SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. The safeguarding requirements in this security addendum are drawn from the Office of Child Support
SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. HUD shall comply with the Office of Child Support Enforcement Division of Federal Systems Security Requirements for Federal Agencies Receiving Federal Parent Locator Service Data. XXX received this document on November 13, 2020. The safeguarding requirements in this security addendum are drawn from this document and are also based on the federal laws and requirements governing the protection of information referenced in section I of this security addendum.
SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. SSA shall comply with the Office of Child Support Enforcement Division of Federal Systems Security Requirements for Federal Agencies Receiving Federal Parent Locator Service Data. SSA received this document on May 14, 2019. The safeguarding requirements in this security addendum are drawn from this document and are also based on the federal laws and requirements governing the protection of information referenced in section I of this security addendum. This section provides the safeguarding requirements with which OCSE and SSA shall comply and continuously monitor. SSA shall also comply with three additional requirements: Breach Reporting and Notification Responsibility, Security Authorization, and Audit Requirements. The safeguarding requirements for receiving NDNH information and the safeguards in place at OCSE for protecting the agency input files are as follows:
SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. The state agency shall comply with the Office of Child Support Enforcement
SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. The state agency must comply with the applicable provisions of FISMA, the applicable Office of Management and Budget (OMB) memoranda, and the applicable guidelines of the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, Revision 5, Security and Privacy Controls for Federal Information Systems and Organizations, September 2020, updated December 10, 2020; HHS Policy for Information Security and Privacy Protection, November 2021; and the Automated Systems for Child Support Enforcement: A Guide for States, updated 2017 (Federal Certification Guide). The following requirements are drawn from these statutes, regulations, and guidelines. The HHS Policy for Information Security and Privacy Protection can be shared with a state agency upon request. The security requirements with which the state agency must comply are presented in three categories: management, operational, and technical. The state agency must also comply with additional requirements: Cloud Solution (optional for cloud environments), Retention and Disposition Requirements, Breach Reporting and Notification Responsibility, Security Certification, and Audit Requirements.
SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. The state agency shall comply with the Office of Child Support Enforcement Division of Federal Systems Security Requirements for State Agencies Receiving National Directory of New Hires Data. The state agency received this document on November 1, 2018. The safeguarding requirements in this security addendum are drawn from this document.
SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. The safeguarding requirements in this security addendum are drawn from the Office of Child Support Enforcement Division of Federal Systems Security Requirements for Federal Agencies Receiving National Directory of New Hires Data. This document is available upon request from xxxxxxxxxxxx@xxx.xxx.xxx.
SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. SSA shall comply with the Office of Child Support Enforcement Division of Federal Systems Security Requirements for Federal Agencies Receiving Federal Parent Locator Service Data. SSA received this document on May 14, 2019. The safeguarding requirements in this security addendum are drawn from this document and are also based on the federal laws and requirements governing the protection of information referenced in section 1 of this security addendum. This section presents the safeguarding requirements with which OCSE and SSA shall comply and continuously monitor. SSA shall also comply with three additional requirements:
SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. Use of pseudo-identifiers does not eliminate the possibility that the individuals in the study may be identifiable from the remaining information. While not directly identified, the remaining information OCSE provides in conjunction with additional available data sources is sometimes sufficient to identify the study participants with reasonable certainty. Therefore, OPRE/OFA must safeguard the information to protect the privacy of the individuals. Neither OPRE/OFA nor OCSE are permitted to reconstruct or link files, or participate in any activity, other than those identified and governed by the agreement, which could result in the personal identification of any individual whose information is contained in the input or output files. The safeguarding requirements for receiving NDNH information as well as the safeguards in place at OCSE for protecting the agency input files are as follows:
SECURITY AND PRIVACY SAFEGUARDING REQUIREMENTS. OCSE developed these safeguarding requirements based on the federal laws and requirements governing the protection of information referenced in Section I of this security addendum, as well as the Office of Child Support Enforcement Division of Federal Systems Security Requirements for Federal Agencies Receiving Federal Parent Locator Service Data. SSA was provided a copy of the Office of Child Support Enforcement Division of Federal Systems Security Requirements for Federal Agencies Receiving Federal Parent Locator Service Data, on July 14, 2015. This section presents the safeguarding requirements with which OCSE and SSA shall comply and continuously monitor. SSA shall also comply with three additional requirements: Breach Reporting and Notification Responsibility; Security Authorization; and Audit Requirements. The safeguarding requirements for receiving NDNH information, as well as the safeguards in place at OCSE for protecting the agency finder files, are as follows:
