Privacy Act of 1974; System of Records, 88611-88613 [2023-27896]
Download as PDF
<![CDATA[
Federal Register / Vol. 88, No. 245 / Friday, December 22, 2023 / Notices
Revision to FR Notice Published 12/
15/2023; Correction to document title at
lead agency’s request.
Dated: December 18, 2023.
Julie Smith,
Acting Director, NEPA Compliance Division,
Office of Federal Activities.
[FR Doc. 2023–28249 Filed 12–21–23; 8:45 am]
BILLING CODE 6560–50–P
ENVIRONMENTAL PROTECTION
AGENCY
[EPA–HQ–OPPT–2003–0004; FRL–11595–
01–OCSPP]
Access to Confidential Business
Information by CGI Federal Inc (CGI)
Environmental Protection
Agency (EPA).
ACTION: Notice.
AGENCY:
EPA has authorized its
contractor CGI Federal Inc (CGI) of
Fairfax, VA to access information which
has been submitted to EPA under all
Sections of the Toxic Substances
Control Act (TSCA). Some of the
information may be claimed or
determined to be Confidential Business
Information (CBI).
DATES: Access to the confidential data
will occur no sooner than December 29,
2023.
FOR FURTHER INFORMATION CONTACT:
For technical information contact:
Colby Lintner/Adam Schwoerer,
Program Management and Operations
Division (7407M), Office of Pollution
Prevention and Toxics, Environmental
Protection Agency, 1200 Pennsylvania
Ave. NW, Washington, DC 20460–0001;
telephone number: (202) 564–8182;
email address: lintner.colby@epa.gov or
email address: schwoerer.adam@
epa.gov; telephone number: (202) 564–
4767.
For general information contact: The
TSCA-Hotline, ABVI-Goodwill, 422
South Clinton Ave., Rochester, NY
14620; telephone number: (202) 554–
1404; email address: TSCA-Hotline@
epa.gov.
SUMMARY:
SUPPLEMENTARY INFORMATION:
I. General Information
ddrumheller on DSK120RN23PROD with NOTICES1
A. Does this action apply to me?
This action is directed to the public
in general. This action may, however, be
of interest to all who manufacture,
process, or distribute industrial
chemicals. Because other entities may
also be interested, the Agency has not
attempted to describe all the specific
entities that may be affected by this
action.
VerDate Sep<11>2014
18:10 Dec 21, 2023
Jkt 262001
88611
Dated: December 18, 2023.
B. How can I get copies of this document
Pamela Myrick,
and other related information?
The docket for this action, identified
by docket identification (ID) number
EPA–HQ–OPPT–2003–0004, is available
at https://www.regulations.gov or at the
Office of Pollution Prevention and
Toxics Docket (OPPT Docket),
Environmental Protection Agency
Docket Center (EPA/DC), West William
Jefferson Clinton Bldg., Rm. 3334, 1301
Constitution Ave. NW, Washington, DC.
The Public Reading Room is open from
8:30 a.m. to 4:30 p.m., Monday through
Friday, excluding legal holidays. The
telephone number for the Public
Reading Room is (202) 566–1744, and
the telephone number for the OPPT
Docket is (202) 566–0280. For the latest
status information on EPA/DC services
and docket access, visit https://
www.epa.gov/dockets.
II. What action is the Agency taking?
Under GSA FEDSIM Task Order (TO)
47QFCA23F0030, contractor CGI
located at 12601 Fairfax Lakes Circle,
Fairfax, VA 22033 is assisting the Office
of Pollution Prevention and Toxics
(OPPT) by providing technical support;
development of operations and
maintenance of Central Data Exchange
(CDX) chemical safety and pollution
prevention (CSPP) applications; and
Chemical Information Systems (CIS)
OPPT Confidential Business
Information Local Area Network (CBI
LAN) applications.
EPA is issuing this notice to inform
all submitters of information under all
Sections of TSCA that EPA will provide
CGI access to these CBI materials on a
need-to-know basis only. All access to
TSCA CBI under this contract will take
place at EPA Headquarters and CGI, site
located at 12601 Fairfax Lakes Circle,
Fairfax, VA 22033 in accordance with
EPA’s TSCA CBI Protection Manual and
the Rules of Behavior for Virtual
Desktop Access to OPPT Materials,
including TSCA CBI.
Access to TSCA data, including CBI,
will continue until July 16, 2030. If the
contract is extended, this access will
also continue for the duration of the
extended contract without further
notice.
CGI personnel will be required to sign
nondisclosure agreements and will be
briefed on specific security procedures
for TSCA CBI.
Authority: 15 U.S.C. 2601 et seq.
PO 00000
Director, Project Management and Operations
Division, Office of Pollution Prevention and
Toxics.
[FR Doc. 2023–28172 Filed 12–21–23; 8:45 am]
BILLING CODE 6560–50–P
FEDERAL COMMUNICATIONS
COMMISSION
[FR ID: 191216]
Privacy Act of 1974; System of
Records
Federal Communications
Commission.
ACTION: Notice of a new system of
records.
AGENCY:
The Federal Communications
Commission (FCC, Commission, or
Agency) proposes to add a new system
of records, FCC–3, FCC Identity,
Credentialing, and Access Management
(ICAM), subject to the Privacy Act of
1974, as amended. This action is
necessary to meet the requirements of
the Privacy Act to publish in the
Federal Register notice of the existence
and character of records maintained by
the Agency.
DATES: This new system of records will
become effective on December 22, 2023.
Written comments on the routine uses
are due by January 22, 2024. The routine
uses will become effective on January
22, 2024, unless written comments are
received that require a contrary
determination.
SUMMARY:
Send comments to Brendan
McTaggart, at privacy@fcc.gov, or at
Federal Communications Commission
(FCC), 45 L Street NE, Washington, DC
20554 at (202) 418–1738.
FOR FURTHER INFORMATION CONTACT:
Brendan McTaggart, (202) 418–1738, or
privacy@fcc.gov.
SUPPLEMENTARY INFORMATION: The FCC
is establishing the Identity,
Credentialing, and Access Management
(ICAM) system of records. This system
of records covers the FCC’s, its
administrators’, its contractors’, and its
vendors’ (collectively FCC’s) systems
that collect and maintain records about
internal and external users of the FCC’s,
its administrators’, its contractors’, and
its vendors’ (collectively FCC’s) network
and information systems.
ADDRESSES:
SYSTEM NAME AND NUMBER:
FCC–3, FCC Identity, Credentialing,
and Access Management (ICAM).
SECURITY CLASSIFICATION:
Unclassified.
Frm 00053
Fmt 4703
Sfmt 4703
E:\FR\FM\22DEN1.SGM
22DEN1
88612
Federal Register / Vol. 88, No. 245 / Friday, December 22, 2023 / Notices
SYSTEM LOCATION:
RECORD SOURCE CATEGORIES:
Federal Communications Commission
(FCC), 45 L Street NE, Washington, DC
20554; Universal Service Administrative
Company, 700 12th Street NW, Suite
900, Washington, DC 20005; and FISMA
compliant contractors and vendors.
Information in this system is provided
by Commission employees and
employees of FCC contractors and
administrators with access to the FCC
network; individuals and
representatives of entities that register to
do business with the Commission;
members of the public who access the
FCC’s public-facing information
systems; vendors that provide DNS,
CDN, cloud hosting, firewall, and
related services; other FCC information
systems that collect network
information from users, including the
FCC’s Financial Operations Information
Systems.
SYSTEM MANAGER(S):
Federal Communications Commission
(FCC); Universal Service Administrative
Company (USAC); and FISMA
compliant contractors and vendors.
AUTHORITY FOR MAINTENANCE OF THE SYSTEM:
47 U.S.C. 151 et seq.; Federal
Information Security Modernization Act
of 2014, 44 U.S.C. 3551 et seq.
