About our Professional Services...
IDentity Theft Business Solutions (IDTBS) will provide the following to [YOUR COMPANY ] as a part of your Identity Theft Prevention Program.
Ø Information Security Coordinator (ISC) designee, whose responsibilities will include monitoring the effectiveness of the Identity Theft Prevention Program and working with the CITRMS agent to review and update your Program when needed. Ø Comprehensive Risk Assessment (R/A) of data security practices as well as assessment of information security during day-to-day business operations. The Risk Assessment will identify current Red Flags and practices that leave information vulnerable within your workplace. The risk assessment will also assist in the development of appropriate policies and procedures and training points for staff. Ø Policies and Procedures that governs the handling, storage, and disposal of sensitive and non-public information in the workplace. This policy is intended to become a blueprint for staff and give them a heightened sense of awareness of identity theft as well as step-by-step procedures to follow when presented with situations where there may be Red Flags. The employee Confidentiality Agreement, which each employee will sign, serves to protect the company from employee related theft of sensitive information and act as proof that your staff has been trained on the Identity Theft Prevention Program. Ø Mandatory Employee Training to raise awareness of the issues of identity theft as well as instruct on policies and procedures for handling sensitive and confidential information. Ø Qualify Service Providers in accordance with the Federal Trade Commission recommendations. Service providers should handle customer information as carefully as you do. If your service providers do not have a documented Identity Theft Prevention Program in place, they will be required to sign an Indemnification document, which holds your company harmless for any data security breaches or theft caused by the service provider or other third party vendors. Ø Annual Review/Training Updates of the Identity Theft Prevention Program, which will include a review of data security practices and day-to-day business operations. In the event of changes in the business infrastructure, staff turnover or locations, more frequent reviews/updates are recommended. Updates to the current Identity Theft Prevention Program Policy as well as staff training updates will be performed at this time. Annual updates are necessary to review the effectiveness of your ITPP, to address any newly identified Red Flags and to inform management and staff of any changes in the Federal Privacy Laws.