According to OMB’s e-gov report, agencies are increasingly
documenting their privacy program activities, and reports
from the 24 CFO act agencies indicate the following:
Seventeen provided planned, ongoing, or completed corrective
actions addressing compliance deficiencies reported by the
agency in a previous period; 20 provided privacy training
for employees and contractors, and conducted reviews of
activities required by the Privacy Act and OMB policy; 22
established written policies and procedures for conducting
privacy impact assessments; 11 used technologies enabling
continuous auditing of compliance with stated privacy
policies and practices; and nine submitted an annual report
to Congress detailing their privacy activities, including
activities under the Privacy Act and any violations.
The report is available here: http://www.whitehouse.gov/omb/reports/index.html