09-25-0054 SYSTEMS LISTING

SYSTEM NAME:

Administration: Property Accounting (Card Key System), HHS/NIH/ORS.

SECURITY CLASSIFICATION:

None.

SYSTEM LOCATION:

NIH Computer Center, National Institutes of Health, Building 12A, Room 1011, 12 South Drive, Bethesda, MD 20892.

Office of Research Services, Building 13, Room 215, 13 South Drive, Bethesda, MD 20892-5758.

Facilities Engineering Branch, National Institute of Environmental Health Sciences (NIEHS), 102-01, P.O. Box 12233, Research Triangle Park, NC 27709.

CATEGORIES OF INDIVIDUALS COVERED BY THE SYSTEM:

Employees of the National Institutes of Health who are issued card keys.

CATEGORIES OF RECORDS IN THE SYSTEM:

Property management.

AUTHORITY FOR MAINTENANCE OF THE SYSTEM:

5 U.S.C. 301; 5 U.S.C. 5901; 5 U.S.C. 7903; 40 U.S.C. 318a; 42 U.S.C. 241.

PURPOSE(S):

Used for card keys issuance and control.

ROUTINE USES OF RECORDS MAINTAINED IN THE SYSTEM, INCLUDING CATEGORIES OF USERS AND THE PURPOSES OF SUCH USES:

  1. Disclosure may be made to a congressional office from the record of an individual in response to an inquiry from the congressional office made at the request of that individual.
  2. In the event that a system of records maintained by this agency to carry out its functions indicates a violation or potential violation of law, whether civil, criminal or regulatory in nature, and whether arising by general statute or particular program statute, or by regulation, rule or order issued pursuant thereto, the relevant records in the system of records may be referred, as a routine use, to the appropriate agency, whether Federal, or foreign, charged with the responsibility of investigating or prosecuting such violation or charged with enforcing or implementing the statute, or rule, regulation or order issued pursuant thereto
  3. In the event of litigation where the defendant is (a) the Department, any component of the Department, or any employee of the Department in his or her official capacity; (b) the United States where the Department determines that the claim, if successful, is likely to directly affect the operations of the Department or any of its components; or (c) any Department employee in his or her individual capacity where the Justice Department has agreed to represent such employee, the Department may disclose such records as it deems desirable or necessary to the Department of Justice to enable that Department to present an effective defense, provided that such disclosure is compatible with the purpose for which the records were collected.

POLICIES AND PRACTICES FOR STORING, RETRIEVING, ACCESSING, RETAINING, AND DISPOSING OF RECORDS IN THE SYSTEM:

STORAGE:

Records are stored in file folders, and on magnetic media.

RETRIEVABILITY:

Records are retrieved by name.

SAFEGUARDS:

  1. Authorized Users: Employees who maintain records in this system are instructed to grant regular access only to officials whose duties require use of the information. Other one-time and special access by other employees is granted on a need-to-know basis as specifically authorized by the system manager.
  2. Physical Safeguards: Textual records are stored in offices which are locked when not in use.
  3. Procedural Safeguards: Computer files are password protected.

These practices are in compliance with the standards of Chapter 45-13 of the HHS General Administration Manual, "Safeguarding Records Contained in Systems of Records," supplementary Chapter PHS hf: 45-13, and the HHS Automated Information Systems Security Program Handbook.

RETENTION AND DISPOSAL:

Records are retained and disposed of under the authority of the NIH Records Control Schedule contained in NIH Manual Chapter 1743, Appendix 1 - "Keeping and Destroying Records" (HHS Records Management Manual, Appendix B-361), item 1300-C-14, which allows records to be destroyed after all listed credentials are accounted for or three months after the return of credentials to the issuing office. Refer to the NIH Manual Chapter for specific instructions.

SYSTEM MANAGER(S) AND ADDRESS(ES):

Management Analyst, Division of Engineering Services, Office of Research Services (ORS), Building 3, Room 112, 3 Center Drive, Bethesda, MD 20892-0307.

Chief, Facilities Engineering Branch, National Institute of Environmental Health Sciences (NIEHS), 102-01, P.O. Box 12233, Research Triangle Park, NC 27709.

NOTIFICATION PROCEDURE:

Write to the System Manager to determine if a record exists. The requester must also verify his or her identity by providing either a notarization of the request or a written certification that the requester is who he or she claims to be and understands that the knowing and willful request for acquisition of a record pertaining to an individual under false pretenses is a criminal offense under the Act, subject to a five thousand dollar fine.

RECORD ACCESS PROCEDURE:

Same as Notification Procedures. Requesters should also reasonably specify the record contents being sought. Individuals may also request listings of accountable disclosures that have been made of their records, if any.

CONTESTING RECORD PROCEDURE:

Write to the official specified under Notification Procedures above, and reasonably identify the record and specify the information being contested, the corrective action sought, and your reasons for requesting the correction, along with supporting information to show how the record is inaccurate, incomplete, untimely or irrelevant. The right to contest records is limited to information which is incomplete, irrelevant, incorrect, or untimely (obsolete).

RECORD SOURCE CATEGORIES:

Data is obtained from the individual.

SYSTEMS EXEMPTED FROM CERTAIN PROVISIONS OF THE ACT:

None.