80_FR_67093 80 FR 66883 - Privacy Act of 1974; System of Records

80 FR 66883 - Privacy Act of 1974; System of Records

DEPARTMENT OF DEFENSE
Office of the Secretary

Federal Register Volume 80, Issue 210 (October 30, 2015)

Page Range66883-66885
FR Document2015-27745

The Office of the Secretary of Defense proposes to add a new system of records, DMDC 20, entitled ``Personnel Security Breach Notification and Mitigation Services Records''. The Department of Defense is providing notification and facilitating the provision of breach mitigation services to individuals affected by the breach of information in the Office of Personnel Management (OPM) background investigation databases the Department must establish this system in order to provide notification to and facilitate the provision of breach mitigation services. Due to the number and proportion of affected individuals belonging to the DoD, DoD entered into agreements with OPM to handle the breach notification and mitigation services. DoD will also use these records to respond to breach verification inquiries. Individuals may go to OPM's Web site and click on a link that will redirect them to a DoD Web site where they can enter their information to find out if they have been affected by this breach. These records may also be used for tracking, reporting, measuring, and improving The Department's effectiveness in implementing this data breach notification.

Federal Register, Volume 80 Issue 210 (Friday, October 30, 2015)
[Federal Register Volume 80, Number 210 (Friday, October 30, 2015)]
[Notices]
[Pages 66883-66885]
From the Federal Register Online  [www.thefederalregister.org]
[FR Doc No: 2015-27745]


-----------------------------------------------------------------------

DEPARTMENT OF DEFENSE

Office of the Secretary

[Docket ID: DoD-2015-OS-0115]


Privacy Act of 1974; System of Records

AGENCY: Office of the Secretary of Defense, DoD.

ACTION: Notice to add a new system of records.

-----------------------------------------------------------------------

SUMMARY: The Office of the Secretary of Defense proposes to add a new 
system of records, DMDC 20, entitled ``Personnel Security Breach 
Notification and Mitigation Services Records''. The Department of 
Defense is providing notification and facilitating the provision of 
breach mitigation services to individuals affected by the breach of 
information in the Office of Personnel Management (OPM) background 
investigation databases the Department must establish this system in 
order to provide notification to and facilitate the provision of breach 
mitigation services. Due to the number and proportion of affected 
individuals belonging to the DoD, DoD entered into agreements with OPM 
to handle the breach notification and mitigation services. DoD will 
also use these records to respond to breach verification inquiries. 
Individuals may go to OPM's Web site and click on a link that will 
redirect them to a DoD Web site where they can enter their information 
to find out if they have been affected by this breach. These records 
may also be used for tracking, reporting, measuring, and improving The 
Department's effectiveness in implementing this data breach 
notification.

DATES: Comments will be accepted on or before November 30, 2015. This 
proposed action will be effective the day following the end of the 
comment period unless comments are received which result in a contrary 
determination.

ADDRESSES: You may submit comments, identified by docket number and 
title, by any of the following methods:
    * Federal Rulemaking Portal: http://www.regulations.gov. Follow the 
instructions for submitting comments.
    * Mail: Department of Defense, Office of the Deputy Chief 
Management Officer, Directorate of Oversight and Compliance, Regulatory 
and Audit Matters Office, 9010 Defense Pentagon, Washington, DC 20301-
9010.
    Instructions: All submissions received must include the agency name 
and docket number for this Federal Register document. The general 
policy for comments and other submissions from members of the public is 
to make these submissions available for public viewing on the Internet 
at http://www.regulations.gov as they are received without change, 
including any personal identifiers or contact information.

FOR FURTHER INFORMATION CONTACT: Ms. Cindy Allard, Chief, OSD/JS 
Privacy Office, Washington Headquarters Service, 1155 Defense Pentagon, 
Washington, DC 20301-1155, or by phone at (571) 372-0461.

SUPPLEMENTARY INFORMATION: The Office of the Secretary of Defense 
notices for systems of records subject to the Privacy Act of 1974 (5 
U.S.C. 552a), as amended, have been published in the Federal

[[Page 66884]]

Register and are available from the address in FOR FURTHER INFORMATION 
CONTACT or at http://dpcld.defense.gov/.
    The proposed system report, as required by 5 U.S.C. 552a(r) of the 
Privacy Act of 1974, as amended, was submitted on October 27, 2015, to 
the House Committee on Oversight and Government Reform, the Senate 
Committee on Governmental Affairs, and the Office of Management and 
Budget (OMB) pursuant to paragraph 4c of Appendix I to OMB Circular No. 
A-130, ``Federal Agency Responsibilities for Maintaining Records About 
Individuals,'' dated February 8, 1996 (February 20, 1996, 61 FR 6427).

    Dated: October 27, 2015.
Aaron Siegel,
Alternate OSD Federal Register Liaison Officer, Department of Defense.
DMDC 20

System name:
    Personnel Security Breach Notification and Mitigation Services 
Records.

System location:
    Defense Manpower Data Center, DoD Center Monterey Bay, 400 Gigling 
Road, Seaside, CA 93955-6771.

Categories of individuals covered by the system:
    Federal civilian and military personnel and applicants, and 
employees of government contractors, experts, instructors, and 
consultants to Federal programs who underwent a personnel background 
investigation after January 1, 1990. Other individuals whose Social 
Security Numbers (SSNs) were provided on an SF85, SF85-P and SF86 after 
January 1, 1990. Individuals who submit a breach verification inquiry. 
Minor children, who were minors as of July 1, 2015, of individuals 
described in this paragraph.

Categories of records in the system:
    Last, first, and middle name; Social Security Number (SSN); date of 
birth, place of birth; citizenship status; country of citizenship; home 
and/or business addresses, phone numbers, and email addresses.

Authority for maintenance of the system:
    The E-Government Act of 2002 (Pub. L. 107-347); the Federal 
Information Security Modernization Act of 2014 (Pub. L. 113-283) (44 
U.S.C. 3551-3559); 10 U.S.C. 113, Secretary of Defense; 50 U.S.C. 3038, 
Responsibilities of Secretary of Defense Pertaining to National 
Intelligence Program; E.O. 12333, United States Intelligence 
Activities, as amended; E.O. 13402, Strengthening Federal Efforts to 
Protect Against Identity Theft, as amended; E.O. 13526, Classified 
National Security Information; White House Memorandum dated September 
20, 2006, Subject: Recommendations for Identity Theft Related Data 
Breach Notification; and E.O. 9397 (SSN), as amended.

Purpose(s):
    To provide breach notification and facilitate the provision of 
breach mitigation services to individuals affected by the breach of 
information in the Office of Personnel Management (OPM) background 
investigation databases. DoD will also use the data to respond to 
breach verification inquiries received from individuals using the link 
on OPM's Web site that redirects individuals to a DoD Web site where 
they can enter their information to find out if they have been affected 
by this breach. These records may also be used for tracking, reporting, 
measuring, and improving the Department's effectiveness in implementing 
this data breach notification.

Routine uses of records maintained in the system, including categories 
of users and the purposes of such uses:
    In addition to disclosures generally permitted under 5 U.S.C. 
552a(b) of the Privacy Act of 1974, as amended, these records may 
specifically be disclosed outside the DoD as follows:
    To commercial entities, under contract with DoD, for the sole 
purpose of verifying addresses of affected individuals in order to 
provide notification to such individuals.
    Law Enforcement Routine Use: If a system of records maintained by a 
DoD Component to carry out its functions indicates a violation or 
potential violation of law, whether civil, criminal, or regulatory in 
nature, and whether arising by general statute or by regulation, rule, 
or order issued pursuant thereto, the relevant records in the system of 
records may be referred, as a routine use, to the Federal agency 
concerned, charged with the responsibility of investigating or 
prosecuting such violation or charged with enforcing or implementing 
the statute, rule, regulation, or order issued pursuant thereto.
    Disclosure of Information to the National Archives and Records 
Administration Routine Use: A record from a system of records 
maintained by a DoD Component may be disclosed as a routine use to the 
National Archives and Records Administration for the purpose of records 
management inspections conducted under authority of 44 U.S.C. 2904 and 
2906.
    Disclosure to the Office of Personnel Management Routine Use: A 
record from a system of records subject to the Privacy Act and 
maintained by a DoD Component may be disclosed to the OPM concerning 
information necessary for the OPM to carry out its legally authorized 
functions.
    Counterintelligence Purpose Routine Use: A record from a system of 
records maintained by a DoD Component may be disclosed as a routine use 
outside the DoD for the purpose of counterintelligence activities 
authorized by U.S. Law or Executive Order or for the purpose of 
enforcing laws which protect the national security of the United 
States.
    Data Breach Remediation Purposes Routine Use: A record from a 
system of records maintained by a Component may be disclosed to 
appropriate agencies, entities, and persons when (1) the Component 
suspects or has confirmed that the security or confidentiality of the 
information in the system of records has been compromised; (2) the 
Component has determined that as a result of the suspected or confirmed 
compromise there is a risk of harm to economic or property interests, 
identity theft or fraud, or harm to the security or integrity of this 
system or other systems or programs (whether maintained by the 
Component or another agency or entity) that rely upon the compromised 
information; and (3) the disclosure made to such agencies, entities, 
and persons is reasonably necessary to assist in connection with the 
Component's efforts to respond to the suspected or confirmed compromise 
and prevent, minimize, or remedy such harm.
    Policies and practices for storing, retrieving, accessing, 
retaining, and disposing of records in the system:

Storage:
    Electronic storage media.

