http://www.whitehouse.gov/nsc/infosharing/index.htmlNational Strategy for Information SharingNSISThose responsible for combating terrorism must have access to timely and accurate information regarding those who want to attack us, their plans and activities, and the targets that they intend to attack.Assist the Administration in ensuring that Federal, State, local and tribal government employees responsible for protecting our Nation from future attacks or responding should an attack occur understand the Administration’s expectations and plans for achieving improvements in the gathering and sharing of information related to terrorism.PartnershipsEffective information sharing comes through strong partnerships among Federal, State, local, and tribal authorities, private sector organizations, and our foreign partners and allies.Awareness of Information Needs of OthersInformation acquired for one purpose, or under one set of authorities, might provide unique insights when combined, in accordance with applicable law, with seemingly unrelated information from other sources, and therefore we must foster a culture of awareness in which people at all levels of government remain cognizant of the functions and needs of others and use knowledge and information from all sources to support counterterrorism efforts.Counterterrorism Information SharingInformation sharing must be woven into all aspects of counterterrorism activity, including preventive and protective actions, actionable responses, criminal and counterterrorism investigative activities, event preparedness, and response to and recovery from catastrophic events.Existing Capabilities, Authorities, and ResponsibilitiesThe procedures, processes, and systems that support information sharing must draw upon and integrate existing technical capabilities and must respect established authorities and responsibilities.State and Urban Fusion CentersState and major urban area fusion centers represent a valuable information sharing resource and should be incorporated into the national information sharing framework, which will require that fusion centers achieve a baseline level of capability to gather, process, share, and utilize information and operate in a manner that respects individuals’ privacy rights and other legal rights protected by U.S. laws. 1Information Sharing at the Federal Level1.1Federal FrameworkEstablish a framework for Federal agencies in the fulfillment of their individual roles and responsibilities and forge a coordinated and trusted interagency partnership and process across all five communities.Today’s ISE consists of multiple sharing environments designed to serve five communities: intelligence, law enforcement, defense, homeland security, and foreign affairs. Our objective is to establish a framework for Federal agencies in the fulfillment of their individual roles and responsibilities and forge a coordinated and trusted interagency partnership and process across all five communities. This collaborative approach at the Federal level will in turn drive the manner in which terrorism-related information is shared with non-Federal partners. Those efforts support and build upon the success of ongoing initiatives at each level of government, offer practical guidance for addressing challenges that emerge, and provide the multi-agency perspective necessary to achieve the objectives of information sharing. In addition, as our information sharing efforts mature, policy and technology will lead to the introduction of additional information sources not currently included or available within those Federal communities. NCTC has the primary responsibility within the Federal Government for analysis of all intelligence and information pertaining to terrorism, and supports the Department of Justice (DOJ), DHS, and other appropriate agencies in the fulfillment of their responsibilities to disseminate terrorism-related information. To carry out this responsibility, NCTC is staffed by personnel from many Federal departments and agencies, thus allowing the development of coordinated and integrated assessments of terrorist threats, plans, intentions, and capabilities. NCTC also serves as the central and shared knowledge bank on known and suspected terrorists and international terror groups and ensures that agencies have access to and receive all-source intelligence support needed to execute their counterterrorism plans or perform independent, alternative and mission-oriented analysis. Authorized agencies may request information from NCTC to assist in the agency’s activities, consistent with applicable law and guidelines governing access to intelligence. NCTC enables the sharing of a wide spectrum of terrorism intelligence and related information among thousands of users in the Federal counterterrorism community through its production of comprehensive, "federally coordinated," analytical products and its secure web site, NCTC Online. All Federal departments and agencies that possess or acquire terrorism-related intelligence and information provide access to such information to NCTC for analysis and integration unless prohibited by law or otherwise directed by the President. As the "Federal Fusion Center" responsible "for analyzing and integrating all intelligence pertaining to terrorism and counterterrorism," NCTC works with appropriate Federal departments and agencies to enable the development of "federally coordinated," terrorism-related information products tailored to the needs of Federal entities. Within