Privacy Act of 1974; New System of Records, 28869-28870 [2018-13305]

Download as PDF Federal Register / Vol. 83, No. 120 / Thursday, June 21, 2018 / Notices technological information collection and transmission techniques. III. Proposed Actions This is an existing collection of information in use without an OMB number. The proposed ICR includes collection of information requirements for: (1) Alliance agreement development, (2) the biannual Alliance Data Reporting Form, and (3) annual reports. The burden hours for the information collection requirements contained in the proposed ICR would result in a total initial burden hour estimate of 2,210 hours. The Agency will summarize the comments submitted in response to this notice and will include this summary in the request to OMB to approve these information collection requirements, and the associated templates and forms. Type of Review: Existing collection in use without an OMB control number. Title: Information Collection Requirements for OSHA’s Alliance Program. OMB Control Number: 1218—0NEW. Affected Public: Businesses or other for-profits. Number of Respondents: 250 Frequency: Once, On occasion, Semiannually, Annually. Average Time per Response: Various. Total Number of Responses: 690. Estimated Total Burden Hours: 2,210. Estimated Cost (Operation and Maintenance): $0. amozie on DSK3GDR082PROD with NOTICES1 IV. Public Participation—Submission of Comments on This Notice and Internet Access to Comments and Submissions You may submit comments in response to this document as follows: (1) Electronically at http:// www.regulations.gov, which is the Federal eRulemaking Portal; (2) by facsimile (fax); or (3) by hard copy. All comments, attachments, and other material must identify the Agency name and the OSHA docket number for the ICR (Docket No. OSHA–2018–0006). You may supplement electronic submissions by uploading document files electronically. If you wish to mail additional materials in reference to an electronic or facsimile submission, you must submit them to the OSHA Docket Office (see the section of this notice titled ADDRESSES). The additional materials must clearly identify electronic comments by your name, date, and the docket number so the Agency can attach them to your comments. Because of security procedures, the use of regular mail may cause a significant delay in the receipt of comments. For information about VerDate Sep<11>2014 17:22 Jun 20, 2018 Jkt 244001 security procedures concerning the delivery of materials by hand, express delivery, messenger, or courier service, please contact the OSHA Docket Office at (202) 693–2350, (TTY (877) 889– 5627). Comments and submissions are posted without change at http:// www.regulations.gov. Therefore, OSHA cautions commenters about submitting personal information such as their social security number and date of birth. Although all submissions are listed in the http://www.regulations.gov index, some information (e.g., copyrighted material) is not publicly available to read or download from this website. All submissions, including copyrighted material, are available for inspection and copying at the OSHA Docket Office. Information on using the http:// www.regulations.gov website to submit comments and access the docket is available at the website’s ‘‘User Tips’’ link. Contact the OSHA Docket Office for information about materials not available from the website, and for assistance in using the internet to locate docket submissions. V. Authority and Signature Loren Sweatt, Deputy Assistant Secretary of Labor for Occupational Safety and Health, directed the preparation of this notice. The authority for this notice is the Paperwork Reduction Act of 1995 (44 U.S.C. 3506 et seq.) and Secretary of Labor’s Order No. 1–2012 (77 FR 3912). Signed at Washington, DC, on June 18, 2018. Loren Sweatt, Deputy Assistant Secretary of Labor for Occupational Safety and Health. [FR Doc. 2018–13324 Filed 6–20–18; 8:45 am] BILLING CODE 4510–26–P MILLENNIUM CHALLENGE CORPORATION Privacy Act of 1974; New System of Records Millennium Challenge Corporation (MCC). ACTION: Notice of a new system of records. AGENCY: MCC proposes to add a new system of records to its inventory of records systems subject to the Privacy Act of 1974, as amended. This action complies with the requirements of the Privacy Act to publish in the Federal