Identity Theft and Fraud Prevention  

Number:

4.16 

Policy/Operational Procedure Name:

Identity Theft and Fraud Prevention

Sponsor:

Vice President
Finance and Administrative Services

Custodian:

Finance and Administrative Services

Effective Date(s):

June 16, 2009

Next Review Date:

Spring 2019

Location:

durhamtech.edu/policies-and-procedures/identity-theft

Citation:

N/A

 

Policy Statement

Durham Technical Community College’s policy is to protect the college and the students, employees, and vendors from damages and losses associated with the compromise of sensitive personal and personally-identifying information. Consistent with this policy as well as to ensure compliance with the Fair and Accurate Credit Transactions Act of 2003 and any related state and federal laws, the college has developed and implemented the Identity Theft and Fraud Prevention Program to identify, detect, and respond to patterns, practices, or specific “red flag” activities that indicate real or potential identity theft and fraud.

Purpose/Definitions

The United States Congress passed the Fair and Accurate Credit Transactions Act of 2003 (FACTA) in response to increasing threats and instances of identity theft and fraud. This amendment to the Fair Credit Reporting Act charged the Federal Trade Commission with promulgating rules regarding identity theft and fraud. These regulations, known as “red flag” rules, require any financial institution or creditor that holds any type of consumer account or other covered account for which a potential risk of identity theft or fraud exists to create and implement a written Identity Theft and Fraud Prevention Program to address the potential for identity theft and fraud associated with new and existing accounts. The purpose of the Identity Theft and Fraud Prevention Program is to detect, prevent, and mitigate damage to the college and to protect its students, employees, and vendors from damages and losses associated with the compromise of sensitive personal and personally-identifying information. The Identity Theft and Fraud Prevention Program is appropriate to the size and complexity of the college and the nature and scope of the college’s activities.

The program includes reasonable regulations and procedures to address the following:

  1. To identify relevant “red flags,” including patterns, practices, or specific activities that indicate the possibility of identity theft and fraud for covered accounts and personal records the college maintains;

  2. To detect “red flags” related to new and existing covered accounts and personal records by establishing methods of obtaining and verifying identity;

  3. To respond appropriately to any “red flags” that are detected by creating and implementing appropriate plans of action designed to prevent and mitigate identity theft and fraud;

  4. To ensure the Identity Theft and Fraud Prevention Program is updated periodically to reflect changes in risks to the college and its students, employees, and vendors; and

  5. To provide for the continued administration of the Identity Theft and Fraud Prevention Program by designating the college’s division heads with responsibilities for the oversight, implementation, and administration of the program.