My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Agenda Packet_2022-03-15
Clerk
>
Agenda Packets / Staff Reports
>
City Council (2004 - Present)
>
2022
>
03/15/2022 Regular
>
Agenda Packet_2022-03-15
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
3/14/2022 12:29:18 PM
Creation date
3/14/2022 12:19:52 PM
Metadata
Fields
Template:
City Clerk
Doc Type
Agenda Packet
Date
3/15/2022
Jump to thumbnail
< previous set
next set >
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
437
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
ATTACHMENT C <br />SOCIAL SERVICES AGENCY POLICY AND PROCEDURE F 21: PRIVACY AND <br />SECURITY INCIDENTS OF PERSONALLY IDENTIFIABLE INFORMATION (PII) AND <br />CONFIDENTIAL INFORMATION <br />I. PURPOSE <br />To establish a process and guidelines for Social Services Agency (SSA) to report, document and <br />investigate privacy and security incidents of Personally Identifiable Information (PII) and <br />confidential information. <br />II. POLICY <br />Orange County Social Services Agency (OCSSA) workforce, volunteers and contractors/vendors <br />shall comply with all applicable Federal and State laws, regulations, policies and procedure <br />regarding the safeguarding of PII and confidential information and incident reporting protocols. <br />This policy applies to all data sources and systems with any PII and other forms of confidential <br />information that staff access in the performance of their duties via any medium including <br />electronic, paper, and verbal. <br />III. DEFINTIONS <br />Action Officer: Person responsible for ensuring the program rectifies any issues identified with a <br />breach. In most cases, it will be the program or regional manager. <br />Authorized Persons: are employees of the Agency who meet the following criteria: <br />Need to access PII and other forms of confidential information in order to perform their job <br />duties; <br />Have completed all required security and confidentiality training; and <br />Have completed all required security certifications relevant to the data which are on file and <br />available for review by an outside agency. <br />Breach: Refers to actual loss, loss of control, compromise, unauthorized disclosure, unauthorized <br />acquisition, unauthorized access, or any similar term referring to situations where persons other <br />than authorized users and for other than authorized purposes have access or potential access to <br />PII, whether electronic, paper, verbal or recorded. <br />WQM0522 Page 1 of h March 1, 2022 <br />City Council 20 — 75 3/15/2022 <br />
The URL can be used to link to this page
Your browser does not support the video tag.