[Federal Register Volume 78, Number 167 (Wednesday, August 28, 2013)]
[Notices]
[Page 53166]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2013-20938]
-----------------------------------------------------------------------
NATIONAL CREDIT UNION ADMINISTRATION
Agency Information Collection Activities: Submission to OMB for
Reinstatement, Without Change, of a Previously Approved Collection;
Comment Request
AGENCY: National Credit Union Administration (NCUA).
ACTION: Request for comment.
-----------------------------------------------------------------------
SUMMARY: The NCUA intends to submit the following information
collection to the Office of Management and Budget (OMB) for review and
clearance under the Paperwork Reduction Act of 1995. This information
collection is published to obtain comments from the public. NCUA is
renewing the requirements for Federally Insured Credit Unions to
maintain an information security program and an incident response plan
that complies with Title V of the Gramm-Leach-Bliley Act. The program
and response plan are required by the NCUA rules and regulations.
Appendix B contains guidance on creating an effective incident response
plan in the event of unauthorized access to member information and the
requirements of the notices distributed to the affected members.
DATES: Comments will be accepted until September 27, 2013.
ADDRESSES: Interested parties are invited to submit written comments to
the NCUA Contact and OMB Reviewer listed below:
NCUA Contact: Tracy Crews, National Credit Union Administration, 1775
Duke Street, Alexandria, Virginia 22314-3428, Fax No. 703-837-2861,
Email: [email protected].
OMB Contact: Office of Management and Budget, ATTN: Desk Officer for
the National Credit Union Administration, Office of Information and
Regulatory Affairs, Washington, DC 20503.
FOR FURTHER INFORMATION CONTACT: Requests for additional information, a
copy of the information collection request, or a copy of submitted
comments should be directed to Tracy Crews at the National Credit Union
Administration, 1775 Duke Street, Alexandria, VA 22314-3428, or at
(703) 518-6444.
SUPPLEMENTARY INFORMATION:
I. Abstract and Request for Comments
NCUA is amending/reinstating the collection for 3133-0033. NCUA is
renewing the requirements for Federally Insured Credit Unions to
maintain an information security program and an incident response plan
that complies with Title V of the Gramm-Leach-Bliley Act, 15 U.S.C.
6801 et seq. Section 748.0 of NCUA's Rules and Regulations, 12 CFR
748.0, directs federally insured credit unions to adopt a security
program that includes ensuring the security and confidentiality of
member records, protecting against the anticipated threats or hazards
to the security or integrity of such records, and protecting against
unauthorized access to or use of such records that could result in
substantial harm or serious inconvenience to a member. The security
program also contains a requirement to respond to incidents of
unauthorized access to or use of member information that could result
in substantial harm or serious inconvenience to a member. Proper
incident response includes a notification requirement to the affected
member. NCUA examiners review the programs to determine whether the
credit union's procedures comply with the information security and
incident response requirements. There is a decrease of 39,776 hours
from the last submission (2007). The decrease is a result of an
adjustment to the number of credit unions from 8,695 to 6,753. This
decline is from credit union mergers and liquidations.
The NCUA requests that you send your comments on this collection to
the location listed in the addresses section. Your comments should
address: (a) The necessity of the information collection for the proper
performance of NCUA, including whether the information will have
practical utility; (b) the accuracy of our estimate of the burden
(hours and cost) of the collection of information, including the
validity of the methodology and assumptions used; (c) ways we could
enhance the quality, utility, and clarity of the information to be
collected; and (d) ways we could minimize the burden of the collection
of the information on the respondents such as through the use of
automated collection techniques or other forms of information
technology. It is NCUA's policy to make all comments available to the
public for review.
II. Data
Title: 12 CFR part 748, Security Program and Appendix B.
OMB Number: 3133-0033.
Form Number: None.
Type of Review: Third party disclosure, and reporting, on occasion.
Description: 12 CFR part 748 requires federally insured credit
unions to develop a written security program to safeguard sensitive
member information. This information collection requires that such
programs be designed to respond to incidents of unauthorized access or
use, in order to prevent substantial harm or serious inconvenience to
members.
Respondents: Federally insured credit unions.
Estimated Number of Respondents/Record keepers: 6,753.
Estimated Burden Hours per Response: 20 hours.
Frequency of Response: On occasion.
Estimated Total Annual Burden Hours: 138,300 hours.
Estimated Total Annual Cost: None.
By the National Credit Union Administration Board on August 22,
2013.
Gerard Poliquin,
Secretary of the Board.
[FR Doc. 2013-20938 Filed 8-27-13; 8:45 am]
BILLING CODE 7535-01-P