Ohio Administrative Code (Last Updated: January 12, 2021) |
120 Ohio Public Defender Commission |
Chapter120-3. Accessing Personal Information |
120-3-01. Definitions
-
This chapter is promulgated in accordance with section 1347.15 of the Revised Code. For purposes of this chapter, the following definitions apply.
(A) "Access" as a noun means an instance of copying, viewing, or otherwise perceiving; "access" as a verb means to copy, view, or otherwise perceive.
(B) "Acquisition of a new computer system" means the purchase of a "computer system," as defined in this rule, that is not a computer system currently in place nor one for which the acquisition process has been initiated as of the effective date of the agency rule addressing requirements in section 1347.15 of the Revised Code.
(C) "Computer system" means a "system," as defined by section 1347.01 of the Revised Code, that stores, maintains, or retrieves personal information using electronic data processing equipment.
(D) "Confidential personal information" (CPI) has the meaning as defined by division (A)(1) of section 1347.15 of the Revised Code and identified by rules promulgated by the agency in accordance with division (B)(3) of section 1347.15 of the Revised Code that reference the federal or state statutes or administrative rules that make personal information maintained by the agency confidential.
(E) "Employee of the state agency" means each employee of a state agency regardless of whether that employee holds an elected or appointed office or position within the state agency. "Employee of the state agency" is limited to the specific employing state agency.
(F) "Incidental contact" means contact with the information that is secondary or tangential to the primary purpose of the activity that resulted in the contact.
(G) "Individual" means a natural person or the natural person's authorized representative, legal counsel, legal custodian, or legal guardian.
(H) "Information owner" means the individual appointed in accordance with division (A) of section 1347.05 of the Revised Code to be directly responsible for a system.
(I) "Person" means a natural person.
(J) "Personal information" has the same meaning as defined in division (E) of section 1347.01 of the Revised Code.
(K) "Personal information system" means a "system" that "maintains" "personal information" as those terms are defined in section 1347.01 of the Revised Code. "System" includes manual and computer systems.
(L) "Research" means a methodical investigation into a subject.
(M) "Routine" means commonplace, regular, habitual, or ordinary.
(N) "Routine information that is maintained for the purpose of internal office administration, the use of which would not adversely affect a person" as that phrase is used in division (F) of section 1347.01 of the Revised Code means personal information relating to employees and maintained by the agency for internal administrative and human resource purposes.
(O) "System" has the same meaning as defined by division (F) of section 1347.01 of the Revised Code.
(P) "Upgrade" means a substantial redesign of an existing computer system for the purpose of providing a substantial amount of new application functionality, or application modifications that would involve substantial administrative or fiscal resources to implement, but would not include maintenance, minor updates and patches, or modifications that entail a limited addition of functionality due to changes in business or legal requirements.
Five Year Review (FYR) Dates:
11/24/2020 and
12/01/2020
Promulgated
Under: 111.15
Statutory Authority: R.C. 111.15
Rule
Amplifies: R.C. 120.03, R.C. 120.04, R.C. 1347.15
Prior Effective
Dates: 12/01/2015
Prior History: (Effective: 12/1/2015
Five Year
Review (FYR) Dates: 12/01/2020
Promulgated Under:
111.15
Statutory
Authority: R.C. 120.03, R.C.
120.04
Rule
Amplifies: R.C. 1347.15)