323.3—Definitions.
(a) Access.
The review of a record or a copy of a record or parts thereof in a system of records by any individual.
(b) Agency.
For the purpose of disclosing records subject to the Privacy Act among DoD Components, the Department of Defense is considered a single agency. For all other purposes including applications for access and amendment, denial of access or amendment, appeals from denials, and recordkeeping as regards release to non-DoD agencies, DLA is considered an agency within the meaning of the Privacy Act.
(c) Confidential source.
A person or organization who has furnished information to the Federal Government under an express promise that the person's or the organization's identity will be held in confidence or under an implied promise of such confidentiality if this implied promise was made before September 27, 1975.
(d) Disclosure.
The transfer of any personal information from a system of records by any means of communication to any person, private entity, or Government agency, other than the subject of the record, the subject's designated agent or the subject's legal guardian.
(e) Individual.
A living citizen of the United States or an alien lawfully admitted to the United States for permanent residence. The legal guardian of an individual has the same rights as the individual and may act on his or her behalf.
(f) Individual access.
Access to information pertaining to the individual by the individual or his or her designated agent or legal guardian.
(h) Member of the public.
Any individual or party acting in a private capacity to include Federal employees or military personnel.
(i) Official use.
Within the context of this part, this term is used when officials and employees of a DLA activity have a demonstrated need for the use of any record or the information contained therein in the performance of their official duties.
(j) Personal information.
Information about an individual that is intimate or private to the individual, as distinguished from information related solely to the individual's official functions or public life.
(l) Privacy Act request.
A request from an individual for notification as to the existence of, access to, or amendment of records pertaining to that individual. These records must be maintained in a system of records. The request must indicate that it is being made under the Privacy Act to be considered a Privacy Act request.
(m) Record.
Any item, collection, or grouping of information about an individual that is maintained by DLA, including, but not limited to, the individual's education, financial transactions, medical history, and criminal or employment history, and that contains the individual's name, or the identifying number, symbol, or other identifying particular assigned to the individual, such as a finger or voice print or a photograph.
(n) Risk assessment.
An analysis considering information sensitivity, vulnerabilities, and the cost to a computer facility or word processing activity in safeguarding personal information processed or stored in the facility or activity.
(o) Routine use.
The disclosure of a record outside DoD for a use that is compatible with the purpose for which the information was collected and maintained by DoD. The routine use must be included in the published system notice for the system of records involved.
(p) Statistical record.
A record maintained only for statistical research or reporting purposes and not used in whole or in part in making determinations about specific individuals.
(q) System of Records.
A group of records under the control of a DLA activity from which information is retrieved by the individual's name or by some identifying number, symbol, or other identifying particular assigned to the individual. System notices for all Privacy Act systems of records must be published in the Federal Register.