Privacy Act; System of Records

Federal Register: February 19, 2008 (Volume 73, Number 33)

Notices

Page 9100-9102

From the Federal Register Online via GPO Access [wais.access.gpo.gov]

DOCID:fr19fe08-27

DEPARTMENT OF DEFENSE

Office of the Secretary

DoD-2008-OS-0008

Privacy Act of 1974; System of Records

AGENCY: Office of the Secretary, DoD.

ACTION: Notice to reinstate two systems of records.

SUMMARY: The Office of the Secretary of Defense is reinstating and transferring two systems of records notices, that were inadvertently deleted, to its existing inventory of record systems subject to the

Privacy Act of 1974, (5 U.S.C. 552a), as amended.

DATES: This proposed action will be effective without further notice on

March 20, 2008 unless comments are received which result in a contrary determination.

ADDRESSES: Send comments to the OSD Privacy Act Coordinator, Records

Management Section, Washington Headquarters Services, 1155 Defense

Pentagon, Washington, DC 20301-1155.

FOR FURTHER INFORMATION CONTACT: Ms. Cindy Allard at (703) 588-2386.

SUPPLEMENTARY INFORMATION: On February 11, 2008 (73 FR 7720) the DoD published a system of records notice which deleted two systems of records. This notice is to reinstate and transfer from the Defense

Logistics Agency (DLA) to Office of the Secretary of Defense (OSD) inventory of system of records.

The following two systems (DMDC 09 and DMDC 10) are reinstated and transferred.

Dated: February 12, 2008.

L.M. Bynum,

Alternative OSD Federal Register Liaison Officer, Department of

Defense.

DMDC 09

System name:

Archival Purchase Card File

System location:

Defense Manpower Data Center, DoD Center Monterey Bay, 400 Gigling

Road, Seaside, CA 93955-6771.

Categories of individuals covered by the system:

All DoD military members and civilian purchasing agents who have been issued credit purchase cards and/or granted approving authorization for the procurement of supplies, equipment, and services for official business.

Categories of records in the system:

The system includes cardholder name, credit purchase card account number, billing address, work telephone number, and merchant data; approving official name, account number, work telephone number and addresses; and account processing and management information, including charge purchase card transactions, purchase and credit limitations, and card cancellation status indictor.

Authority for maintenance of the system: 5 U.S.C. 301, Departmental Regulations; 10 U.S.C. 136, Under

Secretary of Defense for Personnel and Readiness; 10 U.S.C. 2358,

Research and Development Projects; and 10 U.S.C. 2784, Management of

Credit Cards.

Purpose(s):

The purpose of the system of records is to provide a single central file of credit purchases within the Department of Defense to assess historical purchase card data.

For card recovery purposes, the system is used to identify former card holders who failed to properly turn in cards. Data from the system is also provided to the Defense Finance and Accounting Service for reporting credit purchase card transactions to appropriate authorities.

Statistical data is used by management for planning, evaluation, and program administration purposes.

Routine uses of records maintained in the system, including categories of users and the purposes of such uses:

In addition to those disclosures generally permitted under 5 U.S.C. 552a(b) of the Privacy Act, these records or information contained therein may specifically be disclosed outside the DoD as a routine use pursuant to 5 U.S.C. 552a(b)(3) as follows:

The DoD `Blanket Routine Uses' set forth at the beginning of the

OSD compilation of systems of records notices apply to this system.

Policies and practices for storing, retrieving, accessing, retaining, and disposing of records in the system:

Storage:

Electronic storage media.

Retrievability:

Retrieved by name or credit purchase card account number.

Safeguards:

Access to personal information is restricted to those who require access to the records in the performance of their official duties.

Access to personal information is further restricted by the

Page 9101

use of passwords which are changed periodically. Physical entry is restricted by the use of locks, guards, and administrative procedures.

Employees are warned through screen log-on protocols and periodic briefings of the consequences of improper access or use.

Retention and disposal:

Records are deleted 6 years and 3 months after final payment or when no longer needed, whichever is later.

System manager(s) and address:

Deputy Director, Defense Manpower Data Center, DoD Center Monterey

Bay, 400 Gigling Road, Seaside, CA 93955-6771.

Notification procedure:

Individuals seeking to determine whether information about themselves is contained in this system should address written inquiries to the Privacy Act Officer, Office of Freedom of Information,

Washington Headquarters Services, 1155 Defense Pentagon, Washington, DC 20301-1155.

Written requests should contain the full name, Social Security

Number (SSN), date of birth, and current address and telephone number of the individual.

Record access procedures:

Individuals seeking access to information about themselves contained in this system should address written inquiries to the

Privacy Act Officer, Office of Freedom of Information, Washington

Headquarters Services, 1155 Defense Pentagon, Washington, DC 20301- 1155.

Written requests should contain the full name, Social Security

Number (SSN), date of birth, and current address and telephone number of the individual.

Contesting record procedures:

The OSD rules for accessing records, for contesting contents and appealing initial agency determinations are published in OSD

Administrative Instruction 81; 32 CFR part 311; or may be obtained from the Privacy Act Officer, Office of Freedom of Information, Washington

Headquarters Services, 1155 Defense Pentagon, Washington, DC 20301- 1155.

