Agency Information Collection Activities: Comment Request, 65611-65613 [2022-23629]
Download as PDF
<![CDATA[
Federal Register / Vol. 87, No. 209 / Monday, October 31, 2022 / Notices
To submit
comments:
Send them to:
By mail .........
Assistant Attorney General,
U.S. DOJ—ENRD, P.O.
Box 7611, Washington, DC
20044–7611.
During the public comment period,
the Consent Decree may be examined
and downloaded at this Justice
Department website: https://
www.justice.gov/enrd/consent-decrees.
We will provide a paper copy of the
Consent Decree upon written request
and payment of reproduction costs.
Please mail your request and payment
to: Consent Decree Library, U.S. DOJ—
ENRD, P.O. Box 7611, Washington, DC
20044–7611.
Please enclose a check or money order
for $4.75 (25 cents per page
reproduction cost) payable to the United
States Treasury.
Susan M. Akers,
Deputy Section Chief, Environmental
Enforcement Section, Environment and
Natural Resources Division.
[FR Doc. 2022–23568 Filed 10–28–22; 8:45 am]
BILLING CODE P
NATIONAL SCIENCE FOUNDATION
Agency Information Collection
Activities: Comment Request
National Center for Science and
Engineering Statistics, National Science
Foundation.
ACTION: Notice.
AGENCY:
The National Center for
Science and Engineering Statistics
(NCSES) within the National Science
Foundation invites the general public
and other federal agencies to comment
on a proposed information collection.
NCSES plans to collect information
from individuals to fulfill its data
security requirements when providing
the individual with access to restricted
use microdata for the purpose of
evidence building. NCSES’s data
security agreements and other
paperwork along with the
corresponding security protocols allow
the agency to maintain careful controls
on confidentiality and privacy, as
required by law. The purpose of this
notice is to allow for 60 days of public
comment on the proposed data security
information collection, prior to
submission of the information collection
request (ICR) to the Office of
Management and Budget (OMB).
DATES: Written comments on this notice
must be received by December 30, 2022
to be assured of consideration.
khammond on DSKJM1Z7X2PROD with NOTICES
SUMMARY:
VerDate Sep<11>2014
17:15 Oct 28, 2022
Jkt 259001
Comments received after that date will
be considered to the extent practicable.
Send comments to the address below.
Comments: Comments are invited on
(a) whether the proposed collection of
information is necessary for the proper
performance of the functions of NCSES,
including whether the information will
have practical utility; (b) the accuracy of
NCSES estimate of the burden of the
proposed collection of information; (c)
ways to enhance the quality, use, and
clarity of the information on
respondents, including through the use
of automated collection techniques or
other forms of information technology;
and (d) ways to minimize the burden of
the collection of information on those
who are to respond, including through
the use of appropriate automated,
electronic, mechanical, or other
technological collection techniques or
other forms of information technology.
FOR FURTHER INFORMATION CONTACT:
Suzanne H. Plimpton, Reports Clearance
Officer, National Science Foundation,
2415 Eisenhower Avenue, Suite
W18253, Alexandria, Virginia 22314;
telephone (703) 292–7556; or send email
to splimpto@nsf.gov. Individuals who
use a telecommunications device for the
deaf (TDD) may call the Federal
Information Relay Service (FIRS) at 1–
800–877–8339, which is accessible 24
hours a day, 7 days a week, 365 days a
year (including Federal holidays).
SUPPLEMENTARY INFORMATION: The
Foundations for Evidence-Based
Policymaking Act of 2018 mandates that
the Office of Management and Budget
(OMB) establish a Standard Application
Process (SAP) for requesting access to
certain confidential data assets. While
the adoption of the SAP is required for
statistical agencies and units designated
under the Confidential Information
Protection and Statistical Efficiency Act
of 2018, it is recognized that other
agencies and organizational units within
the Executive branch may benefit from
the adoption of the SAP to accept
applications for access to confidential
data assets. The SAP is to be a process
through which agencies, the
Congressional Budget Office, State,
local, and Tribal governments,
researchers, and other individuals, as
appropriate, may apply to access
confidential data assets held by a federal
statistical agency or unit for the
purposes of developing evidence. With
the Interagency Council on Statistical
Policy (ICSP) as advisors, the entities
upon whom this requirement is levied
are working with the SAP Project
Management Office (PMO) and with
OMB to implement the SAP. The SAP
Portal is to be a single web-based
PO 00000
Frm 00044
Fmt 4703
Sfmt 4703
65611
common application for requesting
access to confidential data assets from
federal statistical agencies and units.
NCSES submitted a Federal Register
Notice in September 2022 announcing
plans to collect information through the
SAP Portal (87 FR 53793).
Once an application for confidential
data is approved through the SAP
Portal, NCSES will collect information
to meet its data security requirements.
This collection will occur outside of the
SAP Portal.
Title of collection: Data Security
Requirements for Accessing
Confidential Data.
OMB Control Number: 3145–NEW.
Expiration Date of Current Approval:
Not Applicable.
Type of Request: Intent to seek
approval to collect information to fulfill
NCSES’s security requirements allowing
individuals to access confidential data
assets for the purposes of building
evidence.
Abstract: Title III of the Foundations
for Evidence-Based Policymaking Act of
2018 (hereafter referred to as the
Evidence Act) mandates that OMB
establish a Standard Application
Process (SAP) for requesting access to
certain confidential data assets.
Specifically, the Evidence Act requires
OMB to establish a common application
process through which agencies, the
Congressional Budget Office, State,
local, and Tribal governments,
researchers, and other individuals, as
appropriate, may apply for access to
confidential data assets collected,
accessed, or acquired by a statistical
agency or unit. This new process will be
implemented while maintaining
stringent controls to protect
confidentiality and privacy, as required
by law.
Data collected, accessed, or acquired
by statistical agencies and units is vital
for developing evidence on the
characteristics and behaviors of the
public and on the operations and
outcomes of public programs and
policies. This evidence can benefit the
stakeholders in the programs, the
broader public, as well as policymakers
and program managers at the local,
State, Tribal, and National levels. The
many benefits of access to data for
evidence building notwithstanding,
NCSES is required by law to maintain
careful controls that allow it to
minimize disclosure risk while
protecting confidentiality and privacy.
The fulfillment of NCSES’s data security
requirements places a degree of burden
on individuals, which is outlined
below.
The SAP Portal is a web-based
application to allow individuals to
E:\FR\FM\31OCN1.SGM
31OCN1
khammond on DSKJM1Z7X2PROD with NOTICES
65612
Federal Register / Vol. 87, No. 209 / Monday, October 31, 2022 / Notices
request access to confidential data assets
from federal statistical agencies and
units. The objective of the SAP Portal is
to broaden access to confidential data
for the purposes of evidence building
and reduce the burden of applying for
confidential data. Once an individual’s
application in the SAP Portal has
received a positive determination, the
data-owning agency(ies) or unit(s) will
begin the process of collecting
information to fulfill their data security
requirements.
The paragraphs below outline the
SAP Policy, the steps to complete an
application through the SAP Portal, and
the process NCSES uses to collect
information fulfilling its data security
requirements.
The SAP Policy: At the
recommendation of the ICSP, the SAP
Policy establishes the SAP to be
implemented by statistical agencies and
units and incorporates directives from
the Evidence Act. The policy is
intended to provide guidance as to the
application and review processes using
the SAP Portal, setting forth clear
standards that enable statistical agencies
and units to implement a common
application form and a uniform review
process. The SAP Policy was submitted
to the public for comment in January
2022 (87 FR 2459). The policy is
currently under review and has not yet
been finalized.
The SAP Portal: The SAP Portal is an
application interface connecting
applicants seeking data with a catalog of
metadata for data assets owned by the
federal statistical agencies and units.
The SAP Portal is not a new data
repository or warehouse; confidential
data assets will continue to be stored in
secure data access facilities owned and
hosted by the federal statistical agencies
and units. The Portal will provide a
streamlined application process across
agencies, reducing redundancies in the
application process. This single SAP
Portal will improve the process for
applicants, tracking and communicating
the application process throughout its
lifecycle. This reduces redundancies
and burden on applicants who request
access to data from multiple agencies.
The SAP Portal will automate key tasks
to save resources and time and will
bring agencies into compliance with the
Evidence Act statutory requirements.
Data Discovery: Individuals begin the
process of accessing restricted use data
by discovering confidential data assets
through the SAP metadata catalog
maintained by federal statistical
agencies at www.researchdatagov.org.
Potential applicants can search by
agency, topic, or keyword to identify
data of interest or relevance. Once they
VerDate Sep<11>2014
17:15 Oct 28, 2022
Jkt 259001
have identified data of interest,
applicants can view metadata outlining
the title, description or abstract, scope
and coverage, and detailed methodology
related to a specific data asset to
determine its relevance to their
research.
While statistical agencies and units
shall endeavor to include information in
the SAP metadata catalog on all
confidential data assets for which they
accept applications, it may not be
feasible to include metadata for some
data assets (e.g., potential special
tabulations of administrative data). A
statistical agency or unit may still
accept an application through the SAP
Portal even if the requested data asset or
special tabulation is not listed in the
SAP metadata catalog.
SAP Application Process: Individuals
who have identified and wish to access
confidential data assets will be able to
apply for access through the SAP Portal
when it is released to the public in late
2022. Applicants must create an account
and follow all steps to complete the
application. Applicants begin by
entering their personal, contact, and
institutional information, as well as the
personal, contact, and institutional
information of all individuals on their
research team. Applicants provide
summary information about their
proposed project to include project title,
duration, funding, and timeline. Other
details provided by applicants include
the data asset(s) they are requesting and
any proposed linkages to data not listed
in the SAP metadata catalog, including
non-federal data sources. Applicants
then enter detailed information
regarding their proposed project,
including a project abstract, research
question(s), literature review, project
scope, research methodology, project
products, and anticipated output.
Within the application, applicants must
demonstrate a need for confidential
data, outlining why their research
question cannot be answered using
publicly available information.
Submission for Review: Upon
submission of their application,
applicants will receive a notification
that their application has been received
and is under review by the data-owning
agency or agencies (in the event where
data assets are requested from multiple
agencies). At this point, applicants will
also be notified that application
approval does not alone grant access to
confidential data, and that, if approved,
applicants must comply with the dataowning agency’s security requirements
outside of the SAP Portal, which may
include a background check.
In accordance with the Evidence Act
and the direction of the ICSP, agencies
PO 00000
Frm 00045
Fmt 4703
Sfmt 4703
will approve or reject an application
within a prompt timeframe. In some
cases, agencies may determine that
additional clarity, information, or
modification is needed and request the
applicant to ‘‘revise and resubmit’’ their
application.
Data discovery, the SAP application
process, and the submission for review
are planned to take place within the
web-based SAP Portal. As noted above,
the notice announcing plans to collect
information through the SAP Portal has
been published separately (87 FR
53793).
Access to Restricted Use Data: In the
event of a positive determination, the
applicant will be notified that their
proposal has been accepted. The
positive or final adverse determination
concludes the SAP Portal process. In the
instance of a positive determination, the
data-owning agency (or agencies) will
contact the applicant to provide
instructions on the agency’s security
requirements that must be completed by
the applicant to gain access to the
confidential data. The completion and
submission of the agency’s security
requirements will take place outside of
the SAP Portal.
Collection of Information for Data
Security Requirements: In the instance
of a positive determination for an
application requesting access to an
NCSES-owned confidential data asset,
NCSES will contact the applicant(s) to
initiate the process of collecting
information to fulfill its data security
requirements. This process allows
NCSES to place the applicant(s) in a
trusted access category and includes the
collection of the following information
from applicant(s):
• Restricted-use licensing
agreement—This document is an
agreement between NCSES and the
applicant’s organization provisioning
NCSES’s confidential data assets
exclusively for statistical purposes in
accordance with the terms and
conditions stated in the agreement and
all prevailing laws and regulations. The
agreement requires signatures from the
applicant(s) and a senior official at the
applicant’s organization who has the
authority to enter the organization into
a legal agreement with NCSES.
• Security plan form—This document
requests information from the
applicant(s) to ensure the confidential
data assets are protected from
unauthorized access, disclosure, or
modification. The information collected
in the security plan form includes the
following:
Æ planned work location address(es),
E:\FR\FM\31OCN1.SGM
31OCN1
khammond on DSKJM1Z7X2PROD with NOTICES
Federal Register / Vol. 87, No. 209 / Monday, October 31, 2022 / Notices
Æ workstation specifications (make,
model, serial number, type, and
operating system),
Æ workstation authorized users,
Æ workstation monitor position (to
prevent unauthorized viewing), and
Æ workstation antivirus brand and
version.
In addition, the applicant(s) must
initial a series of security measures to
indicate compliance. Finally, the form
requires signatures from the
applicant(s), a senior official at the
applicant’s organization, and a System
Security Officer (SSO) at the applicant’s
organization. The SSO, in signing the
Security plan form, assures the
inspection and integrity of the
applicant’s security plan.
• Affidavit of nondisclosure form—
This document describes the
confidentiality protections the
applicant(s) must uphold and the
penalties for unauthorized access or
disclosure. The form requires signatures
from the applicant(s) and the principal
researcher for the project as well as the
imprint of a notary public.
Estimate of Burden: The amount of
time to complete the agreements and
other paperwork that comprise NCSES’s
security requirements will vary based
on the confidential data assets
requested. To obtain access to NCSES
confidential data assets, it is estimated
that the average time to complete and
submit NCSES’s data security
agreements and other paperwork is 30
minutes. This estimate does not include
the time needed to complete and submit
an application within the SAP Portal.
All efforts related to SAP Portal
applications occur prior to and separate
from NCSES’s effort to collect
information related to data security
requirements.
The expected number of applications
in the SAP Portal that receive a positive
determination from NCSES in a given
year may vary. Overall, per year, NCSES
estimates it will collect data security
information for 20 application
submissions that received a positive
determination within the SAP Portal.
NCSES estimates that the total burden
for the collection of information for data
security requirements over the course of
the three-year OMB clearance will be
about 30 hours and, as a result, an
average annual burden of 10 hours.
Dated: October 26, 2022.
Suzanne H. Plimpton,
Reports Clearance Officer, National Science
Foundation.
[FR Doc. 2022–23629 Filed 10–28–22; 8:45 am]
BILLING CODE 7555–01–P
VerDate Sep<11>2014
17:15 Oct 28, 2022
Jkt 259001
NUCLEAR REGULATORY
COMMISSION
[Docket Nos. 72–51, 72–1014, 50–247, and
50–286; NRC–2022–0152]
Holtec Decommissioning International,
LLC; Indian Point Energy Center;
Independent Spent Fuel Storage
Installation
Nuclear Regulatory
Commission.
ACTION: Environmental assessment and
finding of no significant impact;
issuance.
AGENCY:
The U.S. Nuclear Regulatory
Commission (NRC) is considering an
exemption request from Holtec
Decommissioning International, LLC
(HDI) for the Indian Point Energy Center
Independent Spent Fuel Storage
Installation. This exemption would, if
granted, allow HDI to load up to three
MPC–32Ms, using Amendment No. 15
for Certificate of Compliance (CoC) No.
1014 for the HI–STORM 100 storage
system, with either up to thirty-two fuel
assemblies having either Californium
(Cf-252) or Antimony-Beryllium (Sb-Be)
neutron source assemblies (NSAs) with
sufficient cooling time, or a combination
of up to five fuel assemblies having
primary Plutonium Beryllium (Pu-Be)
NSAs and the remaining basket
locations with fuel assemblies having
either Cf-252 or Sb-Be NSAs with
sufficient cooling time. As discussed
further, the proposed exemption would
permit HDI to load the fuel assemblies
having either Cf-252 or Sb-Be NSAs in
any location in the basket and the fuel
assemblies having Pu-Be NSAs such
that one is located in the center of the
basket and one is located in each of the
four basket quadrants. The NRC
prepared an environmental assessment
(EA) and concluded that the proposed
action would have no significant
environmental impact. Accordingly, the
NRC staff is issuing a finding of no
significant impact (FONSI) associated
with the proposed exemption.
DATES: The EA and FONSI referenced in
this document are available October 31,
2022.
ADDRESSES: Please refer to Docket ID
NRC–2022–0152 when contacting the
NRC about the availability of
information regarding this document.
You may obtain publicly available
information related to this document
using any of the following methods:
• Federal Rulemaking Website: Go to
https://www.regulations.gov and search
for Docket ID NRC–2022–0152. Address
questions about Docket IDs in
Regulations.gov to Stacy Schumann;
SUMMARY:
PO 00000
Frm 00046
Fmt 4703
Sfmt 4703
65613
telephone: 301–415–0624; email:
Stacy.Schumann@nrc.gov. For technical
questions, contact the individual listed
in the FOR FURTHER INFORMATION
CONTACT section of this document.
• NRC’s Agencywide Documents
Access and Management System
(ADAMS): You may obtain publicly
available documents online in the
ADAMS Public Documents collection at
https://www.nrc.gov/reading-rm/
adams.html. To begin the search, select
‘‘Begin Web-based ADAMS Search.’’ For
problems with ADAMS, please contact
the NRC’s Public Document Room (PDR)
reference staff at 1–800–397–4209, 301–
415–4737, or by email to
PDR.Resource@nrc.gov. For the
convenience of the reader, instructions
about obtaining materials referenced in
this document are provided in the
‘‘Availability of Documents’’ section.
• NRC’s PDR: You may examine and
purchase copies of public documents,
by appointment, at the NRC’s PDR,
Room P1 B35, One White Flint North,
11555 Rockville Pike, Rockville,
Maryland 20852. To make an
appointment to visit the PDR, please
send an email to PDR.Resource@nrc.gov
or call 1–800–397–4209 or 301–415–
4737, between 8 a.m. and 4 p.m. eastern
time (ET), Monday through Friday,
except Federal holidays.
FOR FURTHER INFORMATION CONTACT:
Chris Allen, Office of Nuclear Material
Safety and Safeguards, U.S. Nuclear
Regulatory Commission, Washington,
DC 20555; telephone: 301–415–6877;
email: William.Allen@nrc.gov.
SUPPLEMENTARY INFORMATION:
I. Introduction
The NRC is reviewing an exemption
request from Holtec Decommissioning
International, LLC (HDI) dated March
24, 2022, as supplemented via a June 16,
2022, Microsoft Teams conversation and
a September 20, 2022, Microsoft Teams
call. Therefore, as required by sections
51.21 and 51.30(a) of title 10 of the Code
of Federal Regulations (10 CFR), the
NRC performed an environmental
assessment (EA). Based on the results of
the EA, discussed further, the NRC has
determined not to prepare an
environmental impact statement for the
exemption request and is issuing a
finding of no significant impact
(FONSI).
In its exemption request, HDI stated
that it intends to store Pressurized
Water Reactor spent fuel at the Indian
Point Energy Center Independent Spent
Fuel Storage Installation (ISFSI) using
the HI–STORM 100 storage system,
Certificate of Compliance (CoC) No.
1014, Amendment No. 15 under the
E:\FR\FM\31OCN1.SGM
31OCN1
]]>Agencies
[Federal Register Volume 87, Number 209 (Monday, October 31, 2022)]
[Notices]
[Pages 65611-65613]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2022-23629]
=======================================================================
-----------------------------------------------------------------------
NATIONAL SCIENCE FOUNDATION
Agency Information Collection Activities: Comment Request
AGENCY: National Center for Science and Engineering Statistics,
National Science Foundation.
ACTION: Notice.
-----------------------------------------------------------------------
SUMMARY: The National Center for Science and Engineering Statistics
(NCSES) within the National Science Foundation invites the general
public and other federal agencies to comment on a proposed information
collection. NCSES plans to collect information from individuals to
fulfill its data security requirements when providing the individual
with access to restricted use microdata for the purpose of evidence
building. NCSES's data security agreements and other paperwork along
with the corresponding security protocols allow the agency to maintain
careful controls on confidentiality and privacy, as required by law.
The purpose of this notice is to allow for 60 days of public comment on
the proposed data security information collection, prior to submission
of the information collection request (ICR) to the Office of Management
and Budget (OMB).
DATES: Written comments on this notice must be received by December 30,
2022 to be assured of consideration. Comments received after that date
will be considered to the extent practicable. Send comments to the
address below.
Comments: Comments are invited on (a) whether the proposed
collection of information is necessary for the proper performance of
the functions of NCSES, including whether the information will have
practical utility; (b) the accuracy of NCSES estimate of the burden of
the proposed collection of information; (c) ways to enhance the
quality, use, and clarity of the information on respondents, including
through the use of automated collection techniques or other forms of
information technology; and (d) ways to minimize the burden of the
collection of information on those who are to respond, including
through the use of appropriate automated, electronic, mechanical, or
other technological collection techniques or other forms of information
technology.
FOR FURTHER INFORMATION CONTACT: Suzanne H. Plimpton, Reports Clearance
Officer, National Science Foundation, 2415 Eisenhower Avenue, Suite
W18253, Alexandria, Virginia 22314; telephone (703) 292-7556; or send
email to [email protected]. Individuals who use a telecommunications
device for the deaf (TDD) may call the Federal Information Relay
Service (FIRS) at 1-800-877-8339, which is accessible 24 hours a day, 7
days a week, 365 days a year (including Federal holidays).
SUPPLEMENTARY INFORMATION: The Foundations for Evidence-Based
Policymaking Act of 2018 mandates that the Office of Management and
Budget (OMB) establish a Standard Application Process (SAP) for
requesting access to certain confidential data assets. While the
adoption of the SAP is required for statistical agencies and units
designated under the Confidential Information Protection and
Statistical Efficiency Act of 2018, it is recognized that other
agencies and organizational units within the Executive branch may
benefit from the adoption of the SAP to accept applications for access
to confidential data assets. The SAP is to be a process through which
agencies, the Congressional Budget Office, State, local, and Tribal
governments, researchers, and other individuals, as appropriate, may
apply to access confidential data assets held by a federal statistical
agency or unit for the purposes of developing evidence. With the
Interagency Council on Statistical Policy (ICSP) as advisors, the
entities upon whom this requirement is levied are working with the SAP
Project Management Office (PMO) and with OMB to implement the SAP. The
SAP Portal is to be a single web-based common application for
requesting access to confidential data assets from federal statistical
agencies and units. NCSES submitted a Federal Register Notice in
September 2022 announcing plans to collect information through the SAP
Portal (87 FR 53793).
Once an application for confidential data is approved through the
SAP Portal, NCSES will collect information to meet its data security
requirements. This collection will occur outside of the SAP Portal.
Title of collection: Data Security Requirements for Accessing
Confidential Data.
OMB Control Number: 3145-NEW.
Expiration Date of Current Approval: Not Applicable.
Type of Request: Intent to seek approval to collect information to
fulfill NCSES's security requirements allowing individuals to access
confidential data assets for the purposes of building evidence.
Abstract: Title III of the Foundations for Evidence-Based
Policymaking Act of 2018 (hereafter referred to as the Evidence Act)
mandates that OMB establish a Standard Application Process (SAP) for
requesting access to certain confidential data assets. Specifically,
the Evidence Act requires OMB to establish a common application process
through which agencies, the Congressional Budget Office, State, local,
and Tribal governments, researchers, and other individuals, as
appropriate, may apply for access to confidential data assets
collected, accessed, or acquired by a statistical agency or unit. This
new process will be implemented while maintaining stringent controls to
protect confidentiality and privacy, as required by law.
Data collected, accessed, or acquired by statistical agencies and
units is vital for developing evidence on the characteristics and
behaviors of the public and on the operations and outcomes of public
programs and policies. This evidence can benefit the stakeholders in
the programs, the broader public, as well as policymakers and program
managers at the local, State, Tribal, and National levels. The many
benefits of access to data for evidence building notwithstanding, NCSES
is required by law to maintain careful controls that allow it to
minimize disclosure risk while protecting confidentiality and privacy.
The fulfillment of NCSES's data security requirements places a degree
of burden on individuals, which is outlined below.
The SAP Portal is a web-based application to allow individuals to
[[Page 65612]]
request access to confidential data assets from federal statistical
agencies and units. The objective of the SAP Portal is to broaden
access to confidential data for the purposes of evidence building and
reduce the burden of applying for confidential data. Once an
individual's application in the SAP Portal has received a positive
determination, the data-owning agency(ies) or unit(s) will begin the
process of collecting information to fulfill their data security
requirements.
The paragraphs below outline the SAP Policy, the steps to complete
an application through the SAP Portal, and the process NCSES uses to
collect information fulfilling its data security requirements.
The SAP Policy: At the recommendation of the ICSP, the SAP Policy
establishes the SAP to be implemented by statistical agencies and units
and incorporates directives from the Evidence Act. The policy is
intended to provide guidance as to the application and review processes
using the SAP Portal, setting forth clear standards that enable
statistical agencies and units to implement a common application form
and a uniform review process. The SAP Policy was submitted to the
public for comment in January 2022 (87 FR 2459). The policy is
currently under review and has not yet been finalized.
The SAP Portal: The SAP Portal is an application interface
connecting applicants seeking data with a catalog of metadata for data
assets owned by the federal statistical agencies and units. The SAP
Portal is not a new data repository or warehouse; confidential data
assets will continue to be stored in secure data access facilities
owned and hosted by the federal statistical agencies and units. The
Portal will provide a streamlined application process across agencies,
reducing redundancies in the application process. This single SAP
Portal will improve the process for applicants, tracking and
communicating the application process throughout its lifecycle. This
reduces redundancies and burden on applicants who request access to
data from multiple agencies. The SAP Portal will automate key tasks to
save resources and time and will bring agencies into compliance with
the Evidence Act statutory requirements.
Data Discovery: Individuals begin the process of accessing
restricted use data by discovering confidential data assets through the
SAP metadata catalog maintained by federal statistical agencies at
www.researchdatagov.org. Potential applicants can search by agency,
topic, or keyword to identify data of interest or relevance. Once they
have identified data of interest, applicants can view metadata
outlining the title, description or abstract, scope and coverage, and
detailed methodology related to a specific data asset to determine its
relevance to their research.
While statistical agencies and units shall endeavor to include
information in the SAP metadata catalog on all confidential data assets
for which they accept applications, it may not be feasible to include
metadata for some data assets (e.g., potential special tabulations of
administrative data). A statistical agency or unit may still accept an
application through the SAP Portal even if the requested data asset or
special tabulation is not listed in the SAP metadata catalog.
SAP Application Process: Individuals who have identified and wish
to access confidential data assets will be able to apply for access
through the SAP Portal when it is released to the public in late 2022.
Applicants must create an account and follow all steps to complete the
application. Applicants begin by entering their personal, contact, and
institutional information, as well as the personal, contact, and
institutional information of all individuals on their research team.
Applicants provide summary information about their proposed project to
include project title, duration, funding, and timeline. Other details
provided by applicants include the data asset(s) they are requesting
and any proposed linkages to data not listed in the SAP metadata
catalog, including non-federal data sources. Applicants then enter
detailed information regarding their proposed project, including a
project abstract, research question(s), literature review, project
scope, research methodology, project products, and anticipated output.
Within the application, applicants must demonstrate a need for
confidential data, outlining why their research question cannot be
answered using publicly available information.
Submission for Review: Upon submission of their application,
applicants will receive a notification that their application has been
received and is under review by the data-owning agency or agencies (in
the event where data assets are requested from multiple agencies). At
this point, applicants will also be notified that application approval
does not alone grant access to confidential data, and that, if
approved, applicants must comply with the data-owning agency's security
requirements outside of the SAP Portal, which may include a background
check.
In accordance with the Evidence Act and the direction of the ICSP,
agencies will approve or reject an application within a prompt
timeframe. In some cases, agencies may determine that additional
clarity, information, or modification is needed and request the
applicant to ``revise and resubmit'' their application.
Data discovery, the SAP application process, and the submission for
review are planned to take place within the web-based SAP Portal. As
noted above, the notice announcing plans to collect information through
the SAP Portal has been published separately (87 FR 53793).
Access to Restricted Use Data: In the event of a positive
determination, the applicant will be notified that their proposal has
been accepted. The positive or final adverse determination concludes
the SAP Portal process. In the instance of a positive determination,
the data-owning agency (or agencies) will contact the applicant to
provide instructions on the agency's security requirements that must be
completed by the applicant to gain access to the confidential data. The
completion and submission of the agency's security requirements will
take place outside of the SAP Portal.
Collection of Information for Data Security Requirements: In the
instance of a positive determination for an application requesting
access to an NCSES-owned confidential data asset, NCSES will contact
the applicant(s) to initiate the process of collecting information to
fulfill its data security requirements. This process allows NCSES to
place the applicant(s) in a trusted access category and includes the
collection of the following information from applicant(s):
Restricted-use licensing agreement--This document is an
agreement between NCSES and the applicant's organization provisioning
NCSES's confidential data assets exclusively for statistical purposes
in accordance with the terms and conditions stated in the agreement and
all prevailing laws and regulations. The agreement requires signatures
from the applicant(s) and a senior official at the applicant's
organization who has the authority to enter the organization into a
legal agreement with NCSES.
Security plan form--This document requests information
from the applicant(s) to ensure the confidential data assets are
protected from unauthorized access, disclosure, or modification. The
information collected in the security plan form includes the following:
[cir] planned work location address(es),
[[Page 65613]]
[cir] workstation specifications (make, model, serial number, type,
and operating system),
[cir] workstation authorized users,
[cir] workstation monitor position (to prevent unauthorized
viewing), and
[cir] workstation antivirus brand and version.
In addition, the applicant(s) must initial a series of security
measures to indicate compliance. Finally, the form requires signatures
from the applicant(s), a senior official at the applicant's
organization, and a System Security Officer (SSO) at the applicant's
organization. The SSO, in signing the Security plan form, assures the
inspection and integrity of the applicant's security plan.
Affidavit of nondisclosure form--This document describes
the confidentiality protections the applicant(s) must uphold and the
penalties for unauthorized access or disclosure. The form requires
signatures from the applicant(s) and the principal researcher for the
project as well as the imprint of a notary public.
Estimate of Burden: The amount of time to complete the agreements
and other paperwork that comprise NCSES's security requirements will
vary based on the confidential data assets requested. To obtain access
to NCSES confidential data assets, it is estimated that the average
time to complete and submit NCSES's data security agreements and other
paperwork is 30 minutes. This estimate does not include the time needed
to complete and submit an application within the SAP Portal. All
efforts related to SAP Portal applications occur prior to and separate
from NCSES's effort to collect information related to data security
requirements.
The expected number of applications in the SAP Portal that receive
a positive determination from NCSES in a given year may vary. Overall,
per year, NCSES estimates it will collect data security information for
20 application submissions that received a positive determination
within the SAP Portal. NCSES estimates that the total burden for the
collection of information for data security requirements over the
course of the three-year OMB clearance will be about 30 hours and, as a
result, an average annual burden of 10 hours.
Dated: October 26, 2022.
Suzanne H. Plimpton,
Reports Clearance Officer, National Science Foundation.
[FR Doc. 2022-23629 Filed 10-28-22; 8:45 am]
BILLING CODE 7555-01-P