Register notice of the existence and character of records maintained by the agency. The system has been SUMMARY: PO 00000 Frm 00069 Fmt 4703 Sfmt 4703 28869 operational since June 29, 2016 without incident. DATES: This action will be applicable without further notice 30 days after date of publication in the Federal Register. ADDRESSES: Send written comments to the Millennium Challenge Corporation, ATTN: Vincent T. Groh, Chief Information Officer, Department of Administration and Finance, 1099 Fourteenth Street NW, Suite 700, Washington, DC, 20005–3550. FOR FURTHER INFORMATION CONTACT: Miguel G. Adams, Chief Information Security Officer and Deputy Privacy Officer, Millennium Challenge Corporation, adamsmg@mcc.gov, 202– 521–3574. SUPPLEMENTARY INFORMATION: MCC is giving notice of a system of records pursuant to the Privacy Act of 1974 (5 U.S.C. 552a) for the MCC–Business Relations System (MCC–BRS). MCC utilizes MCC–BRS to provide automated processing of business transactions related MCC’s mission of reducing global poverty through growth. MCC– BRS utilizes the Salesforce Government Cloud information system for collecting, storing, and processing the information. Various elements within MCC will utilize MCC–BRS for their business functions; they include the departments of Congressional and Public Affairs (CPA) Department, and the Department of Compact Operations (DCO). Business functions within DCO include the Finance, Investment and Trade (FIT), Environmental and Social Performance (ESP), and the Office of Strategic Partnerships (OSP). Salesforce Government Cloud meets the federal government’s objectives of cloud computing to reduce procurement and operating costs to the federal government. In addition, Salesforce Government Cloud meets the Federal Information Processing Standards Publication (FIPS)—200, Minimum Security Requirements for Federal Information and Information Systems as an authorized Federal Risk and Authorization Management Program (FedRAMP) information system. MCC utilizes MCC–BRS to achieve the following business objectives: 1. To create and maintain a system that optimizes MCC’s ability to analyze, manage, engage, and grow external stakeholders; 2. To create and manage business engagement opportunities that promote MCC’s mission in an organized and efficient manner; 3. To provide in person or online event management and communications campaigns for external stakeholder engagement; and 4. To provide the agency with the means to: track and manage future financial E:\FR\FM\21JNN1.SGM 21JNN1 28870 Federal Register / Vol. 83, No. 120 / Thursday, June 21, 2018 / Notices opportunity data, create and manage MCC event data, access dashboards, and generate accurate reporting and analytics. SYSTEM NUMBER MCC–001. SYSTEM NAME: MCC–Business Relations System (MCC–BRS). SYSTEM CLASSIFICATION: Unclassified. CATEGORIES OF INDIVIDUALS COVERED BY THE SYSTEM: Records in this system process information on international and domestic contracting firm owners and employees, small to medium business owners and employees; and other individuals that are contacts or leads for potential vendors. CATEGORIES OF RECORDS IN THE SYSTEM: The categories include: 1. Personally identifiable information (PII); such as, name, company name, job title, business address, business phone number, country or country region, email, and notes on a meeting or event; and 2. Meeting notes. AUTHORITY FOR MAINTENANCE OF THE SYSTEM: 552a(b) of the Privacy Act, all or a portion of the records or information contained in this system may be disclosed to authorized entities, as determined to be relevant and necessary, outside MCC as a routine use pursuant to 5 U.S.C. 552a(b)(3) as follows: • Financial project monitoring or collections; • Due diligence background checks and screening; • Litigation or arbitration purposes; • Outside organizations contracted with OPIC for specific authorized activities; • National Archives and Records Administration (NARA) for records management purposes; • Contractors, interns, and government detailed personnel to perform OPIC authorized activities; • Audits and oversight; • Congressional inquiries; • Investigations of potential violations of law. POLICIES AND PRACTICES FOR STORING, RETRIEVING, ACCESSING, RETAINING, AND DISPOSING OF RECORDS IN THE SYSTEM: PURPOSE OF THE SYSTEM: amozie on DSK3GDR082PROD