through (c). The relevant portions ofthese References are attached to this memorandum for your convenience.

Similar documents
PRIVACY IMPACT ASSESSMENT (PIA) For the

(Example: F011 AF AFMC A (Contractor Flight Operations))

Department of Defense DIRECTIVE

(Billing Code ) Defense Federal Acquisition Regulation Supplement: Defense. Contractors Performing Private Security Functions (DFARS Case

(Revised January 15, 2009) DISCLOSURE OF INFORMATION (DEC 1991)

AN ACT. SECTION 1. Title 4, Civil Practice and Remedies Code, is amended by CHAPTER 74A. LIMITATION OF LIABILITY RELATING TO HEALTH INFORMATION

SUBPART ORGANIZATIONAL AND CONSULTANT CONFLICTS OF INTEREST (Revised December 29, 2010)

RAYTHEON MISSILE SYSTEMS PURCHASE ORDER ATTACHMENT

The Arizona HIO Statute

(Billing Code ) Payment in Local Currency (Afghanistan) (DFARS Case 2013-D029) Regulation Supplement (DFARS) to incorporate into the DFARS

Defense Federal Acquisition Regulation Supplement: Amendments. Related to Sources of Electronic Parts (DFARS Case 2016-D013)

Department of Defense INSTRUCTION

REQUEST FOR QUALIFICATIONS FOR CONSTRUCTION MANAGER-AT-RISK

Department of Defense DIRECTIVE

OREGON ADMINISTRATIVE RULES DEPARTMENT OF HUMAN SERVICES, PUBLIC HEALTH DIVISION CHAPTER 333 DIVISION 270

CONVERSION OF CERTAIN FUNCTIONS FROM CONTRACTOR PERFORMANCE TO PERFORMANCE BY DEPARTMENT OF DEFENSE CIVILIAN EMPLOYEES (SEC. 938)

Grants Management Scenarios

Department of Defense INSTRUCTION

TWENTY BASIC RULES FOR PERSONNEL LEAVING THE ARMY RESTRICTIONS ON SEEKING EMPLOYMENT (BEFORE YOU LEAVE)

ALABAMA WORKFORCE INVESTMENT SYSTEM

Child Care Benefit (Eligibility of Child Care Services for Approval and Continued Approval) Determination 2000

POLICY: Effective for all solicitations issued after 21 June 2010 and in resultant contracts, except for acquisitions-.

SUBPART ACQUISITIONS IN SUPPORT OF OPERATIONS IN IRAQ OR AFGHANISTAN (Added September 15, 2008)

COMPLIANCE WITH THIS PUBLICATION IS MANDATORY

Department of Defense INSTRUCTION

(Billing Code ) Defense Federal Acquisition Regulation Supplement: Defense. Contractors Performing Private Security Functions (DFARS Case

States that Allow Prescribers and/or Dispensers to Appoint a Delegate to Access the PMP

DOD R, The Joint Ethics Regulation (JER), including Changes 1-7.

Open DFARS Cases as of 5/10/2018 2:29:59PM

Department of Defense INSTRUCTION. Reduction of Use of Social Security Numbers (SSNs) in the Department of Defense

NATIONAL ASSOCIATION FOR STATE CONTROLLED SUBSTANCES AUTHORITIES (NASCSA) MODEL PRESCRIPTION MONITORING PROGRAM (PMP) ACT (2016) COMMENT

Department of Defense INSTRUCTION

42 USC 1395i-3. NB: This unofficial compilation of the U.S. Code is current as of Jan. 4, 2012 (see

Department of Defense MANUAL

Open DFARS Cases as of 12/22/2017 3:45:53PM

Department of Defense DIRECTIVE

PRELIMINARY PLANNING AND DURATION OF PUBLIC-PRIVATE COMPETITIONS (SEC. 937)

Department of Defense DIRECTIVE. SUBJECT: Release of Official Information in Litigation and Testimony by DoD Personnel as Witnesses

COMPLIANCE WITH THIS PUBLICATION IS MANDATORY

I. Disclosure Requirements for Financial Relationships Between Hospitals and Physicians

Open FAR Cases as of 2/9/ :56:25AM

Department of Defense INSTRUCTION

TITLE 47: HOUSING AND COMMUNITY DEVELOPMENT CHAPTER II: ILLINOIS HOUSING DEVELOPMENT AUTHORITY PART 385 FORECLOSURE PREVENTION PROGRAM

DISCIPLINE COMMITTEE OF THE COLLEGE OF PHYSICIANS AND SURGEONS OF ONTARIO COLLEGE OF PHYSICIANS AND SURGEONS OF ONTARIO. - and -

ANNUAL CERTIFICATION BY PUBLIC FINANCIAL DISCLOSURE FILERS

NG-J2 CNGBI A CH 1 DISTRIBUTION: A 07 November 2013

Types of Authorized Recipients Probation/Parole Officers or the Department of Corrections

(c) DoD Instruction of 11 March 2014 (d) SECNAVINST D (e) CNO WASHINGTON DC Z Apr 11 (NAVADMIN 124/11)

42 USC 254e. NB: This unofficial compilation of the U.S. Code is current as of Jan. 4, 2012 (see

ANNUAL POST-EMPLOYMENT CERTIFICATION & NOTIFICATION TO SENIOR OFFICIALS OF POST-GOVERNMENT EMPLOYMENT RESTRICTIONS UNDER 18 U.S.C.

Center for Medicaid, CHIP, and Survey & Certification/Survey & Certification Group

DoD R, December 1982

Department of Defense INSTRUCTION. Disclosure of Atomic Information to Foreign Governments and Regional Defense Organizations

IN THE COUNCIL OF THE DISTRICT OF COLUMBIA

LOS BANOS POLICE DEPARTMENT VITAL APPLICATION PACKET TH Street Los Banos, CA Telephone (209) Fax (209)

TECHNIQUES, AND PROCEDURES, AND OF MILITARY RULES OF ENGAGEMENT, FROM RELEASE UNDER FREEDOM OF

Department of Defense DIRECTIVE. SUBJECT: DoD Domestic Technology Transfer (T2) Program

States that Allow Prescribers and/or Dispensers to Appoint a Delegate to Access the PMP

UNITED STATES MARINE CORPS HEADQUARTERS UNITED STATES MARINE CORPS 3000 MARINE CORPS PENTAGON WASHINGTON, DC

Religious Ministry Support REFERENCE / AUTHORITYSOURCE DOCUMENT Information Sheet

HIPAA in DPH. HIPAA in the Division of Public Health. February 19, February 19, 2003 Division of Public Health 1

Arizona Revised Statutes Annotated _Title 36. Public Health and Safety_Chapter 7.1. Child Care Programs_Article 1.

DOD INSTRUCTION REGISTERED SEX OFFENDER (RSO) MANAGEMENT IN DOD

Kansas Department for Aging and Disability Services

UNDER SECRETARY OF DEFENSE 4000 DEFENSE PENTAGON WASHINGTON, D.C

Department of Defense INSTRUCTION

PROTECTING CONTROLLED UNCLASSIFIED INFORMATION (CUI)

Export-Controlled Technology at Contractor, University, and Federally Funded Research and Development Center Facilities (D )

Department of Defense INSTRUCTION

Department of Defense INSTRUCTION

(Billing Code ) Defense Federal Acquisition Regulation Supplement: Costs. Related to Counterfeit Electronic Parts (DFARS Case 2016-D010)

Prescription Monitoring Program State Profiles - Pennsylvania

PART 21-DoD GRANTS AND AGREEMENTS--GENERAL MATTERS. Subpart A-Defense Grant and Agreement Regulatory System

DEPUTY SECRETARY OF DEFENSE 1010 DEFENSE PENTAGON WASHINGTON DC

MANITOBA GOVERNMENT INVENTORY OF PERSONAL INFORMATION SYSTEMS WORKSHEET. Here are a few important pointers to help you fill out the Worksheet:

- Thank you for participating in the viewing of the Texas General Land Office s Community Development and Revitalization Program s, or GLO-CDR video

COMPLIANCE WITH THIS PUBLICATION IS MANDATORY

APPENDIX N. GENERIC DOCUMENT TEMPLATE, DISTRIBUTION STATEMENTS AND DOCUMENT DATA SHEET and THE IMPORTANCE OF MARKING DOCUMENTS

Department of Defense INSTRUCTION. SUBJECT: DoD Contractor's Safety Requirements for Ammunition and Explosives

Chapter 19 Section 3. Privacy And Security Of Protected Health Information (PHI)

PROGRAM PARTICIPATION AGREEMENT

REQUEST FOR PROPOSALS (RFP) # Revised from Management Software for Childcare Services

CODE OF PRACTICE 2016

MCMR-AAP-A 22 August 2012

Department of Defense

SENATE, No STATE OF NEW JERSEY. 216th LEGISLATURE INTRODUCED APRIL 28, 2014

Department of Defense INSTRUCTION

Commercial Solutions Opening (CSO) Office of the Secretary of Defense Defense Innovation Unit (Experimental)

! C January 22, 19859

Prescription Monitoring Program State Profiles - Texas

Department of Defense INSTRUCTION

PRIVACY IMPACT ASSESSMENT (PIA) For the

DOD INSTRUCTION PUBLIC AFFAIRS RELATIONS WITH FOR-PROFIT BUSINESSES

SUMMARY FOR CONFORMING CHANGE #1 TO DoDM , National Industrial Security Program Operating Manual (NISPOM)

A Bill Regular Session, 2017 HOUSE BILL 1628

SENATE, No STATE OF NEW JERSEY. 218th LEGISLATURE INTRODUCED MARCH 12, 2018

D E P A R T M E N T O F T H E N A V Y

Withholding of Unclassified Technical Data and Technology from Public Disclosure

Prescription Monitoring Program State Profiles - California

DEPARTMENT OF THE NAVY OFFICE OF THE CHIEF OF NAVAL OPERATIONS 2000 NAVY PENTAGON WASHINGTON, D,C,

Transcription:

through (c). The relevant portions ofthese References are attached to this memorandum for your convenience. Possible further action to address DoD contractor compliance with the at1ached References will be initiated between the Defense Acquisition Regulation Council and the Defense Privacy and Civil Liberties Division (DPCLD) and, as necessary, will be communicated separately to the DoD Components. Questions regarding this memorandum should be directed to Samuel P. Jenkins, Acting Chief, DPCLD at osd.ncr.odam.mbx.dpclo-correspondence@mail.mil, or at (703) 571-0070. Attachment: As stated cc: ODCMO Directorates David Tillotson lii Senior Agency Official for Privacy 2

ATTACHMENT Reference (a) -The Privacy Act, Section 552a of Title 5, United States Code (m) (I) Government Contractors.- When an agency provides by a contract for the operation by or on behalf of the agency of a system of records to accomplish an agency function, the agency shall, consistent with its authority, cause the requirements of this section to be applied to such system. For purposes of subsection (i) of this section any such contractor and any employee of such contractor, if such contract is agreed to on or after the effective date of this section, shall be considered to be an employee of an agency. (2) A consumer reporting agency to which a record is disclosed under section 3711 (e) of ti tie 31 shall not be considered a contractor for the purposes of this section. Reference (b)- Federal Acquisition Regulation, Subpart 24.1-Protection of Individual Privacy 24.1 0 I Definitions. As used in this subpart- "Agency" means any executive department, military department, Government corporation, Government controlled corporation, or other establishment in the executive branch of the Government (including the Executive Office of the President), or any independent regulatory agency. "Individual" means a citizen of the United States or an alien lawfully admitted for permanent residence. "Maintain" means maintain, collect, use, or disseminate. "Operation of a system of records" means performance of any of the activities associated with maintaining the system of records, including the collection, use, and dissemination of records. "Record" means any item, collection, or grouping of information about an individual that is maintained by an agency, including, but not limited to, education, financial transactions, medical history, and criminal or employment history, and that contains the individual's name, or the identifying number, symbol, or other identifying particular assigned to the individual, such as a fingerprint or voiceprint or a photograph. "System of records on individuals" means a group of any records under the control of any agency from which information is retrieved by the name of the 1

