Federal Register - January 25, 2021
Versione di testo Cosa è?Dateas è un sito indipendente non affiliato a entità governative. La fonte dei documenti PDF che pubblichiamo qui è l'entità governativa indicata in ciascuno di essi. Le versioni in testo sono trascrizioni che realizziamo per facilitare l'accesso e la ricerca di informazioni, ma possono contenere errori o non essere complete.
Source: Federal Register
7000
Federal Register / Vol. 86, No. 14 / Monday, January 25, 2021 / Notices
review and/or peer review organizations in connection with the audit of claims or other review activities to determine quality of care or compliance with professionally accepted claims processing standards.
DISCLOSURE TO CONSUMER REPORTING
AGENCIES:
Pursuant to 5 U.S.C. 552ab12, VA
may disclose records from this system to consumer reporting agencies as defined in the Fair Credit Reporting Act 15
U.S.C. 1681af or the Federal Claims Collection Act of 1966 31 U.S.C.
3701a3.
POLICIES AND PRACTICES FOR STORAGE OF
RECORDS:
Records are maintained on paper or electronic media. Records within this system is also hosted in Amazon Web Services AWS Government Cloud GovCloud infrastructure as a service cloud-computing environment that has been authorized at the high-impact level under the Federal Risk and Authorization Management Program FedRAMP.
POLICIES AND PRACTICES FOR RETRIEVAL OF
RECORDS:
Records are retrieved by name, Social Security number or other assigned identifier of the individuals on whom they are maintained, or by specific bill number assigned to the claim of the individuals on whom they are maintained.
POLICIES AND PRACTICES FOR RETENTION AND
DISPOSAL OF RECORDS:
Follow the requirement of RCS 101
Chapter 4 Item 4000.1 a & b. 4000.1
Financial transaction records related to procuring goods and services, paying bills, collecting debts, and accounting.
a. Official record held in the office of record.
Temporary; destroy six 6 years after final payment or cancellation, but longer retention is authorized if required for business use. GRS 1.1, Item 010 DAAGRS201600010002
b. All Other copies Temporary; destroy or delete when six 6 years old, but longer retention is authorized if required for business use.
GRS 1.1 item 013 DAAGRS2016
00010002
jbell on DSKJLSW7X2PROD with NOTICES
ADMINISTRATIVE, TECHNICAL, AND PHYSICAL
SAFEGUARDS:
1. Access to VA working and storage areas is restricted to VA employees on a need-to-know basis; strict control
VerDate Sep<11>2014
18:31 Jan 22, 2021
Jkt 253001
measures are enforced to ensure that disclosure to these individuals is also based on this same principle. Generally, VA file areas are locked after normal duty hours and the facilities are protected from outside access by the Federal Protective Service or other security personnel.
2. Information in VistA may only be accessed by authorized VA personnel.
Access to file information is controlled at two levels. The systems recognize authorized personnel by series of individually unique passwords/codes as a part of each data message, and personnel are limited to only that information in the file, which is needed in the performance of their official duties. Information that is downloaded from VistA and maintained on personal computers is afforded similar storage and access protections as the data that is maintained in the original files.
Access to information stored on automated storage media at other VA
locations is controlled by individually unique passwords/codes. Access by Office of Inspector General OIG staff conducting an audit, investigation, or inspection at the health care facility, or an OIG office location remote from the health care facility, is controlled in the same manner.
3. Information downloaded from VistA and maintained by the OIG
headquarters and Field Offices on automated storage media is secured in storage areas for facilities to which only OIG staff have access. Paper documents are similarly secured. Access to paper documents and information on automated storage media is limited to OIG employees who have a need for the information in the performance of their official duties. Access to information stored on automated storage media is controlled by individually unique passwords/codes.
4. Access to the VA Austin Information Technology Center AITC
is generally restricted to AITC
employees, custodial personnel, Federal Protective Service and other security personnel. Access to computer rooms is restricted to authorized operational personnel through electronic locking devices. All other persons gaining access to computer rooms are escorted.
Information stored in the AITC
databases may be accessed.
5. Access to records maintained at the VA Allocation Resource Center and the VISN Offices is restricted to VA
employees who have a need for the
PO 00000
Frm 00139
Fmt 4703
Sfmt 9990
information in the performance of their official duties. Access to information stored in electronic format is controlled by individually unique passwords/
codes. Records are maintained in manned rooms during working hours.
The facilities are protected from outside access during non-working hours by the Federal Protective Service or other security personnel.
6. Access to Cerner Technology Centers is generally restricted to Cerner employees, contractors or associates with a Cerner issued ID badge and other security personnel cleared for access to the data center. Access to computer rooms housing Federal data, hence Federal enclave, is restricted to persons Federally cleared for Federal enclave access through electronic badge entry devices. All other persons, such as custodians, gaining access to Federal enclave are escorted.
RECORD ACCESS PROCEDURE:
Individuals seeking information regarding access to and contesting of records in this system may write, call or visit the VA facility location where they were treated.
CONTESTING RECORD PROCEDURES:
See Record Access Procedures above.
NOTIFICATION PROCEDURE:
An individual who wishes to determine whether a record is being maintained in this system under his or her name or other personal identifier, or wants to determine the contents of such record, should submit a written request or apply in person to the last VA health care facility where care was rendered.
Addresses of VA health care facilities may be found in VA Appendix 1 of the biennial publication of VA Privacy Act Issuances. All inquiries must reasonably identify the place and approximate date that medical care was provided.
Inquiries should include the patients full name, Social Security number, insurance company information, policyholder and policy identification number as well as a return address.
EXEMPTIONS PROMULGATED FOR THE SYSTEM:
None.
HISTORY:
Last full publication provided in 83
FR 11303.
FR Doc. 202101541 Filed 12221; 8:45 am BILLING CODE 832001P
E:FRFM25JAN1.SGM
25JAN1