with NOTICES1 This system is electronically stored in a government cloud service centrally located at a Salesforce GSA data center. SAFEGUARDS: MCC staff will use the system to collect, store, and process business contact information that will contain PII. The information collected achieves MCC’s core functions of reducing global poverty through economic growth by aligning business contacts with MCC’s mission. The PII information collected is similar to the information on a business card. Using a customer relations management (CRM) increases accuracy and business efficiencies. In addition, MCC will utilize the system to process, store, and retain personal notations on meeting or business events. Personal notations can include information that promotes efficiencies in previous contact meetings, discussions, or events that have transpired in the past. Additionally, the system utilizes encrypted links to provide efficiencies in communications campaigns through mass email distribution, and event engagement opportunities to event attendees, or vendor groups. MCC safeguards the information in accordance with applicable laws, rules and policies, including the Federal Information Security Modernization Act of 2014; OMB Circular A–130, Management of Federal Resources; Federal Risk and Authorization Management Program (FedRAMP); and MCC policies and procedures. MCC protects records from unauthorized access through appropriate administrative, physical, and technical safeguards. These safeguards include restricting access to authorized personnel who have need-to-know, and the process of authentication using user identifications (IDs) and passwords that function as an identity and authentication method of access. Personnel with authorized access to the system have received training in the proper handling of Privacy Act information and in information security requirements for both paper copies and electronically stored information. In addition to those disclosures generally permitted under 5 U.S.C. VerDate Sep<11>2014 17:22 Jun 20, 2018 Jkt 244001 RETENTION AND DISPOSAL: MCC retains records in accordance with the National Archives and Records Administration (NARA), General Records Schedule (GRS). PO 00000 Frm 00070 Records are retrievable by personal name, project name, or a combination of search functions available in the Salesforce CRM tool. SYSTEM MANAGER AND ADDRESS: Jason Bauer, Director of Finance, Investment and Trade (FIT), Department of Compact Operations, 1099 Fourteenth Street NW, Suite 700, Washington, DC, 20005–3550. NOTIFICATION PROCEDURES: Individuals seeking knowledge of the system’s records must submit a written request to the MCC Privacy Officer, at the above mailing address, clearly marked as ‘‘Privacy Act Request’’ on the envelope and letter. The request must include the requestor’s full name, current address, the name or number of the system to be searched, and if possible, the record identification number. The request must be signed by either notarized signature or by signature under penalty of perjury under 28 U.S.C. 1746. RECORD ACCESS PROCEDURE: Same as notification procedures. CONTESTING RECORD PROCEDURE: STORAGE: 22 U.S.C. 7705, Chapter 84— Millennium Challenge. ROUTINE USE OF RECORDS MAINTAINED IN THE SYSTEM, INCLUDING CATEGEORIES OF USERS AND THE PURPOSES OF SUCH USES: RETRIEVABILITY: Fmt 4703 Sfmt 4703 Same as the notification procedure above; the request should also clearly and concisely describe the information contested, the reasons for contesting it, and the proposed amendment sought, pursuant to 45 CFR 5b.7. RECORD SOURCE CATEGORIES: The federal employee collects and imports the contact information or event information directly to the system. Additionally, the www.MCC.gov public website events webform will import the contact information directly to the system. EXEMPTIONS CLAIMED FOR THE SYSTEM: None. Dated: June 1, 2018. Vincent T. Groh, Privacy Officer for Millennium Challenge Corporation. [FR Doc. 2018–13305 Filed 6–20–18; 8:45 am] BILLING CODE 9211–03–P NATIONAL SCIENCE FOUNDATION Sunshine Act Meeting; National Science Board The National Science Board, pursuant to NSF regulations (45 CFR part 614), the National Science Foundation Act, as amended (42 U.S.C. 1862n–5), and the Government in the Sunshine Act (5 U.S.C. 552b), hereby gives notice of E:\FR\FM\21JNN1.SGM 21JNN1