PURPOSES OF THE SYSTEM:
The FCC uses the systems that
comprise this system of records to
maintain an Active Directory of FCC
staff and contractors who are authorized
to access the FCC network; to monitor,
log, and audit usage of the FCC’s
network and information systems; to
support server and desktop hardware
and software; to ensure the availability
and reliability of the FCC’s network and
information systems; to help document
and/or control access to the FCC’s
network and information systems; to
identify the need for and to conduct
training programs, which can include
the topics of information security; to
monitor the security of the FCC’s
network and information systems; to
add and delete users; to investigate and
make referrals for disciplinary or other
action if improper or unauthorized use
is suspected or detected; and to collect
and maintain information necessary for
FCC staff to perform key activities,
including analyzing effectiveness and
efficiency of FCC programs and
informing rule-making and policymaking activity.
ddrumheller on DSK120RN23PROD with NOTICES1
CATEGORIES OF INDIVIDUALS COVERED BY THE
SYSTEM:
Commission employees, and
employees of FCC contractors and
administrators with access to the FCC
network; individuals and
representatives of entities that register to
do business with the Commission; and
members of the public who access the
FCC’s public-facing information
systems.
CATEGORIES OF RECORDS IN THE SYSTEM:
Contact information, such as name,
username, password, phone numbers,
email address, street address; network
information, such as IP/MAC address,
geolocation, web browser, timestamps,
and activity logs.
VerDate Sep<11>2014
18:10 Dec 21, 2023
Jkt 262001
ROUTINE USES OF RECORDS MAINTAINED IN THE
SYSTEM, INCLUDING CATEGORIES OF USERS AND
THE PURPOSES OF SUCH USES:
In addition to those disclosures
generally permitted under 5 U.S.C.
552a(b) of the Privacy Act, all or a
portion of the records or information
contained in this system may be
disclosed to authorized entities, as is
determined to be relevant and
necessary, outside the FCC as a routine
use pursuant to 5 U.S.C. 552a(b)(3) as
follows.
1. Litigation—To disclose records to
the Department of Justice (DOJ) when:
(a) the FCC or any component thereof;
(b) any employee of the FCC in his or
her official capacity; (c) any employee of
the FCC in his or her individual
capacity where the DOJ or the FCC has
agreed to represent the employee; or (d)
the United States Government is a party
to litigation or has an interest in such
litigation, and by careful review, the
FCC determines that the records are
both relevant and necessary to the
litigation.
2. Adjudication—To disclose records
in a proceeding before a court or
adjudicative body, when: (a) the FCC or
any component thereof; or (b) any
employee of the FCC in his or her
official capacity; or (c) any employee of
the FCC in his or her individual
capacity; or (d) the United States
Government, is a party to litigation or
has an interest in such litigation, and by
careful review, the FCC determines that
the records are both relevant and
necessary to the litigation.
3. Law Enforcement and
Investigation—When the FCC
investigates any violation or potential
violation of a civil or criminal law,
regulation, policy, executed consent
decree, order, or any other type of
compulsory obligation and determines
that a record in this system, either alone
or in conjunction with other
information, indicates a violation or
potential violation of law, regulation,
PO 00000
Frm 00054
Fmt 4703
Sfmt 4703
policy, consent decree, order, or other
compulsory obligation, the FCC may
disclose pertinent information as it
deems necessary to the target of an
investigation, as well as with the
appropriate Federal, State, local, Tribal,
international, or multinational agencies,
or a component of such an agency,
responsible for investigating,
prosecuting, enforcing, or implementing
a statute, rule, regulation, or order.
4. Congressional Inquiries—To
provide information to a Congressional
office from the record of an individual
in response to an inquiry from that
Congressional office made at the written
request of that individual.
5. Government-wide Program
Management and Oversight—To provide
information to the Department of Justice
(DOJ) to obtain that department’s advice
regarding disclosure obligations under
the Freedom of Information Act (FOIA);
or to the Office of Management and
Budget (OMB) to obtain that office’s
advice regarding obligations under the
Privacy Act.
6. Breach Notification—To
appropriate agencies, entities, and
persons when: (a) the Commission
suspects or has confirmed that there has
been a breach of the system of records;
(b) the Commission has determined that
as a result of the suspected or confirmed
breach there is a risk of harm to
individuals, the Commission (including
its information system, programs, and
operations), the Federal Government, or
national security; and; and (c) the
disclosure made to such agencies,
entities, and persons is reasonably
necessary to assist in connection with
the Commission’s efforts to respond to
the suspected or confirmed breach or to
prevent, minimize, or remedy such
harm.
