The Privacy Impact Assessment for the United States Mint’s ecommerce solution, Order Management System II (OMSII), was prepared in 2014 prior to the launch of OMSII in the same year. As discussed at length in the PIA, OMSII uses a suite of applications that provide the public with online shopping services and Mint-related communications, and provide the Mint with information about the site’s operations, its sales and customers. The United States Mint has obtained the OMB-M-10-22 permission required for the system, which uses web measurement and customization technologies including Tier 3 multisession technologies where personally-identifying information (PII) is collected.
One of the OMSII applications, IBM Digital Analytics, gathers browsing trends of Mint OMSII site visitors and customers for use in sales analysis, and includes industry peer benchmark information. In order to meet FedRAMP certifications, during the summer of 2019, the United States Mint expects to be transitioning to Adobe Analytics to perform the functions currently performed by IBM Digital Analytics. As implemented in OMSII, Adobe Analytics’ functionality will be the same as indicated in the PIA for IBM Digital Analytics.
The United States Mint’s online privacy policy statement will be updated to reflect these changes as they are implemented, and a copy of this update will be posted to supplement the document supporting the Bureau’s Tier 3 permission.