Agencies

[Federal Register Volume 83, Number 120 (Thursday, June 21, 2018)]
[Notices]
[Pages 28869-28870]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2018-13305]


=======================================================================
-----------------------------------------------------------------------

MILLENNIUM CHALLENGE CORPORATION


Privacy Act of 1974; New System of Records

AGENCY: Millennium Challenge Corporation (MCC).

ACTION: Notice of a new system of records.

-----------------------------------------------------------------------

SUMMARY: MCC proposes to add a new system of records to its inventory 
of records systems subject to the Privacy Act of 1974, as amended. This 
action complies with the requirements of the Privacy Act to publish in 
the Federal Register notice of the existence and character of records 
maintained by the agency. The system has been operational since June 
29, 2016 without incident.

DATES: This action will be applicable without further notice 30 days 
after date of publication in the Federal Register.

ADDRESSES: Send written comments to the Millennium Challenge 
Corporation, ATTN: Vincent T. Groh, Chief Information Officer, 
Department of Administration and Finance, 1099 Fourteenth Street NW, 
Suite 700, Washington, DC, 20005-3550.

FOR FURTHER INFORMATION CONTACT: Miguel G. Adams, Chief Information 
Security Officer and Deputy Privacy Officer, Millennium Challenge 
Corporation, [email protected], 202-521-3574.

SUPPLEMENTARY INFORMATION: MCC is giving notice of a system of records 
pursuant to the Privacy Act of 1974 (5 U.S.C. 552a) for the MCC-
Business Relations System (MCC-BRS). MCC utilizes MCC-BRS to provide 
automated processing of business transactions related MCC's mission of 
reducing global poverty through growth. MCC-BRS utilizes the Salesforce 
Government Cloud information system for collecting, storing, and 
processing the information. Various elements within MCC will utilize 
MCC-BRS for their business functions; they include the departments of 
Congressional and Public Affairs (CPA) Department, and the Department 
of Compact Operations (DCO). Business functions within DCO include the 
Finance, Investment and Trade (FIT), Environmental and Social 
Performance (ESP), and the Office of Strategic Partnerships (OSP).
    Salesforce Government Cloud meets the federal government's 
objectives of cloud computing to reduce procurement and operating costs 
to the federal government. In addition, Salesforce Government Cloud 
meets the Federal Information Processing Standards Publication (FIPS)--
200, Minimum Security Requirements for Federal Information and 
Information Systems as an authorized Federal Risk and Authorization 
Management Program (FedRAMP) information system. MCC utilizes MCC-BRS 
to achieve the following business objectives: 1. To create and maintain 
a system that optimizes MCC's ability to analyze, manage, engage, and 
grow external stakeholders; 2. To create and manage business engagement 
opportunities that promote MCC's mission in an organized and efficient 
manner; 3. To provide in person or online event management and 
communications campaigns for external stakeholder engagement; and 4. To 
provide the agency with the means to: track and manage future financial

[[Page 28870]]

opportunity data, create and manage MCC event data, access dashboards, 
and generate accurate reporting and analytics.
SYSTEM NUMBER
    MCC-001.

System Name:
    MCC-Business Relations System (MCC-BRS).

System Classification:
    Unclassified.

Categories of Individuals Covered by the System:
    Records in this system process information on international and 
domestic contracting firm owners and employees, small to medium 
business owners and employees; and other individuals that are contacts 
or leads for potential vendors.

Categories of Records in the System:
    The categories include: 1. Personally identifiable information 
(PII); such as, name, company name, job title, business address, 
business phone number, country or country region, email, and notes on a 
meeting or event; and 2. Meeting notes.

Authority for Maintenance of the System:
    22 U.S.C. 7705, Chapter 84--Millennium Challenge.