7. Assistance to Federal Agencies and
Entities Related to Breaches—To
another Federal agency or Federal
entity, when the Commission
determines that information from this
system is reasonably necessary to assist
the recipient agency or entity in: (a)
responding to a suspected or confirmed
breach or (b) preventing, minimizing, or
remedying the risk of harm to
individuals, the recipient agency or
entity (including its information
systems, program, and operations), the
Federal Government, or national
security, resulting from a suspected or
confirmed breach.
8. Non-Federal Personnel—To
disclose information to non-Federal
personnel, including contractors, other
vendors (e.g., identity verification
services), grantees, and volunteers who
have been engaged to assist the FCC in
the performance of a service, grant,
E:\FR\FM\22DEN1.SGM
22DEN1
88613
Federal Register / Vol. 88, No. 245 / Friday, December 22, 2023 / Notices
cooperative agreement, or other activity
related to this system of records and
who need to have access to the records
to perform their activity.
POLICIES AND PRACTICES FOR STORAGE OF
RECORDS:
RECORD ACCESS PROCEDURES:
Individuals wishing to request access
to and/or amendment of records about
themselves should follow the
Notification Procedure below.
CONTESTING RECORD PROCEDURES:
This an electronic system of records
that resides on the FCC’s network,
USAC’s network, and FCC contractors’
and vendors’ networks.
Individuals wishing to request access
to and/or amendment of records about
themselves should follow the
Notification Procedure below.
NOTIFICATION PROCEDURES:
POLICIES AND PRACTICES FOR RETRIEVAL OF
RECORDS:
Records in this system of records can
be retrieved by any category field, e.g.,
first name or email address.
POLICIES AND PRACTICES FOR RETENTION AND
DISPOSAL OF RECORDS:
The information in this system is
maintained and disposed of in
accordance with the National Archives
and Records Administration (NARA)
General Records Schedule GRS 3.2,
Information Systems Security Records
(DAA–GRS–2013–0006).
ADMINISTRATIVE, TECHNICAL, AND PHYSICAL
SAFEGUARDS:
The electronic records, files, and data
are stored within FCC, USAC, other
program administrator, contractor, and
vendor accreditation boundaries and
maintained in databases housed on their
network databases. Access to the
electronic files is restricted to
authorized employees, staff and
contractors; and to IT staff, contractors,
and vendors who maintain the IT
networks and services. Other employees
and contractors may be granted access
on a need-to-know basis. The electronic
files and records are protected by the
FCC, USAC, and third-party privacy
safeguards, a comprehensive and
dynamic set of IT safety and security
protocols and features that are designed
to meet all Federal privacy standards,
including those required by the Federal
Information Security Modernization Act
of 2014 (FISMA), the Office of
Management and Budget (OMB), and
the National Institute of Standards and
Technology (NIST).
Individuals wishing to determine
whether this system of records contains
information about themselves may do so
by writing to privacy@fcc.gov.
Individuals requesting access must also
comply with the FCC’s Privacy Act
regulations regarding verification of
identity to gain access to records as
required under 47 CFR part 0, subpart
E.
EXEMPTIONS PROMULGATED FOR THE SYSTEM:
None.
HISTORY:
None.
Federal Communications Commission.
Marlene Dortch,
Secretary.
[FR Doc. 2023–27896 Filed 12–19–23; 4:15 pm]
BILLING CODE 6712–01–P
FEDERAL DEPOSIT INSURANCE
CORPORATION
Agency Information Collection
Activities: Proposed Collection
Renewal; Comment Request; OMB No.
3064–0083; –0182; –0198
Federal Deposit Insurance
Corporation (FDIC).
ACTION: Notice and request for comment.
AGENCY:
The FDIC, as part of its
obligations under the Paperwork
Reduction Act of 1995, invites the
general public and other Federal
agencies to take this opportunity to
comment on the request to renew the
existing information collections
described below (OMB Control No.
3064–0083; –0182; –0198). The notices
SUMMARY:
of the proposed renewal for these
information collections were previously
published in the Federal Register on
October 19, 2023, allowing for a 60-day
comment period.
DATES: Comments must be submitted on
or before January 22, 2024.
ADDRESSES: Interested parties are
invited to submit written comments to
the FDIC by any of the following
methods:
• Agency Website: https://
www.fdic.gov/resources/regulations/
federal-register-publications/.
