<mods xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.loc.gov/mods/v3" version="3.3" xsi:schemaLocation="http://www.loc.gov/mods/v3 http://www.loc.gov/standards/mods/v3/mods-3-3.xsd" ID="P0b002ee1803804c1">
<name type="corporate">
 <namePart>United States Government Publishing Office</namePart>
 <role>
  <roleTerm authority="marcrelator" type="text">publisher</roleTerm>
  <roleTerm authority="marcrelator" type="code">pbl</roleTerm>
</role>
 <role>
  <roleTerm authority="marcrelator" type="text">distributor</roleTerm>
  <roleTerm authority="marcrelator" type="code">dst</roleTerm>
</role>
</name>
<name type="corporate">
 <namePart>United States</namePart>
 <namePart>Government Accountability Office</namePart>
 <namePart>General Government Division</namePart>
 <role>
  <roleTerm authority="marcrelator" type="text">author</roleTerm>
  <roleTerm authority="marcrelator" type="code">aut</roleTerm>
</role>
 <description>Government Organization</description>
</name>
<typeOfResource>text</typeOfResource>
<genre authority="marcgt">government publication</genre>
<language>
 <languageTerm type="code" authority="iso639-2b">eng</languageTerm>
</language>
<extension>
 <collectionCode>GAOREPORTS</collectionCode>
 <category>Legislative Agency Publications</category>
 <waisDatabaseName>gao</waisDatabaseName>
 <branch>legislative</branch>
 <dateIngested>2010-08-12</dateIngested>
</extension>
<originInfo>
 <publisher>U.S. Government Printing Office</publisher>
 <dateIssued encoding="w3cdtf">1999-03-31</dateIssued>
 <issuance>monographic</issuance>
</originInfo>
<physicalDescription>
 <note type="source content type">deposited</note>
 <digitalOrigin>born digital</digitalOrigin>
 <extent>24 p.</extent>
</physicalDescription>
<classification authority="sudocs">GA 1.13:GGD-99-43</classification>
<identifier type="uri">https://www.govinfo.gov/app/details/GAOREPORTS-GGD-99-43</identifier>
<identifier type="local">P0b002ee1803804c1</identifier>
<identifier type="former package identifier">f:gg99043</identifier>
<recordInfo>
 <recordContentSource authority="marcorg">DGPO</recordContentSource>
 <recordCreationDate encoding="w3cdtf">2010-08-12</recordCreationDate>
 <recordChangeDate encoding="w3cdtf">2011-03-28</recordChangeDate>
 <recordIdentifier source="DGPO">GAOREPORTS-GGD-99-43</recordIdentifier>
 <recordOrigin>machine generated</recordOrigin>
 <languageOfCataloging>
  <languageTerm type="code" authority="iso639-2b">eng</languageTerm>
</languageOfCataloging>
</recordInfo>
<accessCondition type="GPO scope determination">fdlp</accessCondition>
<extension>
 <docClass>REPORT</docClass>
 <accessId>GAOREPORTS-GGD-99-43</accessId>
 <reportNumber>GGD-99-43</reportNumber>
 <subject>Computer security</subject>
 <subject>Tax information confidentiality</subject>
 <subject>Confidential communication</subject>
 <subject>Internal controls</subject>
 <subject>Personnel management</subject>
 <subject>Tax returns</subject>
 <subject>Tax administration systems</subject>
 <subject>Employee dismissal</subject>
 <subject>Crimes or offenses</subject>
 <identifier>IRS Integrated Data Retrieval System</identifier>
 <identifier>IRS Electronic Audit Research Log System</identifier>
 <identifier>IRS Audit Trail Lead Analysis System</identifier>
 <type>Letter Report</type>
 <seriesAbbrev>GGD</seriesAbbrev>
 <law congress="105" isPrivate="false" number="35"></law>
 <statuteAtLarge volume="111">
                      <pages pages="1104"></pages>
                </statuteAtLarge>
</extension>
<titleInfo>
 <title>Confidentiality of Tax Data: IRS&apos; Implementation of the Taxpayer Browsing Protection Act</title>
</titleInfo>
<abstract>Pursuant to a congressional request, GAO provided information on the
Internal Revenue Service&apos;s (IRS) implementation of the Taxpayer Browsing
Protection Act, focusing on: (1) actions IRS has taken to implement the
law; and (2) the number of potential and proven incidents of
unauthorized access by IRS employees that IRS has identified since
enactment of the law, as well as penalties imposed in cases where
