Privacy Act of 1974: New System of Records, 35052-35054 [2011-14840]
Download as PDF
<![CDATA[
35052
Federal Register / Vol. 76, No. 115 / Wednesday, June 15, 2011 / Notices
where longitudinal records are
produced and the data is stripped of
identifiers for analytic purposes. The
PPA has determined that first running
the data through OPM OIG’s data
processing environment will result in
significant cost and efficiency savings
because the OPM OIG has already
developed, tested, and established
technical protocols which will ensure
that the records are put into a common
technical format and checked for
accuracy. A database administrator
employed by PPA will handle the
FEHBP data at this processing phase.
The OPM OIG systems that will process
the data will also be fully compliant
with all applicable provisions of the
Privacy Act, Federal Information
Security Management Act (FISMA), and
NIST guidance.
RECORD SOURCE CATEGORIES:
RETENTION AND DISPOSAL:
The records in this system will be
retained for 7 years. Computer records
will be destroyed by electronic erasure.
A records retention schedule is
currently being established with NARA.
SYSTEM MANAGERS AND ADDRESSES:
The system manager is Gary A.
Lukowski, PhD, Manager, Data Analysis,
U. S. Office of Personnel Management,
1900 E Street, NW., Room 7439,
Washington, DC 20415, 202–606–1449.
jlentini on DSK4TPTVN1PROD with NOTICES
NOTIFICATION AND RECORD ACCESS PROCEDURE:
Individuals wishing to determine
whether this system of records contains
information about them may do so by
writing to the U.S. Office of Personnel
Management, FOIA/PA Requester
Service Center, 1900 E Street, NW.,
Room 5415, Washington, DC 20415–
7900 or by e-mailing foia@opm.gov.
Individuals must furnish the
following information for their records
to be located:
1. Full name.
2. Date and place of birth.
3. Social security number.
4. Signature.
5. Available information regarding the
type of information requested.
6. The reason why the individual
believes this system contains
information about him/her.
7. The address to which the
information should be sent.
Individuals requesting access must
also comply with OPM’s Privacy Act
regulations regarding verification of
identity and access to records (5 CFR
297).
CONTESTING RECORD PROCEDURE:
Individuals wishing to request
amendment of records about them
should write to the Office of Personnel
VerDate Mar<15>2010
16:42 Jun 14, 2011
Management, FOIA/PA Requester
Service Center, 1900 E Street, NW.,
Room 5415, Washington, DC 20415–
7900. ATTN: Planning and Policy
Analysis.
Individuals must furnish the
following information in writing for
their records to be located:
1. Full name.
2. Date and place of birth.
3. Social Security Number.
4. City, state, and zip code of their
Federal Agency.
5. Signature.
6. Precise identification of the
information to be amended.
Individuals requesting amendment
must also follow OPM’s Privacy Act
regulations regarding verification of
identity and amendment to records (5
CFR 297).
Jkt 223001
OPM, which has the authority to
obtain this information from health care
insurers and administrators contracted
by OPM to manage the FEHBP, will
obtain the FEHBP records from health
care insurers and administrators. The
information will first be received by
OPM’s OIG, which will then process the
data and provide it to PPA under an
MOU between PPA and OIG. OPM’s
OIG will also maintain the FEHBP
records in a separate system of records
under its own authorities. OPM has
determined that first running the
records through technical protocols
developed and established by the OIG
will be more efficient, secure, and cost
effective because the records will
already have been checked for accuracy
and adjusted to ensure a common
format using a well tested process.
SYSTEM EXEMPTIONS:
None.
[FR Doc. 2011–14839 Filed 6–14–11; 8:45 am]
BILLING CODE 6325–46–P
action is necessary to meet the
requirements of the Privacy Act to
publish in the Federal Register notice of
the existence and character of records
maintained by the agency. 5 U.S.C.
552a(e)(4).
