLTA-M/MCC) 9/9/2015
Air Force Medical Omnibus Web Applications (AFMOWAP) 7/22/2019
Armed Forces Billing and Collection Utilization Solution - Amazon Web Services 3/10/2022
Armed Forces Billing And Collection Utilization Solution - Amazon Web Services (ABACUS-AWS) 4/22/2019
Armed Forces Health Longitudinal Technology Application (AHLTA) 11/15/2022
Armed Forces Integrated Clinical Database (ICDB) 9/22/2015
Assistance Reporting Tool (ART) 3/21/2022
Audio Metric Database System (AUDBASE) 2.3 7/20/2015
Blood Donor Management System (BDMS) 7/29/2014
Blood Management Blood Bank/Transfusion System (BMBB/TS) 7/29/2014
BUMED Manpower Information System II (BUMIS II) 4/22/2019
BUMED Manpower Information System II BUMIS II PIA 9/8/2022
Business Common Services/BusinessObjects XI (BCS/BOXI) 7/29/2014
CareFusion Coordination Engine 1/16/2015
Centralized Credentials Quality Assurance System (CCQAS) 4/18/2022
CIS Essentris 8/19/2019
Clinical Enterprise Intelligence Program (CEIP) 5/2/2016
Clinical Information System CIS Essentris Inpatient System PIA 9/8/2022
Coagulation Clinic (CoagClinic) 11/15/2017
Coding and Compliance Editor (CCE) 8/11/2015
Composite Health Care System (CHCS) 8/12/2022
Consolidated Information Center Data Warehouse 3/10/2022
Data Exchange Service_DES 5/2/2016
Defense Blood Standard System (DBSS) 7/29/2014
Defense Medical Accessions Computing System (DMACS) 4/17/2015
Defense Medical Human Resources System - Internet (DMHRSi) 4/22/2019
Defense Occupational and Environmental Health Readiness System - Hearing Conservation (DOEHRS-HC) 4/22/2019
Defense Occupational and Environmental Health Readiness System - Industrial Hygiene (DOEHRS-IH) 7/22/2019
Dental Common Access System 9/2/2020
Dental Imaging Collaborative Environment (DICE) 9/24/2019
Department of Defense Suicide Event Report 12/2/2022
Deployed Tele-Radiology System (DTRS)/Theater Imaging Repository (TIR) 7/29/2014
Designated Provider Health Care Delivery System (DPHCDS) 7/29/2014
DHA Appointing Portal 2/28/2022
DOD Women, Infants, and Children Overseas Participant Information Management System (WIC PIMS) 6/1/2017
Donor -Enterprise Blood Management System (EBMS_D) 4/22/2019
Electronic Institutional Review Board (EIRB) 4/22/2019
Electronic Surveillance System for Early Notification of Community-based Epidemics (ESSENCE) 4/22/2019
Enterprise Blade System Military Health Service Virtual (MHSV) 4/22/2019
Enterprise Blood Management System (EBMS) - Transfusion 7/12/2022
Enterprise Blood Management System (EBMS_T) 4/22/2019
Enterprise Patient Queuing and Notification System (ePQNS) 7/21/2022
Financial Management Information System 12/2/2022
FOIAXpress 7/29/2014
Fraud and Abuse Correspondence Tracking System (FACTS) 4/6/2015
Fuji CR/DR Family on FDX Console 2/4/2015
HA/TMA Communications ListServ (GovDelivery) 7/29/2014
Health Artifact and Imaging Management Solution (HAIMS) 7/29/2014
HIV Management Service (HMS) 2/28/2022
IMPAX IDC 3.X 1/16/2015
Joint Legacy Viewer (JLV) 2/19/2016
KARL STORZ Integrated Operating Room (i-OR) System with LiveData 7/29/2014
Liebel Flarsheim Direct Digital Imaging System (LFDDIS) 3/19/2015
Limited Duty Sailor Marine Readiness Tracker (LIMDU SMART) 2/28/2022
Medical Community of Interest (MedCOI) 4/22/2019
Medical Readiness Decision Support System (MRDSS) 2/28/2022
MHS GENESIS / Defense Healthcare Management System Modernization Electronic Health Record (DHMSM EHR) 9/30/2019
Military Health System (MHS) Data Repository (MDR) 7/29/2014
Military Health System (MHS) Learn 12/3/2014
National Optronics 7Ex Optical Fabrication Edger 2/28/2022
Naval Hospital Jacksonville (NHJAX) Enclave 8/12/2022
Nutrition Management Information System (NMIS) 7/29/2014
OptiFill Pharmacy Automated Dispensing Solution (OPADS) 1/16/2015
Parata System Suite 1/16/2015
Patient Queuing and Notification System (PQNS) 11/15/2017
Patient Safety Reporting (PSR) 7/29/2014
Pentax endoPRO iQ 11/10/2022
Personnel Security Branch (PSB) Case Management (CM) 7/29/2014
Pharmacy Data Transaction Service (PDTS) 7/29/2014
Pharmacy Refill Request and Appointment Reminder Solution (RxRefill) 1/28/2015
PIA for Air Force Corporate Health Information Processing Service 10/23/2015
PIA Navy Medicine Online 6/8/2018
PIA Summary for Special Needs Program Management Information System_SNPMIS 12/1/2015
Protected Health Information Management Tool (PHIMT) 6/1/2017
Purchased Care Operations System (PCOS) - Patient Encounter Processing and Reporting (PEPR) 7/29/2014
Purchased Care Operations System (PCOS) - TRICARE Encounter Data (TED) 7/29/2014
Referral Information Tracking Application (RITA) 7/29/2014
RxSafe RxVault 7/20/2015
ScImage PICOM Enterprise v3.x Build 7 1/16/2015
Spectacle Request and Transmission System (SRTS) 9/20/2019
STARS 7/20/2015
Sysmex Work Area Manager (Sysmex WAM) 1/16/2015
Theater Medical Information Program-Joint Composite Health Care System Caché (TC2). 8/5/2019
Third Party Outpatient Collections System (TPOCS) 7/29/2014
TMDS DD Form 2930 (PIA) 11/1/2008
TRICARE E-Commerce (TMA ECS) 9/24/2019
TRICARE Online (TOL) 5/21/2018
TRICARE Online (TOL) System 5/3/2022
T-System 3/12/2015
Valor Network System (VNS) V1 1/16/2015
Veterinary Services Systems Management (VSSM) 2/28/2022
Web MEDCASE Requirements and Execution PIA 10/5/2022
WHASC FileNet P8 1/16/2015
Workload Management System for Nursing Internet WMSNi PIA 9/8/2022

