View Information Collection Request (ICR) Package
Skip to main content
An official website of the United States government
The .gov means it's official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you're on a federal government site.
The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.
Search:
Agenda
Reg Review
ICR
This script is used to control the display of information in this page.
Display additional information by clicking on the following:
All
Brief and OIRA conclusion
Abstract/Justification
Legal Statutes
Rulemaking
FR Notices/Comments
IC List
Burden
Misc.
Common Form Info.
Certification
View Information Collection (IC) List
View Supporting Statement and Other Documents
Please note that the OMB number and expiration date may not have been determined when this Information Collection Request and associated Information Collection forms were submitted to OMB. The approved OMB number and expiration date may be found by clicking on the Notice of Action link below.
View ICR - OIRA Conclusion
OMB Control No:
0960-0846
ICR Reference No:
202507-0960-006
Status:
Historical Inactive
Previous ICR Reference No:
202504-0960-002
Agency/Subagency:
SSA
Agency Tracking No:
Title:
mySocial Security – Security Authentication PIN (SAP)
Type of Information Collection:
No material or nonsubstantive change to a currently approved collection
Common Form ICR:
No
Type of Review Request:
Emergency
Approval Requested By:
04/24/2025
OIRA Conclusion Action:
Withdrawn and continue
Conclusion Date:
07/30/2025
Retrieve Notice of Action (NOA)
Date Received in OIRA:
07/18/2025
Terms of Clearance:
Withdrawn at agency's request to make modifications to the scope of the request.
Inventory as of this Action
Requested
Previously Approved
Expiration Date
09/30/2025
09/30/2025
09/30/2025
Responses
5,811,000
0
5,811,000
Time Burden (Hours)
2,001,567
0
2,001,567
Cost Burden (Dollars)
0
0
0
Abstract:
To mitigate fraud concerns, in April 2025, SSA increased the level of identity proofing needed for customers to make payment method changes during phone interactions. While necessary to protect the public and the integrity of SSA’s programs, this limits the accessibility of the phone as a service channel for direct deposit requests (including post entitlement/post-eligibility direct deposit changes). To bridge this gap, SSA developed a hybrid identity proofing process called the Security Authentication PIN (SAP) that will provide identity proofing parity with our online modality, as well as in-person verification. Utilizing the SAP process provides the necessary identity verification to allow payment method changes to direct deposit records via phone or in person, while ensuring fraud protection through verification of the identity of the individual prior to accessing or revising their account. SSA is implementing the new hybrid Security Authentication PIN (SAP) to digitally verify the identity of a telephone or in person customer when requesting changes to their direct deposit information. This supports the agency’s changes to its identity proofing policy for post-entitlement/ post-eligibility actions for direct deposit enrollments, updates or cancellations. To ease the burden on customers, SSA created a vanity URL that navigates customers directly to the Security Settings page within their online mySocial Security account, allowing them to quickly and easily generate the SAP after accessing their account. This feature reduces the burden on the customer to navigate within their online account to the Security Settings pages where they may generate the SAP. The code generates immediately once the customer selects the “Generate PIN” button. To allow for continued security for respondent’s personal information, and to ensure SSA is able to accurately verify the callers’ identities prior to accessing any SSA number holders’ sensitive information, we implemented this hybrid SAP process for telephone access to the direct deposit services. In this way, we continue to offer maximum flexibility and options to the public while ensuring the security of the public’s social security number and benefits payments. We expect this new identity proofing will be a powerful fraud prevention tool. The respondents are individuals who wish to do business with SSA over the telephone or in person for the purposes of direct deposit enrollments, updates or cancellations. We are submitting a Change Request to increase the scope of the SAP Process to include the following telephone services: (1) Generating a Benefit Verification Letter; (2) Obtaining a Tax Statement or replacement Form 1099, (3) Change of Address, and (4) Request for Claims Status. We will make no changes to the current SAP process; however, due to the sensitive nature of the information we need to divulge for these requests, we will now use the SAP process to conduct business with SSA over the phone for respondents requesting these additional 4 services. As we are planning to implement the SAP process for these four services by August 18, 2025, we are requesting approval of this Change Request by COB, August 15, 2025.
Emergency Justfication:
To allow for continued security for respondent’s personal information, and to ensure SSA is able to accurately verify the callers’ identities prior to accessing any SSA number holders’ sensitive information, we are implementing this hybrid SAP process for telephone access to the direct deposit services. In this way, we continue to offer maximum flexibility and options to the public while ensuring the security of the public’s social security number and benefits payments. We expect this new identity proofing will be a powerful fraud prevention tool. The respondents are individuals who wish to do business with SSA over the telephone or in person for the purposes of post-entitlement/post-eligibility actions for direct deposit enrollments, updates or cancellations, or to discuss flagged initial claims for all Title II non-disability benefits (Retirement, Survivors, Auxiliary Spouses, Lump Sum Death Payments (LSDP), and Children benefits applications).
Authorizing Statute(s):
None
Citations for New Statutory Requirements:
None
Associated Rulemaking Information
RIN:
Stage of Rulemaking:
Federal Register Citation:
Date:
Not associated with rulemaking
Federal Register Notices & Comments
60-day Notice:
Federal Register Citation:
Citation Date:
90 FR 16583
04/18/2025
Did the Agency receive public comments on this ICR?
No
Number of Information Collection (IC) in this ICR:
4
IC Title
Form No.
Form Name
Member of public requesting phone-based assistance changes for sensitive services using the SAP process
Member of public who decline to use SAP and visit a field office for in-person identity proofing
Member of the public requesting sensitive services in a field office who need identity proofing via SAP
Members of the public requesting changes for sensitive services who failed SAP over the phone
Burden increases because of Program Change due to Agency Discretion:
Yes
Burden Increase Due to:
Miscellaneous Actions
Burden decreases because of Program Change due to Agency Discretion:
Yes
Burden Reduction Due to:
Miscellaneous Actions
Short Statement:
We are updating the burden figures for this information collection to reflect the change in scope for the use of the SAP process, as we will continue to use the SAP process for direct deposit requests via telephone, but will also expand the use of the SAP process for four more sensitive telephone services. While we are making no changes to the SAP process, the increase in scope significantly increases the number of responses who will use the SAP process. * Note: The total burden reflected in ROCIS is 2,808,175, while the burden cited in the Justification for the Changes is 990,072. This discrepancy is because the ROCIS burden reflects the average teleservice center and field office waiting times as well as the burden per response. In contrast, the chart in the Justification document reflects actual burden.
Annual Cost to Federal Government:
$1,168,709,600
Does this IC contain surveys, censuses, or employ statistical methods?
No
Does this ICR request any personally identifiable information (see
OMB Circular No. A-130
for an explanation of this term)? Please consult with your agency's privacy program when making this determination.
No
Does this ICR include a form that requires a Privacy Act Statement (see
5 U.S.C. §552a(e)(3)
)? Please consult with your agency's privacy program when making this determination.
No
Is this ICR related to the Affordable Care Act [Pub. L. 111-148 & 111-152]?
No
Is this ICR related to the Dodd-Frank Wall Street Reform and Consumer Protection Act, [Pub. L. 111-203]?
No
Is this ICR related to the American Recovery and Reinvestment Act of 2009 (ARRA)?
No
Is this ICR related to the Pandemic Response?
No
Agency Contact:
Faye Lipsky 410 965-8783 faye.lipsky@ssa.gov
Common Form ICR:
No
On behalf of this Federal agency, I certify that the collection of information encompassed by this request complies with 5 CFR 1320.9 and the related provisions of 5 CFR 1320.8(b)(3).
The following is a summary of the topics, regarding the proposed collection of information, that the certification covers:
(a) It is necessary for the proper performance of agency functions;
(b) It avoids unnecessary duplication;
(c) It reduces burden on small entities;
(d) It uses plain, coherent, and unambiguous language that is understandable to respondents;
(e) Its implementation will be consistent and compatible with current reporting and recordkeeping practices;
(f) It indicates the retention periods for recordkeeping requirements;
(g) It informs respondents of the information called for under 5 CFR 1320.8 (b)(3) about:
(i) Why the information is being collected;
(ii) Use of information;
(iii) Burden estimate;
(iv) Nature of response (voluntary, required for a benefit, or mandatory);
(v) Nature and extent of confidentiality; and
(vi) Need to display currently valid OMB control number;
(h) It was developed by an office that has planned and allocated resources for the efficient and effective management and use of the information to be collected.
(i) It uses effective and efficient statistical survey methodology (if applicable); and
(j) It makes appropriate use of information technology.
If you are unable to certify compliance with any of these provisions, identify the item by leaving the box unchecked and explain the reason in the Supporting Statement.
Certification Date:
07/18/2025
An official website of the United States government
The .gov means it's official.
The site is secure.
