DARPA integrates privacy and civil liberties into all agency activities by:
- Maintaining comprehensive privacy and civil liberties programs that comply with applicable statutory, regulatory, and policy requirements, and developing and evaluating appropriate risk management policies;
- Limiting the creation, use, processing, dissemination, and disclosure of personality identifiable information (PII) to that which is legally authorized, relevant, and reasonably deemed necessary to accomplish a DoD function; and
- Evaluating research programs and initiatives for potential privacy and civil liberties impacts and providing mitigation strategies.