• Email: comments@fdic.gov. Include
the name and number of the collection
in the subject line of the message.
• Mail: Manny Cabeza (202–898–
3767), Regulatory Counsel, MB–3128,
Federal Deposit Insurance Corporation,
550 17th Street NW, Washington, DC
20429.
• Hand Delivery: Comments may be
hand-delivered to the guard station at
the rear of the 17th Street NW building
(located on F Street NW), on business
days between 7 a.m. and 5 p.m.
Written comments and
recommendations for the proposed
information collection should be sent
within 30 days of publication of this
notice to www.reginfo.gov/public/do/
PRAMain. Find this particular
information collection by selecting
‘‘Currently under 30-day Review—Open
for Public Comments’’ or by using the
search function.
FOR FURTHER INFORMATION CONTACT:
Manny Cabeza, Regulatory Counsel,
202–898–3767, mcabeza@fdic.gov, MB–
3128, Federal Deposit Insurance
Corporation, 550 17th Street NW,
Washington, DC 20429.
SUPPLEMENTARY INFORMATION:
Proposal to renew the following
currently approved collection of
information:
1. Title: Recordkeeping and
Disclosure Requirements in Connection
with Regulation M (Consumer Leasing).
OMB Number: 3064–0083.
Affected Public: State nonmember
banks and state savings associations
engaging in consumer leasing.
Burden Estimate:
SUMMARY OF ESTIMATED ANNUAL BURDEN
ddrumheller on DSK120RN23PROD with NOTICES1
[OMB No. 3064–0083]
Information collection
(obligation to respond)
Type of burden
(frequency of response)
Recordkeeping Requirements in Connection with Regulation M
(Consumer Leasing), 12 CFR 1013.8.
Third-Party Disclosure Requirements in Connection with Regulation M (Consumer Leasing), 12 CFR 1013.3.
VerDate Sep<11>2014
18:10 Dec 21, 2023
Jkt 262001
PO 00000
Number of
respondents
Number of
responses per
respondent
Time per
response
(HH:MM)
Annual
burden
(hours)
Recordkeeping (On occasion) ....
17
100
00:22.5
638
Third-Party Disclosure (On occasion).
17
100
00:22.5
638
Frm 00055
Fmt 4703
Sfmt 4703
E:\FR\FM\22DEN1.SGM
22DEN1
]]>Agencies
[Federal Register Volume 88, Number 245 (Friday, December 22, 2023)]
[Notices]
[Pages 88611-88613]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2023-27896]
=======================================================================
-----------------------------------------------------------------------
FEDERAL COMMUNICATIONS COMMISSION
[FR ID: 191216]
Privacy Act of 1974; System of Records
AGENCY: Federal Communications Commission.
ACTION: Notice of a new system of records.
-----------------------------------------------------------------------
SUMMARY: The Federal Communications Commission (FCC, Commission, or
Agency) proposes to add a new system of records, FCC-3, FCC Identity,
Credentialing, and Access Management (ICAM), subject to the Privacy Act
of 1974, as amended. This action is necessary to meet the requirements
of the Privacy Act to publish in the Federal Register notice of the
existence and character of records maintained by the Agency.
DATES: This new system of records will become effective on December 22,
2023. Written comments on the routine uses are due by January 22, 2024.
The routine uses will become effective on January 22, 2024, unless
written comments are received that require a contrary determination.
ADDRESSES: Send comments to Brendan McTaggart, at [email protected], or
at Federal Communications Commission (FCC), 45 L Street NE, Washington,
DC 20554 at (202) 418-1738.
FOR FURTHER INFORMATION CONTACT: Brendan McTaggart, (202) 418-1738, or
[email protected].
SUPPLEMENTARY INFORMATION: The FCC is establishing the Identity,
Credentialing, and Access Management (ICAM) system of records. This
system of records covers the FCC's, its administrators', its
contractors', and its vendors' (collectively FCC's) systems that
collect and maintain records about internal and external users of the
FCC's, its administrators', its contractors', and its vendors'
(collectively FCC's) network and information systems.
SYSTEM NAME AND NUMBER:
FCC-3, FCC Identity, Credentialing, and Access Management (ICAM).