24.102 General. individual or by some identifying number, symbol, or other identifying particular assigned to the individual. (a) The Act requires that when an agency contracts for the design, development, or operation of a system of records on individuals on behalf of the agency to accomplish an agency function the agency must apply the requirements of the Act to the contractor and its employees working on the contract. (b) An agency officer or employee may be criminally liable for violations of the Act. When the contract provides for operation of a system of records on individuals, contractors and their employees are considered employees of the agency for purposes of the criminal penalties of the Act. (c) If a contract specifically provides for the design, development, or operation of a system of records on individuals on behalf of an agency to accomplish an agency function, the agency must apply the requirements of the Act to the contractor and its employees working on the contract. The system of records operated under the contract is deemed to be maintained by the agency and is subj ect to the Act. (d) Agencies, which within the limits of their authorities, fail to require that systems of records on individuals operated on their behalf under contracts be operated in conformance with the Act may be civilly liable to individuals injured as a consequence of any subsequent failure to maintain records in conformance with the Act. 24.103 Procedures. (a) The contracting officer shall review requirements to determine whether the contract will involve the design, development, or operation of a system of records on individuals to accomplish an agency function. (b) If one or more of those tasks will be required, the contracting officer shall- ( 1) Ensure that the contract work statement specifically identifies the system of records on individuals and the design, development, or operation work to be performed; and (2) Make available, in accordance with agency procedures, agency rules and regulation implementing the Act. 24. 104 Contract clauses. When the design, development, or operation of a system of records on individuals is required to accomplish an agency function, the contracting officer shall insert the following clauses in solicitations and contracts: 2

(a) The clause at 52.224-1, Privacy Act Notification. (b) The clause at 52.224-2, Privacy Act. Reference (c)- Federal Acquisition Regulation, Subpart 52.2-Text ofprovisions and Clauses 52.224-1 Privacy Act Notification. As prescribed in 24.104, insert the following clause in solicitations and contracts, when the design, development, or operation of a system of records on individuals is required to accomplish an agency function: Privacy Act Notification (Apr 1984) The Contractor will be required to design, develop, or operate a system of records on individuals, to accomplish an agency function subject to the Privacy Act of 1974, Public Law 93-579, December 31, 1974 (5 U.S.C. 552a) and applicable agency regulations. Violation of the Act may involve the imposition of criminal penalties. 52.224-2 Privacy Act. (End of clause) As prescribed in 24.104, insert the following clause in solicitations and contracts, when the design, development, or operation of a system of records on individuals is required to accomplish an agency function: (a) The Contractor agrees to- Privacy Act (Apr 1984) ( l) Comply with the Privacy Act of 1974 (the Act) and the agency rules and regulations issued under the Act in the design, development, or operation of any system of records on individuals to accomplish an agency function when the contract specifically identifies- (i) The systems of records; and (ii) The design, development, or operation work that the contractor is to perform; (2) Include the Privacy Act notification contained in this contract in every solicitation and resulting subcontract and in every subcontract awarded without a solicitation, when the work statement in the proposed subcontract requires the redesign, 3

development, or operation of a system of records on individuals that is subject to the Act; and (3) Include this clause, including this paragraph (3), in all subcontracts awarded under this contract which requires the design, development, or operation of such a system of records. (b) In the event of violations of the Act, a civil action may be brought against the agency involved when the violation concerns the design, development, or operation of a system of records on individuals to accomplish an agency function, and criminal penalties may be imposed upon the officers or employees of the agency when the violation concerns the operation of a system of records on individuals to accomplish an agency function. For purposes of the Act, when the contract is for the operation of a system of records on individuals to accomplish an agency function, the Contractor is considered to be an employee of the agency. (1) "Operation of a system of records," as used in this clause, means performance of any of the activities associated with maintaining the system of records, including the collection, use, and dissemination of records. (2) "Record," as used in this clause, means any item, collection, or grouping of information about an individual that is maintained by an agency, including, but not limited to, education, financial transactions, medical history, and criminal or employment history and that contains the person's name, or the identifying number, symbol, or other identifying particular assigned to the individual, such as a fingerprint or voiceprint or a photograph. (3) "System of records on individuals," as used in this clause, means a group of any records under the control of any agency from which information is retrieved by the name of the individual or by some identifying number, symbol, or other identifying particular assigned to the individual. (End of clause) DoD 5400.11-R, "Department Of Defense Privacy Program," Subchapter 1.3- Government Contractors C 1.3.1. Applicability to Government Contractors C 1.3.1.1. When a DoD Component contract requires the operation or maintenance of a system of records or a portion of a system of records or requires the performance of any activities associated with maintaining a system of records, including the collection, use, and dissemination of records, the record system or the portion of the record system affected are considered to be maintained by the DoD Component and are subject to this Regulation. The Component is responsible for applying the 4

requirements of this Regulation to the contractor. The contractor and its employees are to be considered employees of the DoD Component for the purposes of the criminal provisions of Reference (b) during the performance of the contract. Consistent with subpart 24. 1 of the Federal Acquisition Regulation (Reference G)), contracts requiring the maintenance or operation of a system of records or the portion of a system of records shall include in the solicitation and resulting contract such terms as are prescribed by Reference G). Cl.3. 1.2. If the contractor must use, have access to, or disseminate individually identifiable information subject to this Regulation in order to perform any part of a contract, and the information would have been collected, maintained, used, or disseminated by the DoD Component but for the award of the contract, these contractor activities are subject to this Regulation. Cl.3.1.3. The restriction in subparagraphs C l.3.1.1 and C 1.3.1.2 of this Chapter do not apply to records: Cl.3.1.3.1. Established and maintained to assist in making internal contractor management decisions, such as records maintained by the contractor for use in managing the contract; Cl.3.1.3.2. Maintained as internal contractor employee records even when used in conjunction with providing goods and services to the Department of Defense; Cl.3.1.3.3. Maintained as training records by an educational organization contracted by a DoD Component to provide training when the records of the contract students are similar to and commingled with training records of other students (for example, admission forms, transcripts, academic counseling and similar records); Cl.3.1.3.4. Maintained by a consumer reporting agency to which records have been disclosed under contract in accordance with section 3711(e) of 31 U.S.C., the Federal Claims Collection Act of 1966, (Reference (k)); or Cl.3.1.3.5. Maintained by the contractor incident to normal business practices and operations. Cl.3.l.4. The DoD Components shall publish instructions that: Cl.3. 1.4.1. Furnish DoD Privacy Program guidance to their personnel who solicit, award, or administer Government contracts; C 1.3.1.4.2. Inform prospective contractors of their responsibilities, and provide training, as appropriate, regarding the DoD Privacy Program; and 5

C 1.3.1.4.3. Establish an internal system of contractor performance review to ensure compliance with the DoD Privacy Program. Cl.3.2. Contracting Procedures. The Defense Acquisition Regulations Council is responsible for developing the specific policies and procedures to be fo llowed when soliciting bids, awarding contracts or administering contracts that are subject to this Regulation. C1.3.3. Contractor Compliance. Through the various contract surveillance programs, ensure contractors com pi y with the procedures established in accordance with paragraph C 1.3.2 of this Chapter. Cl.3.4. Disclosure of Records to Contractors. Disclosure of records contained in a system of records by a DoD Component to a contractor for use in the performance of a DoD contract is considered a disclosure within the Department of Defense. See paragraph C4.1.2 of Chapter 4. The contractor is considered the agent of the contracting DoD Component and to be maintaining and receiving the records for that Component. 6

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback