Protecting Your Privacy

The E-Government Act of 2002 and OMB Memorandum M-03-22 require federal agencies to conduct Privacy Impact Assessments (PIAs) when developing or procuring IT systems that collect PII. PIAs evaluate how information is collected, used, shared, and protected, helping agencies identify and mitigate privacy risks while promoting transparency. A PIA also serves as notice to the public regarding the agency’s practices with respect to privacy and information technology.

• Privacy Impact Assessment | Do Not Pay

The Computer Matching and Privacy Protection Act of 1988 updates the Privacy Act to add rules that protect personal information when federal agencies engage in a matching program to share and compare data. It requires agencies to create matching agreements that explain how the data will be used. These rules help keep the process clear and protect people’s privacy.

Do Not Pay matching agreements published in the Federal Register and other matching documentation are provided below.

• Do Not Pay matching agreement with HHS Centers for Medicare & Medicaid Services (CMS)
• Do Not Pay matching agreement with Veterans Affairs FSC (Financial Services Center)
• Do Not Pay matching agreement with Veterans Affairs DAS (Data Analytics Services)
• Do Not Pay matching agreement with Washington State HCA (Health Care Authority)
• Do Not Pay matching agreement with Housing and Urban Development MFH (Multifamily Housing) and PIH (Public and Indian Housing)

In accordance with OMB Memorandum M-25-32, Treasury may operate matching programs to detect and prevent fraud and improper payments using procedures that differ from standard matching programs, including issuing a waiver of matching agreement requirements. This flexibility enables agencies to access accurate data quickly while maintaining strict privacy and security standards. Treasury-issued matching agreement waivers are provided below.

• Matching Agreement Waiver for Do Not Pay

A System of Records is a set of personal information that a federal agency keeps and organizes by a person’s name or another identifier, like a Social Security number. This information is protected by the Privacy Act, which requires agencies to publish a System of Records Notices (SORNs) in the Federal Register. This notice explains what information is collected, why it’s needed, how it’s used, and how it’s protected. This notice helps ensure that the government is transparent and accountable in how it handles personal information.

Below is a listing of Treasury SORNs covering Do Not Pay.

• .002 – Payment Records, 85 Fed. Reg. 11776, 11779 (February 27, 2020)
• .013 – Collection Records, 85 Fed. Reg. 11776, 11796 (February 27, 2020)
• .014 – United States Securities and Access – 85 Fed. Reg. 11776 (February 27, 2020)
• .017 – Do Not Pay Payment Verification Records, 85 Fed. Reg. 11776, 11803 (February 27, 2020)

For a complete listing of U.S. Department of the Treasury’s SORNs, visit Treasury System of Records Notices (SORNs).

Internet Security Policy

To protect this website and ensure that the service remains available to all users, Treasury employs software programs to monitor network traffic. These measures help identify unauthorized attempts to upload or change information or otherwise cause damage. Unauthorized attempts to upload information or alter this service are strictly prohibited and may be punishable under applicable law.

Information Collected and Stored Automatically

To improve the usefulness and performance of this website, we automatically collect and maintain limited statistical information from site data logs related to network traffic flow and volume. If you visit the Do Not Pay website, certain information about your visit may be collected and stored automatically.

Privacy and Correspondence via Email

Users are discouraged from including personal information (such as a Social Security Number) when submitting questions or comments via email. Information provided in an email may be used to respond to your inquiry and, if necessary, may be forwarded to personnel better suited to address your request. The information you provide is not shared with private organizations or individuals, and it is not collected or used for commercial marketing purposes.

Do Not Pay Portal Privacy

The privacy and security of Do Not Pay portal customers are of utmost importance. Access to the Do Not Pay Portal is limited to enrolled users. Any personal information provided during the Do Not Pay enrollment process is collected and used solely for authorized purposes. We do not collect personal information about you simply because you visit this website.

Additional Privacy Information

For more information about Department of the Treasury privacy practices, please visit:

• Privacy Act | U.S. Department of the Treasury
• Privacy Policy | U.S. Department of the Treasury

For privacy information specific to the Bureau of the Fiscal Service, please visit:

• Bureau of the Fiscal Service – Privacy Policy

To request access to or amend your records under the Privacy Act, follow the procedures set forth in the U.S. Department of the Treasury’s regulations at 31 CFR part 1, subpart C, Appendix G. Additional guidance and instructions for submitting a request for notification of or access to records are available on the Treasury How to Write a Privacy Act Request page. This guidance explains how to access your records and how to contest or correct information you believe is inaccurate.