Retrievability:
    Records may be retrieved by an individual's name, SSN, date and 
place of birth.

Safeguards:
    Access to personally identifiable information is restricted to 
those who require access to the records in the performance of their 
official duties in connection with the breach notification process. 
Access to personally identifiable information is further restricted by 
the use of Personal Identity Verification (PIV) cards and PIN. Physical 
entry is restricted by the use of

[[Page 66885]]

locks, key cards, security guards, and identification badges. All 
individuals granted access to this system of records will have 
completed annual Information Assurance and Privacy Act training and be 
appropriately vetted. Audit logs will be maintained to document access 
to data. All electronic records transfers into this system of records 
will be encrypted. Records will be maintained in a secure database with 
an intrusion detection system in a physically controlled area 
accessible only to authorized personnel.

Retention and disposal:
    The National Archives and Records Administration has authorized the 
destruction of these records 3 (three) year(s) after credit monitoring 
and identity management services have concluded.

System manager(s) and address:
    Deputy Director for Identity, Defense Manpower Data Center, 4800 
Mark Center, Alexandria, VA 22350-4000.
    Deputy Director, Defense Manpower Data Center, DoD Center Monterey 
Bay, 400 Gigling Road, Seaside, CA 93955-6771.

Notification procedure:
    Individuals seeking to determine whether information about 
themselves is contained in this system should address written inquiries 
to the Defense Manpower Data Center (DMDC), DoD Center Monterey Bay, 
ATTN: Privacy Act Office, 400 Gigling Road, Seaside, CA 93955-6771.
    Signed, written requests must contain the full name (and any alias 
and/or alternate names used), SSN, and date and place of birth.

Record access procedures:
    Individuals seeking information about themselves contained in this 
system should address written inquiries to the Office of the Secretary 
of Defense/Joint Staff Freedom of Information Act Requester Service 
Center, 1155 Defense Pentagon, Washington, DC 20301-1155.
    Individuals should provide their full name (and any alias and/or 
alternate names used), SSN, and date and place of birth.
    In addition, the requester must provide a notarized statement or an 
unsworn declaration made in accordance with 28 U.S.C. 1746, in the 
following format:
    If executed outside the United States: `I declare (or certify, 
verify, or state) under penalty of perjury under the laws of the United 
States of America that the foregoing is true and correct. Executed on 
(date). (Signature).'
    If executed within the United States, its territories, possessions, 
or commonwealths: `I declare (or certify, verify, or state) under 
penalty of perjury that the foregoing is true and correct. Executed on 
(date). (Signature).'
    Attorneys or other persons acting on behalf of an individual must 
provide written authorization from that individual for their 
representative to act on their behalf.

Contesting record procedures:
    The OSD rules for accessing records and for contesting or appealing 
agency determinations are published in OSD Administrative Instruction 
81, 32 CFR part 311; or may be obtained directly from the system 
manager.

Record source categories:
    Individuals requesting verification via OPM's Web site who click on 
a link that will redirect them to a DoD Web site where they can enter 
their information to find out if they have been affected by this 
breach. The OPM (Personnel Investigations Records). Employees address 
records from Federal employers (e.g., OPM, Defense Finance and 
Accounting Service, Defense Manpower Data Center, Department of State, 
United States Postal Service, Library of Congress, the General 
Accountability Office, Death master files, the Executive Office of the 
President, Former Presidents Office, etc.) and address verification 
from cleared contractors and commercial vendors.

Exemptions claimed for the system:
    Parts of this record system may be exempt under 5 U.S.C. 
552a(k)(1), as applicable.
    An exemption rule for this record system has been promulgated 
according to the requirements of 5 U.S.C. 553(b)(1), (2), and (3), (c) 
and (e) and published in 32 CFR part 311. For additional information 
contact the system manager.

