|
Identity Theft Prevention Program for Electric Utilities
Guidelines for Compliance with the FACTAct Red Flag Rules
The Fair and Accurate Credit Transactions Act of 2003 took effect Jan. 1, 2008, but entities covered by the rule have until May 1, 2009, to implement programs to comply with the rule. The rule requires creditors (which includes utilities) to establish identity theft prevention programs for covered accounts (which includes utility accounts).
The final rule requires each financial institution and creditor that holds any consumer account, or other account for which there is a reasonably foreseeable risk of identity theft, to develop and implement an Identity Theft Prevention Program to combat identity theft.
All electric, water and gas utilities must establish a program that includes reasonable policies and procedures for detecting, preventing and mitigating identity theft. This program should enable the utility to:
-
Identify relevant patterns, practices, and specific forms of activity that are red flags signaling possible identity theft and incorporate those red flags into the program;
-
Detect red flags that have been incorporated into the Program;
-
Take steps to prevent and mitigate identity theft; and
-
Ensure the program is updated periodically to reflect changes in risks of identity theft.
Key Topics
-
Overview of the Fair and Accurate Credit Transactions Act of 2003
-
Identifying Red Flags
-
Best Practices in Safeguarding Customer Data
-
Current Utility Practices
-
Review a Sample Identity Theft Plan
Who Should Attend?
Employees who oversee areas that handles customer and personal data, including accounting, customer billing and service, information technology, human resources and security.
|
|
|
