Page:United States Statutes at Large Volume 109 Part 1.djvu/191

This page needs to be proofread.


PUBLIC LAW 104-13—MAY 22, 1995 109 STAT. 175 "(B) restrict or regulate the use, resale, or redissemination of public information by the public; "(C) charge fees or royalties for resale or redissemination of public information; or "(D) establish user fees for public information that exceed the cost of dissemination. "(e) With respect to statistical policy and coordination, each agency shall— "(1) ensure the relevance, accuracy, timeliness, integrity, and objectivity of information collected or created for statistical purposes; "(2) inform respondents fully and accurately about the sponsors, purposes, and uses of statistical surveys and studies; "(3) protect respondents' privacy and ensure that disclosure policies fully honor pledges of confidentiality; "(4) observe Federal standards and practices for data collection, analysis, documentation, sharing, and dissemination of information; "(5) ensure the timely publication of the results of statistical surveys and studies, including information about the quality and limitations of the surveys and studies; and "(6) make data available to statistical agencies and readily accessible to the public. "(f) With respect to records management, each agency shall implement and enforce applicable policies and procedures, including requirements for archiving information maintained in electronic format, particularly in the planning, design and operation of information systems. "(g) With respect to privacy and security, each agency shall— "(1) implement and enforce applicable policies, procedures, standards, and guidelines on privacy, confidentiality, security, disclosure and sharing of information collected or maintained by or for the agency; "(2) assume responsibility and accountability for compliance with and coordinated management of sections 552 and 552a of title 5, the Computer Security Act of 1987 (40 U.S.C. 759 note), and related information management laws; and "(3) consistent with the Computer Security Act of 1987 (40 U.S.C. 759 note), identify and afford security protections commensurate with the risk and magnitude of the harm resulting from the loss, misuse, or unauthorized access to or modification of information collected or maintained by or on behalf of an agency. "(h) With respect to Federal information technology, each agency shall— "(1) implement and enforce applicable Governmentwide and agency information technology management policies, principles, standards, and guidelines; "(2) assume responsibility and accountability for information technology investments; "(3) promote the use of information technology by the agency to improve the productivity, efficiency, and effectiveness of agency programs, including the reduction of information collection burdens on the public and improved dissemination of public information; "(4) propose changes in legislation, regulations, and agency procedures to improve information technology practices, includ- Records. Privacy. Computer technology. Science and technology.