Browse
Search
Draft Fair and Accurate Credit Transaction Act of 2003 FACTA Red Flags Rules Policy 04-21-2009-4n
OrangeCountyNC
>
BOCC Archives
>
Policies
>
Draft Fair and Accurate Credit Transaction Act of 2003 FACTA Red Flags Rules Policy 04-21-2009-4n
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
7/21/2009 10:19:16 AM
Creation date
7/21/2009 10:18:43 AM
Metadata
Fields
Template:
BOCC
Date
4/21/2009
Meeting Type
Regular Meeting
Document Type
Others
Agenda Item
4n
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
10
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
<br />I~. Administration of Program <br />A. oversight. The identity Theft Prevention Program Committee is responsible <br />for oversight of the program and program implementation. The Committee is <br />responsible for reviewing red flags rules compliance reports prepared by <br />Departments, addressing changing identity theft risks and identifying new or <br />discontinued covered accounts within the County. Recommendation far <br />material changes to the program shall be forwarded to the County N~anager <br />for consideration. The Committee shall report to the County Manager at least <br />annually, on compliance with the red flag requirements. The County Manager <br />will then provide a report to the Board of County Commissioners and present <br />to the board any changes to the policy. The report will address material <br />matters related to the program and evaluate issues such as: <br />~ , The effectiveness of the policies and procedures of the County in <br />addressing the risk of identity theft in connection with the opening of <br />covered accounts and with respect to existing covered accounts; <br />2. 'Service provider arrangements; <br />3. Significant incidents involving identity theft and management's response; <br />and <br />4. Recommendation far material changes to the Program. <br />B. Staff Training and Reports. County staff responsible for implementing the <br />Program shall be trained either by ar under the direction of the identity Theft <br />Prevention Program Committee in the detection of Red Flags, and the <br />responsive steps to be taken when a Red Flag is detected. initial training will <br />be mandated for all employees who are responsibble for opening new covered <br />account, restoring an existing covered account or accepting payment for a <br />covered account with respect to the implementation and requirements of the <br />identity Theft Prevention Program. The Committee will exercise its <br />discretion in determining the amount ~ and the substance of the training <br />necessary; however, periodic updates will be conducted as material program <br />changes occur. <br />C. Service Provider Arrangements. In the event the County engages a service <br />provider to perform an activity in connection with one or mare accounts, the <br />County will tape the following steps to ensure the service provider performs <br />its activity in accordance with reasonable policies and procedures designed to <br />detect, prevent, and mitigate the risk of identity Theft. <br />1. Require, by contract, that service providers have such policies and <br />procedures in place; and <br />Z. Require, by contract, that service providers review the County's Program <br />and report any Red Flags to the Committee. <br />Draft <br />Identity 'heft PreveMtion Program Polzc~ <br />Page 7 of 8 <br />
The URL can be used to link to this page
Your browser does not support the video tag.