On January 30, 2024, the U.S. Office of Management and Budget (OMB) published a request for information (RFI) soliciting public input on how agencies can be more effective in their use of privacy impact assessments (PIAs) to mitigate privacy risks, including those “exacerbated by artificial intelligence (AI).” The RFI notes that federal agencies may develop or procure AI-enabled systems from the private sector that are developed or tested using personal identifiable information (PII), or systems that process or use PII in their operation. Among other things, the RFI seeks comment on the risks “specific to the training, evaluation, or use of AI and AI-enabled systems” that agencies should consider in conducting PIAs of those systems.
Comments will be accepted through April 1, 2024. The opportunity to comment may be of particular interest to companies that provide software or data processing services to the government, as revisions to PIA procedures could have implications for how federal agencies evaluate private-sector products and services for governmental use. OMB published the RFI in accordance with its responsibilities under the Biden administration’s October 2023 Executive Order on Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence. For more information on the Executive Order, see our summary of the Order and overview of the implementation deadlines we expect in the first quarter of 2024.