The FAA MedXPress system allows anyone requesting an FAA Medical Clearance or Medical Certificate to electronically complete an application. Information. The information on the attached FAA Form , Application For Airman Medical Certificate or Airman Medical and. Student Pilot Certificate, is solicited under. Please note that the FAA’s official forms page can be found by clicking this hyperlink: REPORT OF EYE EVALUATION ver · FAA Form GG Edition.
|Published (Last):||22 March 2018|
|PDF File Size:||15.11 Mb|
|ePub File Size:||18.61 Mb|
|Price:||Free* [*Free Regsitration Required]|
FAA is responsible for:.
The protection of applicant privacy is a priority for FAA. FAA utilizes a privacy management process built upon a methodology that has been developed and implemented in leading companies around the country and globally.
The methodology is designed to ensure that DOT and FAA will have the information, tools, and flrm necessary to manage privacy effectively and employ the highest level of fair information practices while allowing FAA to achieve its mission of protecting and enhancing the U.
FAA MedXPress applies DOT security standards, including, but not limited to, routine scans and monitoring, back-up activities, and background security checks of those FAA employees and contractor employees who have access to the data. The following electronic access safeguards are also in effect:.
Temporary passwords are sent to the address provided and expire upon first use. The FAA MedXPress application consists of an account creation and user authentication module, an electronic Form entry module, and an email notification module.
All modules operate in succession by accessing the same security information. FAA controls access privileges according to the following roles:. The following matrix describes the levels of access and safeguards around each of these roles as they pertain to PII. Applications for medical certification that are collected by FAA MedXPress are deleted after 60 days under the following circumstances:.
This system is covered by System of Records Notice: FAA is responsible for: Regulating civil aviation to promote safety; encouraging and developing civil aeronautics, including new aviation technology; developing and operating a system of air traffic control and navigation for both civil and military aircraft; researching and developing the National Airspace System and civil aeronautics; developing and carrying out programs to control aircraft noise and other environmental effects of civil aviation; and regulating U.
Medical clearance of air traffic control specialist and other FAA employees required to meet medical standards to perform safety-sensitive duties; pilot medical certification.
The methodology is based upon the following: Establish priority, authority, and responsibility.
Appointing a cross-functional privacy management team to ensure input from systems architecture, technology, security, legal, and other disciplines necessary to ensure that an effective privacy management program is developed. Assess the current privacy environment. This involves interviews with key individuals involved in the FAA MedXPress system to ensure that privacy risks are identified and documented.
They also develop the necessary redress systems and training programs.
Develop the policies, practices, and procedures. The privacy management team develops policy or policies, practices, and procedures to ensure compliance with fair information practices.
Implement the policies, practices, and procedures. Once the policies, practices, and procedures are developed, they must be implemented. It also entails working with vendors to ensure that they maintain the highest standard for privacy while providing services to the FAA project.
Maintain policies, practices, and procedures. Due to changes in technology, personnel, and other aspects of any program, effective privacy management requires that technology and information be available to gorm privacy management team to ensure that privacy policies, practices, and procedures continue to reflect actual practices. Regular monitoring of compliance with privacy policies, practices, and procedures is required.
This step involves the development and implementation of an effective redress and audit system to ensure that any complaints are effectively addressed and corrections made if necessary. Name; Social Security Number; Date of Birth; Home Mailing Address; Home Phone Number; E-mail Address; Medical History this includes all medical history information, such daa medications being taken and previous medical visits, that is supplied by the applicant and used by the AME to determine eligibility for a medical clearance.
The following electronic access safeguards are also in effect: Minimum length of passwords is eight characters. Passwords must be a combination of letters, numbers, and special characters. Accounts are locked after a fform number of incorrect attempts. IP addresses are locked after a set number of attempts per hour. User sessions expire after a set period of time.
FAA controls access privileges according to the following roles: System generated passwords expire torm initial use.
Sessions are expired after a set period of time. Passwords must be a combination of letters, numbers and special characters. Forgotten passwords are reset by random generator. Passwords my not be reused for 13 iterations. Sessions automatically expire after a set period of time.
Passwords may only be reused after 13 iterations. Applications for medical certification that are collected by FAA MedXPress are deleted after 60 days under the following circumstances: The applicant initiates an application for medical certification but does not submit a completed form. The applicant submits a completed application form but does not undergo a physical exam by a designated AME. Wednesday, February 18, Trucking and Motorcoaches FRA: Vehicle Rules and Safety.
The following safeguards apply: The following safeguards also apply: