CISA Facebook Privacy Policy and Notice


Cybersecurity & Infrastructure Security Agency (CISA or Agency) will use this Facebook page for external relations (communications/outreach/public dialogue), to make information and services widely available to the general public, and promote transparency and accountability. CISA External Affairs serves as the executive agent for the CISA Facebook page and controls who at the Agency has access to make changes to the page.

Facebook is a third-party social networking tool and its privacy policy can be found at http://www.facebook.com/policy.php. The DHS privacy policy and Privacy Impact Assessment (PIA) govern the Agency's use of Facebook from a privacy perspective. The DHS privacy policy can be found at http://www.dhs.gov/xutil/gc_1157139158971.shtm#0. The DHS PIA “Use of Social Networking Interactions and Applications,” September 16, 2010, can be found at www.dhs.gov/privacy.

Users engaging the CISA Facebook page expect privacy protections while interacting with the Agency. CISA will not use this Facebook page to: 1) actively seek personally identifiable information (PII); 2) search Facebook for or by PII; and 3) ”friend” or “like” public users proactively without a waiver from the DHS Privacy Office (exclusion is made to “friending” or “liking” other U.S. federal, state, local, and tribal government agencies.) To the extent a user posts or sends PII to the Agency's Facebook page, CISA will use the minimum amount necessary to accomplish a purpose authorized by statute, executive order, or regulation.

CISA will use this Facebook page to: 1) establish user names and passwords to form profiles; 2) accept “fan” or “like” requests from public user accounts; and 3) interact on Facebook on official Agency business.

The information posted on this Facebook page is available to the individual posting and to any and all users on the CISA Facebook page who are able to access the public-facing side of the account. To protect your privacy and the privacy of others, do not include full names, phone numbers, email addresses, social security numbers, case numbers or any other sensitive PII of any individuals in your comments or responses.

The above content was last reviewed / modified on July 16, 2021.

CISA Facebook Comment Policy

The Cybersecurity & Infrastructure Security Agency (CISA) Facebook page welcomes your comments. Comments posted to the CISA Facebook page are subject to Facebook's usage, abuse, and comment policies at http://www.facebook.com/policy.php. Your comments are public and available to anyone visiting the CISA Facebook page.

To protect your privacy and the privacy of others, do not include full names, phone numbers, email addresses, social security numbers, case numbers or any other sensitive personally identifiable information (PII) of any individuals in your comments.

CISA does not moderate comments on the CISA Facebook page prior to posting, but reserves the right to remove any materials that pose a security or privacy risk. Additionally, CISA reserves the right to review all comments and remove any that contain profanity, personal attacks of any kind, spam, refer to Federal Civil Service employees or other individuals by name, otherwise contain PII, contain offensive terms that target specific ethnic or racial groups, promote commercial products, are geared toward the success or failure of a partisan political party, group, or candidate, incite hate, or are subject to a claim of infringement or deemed to be an infringement of intellectual property, or that is otherwise objectionable. Any opinions expressed by commentators on the CISA Facebook page, except as specifically noted, are solely those of the individual offering commentary, and do not reflect any CISA policy, endorsement, or action.

Use of a Facebook page is governed by the Facebook Privacy Policy. Only CISA employees acting in their official capacity are authorized representatives to administer CISA Facebook pages. All postings and content are considered property of CISA, and CISA retains the authority to remove or limit its distribution.
Any references to commercial entities, products, services, or other nongovernmental organizations or individuals that remain on the CISA Facebook page are provided solely for the information of individuals visiting the CISA Facebook page. CISA does not endorse, support, or otherwise promote any private or commercial entity or the information, products, or services contained on those websites that may be reached through links on the CISA Facebook page.

Any CISA Facebook page is not to be used for the following:

  • Reporting criminal activity. Individuals with information for law enforcement should contact their local law enforcement agency.
  • Reporting cyber incidents. Individuals who wish to report cyber incidents should do so via Report Incidents, Phishing, Malware, or Vulnerabilities | CISA.
  • Sending questions to CISA. Instead, individuals can contact CISA directly by email us at central@cisa.gov.
  • Requesting CISA services or general questions. Instead, individuals should contact CISA directly via Contact Us on our main website to get help.
  • Submitting unsolicited proposals, or other business ideas or inquiries. The CISA Facebook page is not to be used for contracting or commercial business.
  • Submitting any claim, demand, informal or formal complaint, or any other form of legal and/or administrative notice or process, or for the exhaustion of any legal and/or administrative remedy.

CISA does not guarantee or warrant that any information posted by individuals on the CISA Facebook page is correct, and disclaims any liability for any loss or damage resulting from reliance on any such information. CISA may not be able to verify, does not warrant or guarantee, and assumes no liability for, anything posted on the CISA Facebook page by any other person.

Members of the media are directed to send questions to CISAMedia@cisa.dhs.gov.

The above content was last reviewed / modified on July 16, 2021.

Was this webpage helpful?  Yes  |  Somewhat  |  No