|
requirements applicable to Standard Form 312 (which relates to classified information), Form 4414 (which relates to
<br />sensitive compartmented information), or any other form issued by a federal department or agency governing the
<br />nondisclosure of classified information.
<br />1. In accepting this award, the recipient--
<br />a. represents that it neither requires nor has required internal confidentiality agreements or statements from employees
<br />or contractors that currently prohibit or otherwise currently restrict (or purport to prohibit or restrict) employees or
<br />contractors from reporting waste, fraud, or abuse as described above; and
<br />b. certifies that, if it learns or is notified that it is or has been requiring its employees or contractors to execute
<br />agreements or statements that prohibit or otherwise restrict (or purport to prohibit or restrict), reporting of waste, fraud,
<br />or abuse as described above, it will immediately stop any further obligations of award funds, will provide prompt written
<br />notification to the federal agency making this award, and will resume (or permit resumption of) such obligations only if
<br />expressly authorized to do so by that agency.
<br />2. If the recipient does or is authorized under this award to make subawards ("subgrants"), procurement contracts, or
<br />both--
<br />a. it represents that--
<br />(1) it has determined that no other entity that the recipient's application proposes may or will receive award funds
<br />(whether through a subaward ("subgrant"), procurement contract, or subcontract under a procurement contract) either
<br />requires or has required internal confidentiality agreements or statements from employees or contractors that currently
<br />prohibit or otherwise currently restrict (or purport to prohibit or restrict) employees or contractors from reporting waste,
<br />fraud, or abuse as described above; and
<br />(2) it has made appropriate inquiry, or otherwise has an adequate factual basis, to support this representation; and
<br />b. it certifies that, if it learns or is notified that any subrecipient, contractor, or subcontractor entity that receives funds
<br />under this award is or has been requiring its employees or contractors to execute agreements or statements that
<br />prohibit or otherwise restrict (or purport to prohibit or restrict), reporting of waste, fraud, or abuse as described above, it
<br />will immediately stop any further obligations of award funds to or by that entity, will provide prompt written notification to
<br />the federal agency making this award, and will resume (or permit resumption of) such obligations only if expressly
<br />authorized to do so by that agency.
<br />Condition 20
<br />Reclassification of various statutory provisions to a new Title 34 of the United States Code
<br />On September 1, 2017, various statutory provisions previously codified elsewhere in the U.S. Code were editorially
<br />reclassified (that is, moved and renumbered) to a new Title 34, entitled "Crime Control and Law Enforcement." The
<br />reclassification encompassed a number of statutory provisions pertinent to OJP awards (that is, OJP grants and
<br />cooperative agreements), including many provisions previously codified in Title 42 of the U.S. Code.
<br />Effective as of September 1, 2017, any reference in this award document to a statutory provision that has been
<br />reclassified to the new Title 34 of the U.S. Code is to be read as a reference to that statutory provision as reclassified
<br />to Title 34. This rule of construction specifically includes references set out in award conditions, references set out in
<br />material incorporated by reference through award conditions, and references set out in other award requirements.
<br />Condition 21
<br />Requirement to report actual or imminent breach of personally identifiable information (PII)
<br />The recipient (and any "subrecipient" at any tier) must have written procedures in place to respond in the event of an
<br />actual or imminent "breach" (OMB M-17-12) if it (or a subrecipient) -- (1) creates, collects, uses, processes, stores,
<br />maintains, disseminates, discloses, or disposes of "Personally Identifiable Information (PII)" (2 CFR 200.1) within the
<br />scope of an OJP grant-funded program or activity, or (2) uses or operates a "Federal information system" (OMB
<br />Circular A-130). The recipient's breach procedures must include a requirement to report actual or imminent breach of
<br />PII to an OJP Program Manager no later than 24 hours after an occurrence of an actual breach, or the detection of an
<br />Page: 15 of 23
|