This action will be effective
without further notice on July 15, 2011
unless comments are received that
would result in a contrary
determination.
DATES:
Send written comments to
Timothy C. Watkins, Counsel to the
Inspector General, U.S. Office of
Personnel Management, 1900 E Street,
NW., Room 6400, Washington, DC
20415–1100.
FOR FURTHER INFORMATION CONTACT:
Timothy C. Watkins, Counsel to the
Inspector General, 202–606–1200,
Timothy.Watkins@opm.gov.
ADDRESSES:
The
purpose of this system of records is to
provide a central database from which
the OIG may use claims data from
Federal Employees Health Benefits
Program (FEHBP) carriers for audit and
investigative purposes to meet its
oversight obligations under the
Inspector General Act of 1978, as
amended, 5 U.S.C. App., to detect fraud,
waste and abuse in OPM programs. The
OIG has had access to such FEHBP
claims data since the establishment of
the OIG in 1989 and has operated claims
data warehouses in various forms since
then. This notice is being issued
because the OIG will now provide a
mirror image of the: Federal Employees
Health Benefits Program Claims Data
Warehouse to OPM under an Economy
Act Agreement to the system of records
OPM/Central—15, Health Claims Data
Warehouse which allows OPM to
perform statistical analysis on FEHBP
health care data.
SUPPLEMENTARY INFORMATION:
U.S. Office of Personnel Management.
John Berry,
Director.
OFFICE OF PERSONNEL
MANAGEMENT
OPM CENTRAL—18
Privacy Act of 1974: New System of
Records
SYSTEM NAME:
U.S. Office of Personnel
Management.
ACTION: Notice of a new system of
records.
SYSTEM LOCATION:
AGENCY:
The U.S. Office of Personnel
Management (OPM), Office of the
Inspector General (OIG) proposes to add
OPM/Central–18: Federal Employees
Health Benefits Program Claims Data
Warehouse to its inventory of records
systems subject to the Privacy Act of
1974 (5 U.S.C. 552a), as amended. This
SUMMARY:
PO 00000
Frm 00100
Fmt 4703
Sfmt 4703
Federal Employees Health Benefits
Program Claims Data Warehouse.
Office of the Inspector General, U.S.
Office of Personnel Management, 1900 E
Street, NW., Washington, DC 20415.
CATEGORIES OF INDIVIDUALS COVERED BY THE
SYSTEM:
This system contains claims records
on the Federal Employees Health
Benefits Program (FEHBP). Participation
in these programs is voluntary.
E:\FR\FM\15JNN1.SGM
15JNN1
Federal Register / Vol. 76, No. 115 / Wednesday, June 15, 2011 / Notices
Participants in the FEHBP include
Federal employees, Postal employees,
annuitants under the Civil Service
Retirement System and the Federal
Employees Retirement System, former
spouses, and their family members.
Health care providers that submit claims
to the FEHBP plans will also be stored
in the system as part of the claims
records. The Office of the Inspector
General (OIG) has oversight
responsibility under the Inspector
General Act over the FEHBP.
CATEGORIES OF RECORDS IN THE SYSTEM:
The records in the system may
contain the following types of
information on participating enrollees
and covered dependents:
a. Personally identifiable Information
(PII) (Name, Social Security Number,
Date of Birth, Gender, and FEHBP
Member ID number).
b. Home Address.
c. Covered dependent information
(Spouse, Dependents)—names and
genders.
d. Enrollee’s employing agency.
e. Names of health care providers
including health care providers
debarred under 5 U.S.C. 8902a.
f. Health care provider address.
g. Health Care Provider Taxpayer
Identification Number (TIN) or
identifier issued by a carrier.
h. Health care coverage information
regarding benefit coverage for the plan
in which the person is enrolled.
i. Health care procedure information
regarding procedures performed on the
individual.
j. Health care diagnoses in the form of
ICD codes, and treatments, including
prescribed drugs, derived from clinical
medical records.
k. Provider charges, including
amounts paid by the plan and amounts
paid by the enrollee for the above
coverage, procedures, and diagnoses.
jlentini on DSK4TPTVN1PROD with NOTICES
AUTHORITY FOR MAINTENANCE OF THE SYSTEM:
The OIG is authorized to maintain
FEHBP health claims information under
§ 6(a) of the Inspector General Act of
1978, as amended, 5 U.S.C. app. § 6(a).
Authority is provided to OPM for
maintenance of FEHBP health claims
information by 5 U.S.C. 8910; 45 CFR
164.501, 164.512(d), which allow OPM
access to records held by FEHBP
contractors and require these
contractors to submit reports on services
provided to enrollees.
PURPOSE:
The primary purpose of this system of
records is to provide a central database
from which the OIG may use claims
data from carriers for audit and
VerDate Mar<15>2010
18:12 Jun 14, 2011
Jkt 223001
investigative purposes to meet its
oversight obligations under the
Inspector General Act of 1978, as
amended, 5 U.S.C. App., to detect fraud,
waste and abuse in OPM programs. The
Office of the Inspector General will use
the data to detect and pursue fraud in
the FEHBP and to audit the contracts
with the various FEHBP carriers.
The secondary purpose of this system
of records is to provide a mirror image
of the Federal Employees Health
Benefits Program Claims Data
Warehouse data feeds to OPM so it can
establish a central database (OPM/
Central-15) from which it may analyze
FEHBP data and actively manage the
FEHBP to ensure the best value for the
enrollees and taxpayers. OPM will
collect, manage, and analyze health
services data provided by FEHBP
carriers.
ROUTINE USES OF RECORDS MAINTAINED IN THE
SYSTEM, INCLUDING CATEGORIES OF USERS AND
THE PURPOSES OF SUCH USES:
Only routine uses 1, 7, and 11 of the
Prefatory Statement at the beginning of
OPM’s current Systems of Record notice
apply to the records maintained within
this system.
1. For Law Enforcement Purposes—To
disclose pertinent information to the
appropriate Federal, State, or local
agency responsible for investigating,
prosecuting, enforcing, or implementing
a statute, rule, regulation, or order,
where OPM becomes aware of an
indication of a violation or potential
violation of civil or criminal law or
regulation.
7. For Litigation—To disclose
information to the Department of
Justice, or in a proceeding before a
court, adjudicative body, or other
administrative body before which OPM
is authorized to appear, when:
(1) OPM, or any component thereof;
or
(2) Any employee of OPM in his or
her official capacity; or
(3) Any employee of OPM in his or
her individual capacity where the
Department of Justice or OPM has
agreed to represent the employee; or
(4) The United States, when OPM
determines that litigation is likely to
affect OPM or any of its components; is
a party to litigation or has an interest in
such litigation, and the use of such
records by the Department of Justice or
OPM is deemed by OPM to be relevant
and necessary to the litigation provided,
however, that the disclosure is
compatible with the purpose for which
records were collected.
11. For Non-Federal Personnel—To
disclose information to contractors,
grantees, or volunteers performing or
PO 00000
Frm 00101
Fmt 4703
Sfmt 4703
35053
working on a contract, service, grant,
cooperative agreement, or job for the
Federal Government.
The routine uses listed below are
specific to this system of records only:
1. To disclose information to another
Federal agency, to a court, or a party in
litigation before a court or in an
administrative proceeding being
conducted by a Federal agency, when
the Government is a party to the judicial
or administrative proceeding.
2. To disclose information to the
contractor that originally provided the
data to audit health care claims or
investigate fraud.
POLICIES AND PRACTICES OF STORING,
RETRIEVING, SAFEGUARDING, RETAINING, AND
DISPOSING OF RECORDS IN THE SYSTEM:
STORAGE:
These records will be maintained in
electronic systems.
