Agency Information Collection Activities: Information Collection Renewal; Comment Request; Notice Regarding Unauthorized Access to Customer Information, 14194-14195 [2019-06922]

Download as PDF 14194 Federal Register / Vol. 84, No. 68 / Tuesday, April 9, 2019 / Notices If the service does not meet this threshold, it would be considered intercity service. On intercity ferry and rail services that meet the definition of public transportation, all portions of the service located outside the boundaries of the urbanized area would be attributable at a rate of 27 percent per 49 U.S.C. 5336. L. Clarification on Reporting Linear Miles and Track Miles to the Asset Inventory amozie on DSK9F9SC42PROD with NOTICES The updated Uniform System of Accounts (USOA), effective beginning Fiscal Year 2018, states that to report the total costs of delivering each mode of transit service, transit agencies must calculate both direct and shared costs of providing service. Agencies may continue to allocate shared costs based on approved cost allocation methods. This is consistent with Generally Accepted Accounting Principles. The FTA clarifies that recipients of Rural Area Formula Program (49 U.S.C. 5311) funding must report operating expenses and fare revenues by mode and type of service. State DOT recipients must report this data for each Section 5311 subrecipient beginning in Fiscal Year 2019. BILLING CODE 4910–57–P VerDate Sep<11>2014 18:15 Apr 08, 2019 Jkt 247001 Agency Information Collection Activities: Information Collection Renewal; Comment Request; Notice Regarding Unauthorized Access to Customer Information Office of the Comptroller of the Currency (OCC), Treasury. ACTION: Notice and request for comment. M. Clarification on Rural Financial Data Reporting Requirement [FR Doc. 2019–06943 Filed 4–8–19; 8:45 am] Office of the Comptroller of the Currency AGENCY: The guidance published with the final reporting requirements for guideway infrastructure did not clearly state definitions and reporting requirements for linear miles and track miles. The FTA proposes the following definitions of linear miles and track miles as referenced in the NTD Policy Manual. Linear miles is defined as ‘‘the length in miles of the route path of track— regardless of multiple track railways over the same area’’ and track miles is defined as the ‘‘cumulative length in miles of all track—including multiple track railways over the same area. This should represent the total length of all laid track.’’ Earlier guidance appeared to imply that agencies must report both linear miles and track miles for guideway infrastructure. The FTA proposes to clarify that agencies may report either linear miles, or track miles, or both for the purposes of asset condition and performance reporting of guideway infrastructure to the NTD. Issued in Washington, DC. K. Jane Williams, Acting Administrator. DEPARTMENT OF THE TREASURY The OCC, as part of its continuing effort to reduce paperwork and respondent burden, invites the general public and other federal agencies to take this opportunity to comment on a continuing information collection as required by the Paperwork Reduction Act of 1995 (PRA). In accordance with the requirements of the PRA, the OCC may not conduct or sponsor, and respondents are not required to respond to, an information collection unless it displays a currently valid Office of Management and Budget (OMB) control number. The OCC is soliciting comment concerning the renewal of its information collection titled, ‘‘Notice Regarding Unauthorized Access to Customer Information.’’ DATES: Comments must be submitted on or before June 10, 2019. ADDRESSES: Commenters are encouraged to submit comments by email, if possible. You may submit comments by any of the following methods: • Email: prainfo@occ.treas.gov. • Mail: Chief Counsel’s Office, Office of the Comptroller of the Currency, Attention: 1557–0227, 400 7th Street SW, Suite 3E–218, Washington, DC 20219. • Hand Delivery/Courier: 400 7th Street SW, Suite 3E–218, Washington, DC 20219. • Fax: (571) 465–4326. Instructions: You must include ‘‘OCC’’ as the agency name and ‘‘1557– 0227’’ in your comment. In general, the OCC will publish comments on www.reginfo.gov without change, including any business or personal information provided, such as name and address information, email addresses, or phone numbers. Comments received, including attachments and other supporting materials, are part of the public record and subject to public disclosure. Do not include any information in your comment or supporting materials that you consider confidential or inappropriate for public disclosure. You may review comments and other related materials that pertain to this SUMMARY: PO 00000 Frm 00112 Fmt 4703 Sfmt 4703 information collection beginning on the date of publication of the second notice for this collection 1 by any of the following methods: • Viewing Comments Electronically: Go to www.reginfo.gov. Click on the ‘‘Information Collection Review’’ tab. Underneath the ‘‘Currently under Review’’ section heading, from the dropdown menu, select ‘‘Department of Treasury’’ and then click ‘‘submit.’’ This information collection can be located by searching by OMB control number ‘‘1557–0227’’ or ‘‘Notice Regarding Unauthorized Access to Customer Information.’’ Upon finding the appropriate information collection, click on the related ‘‘ICR Reference Number.’’ On the next screen, select ‘‘View Supporting Statement and Other Documents’’ and then click on the link to any comment listed at the bottom of the screen. • For assistance in navigating www.reginfo.gov, please contact the Regulatory Information Service Center at (202) 482–7340. • Viewing Comments Personally: You may personally inspect comments at the OCC, 400 7th Street SW, Washington, DC. For security reasons, the OCC requires that visitors make an appointment to inspect comments. You may do so by calling (202) 649–6700 or, for persons who are deaf or hearing impaired, TTY, (202) 649–5597. Upon arrival, visitors will be required to present valid government-issued photo identification and submit to security screening in order to inspect comments. FOR FURTHER INFORMATION CONTACT: Shaquita Merritt, OCC Clearance Officer, (202) 649–5490 or, for persons who are deaf or hearing impaired, TTY, (202) 649–5597, Chief Counsel’s Office, Office of the Comptroller of the Currency, 400 7th Street SW, Suite 3E– 218, Washington, DC 20219. SUPPLEMENTARY INFORMATION: Under the PRA (44 U.S.C. 3501–3520), federal agencies must obtain approval from the OMB for each collection of information they conduct or sponsor. ‘‘Collection of information’’ is defined in 44 U.S.C. 3502(3) and 5 CFR 1320.3(c) to include agency requests or requirements that members of the public submit reports, keep records, or provide information to a third party. Section 3506(c)(2)(A) of title 44 requires federal agencies to provide a 60-day notice in the Federal Register concerning each proposed collection of information, including each revision or extension of an existing collection of information, before 1 Following the close of the 60-day comment period for this notice, the OCC will publish a notice for 30 days of comment for this collection. E:\FR\FM\09APN1.SGM 09APN1 amozie on DSK9F9SC42PROD with NOTICES Federal Register / Vol. 84, No. 68 / Tuesday, April 9, 2019 / Notices submitting the collection to OMB for approval. To comply with this requirement, the OCC is publishing notice of the proposed collection of information set forth in this document. Title: Notice Regarding Unauthorized Access to Customer Information. OMB Control No.: 1557–0227. Description: Section 501(b) of the Gramm-Leach-Bliley Act (15 U.S.C. 6801(b)) requires the OCC to establish appropriate standards for national banks relating to administrative, technical, and physical safeguards: (1) To insure the security and confidentiality of customer records and information; (2) to protect against any anticipated threats or hazards to the security or integrity of such records; and (3) to protect against unauthorized access to, or use of, such records or information that could result in substantial harm or inconvenience to any customer. The Interagency Guidelines Establishing Information Security Standards, 12 CFR part 30, appendix B (Security Guidelines), which implement section 501(b), require each entity supervised by the OCC (supervised institution) to consider and adopt a response program, as appropriate, that specifies actions to be taken when the supervised institution suspects or detects that unauthorized individuals have gained access to customer information systems. The Interagency Guidance on Response Programs for Unauthorized Customer Information and Customer Notice (Breach Notice Guidance),2 which interprets the Security Guidelines, states that, at a minimum, a supervised institution’s response program should contain procedures for: (1) Assessing the nature and scope of an incident, and identifying what customer information systems and types of customer information have been accessed or misused; (2) Notifying its primary federal regulator as soon as possible when the supervised institution becomes aware of an incident involving unauthorized access to, or use of, sensitive customer information; (3) Notifying appropriate law enforcement authorities in situations involving Federal criminal violations requiring immediate attention, consistent with the OCC’s Suspicious Activity Report regulations; (4) Taking appropriate steps to contain and control the incident in an effort to prevent further unauthorized access to, or use of, customer information, for example, by monitoring, freezing, or closing affected 2 12 accounts, while preserving records and other evidence; and (5) Notifying customers when warranted. The Breach Notice Guidance states that, when a financial institution becomes aware of an incident of unauthorized access to sensitive customer information, the institution should conduct a reasonable investigation to determine the likelihood that the information has been misused. If the institution determines that the misuse of its information about a customer has occurred or is reasonably possible, it should notify the affected customer as soon as possible. Type of Review: Regular. Affected Public: Businesses or other for-profit. Estimated Number of Respondents: 20. Total Estimated Annual Burden: 720 hours. Frequency of Response: On occasion. Comments submitted in response to this notice will be summarized and included in the request for OMB approval. All comments will become a matter of public record. Comments are invited on: (a) Whether the collection of information is necessary for the proper performance of the functions of the OCC, including whether the information has practical utility; (b) The accuracy of the OCC’s estimate of the burden of the information collection; (c) Ways to enhance the quality, utility, and clarity of the information to be collected; (d) Ways to minimize the burden of the collection on respondents, including through the use of automated collection techniques or other forms of information technology; and (e) Estimates of capital or start-up costs and costs of operation, maintenance, and purchase of services to provide information. Dated: April 3, 2019. Theodore J. Dowd, Deputy Chief Counsel, Office of the Comptroller of the Currency. [FR Doc. 2019–06922 Filed 4–8–19; 8:45 am] BILLING CODE 4810–33–P CFR part 30, appendix B, supplement A. VerDate Sep<11>2014 18:15 Apr 08, 2019 Jkt 247001 PO 00000 Frm 00113 Fmt 4703 Sfmt 4703 14195 DEPARTMENT OF THE TREASURY Internal Revenue Service Proposed Extension of Information Collection Request Submitted for Public Comment; Comment Request Concerning Information Reporting for Payments Made in Settlement of Payment Card and Third-Party Network Transactions Internal Revenue Service (IRS), Treasury. ACTION: Notice and request for comments. AGENCY: The Internal Revenue Service, as part of its continuing effort to reduce paperwork and respondent burden, invites the public and other Federal agencies to take this opportunity to comment on proposed and/or continuing information collections, as required by the Paperwork Reduction Act of 1995. Currently, the IRS is soliciting comments concerning information reporting for payments made in settlement of payment card and third-party network transactions. DATES: Written comments should be received on or before June 10, 2019 to be assured of consideration. ADDRESSES: Direct all written comments to Laurie Brimmer, Internal Revenue Service, Room 6129, 1111 Constitution Avenue NW, Washington, DC 20224. Requests for additional information or copies of the regulations should be directed to R. Joseph Durbala, at Internal Revenue Service, Room 6129, 1111 Constitution Avenue NW, Washington DC 20224, or through the internet, at RJoseph.Durbala@irs.gov. SUPPLEMENTARY INFORMATION: Title: Information Reporting for Payments Made in Settlement of Payment Card and Third-Party Network Transactions. OMB Number: 1545–2205. Regulation Project Number: TD 9496, Form 1099–K. Abstract: This information collection covers final regulations implementing amendments to the Income Tax Regulations (26 CFR part 1) relating to information reporting under sections 6041, 6041A, 6050W, and 6051 of the Internal Revenue Code (Code). The form reflects payments made in settlement of merchant card and third-party network transactions for purchases of goods and/ or services made with merchant cards and through third-party networks. Current Actions: There is no change to the burden previously approved by OMB. Type of Review: Extension of a currently approved collection. SUMMARY: E:\FR\FM\09APN1.SGM 09APN1

