National Reconnaissance Office

QNRO-21

PRINT  |  E-MAIL

SYSTEM NAME:

Personnel Security Files  (October 03, 2006,  71 FR 58377)

SYSTEM LOCATION:

Office of Security and Counterintelligence, National Reconnaissance Office, 14675 Lee Road, Chantilly, VA 20151-1715.

CATEGORIES OF INDIVIDUALS COVERED BY THE SYSTEM:

National Reconnaissance Office (NRO) civilian, military and contractor personnel who have been nominated or investigated for security clearances and program accesses.

CATEGORIES OF RECORDS IN THE SYSTEM:

Name, Social Security Number, agency identification number, employee's geographic work location, employer, work telephone number, date and place of birth, home address and home telephone number, dependents' names, individual's background investigation and polygraph data, interview and adjudication information, all other information such as that found on standard government forms SF 86 and 1879, appeal and referral data, program access status, classification number, the security file location, and administrative and investigatory comments, and security incident records, such as security file number, user id, date resolved, case id, case manager, government point of contact, incident report date, incident report type, date notified, reporter's name, affiliation, employer, officer, information systems security officer name and phone number, manager name and phone number, program security officer name and phone number, date of incident, location where incident occurred, incident type and description, names of personnel involved with incident along with their social security number, office, affiliation, employer, and phone number, incident category, classification of data, name of person who classified it, including identification number, title, position, organization, phone number, person who verified classification level of data, their title, position, organization, phone number and source used to verify classification, data owner name, their title, position, organization, phone number, date notified, date classification confirmed, number of individuals and organizations with unauthorized access to information and their clearance level, organization that caused the unauthorized disclosure, nature of unauthorized disclosure, where file originated, how data was introduced into computer system, file name, size, type and whether action warrants notification of the Director of Central Intelligence, non-disclosure agreements, job knowledge, contract information, and secure classified information facility (SCIF) information.

AUTHORITY FOR MAINTENANCE OF THE SYSTEM:

5 U.S.C. 301 Departmental Regulations; National Security Act of 1947, as amended, 50 U.S.C. 401 et seq.; and E.O. 9397

PURPOSE(S):

The information is used for granting and tracking security program accesses to NRO personnel; to maintain, support, and track personnel security administrative processing; to provide data for day-to-day security functions; and to conduct security investigations.

The system also provides a centrally managed security incident database for NRO security managers. The user will be the primary reporter of the information to enable an accurate overall view of incident response activities. This will also be a tool to ensure incidents are identified, documented, tracked, investigated, responded to, adjudicated, and corrected, in a standard and timely manner.

To assist in the determination of whether an award fee is justified for the performance of a contract in accordance with an established award fee plan.

ROUTINE USES OF RECORDS MAINTAINED IN THE SYSTEM, INCLUDING CATEGORIES OF USERS AND THE PURPOSES OF SUCH USES:

In addition to those disclosures generally permitted under 5 U.S.C. 552a(b) of the Privacy Act, these records or information contained therein may specifically be disclosed outside the DoD as a routine use pursuant to 5 U.S.C. 552a(b)(3) as follows:

To contractors and other Federal agencies for purposes of protecting the security of NRO installations, activities, property, and employees; to facilitate and verify an individual's eligibility to access classified information; and to protect the interests of National Security. The NRO Director of Security and Counterintelligence or his/her designee must approve disclosure in writing.

To the Intelligence Community to review the records, in the form of statistics only, for the purpose of providing trend analysis, disseminating threat information, providing reports of IT threats, any issues affecting mission critical networks, informing them of unauthorized disclosures or any compromise of intelligence information in accordance with applicable law.

The DoD 'Blanket Routines Uses' published at the beginning of the NRO compilation of systems of records notices apply to this system.

POLICIES AND PRACTICES FOR STORING, RETRIEVING, ACCESSING, RETAINING, AND DISPOSING OF RECORDS IN THE SYSTEM:


STORAGE:

Paper files and automated information system, maintained in computers and computer output products.

RETRIEVABILITY:

Name, social security number, agency identification number, date and place of birth, home telephone number, and home address.

