TSA announces Registered Traveller program compliance standards
Agency regulators move forward despite concerns that rising costs may eventually kill program; two week public comment period begins; issues of concern include IT security and privacy rules, enrollment standards, and ongoing compliance methods
Government regulators often seem to exist in a parallel universe, drafting codes late into the night while the rest of the world goes about its free existence. We reported last week that mounting fees of up to $200 may kill the Transportation Security Administration’s (TSA) much-vaunted Registered Traveler (RT) program. Such news, however, did not permeate the agency, and TSA regulators marched forward with a detailed list of program compliance standards. Interested parties have two week’s to respond. The standards focus on:
BULLET POINTS
1. RT Information Systems: Standards for securing information systems transmitting and or holding RT participant data.
2. Enrollment/ Verification: Process-specific standards for establishing internal controls over participant enrollment and verification.
3. Ongoing Compliance: Detailed procedures for demonstrating compliance with the standards
In other Registered Traveller news, TSA also recently completed a Privacy Impact Assessment, provided its final recommendations to the Registered Traveler Interoperability Consortium, and advised potential vendors for the program that they may begin using an advanced registration process to collect limited personal information from individuals interested in participating in program, whenever it actually comes on-line (and whether or not the participants can still afford the program when it does).
-read more at the Registered Traveller Web site
