View Rule

View EO 12866 Meetings Printer-Friendly Version     Download RIN Data in XML

HHS/OS RIN: 0991-AC37 Publication ID: Fall 2023 
Title: ●HHS Acquisition Regulation: Part 339, Acquisition of Information Technology; Other Parts; Supply Chain Risk Management 

The Department of Health and Human Services (HHS) is amending and updating its HHS Acquisition Regulation (HHSAR) to implement requirements for information, information technology, information security, privacy, security, and supply chain risk management. It removes outdated and redundant policy, aligns the HHSAR with the Federal Acquisition Regulation (FAR), and adds new requirements in HHS acquisitions to identify, assess, and mitigate risks to HHS mission-critical products, materials, information, and services within the supply chain.

Agency: Department of Health and Human Services(HHS)  Priority: Substantive, Nonsignificant 
RIN Status: First time published in the Unified Agenda Agenda Stage of Rulemaking: Proposed Rule Stage 
Major: Undetermined  Unfunded Mandates: No 
CFR Citation: 48 CFR 302    304    312    324    48 CFR 339    352     (To search for a specific CFR, visit the Code of Federal Regulations.)
Legal Authority: 5 U.S.C. 301    40 U.S.C. 121(c)    41 U.S.C. 1121(c)(3)    41 U.S.C. 1303(a)(2)    41 U.S.C. 1702, 1707    48 CFR 1.301 through 1.304   
Legal Deadline:  None
Action Date FR Cite
NPRM  05/00/2024 
Regulatory Flexibility Analysis Required: No  Government Levels Affected: None 
Small Entities Affected: No  Federalism: No 
Included in the Regulatory Plan: No 
RIN Data Printed in the FR: No 
Agency Contact:
Ms. Blenda Perez
Senior Procurement Analyst
Department of Health and Human Services
Office of the Secretary
200 Independence Avenue SW, Room #550G.21,
Washington, DC 20201
Phone:202 536-6174