the NCTC, the new Interagency Threat Assessment and Coordination Group will facilitate the production of "federally coordinated" terrorism-related information products intended for dissemination to State, local, and tribal officials and private sector partners. Our efforts to improve the sharing of information related to terrorism acknowledge the interdependent and—in some respects—overlapping responsibilities of the elements of government charged with combating terrorism, securing the homeland, and enforcing laws. We will leverage the strength of each and challenge them to collaborate to build an informed, composite understanding of the nature of the threat, strengthening the United States’ posture and making us a more productive and effective partner in the effort to combat terrorism. The instruments of our national power have long depended on the capabilities of the Intelligence Community to collect, process, analyze, and disseminate intelligence regarding our adversaries and enemies. Our efforts to combat terrorism depend on enhancing those intelligence capabilities, while enabling other Federal departments and agencies responsible for protecting the United States and its interests to regularly share information and intelligence with other public and private entities in support of mission critical activities. Information sharing at the Federal level has improved significantly since September 11, but challenges still remain that must be addressed before our strategic vision is realized. 2Information Sharing with State, Local, and Tribal Entities2.1Information Fusing CultureFoster a culture that recognizes the importance of fusing information regarding all crimes with national security implications, with other security-related information (e.g., criminal investigations, terrorism, public health and safety, and natural hazard emergency response).2.2Infrastructure and Situational AwarenessSupport efforts to detect and prevent terrorist attacks by maintaining situational awareness of threats, alerts, and warnings, and develop critical infrastructure protection plans to ensure the security and resilience of infrastructure operations (e.g., electric power, transportation, telecommunications) within a region, State, or locality.2.3Training, Awareness, and Exercise ProgramsDevelop training, awareness, and exercise programs to ensure that State, local, and tribal personnel are prepared to deal with terrorist strategies, tactics, capabilities, and intentions, and to test plans for preventing, preparing for, mitigating the effects of, and responding to events. As our Nation’s first “preventers and responders,” State, local, and tribal governments are critical to our efforts to prevent future terrorist attacks and to respond if an attack occurs. They must have access to the information that enables them to protect our local communities. In addition, these State, local, and tribal officials are often best able to identify potential threats that exist within their jurisdictions. They are full and trusted partners with the Federal Government in our Nation’s efforts to combat terrorism, and therefore they must be a part of an information sharing framework that supports an effective and efficient two-way flow of information enabling officials at all levels of government to counter and respond to threats. Guideline 2 of the President's December 16, 2006, Memorandum to Heads of Executive Departments and Agencies directed that a common framework be developed governing the roles and responsibilities of Federal departments and agencies relating to the sharing of terrorism information, homeland security information, and law enforcement information between and among Federal departments and agencies, State, local, and tribal governments, and private sector entities. The President's guidelines recognized that State, local, and tribal authorities are critical to our Nation's efforts to prevent future terrorist attacks and are the first to respond if an attack occurs. The attacks of September 11 illustrated that foreign terrorists wanting to commit acts of terrorism might live in our local communities and be engaged in criminal or other suspicious activity as they plan attacks on targets within the United States or its territories. At the same time, there is increasing concern regarding the potential threat posed by homegrown terrorists. While lacking formal ties to al-Qaida, these disaffected, radicalized, violent extremists often draw inspiration from al-Qaida and other global terrorist organizations. Whether a plan for a terrorist attack is homegrown or originates overseas, important knowledge that may forewarn of a future attack may be derived from information gathered by State, local, and tribal government personnel in the course of routine law enforcement and other activities. State, local, and tribal governments carry out their counterterrorism responsibilities within the broader context of their core mission to protect the public's health and safety and to provide emergency and non-emergency services. While State and local officials work to prevent future terrorist attacks, they still must arrest criminals, put out fires, respond to traffic accidents, and deal with a host of public health and safety issues. Success in these endeavors depends on a strong partnership with the public, built on a foundation of communication and trust between local officials and the members of their community. These same partnerships will be used to protect these communities from