SECURITY CLASSIFICATION:
Unclassified.
[[Page 88612]]
SYSTEM LOCATION:
Federal Communications Commission (FCC), 45 L Street NE,
Washington, DC 20554; Universal Service Administrative Company, 700
12th Street NW, Suite 900, Washington, DC 20005; and FISMA compliant
contractors and vendors.
SYSTEM MANAGER(S):
Federal Communications Commission (FCC); Universal Service
Administrative Company (USAC); and FISMA compliant contractors and
vendors.
AUTHORITY FOR MAINTENANCE OF THE SYSTEM:
47 U.S.C. 151 et seq.; Federal Information Security Modernization
Act of 2014, 44 U.S.C. 3551 et seq.
PURPOSES OF THE SYSTEM:
The FCC uses the systems that comprise this system of records to
maintain an Active Directory of FCC staff and contractors who are
authorized to access the FCC network; to monitor, log, and audit usage
of the FCC's network and information systems; to support server and
desktop hardware and software; to ensure the availability and
reliability of the FCC's network and information systems; to help
document and/or control access to the FCC's network and information
systems; to identify the need for and to conduct training programs,
which can include the topics of information security; to monitor the
security of the FCC's network and information systems; to add and
delete users; to investigate and make referrals for disciplinary or
other action if improper or unauthorized use is suspected or detected;
and to collect and maintain information necessary for FCC staff to
perform key activities, including analyzing effectiveness and
efficiency of FCC programs and informing rule-making and policy-making
activity.
CATEGORIES OF INDIVIDUALS COVERED BY THE SYSTEM:
Commission employees, and employees of FCC contractors and
administrators with access to the FCC network; individuals and
representatives of entities that register to do business with the
Commission; and members of the public who access the FCC's public-
facing information systems.
CATEGORIES OF RECORDS IN THE SYSTEM:
Contact information, such as name, username, password, phone
numbers, email address, street address; network information, such as
IP/MAC address, geolocation, web browser, timestamps, and activity
logs.
RECORD SOURCE CATEGORIES:
Information in this system is provided by Commission employees and
employees of FCC contractors and administrators with access to the FCC
network; individuals and representatives of entities that register to
do business with the Commission; members of the public who access the
FCC's public-facing information systems; vendors that provide DNS, CDN,
cloud hosting, firewall, and related services; other FCC information
systems that collect network information from users, including the
FCC's Financial Operations Information Systems.
ROUTINE USES OF RECORDS MAINTAINED IN THE SYSTEM, INCLUDING CATEGORIES
OF USERS AND THE PURPOSES OF SUCH USES:
In addition to those disclosures generally permitted under 5 U.S.C.
552a(b) of the Privacy Act, all or a portion of the records or
information contained in this system may be disclosed to authorized
entities, as is determined to be relevant and necessary, outside the
FCC as a routine use pursuant to 5 U.S.C. 552a(b)(3) as follows.
1. Litigation--To disclose records to the Department of Justice
(DOJ) when: (a) the FCC or any component thereof; (b) any employee of
the FCC in his or her official capacity; (c) any employee of the FCC in
his or her individual capacity where the DOJ or the FCC has agreed to
represent the employee; or (d) the United States Government is a party
to litigation or has an interest in such litigation, and by careful
review, the FCC determines that the records are both relevant and
necessary to the litigation.
2. Adjudication--To disclose records in a proceeding before a court
or adjudicative body, when: (a) the FCC or any component thereof; or
(b) any employee of the FCC in his or her official capacity; or (c) any
employee of the FCC in his or her individual capacity; or (d) the
United States Government, is a party to litigation or has an interest
in such litigation, and by careful review, the FCC determines that the
records are both relevant and necessary to the litigation.
3. Law Enforcement and Investigation--When the FCC investigates any
violation or potential violation of a civil or criminal law,
regulation, policy, executed consent decree, order, or any other type
of compulsory obligation and determines that a record in this system,
either alone or in conjunction with other information, indicates a
violation or potential violation of law, regulation, policy, consent
decree, order, or other compulsory obligation, the FCC may disclose
pertinent information as it deems necessary to the target of an
investigation, as well as with the appropriate Federal, State, local,
Tribal, international, or multinational agencies, or a component of
such an agency, responsible for investigating, prosecuting, enforcing,
or implementing a statute, rule, regulation, or order.
4. Congressional Inquiries--To provide information to a
Congressional office from the record of an individual in response to an
inquiry from that Congressional office made at the written request of
that individual.
5. Government-wide Program Management and Oversight--To provide
information to the Department of Justice (DOJ) to obtain that
department's advice regarding disclosure obligations under the Freedom
of Information Act (FOIA); or to the Office of Management and Budget
(OMB) to obtain that office's advice regarding obligations under the
Privacy Act.
6. Breach Notification--To appropriate agencies, entities, and
persons when: (a) the Commission suspects or has confirmed that there
has been a breach of the system of records; (b) the Commission has
determined that as a result of the suspected or confirmed breach there
is a risk of harm to individuals, the Commission (including its
information system, programs, and operations), the Federal Government,
or national security; and; and (c) the disclosure made to such
agencies, entities, and persons is reasonably necessary to assist in
connection with the Commission's efforts to respond to the suspected or
confirmed breach or to prevent, minimize, or remedy such harm.
7. Assistance to Federal Agencies and Entities Related to
Breaches--To another Federal agency or Federal entity, when the
Commission determines that information from this system is reasonably
necessary to assist the recipient agency or entity in: (a) responding
to a suspected or confirmed breach or (b) preventing, minimizing, or
remedying the risk of harm to individuals, the recipient agency or
entity (including its information systems, program, and operations),
the Federal Government, or national security, resulting from a
suspected or confirmed breach.
8. Non-Federal Personnel--To disclose information to non-Federal
personnel, including contractors, other vendors (e.g., identity
verification services), grantees, and volunteers who have been engaged
to assist the FCC in the performance of a service, grant,
[[Page 88613]]
cooperative agreement, or other activity related to this system of
records and who need to have access to the records to perform their
activity.
POLICIES AND PRACTICES FOR STORAGE OF RECORDS:
This an electronic system of records that resides on the FCC's
network, USAC's network, and FCC contractors' and vendors' networks.
POLICIES AND PRACTICES FOR RETRIEVAL OF RECORDS:
Records in this system of records can be retrieved by any category
field, e.g., first name or email address.
POLICIES AND PRACTICES FOR RETENTION AND DISPOSAL OF RECORDS:
The information in this system is maintained and disposed of in
accordance with the National Archives and Records Administration (NARA)
General Records Schedule GRS 3.2, Information Systems Security Records
(DAA-GRS-2013-0006).
ADMINISTRATIVE, TECHNICAL, AND PHYSICAL SAFEGUARDS:
The electronic records, files, and data are stored within FCC,
USAC, other program administrator, contractor, and vendor accreditation
boundaries and maintained in databases housed on their network
databases. Access to the electronic files is restricted to authorized
employees, staff and contractors; and to IT staff, contractors, and
vendors who maintain the IT networks and services. Other employees and
contractors may be granted access on a need-to-know basis. The
electronic files and records are protected by the FCC, USAC, and third-
party privacy safeguards, a comprehensive and dynamic set of IT safety
and security protocols and features that are designed to meet all
Federal privacy standards, including those required by the Federal
Information Security Modernization Act of 2014 (FISMA), the Office of
Management and Budget (OMB), and the National Institute of Standards
and Technology (NIST).
RECORD ACCESS PROCEDURES:
Individuals wishing to request access to and/or amendment of
records about themselves should follow the Notification Procedure
below.
CONTESTING RECORD PROCEDURES:
Individuals wishing to request access to and/or amendment of
records about themselves should follow the Notification Procedure
below.
NOTIFICATION PROCEDURES:
Individuals wishing to determine whether this system of records
contains information about themselves may do so by writing to
[email protected]. Individuals requesting access must also comply with
the FCC's Privacy Act regulations regarding verification of identity to
gain access to records as required under 47 CFR part 0, subpart E.
EXEMPTIONS PROMULGATED FOR THE SYSTEM:
None.
HISTORY:
None.
Federal Communications Commission.
Marlene Dortch,
Secretary.
[FR Doc. 2023-27896 Filed 12-19-23; 4:15 pm]
BILLING CODE 6712-01-P
