Je veux savoir à propos de…

khammond on DSKJM1Z7X2PROD with NOTICES

48978

Federal Register / Vol. 86, No. 167 / Wednesday, September 1, 2021 / Notices
provided restricted access to the application. Level 2 users have managed access within the application.
The NDL system accomplishes this functionality by requiring that a specific role be assigned to each user.
Sponsoring organizations have eAuthentication level 1 clearance allowing them to view individuals names, other legal names, state, termination date, disqualified status, whether a debt is owed, and pending status. For institutions, they may view institutions names and previous names, full address, termination date, disqualified status, whether a debt is owed, and pending status.
State agency and FNS users have eAuthentication level 2 clearance, which allows them to view the information listed above, in addition to date of birth and individuals full addresses.
Currently, all States and four territories have access to the NDL with eAuthentication level 2 clearance. Once identified, the system uses the existing functionality within the FNS General Support System platform to selectively control permissions by role. As mentioned, controls for eAuthentication level 1 users include restricting information view privileges by removing dates of birth and individuals full addresses from view. eAuthentication level 2 can view all the data.
NDL Application software roles: Users with eAuthentication level 2 credentials are assigned roles which determine the level of access they have within NDL.
Server to Server and Client to/from Server communications encryption:
Secure Socket Layer SSL with 128-bit encryption has been applied to all the application servers, which are only available through FNS Intranet connection. In addition, all communications between servers will be encrypted.
Vulnerabilities and anti-virus: Known vulnerabilities are regularly identified and resolved. Many tools, such as Tenable and Splunk are used scan resources. The sources for these scan services include vendors and the National Vulnerability Database.
Industry best practices are followed to resolution. Users on client machines do not have local administrative rights, which maintain low vulnerability. Users have the ability to intentionally or accidentally download and install malicious code. This risk is mitigated using a multi-layered approach. First, anti-virus applications are deployed to all client machines and virus definitions are automatically updated daily using a centrally managed update server.
Second, all systems are monitored and
VerDate Sep<11>2014

17:09 Aug 31, 2021

Jkt 253001

randomly inspected for unauthorized software. DISC EDC employs Retina for daily scans of VMs and configured environments to identify vulnerabilities and alert appropriate personnel.
RECORD ACCESS PROCEDURES:

Individuals seeking notification of and access to any record contained in this system of records, or seeking to contest its content, may submit a request in writing to the Headquarters or components FOIA Officer, whose contact information can be found at https www.dm.usda.gov/foia/poc.htm.
If an individual believes more than one component maintains Privacy Act records concerning him or her, the individual may submit the request to the Chief FOIA Officer, Department of Agriculture, 1400 Independence Avenue SW, Washington, DC 20250.
The request should include a daytime phone number and email. Provide as much information as possible about the subject matter of the records you are requesting. This will help facilitate the search process.
When seeking records about yourself from this NDL system of records, or any other Departmental system of records, your request must conform with the Privacy Act regulations set forth in 7
CFR 1.112 Procedures for requests pertaining to individual records in a record system. You must submit a written request in accordance with the instructions set forth in the system of records.
Provide your full name, date, name of system of records, and either 1 have your signature witnessed by a notary; or 2 include the following statement immediately above the signature on your request letter: I declare under penalty of perjury that the foregoing is true and correct. Executed on date.
Requests that do not contain the required declaration will be processed under the Freedom of Information Act FOIA, and, if records are found, you may not receive as much information, including information about you. If additional information is required to fulfill a Privacy Act request, you will be notified.
When the request is for one of access, the request should include the full name of the individual making the request, the name of the system of records, and a statement of whether the requester desires to make a personal inspection of the records or to be supplied with copies by mail or email.
In accordance with 7 CFR 1.113, prior to inspection of the records, the requester shall present sufficient identification e.g., drivers license, employee identification card, social
PO 00000

Frm 00007

Fmt 4703

Sfmt 4703

security card, credit cards to establish that the requester is the individual to whom the records pertain. No identification shall be required, however, if the records are required by 5 U.S.C. 552 to be released. If FNS
determines to grant the requested access, fees may be charged in accordance with 1.120 before making the necessary copies. In place of a notarization, your signature may be submitted under 28 U.S.C. 1746, a law that permits statements to be made under penalty of perjury as a substitute for notarization.
CONTESTING RECORD PROCEDURES:

Individuals seeking to contest or amend records maintained in this system of records must direct their request to the address indicated in the RECORD ACCESS PROCEDURES
paragraph, above and must follow the procedures set forth in 7 CFR part 1, subpart G, 1.116 Request for correction or amendment to record. All requests must state clearly and concisely what record is being contested, the reasons for contesting it, and the proposed amendment to the record. A determination whether a record may be amended will be made within 10 days of its receipt.
NOTIFICATION PROCEDURES:

Individuals may be notified if a record in this system of records pertains to them when the individuals request information utilizing the same procedures as those identified in the RECORD ACCESS PROCEDURES
paragraph, above.
EXEMPTIONS PROMULGATED FOR THE SYSTEM:

None.
HISTORY:

https www.federalregister.gov/
documents/2004/02/12/04-3116/
privacy-act-proposed-new-system-ofrecords.
Cynthia Long, Acting Administrator, Food and Nutrition Service.
FR Doc. 202118808 Filed 83121; 8:45 am BILLING CODE 341030P

DEPARTMENT OF AGRICULTURE
Foreign Agricultural Service WTO Agricultural Quantity-Based Safeguard Trigger Levels Foreign Agricultural Service, U.S. Department of Agriculture.
ACTION: Notice of product coverage and trigger levels for safeguard measures provided for in the World Trade AGENCY:

E:FRFM01SEN1.SGM

01SEN1