RETRIEVABILITY:
These records are retrieved by various
means:
1. Name, address, and/or social
security number of an individual
enrollee or patient,
2. Name, address, and/or TIN or other
identifier of health care providers,
3. Claim payment information, and
4. Diagnostic or other procedure
codes.
SAFEGUARDS:
The system will be located within
space controlled by the OIG in OPM
Headquarters. All employees and
contractors are required to have an
appropriate background investigation
before they are allowed physical access
to OIG office spaces and access to the
system. The system is in a secured space
that is equipped with a two factor
authorization device, restricting access
to authorized personnel only and has
alarms to alert security personnel if
unauthorized access is attempted. OPM
employs armed physical security guards
365 days a year, 24 hours a day that
patrol OPM Headquarters, to include
every entry/exit point. Closed Circuit
Video cameras are strategically located
on every floor and external to the
facility. Multiple layers of computer
firewalls are maintained to prevent
access by unauthorized personnel. The
system employs National Institute of
Standards and Technology (NIST)
technical, physical and environmental
Security Controls identified in Special
Publication (SP) 800–53 revision 3. The
OIG will perform an Assessment and
Authorization following the NIST 800–
53 revision 3 standard in order to obtain
an Authority to Operate (ATO). The OIG
will operate the system in compliance
E:\FR\FM\15JNN1.SGM
15JNN1
35054
Federal Register / Vol. 76, No. 115 / Wednesday, June 15, 2011 / Notices
with the Privacy Act, Federal
Information Security Management Act
(FISMA) and NIST guidance.
Transmission of the data feed from the
carriers to this system is encrypted in
compliance with NIST Federal
Information Processing Standards
Publication 197.
The OPM Health Claims Data
Warehouse is hosted on the OIG IT
systems, however the operation of,
maintenance of, and security of the
OPM Health Claims Data Warehouse is
the responsibility of OPM not the OIG.
Notice to the public of the OPM Health
Claims Data Warehouse system of
records is contained in a separate
System of Records Notice.
RETENTION AND DISPOSAL:
Records in this system will be
retained for at least 7 years but may be
maintained for a longer period as
required by litigation or open
investigations or audits. Computer
records are destroyed by electronic
erasure. A records retention schedule is
being established with the National
Archives and Records Administration
(NARA).
SYSTEM MANAGERS AND ADDRESSES:
jlentini on DSK4TPTVN1PROD with NOTICES
NOTIFICATION AND RECORD ACCESS PROCEDURE:
Individuals wishing to determine
whether this system of records contains
information about them may do so by
writing to the U.S. Office of Personnel
Management, FOIA/PA Requester
Service Center, 1900 E Street, NW.,
Room 5415, Washington, DC 20415–
7900 or by e-mailing foia@opm.gov.
Individuals must furnish the
following information for their records
to be located:
1. Full name.
2. Date and place of birth.
3. Social Security Number.
4. Signature.
5. Available information regarding the
type of information requested.
6. The reason why the individual
believes this system contains
information about him/her.
7. The address to which the
information should be sent.
Individuals requesting access must
also comply with OPM’s Privacy Act
regulations regarding verification of
identity and access to records (5 CFR
297).
Individuals wishing to request
amendment of records about them
VerDate Mar<15>2010
16:42 Jun 14, 2011
Jkt 223001
RECORD SOURCE CATEGORIES:
Information in this system of records
is obtained from health care insurers
contracted by the U.S. Office of
Personnel Management as FEHBP
carriers.
SYSTEM EXEMPTIONS:
None.
[FR Doc. 2011–14840 Filed 6–14–11; 8:45 am]
The system manager is the Chief,
Information Systems Audit Group,
Office of the Inspector General, 1900 E
Street, NW., Room 6400, Washington,
DC 20415–1100.
