Browse
Search
Agenda - 04-21-2009 - 4n
OrangeCountyNC
>
Board of County Commissioners
>
BOCC Agendas
>
2000's
>
2009
>
Agenda - 04-21-2009
>
Agenda - 04-21-2009 - 4n
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
4/17/2009 4:23:05 PM
Creation date
4/17/2009 4:23:04 PM
Metadata
Fields
Template:
BOCC
Date
4/21/2009
Meeting Type
Regular Meeting
Document Type
Agenda
Agenda Item
4n
Document Relationships
Minutes - 20090421
(Linked From)
Path:
\Board of County Commissioners\Minutes - Approved\2000's\2009
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
10
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
<br />B. Protect customer identifying information. In order to further prevent the <br />likelihood of identity theft occurring with respect to customer accounts, <br />the County will take the following steps with respect to its internal <br />operating procedures to protect customer identifying information: <br />1. Ensure that its website is secure or provide clear notice that the website is <br />not secure; <br />2. Access to customer accounts shall be password protected and shall be <br />limited to authorized county personnel; <br />3. Password(s) shall be changed on a regular basis using the County's <br />Network Password Policy (IT.NP.02) in effect at the time of the detection <br />of the red flag; <br />4. Ensure complete and secure destruction of paper documents and computer <br />files containing customer information; <br />5. Ensure that office computers are password protected and that computer <br />screens lock after a set period of time; <br />6. Keep offices clear of papers containing customer information; <br />7. Request only the last 4 digits of social security numbers (if any); <br />8. Ensure computer virus protection is up to date; and <br />9. Require and keep only the kinds of customer information that are <br />necessary for County purposes; <br />10. Any unauthorized access to or other breach of customer accounts is to be <br />reported immediately to the County Manager and any password involved <br />changed immediately; and <br />11. Personal identifying information included in customer accounts is <br />considered confidential; any requests or demands out of the ordinary <br />course of business for such information by someone other than the <br />customer shall be immediately forwarded to the Department Director and <br />the County Attorney. <br />VIII. Updating the Program. The County Manager shall annually review and, as <br />deemed necessary by the County Manager, direct the Identity Theft Prevention <br />Committee update the Identity Theft Prevention Program along with any relevant red <br />flags in order to reflect changes in risks to customers or to the safety and soundness of the <br />County and its covered accounts from identity theft. In updating the Identity Theft <br />Prevention Program, the Committee shall consider the following factors and exercise its <br />discretion in amending the program: <br />A. The County's experience with identity theft; <br />B. Updates in methods of identity theft; <br />C. Updates in customary methods used to detect, prevent, and mitigate <br />identity theft; <br />D. Updates in the types of accounts that the County offers or maintains; <br />E. Updates in service provider arrangements. <br />Draft <br />Identity Theft Prevention Program Policy <br />Page 6 of 8 <br />
The URL can be used to link to this page
Your browser does not support the video tag.