Deputy Chief Privacy Officer and Records Officer
Government Accountability Office (GAO)
Nancy also manages all aspects of the GAO privacy program as well, as the Deputy Chief Privacy Officer. This includes conducting privacy investigations on security breaches, providing risk mitigation strategies to senior management, managing the privacy compliance documentation process, interacting with Information Systems and Technical Services (ISTS), when new systems are introduced to GAO to ensure records and privacy needs are addressed. In collaboration with her team, Nancy built the GAO privacy program from scratch and implemented all components of it throughout the Agency—including the privacy website on the GAO intranet, privacy compliance documentation, privacy risk mitigation strategies, the privacy program order, privacy statements for public-facing systems, as well as Agency-wide training and other documentation.