publicdata/nih-gov
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
nih-gov/www.grants.nih.gov/grants/guide/notice-files/NOT-OD-08-032.html

146 lines
No EOL
7.1 KiB
HTML
Raw Permalink Blame History

<!-- Changed ON 09/24/2024 -->
<!-- Google Tag Manager -->
<script>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start':
new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0],
j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src=
'https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f);
})(window,document,'script','dataLayer','GTM-T2DH393N');</script>
<!-- End Google Tag Manager -->
<HTML lang="en-US">
<!-- From NoticeTemplate.txt -->
<HEAD>
<TITLE>NOT-OD-08-032: Notice Regarding the Applicability of the Federal Information Security Management Act to NIH Grantees</TITLE>
<META NAME="description" CONTENT="NIH Funding Opportunities and Notices in the NIH Guide for Grants and Contracts: Notice Regarding the Applicability of the Federal Information Security Management Act to NIH Grantees NOT-OD-08-032. NIH">
<META NAME="Keywords" CONTENT="NOT-OD-08-032: Notice Regarding the Applicability of the Federal Information Security Management Act to NIH Grantees">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link href="../guide_styles/css/bootstrap.min.css" rel="stylesheet" media="screen">
<link href="../guide_styles/css/style.css" rel="stylesheet" media="screen">
<link href="../guide_styles/css/FOAM_Style.css" rel="stylesheet">
</HEAD>
<BODY>
<div class="container">
<div class="row">
<div class="col-xs-12">
<span class="addtitle">Notice Regarding the Applicability of the Federal Information Security Management Act to NIH Grantees</span>
<hr noshade>
<p><span class="Heading3">Notice Number: </span><span class="regulartextBold">NOT-OD-08-032</span></p>
<p><span class=Heading3>Key Dates</span><br>
Release Date: January 9, 2008</p>
<p><span class=Heading3>Issued by</span><br>
National Institutes of Health (NIH), (<a href="http://www.nih.gov">http://www.nih.gov</a>)</p>
<p>NIH is providing this notice to inform its grantee organizations of the recent Department of Health and Human Services (HHS) announced policy regarding applicability of the Federal Information Security Management Act (FISMA) to grantees. </p>
<p>All information systems, electronic or hard copy which contain federal data need to be protected from unauthorized access. This also applies to information associated with NIH grants and contracts.</p>
<p>Congress and the Office of Management and Budget (OMB) have instituted laws, policies and directives that govern the creation and implementation of federal information security practices that pertain specifically to grants and contracts. The current regulations are pursuant to the Federal Information Security Management Act (FISMA), <a href="http://frwebgate.access.gpo.gov/cgi-bin/getdoc.cgi?dbname=107_cong_public_laws&docid=f:publ347.107.pdf">Title III of the E-Government Act of 2002 Pub. L. No. 107-347</a> (beginning on page 48).</p>
<p>Given the nature of the relationship between the NIH and its grantees (which differs from a contractual relationship), the question arose as to whether data collected in the course of NIH-funded research through grants and cooperative agreements fall under the FISMA regulations. The applicability of FISMA to grantees funded by the Department of Health and Human Services (including the NIH) has been addressed by the HHS Chief Information Security Officer in an October 29 memo clarifying federal regulations governing the management and protection of the data the federal government collects for grants.</p>
<p>The memo stated that:</p>
<p> FISMA (Federal Information Security Management Act) applies to grantees only when they collect, store, process, transmit or use information on behalf of HHS or any of its component organizations.</p>
<p>In all other cases, FISMA is not applicable to recipients of grants, including cooperative agreements with grantees. The grantee retains the original data and intellectual property, and is responsible for the security of this data, subject to all applicable laws protecting security, privacy and research. If and when information collected by a grantee is provided to HHS, responsibility for the protection of the HHS copy of the information is transferred to HHS and it becomes the agency&rsquo;s responsibility to protect that information and any derivative copies as required by FISMA. </p>
<p><span class=Heading3>Inquiries</span></p>
<p>If you have any questions about whether the data collected in the course of your NIH-funded research fall under FISMA please contact Sally Rockey at 301-496-1096 or <a href="/cdn-cgi/l/email-protection#572538343c322e243617383379393e3f79303821"><span class="__cf_email__" data-cfemail="ea988589818f93998baa858ec4848382c48d859c">[email&#160;protected]</span></a> </p>
</div>
</div>
<div class="row">
<div class="col-xs-12">
<P>
<HR>
<A HREF="/grants/guide/WeeklyIndex.cfm?01-11-08">Weekly TOC for this Announcement</A><br>
<A HREF="/grants/guide/index.html">NIH Funding Opportunities and Notices</A>
<hr>
</div>
</div>
<link rel="stylesheet" type="text/css" media="print" href="css/notices_print.css " />
<div class="row">
<div class="footer">
<div class="col-sm-4"> <a href="/grants/oer.htm"><img src="/images7/nih-oer-logo.jpg" alt="NIH Office of Extramural Research Logo" usemap="#Map2" border="0"></a>
<map name="Map2" id="Map2">
<area shape="rect" coords="89,17,359,39" href="http://www.nih.gov" />
<area shape="rect" coords="91,39,286,58" href="http://grants.nih.gov/grants/oer.htm" />
<area shape="rect" coords="3,5,78,55" href="http://grants.nih.gov/grants/oer.htm" />
</map>
</div>
<div class="col-sm-4">
<div style="float:left; padding: 5 5 5 70"> <a href="https://www.hhs.gov/"><img src="/images7/dhhs_sm.gif" width="36" height="37" border="0" alt="Department of Health and Human Services (HHS) - Home Page" long desc="Logo, circular in shape, depicting an American eagle in-flight with stylized profiles of human faces appearing on the trailing edge of the wings. The perimeter of the logo is encircled with the words 'Department of Health and Human Services U S A'"></a></div>
<div style="padding: 5 5 5 5;">Department of Health<br>
and Human Services (HHS)</div>
</div>
<div class="col-sm-4">
<div style="padding: 5 5 5 0" align="center"> <a href="https://www.usa.gov/"><img src="/images7/USA_Gov_logo.gif" border="0" alt="USA.gov - Government Made Easy" long desc="Logo,- the words 'USA.gov - Government Made Easy' with single streaking star above the logo"></a> </div>
</div>
</div>
</div>
<div class="row">
<div class="footer">
<div class="col-xs-12" align="center" style="padding: 20 5 5 5"> <span style="color:#6E6E6E; font-size:1.0em; font-family: 'Trebuchet MS', Arial, Helvetica, sans-serif">NIH... Turning Discovery Into Health<sup>&reg;</sup></span> </div>
</div>
</div>
<div class="row">
<div class="footer">
<div class="col-xs-12" align="center">
</div>
</div>
</div>
</div>
<script data-cfasync="false" src="/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js"></script></BODY>
</HTML>
Reference in a new issue View git blame Copy permalink