1652-0005 SP FACs SS__9.30.2021

Download: docx | pdf

1. Explain the circumstances that make the collection of information necessary. Identify any legal or administrative requirements that necessitate the collection. Attach a copy of the appropriate section of each statue and regulation mandating or authorizing the collection of information. (Annotate the CFR parts/sections affected).

In addition to the broad authority to secure all modes of transportation, see 49 U.S.C. 114, the Transportation Security Administration (TSA) is specifically mandated to require foreign air carriers (FAC) flying into and out of the United States to adopt and use a security program approved by TSA. See 49 U.S.C. 44906. Section 44906 also provides that TSA must not accept a FAC’s security program unless the security program requires the FAC in its operations to and from U.S. airports to adhere to the identical security measures required of air carriers serving the same airports. TSA may impose additional security measures on a FAC or an air carrier when the agency determines that a specific threat warrants such additional measures.

This mandate is implemented by regulation primarily under 49 CFR part 1546. Under TSA’s regulations, TSA provides a standard security program that FACs must operate under in order to be permitted to fly into or out of the United States and operate at airports within the United States. The Model Security Program (MSP), which includes all TSA-issued amendments, requires FACs to maintain certain records and provide certain information to TSA, or make it available for inspection. Reporting and recordkeeping requirements are described in the MSP, and include requirements such as verifying compliance, training and related records, incident and suspicious activity reporting, and submission of Secure Flight data for vetting of passengers and watch list vetting of employees against government lists, which are explained further below. Some of these records include Sensitive Security Information (SSI), which must be protected from disclosure. See 49 CFR part 1520.

The MSP may be amended by the FAC or TSA. FACs seeking an amendment or to use an alternative procedure must submit a proposal to TSA for approval. See 49 CFR 1546.105(b). Once approved by TSA, the proposed measures become part of the FAC’s security program and they are required to comply with the security measures and processes stated in the amendment or alternative procedure. TSA may also amend the MSP. See 49 CFR 1546.105(c) and (d). FACs are required to comply with their security program as amended. TSA’s Transportation Security Inspectors (TSIs) inspect FACs to verify compliance with the provisions of the TSA-accepted program.

2. Indicate how, by whom, and for what purpose the information is to be used. Except for a new collection, indicate the actual use the agency has made of the information received from the current collection.

TSA uses the information collected to ensure the FACs are performing required security measures. TSA inspects each FAC against its security program, which includes security program amendments, at its domestic and foreign locations to ensure that the FAC’s security program is being carried out. Such inspections protect the security of the passengers, the general public, baggage, cargo, and aircraft.

Security Program and TSA-Issued Security Program/Emergency Amendments. Before accepting a FAC’s security program, TSA must determine that the security program provides passengers of the FAC a level of protection similar to the level of protection passengers would receive from domestic carriers using the same U.S. airports. See 49 U.S.C. 44906. Foreign air carriers must employ procedures equivalent to those required of U.S. aircraft operators serving the same airport. Additionally, TSA issues emergency amendments to foreign air carriers when there is an emerging threat requiring immediate action to implement mitigation measures. This information collection request covers the collections associated with these requirements.

Carrier-Requested Security Program Amendments. A FAC may submit a request to TSA to amend its accepted security program. For example, FACs may need to use an alternative procedure due to their need to comply with other national laws or to address issues that may be unique to their operations. In these situations, FACs may provide to TSA an alternate means by which they can meet the intent of the required TSA security measures. TSA handles such requests on a case-by-case basis. TSA will approve a request to amend a security program if the requirements of 49 CFR 1546.105(b) are met. This section requires a determination that safety and the public interest will allow the amendment, and the proposed amendment provides the level of security required under 49 CFR part 1546.

Compliance Recordkeeping requirement. Upon request of TSA, each FAC must provide evidence of compliance with 49 CFR part 1546 and its security program, including copies of records. Records may be maintained in either hardcopy or electronic format at corporate offices or stations. FACs must also make their security programs available for annual review.

Training Recordkeeping Requirements. FACs are required to include training in their security programs. They are specifically required to provide their crewmembers and other individuals performing security-related functions with initial training and recurrent training covering a number of subjects. Depending on the subject matter, the training is delivered via several methods such as web-based training, classroom training, hands-on training, and home study. The FACs must retain training records for varying specified periods of time.

Incident and Suspicious Activity Reporting. TSA’s regulations require FACs to immediately report to the Transportation Security Operations Center (TSOC) all incidents, suspicious activities, and threats that could affect the security of U.S. civil aviation. Incidents, suspicious activities, and threat information may include, but are not limited to, interference with the flight crew, possible surveillance of an aircraft or airport facility, bomb threats, and air piracy. In light of the urgency of this type of reporting, FACs give this report orally, in writing, or over the telephone.

Watch lists. FACs must submit Secure Flight Passenger Data (SFPD) to TSA Secure Flight for the watch list vetting of every passenger traveling to and from the United States. This data is required 72 hours in advance of the flight when available that early. The FAC also submits subsequent SFPD received up until flight departure. The vetting of the information is done internally within TSA Secure Flight operations and takes place almost instantaneously. The majority of these submissions are covered under the TSA’s Secure Flight ICR (OMB Control Number 1652-0046).

There are times, however, when certain passengers may be on a watch list and other processes must take place to clear the passenger for travel, prevent travel, or require additional processes before the passenger can travel. The provision of non-personally identifiable information to TSA is necessary to allow TSA to effectively prioritize watch list matching efforts and communicate with the covered aircraft operator.

In addition, TSA has assumed the responsibility for pre-flight screening of passengers and certain non-traveling individuals against the Federal Government watch list from the private sector, as required by 49 U.S.C. 44903(j)(2)(C), and consolidation of the aviation passenger watch list matching function within one agency of the Federal Government. See Secure Flight ICR (OMB Control Number 1652-0046), which addresses the requirement for covered aircraft operators (including FACs) to transmit SFPD for each passenger, which consists of the passenger’s full name; date of birth; and gender; and, to the extent available, Redress Number or known traveler number; information from the passenger’s passport (full name, passport number, country of issuance, and expiration date); as well as certain non-personally identifiable information used to manage messages, including itinerary information. Secure Flight, however, does not eliminate the requirements for aircraft operators to conduct watch list matching. For example, aircraft operators are required to conduct a comparison of their employees against the TSA No Fly and Selectee Lists and report any matches to TSA. Additionally, on the rare occasions when there is a Secure Flight outage, aircraft operators are required to conduct further comparison of their passengers against the TSA No Fly and Selectee Lists and report any matches to TSA.

3. Describe whether, and to what extent, the collection of information involves the use of automated, electronic, mechanical, or other technological collection techniques or other forms of information technology, e.g., permitting electronic submission of responses, and the basis for the decision for adopting this means of collection. Also describe any consideration of using information technology to reduce burden. [Effective 03/22/01, your response must SPECIFICALLY reference the Government Paperwork Elimination Act (GPEA), which addresses electronic filing and record keeping, and what you are doing to adhere to it. You must explain how you will provide a fully electronic reporting option by October 2003, or an explanation of why this is not practicable.]

The collection complies with the Government Paperwork Elimination Act as FACs may submit and sign the security program and amendments to its security program electronically. TSA may require such specialized amendments to address individual FAC security concerns. In turn, TSA provides approval responses electronically, followed by official paper copies. This allows for immediate implementation of the agreed upon security measure. If desired, FACs may maintain security programs and amendments electronically or in hard copy.

FAC employees must have access to all applicable TSA security measures, which they carry out on behalf of the FAC. FACs may access these measures via electronic means; normally accomplished through the air carriers’ internal computer files.

In limited instances, TSA needs the ability to have immediate contact with the FAC to address issues pertaining to the vetting of passengers, crew members, and FAC personnel. These situations include determining whether an individual (passenger or FAC employee, including a crewmember) matches a government watch list and will be permitted to enter, overfly, or depart from the United States. Making this determination before a plane departs for the United States can obviate the need for actions that have operational and financial implications for the FAC (such as diversion of a flight).

4. Describe efforts to identify duplication. Show specifically why any similar information already available cannot be used or modified for use for the purpose(s) described in Item 2 above.

No other federal entity has a Congressional mandate to require an FAC to adopt and carry out a security program. Prior to TSA’s existence, this information collection was conducted by the Federal Aviation Administration. To TSA’s knowledge, since the responsibility for this collection transferred to TSA in 2002,¹ it has not been duplicated anywhere else.

5. If the collection of information has a significant impact on a substantial number of small businesses or other small entities (Item 5 of the Paperwork Reduction Act submission form), describe the methods used to minimize burden.

TSA has determined the collection of information does not have a significant impact on a substantial number of small businesses.

6. Describe the consequence to Federal program or policy activities if the collection is not conducted or is conducted less frequently, as well as any technical or legal obstacles to reducing burden.

TSA has the responsibility of ensuring the security of persons and property traveling to and from the United States. As part of this responsibility, TSA requires FACs seeking to provide air travel into or out of the United States to adopt and implement a FAC security program. See 49 CFR part 1546.

It is imperative that all FACs provide adequate security measures for all flights to and from the United States and while operating at U.S. airports. These requires security measures must be able to adapt to evolving risks and emerging technologies. The procedures for modifying program requirements under 49 CFR 1546.105 ensure that adaptability of the program with clearly identified procedures and requirements. The collection of information and maintenance of records is an integral part of security programs that reflect the current security environment and ensure compliance with accepted requirements.

7. Explain any special circumstances that require the collection to be conducted in a manner inconsistent with the general information collection guidelines in 5 CFR 1320.5(d)(2).

Certain circumstances may trigger the need for FACs to notify TSA more often than quarterly. For example, FACs are required to provide timely reports of incidents and suspicious activities to the TSOC. In addition, although Secure Flight is fully operational, on the rare occasions when there is a Secure Flight outage, aircraft operators are required to conduct further comparison of their passengers against the TSA No Fly and Selectee Lists and report any matches to TSA. Otherwise, the collection of information is conducted in accordance with 5 CFR 1320(d)(2).

8. Describe efforts to consult persons outside the agency to obtain their views on the availability of data, frequency of collection, the clarity of instructions and recordkeeping, disclosure, or reporting format (if any), and on the data elements to be recorded, disclosed, or reported. If applicable, provide a copy and identify the date and page number of publication in the Federal Register of the agency's notice, required by 5 CFR 1320.8(d) soliciting comments on the information collection prior to submission to OMB. Summarize public comments received in response to that notice and describe actions taken by the agency in response to these comments. Specifically address comments received on cost and hour burden.

TSA published the 60-day notice on May 14, 2021 (86 FR 26540), and the 30-day notice was published on September 30, 2021 (86 FR 54227). TSA has not received any comments in response to the notices published.

9. Explain any decision to provide any payment or gift to respondents, other than remuneration of contractors or grantees.

TSA will not provide payment to respondents.

10. Describe any assurance of confidentiality provided to respondents and the basis for the assurance in statute, regulation, or agency policy.

All created security programs and reporting information will be protected from disclosure to the extent required by existing laws and regulations. TSA does not provide any assurances of confidentiality to respondents. To the extent applicable, information provided by respondents will be protected in accordance with the Privacy Act and TSA privacy and information technology policy. A Privacy Impact Assessment (PIA), DHS/ALL-006 DHS General Contacts, was published June 17, 2007 on www.dhs.gov. (PIA coverage for the collection of PII as part of Secure Flight or incident reporting is provided by DHS/TSA/PIA-016, Secure Flight, published August 5, 2008, or DHS/TSA/PIA-029, Operations Center Incident Management System, published July 7, 2008.) TSA assures respondents that the portion of their responses that are deemed SSI will be handled as such, as described in 49 CFR parts 15 and 1520.

11. Provide additional justification for any questions of sensitive nature, such as sexual behavior and attitudes, religious beliefs, and other matters that are commonly considered private.

TSA does not ask questions of a sensitive nature.

12. Provide estimates of hour and cost burdens of the collection of information.

The estimates presented in this section represent the annual hours and cost burdens to comply with the reporting and recordkeeping requirements of the FAC security programs. The hour and cost burden calculations depend on the number of FACs responding, information-related requirements in the MSP, amount of time it takes to complete the information-related requirements, and the hourly average compensation rate of the personnel completing the requirements. On average, 180 FACs have regularly scheduled and charter flight (indicating their flights are on-demand) operations to and from the United States annually. Table 1 presents the summary of the information collection burden at the end of this question. TSA estimates that the total annual hour burden incurred by FACs to comply with the MSP requirements is 277,147 hours, and a total annual hour burden cost of $29,208,668. The detailed information on these estimates are presented below:

(a) TSA-Issued Security Program/Emergency Amendments. Under 49 CFR 1546.105(c) and (d), TSA may issue an amendment to the TSA-accepted security program, if safety and the public interest require it. TSA estimates on average 18 new amendments to be issued per year, including emergency amendments. Each of the 180 FACs would be required to respond to each new amendment, with a total of 3,240 responses (180 FACs × 18 amendments). TSA estimates that each response will require one hour to complete, for an annual average hour burden of 3,240.

TSA expects a Corporate Security Director or Security Manager will complete this task. TSA uses a fully loaded² hourly average wage rate of $105.96³ to estimate the hour burden cost. TSA estimates an annual average hour burden cost of $343,295.

(b) Carrier-Requested Security Program Amendments. Under 49 CFR 1546.105(b), a FAC may submit a request to TSA through its assigned TSA International Industry Representative (IIR) to amend its TSA-accepted security program or adopt alternative procedures of complying with the TSA-issued amendments. Based on past requests, TSA estimates that it receives on average of 83 requests annually from the population (180) of FACs. TSA estimates that each FAC takes approximately one hour to prepare a document for each request and a Corporate Security Director or Security Manager completes the task, and assumes a fully loaded hourly average wage rate of $105.96.⁴ TSA estimates an annual hour burden of 83 hours and an annual hour burden cost of $8,794.⁵

(c) Compliance Recordkeeping Requirement. TSA estimates that an average of four hours is required for each FAC to maintain copies and to make its security program available for review. TSA assumes this task is done by a position equivalent to an Administrative Service Manager in the Air Transportation industry in the United States and takes the corresponding fully loaded hourly average wage rate of $89.33 as a proxy.⁶ Based on information from past inspections, TSA estimates that each foreign air carrier has an average of seven yearly inspections for compliance with the MSP.⁷ TSA estimates that each inspection places a four hour burden on the carrier being inspected. Therefore, TSA estimates an annual average hour burden of 5,350.⁸ TSA estimates the average annual burden cost to be $477,915.⁹

(d) Training Recordkeeping Requirement. Based on information obtained from GS, TSA estimates that the average annual hour burden per FAC associated with training and related records is 24 hours. TSA assumes that this task could be completed by a Training and Development Manager in the Air Transportation industry in the U.S. and takes the estimates a fully loaded hourly average wage rate of $90.31.¹⁰ TSA estimates an annual average hour burden of 4,320, and an average annual burden cost of $390,136.¹¹

(e) Incident and Suspicious Activity Reporting. Based on incident reporting data from TSOC, TSA estimates that all FACs combined report approximately 60 incidents annually. TSA also estimates that it takes 0.5 hours (30 minutes) to report an incident. TSA assumes that a Corporate Security Director or Security Manager completes this task. TSA estimates a fully loaded hourly average wage rate of $105.96.¹² TSA estimates an average annual hour burden of 30 hours, with an average annual hour burden cost of $3,179.¹³

(f) Watch list. The majority of information collection related to watch lists is covered under TSA’s Secure Flight ICR (OMB Control Number 1652-0046).

The following estimates are based on the small number of passengers subject to additional screening processes and on a random selection of FACs. TSA estimates that there will be an average of 792,372 flights annually¹⁴ for which each FAC will be required to submit SFPD of passengers subject to additional screening to TSA Secure Flight for the watch list vetting. TSA estimates that it takes 0.33 hours (20 minutes) for FACs to submit SFPD to TSA Secure Flight. TSA assumes that a Corporate Security Director or Security Manager completes this task and estimates a fully loaded hourly average wage rate of $105.96.¹⁵ Therefore, TSA estimates an average annual hour burden of 264,124 hours¹⁶ and an average annual hour cost burden of $27,985,349 million.¹⁷A summary of all of the public hour burden and hour burden costs is presented in Table 1.

Table 1: Summary of Information Collection Annual Cost and Hour Burdens
MSP Requirements	Number of Respondents	Number of Occurrences	Average Number of Responses	Hour Burden per Response	Total Hours	Total Cost
	(a)	(b)	(c = a x b)	(d)	(e = c x d)	(f = e x wage rate)
(a) TSA-Required Amendments	180	18	3,240	1	3,240	$343,295.31
(b) Carrier-Requested Amendments			83	1	83	$8,794.29
(c) Compliance Recordkeeping Req.	180	7.43	1,338	4	5,350	$477,914.94
(d) Training Recordkeeping Req.	180	1	180	24	4,320	$390,135.76
(e) Incident and Suspicious Activity Reporting			60	0.5	30	$3,178.66
(f) Watch list	180	4,402.07	792,372	0.33	264,124	$27,985,348.67
Total					277,147	$29,208,667.65

Note: Totals may not add due to rounding.

13. Provide an estimate of the annualized capital and start-up costs resulting from the collection of information.

There are no capital or start-up costs associated with the collection of information.

14. Provide estimates of annualized cost to the Federal Government. Also, provide a description of the method used to estimate cost, and other expenses that would not have been incurred without this collection of information.

