Title 32

SECTION 323.4

323.4 Responsibilities.

§ 323.4 Responsibilities.

(a) General Counsel. The General Counsel, DLA, under the authority of the Director, Defense Logistics Agency:

(1) Implements the DLA Privacy Program and is hereby designated as the Component Senior Official for Privacy.

(2) Serves as the DLA Final Denial Appellate Authority.

(3) Provides advice and assistance on all legal matters arising out of, or incident to, the implementation and administration of the DLA Privacy Program.

(4) Serves as the DLA focal point on Privacy Act litigation with the Department of Justice; and will advise the Defense Privacy and Civil Liberties Office on the status of DLA privacy litigation. This responsibility may be delegated.

(5) Serves as a member of the Defense Privacy Board Legal Committee. This responsibility may be delegated.

(6) Supervises and administers the DLA FOIA and Privacy Act Office (DGA) and assigned staff. This responsibility may be delegated.

(7) May exempt DLA systems of records.

(b) Initial Denial Authority (IDA) at Headquarters DLA. By this part, the DLA Director designates the Head of each Headquarters DLA Component as an IDA. Each Head may further delegate this responsibility to their Deputy. For the DLA General Counsel's Office, the Deputy General Counsel shall serve as the Initial Denial Authority (IDA).

(c) DLA Privacy Act Office. The DLA Privacy Act Office (DGA) staff:

(1) Formulates policies, procedures, and standards necessary for a uniform DLA Privacy Program.

(2) Serves as the DLA representative on the Defense Privacy Board and the Defense Data Integrity Board.

(3) Provides advice and assistance on privacy matters.

(4) Develops or compiles the rules, notices, and reports required under 32 CFR part 310.

(5) Assesses the impact of technology on the privacy of personal information.

(6) Conducts Privacy training for personnel assigned, employed, and detailed, including contractor personnel and individuals having primary responsibility for implementing the DLA Privacy Program.

(7) Develops forms used within the DLA Privacy Program. This part serves as the prescribing document for forms developed for the DLA Privacy Program.

(d) DLA Components Heads. The DLA Components Heads:

(1) Designate an individual as the point of contact for Privacy matters for their DLA Component and advise DGA of the name of official so designated. This individual also will serve as the Privacy Officer for the co-located tenant DLA organizations.

(2) Designate an official to serve as the initial denial authority for initial requests for access to an individual's records or amendments to records, and will advise DGA of the names of the officials so designated.

(e) DLA Acquisition Management Directorate (J-7). The DLA Acquisition Management Directorate (J-7) shall be responsible for:

(1) Developing the specific DLA policies and procedures to be followed when soliciting bids, awarding contracts or administering contracts that are subject to 32 CFR 310.12.

(2) Establishing an appropriate contract surveillance program to ensure contractors comply with the procedures established in accordance with 32 CFR 310.12.

---