NIOC Norfolk Logo

NIOC NORFOLK VA

NIOC NORFOLK VA

Web Risk Assessment

 

WRA's Mission

NIOC Norfolk's Web Risk Assessments team performs periodic content assessments on all Department of the Navy sponsored web sites. Web site content is assessed for compliance with all applicable DoD and DoN policies and guidelines. (http://www.defenselink.mil/webmasters)

As an additional guide for webmasters the WRA Team has provided the following references and examples for the advisories and notices that are required on a publicly accessible web site.

 

Policies and Guidelines

Privacy Policy

Reference - DOD Web Site Administration Policies and Procedures Part V 4.1. The privacy policy must be verbatim to the example given in the instruction. Only the items indicated may be tailored.

Cookie Disclaimer

Reference - DOD Web Site Administration Policies and Procedures Part V 4.1.

Notice and Consent Banner

Reference - DOD Web Site Administration Policies and Procedures Part V 4.2. This notice and consent banner is only authorized on pages with security and access controls.

External Links Disclaimer

Reference - DOD Web Site Administration Policies and Procedures Part II 8.2. The disclaimer must be verbatim to the example given in the instruction and must be displayed on the page or pages listing external links or through an intermediate "exit notice" page generated by the server machine.

 

   

Additional Policies and Guidelines

Privacy Advisory

Example:  "We will not obtain personally identifying information about you when you visit our site unless you choose to provide such information to us. If you choose to send email to the site webmaster or submit an online feedback form, any contact information that you provide will be solely used to respond to your request and not stored."

Privacy Act Statement

Forms used to collect Privacy Act Information must inform the individual who is supplying the requested information the following:

-- the authority (statute, Executive Order, etc.) which authorizes the solicitation of the information and whether disclosure of the information is mandatory or voluntary;

-- the principal purpose or purposes for which the information is intended to be used;

-- the routine uses which may be made of the information; and

-- the effects on the individual, if any, for failure to provide all or any part of the requested information

Example:  "PRIVACY ACT STATEMENT: Title 5 U.S.C., Chapter 45, Incentive Awards, authorizes solicitation of this information. The information will be used by the agency to determine employee's eligibility for a monetary, nonmonetary or honor award under 5 U.S.C., sections 4504 and 4507. This information may be shared with law enforcement agencies when they are investigating a violation or potential violation of the civil or criminal law. The Social Security Number (SSN) is requested under the authority of Executive Order 9397 (November 22, 1943) for the orderly administration of personnel records. Submission of the SSN is voluntary and failure to furnish the SSN on this form will have no effect on the award. The personal information obtained from this form will be maintained in system of record DOE-1, DOE Personnel and General Employment Records."

Photographs

Navy Image Decision Tree - Ensure all photos have been assigned a Visual Information Record Identification Number (VIRIN) and are properly archived.