Privacy Policy

Information Collected and Stored Automatically 

When you visit DOI.gov, DOI may automatically collect and store the following information about your visit: 

• Name of the Internet domain, such as a private Internet access account or university domain.
• Internet Protocol (IP) address assigned to the computer or device used to access the site.
• Type of browser and operating system used to access the site.
• Date and time you access the site.
• Internet address of the website from which you linked directly to DOI.gov.
• Country and state from which you access the site.
• Pages you visit and the information you request.
• Search terms used to reach DOI.gov from an external search engine and search terms used on DOI.gov. 

This information is collected as part of system log files and is used internally for technical improvements, site management, security, performance monitoring, and summary statistics. DOI uses this information to assess what information is of most and least interest to the public, improve the visitor experience, identify system performance or problem areas, and make DOI.gov more useful. 

The primary purpose of collecting this information is not to track individual visitors. However, in certain circumstances, such as website defacement, threats, attempted compromise, misuse, or potential criminal activity, DOI may be required by law, policy, or security procedures to take additional steps to identify users or protect DOI information systems. Information collected through system logs may be shared with other agencies when required by federal law, executive order, regulation, security reporting requirements, or authorized law enforcement activity. 

Personal Information You Voluntarily Provide 

You do not have to provide personal information to visit DOI.gov. If you choose to provide personal information by sending a message to an email address on this website, submitting a form through a DOI website, filling out a questionnaire, registering for an event, subscribing to updates, or otherwise communicating with DOI online, DOI will use the information you provide to respond to you, provide the requested service, process the transaction, or support the purpose described at the point of collection. 

Please do not send sensitive personal information by unsecured email unless DOI specifically instructs you to do so. Sensitive personal information may include Social Security numbers, financial account numbers, driver’s license or passport numbers, medical information, law enforcement or case information, identity documents, or other information that could create a risk of harm if disclosed without authorization. Internet communications are not always secure, and DOI cannot guarantee the security of information sent by unsecured email. Where available, use an official DOI secure portal, form, or approved submission process. 

DOI uses personally identifiable information to provide requested services, respond to inquiries, improve website functionality, correct issues identified by visitors, process online transactions, and carry out authorized Department functions. Any information DOI collects through a form, questionnaire, guestbook, email, or other online interaction may be subject to disclosure under applicable law. DOI handles personal information in accordance with the Privacy Act of 1974, the Freedom of Information Act, the E-Government Act of 2002, OMB privacy guidance, DOI privacy policy, and applicable privacy compliance documentation. 

Where feasible, visitors will be provided an additional Privacy Act Statement, privacy notice, or collection notice on websites and forms where DOI requests personal information. These notices may explain the authority for the collection, the purpose of the collection, routine uses, whether providing the information is mandatory or voluntary, and the effects of not providing requested information. In some cases, the information you provide may be covered by the Privacy Act of 1974 and maintained in a DOI system of records. 

Please visit the DOI Privacy Program page for information on how information is collected and maintained under the Privacy Act of 1974. 

Privacy Act Requests, Consent, and Secure Portals 

To request access to or amendment of records about yourself, or to authorize disclosure of Privacy Act records to another person or entity, visit the DOI Privacy Act Requests page. 

Some DOI online services, portals, and request systems may provide additional Privacy Act Statements or privacy notices at the point of collection. For example, individuals submitting Privacy Act requests electronically may be directed to the Department’s FOIA Public Access Link, FOIAXpress PAL, where a Login.gov account may be required for account access, remote identity proofing, and authentication. Requesters who use Login.gov should also review Login.gov Privacy & Security and the Login.gov Privacy Act Statement. 

DOI may share personal information with contractors acting on behalf of the Department; another federal agency to respond to your inquiry, protect against security threats, support an authorized service, or as required by law; or a third party such as: 

• A bank, payment processor, or United States Department of the Treasury account that must receive payment information for a transaction you initiated.
• A company or contractor DOI has engaged to assist with specific services, including electronic commerce, subscriptions, public engagement, secure portals, or digital service delivery, and which is subject to applicable privacy, security, and contract requirements.
• A legal authority if DOI suspects that a person is attempting to change, damage, misuse, or compromise a DOI website, system, or service, or is using it in violation of federal, state, local, or other applicable laws.
• Congress, a court, or another authorized entity in response to a subpoena, request, legal requirement, or authorized oversight activity. 

DOI does not collect or use information from DOI.gov for commercial marketing purposes. 

Website Measurement, Customization Technologies, and Cookies 

A cookie is a small file that transfers to your computer or device when you visit a website to allow the website to remember specific information about your session or preferences. Your computer or device generally shares the information in the cookie with the website that provided it. There are two types of cookies: session cookies and persistent cookies. Session cookies last only as long as your web browser is open. Persistent cookies store information on your computer or device for a longer period of time. 

DOI websites may use session cookies, persistent cookies, analytics tools, and other website measurement or customization technologies to support website functionality, improve navigation, measure site performance, remember user preferences, and understand how the public uses DOI digital services. When DOI uses these technologies, DOI provides notice consistent with applicable federal privacy and website policy requirements. You may be able to disable cookies in your browser; however, doing so may affect how some DOI websites or online services function. 

USA.gov provides instructions for opting out of web measurement and customization technologies by disabling cookies on your web browser.

Authentication and Identity Verification Services 

Some DOI digital services may require users to create an account, sign in, verify their identity, or authenticate through a government-provided service such as Login.gov. Login.gov is operated by the General Services Administration and provides secure access, authentication, and identity verification services for participating government agencies. If you use Login.gov or another external authentication service, you are also subject to the privacy notices and policies for that service. 

Links to External Sites 

DOI.gov has links to other federal agencies, organizations, and external websites. Once you access another site through a link that DOI provides, you are subject to the privacy policy and terms of that site. The privacy policies and procedures described here do not apply to external sites. DOI encourages you to read the privacy policies of any site you access from DOI.gov, especially if you share personal information. Please visit the DOI Linking Policy for more information on DOI linking standards. 

Children’s Online Privacy 

DOI is committed to protecting the privacy of children online. DOI does not knowingly request or collect personally identifiable information from children under 13 on Department websites, applications, or online services designed with children as their primary audience, except as permitted by law and with appropriate notice and safeguards. Please visit the DOI Children’s Privacy Policy page for more information. 

Third-Party Websites and Applications 

DOI maintains official accounts on third-party websites and applications to interact with the public, increase government transparency, promote open government, and provide access to information. DOI makes essential information that it shares on third-party sites available on DOI.gov. DOI.gov remains the official source of information from the Department of the Interior. 

DOI may share information with private organizations as part of a service that provides visitors to DOI.gov with a better experience. DOI may use information provided by third-party tools to improve DOI’s web presence, public engagement, and end-user experience. Certain DOI webpages may contain embedded content, maps, videos, forms, analytics, collaboration tools, or applications provided by third-party website and application service providers. 

DOI may request that you voluntarily provide information through official DOI accounts or third-party platforms, such as registering for an event hosted by the Department. If you use a site outside DOI.gov or outside a DOI-operated system, you are subject to the privacy and security policies of that site. These third-party websites and application service providers may collect information you voluntarily provide in accordance with their terms of service and privacy policies. 

DOI does not control what third-party service providers do with information they collect directly from visitors outside DOI-operated systems. You should review the third-party service provider’s terms of service and privacy policies before using it to understand how and when the provider collects, uses, maintains, or shares information you make available by using its services. 

Please visit the DOI Social Media Page for a directory of official Department of the Interior social media accounts, including accounts on Facebook, X, YouTube, Flickr, Instagram, LinkedIn, and other official DOI social media or third-party platforms. DOI uses these platforms to share information and provide alternative ways to disseminate information and content to the public. 

Your use of official DOI accounts on third-party websites and applications may cause personally identifiable information to become available or accessible to DOI. For example, information may become available to DOI when a user provides, submits, communicates, links, posts, comments, reacts, follows, shares, tags, or otherwise associates information with official DOI accounts or content. 

DOI may collect and maintain personally identifiable information you make available on official DOI accounts on third-party websites and applications consistent with the Privacy Act, the Federal Records Act, and other applicable laws. You may also view DOI’s Privacy Impact Assessments for more information on DOI’s use of third-party and social media platforms. 

Privacy policies for third-party social media platforms with official DOI accounts may be viewed at the links below: 

• Facebook Privacy Policy
• X Privacy Policy
• YouTube Privacy Policy
• LinkedIn Privacy Policy
• Tumblr Privacy Policy
• Instagram Privacy Policy
• Flickr Privacy Policy 

Email Subscriptions 

DOI maintains lists of subscribers who request periodic email updates. The email subscription service allows visitors to DOI.gov to receive notifications by email when new information is available. If you sign up for these automatic updates, you will receive notification of changes to the web pages or topics you specify and may unsubscribe at any time. You may be asked to provide your email address and identify the updates you would like to receive. 

Providing this information is voluntary; however, it is necessary in order to participate in the email subscription service. DOI does not sell, rent, exchange, or otherwise disclose subscriber lists to external organizations for promotional purposes. 

This service may be provided by a DOI contractor, which will use the information you provide to deliver the notifications you requested and update your subscription preferences. DOI may have access to the information you provide. DOI will not share your personal information with third parties for promotional purposes. 

Use of Approved Technologies and Automated Tools 

DOI may use approved technologies, analytics tools, security tools, workflow tools, or automated capabilities to operate DOI.gov and other official digital services, improve website performance, protect DOI systems, manage requests, and support Department operations. When these tools involve personally identifiable information, DOI evaluates the activity under applicable privacy requirements, including the Privacy Act of 1974, the E-Government Act of 2002, OMB privacy guidance, DOI privacy policy, and applicable privacy compliance documentation. DOI does not use website analytics or automated tools on DOI.gov for commercial marketing purposes.

Website Security 

To maintain site security and ensure DOI digital services remain available to all users, DOI information systems and systems operated by contractors on behalf of DOI may use software programs and security tools to monitor network traffic, identify unauthorized attempts to upload or change information, detect malicious activity, prevent misuse, or otherwise protect DOI websites, systems, and information. Except for authorized security, law enforcement, or investigative purposes, DOI makes no other attempt to identify individual users or their usage habits. 

Unauthorized attempts to upload information, change information, disrupt services, bypass security controls, or otherwise misuse DOI websites or systems are strictly prohibited and may be punishable under the Computer Fraud and Abuse Act of 1986, as amended, and other applicable laws. 

DOI uses security and virus protection measures on its computer systems and regularly updates software to help protect DOI systems and files posted on DOI web servers. When you download a file from DOI.gov, it is possible, though unlikely, that the file may become corrupted before it reaches your computer or device. DOI is not responsible for files that may become corrupted as data travels over the Internet. 

Vulnerability Disclosure Policy 

DOI is committed to ensuring the security of information provided by visitors to DOI websites. The Vulnerability Disclosure Policy provides guidance to security researchers for conducting vulnerability discovery activities directed at DOI public-facing websites and conveys DOI’s preferences for submitting discovered vulnerabilities. 

The Vulnerability Disclosure Policy describes the systems and types of research covered by the policy and other guidelines for submitting vulnerability reports. Reports may be submitted anonymously by members of the public, or reporters may voluntarily provide their name and email address to facilitate communication with DOI on reported vulnerabilities and steps taken to lessen vulnerabilities. Names and contact information will not be shared without express permission, unless required under federal law. 

Providing contact information is voluntary. There is no impact to individuals who choose to submit reports anonymously. Anonymous reports and reports with contact information will be processed similarly, but individuals who submit reports anonymously may not receive feedback on follow-up actions. 

Copyrights, Restrictions and Permissions Notice 

Please visit the Copyrights, Restrictions and Permissions Notice page for information on copyrights, intellectual property, trademarks, endorsements, rights of publicity, restriction of liability, and related topics. 

Contact Us 

If you have questions or comments about this DOI.gov Privacy Policy, please contact DOI by phone at 202-208-1605, by email at DOI_Privacy@ios.doi.gov, or by mail at: 

U.S. Department of the Interior 
DOI Privacy Office 
Office of the Chief Information Officer 
Room 7112 
1849 C Street NW 
Washington, DC 20240 

Visit the DOI Privacy Program page to learn more.