Privacy Policy

Thank you for visiting the FHFA-OIG website and for reviewing our Privacy Policy. Our policy is clear:

  • We collect no Personally Identifiable Information (PII) about you unless you choose to provide that information to us.
  • Any PII you chose to provide will be maintained in accordance with Federal privacy requirements.
  • Non-PII information related to your visit to our websites may be automatically collected and temporarily stored.

Our privacy policy explains how we use and share any PII that you provide to us, no matter how you provide it

PII includes information that is personal in nature and which may be used to identify you.  For example, PII may include: your name, email, mailing and/or home address, phone numbers, or other information that identifies you personally.  You may provide PII to us when you send us an e-mail message or a request for information, or when you complete a form.

We do collect some technical information that does not include PII when you visit to make your visit seamless. The section below explains how we handle and collect information when you visit

Personally Identifiable Information

FHFA-OIG does not require you to register to visit our website, nor does FHFA-OIG collect PII about you when you visit our website, unless you choose to provide such information to us. Submitting PII through our website is voluntary. By doing so, you are giving FHFA-OIG your permission to share or disclose your PII pursuant to one or more applicable routine uses as established in FHFA-OIG’s System of Records Notice (SORN). In some circumstances, including requests from Congress or private individuals, we may be required by law to disclose the information you submit.

Should you voluntarily provide PII to us, we will only share that PII with another government agency if your inquiry relates to that agency, or as otherwise required by law. We never create individual profiles or give your PII to any private organizations. FHFA-OIG never collects information for commercial marketing.

If you elect to provide us with PII, we employ physical, technical and administrative safeguards to maintain the security, confidentiality, and integrity of the PII.  We handle all PII provided to us in accordance with the Privacy Act of 1974, as amended (5 U.S.C. § 552a). We store all PII in a record system designed to retrieve information about you by personal identifier (name, personal email address, home mailing address, personal or mobile phone number, etc.), so that we may contact you.

Email Communications

Our website allows you to send us email messages. We will use the information you provide to respond to your inquiry. We will only send you general information by email. Please remember that email may not necessarily be secure against interception. Therefore, we suggest that you do not send sensitive PII (such as your Social Security number, bank account number, charge card numbers) by email.  If your intended email communication includes sensitive information, you should send it by U.S. mail or through a secure program website, if available.

Electronic mail messages that meet the definition of records in the Federal Records Act (44 U.S.C. § 3101) are covered under the same disposition schedule as all other Federal records. This means that emails you send us will be preserved and maintained for varying periods of time if those emails meet the definition of Federal records. Electronic messages that are not records are deleted when no longer needed.

Information Collected and Stored Automatically

When you browse through any website, certain information about your visit can be collected. FHFA-OIG’s website is operated through the General Services Administration (GSA). Federal government agency websites are required to use GSA’s Digital Analytics Program (DAP), which uses Google Analytics to collect some non-personal information from visitors to government websites. Neither FHFA-OIG nor the DAP nor Google Analytics has access to the specifics of your particular site visits.  The only information available to FHFA-OIG, DAP, and/or Google Analytics is data from all users that is collected anonymously and aggregated.

While FHFA-OIG collects no personal information about you unless you voluntarily choose to provide it to us, the following non-personal information is automatically collected and stored when you visit our website:

  • Domain from which you access the Internet (for example, “” if you use a private Internet access account, or “” if you connect from an educational domain);
  • A portion of your IP address, which is a number that is automatically assigned to a computer when surfing the Internet, collected solely for aggregate data analysis, not to identify you personally;
  • Operating system and information about the device or browser used when visiting the site;
  • The country and city from which you viewed our site;
  • Date and time of your visit;
  • The Universal Resource Locators (URLs), or addresses, of the pages you visit on our website;
  • Content you downloaded;
  • The number of bytes, if any, sent by our server; and
  • The type of actions you performed, such as information requests, and the searches you ran, on our website.

The website (such as or or referral source (email notice or social media site) that connected you to the website.

We use the information collected by our website to help make the site more useful to visitors. We may use the aggregated data to share with our partners and contractors to help improve visitor experiences.

For more information about the Google Analytics used by the DAP, please review the following policies on Google’s website:

  • Google’s main privacy policy
  • Cookies & Google Analytics on Websites
  • Opt out of Google Analytics Cookies

How FHFA-OIG Uses Cookies

When you visit any website, its server may generate a piece of text known as a "cookie" to place on your computer. Placing cookie text allows websites to “remember” visitors’ preferences, surfing patterns and behavior while they are connected. Federal agencies are now required to use GSA’s DAP, which uses “persistent” cookies to provide website usage statistics to us which are anonymous and aggregated. Data is automatically sent from a persistent cookie placed on the visitor’s computer(s) to DAP, which uses Google Analytics to aggregate it.

A persistent cookie is a small text file that this website places on a visitor’s computer so that it can gather anonymous summary demographic information, and remember that visitor’s computer if the individual visits our site at a later time.  We use persistent cookies for the sole purpose of improving visitor experience on our website. Neither FHFA-OIG nor GSA receives PII through these persistent cookies and we do not combine, match, or cross-reference the information collected by persistent cookies with any other information.

Most computers automatically accept persistent cookies, but instructions for how to disable cookies from being retained on computers can be found at: Should you disable persistent cookies, you will continue to be able to access all information and resources at our website.  

Visiting Other Websites

Our website contains links to other federal agencies and, from time to time, may contain links to international agencies, private organizations, and some commercial entities. These websites are not within our control and may not follow the same privacy, security, or accessibility polices. Once you link to another site, you are subject to the policies of that site. All Federal websites, however, are subject to the same Federal policy, security, and accessibility mandates.

Site Security

FHFA-OIG takes the security of PII very seriously. We take precautions to maintain the security, confidentiality, and integrity of the information we collect at this site. Such measures include access controls designed to limit access to the information to the extent necessary to accomplish our mission. We also employ various security technologies to protect the information stored on our systems. We routinely test our security measures to ensure that they remain operational and effective.

Unauthorized attempts to upload information or change information or otherwise cause damage are strictly prohibited and may be punishable under the Computer Fraud and Abuse Act of 1986 and the National Information Infrastructure Protection Act, (18 U.S.C. § 1030).

Privacy Policy Contact Information

We welcome feedback.  Should you have any questions regarding our Privacy Policy or the use of your PII, please contact us at, or mail us at:

FHFA-OIG Privacy Office
Senior Privacy Official
400 7th Street, SW
3rd floor
Washington, D.C. 20219

FHFA-OIG’s privacy compliance materials are available for your review.  Privacy Impact Assessments (PIAs) and Systems of Records Notices (SORNs) may be accessed here.


Last Updated 6/8/2020