# Privacy Act of 1974; Implementation > **US Department of Defense** · Direct final rule. · Published 2016-06-15 · Effective 2016-09-13 · 81 FR 38950 ## Document - **Document number:** 2016-14183 - **Category:** security-clearance - **Sub-agency:** US Department of Defense - **Federal Register citation:** 81 FR 38950 - **CFR reference:** 32 CFR 311 - **Publication date:** 2016-06-15 - **Effective date:** 2016-09-13 - **DOD docket:** Docket ID: DOD-2016-OS-0063 ## Abstract The Office of the Secretary of Defense is exempting those records contained in DMDC 24 DoD, entitled "Defense Information System for Security (DISS)," when investigatory material is compiled solely for the purpose of determining suitability, eligibility, or qualifications for Federal civilian employment, military service, Federal contracts, or access to classified information, but only to the extent that such material would reveal the identity of a confidential source. This direct final rule establishes a new exemption to the Office of the Secretary Privacy Program. The Defense Information System for Security is the new DoD enterprise-wide information system for personnel security; it provides a common, comprehensive medium to request, record, document, and identify personnel security actions within the Department including: Determinations of eligibility and access to classified information, national security, suitability and/or fitness for employment, and HSPD-12 determination for Personal Identity Verification (PIV) to access government facilities and systems, submitting adverse information, verification of investigation and or adjudicative status, support of continuous evaluation and insider threat detection, prevention, and mitigation activities. DISS consists of two applications, the Case Adjudication Tracking system (CATS) and the Joint Verification System (JVS). CATS is used by the DoD Adjudicative Community for the purpose of recording eligibility determinations. JVS is used by DoD Security Managers and Industry Facility Security Officers for the purpose of verifying eligibility, recording access determinations, submitting incidents for subsequent adjudication, and visit requests from the field (worldwide). The records may also be used as a management tool for statistical analyses, tracking, reporting, evaluating program effectiveness, and conducting research. This direct final rule is consistent with the rule currently published regarding DMDC 11, Investiga ## Source - [Federal Register document](https://www.federalregister.gov/documents/2016/06/15/2016-14183/privacy-act-of-1974-implementation) --- *AI Analytics · CC0 1.0*