(a) for data sharing, secure file transfers and/or other methods to obtain real-time, regular and/or periodic data from state agencies, provided, however, that access to such data by the state comptroller shall not waive any privilege or right of confidentiality;
(b) to ensure the safety, security, integrity and privacy of all data shared with his or her office in accordance with the system; and
(c) for the authorized retention and deletion of data obtained from state agencies. 4. In connection with such system, the state comptroller, in his or her discretion, may:
(a) develop a long-range plan for preventing or detecting improper payments of public moneys, and the prevention and detection of waste, fraud and abuse in government operations;
(b) acquire technology including, but not limited to, software that enhances the following capabilities: (i) automated detection and alerting; (ii) continuous monitoring of program transactions and activity, to detect fraud and improper payments both prospectively (before the payment is made) and retrospectively (after payments are made); (iii) detection of non-transactional fraud such as program eligibility issues and identify theft; and
(c) evaluate potential savings resulting from such efforts. 5. The state comptroller shall report annually to the legislature no later than the first day of September, two thousand sixteen and annually thereafter on the progress, status and results of the system created pursuant to this section and subdivision two of section twenty-eight hundred three of the public authorities law.