[Federal Register Volume 88, Number 209 (Tuesday, October 31, 2023)]
[Notices]
[Pages 74550-74553]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2023-23981]
-----------------------------------------------------------------------
SECURITIES AND EXCHANGE COMMISSION
[Release No. PA-61; File No. S7-19-23]
Privacy Act of 1974; System of Records
AGENCY: Securities and Exchange Commission.
ACTION: Notice of a new system of records.
-----------------------------------------------------------------------
SUMMARY: The Securities and Exchange Commission (SEC) proposes to
establish SEC-36, Harassment Prevention and Response Program Records
under the Privacy Act of 1974. The information in the system concerns
internal inquiries and/or investigations into allegations of harassment
reported to SEC by applicants for employment, current and former SEC
employees, fellows, interns, and individuals who conduct business with
the SEC; and resolutions of allegations of workplace harassment. The
Harassment Prevention and Response Program addresses harassment
concerns that are raised separate and apart from harassment claims that
may also be raised under the procedures for administrative equal
employment opportunity complaints.
DATES: The system of records will become effective October 31, 2023,
with the exception of the routine uses, which will become effective
November 30,
[[Page 74551]]
2023, to permit public comment on the routine uses. The Commission will
publish a new notice if the effective date is delayed to review
comments or if changes are made based on comments received. To assure
consideration, comments should be received on or before November 30,
2023.
ADDRESSES: Comments may be submitted by any of the following methods:
Electronic Comments
Use the Commission's internet comment form (https://www.sec.gov/comments/s7-19-23/privacy-act-1974-system-records); or
Send an email to [email protected]. Please include
File Number S7-19-23 on the subject line.
Paper Comments
Send paper comments to Vanessa A. Countryman, Secretary,
U.S. Securities and Exchange Commission, 100 F Street NE, Washington,
DC 20549-1090.
All submissions should refer to File Number S7-19-23. This file number
should be included on the subject line if email is used. To help the
Commission process and review your comments more efficiently, please
use only one method of submission. The Commission will post all
comments on the Commission's website (https://www.sec.gov/rules/2023/10/s7-19-23). Comments also are available for website viewing and
printing in the Commission's Public Reference Room, 100 F Street NE,
Washington, DC 20549, on official business days between the hours of 10
a.m. and 3 p.m. Operating conditions may limit access to the
Commission's Public Reference Room. Do not include personal
identifiable information in submissions; you should submit only
information that you wish to make available publicly. We may redact in
part or withhold entirely from publication submitted material that is
obscene or subject to copyright protection.
FOR FURTHER INFORMATION CONTACT: Ronnette McDaniel, Privacy and
Information Assurance Branch Chief, 202-551-7200 or
[email protected].
SUPPLEMENTARY INFORMATION: The Harassment Prevention and Response
Program strives to create a work environment that is respectful and
inclusive for all in the SEC workplace and SEC sanctioned activities
and events, including those outside of SEC facilities. The program
provides a mechanism for SEC employees, fellows, interns, or
individuals who conduct business with the SEC to report allegations of
harassment to the SEC. In order to intake, manage and track inquiries
to a resolution the SEC is establishing SEC-36, Harassment Prevention
and Response Program Records, under the Privacy Act. Records may
include contact information of individuals involved in reports or
allegations of harassment, statements of witnesses, exhibits, reports
of interviews, findings and recommendations, close-out materials,
documentation of any corrective action taken by management, and related
correspondence. Information from this system of records will be
collected, maintained, and disclosed in accordance with applicable law,
regulations, and statutes, including but not limited to Prohibited
Personnel Practices; Executive Order 11478, 34 FR 12985 (as amended by
Executive Orders 13087, 13145 and 13152); Equal Employment Opportunity
Commission Management Directive 715 (EEO-MD-715); and Equal Employment
Opportunity Commission, Enforcement Guidance on Vicarious Employer
Liability for Unlawful Harassment by Supervisors (June 18, 1999).
SYSTEM NAME AND NUMBER
SEC-36 Harassment Prevention and Response Program Records.
SECURITY CLASSIFICATION:
Non-classified.
