Collection and Maintenance of Data in the System. CDC will collect only the minimum amount of personal data necessary to achieve the purpose of this system, which is to maintain records on the conduct of quarantinerelated activities that fulfill HHS's and CDC's statutory authority under Sections 311 and 361368 of the Public Health Service Act: To prevent the introduction, transmission and spread of serious communicable diseases from persons who arrive into the United States from foreign countries or are engaged in interstate or international movement. To effectively do contact tracing investigations and notifications of passengers and crew when known or suspected exposures of serious communicable diseases occur on board of conveyance, individually identified data, such as name of traveler, country of residence, address and phone at
[[Page 70869]]
which they can be contacted, travel documents (e.g., passport), and seat number must be obtained. CDC collects only the minimal amount of information needed to perform contact tracing and other followup activities.
II. Agency Policies, Procedures, and Restrictions on the Routine Use

The Privacy Act permits CDC to disclose information without an individual's consent if the information is to be used for a purpose that is compatible with the purpose(s) for which the information was collected. Any such compatible disclosure of data is known as a ``routine use.'' The government will only release quarantine and travelerrelated information that can be associated with an individual as provided for under ``Section III. Proposed Routine Use Disclosures of Data in the System,'' collecting only the minimum personal data necessary to achieve the purpose of this system.

CDC has the following policies and procedures concerning disclosures of information that will be maintained in the system. Disclosure of information from the SOR will be approved only to the extent necessary to accomplish the purpose of the disclosure and only after CDC:

A. Determines that:

1. The use or disclosure is consistent with the reason that the data are being collected, e.g., to maintain records on the conduct of quarantine and travelerrelated activities that fulfill HHS's and CDC's statutory authority to prevent the introduction, transmission and spread of communicable diseases.

2. The purpose for which the disclosure is to be made can only be accomplished if the record is provided in individually identifiable form;

3. The purpose for which the disclosure is to be made is of sufficient importance to warrant the effect on and/or risk to the privacy of the individual that additional exposure of the record might bring;

4. There is a strong probability that the proposed use of the data would in fact accomplish the stated purpose(s); and

5. The data are valid and reliable.

B. Requires the information recipient to:

1. Establish administrative, technical, and physical safeguards to prevent unauthorized use of disclosure of the record;

2. Remove or destroy at the earliest time all identifiable information; and

3. Agree not to use or disclose the information for any purpose other than the stated purpose under which the information was disclosed.
III. Proposed Routine Use Disclosures of Data in the System

The Privacy Act permits CDC to disclose information without an individual's consent if the information is to be used for a purpose that is compatible with the purpose(s) for which the information was collected and CDC complies with administrative requirements including publishing a notice in the Federal Register and allowing 30 days for public comment regarding any such new ``routine use.'' The proposed routine uses in this system meet the compatibility requirement of the Privacy Act. CDC is proposing to establish the following routine use disclosures of information maintained in the system:

A. Records may be disclosed to contractors who will perform many of the same duties as Full Time Equivalents (FTEs) within DGMQ in situations where additional staff are required. Contractors are required to maintain Privacy Act safeguards with respect to such records. These functions may include collating, analyzing, aggregating, or otherwise refining records. DGMQ contracts out certain functions when doing so would contribute to efficient and effective operations of the agency. DGMQ must be able to give a contractor the information necessary for the contractor to fulfill their duties. Safeguards are provided in the contract prohibiting the contractor from using or disclosing the information for any purpose other than that described in the Statement of Work and requires the contractor to return or destroy all information at the contract's completion.

B. Records may be disclosed to state and local health departments and cooperating public health or medical authorities and their counsel to more effectively deal with outbreaks and conditions of public health significance. CDC works closely with state and local health partners to investigate possible outbreaks or other conditions of public health significance. CDC's ability to share information could prove beneficial to the health department's investigation.

C. Personal information from this system may be disclosed as a routine use to appropriate conveyance personnel, Federal agencies, state and local health departments, Department of State and embassy personnel (U.S. and foreign), and health authorities in foreign countries. These agencies and departments (U.S. and foreign) need the information to perform contact tracing investigations and to notify individuals exposed to an ill traveler that they were possibly exposed to a disease or condition of public health significance. This is compatible with the overall purpose of the systemto prevent the spread of communicable diseases.

D. Records may be disclosed to the Department of Homeland Security (DHS) to enable DHS to restrict the travel of persons who pose a public health risk and to aid in its investigations of domestic or international terrorism. This routine use helps prevent the introduction, transmission, and spread of communicable disease, particularly where terrorism is involved.

E. Identifiable information may need to be shared with medical personnel to evaluate or care for ill or exposed persons, including travelers, with the ultimate goal of protecting the public's health and safety.

F. Records may also be shared with the World Health Organization in accordance with U.S. responsibilities to ensure that CDC is in compliance with its obligations under the International Health Regulations and other international agreementsa use in line with CDC's statutory authority with regard to quarantine and isolation related activities.

G. Also in line with the overriding purpose of protecting public health and safety by preventing the introduction, transmission, or spread of communicable diseases, personal information may be disclosed to federal, state, and local authorities to enable them to take actions needed to place someone under quarantine or isolation, or to enforce quarantine regulations. This is again in line with CDC's statutory authority to take quarantine and isolation related actions to restrict movement if someone poses a significant health risk to others.

H. Identifiable information may be disclosed to cooperating state and local legal departments enforcing concurrent legal authority relevant to quarantine and isolationrelated activities. This is in accord with the federal government's statutory authority to cooperate with and aid state and local authorities in the enforcement of their quarantine and other health regulations.

I. Identifiable records may be referred to the appropriate agency, whether federal, foreign, state or local charged with the
responsibility of investigating or prosecuting such violation or charged with enforcing or implementing the statute, or rule, regulation or order issued pursuant thereto when records collected within this SOR for quarantine activities indicate a violation or
[[Page 70870]]
potential violation of law, whether civil, criminal or regulatory in nature, and whether arising by general statute or particular program statute, or by regulation, rule or order issued pursuant thereto. This routine use is compatible in that this disclosure is being done to allow for effective enforcement of quarantine and isolationrelated requirements at various levels of government.

J. Disclosure may be made to a congressional office from the record of an individual in response to a verified inquiry from the congressional office made at the written request of that individual. When a constituent requests a congressional office to facilitate obtaining information from this CDC system, it is compatible to provide such information, since this is in line with the overall purpose of the Privacy Act, which is to provide access to the subject individual of the records the government has on him or her.

K. In the event of litigation in which the defendant is: (a) the Department, any component of the Department, or any employee of the Department in his or her official capacity; (b) the United States, where the Department determines that the claim, if successful, is likely to directly affect the operations of the Department or any of its components; or (c) any Department employee in his or her individual capacity, when the Justice Department has agreed to represent such employee, disclosure may be made to the Department of Justice to enable that Department to present an effective defense, provided that such disclosure is compatible with the purpose for which the records were collected.

Whenever CDC is involved in litigation dealing with quarantine or isolationrelated activities and CDC policies or operations could be affected by the outcome of the litigation, CDC must be able to disclose identifiable information to the Department of Justice so that an effective defense can be presented.

IV. Safeguards

The CDC/DGMQ has safeguards in place for authorized users and monitors such users to ensure against unauthorized use. Access to quarantine records is restricted to protect the privacy of the individuals involved, and personnel with such access have been trained in Privacy Act and information security requirements. CDC/DGMQ maintains very stringent administrative, procedural and technical safeguards for the entire system of records.

Access will be limited to authorized CDC/DGMQ FTEs and contractor staff who have a bona fide need for the identifiable information to perform official jobrelated duties. DGMQ staff are required to have supervisory approval to access identifiable data and receive ongoing training in how to protect sensitive data. A database security package on computers controls unauthorized access to the systems. Data administrators continually review the database to ensure privacy provisions are in place and only appropriate personnel have access to the data. Attempts by unauthorized individuals are automatically recorded and reviewed regularly.

Employees maintaining records are instructed not to release data until the intended recipient agrees to implement appropriate management, operational and technical safeguards sufficient to protect the confidentiality, integrity and availability of the information and information systems and to prevent unauthorized access.

This system will conform to all applicable Federal laws and regulations and Federal and HHS policies and standards as they relate to information security and data privacy. These laws and regulations may apply but are not limited to: the Privacy Act of 1974; the Federal Information Security Management Act of 2002; the Computer Fraud and Abuse Act of 1986; the EGovernment Act of 2002; the ClingerCohen Act of 1996, and the corresponding implementing regulations. OMB Circular A130, Management of Federal Resources, Appendix III, Security of Federal Automated Information Resources also applies. Federal, HHS and CDC policies and standards include but are not limited to: all pertinent National Institute of Standards and Technology publications and the HHS Information Systems Program Handbook.
V. Effects of the Proposed System of Records on Individual Rights

CDC proposes to establish this system in accordance with the principles and requirements of the Privacy Act and will collect, use, and disseminate information only as prescribed therein. Data in this system will be subject to the authorized releases in accordance with the routine uses identified in this system of records.

CDC will take precautionary measures to minimize the risks of unauthorized access to the records and the potential harm to individual privacy or other personal or property rights of individuals whose data are maintained in the system. CDC will collect only that information necessary to perform the system's purpose. In addition, CDC will make disclosures from the system only with consent of the subject individual, or his/her legal representative, or in accordance with an applicable exception provision of the Privacy Act. CDC, therefore, does not anticipate an unfavorable effect on individual privacy as a result of information relating to individuals.

Dated: December 6, 2007.
James D. Seligman,
Chief Information Officer, Office of the Director, Centers for Disease Control and Prevention.
Privacy Act System of Records Notice; No. 09200171

FOR FURTHER INFORMATION CONTACT Maggie Blackwell, HHS Privacy Act Officer, Department of Health and Human Services, Room 5416, Mary E. Switzer Building, 330 ``C'' Street, SW., Washington, DC 20201, (202) 6907453.