Privacy Home / Privacy Impact Assessments (PIAs) / Audit Trail System

Audit Trail System

·         Name of project.

Audit Trail System

·         Unique project identifier.

016-00-SSA/FAM-G-010       

·         Privacy Impact Assessment Contact.

      Director
      Office of System Security Operations Management
      Office of Financial Policy and Operations
      Social Security Administration
      6401 Security Boulevard
      Baltimore, MD 21235

·         Describe the information to be collected, why the information is being collected, the intended use of the information and with whom the information will be shared.

The Audit Trail System (ATS) is a Social Security Administration (SSA) certified and accredited General Support System that collects and maintains electronic transactions entered into our programmatic systems (e.g., Title II and Title XVI Claims Processing Systems).  The ATS provides an automated mean for the maintenance and retrieval of these transactions we use to deter and investigate instances of fraud and abuse.  Data in the ATS system derives from existing systems that contain the basic information we collect to determine individuals’ entitlement to benefits under the Title II (Retirement, Survivors, Disability Insurance) and Title XVI (Supplemental Security Income) programs.  Included in these existing systems are personal identification data such as names, Social Security numbers (SSN), dates of birth, and Title II and/or Title XVI benefit or income data.  The information in ATS is collected to identify programmatic transactions input (i.e., transactions involving SSN holders, workers and beneficiaries) that can be used in investigations of potential fraudulent activity involving our employees and claimants.  ATS contains the daily collection of data each time an employee performs an auditable task or transaction and stores it in a record specific to that individual.  For example, when an employee takes an action on a beneficiary record, we would collect the employee’s Personal Identification Number (PIN), the date and time of the action, and the SSN of the beneficiary and the specific action taken about that individual. 


ATS is a valuable tool to identify programmatic transactions that may indicate fraudulent activity involving our employees.   Our employees have access to extremely valuable and sensitive data for processing claims and resolving post-entitlement or pre-entitlement issues.  There is a possibility of Privacy Act violations and unauthorized disclosure, and electronic systems misuse ranging from possible sanctionable actions to potential fraudulent/criminal activities.  ATS supports the ability of our systems’ security offices to monitor and evaluate data-entry activities in our programmatic systems (e.g., Title II and Title XVI Claims Processing Systems), as well as conduct security reviews throughout SSA.  Selection and analysis of ATS data help systems security staff and the Office of the Inspector General to pursue further investigation and potential prosecution. 


We disclose the information maintained in this system only as necessary to ensure the proper payments to individuals, to support investigations/prosecution of employee or claimant fraud and abuse, for the defense of an employee or our Agency, or as authorized by Federal law.  ATS is not accessible to members of the public.  

·         Describe the administrative and technological controls that are in place or that are planned to secure the information being collected.

The ATS has undergone authentication and security risk analyses.  The latter includes an evaluation of security and audit controls proven to be effective in protecting the information collected, stored, processed, and transmitted by our information systems.  These include technical, management, and operational controls that permit access to those users who have an official “need to know.”  ATS uses “TOP SECRET” to restrict access to the data in this system.

We protect the information in ATS by requiring employees who are authorized to access the information system to use a unique PIN.  In addition, we store the computerized records in secure areas that are accessible to those employees who require the information to perform their official duties.  Furthermore, all of our employees who have access to our information systems that maintain personal information must sign a sanction document annually that acknowledges penalties for unauthorized access to, or disclosure of, such information.

·         Describe the impact on individuals’ privacy rights.

Are individuals afforded an opportunity to decline to provide information? 

We collect information only where we have specific legal authority to do so in order to administer our responsibilities under the Social Security Act.  When we collect personal information from individuals, we advise them of our legal authority for requesting the information, the purposes for which we will use and disclose the information, and the consequences of their not providing any or all of the requested information.  The individuals can then make informed decisions as to whether or not they should provide the information.       

Are individuals afforded an opportunity to consent to only particular uses of the information?

When we collect information from individuals, we advise them of the purposes for which we will use the information.  We further advise them that we will disclose this information without their prior written consent only when we have specific legal authority to do so

(e.g., the Privacy Act).   

·         Does the collection of this information require a new system of records under the Privacy Act (5 U.S.C. § 552a) or an alteration to an existing system of records?

ATS does not require a new Privacy Act system of records or an alteration to an existing system of records.  ATS uses information that is collected and maintained for purposes related to other business processes for which there are currently Privacy Act systems of records in existence.  For example, claimant data in ATS is covered by systems of records, such as the Master Beneficiary Record (60-0090) and/or Supplemental Security Income Record and Special Veterans Benefits (60-0103).  The employees’ PIN collected by ATS is covered by system of records, Personal Identification Number File (60-0214).

  PIA CONDUCTED BY PRIVACY OFFICER, SSA:

Privacy Officer Willie Polk's Signature

______________________________                     September 25, 2007

SIGNATURE                                                          DATE

PIA REVIEWED BY SENIOR AGENCY PRIVACY OFFICIAL, SSA:

   /S/    Thomas W. Crawley________                       September 27, 2007

SIGNATURE                                                             DATE