Privacy Act of 1974; System of Records, 48935-48936 [2015-20031]
Download as PDF
<![CDATA[
Federal Register / Vol. 80, No. 157 / Friday, August 14, 2015 / Notices
due no later than August 17, 2015. The
public portions of these filings can be
accessed via the Commission’s Web site
(https://www.prc.gov).
The Commission appoints James F.
Callow to serve as Public Representative
in these dockets.
III. Ordering Paragraphs
It is ordered:
1. The Commission establishes Docket
Nos. MC2015–78 and CP2015–123 to
consider the matters raised in each
docket.
2. Pursuant to 39 U.S.C. 505, James F.
Callow is appointed to serve as an
officer of the Commission to represent
the interests of the general public in
these proceedings (Public
Representative).
3. Comments are due no later than
August 17, 2015.
4. The Secretary shall arrange for
publication of this order in the Federal
Register.
By the Commission.
Ruth Ann Abrams,
Acting Secretary.
[FR Doc. 2015–20052 Filed 8–13–15; 8:45 am]
BILLING CODE 7710–FW–P
POSTAL SERVICE
Privacy Act of 1974; System of
Records
Postal ServiceTM.
Notice of new system of records.
AGENCY:
ACTION:
The United States Postal
Service® (Postal Service) is establishing
a new General Privacy Act System of
Records. This new system of records is
being established to provide
administrative support to end users in
connection with a new Postal Service
digital application, USPS Health
ConnectTM.
SUMMARY:
This system will become
effective without further notice
September 14, 2015 unless, in response
to comments received on or before that
date, the Postal Service makes any
substantial change to the purpose or
routine uses set forth, or to expand the
availability of information in this
system, as described in this notice.
ADDRESSES: Comments may be mailed
or delivered to the Privacy and Records
Office, United States Postal Service, 475
L’Enfant Plaza SW., Room 9431,
Washington, DC 20260–1101. Copies of
all written comments will be available
at this address for public inspection and
photocopying between 8 a.m. and 4
p.m., Monday through Friday.
asabaliauskas on DSK5VPTVN1PROD with NOTICES
DATES:
VerDate Sep<11>2014
18:50 Aug 13, 2015
Jkt 235001
FOR FURTHER INFORMATION CONTACT:
Matthew J. Connolly, Chief Privacy
Officer, Privacy and Records Office,
202–268–8582 or privacy@usps.gov.
SUPPLEMENTARY INFORMATION: This
notice is in accordance with the Privacy
Act requirement that agencies publish
their amended systems of records in the
Federal Register when there is a
revision, change, or addition.
I. Background
The Postal Service seeks to provide a
new wellness benefit to its employees
and their dependents by offering USPS
Health Connect, a secure application
that allows end users to collect, store,
and manage their personal health and
wellness information in an account
completely under the end user’s control.
Postal Service employees will be able to
voluntarily elect to use this application.
II. Rationale for Changes to USPS
Privacy Act Systems of Records
The System of Records USPS 100.450,
Administrative Records Related to
Digital Services, is being established to
provide administrative support to assist
end users with technical questions and
issues concerning the USPS Health
Connect application. This new system
of records includes only the categories
of administrative records defined below.
Neither the Postal Service nor its
contractors or subcontractors will view
or access any health or medical
information that is collected, stored, or
shared by the end user when using
USPS Health Connect.
III. Description of New System of
Records
The Postal ServiceTM is establishing a
new General Privacy Act System of
Records titled: 100.450 Administrative
Records Related to Digital Services.
Pursuant to 5 U.S.C. 552a(e)(11),
interested persons are invited to submit
written data, views, or arguments on
this proposal. A report of the new
system of records has been sent to
Congress and to the Office of
Management and Budget for their
evaluation. The Postal Service does not
expect this notice to have any adverse
effect on individual privacy rights.
Accordingly, for the reasons stated
above, the Postal Service proposes a
new system of records as follows:
USPS 100.450
SYSTEM NAME:
User Profile Support Records Related
to Digital Service.
SYSTEM LOCATION
PO 00000
Frm 00132
Fmt 4703
CATEGORIES OF INDIVIDUALS COVERED BY THE
SYSTEM
1. Current and former USPS
employees and their dependents that
voluntarily opt-in to use USPS Health
Connect.
CATEGORIES OF RECORDS IN THE SYSTEM
1. User Profile Information: Name,
date of birth, email, gender, phone,
internally assigned identifier, username,
physical address, employee
identification number (EIN), contact
information, customer ID(s), text
message number, date of account
creation, method of referral to Web site,
date of last logon, and authentication
method preferences.
