Federal Trade Commission s Red Flags rule
|
|
- Clarissa Ford
- 7 years ago
- Views:
Transcription
1 Federal Trade Cmmissin s Red Flags rule As part f the Federal Trade Cmmissin s (FTC's) implementatin f the Fair and Accurate Credit Transactins (FACT) Act f 2003, medical prviders may need t cmply with the "Red Flags rule, which requires creditrs t establish a prgram t prevent identity theft in their practices. The prgram, as discussed in mre detail belw, must incrprate Red Flags that is, indicatrs f a pssible risk f identity theft. While the rule was riginally scheduled t g int effect n Nv. 1, 2008, advcacy effrts by the Medical Grup Management Assciatin (MGMA) and ther medical assciatins resulted in a six mnth delay in enfrcement until May 1, MGMA still has cncerns abut the applicatin f this rule t health care prviders, including the late ntificatin by the FTC that prviders are cnsidered creditrs. As a result, the health care cmmunity was nt able t prvide meaningful cmments t the agency n the rule, as wuld nrmally be the case in the rulemaking prcess. We are still engaged in advcacy effrts n this issue but have prvided this infrmatin t assist yu in planning fr the May 1 cmpliance date. In a Feb. 4 crrespndence t MGMA and thers in the medical prvider cmmunity, the FTC maintains its psitin that certain health care prviders are creditrs. Wh is a creditr? The Red Flags rule ( defines a creditr as any persn wh regularly extends, renews, r cntinues credit; any persn wh regularly arranges fr the extensin, renewal, r cntinuatin f credit; r any assignee f an riginal creditr wh participates in the decisin t extend, renew, r cntinue credit. The FTC interprets this t include a medical prvider if the prvider des nt regularly demand payment in full fr services r supplies at the time f service. This includes, fr example, a prvider wh bills a patient s insurance cmpany befre requesting payment in full frm the patient. In its mst recent crrespndence, the FTC reinfrced this pint by stating: When a physician submits a claim t an insurance carrier first and then bills any remaining unpaid amunts t the patient whether she des s as a curtesy t the patient r because she is required t d s as a matter f cntractual r state law the physician is deferring the cnsumer s payment f his r her share f the claim (i.e., the physician is billing the patient after having prvided the patient with medical services). The FTC cnsiders a physician wh engages in this type f arrangement t be a creditr fr purpses f the Red Flags rule.
2 What are cvered accunts? Once an entity determines that it is a creditr, the next questin is whether it maintains cvered accunts. As defined in the regulatins, cvered accunts are accunts that permit multiple payments r transactins and thse that pse a reasnably freseeable risk t custmers r t the safety and sundness f medical practices frm identity theft, including financial, peratinal, cmpliance, reputatin r litigatin risks. The FTC cnsiders patient billing recrds t be cvered accunts. What des the Red Flags rule require? If a practice determines it qualifies as a creditr that maintains cvered accunts, the Red Flags rule applies. The practice will be required t develp an identity theft preventin prgram that cntains "reasnable plicies and prcedures" (which may incrprate existing plicies and prcedures) t achieve the fllwing gals: 1. Identify relevant indicatrs f a pssible risk f identity theft ( Red Flags ) 2. Detect Red Flags 3. Prevent and mitigate identity theft 4. Update the identity theft preventin prgram The fllwing guidance is based n the FTC s publicatins and cmmunicatins regarding the Red Flags rule. Nte als that the FTC, in its recent crrespndence t the medical cmmunity, stated that, due t the risk based nature f the requirements, it did nt believe the rule wuld impse significant burdens n mst prviders. It gave examples f a lw risk practice (a small practice with a limited, well knwn patient base) and a high risk practice (a clinic in a large metrplitan area that treats a high vlume f patients). It stated that in lw risk practices, an apprpriate prgram might invlve checking pht identificatin and having plicies t deal with the theft f a patient s identity (including nt trying t cllect the debt frm the patient and separating the medical recrds f the real patient frm thse f the identity thief). 1. Identifying relevant indicatrs f a pssible risk f identity theft ( Red Flags ) In identifying Red Flags, a practice shuld cnsider: The types f cvered accunts it ffers r maintains The methds it prvides t pen its cvered accunts (in the case f health care prviders, this culd include the intake prcedure fr new patients) The methds it prvides t access its cvered accunts and Its previus experiences with identity theft Red flags can cme frm a number f surces, including: Incidents f identity theft that the practice has experienced
