Introduction
The site, https://secure.rrb.gov/employer, is an official United States
Government site intended for use by employers covered under the Railroad
Retirement and Railroad Unemployment Insurance Acts in filing service and
compensation reports with the Railroad Retirement Board and related activities.
The site is referred to as the Employer Reporting System (ERS.) The Railroad
Retirement Board (RRB) is taking all reasonable measures to ensure the security
of the information sent and received via the ERS site.
Transmission security
RRB.gov/employer utilizes a secure transmission protocol (Secure Sockets
Layer - SSL) to provide encryption protection for the communication between your
computer and the server that RRB uses for the Employer Reporting Internet site.
You will note that the address to the site begins "https" rather than "http."
This indicates you are connecting to a secure site using Secure Sockets Layer.
Authentication of user
The RRB uses a paper application form to ensure that only authorized users have
access to the system. The application is signed by an authorized representative
of the employer and reviewed by the RRB. Once authorized, future authentication
is controlled by a logon and password. A logon, if used to file forms, has the
same status as a signature on a paper document.
Password security
It is the responsibility of each individual to keep secure the password supplied
for the purpose of accessing the RRB employer site. In applying for access, you
agree not to share your password and to log onto the system only as yourself.
All individuals requiring access to the system should apply for their own
access. Users are responsible for all use of their password accounts. The system
will prompt you to change your password every 60 days. If you do not access the
system that often, you will be prompted to change your password upon accessing
the system but in no case will passwords remain active longer than 200 days.
Secure your PC
It is the responsibility of each individual to secure their personal computers.
When you step away from your computer, it is important to lock or turn off your
PC so that unauthorized persons cannot use your computer to masquerade as you
and gain illegal access.
Password lockout
If you type your password incorrectly more than three times, you will be
temporarily locked out of the ERS system. If you are locked out, or you suspect
that your password may have been compromised, contact the password administrator
at (312)751-3307.
Password termination
When an employee who has access to this system, leaves your company, notify the
RRB to terminate their access by completing
Form BA-12
. Mail the form according
to the instructions or fax to (312)751-7190. If you suspect that an employee is,
or may become, a security problem, immediately call the password administrator
or the QRSC at (312)751-4992. The RRB has the capability to lock out users on a
temporary or permanent basis.
Session timeout
For security reasons, a session will not remain open indefinitely. Twenty
minutes of inactivity will result in an open session being deleted. Any data
entered to a screen but not "updated" or "approved" depending on the options for
that screen, will be lost when a session is deleted.
Privacy and law enforcement investigations
The RRB is committed to protecting privacy. Any personal information you provide
as part of the application process will be used only for the purposes described.
Your logon and password control confidentiality of employer data by making
available only information you are authorized to receive. System administrators
will not read files unless absolutely necessary in the course of their duties,
and will treat the contents of those files as private information at all times.
The ERS system maintains statistical information concerning network traffic flow
and volume including date, time, Internet protocol, type of browser and
operating system. We do not collect personal information about you just because
you visit the site. An attempt to identify individual users will be made if, and
only if, illegal behavior is suspected.
For site security purposes, we have software that can identify users. If illegal
behavior is suspected, this software could be used to:
- trace the source of an attack designed to disrupt the site,
- trace the source of an unauthorized attempt to modify information stored
on this system, or
- prove whether fraud has occurred in connection with a law enforcement
investigation.
Use of this system constitutes consent to such tracing and auditing.
Unauthorized or fraudulent use
Any person who knowingly and willingly:
- makes any representation that is false
- to obtain information from RRB records and/or,
- intended to deceive the RRB as to the true identity of an individual; or
- obtains unauthorized access and/or modifies information on this site,
could be punishable by a fine or imprisonment, or both.
Cookies
This site uses temporary session "cookies" to give you a single, uninterrupted
session when you are online. This allows you to move from one secure section to
another without having to re-enter your logon and password. We do not use
persistent "cookies" which are permanent files placed on a visitor's site to
allow a Web site to monitor a visitor's use of the site. To the extent we use
any cookies; they expire and are immediately deleted no later than the closing
of the Web browser.
|