Office of the Secretary August 24, 2009 – Federal Register Recent Federal Regulation Documents

The Department of Homeland Security is issuing a final rule to amend its regulations to exempt portions of a Department-wide system of records entitled the ``Department of Homeland Security/ALL018 Grievances, Appeals and Disciplinary Action Records System of Records'' from certain provisions of the Privacy Act. Specifically, the Department exempts portions of the Department of Homeland Security/ ALL018 Grievances, Appeals and Disciplinary Action Records system from one or more provisions of the Privacy Act because of criminal, civil, and administrative enforcement requirements.

The Department of Health and Human Services (HHS) is issuing this interim final rule with a request for comments to require notification of breaches of unsecured protected health information. Section 13402 of the Health Information Technology for Economic and Clinical Health (HITECH) Act, part of the American Recovery and Reinvestment Act of 2009 (ARRA) that was enacted on February 17, 2009, requires HHS to issue interim final regulations within 180 days to require covered entities under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and their business associates to provide notification in the case of breaches of unsecured protected health information. For purposes of determining what information is ``unsecured protected health information,'' in this document HHS is also issuing an update to its guidance specifying the technologies and methodologies that render protected health information unusable, unreadable, or indecipherable to unauthorized individuals.

The Department of Homeland Security is issuing a final rule to amend its regulations to exempt portions of a Department-wide system of records entitled the ``Department of Homeland Security/ALL024 Facility and Perimeter Access Control and Visitor Management System of Records'' from certain provisions of the Privacy Act. Specifically, the Department exempts portions of the Department of Homeland Security/ ALL024 Facility and Perimeter Access Control and Visitor Management system from one or more provisions of the Privacy Act because of criminal, civil, and administrative enforcement requirements.

The Department of Homeland Security is issuing a final rule to amend its regulations to exempt portions of a Department-wide system of records entitled the ``Department of Homeland Security/ALL006 Accident Records System of Records'' from certain provisions of the Privacy Act. Specifically, the Department exempts portions of the Department of Homeland Security/ALL006 Accident Records system from one or more provisions of the Privacy Act because of criminal, civil, and administrative enforcement requirements.