Purpose of the System:
    MCC staff will use the system to collect, store, and process 
business contact information that will contain PII. The information 
collected achieves MCC's core functions of reducing global poverty 
through economic growth by aligning business contacts with MCC's 
mission. The PII information collected is similar to the information on 
a business card. Using a customer relations management (CRM) increases 
accuracy and business efficiencies. In addition, MCC will utilize the 
system to process, store, and retain personal notations on meeting or 
business events. Personal notations can include information that 
promotes efficiencies in previous contact meetings, discussions, or 
events that have transpired in the past. Additionally, the system 
utilizes encrypted links to provide efficiencies in communications 
campaigns through mass email distribution, and event engagement 
opportunities to event attendees, or vendor groups.

Routine Use of Records Maintained in the System, Including Categeories 
of Users and the Purposes of Such Uses:
    In addition to those disclosures generally permitted under 5 U.S.C. 
552a(b) of the Privacy Act, all or a portion of the records or 
information contained in this system may be disclosed to authorized 
entities, as determined to be relevant and necessary, outside MCC as a 
routine use pursuant to 5 U.S.C. 552a(b)(3) as follows:
     Financial project monitoring or collections;
     Due diligence background checks and screening;
     Litigation or arbitration purposes;
     Outside organizations contracted with OPIC for specific 
authorized activities;
     National Archives and Records Administration (NARA) for 
records management purposes;
     Contractors, interns, and government detailed personnel to 
perform OPIC authorized activities;
     Audits and oversight;
     Congressional inquiries;
     Investigations of potential violations of law.

Policies and practices for storing, retrieving, accessing, retaining, 
and disposing of records in the system:
Storage:
    This system is electronically stored in a government cloud service 
centrally located at a Salesforce GSA data center.

Safeguards:
    MCC safeguards the information in accordance with applicable laws, 
rules and policies, including the Federal Information Security 
Modernization Act of 2014; OMB Circular A-130, Management of Federal 
Resources; Federal Risk and Authorization Management Program (FedRAMP); 
and MCC policies and procedures. MCC protects records from unauthorized 
access through appropriate administrative, physical, and technical 
safeguards. These safeguards include restricting access to authorized 
personnel who have need-to-know, and the process of authentication 
using user identifications (IDs) and passwords that function as an 
identity and authentication method of access. Personnel with authorized 
access to the system have received training in the proper handling of 
Privacy Act information and in information security requirements for 
both paper copies and electronically stored information.

Retention and Disposal:
    MCC retains records in accordance with the National Archives and 
Records Administration (NARA), General Records Schedule (GRS).

Retrievability:
    Records are retrievable by personal name, project name, or a 
combination of search functions available in the Salesforce CRM tool.

System Manager and Address:
    Jason Bauer, Director of Finance, Investment and Trade (FIT), 
Department of Compact Operations, 1099 Fourteenth Street NW, Suite 700, 
Washington, DC, 20005-3550.

Notification Procedures:
    Individuals seeking knowledge of the system's records must submit a 
written request to the MCC Privacy Officer, at the above mailing 
address, clearly marked as ``Privacy Act Request'' on the envelope and 
letter. The request must include the requestor's full name, current 
address, the name or number of the system to be searched, and if 
possible, the record identification number. The request must be signed 
by either notarized signature or by signature under penalty of perjury 
under 28 U.S.C. 1746.

Record Access Procedure:
    Same as notification procedures.

Contesting Record Procedure:
    Same as the notification procedure above; the request should also 
clearly and concisely describe the information contested, the reasons 
for contesting it, and the proposed amendment sought, pursuant to 45 
CFR 5b.7.

Record Source Categories:
    The federal employee collects and imports the contact information 
or event information directly to the system. Additionally, the 
www.MCC.gov public website events webform will import the contact 
information directly to the system.

Exemptions Claimed for the System:
    None.

    Dated: June 1, 2018.
Vincent T. Groh,
Privacy Officer for Millennium Challenge Corporation.
[FR Doc. 2018-13305 Filed 6-20-18; 8:45 am]
BILLING CODE 9211-03-P