Functional Requirements Document (FRD) Project# Project Title: Date Prepared: 1086075 PPS-CR#29689 Masking Additional 10/31/16 Information in Myepp

Home , The Following (season 1), The Following (season 2), The Following (season 3)

United States Department of Agriculture Office of the Chief Financial Officer National Finance Center Government Employees Services Division

Functional Requirements Document (FRD) Project# Project Title: Date Prepared: 1086075 PPS-CR#29689 Masking Additional 10/31/16 Information in MyEPP

Version 2.0 As of: 3/07/17

Scope: The scope of this request is to increase security of Personal Identifiable Information (PII) data in the Employee Personal Page (EPP) and Reporting Center (RC) for all customers. This will require more complex security functionality, which includes masking PII data that is viewed and printed from EPP and RC. Assumptions:

Functional Requirements

Payroll Applications Systems Branch (PASB) Requirements

“Not Applicable”

Personnel Applications Systems Branch (PESB) Requirements

“Not Applicable”

Administrative Applications Systems Branch (AASB) Requirements

“Not Applicable”

Payroll Web Systems Branch (PWSB) Requirements

EPP: The following PII data on the Statement of Earnings and Leave will be masked entirely with asterisks (*) in EPP for viewing and printing:

 The SSN on the Print Friendly, View PDF, View DOC (Word), and View Xls (Excel) viewed and printed versions.  Bank financial account number, DD/EFT Routing numbers for CHKING/SAVING on the Print Friendly, PDF, Excel, and Word viewed and printed versions.  Financial allotments account number and routing numbers for CHKING/SAVINGS on the

Version: 11 February 2015 Page 1 of 5

Functional Requirements Document (FRD) Project# Project Title: Date Prepared: 1086075 PPS-CR#29689 Masking Additional Information in 10/31/16 MyEPP

Print Friendly, PDF, Excel, and Word viewed and printed versions.

 Discretionary allotments account number and routing numbers for CHKING/SAVINGS on the Print Friendly, PDF, Excel, and Word viewed and printed versions.

Under the Home tab in Personal Info and the Self Service Page the following PII data will be masked entirely with asterisks(*) for viewing and printing:

 Direct Deposit tab Bank routing and account numbers for CHEKING/SAVINGS

 Financial Allotment tab Bank routing and account numbers for CHEKING/SAVINGS

 Health Savings Account Bank routing and account numbers for CHEKING/SAVINGS

 Discretionary Allotments Bank routing and account numbers for CHEKING/SAVINGS

 W-2 The SSN on the Print-friendly, View PDF, View Doc(Word), and View Xls(Excel)

 1095C The SSN on the Print-friendly, View PDF, View Doc(Word), and View Xls(Excel)

On the MY EPP login page the following will be partially masked:

 Partially mask email addresses that are presented when “forgot password” is selected, e.g., [email protected].

 Partially mask email addresses that are presented when “forgot user id” is selected, e.g., [email protected].

When you log on, upon entry into EPP the data will be masked on the screen as the default. Employees will have the option to unmask the data by going to the Home tab in EPP, under the “Preferences” tab and selecting Change PII. Once an employee selects Change PII this will allow the employee to view and/or print the PII. Employees will have the option to unmask or mask PII data while in the EPP application using the Change PII option. When employees log out of EPP, the PII data will default back to masked.

On the printed version of the Statement of Earnings and Leave, when the unmask button is turned on the SSN will be the only PII shown for display. The rest of the PII data will remain as masked.

On the printed version of the W2 and 1095C when the unmask button is turned on the SSN will be the only PII shown for display.

Version: 11 February 2015 Page 2 of 5

Functional Requirements Document (FRD) Project# Project Title: Date Prepared: 1086075 PPS-CR#29689 Masking Additional Information in 10/31/16 MyEPP

Modify EPP to add a link on the EPP Home Page under News and Announcements that will direct the employee to the Customer Notification published on the NFC Home Page detailing the changes in EPP and RPCT.

Modify EPP to add an informational message banner at the top of each page that contains PII data. This to alert the employee that the data is masked and the steps needed to unmask. This message banner will be displayed in red and located at the top of the page.

Modify EPP to add an informational message banner at the top of each page that contains PII data to inform the employee that the data is unmasked and the steps needed to mask. This message banner will be displayed in red and located at the top of the page.

For the following pages the message banner will read as follows to mask and unmask the data:

Financial Allotments, Discretionary Allotments, Direct Deposit and Health Savings account:

Masked message "The following PII data is masked. If you would like to view or print the Bank Routing Number(s) and Bank Account Number(s) where they appear on the page, go to the Home page and click the Change PII link under the Preferences tab."

Unmasked message "The following PII data is unmasked. If you would like to mask the Bank Routing Number(s) and Bank Account Number(s) where they appear on the page, go to the Home page and click the Change PII link under the Preferences tab."

E&L, W-2 and 1095-C:

Masked message "The following PII data is masked. If you would like to view or print the Social Security number where it appears on the page, go to the Home page and click the Change PII link under the Preferences tab."

Unmasked message "The following PII data is unmasked. If you would like to mask the Social Security number where it appears on the page, go to the Home page and click the Change PII link under the Preferences tab."

EPP Demo

Modify EPP Demo to perform the masking functionality as displayed on EPP.

Version: 11 February 2015 Page 3 of 5

Functional Requirements Document (FRD) Project# Project Title: Date Prepared: 1086075 PPS-CR#29689 Masking Additional Information in 10/31/16 MyEPP

EPP Mobile

Modify the EPP Mobile to mask all PII data for viewing. PII data will be masked on the pages as the default. Employees will have the option to unmask the data by going to the Profile tab, under the “Preferences” tab and select Change PII. Once an employee selects Change PII this will allow the employee to view the PII data. Employees will have the option to unmask or mask PII data while in the EPP mobile application using the Change PII option. PII data will default back to mask once the employee logs out. The following PII data will be masked.

 Financial allotment routing and account numbers  Discretionary allotments routing and, account numbers  Direct Deposit routing number and account numbers  Health Savings routing and account number

On the printed version of the Statement of Earnings and Leave, when the unmask button is turned on the SSN will be the only PII shown for display. The rest of the PII data will remain as masked.

On the printed version of the W2 and 1095C when the unmask button is turned on the SSN will be the only PII shown for display.

Reporting Center

The following PII data on the Statement of Earnings and Leave will be masked entirely with asterisks (*) in RC for viewing and printing. Users will not have the option to unmask PII data in the RC.

 Social Security Number  Financial allotments account numbers  Discretionary allotments account numbers  Direct Deposit Routing Number

Administrative Web Systems Branch (AWSB) Requirements

“Not Applicable”

Human Resources Applications Branch (HRAB) Requirements

Version: 11 February 2015 Page 4 of 5

Functional Requirements Document (FRD) Project# Project Title: Date Prepared: 1086075 PPS-CR#29689 Masking Additional Information in 10/31/16 MyEPP

“Not Applicable”

External Vendor Requirements

“Not Applicable”

Signature of Systems Requirements Branch Chief: Date:

Signature of Web Requirements Branch Chief: Date: /s/ Alisa R. Wells 3/7/17

Version: 11 February 2015 Page 5 of 5