In the wake of an increasing number of security breach and data theft incidents, the U.S. Department of Defense, the General Services Administration, and NASA last month released proposed revisions to the Federal Acquisition Regulation (FAR), to support the adoption of privacy protective measures by government contractors. The agencies are proposing to add a new subpart (24.3) to the original FAR, entitled “Privacy Training,” which would identify seven required content areas for privacy training to be provided to contractor employees that handle federal records containing personally identifiable information. The new subpart would also specify the means by which the training would be delivered. Written comments to the Regulatory Secretariat are due by December 13, 2011.