Browse
Search
Draft Fair and Accurate Credit Transaction Act of 2003 FACTA Red Flags Rules Policy 04-21-2009-4n
OrangeCountyNC
>
BOCC Archives
>
Policies
>
Draft Fair and Accurate Credit Transaction Act of 2003 FACTA Red Flags Rules Policy 04-21-2009-4n
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
7/21/2009 10:19:16 AM
Creation date
7/21/2009 10:18:43 AM
Metadata
Fields
Template:
BOCC
Date
4/21/2009
Meeting Type
Regular Meeting
Document Type
Others
Agenda Item
4n
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
10
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
E~ <br />B. Protect customer identifying information. n order to further prevent the <br />likelihood of identity theft occurring with respect to customer accounts, <br />the County will take the following steps with respect to its internal <br />operating procedures to protect customer identifying information: <br />. l~nsure that its website is secure or provide clear notice that the website is <br />not secure; <br />2. Access to customer accounts shall be password protected and shall be <br />limited to authorized county personnel; <br />3. Passwords} shall be changed on a regular basis using the County's <br />network Password Policy ~IT.NP.o2} in effect at the time of the detection <br />of the red flag; <br />4. Ensure complete and secure destruction of paper documents and computer <br />files containing customer inforrraation; <br />S. insure that office computers are password protected and that computer <br />screens lock after a set period of time; <br />6. R.eep offices clear of papers containing customer information; <br />7. Request only the last 4 digits of social security numbers cif any}; <br />S. P,nsure computer virus protection is up to date; and <br />9. Require and keep only the kinds of customer information that are <br />necessary for County purposes; <br />o. Any unauthorized access ~o or other breach of customer accounts is to be <br />re orted immediatel to the County Manager and any password involved <br />p Y <br />changed immediately; and <br />1 .Personal identifying information included in customer accounts is <br />considered confidential; any requests or demands out of the ordinary <br />course of business for such information by someone other than the <br />customer shall be immediately forwarded to the Department Director and <br />the County Attorney. <br />VIII. Updating the Program. The County Manager shall annually review and, as <br />deemed necessary by the County Manager, direct the Identity Theft Prevention <br />Committee update the Identity Theft Prevention Prograrn along with any relevant red <br />flags in order to reflect changes in risks to customers or to the safety and soundness of the <br />County and its covered accounts from identity theft. In updating the Identity Theft <br />Prevention Program, the Committee shall consider the following factors and exercise its <br />discretion in amending the program: <br />A. The County's experience with identity theft; <br />~, Updates in methods of identity theft; <br />C. Updates in customary methods used to detect, prevent, and mitigate <br />identity theft; <br />D, updates in the types of accounts that the County offers or maintains; <br />E. updates in service provider arrangements. <br />.Draft <br />Identity Theft Prevention Prog~•am Policy <br />Page ~ of ~ <br />
The URL can be used to link to this page
Your browser does not support the video tag.