Skip to main content

Informatica BI

Date signed: 3/20/2025

PIA information for the Informatica BI system
OPDIV:CMS
PIA Unique Identifier:P-8142640-973680
Name:Informatica BI
The subject of this PIA is which of the following?Major Application
Identify the Enterprise Performance Lifecycle Phase of the system.Operate
Is this a FISMA-Reportable system?Yes
Does the system include a Website or online application available to and for the use of the general public?No
Identify the operator:Agency
Is this a new or existing system?Existing
Does the system have Security Authorization (SA)?Yes
Date of Security Authorization4/11/2025
Indicate the following reason(s) for updating this PIA. Choose from the following options.PIA Validation (PIA Refresh/Annual Review)
Describe in further detail any changes to the system that have occurred since the last PIA.Annual Review and Recertification
Describe the purpose of the system

Informatica is an Extract, Transform, and Load tool used for transferring or transporting information from one Centers for Medicare and Medicaid Services information system to another Centers for Medicare and Medicaid Services information system. It is an internal application within the Centers for Medicare and Medicaid Services and not connected to any external system or website. Using Informatica allows the Centers for Medicare and Medicaid Services to conduct a broad range of internal business functions.

The primary function of the Extract, Transform, and Load tool is to ensure data is loaded in the desired target systems. The sources and targets vary based on the business needs. The target systems are then used for running queries or generating any reports using reporting tools by end users. The Application teams should be contacted for any specifics about the business functions. Our group provides the framework and support of the Informatica infrastructure only.

Describe the type of information the system will collect, maintain (store), or share. (Subsequent questions will identify if this information is PII and ask about the specific data elements)

The only information that Informatica maintains is system user credentials, user identification, password, and job code. User access is validated by the Enterprise User Administration  system.

The information that Informatica extracts, transforms, and loads between systems depends on the source system. The information may include name, address, telephone number, date of birth, Social Security Number, a Health Insurance Claim Number, medical notes, medical records number, Unique Provider Identifier Number, sex, and race/ethnicity.

The systems mentioned here have their own Privacy Impact Assessment and Authority to Operate.

Provide an overview of the system and describe the information it will collect, maintain (store), or share, either permanently or temporarily.

Informatica is an internal to the Centers for Medicare and Medicaid Services application tool that provides the mechanism for data to be integrated, accessed, and shared between the Centers for Medicare and Medicaid Services information systems through the Extract, Transform, and Load process. Using the Informatica tool encourages collaboration between the Centers for Medicare and Medicaid Services business components and allows the Centers for Medicare and Medicaid Services systems to maintain, share, and reuse data for projects.

The information/data that is shared among systems is maintained and stored within those Centers for Medicare and Medicaid Services systems and may include Personable Indentifiable Information. As such, each Centers for Medicare and Medicaid Services source system is responsible for maintaining the security of the Personable Indentifiable Information and corresponding Privacy Impact Assessment. These source systems are:

  • Durable Medical Equipment, Prosthetics, Orthotics, & Supplies Bidding System
  • Reusable Framework Application
  • Integrated Data Repository

Informatica uses the Enterprise User Administration system for system user identification and authentication. User credential information is maintained at user logon and is passed to the Enterprise User Administration for verification and validation before the user is able to log into the system. Informatica will validate the job codes and based on the codes in the Enterprise User Administration, will grant user access to view system-specific information. System users are either Centers for Medicare and Medicaid Services employees or direct contractors. The only information that Informatica collects on users is system user credentials, user identifcation, password, and job code.

The systems mentioned here have their own Privacy Impact Assessment and Authority to Operate.

Does the system collect, maintain, use or share PII?No
 
  • Users Explanation: Users may access Personal Identifiable Information during the Extract, Transform, and Load process of extracting and transferring data.
  • Administrators Explanation: Administrators may access Personal Identifiable Information in order to manage user accounts.
  • Developers Explanation: Developers are the users of the system and may access Personal Identifiable Information as part of the Extract, Transform, and Load process of data extraction and transfer.
  • Contractors Explanation: Direct contractors, in their roles as user, administrator or developer, may have access to Personal Identifiable Information as described in those role explanations.

Privacy Impact Assessment (PIA) published by CMS as an Operating Division of the U.S. Department of Health and Human Services

View all CMS PIAs