All Army Activities (ALARACT) message number 050/2009~1 sets forth stringent reporting requirements for reporting unauthorized access to personally identifiable information (PⅡ). The ALARACT defines PⅡ as "any information about an individual which can be used to distinguish or trace an individual's identity such as name, social security number, date and place of birth, mother's maiden name, and biometric records." A PII breach or compromise incident occurs "when it is suspected or confirmed that PII is lost, stolen, or otherwise available to individuals without a duty related official need to know."
展开▼
