OMB.report

Federal forms, ICRs, and supporting documents

Document

Privacy Threshold Analysis

ICR 202606-0920-001 · OMB 0920-1348 · Object 169473400.

Document Viewer [rtf]

Status: Original and derived artifacts are available for this document.

Download: rtf | pdf | html

Primary: htmlSource: text/rtf
Loading document viewer…
Document Metadata
File Typetext/rtf
File TitlePrivacy Threshold Analysis
Last Modified ByWriter
File Created2026-06-04
Conversion Statecomplete
Extracted Text
Archived Privacy Threshold Analysis (PTA): CDC - OCIO Azure GSS - QTR4 - 2025 - CDC8809496
Created Date: 12/8/2025 7:56 AM Last Updated: 12/8/2025 7:56 AM


Instructions


Review the following steps to complete this questionnaire:
1) Answer questions. Select the appropriate answer to each question. Question specific help text may be available via the icon. If your answer dictates an explanation, a required text box will become available for you to add further information.
2) Add Comments. You may add question specific comments or attach supporting evidence for your answers by clicking on the icon next to each question. Once you have saved the comment, the icon will change to the icon to show that a comment has been added.
3) Change the Status. You may keep the questionnaire in the "In Process" status until you are ready to submit it for review. When you have completed the assessment, change the Submission Status to "Submitted". This will route the assessment to the proper reviewer. Please note that all values list questions must be answered before submitting the questionnaire.
4) Save/Exit the Questionnaire. You may use any of the four buttons at the top and bottom of the screen to save or exit the questionnaire. The button allows you to complete the questionnaire. The button allows you to save your work and close the questionnaire. The button allows you to save your work and remain in the questionnaire. The button closes the questionnaire without saving your work.



Acronyms
ATO - Authorization to Operate
CAC - Common Access Card
FISMA - Federal Information Security Management Act
HHS - Department of Health and Human Services
NARA - National Archives and Record Administration
OMB - Office of Management and Budget
PIA - Privacy Impact Assessment
PII - Personally Identifiable Information
POC - Point of Contact
PTA - Privacy Threshold Analysis
URL - Uniform Resource Locator








General Information


PTA Name:
CDC - OCIO Azure GSS - QTR4 - 2025 - CDC8809496


PTA ID:
8809496










Name of Component:
OCIO Azure GSS


Name of ATO Boundary:
OCIO Azure GSS





















Does this need to migrate to a Sub- Component?:
No










Consolidated Parent Component


Component Name


No Records Found


Is this a Sub- Component?:
No










Overall Status:



PTA Queue:




Submitter:
ALLEN, Cynthia

# of Days Open:
71


Submission Status:
In Process

Submit Date:

















Office:
OD


PIA Required:











Legacy PTA ID:



OpDiv:
CDC





















1:
Identify the Enterprise Performance Lifecycle Phase of the system.
Operations and Maintenance







2:
Is this a FISMA-Reportable system?
Yes







3:
Does the system have or is it covered by a Security Authorization to Operate (ATO)?
Yes







4:
ATO Date or Planned ATO Date.








5:
Is the system or electronic information collection agency or contractor operated?
Agency







History Log:
View History Log















PTA Questions

General


PTA - 1 Point of Contact (POC)


POC Title
POC Name
POC Organization
POC E-mail


No Records Found


PTA - 2:
Indicate the following reason(s) for this PTA. Choose from the following options.



PTA - 3:
Is the data contained in the system owned by the agency or contractor? 








PTA - 4:
Please give a brief overview and purpose of the system by describing what the functions of the system are and how the system carries out those functions.










PTA - 5:
List and/or describe all the types of information that are collected (into), maintained, and/or shared in the system regardless of whether that information is PII and how long that information is stored.










PTA - 5A:
Are user credentials used to access the system?








PTA - 5B:
Please identify the type of user credentials used to access the system.








PTA - 6:
Describe why all types of information is collected (into), maintained, and/or shared with another system. This description should specify what information is collected about each category of individual.










PTA - 7:
Does the system collect, maintain, use of share PII?








PTA - 7A:
Does this include Sensitive PII as defined by HHS?








PTA - 8:
Does the system include a website or online application?








PTA - 8A:
Are any of the URLs listed accessible by the general public (to include publicly accessible log in and internet websites/online applications)?



PTA - 9:
Describe the purpose of the website, who has access to it, and how users access the web site (via public URL, log in, etc.).  Please address each element in your response.










PTA - 10:
Does the website have a posted privacy notice?








PTA - 11:
Does the website contain links to non-federal government websites external to HHS?



PTA - 11A:
Is a disclaimer notice provided to users that follow external links to websites not owned or operated by HHS?



PTA - 12:
Does the website use web measurement and customization technology?
​



PTA - 12A:
Select the type(s) of website measurement and customization technologies in use and if it is used to collect PII.



PTA - 13:
Does the website have any information or pages directed at children under the age of thirteen?



PTA - 13A:
Does the website collect PII from children under the age thirteen?








PTA - 13B:
Is there a unique privacy policy for the website and does the unique privacy policy address the process for obtaining parental consent if any information is collected?



PTA - 14:
Does the system have a mobile application?








PTA - 14A:
Is the mobile application HHS developed and managed or a third-party application?



PTA - 15:
Describe the purpose of the mobile application, who has access to it, and how users access it.  Please address each element in your response.










PTA - 16:
Does the mobile application/have a privacy notice?








PTA - 17:
Does the mobile application contain links to non-federal government websites external to HHS?



PTA - 17A:
Is a disclaimer notice provided to users that follow external links to resources not owned or operated by HHS?



PTA - 18:
Does the mobile application use measurement and customization technology?



PTA - 18A:
Describe the type(s) of measurement and customization technologies or techniques in use and what information is collected.










PTA - 19:
Does the mobile application have any information or pages directed at children under the age of thirteen?



PTA - 19A:
Does the mobile application collect PII from children under the age thirteen?



PTA - 19B:
Is there a unique privacy policy for the mobile application and does the unique privacy policy address the process for obtaining parental consent if any information is collected?



PTA - 20:
Is there a third-party website or application (TPWA) associated with the system?



PTA - 21:
Does this system use artificial intelligence (AI) tools or technologies?

















Review & Comments

Privacy Analyst Review


OpDiv Privacy Analyst Review Status:
Awaiting Review

Privacy Analyst Review Date:










Privacy Analyst Comment :



Privacy Analyst Days Open:




















SOP Review


SOP Review Status:
Awaiting Review

SOP Signature:










SOP Comments:



SOP Review Date:































SOP Days Open:












Supporting Document(s)


Name
Size
Type
Upload Date
Downloads


No Records Found










Comments


Question Name
Submitter
Date
Comment
Attachment


No Records Found










Miscellaneous Fields


Sub- Component ISSO: