Search:

Custom Search
Photo of Susan Smith

Privacy Act Against TSA for Missing Data Dismissed by Court

By Susan Smith

Tuesday, November 3, 2009

You can have daily headlines from FedSmith.com delivered right to your desktop each business morning. The service is free and you don't get junk e-mail as the price of your subscription. Just visit our newsletter page to sign up!

Susan McGuire Smith spent most of her 26-year federal government career with NASA, first at NASA Headquarters Office of General Counsel and then at Marshall Space Flight Center, serving as Chief Counsel there for more than 14 years. Her expertise is in government contracts, ethics, and personnel law. Ms. Smith has a J.D and a B.A. degree from the George Washington University. Her publications include Practical Ethics for the Federal Employee.

 

Four Transportation Security Administration (TSA) employees were not able to convince a court that their agency violated the Privacy Act when an agency hard drive with personal information on some 100,000 TSA employees went missing in 2007. (Jones v. Rossides, D.D.C. Civil Action 07-00855 (HHK)(JMF), 9/28/09)
 
The missing hard drive contained names, social security numbers, birth dates, bank account and routing information, payroll data and payroll allotment information on TSA employees covering the period January 2002 and August 2005. It had last been seen in a controlled area at the agency's headquarters Office of Human Capital. (Opinion p. 2)
 
The four transportation security officers who leveled the Privacy Act claim against TSA charged that the defendants had violated the act by failing to have appropriate safeguards to protect the personnel records that went missing. The district court has now granted the agency's motion for summary judgement, meaning the plaintiffs have lost. (p. 1)
 
What was at stake? The Privacy Act calls for actual damages or a minimum of $1000 if a court finds that a government agency "acted in a manner which was intentional or willful." (pp. 1-2)
 
TSA contended that summary judgement for the agency was in order because the agency had reasonable safeguards in place when the hard drive went missing, there was no evidence of an intentional or willful violation of the Privacy Act, and therefore plaintiffs could not meet the burden of proof required under the law. The court agreed, pointing out that the plaintiffs had submitted no evidence supporting their claim of actual damages. It is not enough, says the court, to make "conclusory assertions of harm, unsupported by any evidence…." (p. 6)

 

© 2009 FedSmith Inc. All rights reserved. This article may not be reproduced without express written consent of FedSmith Inc.

Add a Comment about this Article

** All fields are required.
Note: Your comments will not show up right away. FedSmith.com selects the most insightful comments from our readers for posting. If selected, your comments will show up in the comments section after they have been reviewed and approved. See our terms of use for more information.

Readers' Comments

  • Most courts require that a case be proved beyond a reasonable doubt or that injury can be proven in some fashion or form. There should also be victims. However these are the penalties, violations which need to be proven. Penalties for Violating the Act: Civil Remedies The Privacy Act provides fo...
    Posted: November 3, 2009 5:58 PM
  • I think I would expect a little more thorough analysis from an attorney, if indeed you are one. It is not a strict liability statute- you could argue that it should be, but it is not. The court found the safeguards reasonable as a matter of law and found that there had been no actual damage sho...
    Posted: November 3, 2009 3:23 PM
  • Apparently, the court cannot understand nor comprehend the Privacy Act. Of course, maybe because the costs would be astronomical played a part, hmmmmmm?...
    Posted: November 3, 2009 11:41 AM

View All Comments »

MORE BY SUSAN SMITH

Contact Susan Smith or read more articles on the author's page.