DOD INSTRUCTION 8170

1 DOD INSTRUCTION ONLINE INFORMATION MANAGEMENT AND ELECTRONIC. MESSAGING. Originating Component: Office of the Chief Information Officer of the Department of Defense Effective: January 2, 2019. Change 1 Effective August 24, 2021. Releasability: Cleared for public release. Available on the Directives Division Website at Incorporates and Cancels: DoD INSTRUCTION , DoD Internet Services and Internet-Based Capabilities, September 11, 2012. Deputy Secretary of Defense Memorandum, Ensuring Quality of Information Disseminated to the Public by the Department of Defense.

2 February 10, 2003. Approved by: Dana S. Deasy, Department of Defense Chief Information Officer Change 1 Approved by: John B. Sherman, Acting DoD Chief Information Officer Purpose: In accordance with the authority in DoD Directive (DoDD) , this issuance: Establishes policy, assigns responsibilities, and prescribes procedures for: o Conducting, establishing, operating, and maintaining electronic messaging services (including, but not limited to, e-mail) to collect, distribute, store, and otherwise process official DoD information, both unclassified and classified, as applicable.

3 O Managing official DoD information on the DoD Information Network and other networks, , online. Provides a compendium of policies and procedures critical to successful online information management and electronic messaging. DoDI , January 2, 2019. Change 1, August 24, 2021. TABLE OF CONTENTS. SECTION 1: GENERAL ISSUANCE INFORMATION .. 4. Applicability.. 4. Policy.. 4. Summary of Change 1.. 5. SECTION 2: RESPONSIBILITIES .. 7. DoD Chief Information Officer (DoD CIO).. 7. Director, Defense Information Systems Agency (DISA).. 7. Under Secretary of Defense for Intelligence and Security.

4 7. ATSD(PA).. 8. Director, Washington Headquarters Services.. 8. Director, Directorate for Oversight and Compliance.. 8. DoD and OSD Component Heads.. 8. DoD Component Chief Information Officers (CIOs).. 10. SECTION 3: PROCEDURES .. 11. General.. 11. Accessibility.. 11. Advertising and Endorsement.. 11. Annual Assessment.. 12. Archiving Official Social Media Accounts and Content.. 13. Branding.. 13. Cloud.. 13. Collecting Information.. 13. Copyright.. 13. Cybersecurity and Transportation Layer Security.. 13. Data.. 14. Digital Analytics Program (DAP).

5 14. Digital Signature.. 14. DoD Website Contact Information.. 15. Domains.. 15. Encryption.. 15. Federal Information Systems.. 15. Image Alteration.. 15. Information Control, Distribution, and Marking.. 15. Hyperlinks.. 16. a. 16. b. Frames and Other Direct Embedding.. 16. c. External Hyperlinks Disclaimer.. 16. d. Mandatory Hyperlinks and Content.. 17. Mobile 19. Mobile Optimization.. 19. Multilingual Content.. 19. Official Use of Non-DoD-Controlled Electronic Messaging Services.. 19. Plain Writing.. 21. TABLE OF CONTENTS 2. DoDI , January 2, 2019.

6 Change 1, August 24, 2021. Personal Use of Non-DoD-Controlled Electronic Messaging Services.. 21. Privacy Act Statement (PAS).. 23. Privacy Advisory.. 23. Privacy Impact Assessment (PIA).. 23. Privacy Incidents.. 24. Public Website Standards.. 24. Records 24. Registration.. 24. Search.. 24. WMCT.. 25. a. 25. b. Usage Tiers.. 25. c. Clear Notice and Personal 25. d. Data Safeguarding and Privacy.. 26. e. DoD Components' Use of WMCT.. 26. APPENDIX 3A: ENSURING THE QUALITY OF INFORMATION DISTRIBUTED TO THE PUBLIC .. 28. Underlying Principles.

7 28. Guidelines.. 28. Administrative Mechanisms.. 30. Reporting Requirements.. 32. GLOSSARY .. 34. Acronyms.. 34. Definitions.. 35. REFERENCES .. 39. FIGURES. Figure 1. External Hyperlinks Disclaimer .. 16. Figure 2. Privacy and Security Notice .. 18. Figure 3. Transparency Banner .. 19. Figure 4. Template for DoD Information Quality Annual Report of Complaints Concerning Publicly-Distributed Information .. 33. TABLE OF CONTENTS 3. DoDI , January 2, 2019. Change 1, August 24, 2021. SECTION 1: GENERAL ISSUANCE INFORMATION. APPLICABILITY. This issuance: a.

8 Applies to: (1) OSD, the Military Departments, the Office of the Chairman of the Joint Chiefs of Staff and the Joint Staff, the Combatant Commands, the Office of Inspector General of the Department of Defense, the Defense Agencies, the DoD Field Activities, and all other organizational entities within the DoD (referred to collectively in this issuance as the DoD. Components ). (2) Official DoD information online, DoD electronic messaging, and DoD electronic messaging services, including when used or operated by non-DoD-entities. (3) Contractors and other non-DoD entities that are supporting DoD mission-related activities, including accessing official DoD information online, conducting DoD electronic messaging, or operating electronic messaging, and electronic messaging services, to the extent provided in the contract or other instrument by which such authorized support or access is provided.

9 B. Does not apply to DoD Component use of electronic messaging specifically for penetration testing, communications security monitoring, defensive cyberspace operations, personnel misconduct and law enforcement investigations, and intelligence-related operations. Does not apply to information systems operated on behalf of the DoD but not used by DoD. personnel. These activities remain subject to other legal and regulatory requirements such as records management. POLICY. It is DoD policy that: a. DoD electronic messaging and DoD electronic messaging services to access, collect, create, distribute, present, store, and process DoD information will be designed to be data-based and or information-centric whenever possible.

10 Examples include: (1) Updating business processes to allow access to and management of data as an asset. (2) Distributing data via Web application programming interfaces (APIs). (3) Decoupling data and presentation ( , information-centric instead of document- centric). (4) Meta-data tagging. (5) Device-agnostic access to information. (6) Responsive design. SECTION 1: GENERAL ISSUANCE INFORMATION 4. DoDI , January 2, 2019. Change 1, August 24, 2021. (7) Pervasive, global access to data and information through cloud services. (8) Mobility.