The estimates presented in this section represent the annual cost burden to the Federal Government. The cost burden calculations depend on the number of FACs responding to the requirements in the MSP, number of security program amendments issued by TSA or amendment requests by FACs, amount of time TSA takes to complete the tasks, and the hourly average wage rate of TSA personnel completing the tasks. The detailed information on these estimates is presented below:

Annual Cost Burden Estimates:

(a) New FACs Implementing the MSP Requirements. TSA estimates that two new FACs will seek to adopt and implement the MSP yearly in order to initiate operations to or from the United States. TSA staff must onboard the FAC to Secure Flight, conduct a Master Crew List set-up and start inspections. TSA estimates each new FAC requires approximately 50 hours¹⁸ of TSA staff time at an hourly average wage rate of $82.14.¹⁹ TSA estimates an annual hour burden of 100 hours and an average annual burden cost of $8,214.²⁰

(b) TSA-Issued Security Program Amendments. TSA projects that it will issue 18 amendments per year based on information obtained from GS. Since this is a global issuance, TSA estimates that it takes approximately 30 minutes (0.5 hours) for IIRs to issue to each of the 180 FACs as a TSA-initiated amendment. TSA uses an hourly average wage rate of $91.55 for a J-Band IIR. TSA estimates an annual hour burden of 1,620 hours and an annual cost burden of $148,309.²¹

(c) Carrier-Requested Security Program Amendments. Based on past requests, TSA estimates that it receives requests from a FAC for a change to its security program 83 times annually. Based on information obtained from TSA Global Strategies (TSA GS), TSA estimates that an average of 4 hours is necessary for a J-Band IIR to review a request from an FAC, conduct any related research, and draft appropriate related paperwork. TSA uses a fully-loaded hourly wage rate of $91.55 for a J-Band IIR.²² TSA estimates an average annual hour burden of 332 hours and an average annual hour cost burden of $28,485.²³

Additionally, various TSA Headquarters personnel review the paperwork drafted by IIRs and the FACs requesting changes to their security programs. TSA estimates that it takes an average of 6.75 hours for TSA Headquarters personnel to review the information. TSA uses hourly average fully loaded wage rate of $93.09 for the various personnel involved in reviewing the document.²⁴ For review, TSA estimates an average annual hour burden of 560 hours and an average annual cost burden of $52,152.²⁵ Taken completely, TSA estimates a total annual hour cost burden for drafting and reviewing requests for a FAC to change a security program of $80,637 ($28,485 + $52,152).

(d) Compliance and Training Recordkeeping and Review Requirement. TSA estimates that each FAC is inspected for compliance and training record keeping requirements 4 times a year based on information obtained from TSA GS. TSA estimates that the time necessary to inspect and for record keeping is approximately 150 minutes (2.5 hours), as TSA would inspect multiple forms of recordkeeping and review requirements during a single FAC inspection. TSA conducts approximately 7.43 inspections per air carrier (1,338 FAC inspections). These inspections are conducted abroad by an international J-Band inspector, with a fully-loaded hourly wage of $91.55.²⁶ TSA estimates an average annual hour burden of 3,344 hours and average annual hour cost burden of $306,127.²⁷

(e) Reports of Suspicious Activity Requirement. TSA estimates it will receive 60 reports of suspicious activity from the total population (180) of FACs. TSA estimates that each report of suspicious activity will require two hours to process. This work will be done by a J-Band IIR with a fully loaded hourly wage of $91.55.²⁸ TSA estimates an average annual hour burden of 120 hours and average annual hour cost burden of $10,986.²⁹

TSA estimates the total annual average hour burden to be 6,076 hours³⁰ and total annual

average hour cost burden to be $554,273.³¹

15. Explain the reasons for any program changes or adjustments reported in Items 13 or 14 of the OMB Form 83-I.

There have been no program changes or adjustments, the estimated burden hours and costs account for the latest populations and compensation rates. However, TSA adjusted the annual burden hours to more accurately represent the collection’s burden.

16. For collections of information whose results will be published, outline plans for tabulation and publication. Address any complex analytical techniques that will be used. Provide the time schedule for the entire project, including beginning and ending dates of the collection of information, completion of report, publication dates, and other actions.

TSA will not publish or tabulate information on this collection.

17. If seeking approval to not display the expiration date for OMB approval of the information collection, explain the reasons that display would be inappropriate.

TSA will not be seeking a request not to display expiration date.

18. Explain each exception to the certification statement identified in Item 19, “Certification for Paperwork Reduction Act Submissions,” of OMB Form 83-I.

TSA is not seeking any exceptions.

File Type	application/vnd.openxmlformats-officedocument.wordprocessingml.document
File Title	OCC comments on 1652-0005
Author	Marisa.Mullen
File Modified	0000-00-00
File Created	2021-10-04