SYSTEM LOCATION:
U.S. Securities and Exchange Commission, 100 F Street NE,
Washington, DC 20549.
SYSTEM MANAGER(S):
Director, Office of Equal Employment Opportunity, 100 F Street NE,
Washington, DC 20549.
AUTHORITY FOR MAINTENANCE OF THE SYSTEM:
Records Management by Federal Agencies, 44 U.S.C. 3101 et seq.;
Civil Service Reform Act of 1978, 5 U.S.C. 2302(b), Prohibited
Personnel Practices; Executive Order 11478, 34 FR 12985 (as amended by
Executive Orders 13087, 13145 and 13152); title VII of the Civil Rights
Act of 1964, 42 U.S.C. 2000e-16 et seq.; Age Discrimination in
Employment Act of 1967, 29 U.S.C. 621 et seq.; Section 501 of the
Rehabilitation Act of 1973, 29 U.S.C. 791; titles I and V of the
Americans with Disabilities Act of 1990 (ADA), 42 U.S.C. 12101 et seq.,
as amended by ADA the Amendments Act of 2008; Notification and Federal
Employee Antidiscrimination and Retaliation Act of 2002, Public Law
107-174, as amended by the Elijah E. Cummings Federal Employee
Antidiscrimination Act of 2020; title II of the Genetic Information
Nondiscrimination Act of 2008, 42 U.S.C. 2000ff et seq.; Equal Pay Act
of 1963, 29 U.S.C. 206(d); Equal Employment Opportunity Commission
Management Directive 715 (EEO-MD-715); and Equal Employment Opportunity
Commission, Enforcement Guidance on Vicarious Employer Liability for
Unlawful Harassment by Supervisors (June 18, 1999).
PURPOSE(S) OF THE SYSTEM:
The Harassment Prevention and Response Program system of records
maintains records regarding allegations of workplace harassment. These
records are maintained for the purpose of conducting internal inquiries
and/or investigations into allegations of harassment reported to the
SEC by applicants for employment, current and former SEC employees,
fellows, interns, or individuals who conduct business with the SEC and
resolving allegations of workplace harassment. The records contained in
this system do not duplicate any existing agency or government-wide
system of records, even though some of the documents might also appear
in other systems of records maintained for other purposes.
Particularly, records are not collected to advance claims of
discrimination pursuant to processes outlined in title 29 CFR part
1614. Rather, these records are collected for administrative action
relating to allegations of workplace harassment, including bases found
in EEO laws and elsewhere. The agency policy and processes govern the
collection and maintenance of these records to further the agency's
commitment to appropriately respond to allegations of workplace
harassment.
CATEGORIES OF INDIVIDUALS COVERED BY THE SYSTEM:
This system of records maintains information on individuals who
have reported harassing conduct by or against SEC personnel and
harassing conduct by or against non-SEC personnel to the program
manager for prevention of harassment and response, in accordance with
the agency's administrative regulation relating to harassment
prevention and response. Individuals covered include, but are not
limited to applicants for SEC employment, current and former SEC
employees, fellows, interns, and individuals who conduct business with
the SEC. Covered individuals include those who report harassment
concerns, provide information in support of harassment inquiries or
investigations, or are witnesses or are otherwise contacted as part of
the fact-finding process for
[[Page 74552]]
inquiries, investigations, and reports relating to workplace
harassment.
CATEGORIES OF RECORDS IN THE SYSTEM:
The system contains all records related to a report of harassment
received by the SEC through the harassment prevention and response
program manager or through referrals from the Office of Equal
Employment Opportunity, other SEC organizations necessary for the
implementation of the SEC Harassment Prevention and Response Program
(or its successor program), or management officials. The records may
include contact information of individuals involved in reports or
allegations of harassment, statements of witnesses, exhibits, reports
of interviews, findings and recommendations, close-out materials,
documentation of any corrective action taken by management, and related
correspondence. The specific data elements found in these records may
include names, positions, Social Security numbers, mailing addresses,
email addresses, employment histories, employee evaluations,
disciplinary actions, case-related communications and notes, and audit
logs of user access and activities within the SEC Harassment Prevention
and Response Program electronic databases maintained by the SEC.