2. User preferences for
communications: Frequency and
channel opt in/opt out and preferred
means of contact for service alerts and
notifications, language.
3. Online user information: Internet
Protocol (IP) address, domain name,
operating system versions, browser
version, date and time of first and last
connection, and geographic location.
4. Identity verification information:
username, user ID, email address, text
message number, and results of identity
proofing validation.
AUTHORITY FOR MAINTENANCE OF THE SYSTEM
39 U.S.C. 1003, 1004, and 1201–1209.
PURPOSE(S)
1. To provide administrative support
to assist end users with technical
questions and issues.
2. To provide account management
assistance.
3. To provide account security and to
deter and detect fraud.
ROUTINE USES OF RECORDS MAINTAINED IN THE
SYSTEM, INCLUDING CATEGORIES OF USERS AND
THE PURPOSES OF SUCH USES
Standard routine uses 1–9 and 11
apply.
POLICIES AND PRACTICES FOR STORING,
RETRIEVING, ACCESSING, RETAINING, AND
DISPOSING OF RECORDS IN THE SYSTEM
STORAGE
Automated database, computer
storage media, and digital files.
RETRIEVABILITY
For System administrators and/or
customer service representatives, by
internally assigned identifier, or end
user account details such as name,
phone number, etc. to assist end users
with access/use of USPS Health Connect
and understand and fulfill end user
needs.
SAFEGUARDS
Contractor site utilizes a Cloud
Infrastructure under Agency
Contractor sites.
Sfmt 4703
48935
E:\FR\FM\14AUN1.SGM
14AUN1
48936
Federal Register / Vol. 80, No. 157 / Friday, August 14, 2015 / Notices
Authorization to Operate (ATO) using a
FedRAMP accredited Third Party
Assessment Organization (3PAO) for
selected Cloud Service Provider
services. Physical access is strictly
controlled both at the perimeter and at
building ingress points by professional
security staff utilizing video
surveillance, intrusion detection
systems, and other electronic means.
Authorized staff must pass two-factor
authentication a minimum of two times
to access data center floors. All physical
access to data centers by contractor
employees is logged and audited
routinely.
Encryption and Data Security uses
Federal Information Processing
Standards (FIPS) compliant encryption,
secure certificates for Client and Server
communication authenticity, session
protection certificates for end to end
protection, multiple layers of protection
for data confidentiality and integrity
and hashes and password storage
encryption and block level encryption
for the data volumes. Customer support
personnel have minimum access to user
profile records.
RETENTION AND DISPOSAL
Records are retained until (1) the end
user cancels the account, (2) six years
after the end user last accesses their
account, (3) until the relationship ends,
or (4) after reasonable notice has been
provided to the end user to export their
account information in the event the
agreement is terminated.
Records existing on computer storage
media are destroyed according to the
applicable USPS media sanitization
practice.
SYSTEM MANAGER(S) AND ADDRESS
Chief Information Officer and
Executive Vice President, United States
Postal Service, 475 L’Enfant Plaza SW.,
Washington, DC 20260.
NOTIFICATION PROCEDURE
asabaliauskas on DSK5VPTVN1PROD with NOTICES
Individuals wanting to know if
information about them is maintained in
this system must address inquiries in
writing to the system manager. Inquiries
must include full name, Date of Birth,
physical address, email address,
username and other identifying
information if requested.
RECORD ACCESS PROCEDURES
Requests for access must be made in
accordance with the Notification
Procedure above and USPS Privacy Act
regulations regarding access to records
VerDate Sep<11>2014
18:50 Aug 13, 2015
Jkt 235001
and verification of identity under 39
CFR 266.6.
CONTESTING RECORD PROCEDURES
See Notification Procedure and
Record Access Procedures above.
RECORD SOURCE CATEGORIES
*
Individual end user.
*
*
*
*
Stanley F. Mires,
Attorney, Federal Compliance.
[FR Doc. 2015–20031 Filed 8–13–15; 8:45 am]
BILLING CODE 7710–01–P
RAILROAD RETIREMENT BOARD
Agency Forms Submitted for OMB
Review, Request for Comments
In accordance with the
Paperwork Reduction Act of 1995 (44
U.S.C. Chapter 35), the Railroad
Retirement Board (RRB) is forwarding
an Information Collection Request (ICR)
to the Office of Information and
Regulatory Affairs (OIRA), Office of
Management and Budget (OMB). Our
ICR describes the information we seek
to collect from the public. Review and
approval by OIRA ensures that we
impose appropriate paperwork burdens.
The RRB invites comments on the
proposed collection of information to
determine (1) the practical utility of the
collection; (2) the accuracy of the
estimated burden of the collection; (3)
ways to enhance the quality, utility, and
clarity of the information that is the
subject of collection; and (4) ways to
minimize the burden of collections on
respondents, including the use of
automated collection techniques or
other forms of information technology.