future attacks by terrorists. Needs of State, Local, and Tribal Governments - The informational needs of State, local, and tribal entities continue to grow as they incorporate counterterrorism and homeland security activities into their day-to-day missions. Specifically, they require access to timely, credible, and actionable information and intelligence about individuals and groups intending to carry out attacks within the United States, their organizations and their financing, potential targets, pre-attack indicators, and major events or circumstances that might influence State, local, and tribal preventive and protective postures. Authorities at all levels of our federal system must share a common understanding of the information needed to prevent, deter, and respond to terrorist attacks. The common understanding will be achieved through a framework that enables: Federal entities to work together to provide information in ways that better meet the needs of State, local, and tribal partners; and Information gathered at the State and local level to be processed, analyzed, disseminated, and integrated with information gathered at the Federal level. We will have an integrated approach that allows Federal agencies to work together to produce and disseminate a federally-validated perspective on available threat information and relies on the efforts of consolidated fusion environments at the State and regional levels. Innteragency Threat Assessment and Coordination Group To improve the coordination of the sharing of terrorism-related information, as well as to implement recommendations developed in response to the President's December 16, 2005, Memorandum to the Heads of Executive Departments and Agencies, we have established an Interagency Threat Assessment and Coordination Group (ITACG) within the NCTC. Participants in this coordination group include DHS, FBI, members of the Intelligence Community, and State and local representatives. The coordination group will enable the development of "federally coordinated" perspectives on intelligence reports and analytical products regarding terrorist threats and related issues that address the needs of State, local, tribal, and, as appropriate, private sector entities. The ITACG supports the efforts of NCTC to produce "federally coordinated" terrorism-related information products intended for dissemination to State, local, and tribal officials and private sector partners through existing channels established by Federal departments and agencies by: Enabling the development of intelligence reports on terrorist threats and related issues that represent a "federally coordinated" perspective regarding those threats and issues and that satisfy the needs of State, local, tribal, and private sector entities until such time as the ISE matures organizationally and culturally to satisfy those needs as a normal part of doing business; Providing advice, counsel, and subject matter expertise to the Intelligence Community regarding the operations of State, local, and tribal officials, including how such entities use terrorism-related information to fulfill their counterterrorism responsibilities as part of their core mission of protecting their communities; Enabling the production of clear, relevant, official, "federally coordinated" threat information in a timely and consistent manner; Facilitating the production of "federally coordinated" situation awareness reporting for State, local, tribal, and private sector entities on significant domestic and international terrorism or terrorism-related events that have the potential to have an impact on local or regional security conditions in the United States; Ensuring terrorism-related information intended for State, local, tribal, and private sector entities is rendered in a usable format that is, to the extent possible, unclassified, to facilitate further dissemination; Informing and helping to shape Intelligence Community products for State, local, tribal, and private sector entities by providing advice, counsel, and subject matter expertise; and Facilitating the production and posting by NCTC of "federally coordinated" terrorism-related information intended for augmentation, as appropriate, and subsequent dissemination to State, local, tribal, and private sector entities by other Federal departments and agencies. Accordingly, the ITACG will advise the Intelligence Community on how to tailor its products to satisfy the needs of DHS, FBI, and other Federal entities so that they in turn can better serve their consumers. The efforts of the ITACG complement and supplement existing analytic, production, and dissemination efforts by Federal entities. The location at NCTC affords the coordination group direct access to experts assigned to NCTC and other co-located organizations such as the National Joint Terrorism Task Force to effect decisions rapidly regarding sanitization and release of information to be shared with State, local, and tribal officials, and the private sector. Specifically, the group will coordinate the production and timely issuance of the following interagency products intended for distribution to State, local, and tribal officials, the private sector, as well as the general public when appropriate: Alerts, warnings, and notifications of time-sensitive terrorism threats to locations within the United States; Situational awareness reporting regarding significant events or activities occurring at the international, national, State, or local levels; and Strategic assessments of terrorist risks and threats to the United States. 3Information Sharing with the Private Sector3.1Trusted RelationshipsBuild a trusted relationship between Federal, State, local, and tribal officials and private sector representatives to facilitate information sharing.3.2Two-Way Information SharingImprove the two-way sharing of terrorism-related information on incidents, threats, consequences, and vulnerabilities, including enhancing the quantity and quality of specific, timely, and actionable information provided by the Federal Government to critical infrastructure sectors and their State, local, and tribal partners.3.3Federal, State, Local, and Tribal PoliciesEnsure that Federal, State, local, and tribal authorities have policies in place that ensure the protection of private sector information that is shared with government entities.3.4Integration of Private Sector AnalysesIntegrate private sector analytical efforts into Federal, State, local, and tribal processes, as appropriate, for a more complete understanding of the terrorism risk. 3.5PrivacyEstablish mechanisms and processes to ensure compliance with all relevant U.S. laws, including applicable information privacy laws.Private sector information represents a crucial element in both understanding the current threat environment and protecting our nation’s critical infrastructure from targeted attacks. The private sector owns and operates over 85% of the nation’s critical infrastructure and is therefore a primary source of important vulnerability and other potentially relevant consequence information. Some private sector entities have cultivated effective information sharing partnerships with the State and local authorities that regulate their activities in the localities in which they operate. Important elements of the private sector have made significant investments to develop mechanisms and methodologies to evaluate, assess, and exchange information across regional, market, and security-related communities of interest; however still more can be done to improve those mechanisms and communication. We will use both sector-specific and geographic strategies to ensure effective information sharing with the private sector. As the terrorist attacks on transportation infrastructure in London and Madrid demonstrate, critical infrastructure can be a prime target for the transnational terrorist enemy we face today. The private sector owns and operates an estimated 85% of infrastructure and resources that are critical to our Nation's physical and economic security. It is, therefore, vital to ensure we develop effective and efficient information sharing partnerships with private sector entities. Important sectors of private industry have made significant investments in mechanisms and methodologies to evaluate, assess, and exchange information across regional, market, and security-related communities of interest. This Strategy builds on these efforts to adopt an effective framework that ensures a two-way flow of timely and actionable security information between public and private partners. Efforts to improve information sharing with the private sector have initially focused on sharing with the owners and operators of our Nation's critical infrastructure and key resources. In accordance with the National Infrastructure Protection Plan, we are currently implementing a networked approach to information sharing that allows distribution and access to information both horizontally and vertically using secure networks and coordination mechanisms, allowing information sharing and collaboration within and among sectors. It also enables multi-directional information sharing between government and industry that focuses, streamlines, and reduces redundancy in reporting to the greatest extent possible. These processes are enabling the integration of private sector security partners, as appropriate, into the intelligence cycle and National Common Operating Picture. Moreover, sector security partners are becoming more confident that the integrity and confidentiality of their sensitive information can and will be protected and that the information sharing process can produce actionable information regarding threats, incidents, vulnerabilities, and potential consequences to critical infrastructure and key resources. These efforts are being integrated into broader efforts to establish the ISE. It is important to note that critical infrastructure and key resource owners and operators utilize a number of mechanisms that facilitate the flow of information, mitigate obstacles to voluntary information sharing, and provide feedback and continuous improvement regarding structure and process. These include the Sector Coordination Councils, Government Coordination Councils, National Infrastructure Coordinating Center, Sector-level Information Sharing and Analysis Centers (commonly referred to as ISACs), DHS Protective Security Advisors, the DHS Homeland Infrastructure Threat and Risk Analysis Center (HITRAC), and State and major urban area fusion centers. These mechanisms accommodate a broad range of sector cultures, operations, and risk management approaches and recognize the unique policy and legal challenges for full two-way sharing of information between private sector owners and operators and government, as well as the important requirements for efficient operational processes. Our efforts to improve information sharing with the private sector have been guided by a number of important factors: Current, reliable, accurate, and actionable information is critical to private sector decisions to protect their business; Private sector entities gather, process, analyze, and share information in order to protect their companies, assets, employees, infrastructure, and ability to operate, so as to maintain a competitive advantage; In many cases, private sector entities have spent years establishing strong working relationships with Federal, State, and local law enforcement and other entities; this Strategy respects and encourages those established relationships; The private sector operates within multiple information sharing frameworks: industry executives often prefer to separately share threat-related information with Federal and State as well as local government officials and other business executives as they assess the threat environment in which they operate, implement protective measures, and engage in emergency response planning activities; As we incorporate the information sharing needs and capabilities of the private sector into our efforts to enable information sharing, we need to recognize that at times the environment in which homeland security, law enforcement, and terrorism-related information is shared mirrors the regulatory environment in which the sharing entity operates; and The private sector relies on multiple information sources including professional and local organizations, private information providers, news outlets, colleagues, open intelligence sources on the web, and company management in both domestic and foreign locations, in addition to the government at all levels (Federal, State, and local). We will continue to build upon existing successful information sharing partnerships in a variety of areas key to our national security. Those include programs such as the following: The Critical Infrastructure Partnership Advisory Council - provides the framework for owner and operator members of Sector Coordinating Councils and members of Government Coordinating Councils to engage in intra-government and public-private cooperation, information sharing, and engagement across the entire range of critical infrastructure protection activities; InfraGard - a partnership between the Federal Government, an association of businesses, academic institutions, State and local law enforcement agencies, and other participants dedicated to sharing information and intelligence to prevent hostile acts against the United States; Protected Critical Infrastructure Information/Sensitive Security Information - an information-protection tool that facilitates information sharing between the government and the private sector, which is used by DHS and other Federal, State, and local analysts in pursuit of a more secure homeland, focusing primarily on analyzing and securing critical infrastructure and protected systems, identifying vulnerabilities and developing risk assessments, and enhancing recovery preparedness measures; The Overseas Security Advisory Council - a Federal advisory committee that promotes security cooperation between American business and private sector interests worldwide and currently encompasses the 34-member core Council, an Executive Office, over 100 Country Councils, and more than 3,500 constituent member organizations and 372 associates; and Existing collaborative information sharing relationships between private sector entities and State and local authorities to facilitate the sharing of time-sensitive threat and vulnerability information, which reflect the preference, in some cases, of private sector entities to coordinate the sharing of threat-related and other information with the government authorities responsible for regulating their activities. The President also created the National Infrastructure Advisory Council (NIAC). The NIAC is charged to make recommendations on improving the cooperation and partnership between the Federal Government and industry, for the purpose of securing the critical infrastructures. The advice from the NIAC is meant to assist the President and the Secretary of Homeland Security in the development of policies and strategies that range from risk assessment and management to information sharing, protective measure, and clarification on roles and responsibilities between public and private sectors. Finally, the needs and capabilities of the private sector, particularly those entities considered to be critical infrastructure or key resources, will be incorporated into efforts to establish a national, integrated network of State and major urban area fusion centers and to produce "federally coordinated" terrorism-related information products at NCTC. 4Sharing Information with Foreign Partners4.1Terrorism-Related InformationExpanding and facilitating the appropriate and timely sharing of terrorism-related information between the United States and our foreign partners.4.2Security RequirementsEnsuring that exchanges of information between the United States and foreign governments are accompanied by proper and carefully calibrated security requirements.4.3Sharing and DisseminationEnsuring that information received by Federal agencies from a foreign government under a sharing arrangement: (1) is provided to appropriate subject matter experts for interpretation, evaluation, and analysis; and (2) can be disseminated and used to advance our Nation's counterterrorism objectives.4.4Standards and Best PracticesRefining and drawing upon sets of best practices and common standards in negotiating sharing arrangements with foreign governments.4.5Privacy and Legal RightsDeveloping standards and practices to verify that sharing arrangements with foreign governments appropriately consider and protect the information privacy and other legal rights of Americans.In the immediate wake of the September 11 attacks, many foreign governments joined the United States as partners in the Global War on Terrorism, and many have since contributed to the war in important ways. The events of the past six years have reaffirmed that risks and threats often emerge and take shape without regard to geographic borders. Intelligence provided by foreign partners often provides the first indications of terrorist plans and intentions. Accordingly, we are taking steps to evaluate and improve upon our sharing of information with foreign governments and encouraging them to share with us. Strong and effective cooperation with our foreign partners is a vital component of the global war on terrorism. The President recognized the need to share information with foreign partners in his December 16, 2005, Memorandum to the Heads of Executive Departments and Agencies. Accordingly, the sharing of terrorism-related information between Federal departments and agencies and foreign partners and allies forms a critical component of our information sharing strategy. The counterterrorism mission requires sharing many types of terrorism-related information, for example, the exchange of biographic and biometric information related to known or suspected terrorists. While such sharing often includes classified information and sensitive diplomatic, law enforcement, and homeland security information relating to terrorism, it also encompasses other information that, over time, may help reveal links to terrorist groups or individuals. Information regarding lost or stolen passports and suspect financial transactions, for example, might yield information on groups or persons who subsequently are linked to a specific terrorist threat. In addition to asking for such information from other countries, it is also essential that we appropriately share similar types of information with foreign governments or foreign law enforcement entities, such as INTERPOL, as long as the sharing of any records about American citizens and lawful permanent residents data is subject to the Privacy Act of 1974 limitations, especially regarding personally identifiable information. Information sharing with foreign partners is a key component of international outreach and cooperation to protect U.S. critical infrastructure. Given the often sensitive nature of the information shared, we will continue to enter into agreements and other understandings with foreign governments to ensure appropriate security and confidentiality of exchanged information. We must also expect that foreign governments will seek the same assurances from us. As a general rule, such agreements and understandings should seek sufficient security of information while also permitting flexible handling of the exchanged information to allow practical use. We must strive to ensure that safeguarding and handling restrictions are calibrated to maximize both the quantity and quality of information shared with, or received from, a foreign government. To the maximum extent possible, we will adopt and adhere to commonly accepted and standard safeguarding and handling restrictions. There is the basic requirement that shared information be appropriately safeguarded and protected from public disclosure. Our foreign partners at times may ask us to agree to particular restrictions on the dissemination or use of the information. While it is preferable to avoid such restrictions, it may be necessary in certain circumstances to accept some limitations as a condition for receiving information with particularly high value. How we proceed in such situations will depend on the circumstances presented and our need for the information at issue. Our guiding objective will be to ensure that information received from a foreign government can be disseminated as broadly as possible and used for critical counterterrorism purposes. Similar challenges arise in regard to sharing information with foreign governments that may contain personal data about United States citizens and permanent residents. In particular, the Privacy Act of 1974 confers certain protections upon information concerning citizens and lawful permanent residents. Accordingly and especially given considerations of reciprocity, we must remain sensitive to the potential impact on our citizens and lawful residents of sharing information involving U.S. persons with foreign partners. The United States must carry out its counterterrorism mission while also ensuring that appropriate protection of information regarding our citizens and lawful permanent residents. As part of approving the recommendations submitted to improve information sharing with foreign governments, the President directed that the potential impact on United States persons be considered when evaluating a proposed information sharing arrangement with a foreign government. Special considerations present themselves in the area of sharing classified information with foreign governments. Such sharing will continue to occur in a relatively formal context, to account for the need to properly secure and limit disclosure of the information. Indeed, decisions of whether to share our Nation's classified information are extraordinarily sensitive and will be made with the utmost