You also may be interested in...

What is PII?

Publication
3/4/2021

The term “PII” is defined by the Office of Management and Budget (OMB) in OMB Circular A-130, Managing Information as a Strategic Resource (July 2016) as: Information that can be used to distinguish or trace an individual’s identity, either alone or when combined with other information that is linked or linkable to a specific individual.

Recommended Content:

Privacy Impact Assessments

What is PHI?

Publication
3/4/2021

This is a description of items that fall under protected health information, otherwise known as "PHI".

Recommended Content:

Privacy Impact Assessments

Privacy Impact Assessment (PIA) Overview Information Paper

Fact Sheet
7/28/2016

This Information Paper provides an overview of Privacy Impact Assessment (PIA).

Recommended Content:

Privacy Impact Assessments

DODI 5400.16: DOD Privacy Impact Assessment Guidance

Policy

This instruction reissues DOD Instruction 5400.16 (Reference (b)) to establish policy and assign responsibilities for completion and approval of Privacy Impact Assessments.

DoD Instruction 5400.16: DoD Privacy Impact Assessment (PIA) Guidance

Policy

This Instruction establishes policy and assigns responsibilities for completion and approval of PIAs in accordance with the guidance in DoD Instruction 5025.01 and the authority in DoD Directive 5144.1.

Military Health System (MHS) Privacy Impact Assessment (PIA) - Process Overview

Fact Sheet
4/16/2015

The Military Health System (MHS) Privacy Impact Assessment (PIA) Process Overview describes how to submit a PIA.

Recommended Content:

Privacy Impact Assessments

Examples of PII

Fact Sheet
5/1/2014

Personally identifiable information (PII) is information that identifies, links, relates, or is unique to, or describes you. This also includes information which can be used to distinguish or trace your identity and any other personal information which is linked or linkable to you.

Recommended Content:

Privacy Act at DHA | Privacy Impact Assessments | HIPAA Compliance within the MHS | How HIPAA Protects You | Breach Prevention and Response | Freedom of Information Act | Privacy Contract Language | Research Protections | HIPAA and Privacy Act Training

DoD Instruction 8500.01: Cybersecurity

Policy

This Instruction reissues and renames DoD Directive (DoDD) 8500.01E as a DoD Instruction (DoDI) pursuant to the authority in DoDD 5144.02 to establish a DoD cybersecurity program to protect and defend DoD information and information technology (IT).

Machine-Readable Policies Information Paper

Fact Sheet
7/1/2011

This Information Paper provides an overview of the E-Government (E-Gov) Act of 2002 mandating the use of machine-readable privacy policies by Federal agencies on websites used by the public.

Recommended Content:

Privacy Impact Assessments

OMB Memorandum M-10-23, Guidance for Agency Use of Third-Party Websites and Applications

Policy

This Memorandum requires Federal agencies to take specific steps to protect individual privacy whenever they use third-party websites and applications to engage with the public.

  • Identification #: OMB Memorandum M-10-23, Guidance for Agency Use of Third-Party Websites and Applications
  • Date: 6/25/2010
  • Type: Memorandums
  • Topics: Privacy Impact Assessments

OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002

Policy

This Guidance provides information to Federal agencies on implementing the privacy provisions of the E-Government Act of 2002, which was signed by the President on December 17, 2002 and became effective on April 17, 2003.

OMB Circular A-130, Management of Federal Information Resources

Policy

This Circular (Transmittal Memorandum No. 4) establishes policy for the management of Federal information resources. The Office of Management and Budget (OMB) includes procedural and analytic guidelines for implementing specific aspects of these policies as appendices.

Showing results 1 - 12 Page 1 of 1
Need larger text?
Last Updated: January 12, 2023
Follow us on Instagram Follow us on LinkedIn Follow us on Facebook Follow us on Twitter Follow us on YouTube Sign up on GovDelivery