CONTESTING RECORD PROCEDURE:
should write to the Office of Personnel
Management, FOIA/PA Requester
Service Center, 1900 E Street, NW.,
Room 5415, Washington, DC 20415–
7900. Attn: Office of Inspector General.
Individuals must furnish the
following information in writing for
their records to be located:
1. Full name.
2. Date and place of birth.
3. Social Security Number.
4. City, state, and zip code of their
Federal Agency.
5. Signature.
6. Precise identification of the
information to be amended.
Individuals requesting amendment
must also follow OPM’s Privacy Act
regulations regarding verification of
identity and amendment to records (5
CFR 297).
BILLING CODE 6325–46–P
OFFICE OF SCIENCE AND
TECHNOLOGY POLICY
President’s Council of Advisors on
Science and Technology; Notice of
Partially Closed Meeting
ACTION:
Public notice.
This notice sets forth the
schedule and summary agenda for a
partially closed meeting of the
President’s Council of Advisors on
Science and Technology (PCAST), and
describes the functions of the Council.
Notice of this meeting is required under
the Federal Advisory Committee Act
(FACA), 5 U.S.C., App.
DATES: July 15, 2011.
ADDRESSES: The meeting will be held at
the Marriott Metro Center, 775 12th
Street, NW., Ballroom Salon A,
Washington, DC.
Type of Meeting: Open and Closed.
Proposed Schedule and Agenda: The
President’s Council of Advisors on
Science and Technology (PCAST) is
scheduled to meet in open session on
July 15, 2011 from 10 a.m. to 5 p.m.
Open Portion of Meeting: During this
open meeting, PCAST is tentatively
scheduled to hear presentations on the
U.S. patent system, the activities of the
U.S. Chief Information Officer, and the
SUMMARY:
PO 00000
Frm 00102
Fmt 4703
Sfmt 4703
future of the U.S. science and
technology research enterprise. PCAST
members will also discuss a report they
are developing on the role of biological
carbon sequestration in climate change
mitigation. Additional information and
the agenda, including any changes that
arise, will be posted at the PCAST Web
site at: https://whitehouse.gov/ostp/
pcast.
Closed Portion of the Meeting: PCAST
may hold a closed meeting of
approximately 1 hour with the President
on July 15, 2011, which must take place
in the White House for the President’s
scheduling convenience and to maintain
Secret Service protection. This meeting
will be closed to the public because
such portion of the meeting is likely to
disclose matters that are to be kept
secret in the interest of national defense
or foreign policy under 5 U.S.C.
552b(c)(1).
Public Comments: It is the policy of
the PCAST to accept written public
comments of any length, and to
accommodate oral public comments
whenever possible. The PCAST expects
that public statements presented at its
meetings will not be repetitive of
previously submitted oral or written
statements.
The public comment period for this
meeting will take place on July 15, 2011
at a time specified in the meeting
agenda posted on the PCAST Web site
at https://whitehouse.gov/ostp/pcast.
This public comment period is designed
only for substantive commentary on
PCAST’s work, not for business
marketing purposes.
Oral Comments: To be considered for
the public speaker list at the meeting,
interested parties should register to
speak at https://whitehouse.gov/ostp/
pcast, no later than 12 p.m. Eastern
Time on July 7, 2011. Phone or e-mail
reservations will not be accepted. To
accommodate as many speakers as
possible, the time for public comments
will be limited to two (2) minutes per
person, with a total public comment
period of 30 minutes. If more speakers
register than there is space available on
the agenda, PCAST will randomly select
speakers from among those who
applied. Those not selected to present
oral comments may always file written
comments with the committee. Speakers
are requested to bring at least 25 copies
of their oral comments for distribution
to the PCAST members.