[FR Doc. 2015-27745 Filed 10-29-15; 8:45 am]
BILLING CODE 5001-06-P



                                                                            Federal Register / Vol. 80, No. 210 / Friday, October 30, 2015 / Notices                                           66883

                                                 MONTHLY TYA PREMIUMS FOR CY                              Frequency: On occasion.                            provision of breach mitigation services
                                                            2016                                          Respondent’s Obligation: Required to               to individuals affected by the breach of
                                                                                                        obtain or retain benefits.                           information in the Office of Personnel
                                                                                         Monthly          OMB Desk Officer: Mr. Joshua                       Management (OPM) background
                                                       Type of coverage                                 Brammer.
                                                                                          rate                                                               investigation databases the Department
                                                                                                          Comments and recommendations on                    must establish this system in order to
                                              TRICARE Standard Plans ............                $228   the proposed information collection                  provide notification to and facilitate the
                                              TRICARE Prime Plans .................               306   should be emailed to Mr. Joshua                      provision of breach mitigation services.
                                                                                                        Brammer, DoD Desk Officer, at Oira_                  Due to the number and proportion of
                                                The above premiums are effective for                    submission@omb.eop.gov. Please
                                              services rendered on or after January 1,                                                                       affected individuals belonging to the
                                                                                                        identify the proposed information                    DoD, DoD entered into agreements with
                                              2016.                                                     collection by DoD Desk Officer and the               OPM to handle the breach notification
                                                Dated: October 27, 2015.                                Docket ID number and title of the                    and mitigation services. DoD will also
                                              Aaron Siegel,                                             information collection.                              use these records to respond to breach
                                              Alternate OSD Federal Register Liaison                      You may also submit comments and                   verification inquiries. Individuals may
                                              Officer, Department of Defense.                           recommendations, identified by Docket                go to OPM’s Web site and click on a link
                                              [FR Doc. 2015–27711 Filed 10–29–15; 8:45 am]              ID number and title, by the following                that will redirect them to a DoD Web
                                              BILLING CODE 5001–06–P
                                                                                                        method:                                              site where they can enter their
                                                                                                          • Federal eRulemaking Portal: http://              information to find out if they have been
                                                                                                        www.regulations.gov. Follow the                      affected by this breach. These records
                                              DEPARTMENT OF DEFENSE                                     instructions for submitting comments.                may also be used for tracking, reporting,
                                                                                                           Instructions: All submissions received
                                                                                                                                                             measuring, and improving The
                                              Office of the Secretary                                   must include the agency name, Docket
                                                                                                                                                             Department’s effectiveness in
                                                                                                        ID number and title for this Federal
                                              [Docket ID: DoD–2015–HA–0036]                                                                                  implementing this data breach
                                                                                                        Register document. The general policy
                                                                                                                                                             notification.
                                              Submission for OMB Review;                                for comments and other submissions
                                                                                                        from members of the public is to make                DATES: Comments will be accepted on or
                                              Comment Request
                                                                                                        these submissions available for public               before November 30, 2015. This
                                              ACTION:   Notice.                                         viewing on the Internet at http://                   proposed action will be effective the day
                                                                                                        www.regulations.gov as they are                      following the end of the comment
                                              SUMMARY:    The Department of Defense                     received without change, including any               period unless comments are received
                                              has submitted to OMB for clearance, the                   personal identifiers or contact                      which result in a contrary
                                              following proposal for collection of                      information.                                         determination.
                                              information under the provisions of the                      DOD Clearance Officer: Mr. Frederick              ADDRESSES:   You may submit comments,
                                              Paperwork Reduction Act.                                  Licari.                                              identified by docket number and title,
                                              DATES: Consideration will be given to all                    Written requests for copies of the                by any of the following methods:
                                              comments received by November 30,                         information collection proposal should                 * Federal Rulemaking Portal: http://
                                              2015.                                                     be sent to Mr. Licari at WHS/ESD                     www.regulations.gov. Follow the
                                              FOR FURTHER INFORMATION CONTACT: Fred                     Directives Division, 4800 Mark Center                instructions for submitting comments.
                                              Licari, 571–372–0493.                                     Drive, East Tower, Suite 02G09,                        * Mail: Department of Defense, Office
                                              SUPPLEMENTARY INFORMATION:
                                                                                                        Alexandria, VA 22350–3100.                           of the Deputy Chief Management
                                                 Title, Associated Form and OMB                           Dated: October 27, 2015.                           Officer, Directorate of Oversight and
                                              Number: Statement of Personal Injury—                     Aaron Siegel,                                        Compliance, Regulatory and Audit
                                              Possible Third Party Liability, Defense                   Alternate OSD Federal Register Liaison               Matters Office, 9010 Defense Pentagon,
                                              Health Agency; DD Form 2527; OMB                          Officer, Department of Defense.                      Washington, DC 20301–9010.
                                              Control Number 0720–0003.                                 [FR Doc. 2015–27708 Filed 10–29–15; 8:45 am]           Instructions: All submissions received
                                                 Type of Request: Reinstatement, with                   BILLING CODE 5001–06–P
                                                                                                                                                             must include the agency name and
                                              change, of a previously approved                                                                               docket number for this Federal Register
                                              collection for which approval has                                                                              document. The general policy for
                                              expired.                                                  DEPARTMENT OF DEFENSE                                comments and other submissions from
                                                 Number of Respondents: 188,090.                                                                             members of the public is to make these
                                                 Responses per Respondent: 1.                           Office of the Secretary                              submissions available for public
                                                 Annual Responses: 188,090.                                                                                  viewing on the Internet at http://
                                                 Average Burden per Response: 15                        [Docket ID: DoD–2015–OS–0115]
                                                                                                                                                             www.regulations.gov as they are
                                              minutes.                                                                                                       received without change, including any
                                                 Annual Burden Hours: 47,023.                           Privacy Act of 1974; System of
                                                                                                        Records                                              personal identifiers or contact
                                                 Needs and Uses: This information                                                                            information.
                                              collection is completed by TRICARE                        AGENCY:  Office of the Secretary of
                                              (formerly CHAMPUS) beneficiaries                          Defense, DoD.                                        FOR FURTHER INFORMATION CONTACT:     Ms.
                                              suffering from personal injuries and                                                                           Cindy Allard, Chief, OSD/JS Privacy
                                                                                                        ACTION: Notice to add a new system of
                                              receiving medical care at Government                                                                           Office, Washington Headquarters
                                                                                                        records.
                                              expense. The information is necessary                                                                          Service, 1155 Defense Pentagon,
                                                                                                                                                             Washington, DC 20301–1155, or by
tkelley on DSK3SPTVN1PROD with NOTICES




                                              in the assertion of the Government’s                      SUMMARY:   The Office of the Secretary of
                                              right to recovery under the Federal                       Defense proposes to add a new system                 phone at (571) 372–0461.
                                              Medical Care Recovery Act. The data is                    of records, DMDC 20, entitled                        SUPPLEMENTARY INFORMATION: The Office
                                              used in the evaluation and processing of                  ‘‘Personnel Security Breach Notification             of the Secretary of Defense notices for
                                              these claims.                                             and Mitigation Services Records’’. The               systems of records subject to the Privacy
                                                 Affected Public: Individuals or                        Department of Defense is providing                   Act of 1974 (5 U.S.C. 552a), as amended,
                                              households.                                               notification and facilitating the                    have been published in the Federal


                                         VerDate Sep<11>2014   17:37 Oct 29, 2015   Jkt 238001    PO 00000   Frm 00018   Fmt 4703   Sfmt 4703   E:\FR\FM\30OCN1.SGM   30OCN1


                                              66884                         Federal Register / Vol. 80, No. 210 / Friday, October 30, 2015 / Notices

                                              Register and are available from the                     Intelligence Activities, as amended; E.O.             inspections conducted under authority
                                              address in FOR FURTHER INFORMATION                      13402, Strengthening Federal Efforts to               of 44 U.S.C. 2904 and 2906.
                                              CONTACT or at                                           Protect Against Identity Theft, as                       Disclosure to the Office of Personnel
                                              http://dpcld.defense.gov/.                              amended; E.O. 13526, Classified                       Management Routine Use: A record
                                                The proposed system report, as                        National Security Information; White                  from a system of records subject to the
                                              required by 5 U.S.C. 552a(r) of the                     House Memorandum dated September                      Privacy Act and maintained by a DoD
                                              Privacy Act of 1974, as amended, was                    20, 2006, Subject: Recommendations for                Component may be disclosed to the
                                              submitted on October 27, 2015, to the                   Identity Theft Related Data Breach                    OPM concerning information necessary
                                              House Committee on Oversight and                        Notification; and E.O. 9397 (SSN), as                 for the OPM to carry out its legally
                                              Government Reform, the Senate                           amended.                                              authorized functions.
                                              Committee on Governmental Affairs,                                                                               Counterintelligence Purpose Routine
                                                                                                      PURPOSE(S):
                                              and the Office of Management and                                                                              Use: A record from a system of records
                                              Budget (OMB) pursuant to paragraph 4c                      To provide breach notification and                 maintained by a DoD Component may
                                              of Appendix I to OMB Circular No. A–                    facilitate the provision of breach                    be disclosed as a routine use outside the
                                              130, ‘‘Federal Agency Responsibilities                  mitigation services to individuals                    DoD for the purpose of
                                              for Maintaining Records About                           affected by the breach of information in              counterintelligence activities authorized
                                              Individuals,’’ dated February 8, 1996                   the Office of Personnel Management                    by U.S. Law or Executive Order or for
                                              (February 20, 1996, 61 FR 6427).                        (OPM) background investigation                        the purpose of enforcing laws which
                                                                                                      databases. DoD will also use the data to              protect the national security of the
                                                Dated: October 27, 2015.
                                                                                                      respond to breach verification inquiries              United States.
                                              Aaron Siegel,
                                                                                                      received from individuals using the link                 Data Breach Remediation Purposes
                                              Alternate OSD Federal Register Liaison                  on OPM’s Web site that redirects
                                              Officer, Department of Defense.                                                                               Routine Use: A record from a system of
                                                                                                      individuals to a DoD Web site where                   records maintained by a Component
                                              DMDC 20                                                 they can enter their information to find              may be disclosed to appropriate
                                                                                                      out if they have been affected by this                agencies, entities, and persons when (1)
                                              SYSTEM NAME:                                            breach. These records may also be used                the Component suspects or has
                                                Personnel Security Breach                             for tracking, reporting, measuring, and               confirmed that the security or
                                              Notification and Mitigation Services                    improving the Department’s                            confidentiality of the information in the
                                              Records.                                                effectiveness in implementing this data               system of records has been
                                              SYSTEM LOCATION:
                                                                                                      breach notification.                                  compromised; (2) the Component has
                                                Defense Manpower Data Center, DoD                     ROUTINE USES OF RECORDS MAINTAINED IN THE
                                                                                                                                                            determined that as a result of the
                                              Center Monterey Bay, 400 Gigling Road,                  SYSTEM, INCLUDING CATEGORIES OF USERS AND             suspected or confirmed compromise
                                              Seaside, CA 93955–6771.                                 THE PURPOSES OF SUCH USES:                            there is a risk of harm to economic or
                                                                                                         In addition to disclosures generally               property interests, identity theft or
                                              CATEGORIES OF INDIVIDUALS COVERED BY THE
                                                                                                      permitted under 5 U.S.C. 552a(b) of the               fraud, or harm to the security or
                                              SYSTEM:                                                                                                       integrity of this system or other systems
                                                                                                      Privacy Act of 1974, as amended, these
                                                 Federal civilian and military                        records may specifically be disclosed                 or programs (whether maintained by the
                                              personnel and applicants, and                           outside the DoD as follows:                           Component or another agency or entity)
                                              employees of government contractors,                       To commercial entities, under                      that rely upon the compromised
                                              experts, instructors, and consultants to                contract with DoD, for the sole purpose               information; and (3) the disclosure
                                              Federal programs who underwent a                        of verifying addresses of affected                    made to such agencies, entities, and
                                              personnel background investigation                      individuals in order to provide                       persons is reasonably necessary to assist
                                              after January 1, 1990. Other individuals                notification to such individuals.                     in connection with the Component’s
                                              whose Social Security Numbers (SSNs)                       Law Enforcement Routine Use: If a                  efforts to respond to the suspected or
                                              were provided on an SF85, SF85–P and                    system of records maintained by a DoD                 confirmed compromise and prevent,
                                              SF86 after January 1, 1990. Individuals                 Component to carry out its functions                  minimize, or remedy such harm.
                                              who submit a breach verification                        indicates a violation or potential                       Policies and practices for storing,
                                              inquiry. Minor children, who were                       violation of law, whether civil, criminal,            retrieving, accessing, retaining, and
                                              minors as of July 1, 2015, of individuals               or regulatory in nature, and whether                  disposing of records in the system:
                                              described in this paragraph.                            arising by general statute or by                      STORAGE:
                                              CATEGORIES OF RECORDS IN THE SYSTEM:                    regulation, rule, or order issued
                                                                                                                                                               Electronic storage media.
                                                Last, first, and middle name; Social                  pursuant thereto, the relevant records in
                                              Security Number (SSN); date of birth,                   the system of records may be referred,                RETRIEVABILITY:
                                              place of birth; citizenship status;                     as a routine use, to the Federal agency                 Records may be retrieved by an
                                              country of citizenship; home and/or                     concerned, charged with the                           individual’s name, SSN, date and place
                                              business addresses, phone numbers, and                  responsibility of investigating or                    of birth.
                                              email addresses.                                        prosecuting such violation or charged
                                                                                                      with enforcing or implementing the                    SAFEGUARDS:
                                              AUTHORITY FOR MAINTENANCE OF THE SYSTEM:                statute, rule, regulation, or order issued              Access to personally identifiable
                                                The E-Government Act of 2002 (Pub.                    pursuant thereto.                                     information is restricted to those who
                                              L. 107–347); the Federal Information                       Disclosure of Information to the                   require access to the records in the
tkelley on DSK3SPTVN1PROD with NOTICES