Agencies

[Federal Register Volume 84, Number 68 (Tuesday, April 9, 2019)]
[Notices]
[Pages 14194-14195]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2019-06922]


=======================================================================
-----------------------------------------------------------------------

DEPARTMENT OF THE TREASURY

Office of the Comptroller of the Currency


Agency Information Collection Activities: Information Collection 
Renewal; Comment Request; Notice Regarding Unauthorized Access to 
Customer Information

AGENCY: Office of the Comptroller of the Currency (OCC), Treasury.

ACTION: Notice and request for comment.

-----------------------------------------------------------------------

SUMMARY: The OCC, as part of its continuing effort to reduce paperwork 
and respondent burden, invites the general public and other federal 
agencies to take this opportunity to comment on a continuing 
information collection as required by the Paperwork Reduction Act of 
1995 (PRA).
    In accordance with the requirements of the PRA, the OCC may not 
conduct or sponsor, and respondents are not required to respond to, an 
information collection unless it displays a currently valid Office of 
Management and Budget (OMB) control number.
    The OCC is soliciting comment concerning the renewal of its 
information collection titled, ``Notice Regarding Unauthorized Access 
to Customer Information.''

DATES: Comments must be submitted on or before June 10, 2019.

ADDRESSES: Commenters are encouraged to submit comments by email, if 
possible. You may submit comments by any of the following methods:
     Email: [email protected].
     Mail: Chief Counsel's Office, Office of the Comptroller of 
the Currency, Attention: 1557-0227, 400 7th Street SW, Suite 3E-218, 
Washington, DC 20219.
     Hand Delivery/Courier: 400 7th Street SW, Suite 3E-218, 
Washington, DC 20219.
     Fax: (571) 465-4326.
    Instructions: You must include ``OCC'' as the agency name and 
``1557-0227'' in your comment. In general, the OCC will publish 
comments on www.reginfo.gov without change, including any business or 
personal information provided, such as name and address information, 
email addresses, or phone numbers. Comments received, including 
attachments and other supporting materials, are part of the public 
record and subject to public disclosure. Do not include any information 
in your comment or supporting materials that you consider confidential 
or inappropriate for public disclosure.
    You may review comments and other related materials that pertain to 
this information collection beginning on the date of publication of the 
second notice for this collection \1\ by any of the following methods:
---------------------------------------------------------------------------

    \1\ Following the close of the 60-day comment period for this 
notice, the OCC will publish a notice for 30 days of comment for 
this collection.
---------------------------------------------------------------------------

     Viewing Comments Electronically: Go to www.reginfo.gov. 
Click on the ``Information Collection Review'' tab. Underneath the 
``Currently under Review'' section heading, from the drop-down menu, 
select ``Department of Treasury'' and then click ``submit.'' This 
information collection can be located by searching by OMB control 
number ``1557-0227'' or ``Notice Regarding Unauthorized Access to 
Customer Information.'' Upon finding the appropriate information 
collection, click on the related ``ICR Reference Number.'' On the next 
screen, select ``View Supporting Statement and Other Documents'' and 
then click on the link to any comment listed at the bottom of the 
screen.
     For assistance in navigating www.reginfo.gov, please 
contact the Regulatory Information Service Center at (202) 482-7340.
     Viewing Comments Personally: You may personally inspect 
comments at the OCC, 400 7th Street SW, Washington, DC. For security 
reasons, the OCC requires that visitors make an appointment to inspect 
comments. You may do so by calling (202) 649-6700 or, for persons who 
are deaf or hearing impaired, TTY, (202) 649-5597. Upon arrival, 
visitors will be required to present valid government-issued photo 
identification and submit to security screening in order to inspect 
comments.

FOR FURTHER INFORMATION CONTACT: Shaquita Merritt, OCC Clearance 
Officer, (202) 649-5490 or, for persons who are deaf or hearing 
impaired, TTY, (202) 649-5597, Chief Counsel's Office, Office of the 
Comptroller of the Currency, 400 7th Street SW, Suite 3E-218, 
Washington, DC 20219.

SUPPLEMENTARY INFORMATION: Under the PRA (44 U.S.C. 3501-3520), federal 
agencies must obtain approval from the OMB for each collection of 
information they conduct or sponsor. ``Collection of information'' is 
defined in 44 U.S.C. 3502(3) and 5 CFR 1320.3(c) to include agency 
requests or requirements that members of the public submit reports, 
keep records, or provide information to a third party. Section 
3506(c)(2)(A) of title 44 requires federal agencies to provide a 60-day 
notice in the Federal Register concerning each proposed collection of 
information, including each revision or extension of an existing 
collection of information, before

[[Page 14195]]

submitting the collection to OMB for approval. To comply with this 
requirement, the OCC is publishing notice of the proposed collection of 
information set forth in this document.
    Title: Notice Regarding Unauthorized Access to Customer 
Information.
    OMB Control No.: 1557-0227. Description: Section 501(b) of the 
Gramm-Leach-Bliley Act (15 U.S.C. 6801(b)) requires the OCC to 
establish appropriate standards for national banks relating to 
administrative, technical, and physical safeguards: (1) To insure the 
security and confidentiality of customer records and information; (2) 
to protect against any anticipated threats or hazards to the security 
or integrity of such records; and (3) to protect against unauthorized 
access to, or use of, such records or information that could result in 
substantial harm or inconvenience to any customer.
    The Interagency Guidelines Establishing Information Security 
Standards, 12 CFR part 30, appendix B (Security Guidelines), which 
implement section 501(b), require each entity supervised by the OCC 
(supervised institution) to consider and adopt a response program, as 
appropriate, that specifies actions to be taken when the supervised 
institution suspects or detects that unauthorized individuals have 
gained access to customer information systems.
    The Interagency Guidance on Response Programs for Unauthorized 
Customer Information and Customer Notice (Breach Notice Guidance),\2\ 
which interprets the Security Guidelines, states that, at a minimum, a 
supervised institution's response program should contain procedures 
for:
---------------------------------------------------------------------------

    \2\ 12 CFR part 30, appendix B, supplement A.
---------------------------------------------------------------------------

    (1) Assessing the nature and scope of an incident, and identifying 
what customer information systems and types of customer information 
have been accessed or misused;
    (2) Notifying its primary federal regulator as soon as possible 
when the supervised institution becomes aware of an incident involving 
unauthorized access to, or use of, sensitive customer information;
    (3) Notifying appropriate law enforcement authorities in situations 
involving Federal criminal violations requiring immediate attention, 
consistent with the OCC's Suspicious Activity Report regulations;
    (4) Taking appropriate steps to contain and control the incident in 
an effort to prevent further unauthorized access to, or use of, 
customer information, for example, by monitoring, freezing, or closing 
affected accounts, while preserving records and other evidence; and
    (5) Notifying customers when warranted.
    The Breach Notice Guidance states that, when a financial 
institution becomes aware of an incident of unauthorized access to 
sensitive customer information, the institution should conduct a 
reasonable investigation to determine the likelihood that the 
information has been misused. If the institution determines that the 
misuse of its information about a customer has occurred or is 
reasonably possible, it should notify the affected customer as soon as 
possible.
    Type of Review: Regular.
    Affected Public: Businesses or other for-profit.
    Estimated Number of Respondents: 20.
    Total Estimated Annual Burden: 720 hours.
    Frequency of Response: On occasion.
    Comments submitted in response to this notice will be summarized 
and included in the request for OMB approval. All comments will become 
a matter of public record. Comments are invited on:
    (a) Whether the collection of information is necessary for the 
proper performance of the functions of the OCC, including whether the 
information has practical utility;
    (b) The accuracy of the OCC's estimate of the burden of the 
information collection;
    (c) Ways to enhance the quality, utility, and clarity of the 
information to be collected;
    (d) Ways to minimize the burden of the collection on respondents, 
including through the use of automated collection techniques or other 
forms of information technology; and
    (e) Estimates of capital or start-up costs and costs of operation, 
maintenance, and purchase of services to provide information.

    Dated: April 3, 2019.
Theodore J. Dowd,
Deputy Chief Counsel, Office of the Comptroller of the Currency.
[FR Doc. 2019-06922 Filed 4-8-19; 8:45 am]
BILLING CODE 4810-33-P


This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.