Skip to page content
Office of the Chief Information Officer
Bookmark and Share

Privacy Impact Assessment Questionnaire
OSHA – Legacy Integrated Mangement Information System (LIMIS) FY 13


This Privacy Impact Assessment (PIA) covers the OSHA Legacy Integrated Management Information System (LIMIS).

The LegacyIMIS HOST Computer Facility supports a National consolidated database system for collecting, manipulating, maintaining and retrieving enforcement, consultation and discrimination data. There are 3 minor applications, PC CSHO, Accident Investigation Summary Report (AISR), Application and Safety & Health Achievement Recognition Program (SHARP).

LIMIS contains Personally Identifiable Information (PII) and a PIA review is performed annually.

This is the PIA for the LIMIS Application as required by section 208 of the E-Government Act of 2002.

The Legacy Integrated Management Information System also referred to as LIMIS, is an OSHA Major Information System (MIS). LIMIS was developed in 1983 and has been operational since 1984. LIMIS is an OSHA Automated Information System that is used for planning, managing, tracking and reporting on its programs, services and assistance.

Characterization of the Information

The LIMIS collects a variety of information, including inspection history for specific establishments, citations issued, penalties assessed and paid, accidents and injuries, standards cited, complaints received and investigated, referrals, cases contested, State Programs Activities, Federal Agency Programs Activities, consultation visits and discrimination investigations.

LIMIS security requirements for confidentiality are minimal since most information processed and stored in LIMIS is releasable under the Freedom of Information Act (FOIA). Only the following LIMIS data elements are subject to the Privacy Act:

  • Name of surviving accident victim(s)
  • Names of Whistleblower Complainants/Representatives
  • Consultation data
  • Names of OSHA-7 Complainants
  • Compliance Officer (CSHO) IDs
  • Number of employees
  • OSHA-170 Abstracts before review
  • OSHA-200/300 data
  • Debt collection
  • Site specific employee counts
  • Site specific sampling information

What are the sources of the PII in the information system?

Obtained from individuals or business entities.

What is the PII being collected, used, disseminated, or maintained?

Non-Sensitive PII - Name, Business Address, Business Telephone Number.

How is the PII collected?

Entered through screens by CSHO from inspections and investigations.

How will the information be checked for accuracy?

SIC codes are verified for accuracy.

What specific legal authorities, arrangements, and/or agreements defined the collection of information?

The OSHA Act of 1970.

What is the purpose or use of the PII collection for the third-party website or application?

Not applicable to LIMIS.

Will PII become available to the agency through public use of a third-party website or application?

Not applicable to LIMIS.

Is the PII collection from a 3rd party website or application voluntary?

Not applicable to LIMIS.

Privacy Impact Analysis

Privacy risks are low because access controls, physical and logical security controls are implemented throughout the LIMIS.

All personnel with access to PII are cleared as required by the Homeland Security Presidential Directive 12 (HSPD-12).

Uses of the PII

Describe all the uses of the PII

Used for OSHA investigations, inspections, accidents and fatality reporting.

What types of tools are used to analyze data and what type of data may be produced?

COBOL, Natural, and interactive custom built applications. Reports are produced that describe historical trending to date.

Will the system derive new data, or create previously unavailable data, about an individual through aggregation of the collected information?


If the system uses commercial or publicly available data, please explain why and how it is used.

Postal Zip Code data. A table is used to validate all zip codes that are entered.

Will the use of PII create or modify a "system of records notification" under the Privacy Act?


Is the agencies use of PII regarding third-party website or application consistent with all applicable laws, regulations and policies?


Privacy Impact Analysis

OSHA leverages the IBM flagship security product RACF (Resource Access Control Facility) RACF is an approved Common Criteria product and is B1 certified by the Federal Government. LIMIS adheres to all federally mandated controls Access control, authentication & authorization controls are built into the application.


How long is information retained in the system?


Is a retention period established to minimize privacy risk?