SAFEGUARDS:

Records are stored in a secure, gated facility, that is guarded. Computer terminal access is password protected. Access to and use of these records are limited to personnel whose official duties require access on a need-to-know basis.

RETENTION AND DISPOSAL:

Security case records are temporary, retained for 15 years after inactivation; noteworthy files are retained for 25 years after inactivation. Security incident records are temporary, retained for 5 years after inactivation. Audio and videotapes of polygraph examinations and interviews are temporary and are re-used or destroyed when superseded, obsolete, or no longer needed.

Access related files are destroyed 2 years after authorization expires. Non-disclosure agreement files are destroyed when they are 70 years old. Special access program administrative records are destroyed 5 years after the program is disestablished or disapproved, whichever is applicable.

SYSTEM MANAGER(S) AND ADDRESS:

Director, Office of Security and Counterintelligence, 14675 Lee Road, Chantilly, VA 20151-1715.

NOTIFICATION PROCEDURE:

Individuals seeking to determine whether this system of records contains information about themselves should address written inquiries to the National Reconnaissance Office, Information Access and Release Center, 14675 Lee Road, Chantilly, VA 20151-1715.

Request should include the individual's full name, address, Social Security Number, and other information identifiable from the record.

In addition, the requester must provide a notarized statement or an unsworn declaration made in accordance with 28 U.S.C. 1746, in the following format:

If executed without the United States: 'I declare (or certify, verify, or state) under penalty of perjury under the laws of the United States of America that the foregoing is true and correct. Executed on (date). (Signature)'.

If executed within the United States, its territories, possessions, or commonwealths: 'I declare (or certify, verify, or state) under penalty of perjury that the foregoing is true and correct. Executed on (date). (Signature)'.

RECORD ACCESS PROCEDURES:

Individuals seeking to access information about themselves contained in this system should address written inquiries to the National Reconnaissance Office, Information Access and Release Center, 14675 Lee Road, Chantilly, VA 20151-1715.

Request should include the individual's full name, address, Social Security Number, and other information identifiable from the record.

In addition, the requester must provide a notarized statement or an unsworn declaration made in accordance with 28 U.S.C. 1746, in the following format:

If executed without the United States: 'I declare (or certify, verify, or state) under penalty of perjury under the laws of the United States of America that the foregoing is true and correct. Executed on (date). (Signature)'.

If executed within the United States, its territories, possessions, or commonwealths: 'I declare (or certify, verify, or state) under penalty of perjury that the foregoing is true and correct. Executed on (date). (Signature)'.

CONTESTING RECORD PROCEDURES:

The NRO rules for accessing records, for contesting contents and appealing initial agency determinations are published in NRO Directive 110-3A and NRO Instruction 110-5A; 32 CFR part 326; or may be obtained from the Privacy Act Coordinator, National Reconnaissance Office, 14675 Lee Road, Chantilly, VA 20151-1715.

RECORD SOURCE CATEGORIES:

Information is supplied by the individual, by persons other than the individual, and by documentation gathered in the background investigation, and other government agencies.

EXEMPTIONS CLAIMED FOR THE SYSTEM:

Investigatory material compiled for law enforcement purposes may be exempt pursuant to 5 U.S.C. 552a(k)(2). However, if an individual is denied any right, privilege, or benefit for which he would otherwise be entitled by Federal law or for which he would otherwise be eligible, as a result of the maintenance of such information, the individual will be provided access to such information except to the extent that disclosure would reveal the identity of a confidential source.

Investigatory material compiled solely for the purpose of determining suitability, eligibility, or qualifications for federal civilian employment, military service, federal contracts, or access to classified information may be exempt pursuant to 5 U.S.C. 552a(k)(5), but only to the extent that such material would reveal the identity of a confidential source.

An exemption rule for this exemption has been promulgated in accordance with requirements of 5 U.S.C. 553(b)(1), (2), and (3), (c) and (e) and published in 32 CFR part 326. For additional information contact the system manager.

FEDERAL REGISTER HISTORY: