Privacy

At the CFPB, we are keenly aware of the trust you place in us and our responsibility to protect your privacy. On this page, you can learn about how we evaluate programs and systems at the Bureau in terms of privacy, and view the documentation we have created for existing systems.

Jump to: Our privacy principles | SORNs and PIAs | Other information and requests

Our privacy principles

Our privacy principles are nine commitments that define our approach to privacy. You can also read our privacy policy for non-U.S. persons.

Purpose of collection: The CFPB will state the purpose and legal authority for collecting personally identifiable information (“PII”).
Openness and transparency: The CFPB will be open and transparent. We should tell individuals about the PII we collect and how we will protect it, use it, and share it. We will provide an easy way for individuals to learn about what is happening to their PII.
Data minimization: The CFPB will limit the collection of PII to what is needed to accomplish the stated purpose for its collection. The CFPB should keep PII only as long as needed to fulfill that purpose.
Limits on uses and sharing of information: The CFPB will publish a notice about how we plan to use and share the PII that we collect from you. We will only share your PII in ways that are compatible with the notice or as stated in the Privacy Act.
Data quality and integrity: The CFPB will make reasonable efforts to ensure that all PII it maintains is accurate, relevant, timely, and complete.
Security: The CFPB must protect PII from loss, unauthorized access or use, destruction, modification, or unintended or inappropriate disclosure.
Individual participation: The CFPB will give individuals, in most cases, the ability to access their PII, and allow them to correct or amend their PII if it is inaccurate.
Awareness and training: The CFPB will train all personnel about the proper treatment of PII.
Accountability and auditing: The CFPB is accountable for complying with these principles. We will regularly check that we are meeting the requirements and take appropriate action if we are not doing so.

SORNs and PIAs

Our System of Records Notices (SORNs) and Privacy Impact Assessments (PIAs) document our assessment of the various systems the Bureau manages which collect or store personal information. We conduct our PIAs using a standard questionnaire and template.

In addition to the documents below, some government IT systems contain information about all government employees and are therefore covered by government-wide SORNs.

Other information and requests

If you have additional questions about the Bureau’s privacy program, call 202-435-7220, e-mail us at privacy@consumerfinance.gov, or write us at:

Chief Privacy Officer
Bureau of Consumer Financial Protection
1700 G St. N.W.
Washington DC 20006

If you’ve come here looking to file a Freedom of Information Act (FOIA) or Privacy Act request, you may fax your request to 1-855-FAX-FOIA (1-855-329-3642) or 202-435-7244, or mail it to:

Chief FOIA Officer (or Chief Privacy Officer if a Privacy Act Request)
Bureau of Consumer Financial Protection
1700 G St. N.W.
Washington DC 20006

For more information on filing FOIA and Privacy Act requests, visit our FOIA page.

Our privacy principles

SORNs and PIAs

Bureau Management and Operations

Consumer Response and External Affairs

Regulations

Supervision and Enforcement

Web, Social Media, and Citizen Engagement

Other information and requests

Share