care. Our officials must remain cognizant of the imperative to our national security mission of maximizing the sharing of terrorism-related information, while also taking care to ensure that sharing arrangements do not result in the unintended compromising of our national security. In summary, strong partnerships and trusted collaboration with foreign governments are essential components of the war on terror. Effective and substantial cooperation with our foreign partners requires sustained liaison efforts, timeliness, flexibility, and the mutually beneficial exchange of many forms of terrorism-related information.5Protecting Information Privacy and Other Legal RightsIt will remain essential to continue to protect the information privacy and other legal rights of Americans as we protect our Nation from terrorism. Accordingly, our efforts will remain relentless on two fronts -- protecting our people, communities, and infrastructure from attack and zealously protecting the information privacy and other legal rights of Americans. At the President’s direction, the Attorney General and the Director of National Intelligence developed guidelines that describe how executive departments and agencies will protect the information privacy and other legal rights of Americans when sharing information related to terrorism. Consistent with the Intelligence Reform and Terrorism Prevention Act of 2004, the guidelines were developed in consultation with the Privacy and Civil Liberties Oversight Board. Protecting the rights of Americans is a core facet of our information sharing efforts. While we must zealously protect our Nation from the real and continuing threat of terrorist attacks, we must just as zealously protect the information privacy rights and other legal rights of Americans. With proper planning we can have both enhanced privacy protections and increased information sharing - and in fact, we must achieve this balance at all levels of government, in order to maintain the trust of the American people. The President reaffirmed this in his December 16, 2005, Memorandum to the Heads of Executive Departments and Agencies. At the direction of the President, the Attorney General and the Director of National Intelligence developed a set of Privacy Guidelines to ensure the information privacy and other legal rights of Americans are protected in the development and use of the ISE. The Privacy Guidelines provide a consistent framework for identifying information that is subject to privacy protection, assessing applicable privacy rules, implementing appropriate protections, and ensuring compliance. An array of laws, directives, and policies provide substantive privacy protections for personally identifiable information. The parameters of those protections vary depending on the rules that apply to particular agencies and the information they are proposing to share. As described below, however, the Guidelines demand more than mere compliance with the laws; they require executive departments and agencies to take pro-active and explicit actions to ensure the balance between information privacy and security is maintained, as called for by the National Commission on Terrorist Attacks Upon the United States. The full text of the ISE Privacy Guidelines can be found at www.ise.gov. Core Privacy Principles - The Privacy Guidelines build on a set of core principles that Federal departments and agencies must follow. Those principles require specific, uniform action and reflect basic privacy protections and best practices. Agencies must: Share protected information only to the extent it is terrorism information, homeland security information, or law enforcement information related to terrorism; Identify and review the protected information to be shared within the ISE; Enable ISE participants to determine the nature of the protected information to be shared and its legal restrictions (e.g., this record contains individually identifiable information about a U.S. citizen.); Assess, document, and comply with all applicable laws and policies; Establish data accuracy, quality, and retention procedures; Deploy adequate security measures to safeguard protected information; Implement adequate accountability, enforcement, and audit mechanisms to verify compliance; Establish a redress process consistent with legal authorities and mission requirements; Implement the guidelines through appropriate changes to business processes and systems, training, and technology; Make the public aware of the agency's policies and procedures as appropriate; Ensure agencies disclose protected information to non-Federal entities - including State, local, tribal, and foreign governments - only if the non-Federal entities provide comparable protections; and State, local, and tribal governments are required to designate a senior official account able for implementation. Privacy Governance - Successful implementation of the Privacy Guidelines requires a governance structure to monitor compliance and to revise the Guidelines as we gain more experience. The President, therefore, directed the Program Manager to establish the ISE Privacy Guidelines Committee. The Committee is chaired by representatives of the Attorney General and the Director of National Intelligence, and consists of the Privacy Officials of the departments and agencies of the Information Sharing Council. The Committee seeks to ensure consistency and standardization, as well as serve as a forum to share best practices and resolve agency concerns.