OMB Control No: 0625-0276	ICR Reference No: 201701-0625-001
Status: Historical Active	Previous ICR Reference No: 201607-0625-002
Agency/Subagency: DOC/ITA	Agency Tracking No: 0625-0276
Title: Information Collection for Self-Certification to the EU-U.S. Privacy Shield Framework
Type of Information Collection: Extension without change of a currently approved collection	Common Form ICR: No
Type of Review Request: Regular
OIRA Conclusion Action: Approved without change	Conclusion Date: 03/01/2017
Retrieve Notice of Action (NOA)	Date Received in OIRA: 01/26/2017
Terms of Clearance:

	Inventory as of this Action	Requested	Previously Approved
Expiration Date	03/31/2020	36 Months From Approved	02/28/2017
Responses	3,600	0	3,600
Time Burden (Hours)	2,954	0	2,376
Cost Burden (Dollars)	10,167,120,000	0	10,167,120

Abstract: Information collection by the Department of Commerce, as represented by the International Trade Administration, from organizations in the United States self-certifying to participate in the EU-U.S. Privacy Shield Framework (Privacy Shield).

Authorizing Statute(s): None

Citations for New Statutory Requirements: None

Associated Rulemaking Information
RIN:	Stage of Rulemaking:	Federal Register Citation:	Date:
	Not associated with rulemaking

Federal Register Notices & Comments
60-day Notice:	Federal Register Citation:	Citation Date:
	81 FR 217	11/09/2016
30-day Notice:	Federal Register Citation:	Citation Date:
	82 FR 13	01/23/2017
Did the Agency receive public comments on this ICR? No

Number of Information Collection (IC) in this ICR: 1

IC Title	Form No.	Form Name
Information Collection for Self-Certification to the EU_U.S. Privacy Shield Framework	NA	Privacy

ICR Summary of Burden

	Total Approved	Previously Approved	Change Due to Agency Discretion
Annual Number of Responses	3,600	3,600	0
Annual Time Burden (Hours)	2,954	2,376	578
Annual Cost Burden (Dollars)	10,167,120,000	10,167,120	10,156,952,880

Burden increases because of Program Change due to Agency Discretion: Yes

Burden Increase Due to: Miscellaneous Actions

Burden decreases because of Program Change due to Agency Discretion: No

Burden Reduction Due to:

Short Statement: In order to rely on the Privacy Shield for transfers of personal data from the EU, an organization must self-certify its adherence to the Privacy Shield Principles to the DOC, be placed by the ITA on the Privacy Shield List, and remain on the Privacy Shield List. Participating organizations are required to respond to inquiries and requests by the ITA for information relating to the Privacy Shield. To self-certify for the Privacy Shield, an organization must provide to the DOC a self-certification submission, which contains the information specified in the Privacy Shield Principles. The DOC has committed to follow up with organizations that have been removed from the Privacy Shield List. In addition, the DOC has committed to conduct compliance reviews on an ongoing basis, including by sending detailed questionnaires to participating organizations.

Annual Cost to Federal Government: $334,535

Does this IC contain surveys, censuses, or employ statistical methods? No

Is the Supporting Statement intended to be a Privacy Impact Assessment required by the E-Government Act of 2002? No

Is this ICR related to the Affordable Care Act [Pub. L. 111-148 & 111-152]? No

Is this ICR related to the Dodd-Frank Wall Street Reform and Consumer Protection Act, [Pub. L. 111-203]? No

Is this ICR related to the American Recovery and Reinvestment Act of 2009 (ARRA)? No

Is this ICR related to the Pandemic Response? Uncollected

Agency Contact: David Ritchie 202 482-4936

Information Collection for Self-Certification to the EU-U.S. Privacy Shield Framework