AI 15, November 27, 2023
REFERENCES 73
DoD Instruction 5400.16, “DoD Privacy Impact Assessment (PIA) Guidance,” July 14, 2015,
as amended
DoD Instruction 6025.18, “Health Insurance Portability and Accountability Act (HIPAA)
Privacy Rule Compliance in DoD Health Care Programs,” March 13, 2019
DoD Instruction 8170.01, “Online Information Management and Electronic Messaging,”
January 2, 2019, as amended
DoD Instruction 8510.01, “Risk Management Framework for DoD Systems,” July 19, 2022
DoD Instruction 8580.1, “Information Assurance (IA) in the Defense Acquisition System,”
July 9, 2004
DoD Manual 5200.01, Volume 1, “DoD Information Security Program: Overview,
Classification, and Declassification,” February 24, 2012, as amended
DoD Manual 5200.01, Volume 2, “DoD Information Security Program: Marking of
Information,” February 24, 2012, as amended
DoD Manual 5200.01, Volume 3, “DoD Information Security Program: Protection of Classified
Information,” February 24, 2012, as amended
DoD Manual 5230.30, “DoD Mandatory Declassification Review (MDR) Program,”
December 22, 2011, as amended
DoD Manual 5400.07, “DoD Freedom of Information Act (FOIA) Program,” January 25, 2017
DoD Manual 5400.11, Volume 2, “DoD Privacy and Civil Liberties Programs: Breach
Preparedness and Response Plan,” May 6, 2021
DoD Manual 6025.18, “Implementation of the Health Insurance Portability and Accountability
Act (HIPAA) Privacy Rule in DoD Health Care Programs,” March 13, 2019
DoD Manual 8910.01, “DoD Information Collections Manual,” June 30, 2014, as amended
Executive Order 13526, “Classified National Security Information,” December 29, 2009
Federal Emergency Management Agency Federal Continuity Directive 1, “Federal Executive
Branch National Continuity Program and Requirements,” January 17, 2017
General Records Schedule 6.1, “Email and Other Electronic Messages Managed under a
Capstone Approach,” January 2023
General Records Schedule 6.2, “Federal Advisory Committee Records,” August 2015
National Archives and Records Administration Bulletin 2017-01, “Agency Records Management
Training Requirements,” November 29, 2016
National Archives and Records Administration Guide to the Inventory, Scheduling, and
Disposition of Federal Records
4
National Institute of Standards and Technology Special Publication 800-53, Revision 5,
“Security and Privacy Controls for Information Systems and Organizations,”
September 2020, as amended
4
Available at https://www.archives.gov/records-
mgmt/scheduling/values?_ga=2.147446260.231599913.1643731363-1717185861.1605815776