Shows & Panels
- The 2014 Big Picture on Cyber Security
- AFCEA Answers
- Ask the CIO
- Connected Government
- Consolidating Mission-critical Systems
- Constituent Servicing
- The Data Privacy Imperative: Safeguarding Sensitive Data
- Eliminating the Pitfalls: Steps to Virtualization in Government
- Federal Executive Forum
- Federal Tech Talk
- Government Cloud Brokerage: Who, What, When, Where, Why?
- Government Mobility
- The Intersection: Where Technology Meets Transformation
- Maximizing ROI Through Data Center Consolidation
- Mobile Device Management
- The Modern Federal Threat Landscape
- Moving to the Cloud. What's the best approach for me
- Navigating Tough Choices in Government Cloud Computing
- Satellite Communications: Acquiring SATCOM in Tight Times
- Transformative Technology: Desktop Virtualization in Government
- Understanding the Intersection of Customer Service and Security in the Cloud
Shows & Panels
FAR Council wants to standardize privacy training for vendors
Friday - 10/14/2011, 1:50pm EDT
The Federal Acquisition Regulations Council today issued a proposed rule in the Federal Register detailing minimum training requirements to ensure consistency across the government.
"The proposed FAR text includes seven mandatory elements of the privacy training, including any agency-specific requirements," the proposal stated. "Many agencies currently require that designated contractor employees complete agency-developed privacy training, but, in some circumstances, an agency may provide a contractor with the Privacy Act requirements and have the contractor develop the training package."
The council stated that if a contractor doesn't pass the training, they would not be allowed to work on federal systems or records.
"This proposed rule was initiated to ensure that contractor personnel who handle personally identifiable information; design, develop, maintain or operate a system of records on behalf of the government; or require access to a government-owned system of records are properly trained on the requirements of applicable laws and appropriate safeguards to ensure the security and confidentiality of personally identifiable information," the council wrote.
Vendors would have to identify employees who require training and maintain records of them passing it.
Comments are due by Dec. 13.