Comments to the RRB or OIRA must
contain the OMB control number of the
ICR. For proper consideration of your
comments, it is best if the RRB and
OIRA receive them within 30 days of
the publication date.
Section 2 of the Railroad Retirement
Act (RRA), provides for the payment of
an annuity to the spouse or divorced
spouse of a retired railroad employee.
For the spouse or divorced spouse to
qualify for an annuity, the RRB must
determine if any of the employee’s
current marriage to the applicant is
valid.
The requirements for obtaining
documentary evidence to determine
valid marital relationships are
prescribed in 20 CFR 219.30 through
SUMMARY:
PO 00000
Frm 00133
Fmt 4703
Sfmt 4703
219.35. Section 2(e) of the RRA requires
that an employee must relinquish all
rights to any railroad employer service
before a spouse annuity can be paid.
The RRB uses Form G–346,
Employee’s Certification, to obtain the
information needed to determine
whether the employee’s current
marriage is valid. Form G–346 is
completed by the retired employee who
is the husband or wife of the applicant
for a spouse annuity. Completion is
required to obtain a benefit. One
response is requested of each
respondent.
Consistent with 20 CFR 217.17, the
RRB uses Form G–346sum, Employee’s
Certification Summary, which mirrors
the information collected on Form G–
346, when an employee, after being
interviewed by an RRB field office staff
member ‘‘signs’’ the form using an
alternative signature method known as
‘‘attestation.’’ Attestation refers to the
action taken by the RRB field office
employee to confirm and annotate the
RRB’s records of the applicant’s
affirmation under penalty of perjury that
the information provided is correct and
the applicant’s agreement to sign the
form by proxy. Completion is required
to obtain a benefit. One response is
requested of each respondent.
Previous Requests for Comments: The
RRB has already published the initial
60-day notice (80 FR 32637 on June 9,
2015) required by 44 U.S.C. 3506(c)(2).
That request elicited no comments.
Information Collection Request (ICR)
Title: Employee’s Certification.
OMB Control Number: 3220–0140.
Forms submitted: G–346 and
G–346sum.
Type of request: Extension without
change of a currently approved
collection.
Affected public: Individuals or
Households.
Abstract: Under Section 2 of the
Railroad Retirement Act, spouses of
retired railroad employees may be
entitled to an annuity. The collection
obtains information from the employee
about the employee’s previous
marriages, if any, to determine if any
impediment exists to the marriage
between the employee and his or her
spouse.
Changes proposed: The RRB proposes
no changes to the forms in this
collection.
The burden estimate for the ICR is as
follows:
E:\FR\FM\14AUN1.SGM
14AUN1
]]>Agencies
[Federal Register Volume 80, Number 157 (Friday, August 14, 2015)]
[Notices]
[Pages 48935-48936]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2015-20031]
=======================================================================
-----------------------------------------------------------------------
POSTAL SERVICE
Privacy Act of 1974; System of Records
AGENCY: Postal ServiceTM.
ACTION: Notice of new system of records.
-----------------------------------------------------------------------
SUMMARY: The United States Postal Service[supreg] (Postal Service) is
establishing a new General Privacy Act System of Records. This new
system of records is being established to provide administrative
support to end users in connection with a new Postal Service digital
application, USPS Health ConnectTM.
DATES: This system will become effective without further notice
September 14, 2015 unless, in response to comments received on or
before that date, the Postal Service makes any substantial change to
the purpose or routine uses set forth, or to expand the availability of
information in this system, as described in this notice.
ADDRESSES: Comments may be mailed or delivered to the Privacy and
Records Office, United States Postal Service, 475 L'Enfant Plaza SW.,
Room 9431, Washington, DC 20260-1101. Copies of all written comments
will be available at this address for public inspection and
photocopying between 8 a.m. and 4 p.m., Monday through Friday.
FOR FURTHER INFORMATION CONTACT: Matthew J. Connolly, Chief Privacy
Officer, Privacy and Records Office, 202-268-8582 or privacy@usps.gov.
SUPPLEMENTARY INFORMATION: This notice is in accordance with the
Privacy Act requirement that agencies publish their amended systems of
records in the Federal Register when there is a revision, change, or
addition.
I. Background
The Postal Service seeks to provide a new wellness benefit to its
employees and their dependents by offering USPS Health Connect, a
secure application that allows end users to collect, store, and manage
their personal health and wellness information in an account completely
under the end user's control. Postal Service employees will be able to
voluntarily elect to use this application.
II. Rationale for Changes to USPS Privacy Act Systems of Records
The System of Records USPS 100.450, Administrative Records Related
to Digital Services, is being established to provide administrative
support to assist end users with technical questions and issues
concerning the USPS Health Connect application. This new system of
records includes only the categories of administrative records defined
below. Neither the Postal Service nor its contractors or subcontractors
will view or access any health or medical information that is
collected, stored, or shared by the end user when using USPS Health
Connect.
III. Description of New System of Records
The Postal ServiceTM is establishing a new General
Privacy Act System of Records titled: 100.450 Administrative Records
Related to Digital Services. Pursuant to 5 U.S.C. 552a(e)(11),
interested persons are invited to submit written data, views, or
arguments on this proposal. A report of the new system of records has
been sent to Congress and to the Office of Management and Budget for
their evaluation. The Postal Service does not expect this notice to
have any adverse effect on individual privacy rights.
Accordingly, for the reasons stated above, the Postal Service
proposes a new system of records as follows:
USPS 100.450
System Name:
User Profile Support Records Related to Digital Service.
System Location
Contractor sites.
Categories of Individuals Covered by the System
1. Current and former USPS employees and their dependents that
voluntarily opt-in to use USPS Health Connect.
Categories of Records in the System
1. User Profile Information: Name, date of birth, email, gender,
phone, internally assigned identifier, username, physical address,
employee identification number (EIN), contact information, customer
ID(s), text message number, date of account creation, method of
referral to Web site, date of last logon, and authentication method
preferences.
2. User preferences for communications: Frequency and channel opt
in/opt out and preferred means of contact for service alerts and
notifications, language.
3. Online user information: Internet Protocol (IP) address, domain
name, operating system versions, browser version, date and time of
first and last connection, and geographic location.
4. Identity verification information: username, user ID, email
address, text message number, and results of identity proofing
validation.
Authority for Maintenance of the System
39 U.S.C. 1003, 1004, and 1201-1209.
Purpose(s)
1. To provide administrative support to assist end users with
technical questions and issues.
2. To provide account management assistance.
3. To provide account security and to deter and detect fraud.
Routine Uses of Records Maintained in the System, Including Categories
of Users and the Purposes of Such Uses
Standard routine uses 1-9 and 11 apply.
Policies and Practices for Storing, Retrieving, Accessing, Retaining,
and Disposing of Records in the System
Storage
Automated database, computer storage media, and digital files.
Retrievability
For System administrators and/or customer service representatives,
by internally assigned identifier, or end user account details such as
name, phone number, etc. to assist end users with access/use of USPS
Health Connect and understand and fulfill end user needs.
Safeguards
Contractor site utilizes a Cloud Infrastructure under Agency
[[Page 48936]]
Authorization to Operate (ATO) using a FedRAMP accredited Third Party
Assessment Organization (3PAO) for selected Cloud Service Provider
services. Physical access is strictly controlled both at the perimeter
and at building ingress points by professional security staff utilizing
video surveillance, intrusion detection systems, and other electronic
means. Authorized staff must pass two-factor authentication a minimum
of two times to access data center floors. All physical access to data
centers by contractor employees is logged and audited routinely.
Encryption and Data Security uses Federal Information Processing
Standards (FIPS) compliant encryption, secure certificates for Client
and Server communication authenticity, session protection certificates
for end to end protection, multiple layers of protection for data
confidentiality and integrity and hashes and password storage
encryption and block level encryption for the data volumes. Customer
support personnel have minimum access to user profile records.
Retention and Disposal
Records are retained until (1) the end user cancels the account,
(2) six years after the end user last accesses their account, (3) until
the relationship ends, or (4) after reasonable notice has been provided
to the end user to export their account information in the event the
agreement is terminated.
Records existing on computer storage media are destroyed according
to the applicable USPS media sanitization practice.
System Manager(s) and Address
Chief Information Officer and Executive Vice President, United
States Postal Service, 475 L'Enfant Plaza SW., Washington, DC 20260.
Notification Procedure
Individuals wanting to know if information about them is maintained
in this system must address inquiries in writing to the system manager.
Inquiries must include full name, Date of Birth, physical address,
email address, username and other identifying information if requested.
Record Access Procedures
Requests for access must be made in accordance with the
Notification Procedure above and USPS Privacy Act regulations regarding
access to records and verification of identity under 39 CFR 266.6.
Contesting Record Procedures
See Notification Procedure and Record Access Procedures above.
Record Source Categories
Individual end user.
* * * * *
Stanley F. Mires,
Attorney, Federal Compliance.
[FR Doc. 2015-20031 Filed 8-13-15; 8:45 am]
BILLING CODE 7710-01-P