Written Comments: Although written
comments are accepted until the date of
the meeting, written comments should
be submitted to PCAST at least two
weeks prior to each meeting date, no
later than 12 p.m. Eastern Time on June
30, 2011, so that the comments may be
E:\FR\FM\15JNN1.SGM
15JNN1
]]>Agencies
[Federal Register Volume 76, Number 115 (Wednesday, June 15, 2011)]
[Notices]
[Pages 35052-35054]
From the Federal Register Online via the Government Printing Office [www.gpo.gov]
[FR Doc No: 2011-14840]
-----------------------------------------------------------------------
OFFICE OF PERSONNEL MANAGEMENT
Privacy Act of 1974: New System of Records
AGENCY: U.S. Office of Personnel Management.
ACTION: Notice of a new system of records.
-----------------------------------------------------------------------
SUMMARY: The U.S. Office of Personnel Management (OPM), Office of the
Inspector General (OIG) proposes to add OPM/Central-18: Federal
Employees Health Benefits Program Claims Data Warehouse to its
inventory of records systems subject to the Privacy Act of 1974 (5
U.S.C. 552a), as amended. This action is necessary to meet the
requirements of the Privacy Act to publish in the Federal Register
notice of the existence and character of records maintained by the
agency. 5 U.S.C. 552a(e)(4).
DATES: This action will be effective without further notice on July 15,
2011 unless comments are received that would result in a contrary
determination.
ADDRESSES: Send written comments to Timothy C. Watkins, Counsel to the
Inspector General, U.S. Office of Personnel Management, 1900 E Street,
NW., Room 6400, Washington, DC 20415-1100.
FOR FURTHER INFORMATION CONTACT: Timothy C. Watkins, Counsel to the
Inspector General, 202-606-1200, Timothy.Watkins@opm.gov.
SUPPLEMENTARY INFORMATION: The purpose of this system of records is to
provide a central database from which the OIG may use claims data from
Federal Employees Health Benefits Program (FEHBP) carriers for audit
and investigative purposes to meet its oversight obligations under the
Inspector General Act of 1978, as amended, 5 U.S.C. App., to detect
fraud, waste and abuse in OPM programs. The OIG has had access to such
FEHBP claims data since the establishment of the OIG in 1989 and has
operated claims data warehouses in various forms since then. This
notice is being issued because the OIG will now provide a mirror image
of the: Federal Employees Health Benefits Program Claims Data Warehouse
to OPM under an Economy Act Agreement to the system of records OPM/
Central--15, Health Claims Data Warehouse which allows OPM to perform
statistical analysis on FEHBP health care data.
U.S. Office of Personnel Management.
John Berry,
Director.
OPM CENTRAL--18
SYSTEM NAME:
Federal Employees Health Benefits Program Claims Data Warehouse.
SYSTEM LOCATION:
Office of the Inspector General, U.S. Office of Personnel
Management, 1900 E Street, NW., Washington, DC 20415.
CATEGORIES OF INDIVIDUALS COVERED BY THE SYSTEM:
This system contains claims records on the Federal Employees Health
Benefits Program (FEHBP). Participation in these programs is voluntary.
[[Page 35053]]
Participants in the FEHBP include Federal employees, Postal
employees, annuitants under the Civil Service Retirement System and the
Federal Employees Retirement System, former spouses, and their family
members. Health care providers that submit claims to the FEHBP plans
will also be stored in the system as part of the claims records. The
Office of the Inspector General (OIG) has oversight responsibility
under the Inspector General Act over the FEHBP.
CATEGORIES OF RECORDS IN THE SYSTEM:
The records in the system may contain the following types of
information on participating enrollees and covered dependents:
a. Personally identifiable Information (PII) (Name, Social Security
Number, Date of Birth, Gender, and FEHBP Member ID number).
b. Home Address.
c. Covered dependent information (Spouse, Dependents)--names and
genders.
d. Enrollee's employing agency.
e. Names of health care providers including health care providers
debarred under 5 U.S.C. 8902a.
f. Health care provider address.
g. Health Care Provider Taxpayer Identification Number (TIN) or
identifier issued by a carrier.
h. Health care coverage information regarding benefit coverage for
the plan in which the person is enrolled.
i. Health care procedure information regarding procedures performed
on the individual.
j. Health care diagnoses in the form of ICD codes, and treatments,
including prescribed drugs, derived from clinical medical records.
k. Provider charges, including amounts paid by the plan and amounts
paid by the enrollee for the above coverage, procedures, and diagnoses.
AUTHORITY FOR MAINTENANCE OF THE SYSTEM:
The OIG is authorized to maintain FEHBP health claims information
under Sec. 6(a) of the Inspector General Act of 1978, as amended, 5
U.S.C. app. Sec. 6(a). Authority is provided to OPM for maintenance of
FEHBP health claims information by 5 U.S.C. 8910; 45 CFR 164.501,
164.512(d), which allow OPM access to records held by FEHBP contractors
and require these contractors to submit reports on services provided to
enrollees.
PURPOSE:
The primary purpose of this system of records is to provide a
central database from which the OIG may use claims data from carriers
for audit and investigative purposes to meet its oversight obligations
under the Inspector General Act of 1978, as amended, 5 U.S.C. App., to
detect fraud, waste and abuse in OPM programs. The Office of the
Inspector General will use the data to detect and pursue fraud in the
FEHBP and to audit the contracts with the various FEHBP carriers.
The secondary purpose of this system of records is to provide a
mirror image of the Federal Employees Health Benefits Program Claims
Data Warehouse data feeds to OPM so it can establish a central database
(OPM/Central-15) from which it may analyze FEHBP data and actively
manage the FEHBP to ensure the best value for the enrollees and
taxpayers. OPM will collect, manage, and analyze health services data
provided by FEHBP carriers.
ROUTINE USES OF RECORDS MAINTAINED IN THE SYSTEM, INCLUDING CATEGORIES
OF USERS AND THE PURPOSES OF SUCH USES:
Only routine uses 1, 7, and 11 of the Prefatory Statement at the
beginning of OPM's current Systems of Record notice apply to the
records maintained within this system.
1. For Law Enforcement Purposes--To disclose pertinent information
to the appropriate Federal, State, or local agency responsible for
investigating, prosecuting, enforcing, or implementing a statute, rule,
regulation, or order, where OPM becomes aware of an indication of a
violation or potential violation of civil or criminal law or
regulation.
7. For Litigation--To disclose information to the Department of
Justice, or in a proceeding before a court, adjudicative body, or other
administrative body before which OPM is authorized to appear, when:
(1) OPM, or any component thereof; or
(2) Any employee of OPM in his or her official capacity; or
(3) Any employee of OPM in his or her individual capacity where the
Department of Justice or OPM has agreed to represent the employee; or
(4) The United States, when OPM determines that litigation is
likely to affect OPM or any of its components; is a party to litigation
or has an interest in such litigation, and the use of such records by
the Department of Justice or OPM is deemed by OPM to be relevant and
necessary to the litigation provided, however, that the disclosure is
compatible with the purpose for which records were collected.
11. For Non-Federal Personnel--To disclose information to
contractors, grantees, or volunteers performing or working on a
contract, service, grant, cooperative agreement, or job for the Federal
Government.
The routine uses listed below are specific to this system of
records only:
1. To disclose information to another Federal agency, to a court,
or a party in litigation before a court or in an administrative
proceeding being conducted by a Federal agency, when the Government is
a party to the judicial or administrative proceeding.
2. To disclose information to the contractor that originally
provided the data to audit health care claims or investigate fraud.
POLICIES AND PRACTICES OF STORING, RETRIEVING, SAFEGUARDING, RETAINING,
AND DISPOSING OF RECORDS IN THE SYSTEM:
STORAGE:
These records will be maintained in electronic systems.
RETRIEVABILITY:
These records are retrieved by various means:
1. Name, address, and/or social security number of an individual
enrollee or patient,
2. Name, address, and/or TIN or other identifier of health care
providers,
3. Claim payment information, and
4. Diagnostic or other procedure codes.
SAFEGUARDS:
The system will be located within space controlled by the OIG in
OPM Headquarters. All employees and contractors are required to have an
appropriate background investigation before they are allowed physical
access to OIG office spaces and access to the system. The system is in
a secured space that is equipped with a two factor authorization
device, restricting access to authorized personnel only and has alarms
to alert security personnel if unauthorized access is attempted. OPM
employs armed physical security guards 365 days a year, 24 hours a day
that patrol OPM Headquarters, to include every entry/exit point. Closed
Circuit Video cameras are strategically located on every floor and
external to the facility. Multiple layers of computer firewalls are
maintained to prevent access by unauthorized personnel. The system
employs National Institute of Standards and Technology (NIST)
technical, physical and environmental Security Controls identified in
Special Publication (SP) 800-53 revision 3. The OIG will perform an
Assessment and Authorization following the NIST 800-53 revision 3
standard in order to obtain an Authority to Operate (ATO). The OIG will
operate the system in compliance
[[Page 35054]]
with the Privacy Act, Federal Information Security Management Act
(FISMA) and NIST guidance. Transmission of the data feed from the
carriers to this system is encrypted in compliance with NIST Federal
Information Processing Standards Publication 197.
The OPM Health Claims Data Warehouse is hosted on the OIG IT
systems, however the operation of, maintenance of, and security of the
OPM Health Claims Data Warehouse is the responsibility of OPM not the
OIG. Notice to the public of the OPM Health Claims Data Warehouse
system of records is contained in a separate System of Records Notice.
RETENTION AND DISPOSAL:
Records in this system will be retained for at least 7 years but
may be maintained for a longer period as required by litigation or open
investigations or audits. Computer records are destroyed by electronic
erasure. A records retention schedule is being established with the
National Archives and Records Administration (NARA).
SYSTEM MANAGERS AND ADDRESSES:
The system manager is the Chief, Information Systems Audit Group,
Office of the Inspector General, 1900 E Street, NW., Room 6400,
Washington, DC 20415-1100.
NOTIFICATION AND RECORD ACCESS PROCEDURE:
Individuals wishing to determine whether this system of records
contains information about them may do so by writing to the U.S. Office
of Personnel Management, FOIA/PA Requester Service Center, 1900 E
Street, NW., Room 5415, Washington, DC 20415-7900 or by e-mailing
foia@opm.gov.
Individuals must furnish the following information for their
records to be located:
1. Full name.
2. Date and place of birth.
3. Social Security Number.
4. Signature.
5. Available information regarding the type of information
requested.
6. The reason why the individual believes this system contains
information about him/her.
7. The address to which the information should be sent.
Individuals requesting access must also comply with OPM's Privacy
Act regulations regarding verification of identity and access to
records (5 CFR 297).
CONTESTING RECORD PROCEDURE:
Individuals wishing to request amendment of records about them
should write to the Office of Personnel Management, FOIA/PA Requester
Service Center, 1900 E Street, NW., Room 5415, Washington, DC 20415-
7900. Attn: Office of Inspector General.
Individuals must furnish the following information in writing for
their records to be located:
1. Full name.
2. Date and place of birth.
3. Social Security Number.
4. City, state, and zip code of their Federal Agency.
5. Signature.
6. Precise identification of the information to be amended.
Individuals requesting amendment must also follow OPM's Privacy Act
regulations regarding verification of identity and amendment to records
(5 CFR 297).
RECORD SOURCE CATEGORIES:
Information in this system of records is obtained from health care
insurers contracted by the U.S. Office of Personnel Management as FEHBP
carriers.
SYSTEM EXEMPTIONS:
None.
[FR Doc. 2011-14840 Filed 6-14-11; 8:45 am]
BILLING CODE 6325-46-P
