Supports the operations surrounding the management of official documents, statistics, and records for the entire organization. The overall accountability rating for this information classification is Low.

Confidentiality level = Moderate

The confidentiality impact level is the effect of unauthorized disclosure of central records management information on the ability of responsible entities to manage official documents, statistics, and records for the entire organization. Unauthorized disclosure of raw data and other source information for central records management operations is likely to violate the various state and international privacy laws and other regulations applicable to the dissemination of personal and organizational information. (The provisional impact levels for personnel information are documented in the Personal Identity and Authentication, Income, Representative Payee, and Entitlement Event information types.)

Known mitigating factors toward changing the confidentiality level

Unauthorized disclosure of some centrally managed records can pose a threat to human life or a loss of major assets. In such cases, the confidentiality impact is high.

Integrity level = Low

The integrity impact level is based on the specific mission and the data supporting that mission, not on the time required to detect the modification or destruction of information. In addition, the consequences of unauthorized modification or destruction of central records management information may depend on the urgency with which the information is needed or the immediacy with which the information is used. In most cases, it is unlikely that the information will be time-critical or acted upon immediately.

Availability level = Low

The availability impact level is based on the specific mission and the data supporting that mission, not on the time required to reestablish access to the central records and statistics management information. Central records management processes are generally tolerant of reasonable delays. Generally, disruption of access to central records and statistics management information can be expected to have only a limited adverse effect on organizational operations, organizational assets, or individuals.