                                              Security Modernization Act of 2014                      National Archives and Records                         performance of their official duties in
                                              (Pub. L. 113–283) (44 U.S.C. 3551–                      Administration Routine Use: A record                  connection with the breach notification
                                              3559); 10 U.S.C. 113, Secretary of                      from a system of records maintained by                process. Access to personally
                                              Defense; 50 U.S.C. 3038,                                a DoD Component may be disclosed as                   identifiable information is further
                                              Responsibilities of Secretary of Defense                a routine use to the National Archives                restricted by the use of Personal Identity
                                              Pertaining to National Intelligence                     and Records Administration for the                    Verification (PIV) cards and PIN.
                                              Program; E.O. 12333, United States                      purpose of records management                         Physical entry is restricted by the use of


                                         VerDate Sep<11>2014   17:37 Oct 29, 2015   Jkt 238001   PO 00000   Frm 00019   Fmt 4703   Sfmt 4703   E:\FR\FM\30OCN1.SGM   30OCN1


                                                                            Federal Register / Vol. 80, No. 210 / Friday, October 30, 2015 / Notices                                          66885

                                              locks, key cards, security guards, and                     If executed within the United States,              Defense Security Cooperation Agency
                                              identification badges. All individuals                  its territories, possessions, or                      announces a proposed public
                                              granted access to this system of records                commonwealths: ‘I declare (or certify,                information collection and seeks public
                                              will have completed annual Information                  verify, or state) under penalty of perjury            comment on the provisions thereof.
                                              Assurance and Privacy Act training and                  that the foregoing is true and correct.               Comments are invited on: (a) Whether
                                              be appropriately vetted. Audit logs will                Executed on (date). (Signature).’                     the proposed collection of information
                                              be maintained to document access to                        Attorneys or other persons acting on               is necessary for the proper performance
                                              data. All electronic records transfers                  behalf of an individual must provide                  of the functions of the agency, including
                                              into this system of records will be                     written authorization from that                       whether the information shall have a
                                              encrypted. Records will be maintained                   individual for their representative to act            practical utility; (b) the accuracy of the
                                              in a secure database with an intrusion                  on their behalf.                                      agency’s estimate of the burden of the
                                              detection system in a physically                                                                              proposed information collection; (c)
                                                                                                      CONTESTING RECORD PROCEDURES:                         ways to enhance the quality, utility, and
                                              controlled area accessible only to
                                              authorized personnel.                                      The OSD rules for accessing records                clarity of the information to be
                                                                                                      and for contesting or appealing agency                collected; and (d) ways to minimize the
                                              RETENTION AND DISPOSAL:                                 determinations are published in OSD                   burden of the information collection on
                                                The National Archives and Records                     Administrative Instruction 81, 32 CFR                 respondents, including through the use
                                              Administration has authorized the                       part 311; or may be obtained directly                 of automated collection techniques or
                                              destruction of these records 3 (three)                  from the system manager.                              other forms of information technology.
                                              year(s) after credit monitoring and                                                                           DATES: Consideration will be given to all
                                                                                                      RECORD SOURCE CATEGORIES:
                                              identity management services have                                                                             comments received by December 29,
                                              concluded.                                                 Individuals requesting verification via            2015.
                                                                                                      OPM’s Web site who click on a link that
                                              SYSTEM MANAGER(S) AND ADDRESS:                          will redirect them to a DoD Web site                  ADDRESSES: You may submit comments,
                                                Deputy Director for Identity, Defense                 where they can enter their information                identified by docket number and title,
                                              Manpower Data Center, 4800 Mark                         to find out if they have been affected by             by any of the following methods:
                                              Center, Alexandria, VA 22350–4000.                      this breach. The OPM (Personnel                          • Federal eRulemaking Portal: http://
                                                Deputy Director, Defense Manpower                     Investigations Records). Employees                    www.regulations.gov. Follow the
                                              Data Center, DoD Center Monterey Bay,                   address records from Federal employers                instructions for submitting comments.
                                              400 Gigling Road, Seaside, CA 93955–                    (e.g., OPM, Defense Finance and                          • Mail: Department of Defense, Office
                                              6771.                                                   Accounting Service, Defense Manpower                  of the Deputy Chief Management
                                                                                                      Data Center, Department of State,                     Officer, Directorate of Oversight and
                                              NOTIFICATION PROCEDURE:
                                                                                                      United States Postal Service, Library of              Compliance, Regulatory and Audit
                                                 Individuals seeking to determine                     Congress, the General Accountability                  Matters Office, 9010 Defense Pentagon,
                                              whether information about themselves                    Office, Death master files, the Executive             Washington, DC 20301–9010.
                                              is contained in this system should                                                                               Instructions: All submissions received
                                                                                                      Office of the President, Former
                                              address written inquiries to the Defense                                                                      must include the agency name, docket
                                                                                                      Presidents Office, etc.) and address
                                              Manpower Data Center (DMDC), DoD                                                                              number and title for this Federal
                                                                                                      verification from cleared contractors
                                              Center Monterey Bay, ATTN: Privacy                                                                            Register document. The general policy
                                                                                                      and commercial vendors.
                                              Act Office, 400 Gigling Road, Seaside,                                                                        for comments and other submissions
                                              CA 93955–6771.                                          EXEMPTIONS CLAIMED FOR THE SYSTEM:                    from members of the public is to make
                                                 Signed, written requests must contain                  Parts of this record system may be                  these submissions available for public
                                              the full name (and any alias and/or                     exempt under 5 U.S.C. 552a(k)(1), as                  viewing on the Internet at http://
                                              alternate names used), SSN, and date                    applicable.                                           www.regulations.gov as they are
                                              and place of birth.                                       An exemption rule for this record                   received without change, including any
                                                                                                      system has been promulgated according                 personal identifiers or contact
                                              RECORD ACCESS PROCEDURES:                                                                                     information.
                                                                                                      to the requirements of 5 U.S.C.
                                                 Individuals seeking information about                553(b)(1), (2), and (3), (c) and (e) and                 Any associated form(s) for this
                                              themselves contained in this system                     published in 32 CFR part 311. For                     collection may be located within this
                                              should address written inquiries to the                 additional information contact the                    same electronic docket and downloaded
                                              Office of the Secretary of Defense/Joint                system manager.                                       for reviewing/testing. Follow the
                                              Staff Freedom of Information Act                                                                              instructions at http://
                                                                                                      [FR Doc. 2015–27745 Filed 10–29–15; 8:45 am]
                                              Requester Service Center, 1155 Defense                                                                        www.regulations.gov for submitting
                                                                                                      BILLING CODE 5001–06–P
                                              Pentagon, Washington, DC 20301–1155.                                                                          comments. Please submit comments on
                                                 Individuals should provide their full                                                                      any given form identified by docket
                                              name (and any alias and/or alternate                                                                          number, form number, and title.
                                                                                                      DEPARTMENT OF DEFENSE
                                              names used), SSN, and date and place                                                                          FOR FURTHER INFORMATION CONTACT: To
                                              of birth.                                               Office of the Secretary                               request more information on this
                                                 In addition, the requester must                                                                            proposed information collection or to
                                              provide a notarized statement or an                     [Docket ID: DoD–2015–OS–0114]                         obtain a copy of the proposal and
                                              unsworn declaration made in                                                                                   associated collection instruments,
                                                                                                      Proposed Collection; Comment
                                              accordance with 28 U.S.C. 1746, in the                                                                        please write to: The Defense Security
                                                                                                      Request
tkelley on DSK3SPTVN1PROD with NOTICES




                                              following format:                                                                                             Cooperation Agency (DSCA) (ATTN:
                                                 If executed outside the United States:               AGENCY: Defense Security Cooperation                  Paul Will), 220 12th Street South, Suite
                                              ‘I declare (or certify, verify, or state)               Agency, DoD.                                          312, Arlington, VA 22202–5408 or call
                                              under penalty of perjury under the laws                 ACTION: Notice.                                       (703) 601–3864.
                                              of the United States of America that the                                                                      SUPPLEMENTARY INFORMATION:
                                              foregoing is true and correct. Executed                 SUMMARY: In compliance with the                          Title; Associated Form; and OMB
                                              on (date). (Signature).’                                Paperwork Reduction Act of 1995, the                  Number: The GlobalNET Collection;


                                         VerDate Sep<11>2014   17:37 Oct 29, 2015   Jkt 238001   PO 00000   Frm 00020   Fmt 4703   Sfmt 4703   E:\FR\FM\30OCN1.SGM   30OCN1



Document Created: 2015-12-14 15:30:21
Document Modified: 2015-12-14 15:30:21
CategoryRegulatory Information
CollectionFederal Register
sudoc ClassAE 2.7:
GS 4.107:
AE 2.106:
PublisherOffice of the Federal Register, National Archives and Records Administration
SectionNotices
ActionNotice to add a new system of records.
DatesComments will be accepted on or before November 30, 2015. This proposed action will be effective the day following the end of the comment period unless comments are received which result in a contrary determination.
ContactMs. Cindy Allard, Chief, OSD/JS Privacy Office, Washington Headquarters Service, 1155 Defense Pentagon, Washington, DC 20301-1155, or by phone at (571) 372-0461.
FR Citation80 FR 66883 

2025 Federal Register | Disclaimer | Privacy Policy
USC | CFR | eCFR