Revision of Agency Information Collection Activity Under OMB Review: TSA PreCheck® Application Program
This notice announces that the Transportation Security Administration (TSA) has forwarded the Information Collection Request (ICR), Office of Management and Budget (OMB) control number 1652-0059, abstracted below to OMB for review and approval of a revision of the currently approved collection under the Paperwork Reduction Act (PRA). The ICR describes the nature of the information collection and its expected burden. The collection involves the submission of biographic and biometric information by TSA PreCheck[supreg] Application Program or U.S. Customs and Border Protection (CBP) Trusted Traveler Program individuals enrolling in MyTSA PreCheck ID <SUP>TM</SUP>, TSA's Customer Service Portal, and Seamless Identity Automation.
What this rule actually says
The TSA is updating how it collects personal information from people applying for TSA PreCheck (the airport security program that lets you skip some screening). This notice is asking the federal Office of Management and Budget to approve changes to the forms and data collection process—things like what questions get asked, how data is stored, and the paperwork burden on applicants. It has nothing to do with AI companies building products.
Who it applies to
This regulation does not apply to AI founders in any meaningful way.
- If you're building: medical scribes, hiring assistants, support chatbots, document processors, or any other AI product—this does not affect you.
- If you're collecting user data: even if you're handling sensitive information like health records or employment history, this rule only governs TSA PreCheck enrollment forms.
- If you're operating: in the US or any other country, this is TSA-specific and does not create obligations for private companies.
- If you're thinking about compliance: you should be focused on data privacy laws (HIPAA for health data, state privacy laws like CCPA) and AI-specific regulations. This is not one of them.
The only scenario this touches is if you literally built a system that integrates with TSA PreCheck's MyTSA PreCheck ID platform—which almost no indie founder is doing.
What founders need to do
Nothing. This is a procedural notice about a government agency's internal data collection, not a rule that creates new obligations for private companies.
If you're curious about the technical details, you can read the Federal Register notice, but it won't change how you should build or operate your AI product.
Bottom line
Ignore this completely—it's not about you or your AI product.