Record source categories:

The military services, the Defense components, financial institutions, merchants, and cardholders.

Exemptions claimed for the system:

None.

DMDC 10

System name:

Defense Biometric Identification System (DBIDS)

System location:

Defense Manpower Data Center, 400 Gigling Road, Seaside, CA 93955- 6771. For a list of backup locations, contact the system manager.

Categories of individuals covered by the system:

Active duty, Reserve, and Guard personnel from the Armed Forces and their family members; retired Armed Forces personnel and their families; DoD and non-DoD employees and dependents, U.S. residents abroad, foreign nationals and corporate employees and dependents who have access to U.S. installations in the continental U.S. and overseas.

Categories of records in the system:

The system includes personal data to include name, grade, Social

Security Number, status, date and place of birth, weight, height, eye color, hair color, gender, passport number, country of citizenship, geographic and electronic home and work addresses and telephone numbers, marital status, fingerprints, photographs, iris scans, hand geometry template and identification card issue and expiration dates.

The system also includes vehicle information such as manufacturer, model year, color and vehicle type, vehicle identification number

(VIN), license plate type and number, decal number, current registration, automobile insurance data, and driver's license data. The system also contains data on government-issued and personal weapons such as type, serial number; manufacturer, caliber, firearm registration date, and storage location data to include unit, room, building, and phone number.

Authority for maintenance of the system: 5 U.S.C. 301 Departmental regulations; 10 U.S.C. 113, Secretary of

Defense, Note at Public Law 106-65; 10 U.S.C. 136, Under Secretary of

Defense for Personnel and Readiness; 18 U.S.C. 1029, Fraud and related activity in connection with access devices; 18 U.S.C. 1030, Fraud and related activity in connection with computers; 40 U.S.C. Chapter 25,

Information technology management; 50 U.S.C. Chapter 23, Internal

Security; Public Law 106-398, Government Information Security Act;

Public Law 100-235, Computer Security Act of 1987; Public Law 99-474,

Computer Fraud and Abuse Act; E.O. 12958, Classified National Security

Information as amended by E.O. 13142 and 13292; E.O. 10450, Security

Requirements for Government Employees; and E.O. 9397 (SSN).

Purpose(s):

To support DoD physical security and access control programs, the information assurance program, used for identity verification purposes, to record personal property registered with the Department, and for producing installation management reports.

Routine uses of records maintained in the system, including categories of users and the purpose of such uses:

In addition to those disclosures generally permitted under 5 U.S.C. 552a (b) of the Privacy Act, these records or information contained therein may specifically be disclosed outside the DoD as a routine use pursuant to 5 U.S.C. 552a(b)(3) as follows:

The DoD `Blanket Routine Uses' set forth at the beginning of the

OSD compilation of systems of records notices apply to this system.

Policies and practices for storing, retrieving, accessing and disposing of records in the system:

Storage:

Paper records in file folders and electronic storage media.

Retrievability:

Retrieved primarily by name, Social Security Number (SSN), vehicle identifiers, or weapon identification data. However, data may also be retrieved by other data elements such as passport number, photograph, fingerprint data, and similar elements in the database.

Safeguards:

Computerized records are maintained in a controlled area accessible only to authorized personnel. Entry is restricted by the use of locks, guards, and administrative procedures. Access to personal information is limited to those who require the records in the performance of their official duties, and to the individuals who are the subjects of the record or their authorized representatives. Access to personal information is further restricted by the use of unique logon and passwords, which are changed periodically.

Retention and disposal:

Disposition pending.

System manager(s) and address:

Director, Defense Manpower Data Center, 1600 Wilson Boulevard,

Suite 400, Arlington VA 22209-2593.

Deputy Director, Defense Manpower Data Center, DoD Center Monterey

Bay, 400 Gigling Road, Seaside, CA 93955-6771.

Page 9102

Notification procedure:

Individuals seeking to determine whether information about themselves is contained in this system should address written inquiries to the Privacy Act Officer, Office of Freedom of Information,

Washington Headquarters Services, 1155 Defense Pentagon, Washington, DC 20301-1155.

Written requests should contain the full name, Social Security

Number (SSN), date of birth, and current address and telephone number of the individual.

Record Access Procedures:

Individuals seeking access to information about themselves contained in this system should address written inquiries to the

Privacy Act Officer, Office of Freedom of Information, Washington

Headquarters Services, 1155 Defense Pentagon, Washington, DC 20301- 1155.

Written requests should contain the full name, Social Security

Number (SSN), date of birth, and current address and telephone number of the individual.

Contesting records procedures:

The OSD rules for accessing records, for contesting contents and appealing initial agency determinations are published in OSD

Administrative Instruction 81; 32 CFR part 311; or may be obtained from the Privacy Act Officer, Office of Freedom of Information, Washington

Headquarters Services, 1155 Defense Pentagon, Washington, DC 20301- 1155.

Record source categories:

Data is collected from existing DoD databases, the Military

Services, DoD Components, and from the individual.

Exemptions claimed for the system:

None.

FR Doc. E8-3019 Filed 2-15-08; 8:45 am

BILLING CODE 5001-06-P