Closed oddball-lindsay closed 3 months ago
From Jen:
OCTO doesn't have a dedicated privacy officer. Matt Larson suggests we list the following VBA privacy officer (there are many, many privacy officers at the VA): Harvey, Marvis Primary PO marvis.harvey@va.gov 202-461-8401 VBA Central Office - Office of the Deputy Under Secretary for Policy & Oversight
Reached out to Marvis via email, suggesting we meet to review the prototype and email notification.
Intake ticket for VA Notify: https://github.com/department-of-veterans-affairs/va.gov-team/issues/84313
Including a download link in the email notification, that confirms form completion and reiterates next steps:
Locating a Privacy Officer for approval of our notification content:
Next steps when we're ready to move forward:
Connected with Holden and we might as well request access to the self-service portal now. Will see who on the team would like access.
As for the download link in the email notification, we're not sure the work is worth the return and are leaning towards saving this for future iteration (not MVP). Will run this by the team and see what they think. Here's a loose idea of the work:
No word from the Privacy Officers I reached out to, asking Parker and also Platform Security if they have any recommendations. Security recommended reaching out to OITPrivacy@va.gov
Also asked the team who wants access to the self-service portal.
Open question: Do we want VA Notify's help building out the trigger? Will ask Samantha Jennings what info the Strike Team needs to support us, if we do decide we want their help.
Secured a Privacy Officer and received core team access to VA Notify's self-service portal! We also have a good idea of what's needed to engage VA Notify if we do decide to accept their offer to help -- mentioned over in the intake ticket:
we would need the notification template ids from Staging and Production and the personalizations you are wanting to pass. We would also have to know when you anticipate releasing this and coordinate the release together. We could set up weekly meetings, in order to plan how we can accommodate this seamlessly, especially in regard to the staged rollout/feature flag piece.
Will pursue additional work in separate, more specific tickets. Our order of operations seems to be:
Background
After a user downloads their completed form (
appoint-rep/download
page) and clicks "Continue":appoint-rep/next-steps
).Content for the email notification has been provided by CAIA, but in order to send out this email notification, we need to partner with the VA Notify team.
Open questions:
VA Notify resources:
va-notify-public Slack channel is available for questions about the API
Tasks
Acceptance Criteria