RECORD SOURCE CATEGORIES:
The SEC obtains information in this system from alleged targets of
harassment, alleged harassers, witnesses, members of the public, other
Federal agencies, and other individuals involved in the allegations.
Some information, such as the alleged target's or harasser's name,
personal identification number (PIN), employee identification number,
position, and job location may be obtained from other SEC system of
records as relevant and necessary to carry out the SEC's function.
Other record sources include documents related to reports of harassment
to the SEC Harassment Prevention and Response Program staff or
management; information obtained through correspondence, letters,
telephone calls, emails, or any other form of communication; data
obtained from investigative material and any information relevant to an
investigation; materials and information gathered by staff in the
performance of their duties; electronic databases maintained by the
staff; other SEC files; and from individuals, including where
practicable, those to whom the records relate.
ROUTINE USES OF RECORDS MAINTAINED IN THE SYSTEM, INCLUDING CATEGORIES
OF USERS AND THE PURPOSES OF SUCH USES:
In addition to those disclosures generally permitted under 5 U.S.C.
552a(b) of the Privacy Act, these records or information contained
therein may specifically be disclosed outside the Commission as a
routine use pursuant to 5 U.S.C. 552a(b)(3) as follows:
1. To appropriate agencies, entities, and persons when (1) the SEC
suspects or has confirmed that there has been a breach of the system of
records; (2) the SEC has determined that as a result of the suspected
or confirmed breach there is a risk of harm to individuals, the SEC
(including its information systems, programs, and operations), the
Federal Government, or national security; and (3) the disclosure made
to such agencies, entities, and persons is reasonably necessary to
assist in connection with the SEC's efforts to respond to the suspected
or confirmed breach or to prevent, minimize, or remedy such harm.
2. To another Federal agency or Federal entity, when the SEC
determines that information from this system of records is reasonably
necessary to assist the recipient agency or entity in (1) responding to
a suspected or confirmed breach; or (2) preventing, minimizing, or
remedying the risk of harm to individuals, the recipient agency or
entity (including its information systems, programs, and operations),
the Federal Government, or national security, resulting from a
suspected or confirmed breach.
3. To a Congressional office from the record of an individual in
response to an inquiry from the Congressional office made at the
request of that individual.
4. To any persons during the course of any inquiry, examination, or
investigation conducted by the SEC's staff, or in connection with civil
litigation, if the staff has reason to believe that the person to whom
the record is disclosed may have further information about the matters
related therein, and those matters appeared to be relevant at the time
to the subject matter of the inquiry. Such disclosure is permitted in
connection with civil litigation only when it is relevant and necessary
to the litigation.
5. To the National Archives and Records Administration (NARA) in
records management inspections conducted under 44 U.S.C. 2904 and 2906,
to permit the National Archivist to inspect SEC records or inspect the
SEC records management program and practices.
6. To interns, grantees, experts, contractors, and others who have
been engaged by the Commission to assist in the performance of a
service related to this system of records and who need access to the
records for the purpose of assisting the Commission in the efficient
administration of its programs, including by performing clerical,
stenographic, or data analysis functions, or by reproduction of records
by electronic or other means. Recipients of these records shall be
required to comply with the requirements of the Privacy Act of 1974, as
amended, 5 U.S.C. 552a.
7. To Federal, State, local, and/or foreign law enforcement
agencies or other appropriate entity charged with the responsibility of
investigating or prosecuting a violation or potential violation of law,
whether civil, criminal, or regulatory in nature.
8. To respond to subpoenas in any litigation or other proceeding.
9. To the U.S. Department of Justice (DOJ), when:
(a) The SEC or any component thereof; or
(b) Any SEC employee in his or her official capacity; or
(c) Any SEC employee in his or her individual capacity that DOJ has
agreed to represent; or
(d) The United States or any agency thereof where the SEC
determines the litigation is likely to affect the SEC or any of its
components is a party to a litigated matter or has an interest in a
litigated matter and the SEC determines that the use of such records by
DOJ is relevant and necessary to the litigation.
10. In any proceeding before a court or adjudicative body before
which the SEC is authorized to appear, when:
(a) The SEC or any component thereof; or
(b) Any SEC employee in his or her official capacity; or
(c) Any SEC employee in his or her individual capacity; or
(d) The United States or any agency thereof where the SEC
determines the litigation is likely to affect the SEC or any of its
components is a party to the proceeding or has an interest in the
proceeding and SEC determines that the use of such records is relevant
and necessary to the proceeding.
11. To provide information to the EEOC when requested in connection
with investigations into alleged or possible discriminatory practices
in the Federal sector, examination of Federal affirmative employment
programs, compliance by Federal agencies with Uniformed Guidelines on
Employee Selection Procedures, or other functions vested in the EEOC.
12. To provide information to officials of labor organizations
recognized under
[[Page 74553]]
5 U.S.C. chapter 71, when relevant and necessary to their duties of
exclusive representation concerning personnel policies, practices, and
matters affecting conditions of employment.
POLICIES AND PRACTICE FOR STORAGE OF RECORDS:
Records in this system of records are stored electronically or on
paper in secure facilities. Electronic records are stored on the SEC's
secure network and/or an SEC-approved cloud storage location. Access to
and use of these records is limited to those persons whose official
duties require such access.
POLICIES AND PRACTICES FOR RETRIEVAL OF RECORDS:
These records are cross-indexed by the name of the individual who
reports harassment, the name of the alleged target of harassment, if
any, and the name of the alleged harasser. The records may be retrieved
by any of the above three indexes and other indexes, as appropriate.
POLICIES AND PRACTICES FOR RETENTION AND DISPOSAL OF RECORDS:
These records are maintained for three years after the report of
harassment is closed and are then deleted or destroyed in accordance
with NARA, General Records Schedule (GRS) 023, Item 40 and the SEC
Comprehensive Records Schedule. Authorized staff follow the SEC's
records management procedures for safeguarding and disposing of records
related to reports of harassment that have met their retention period.
ADMINISTRATIVE, TECHNICAL, AND PHYSICAL SAFEGUARDS:
Access to SEC facilities, data centers, and information or
information systems is limited to authorized personnel with official
duties requiring access. SEC facilities are equipped with security
cameras, and, at certain SEC facilities, 24-hour security guard
service. Computerized records are safeguarded in a secured environment.
Records are maintained in a secure, password-protected electronic
system that will utilize commensurate safeguards that may include:
firewalls, intrusion detection and prevention systems, and role-based
access controls. Additional safeguards will vary by program. All
records are protected from unauthorized access through appropriate
administrative, operational, and technical safeguards. These safeguards
include restricting access to authorized personnel who have a ``need to
know'' and using locked file cabinets and/or locked offices or file
rooms. Contractors and other recipients providing services to the
Commission shall be required to maintain equivalent safeguards.
RECORDS ACCESS PROCEDURES:
Persons seeking to gain access to any record contained in this
system of records must submit a written request in accordance with
instructions in SEC Privacy Act Regulations; 17 CFR 200.301 et seq.
Address such request to: FOIA/PA Officer, Securities and Exchange
Commission, 100 F Street NE, Mail Stop 5100, Washington, DC 20549-2465.
CONTESTING RECORD PROCEDURES:
Persons seeking to contest the content of any record contained in
this system of records may inquire in writing in accordance with
instructions in SEC Privacy Act Regulations, 17 CFR 200.301 et seq.
Address such requests to: FOIA/PA Officer, Securities and Exchange
Commission, 100 F Street NE, Mail Stop 5100, Washington, DC 20549-2736.
NOTIFICATION PROCEDURES:
See ``Record Access Procedures'' above.
EXEMPTIONS PROMULGATED FOR THE:
None.
HISTORY:
New SORN.
By the Commission.
Dated: October 26, 2023.
Vanessa A. Countryman,
Secretary.
[FR Doc. 2023-23981 Filed 10-30-23; 8:45 am]
BILLING CODE 8011-01-P