unauthorized access was proven.&lt;p/&gt;GAO noted that: (1) the IRS has two approaches for implementing the law;
(2) over the long term, IRS believes that modernizing its core automated
systems offers the best means to prevent and detect unauthorized access
to taxpayer data; (3) according to IRS, modernization will: (a) allow it
to restrict employees&apos; access to only those taxpayer records that they
have a specific work-related reason to look at; and (b) enable it to
detect unauthorized accesses almost as soon as they happen; (4) it will
be several years, however, before this modernization becomes a reality;
(5) in the meantime, IRS has taken several other steps directed at
deterring, preventing, and detecting unauthorized access and ensuring
that consistent disciplinary action is taken when unauthorized access is
proven; (6) between October 1, 1997, and November 30, 1998, the Office
of the Chief Inspector identified 5,468 potential instances of
unauthorized access and completed preliminary investigative work on
4,392 of those leads; (7) of those 4,392 leads, 338 were determined to
warrant further investigation; (8) many of these 338 cases were still
under investigation or adjudication as of January 25, 1999; (9) using
data provided by IRS, GAO identified 36 cases for which investigation
and adjudication had been completed; (10) of those 36 cases, 15 involved
an IRS determination that IRS employees had intentionally accessed
taxpayer data without authorization; (11) in the other 21 cases, IRS
determined that either there was no unauthorized access or the access
was accidental; (12) according to IRS, employees involved in the 15
cases of intentional unauthorized access either resigned in lieu of
termination or were terminated; (13) according to IRS data, proven cases
of unauthorized access that occurred after enactment of Public Law
105-35 have generally been referred to U.S. Attorneys for prosecution,
and these U.S. Attorneys have, with one exception, declined to
prosecute; (14) according to IRS, the one case that was accepted for
prosecution was still open as of February 2, 1999, but the employee had
been removed from the agency; and (15) as required by the law, IRS
notified the three taxpayers whose data the employee had accessed.</abstract>
<location>
 <url displayLabel="HTML rendition" access="raw object">https://www.govinfo.gov/content/pkg/GAOREPORTS-GGD-99-43/html/GAOREPORTS-GGD-99-43.htm</url>
 <url displayLabel="PDF rendition" access="raw object">https://www.govinfo.gov/content/pkg/GAOREPORTS-GGD-99-43/pdf/GAOREPORTS-GGD-99-43.pdf</url>
</location>
<identifier type="preferred citation">GAO/GGD-99-43</identifier>
<location>
 <url displayLabel="Content Detail" access="object in context">https://www.govinfo.gov/app/details/GAOREPORTS-GGD-99-43</url>
</location>
<note>Letter Report</note>
<extension>
 <searchTitle>GAO/GGD-99-43; Confidentiality of Tax Data: IRS&apos; Implementation of the Taxpayer Browsing Protection Act;
            </searchTitle>
</extension>
<subject>
 <topic>Computer security</topic>
 <topic>Tax information confidentiality</topic>
 <topic>Confidential communication</topic>
 <topic>Internal controls</topic>
 <topic>Personnel management</topic>
 <topic>Tax returns</topic>
 <topic>Tax administration systems</topic>
 <topic>Employee dismissal</topic>
 <topic>Crimes or offenses</topic>
 <topic>IRS Integrated Data Retrieval System</topic>
 <topic>IRS Electronic Audit Research Log System</topic>
 <topic>IRS Audit Trail Lead Analysis System</topic>
</subject>
<relatedItem type="isReferencedBy">
 <titleInfo>
  <title>United States Statutes at Large</title>
  <partNumber>Volume 111 Page 1104</partNumber>
</titleInfo>
 <identifier type="Statute citation">111 Stat. 1104</identifier>
</relatedItem>
<relatedItem type="isReferencedBy">
 <titleInfo>
  <title>United States Public Law 35 (105th Congress)</title>
</titleInfo>
 <identifier type="public law citation">Public Law 105-35</identifier>
</relatedItem>
</mods>