Privacy Act of 1974; Systems of Records
Pursuant to the provisions of the Privacy Act of 1974, 5 U.S.C. 552a, notice is given that the Foreign Claims Settlement Commission (``Commission'') is modifying all of its Privacy Act Systems of Records, which were identified in the revised Table of Contents published in the Federal Register on November 14, 2006, 71 FR 66,347 (November 14, 2006), and corrected on December 4, 2006. 71 FR 70,426 (December 4, 2006). On November 14, 2006, the Commission published a proposal to modify all of its systems of records to include a new routine use that would allow disclosure to appropriate persons and entities for purposes of response and remedial efforts in the event that there had been a breach of the data contained in the systems. 71 FR 66,347 (November 14, 2006). In accordance with 5 U.S.C. 552a(e)(4) and (11), the public was given a 30-day period in which to comment; and the Office of Management and Budget (OMB), which has oversight responsibility under the Privacy Act, required a 40-day period in which to conclude its review of the systems. As a result of comments received, the Commission is making a minor modification to the language of the routine use in order to provide greater clarity. A concern was raised that the condition set forth in clause (1) of the routine use (``when (1) it is suspected or confirmed that the security or confidentiality of information in the system of records has been compromised'') does not clearly identify precisely who has to suspect or confirm the compromise. While it was the intent of the drafters that it be the Commission that must suspect or confirm the compromise, because that intent was expressed only implicitly in the routine use, the Commission is modifying the language of the first condition to provide additional clarity. The text of the modification to the Commission's systems of records is set forth below. In accordance with 5 U.S.C. 552a(r), the Department has provided a report to OMB and the Congress. The new routine use will be effective February 13, 2007. Accordingly, pursuant to the provisions of 5 U.S.C. 552a, the Foreign Claims Settlement Commission hereby publishes notice that it is supplementing the list of Routine Uses of the Records Maintained in each of its Privacy Act Systems of Records, including the Categories of Users and the Purposes of Such Uses, by including the following additional Routine Use: ``To appropriate agencies, entities, and persons when (1) The Commission suspects or has confirmed that the security or confidentiality of information in the system of records has been compromised; (2) the Commission has determined that as a result of the suspected or confirmed compromise there is a risk of harm to economic or property interests, identity theft or fraud, or harm to the security or integrity of this system or other systems or programs (whether maintained by the Commission or another agency or entity) that rely upon the compromised information; and (3) the disclosure made to such agencies, entities, and persons is reasonably necessary to assist in connection with the Commission's efforts to respond to the suspected or confirmed compromise and prevent, minimize, or remedy such harm.''