Has the retention schedule been approved by the DOL agency records officer and the National Archives and Records Administration (NARA)?


What efforts are being made to eliminate or reduce PII that is collected, stored or maintained by the system if it is no longer required?

All data is retained in accordance with policy.

How is it determined that PII is no longer required?

Retention Policy and procedures.

Privacy Impact Analysis

No appreciable increase in risk with the passage of time.

Internal Sharing and Disclosure

With which internal organization(s) is the PII shared, what information is shared, and for what purpose?

No direct sharing of LIMIS information is authorized for any other systems.

How is the PII transmitted or disclosed?

Non Sensitive PII data is maintained on site and transmitted via network resources.

Privacy Impact Analysis

If information is provided under FOIA, then PII is removed from or masked in the data file. Data is encrypted.

External Sharing and Disclosure

With which external organization(s) is the PII shared, what information is shared, and for what purpose?


Is the sharing of PII outside the Department compatible with the original collection? If so, is it covered by an appropriate routine use in a SORN? If so, please describe. If not, please describe under what legal mechanism the program or system is allowed to share the PII outside of DOL.


How is the information shared outside the Department and what security measures safeguard its transmission?

Non Sensitive PII data is not shared outside the department.

Privacy Impact Analysis

No risk.


Was notice provided to the individual prior to collection of PII?

No. Non Sensitive PII data is collected as part of an investigation or inspection.

Do individuals have the opportunity and/or right to decline to provide information?


Do individuals have the right to consent to particular uses of the information? If so, how does the individual exercise the right?

The individual is protected under the Privacy Act. The data is used only as part of an investigation. The individual has the right not to provide PII.

Privacy Impact Analysis


Access, Redress and Correction

What are the procedures that allow individuals to gain access to their information?

The individual submits a signed statement asking for their data under the Freedom of Information Act (FOIA).

What are the procedures for correcting inaccurate or erroneous information?

The user notifies the Regional Office that performed the inspection or investigation.

How are individuals notified of the procedures for correcting their information?

Individuals are notified verbally and are provided a written statement for their review.

If no formal redress is provided, what alternatives are available to the individual?

The user contacts an OSHA office.

Privacy Impact Analysis

There are no appreciable risks associated with the redress information.

Tecnical Access and Security

What procedures are in place to determine which users may access the system and are they documented?

OSHA leverages COTS products to enforce authentication and authorization software. Procedures are documented in SOP and security documents that adhere to National Institute of Standards and Testing (NIST) Special Publication (SP) 800-53. The following products are used for each layer of LIMIS:

  • PC - MS/Active Directory
  • Operating System - RACF for Mainframe and internal for systems
  • Network - MS/Active Directory
  • Application - Internal Security
  • Database - RACF for ADABAS and internal for Oracle and Informix

Will Department contractors have access to the system?


Describe what privacy training is provided to users, either generally or specifically relevant to the program or system? DOL wide Computer Security Awareness Training and Information System Security Awareness training is required for all personnel connecting to the network or that will have access to OSHA data. Personnel with security responsibilities are required to complete role-based training.

What auditing measures and technical safeguards are in place to prevent misuse of data?

LIMIS adheres to NIST 800-53 Security Controls. HSPD-12 (Homeland Security Presidential Directive-12 and Identity Verification is also used for personnel Security.

Privacy Impact Analysis

OSHA sensitive but unclassified data is not shared with any system and PII data is redacted if documented.


What stage of development is the system in, and what project development life cycle was used?

The system is in the operational maintenance phase.

Does the project employ technology which may raise privacy concerns? If so please discuss their implementation?



As a result of performing the PIA, what choices has the agency made regarding the information technology system and collection of information?

OSHA has completed the PIA for Legacy Integrated Management Information System (LIMIS) which is currently in operation. OSHA has determined that the safeguards and controls for this MODERATE system adequately protect the information.

OSHA has determined that it is collecting the minimum necessary information for the proper performance of a documented agency function.