3 Methds f identity theft that the practice has identified that reflect changes in identity theft risks Applicable supervisry guidance The fllwing categries f Red Flags are ffered as guidance by the FTC in its rule: Alerts, ntificatins, r ther warnings received frm cnsumer reprting agencies r service prviders, such as fraud detectin services The presentatin f suspicius dcuments: Dcuments prvided fr identificatin appear t have been altered r frged The phtgraph r physical descriptin n the identificatin is nt cnsistent with the appearance f the patient presenting the identificatin Other infrmatin n the identificatin is nt cnsistent with infrmatin prvided by the patient Other infrmatin n the identificatin is nt cnsistent with readily accessible infrmatin that is n file with the practice An applicatin appears t have been altered r frged, r gives the appearance f having been destryed and reassembled The presentatin f suspicius persnal identifying infrmatin, such as a suspicius address change: Persnal identifying infrmatin prvided is incnsistent when cmpared against external infrmatin surces used by the practice, fr example: The address des nt match any address in a cnsumer reprt r The Scial Security Number (SSN) has nt been issued, r is listed n the Scial Security Administratin s Death Master File Persnal identifying infrmatin prvided by the patient is nt cnsistent with ther persnal identifying infrmatin prvided by the patient. Fr example, there is a lack f crrelatin between the SSN range and date f birth Persnal identifying infrmatin prvided is assciated with knwn fraudulent activity as indicated by internal r third party surces used by the practice. Fr example: The address n an applicatin is the same as the address prvided n a fraudulent applicatin r The phne number n an applicatin is the same as the number prvided n a fraudulent applicatin Persnal identifying infrmatin prvided is f a type cmmnly assciated with fraudulent activity as indicated by internal r third party surces used by the practice. Fr example: The address n an applicatin is fictitius, a mail drp, r a prisn r The phne number is invalid, r is assciated with a pager r answering service The SSN prvided is the same as that submitted by ther persns pening an accunt r ther patients
4 The address r telephne number prvided is the same as r similar t the accunt number r telephne number submitted by an unusually large number f ther patients The patient fails t prvide all required persnal identifying infrmatin n an applicatin r in respnse t ntificatin that the applicatin is incmplete Persnal identifying infrmatin prvided is nt cnsistent with persnal identifying infrmatin that is n file with the practice If the practice uses challenge questins t identify patients, the patient cannt prvide authenticating infrmatin beynd that which generally wuld be available frm a wallet r cnsumer reprt The unusual use f, r ther suspicius activity related t, a cvered accunt: Mail sent t the patient is returned repeatedly as undeliverable althugh transactins cntinue t be cnducted in cnnectin with the patient s cvered accunt The practice is ntified that the patient is nt receiving paper accunt statements The practice is ntified f unauthrized charges r transactins in cnnectin with a patient s cvered accunt Ntice frm patients, victims f identity theft, law enfrcement authrities, r ther persns regarding pssible identity theft in cnnectin with cvered accunts held by the practice The practice is ntified by a patient, a victim f identity theft, a law enfrcement authrity, r any ther persn that it has pened a fraudulent accunt fr a persn engaged in identity theft 2. Detecting Red Flags The practice s identity theft preventin prgram shuld address the detectin f Red Flags in cnnectin with the pening f cvered accunts and existing cvered accunts, such as by: Obtaining identifying infrmatin abut, and verifying the identity f, a persn pening a cvered accunt and Authenticating patients, mnitring transactins, and verifying the validity f change f address requests, in the case f existing cvered accunts 3. Preventing and Mitigating Identity Theft The practice s identity theft preventin prgram shuld prvide fr apprpriate respnses t the Red Flags the practice has detected that are cmmensurate with the degree f risk psed. In determining an apprpriate respnse, a medical practice shuld cnsider aggravating factrs that may heighten the risk f identity theft, such as a data security incident that results in unauthrized access t a patient s accunt recrds held by the practice r a third party, r ntice that a patient has prvided infrmatin related t a cvered accunt held by the practice t smene fraudulently claiming t represent the practice r t a fraudulent website. Apprpriate respnses t the Red Flags may include the fllwing:
5 Mnitring a cvered accunt fr evidence f identity theft Cntacting the patient Changing any passwrds, security cdes, r ther security devices that permit access t a cvered accunt Repening a cvered accunt with a new accunt number Nt pening a new cvered accunt Clsing an existing cvered accunt Nt attempting t cllect n a cvered accunt r nt selling a cvered accunt t a debt cllectr Ntifying law enfrcement r Determining that n respnse is warranted under the particular circumstances 4. Updating the identity theft preventin prgram Practices shuld update the identity theft preventin prgram (including the Red Flags determined t be relevant) peridically, t reflect changes in risks t patients r t the safety and sundness f the practice frm identity theft, based n factrs such as: The experiences f the practice with identity theft Changes in methds f identity theft Changes in methds t detect, prevent, and mitigate identity theft Changes in the types f accunts that the practice ffers r maintains and Changes in the business arrangements f the practice, including mergers, acquisitins, alliances, jint ventures, and service prvider arrangements 5. Methds fr administering the identity theft preventin prgram Oversight f prgram. Oversight by the bard f directrs, an apprpriate cmmittee f the bard, r a designated emplyee at the level f senir management shuld include: Assigning specific respnsibility fr the identity theft preventin prgram s implementatin Reviewing reprts prepared by staff regarding cmpliance by the practice with the Red Flags rule and Apprving material changes t the identity theft preventin prgram as necessary t address changing identity theft risks Reprts In general. Staff running the identity theft preventin prgram shuld reprt t the bard f directrs, an apprpriate cmmittee f the bard, r a designated emplyee at the level f senir management, at least annually, n cmpliance by the practice with the Red Flags rule Cntents f reprt. The reprt shuld address material matters related t the identity theft preventin prgram and evaluate issues such as: the effectiveness f the plicies and prcedures f the practice in addressing the risk f identity theft in cnnectin with
6 the pening f cvered accunts and with respect t existing cvered accunts; service prvider arrangements; significant incidents invlving identity theft and management s respnse; and recmmendatins fr material changes t the identity theft preventin prgram Oversight f service prvider arrangements. Whenever a practice engages a service prvider t perfrm an activity in cnnectin with ne r mre cvered accunts the practice shuld take steps t ensure that the activity f the service prvider is cnducted in accrdance with reasnable plicies and prcedures designed t detect, prevent, and mitigate the risk f identity theft. Fr example, the practice culd require the service prvider by cntract t have plicies and prcedures t detect relevant Red Flags that may arise in the perfrmance f the service prvider s activities, and either reprt the Red Flags t the practice, r t take apprpriate steps t prevent r mitigate identity theft. 6. Other Applicable Legal Requirements Practices that qualify as creditrs shuld be mindful f ther related legal requirements that may be applicable, such as: Fr financial institutins and creditrs that are subject t 31 U.S.C. 5318(g), filing a Suspicius Activity Reprt in accrdance with applicable law and regulatin Implementing any requirements under 15 U.S.C. 1681c 1(h) regarding the circumstances under which credit may be extended when the financial institutin r creditr detects a fraud r active duty alert Implementing any requirements fr furnishers f infrmatin t cnsumer reprting agencies under 15 U.S.C. 1681s 2, fr example, t crrect r update inaccurate r incmplete infrmatin, and t nt reprt infrmatin that the furnisher has reasnable cause t believe is inaccurate Cmplying with the prhibitins in 15 U.S.C. 1681m n the sale, transfer, and placement fr cllectin f certain debts resulting frm identity theft and Thugh the FTC did nt specifically include them in its guidance, practices are still subject t the Health Insurance Prtability and Accuntability Act (HIPAA), including the privacy regulatins fund at 45 C.F.R. Parts 160 and 164, and the full array f health care laws with which yu currently cmply
THE CITY UNIVERSITY OF NEW YORK IDENTITY THEFT PREVENTION PROGRAM
THE CITY UNIVERSITY OF NEW YORK IDENTITY THEFT PREVENTION PROGRAM 1. Prgram Adptin The City University f New Yrk (the "University") develped this Identity Theft Preventin Prgram (the "Prgram") pursuant
More informationNYU Langone Medical Center NYU Hospitals Center NYU School of Medicine
Title: Identity Theft Prgram Effective Date: July 2009 NYU Langne Medical Center NYU Hspitals Center NYU Schl f Medicine POLICY It is the plicy f the NYU Langne Medical Center t educate and train staff
More informationInformation Security Policy
Purpse The risk t Charlestn Suthern University, its emplyees and students frm data lss and identity theft is f significant cncern t the University and can be reduced nly thrugh the cmbined effrts f every
More informationFAYETTEVILLE STATE UNIVERSITY
FAYETTEVILLE STATE UNIVERSITY IDENTITY THEFT PREVENTION (RED FLAGS RULE) Authrity: Categry: Issued by the Fayetteville State University Bard f Trustees. University-Wide Applies t: Administratrs Faculty
More informationKey Steps for Organizations in Responding to Privacy Breaches
Key Steps fr Organizatins in Respnding t Privacy Breaches Purpse The purpse f this dcument is t prvide guidance t private sectr rganizatins, bth small and large, when a privacy breach ccurs. Organizatins
More informationFighting Identity Theft with the Red Flags Rule: A How-To Guide for Business
This infrmatin prvided by the Federal Trade Cmmissin. (http://business.ftc.gv/dcuments/bus23-fighting-identity-theft-red-flags-rule-hw-guide-business) Fighting Identity Theft with the Red Flags Rule: A
More informationProcess for Responding to Privacy Breaches
Prcess fr Respnding t Privacy Breaches 1. Purpse 1.1 This dcument sets ut the steps that ministries must fllw when respnding t a privacy breach. It must be read in cnjunctin with the Infrmatin Incident
More informationIdentity Theft Prevention Program (ITPP) under the FTC FACTA Red Flags Rule PROCEDURES DOCUMENT. I. Purpose/Scope... 1
Identity Theft Preventin Prgram (ITPP) under the FTC FACTA Red Flags Rule PROCEDURES DOCUMENT Table f Cntents I. Purpse/Scpe... 1 II. ITPP Apprval and Administratin... 2 III. Relatinship t Other University
More informationWHAT YOU NEED TO KNOW ABOUT. Protecting your Privacy
WHAT YOU NEED TO KNOW ABOUT Prtecting yur Privacy YOUR PRIVACY IS OUR PRIORITY Credit unins have a histry f respecting the privacy f ur members and custmers. Yur Bard f Directrs has adpted the Credit Unin
More informationCredit Work Group Recommendation
Credit Wrk Grup Recmmendatin T: Credit Wrk Grup Frm: Mike Bixby (305) 829-5549 mbixby@inf1team.cm Paul Wills (770) 740-7353 Paul.Wills@equifax.cm Date: Octber 7, 2004 Re: FACT Act Implicatins and Recmmendatins
More informationPersonal Data Security Breach Management Policy
Persnal Data Security Breach Management Plicy 1.0 Purpse The Data Prtectin Acts 1988 and 2003 impse bligatins n data cntrllers in Western Care Assciatin t prcess persnal data entrusted t them in a manner
More informationERISA Compliance FAQs: Fiduciary Responsibilities
Brught t yu by Mrris & Reynlds Insurance ERISA Cmpliance FAQs: Fiduciary Respnsibilities The Emplyee Retirement Incme Security Act f 1974 (ERISA) is a federal law that sets minimum standards fr emplyee
More informationUniversity of Texas at Dallas Policy for Accepting Credit Card and Electronic Payments
University f Texas at Dallas Plicy fr Accepting Credit Card and Electrnic Payments Cntents: Purpse Applicability Plicy Statement Respnsibilities f a Merchant Department Prcess t Becme a Merchant Department
More informationPlus500CY Ltd. Statement on Privacy and Cookie Policy
Plus500CY Ltd. Statement n Privacy and Ckie Plicy Statement n Privacy and Ckie Plicy This website is perated by Plus500CY Ltd. ("we, us r ur"). It is ur plicy t respect the cnfidentiality f infrmatin and
More informationFirst Global Data Corp.
First Glbal Data Crp. Privacy Plicy As f February 23, 2015 Ding business with First Glbal Data Crp. ("First Glbal", First Glbal Mney, "we" r "us", which includes First Glbal Data Crp. s subsidiary, First
More informationAudit Committee Charter
Audit Cmmittee Charter Membership The Audit Cmmittee (the "Cmmittee") f the Bard f Directrs (the "Bard") f Philip Mrris Internatinal Inc. (the "Cmpany") shall cnsist f at least three directrs all f whm
More informationVCU Payment Card Policy
VCU Payment Card Plicy Plicy Type: Administrative Respnsible Office: Treasury Services Initial Plicy Apprved: 12/05/2013 Current Revisin Apprved: 12/05/2013 Plicy Statement and Purpse The purpse f this
More informationMulti-Year Accessibility Policy and Plan for NSF Canada and NSF International Strategic Registrations Canada Company, 2014-2021
Multi-Year Accessibility Plicy and Plan fr NSF Canada and NSF Internatinal Strategic Registratins Canada Cmpany, 2014-2021 This 2014-21 accessibility plan utlines the plicies and actins that NSF Canada
More informationMalpractice and Maladministration Policy
TR340 Malpractice and Maladministratin Plicy This plicy aims t: Define malpractice and maladministratin in the cntext f CIM/CAM studying members, Accredited study centres (ASCs), examinatin centres, invigilatrs
More informationTexas Woman's University University Policy Manual
Texas Wman's University University Plicy Manual Plicy Name: Plicy Number: 6.06 Date Passed: July 2004 Health Insurance Prtability& Accuntability Act (HIPAA) Date Reviewed: September 2008 Next Review: September
More informationSystems Support - Extended
1 General Overview This is a Service Level Agreement ( SLA ) between and the Enterprise Windws Services t dcument: The technlgy services the Enterprise Windws Services prvides t the custmer. The targets
More informationNational Australia Bank Limited Group Disclosure & External Communications Policy
Natinal Australia Bank Limited Grup Disclsure & External Cmmunicatins Plicy Grup Disclsure & External Cmmunicatins Plicy Page 2 f 7 Grup Disclsure & External Cmmunicatins Plicy ( the Plicy ) 1. Overview
More informationMAYFAIR INSURANCE & MORTGAGE CONSULTANTS LTD 11 Lurke Street, Bedford MK40 3HZ Telephone: 01234 242900
MAYFAIR INSURANCE & MORTGAGE CONSULTANTS LTD 11 Lurke Street, Bedfrd MK40 3HZ Telephne: 01234 242900 Please read this dcument carefully as it sets ut the terms n which we agree t act fr ur clients and
More informationChicago Department of Finance. Tax Audit Process
Chicag Department f Finance Tax Audit Prcess Audit Overview There are varius ways a business gets selected fr audit. The mst cmmn are referrals frm anther divisin f the Department f Finance, referral frm
More informationData Protection Act Data security breach management
Data Prtectin Act Data security breach management The seventh data prtectin principle requires that rganisatins prcessing persnal data take apprpriate measures against unauthrised r unlawful prcessing
More informationFAFSA / DREAM ACT COMPLETION PROGRAM AGREEMENT
FAFSA / DREAM ACT COMPLETION PROGRAM AGREEMENT If using US Pstal Service, please return t: Califrnia Student Aid Cmmissin Prgram Administratin & Services Divisin ATTN: Institutinal Supprt P.O. Bx 419028
More informationPreventing Identity Theft
Preventing Identity Theft Each year, millins f Americans have their identity stlen. ENG Lending wants yu t have the infrmatin yu need t prtect yurself against identity theft. While there are n guarantees
More informationFINANCIAL OPTIONS. 2. For non-insured patients, payment is due on the day of service.
FINANCIAL OPTIONS 1. Fr thse patients wh carry dental insurance, all c-payments are due n date f service. We will file yur claim as a service t yu, and will d ur very best t maximize yur benefits. We accept
More informationSources of Federal Government and Employee Information
Inf Surce Surces f Federal Gvernment and Emplyee Infrmatin Ridley Terminals Inc. TABLE OF CONTENTS General Infrmatin Intrductin t Inf Surce Backgrund Respnsibilities Institutinal Functins, Prgram and Activities
More informationFORM ADV (Paper Version) UNIFORM APPLICATION FOR INVESTMENT ADVISER REGISTRATION AND REPORT FORM BY EXEMPT REPORTING ADVISERS
APPENDIX A FORM ADV (Paper Versin) UNIFORM APPLICATION FOR INVESTMENT ADVISER REGISTRATION AND REPORT FORM BY EXEMPT REPORTING ADVISERS Frm ADV: General Instructins Read these instructins carefully befre
More informationUNIVERSITY OF WINCHESTER
UNIVERSITY OF WINCHESTER INTRODUCTION DEBT MANAGEMENT POLICY: STUDENTS ACADEMIC YEAR 15/16 This dcument sets ut the plicy f the University in relatin t student debt, alng with the debt management prcedures
More informationRevised October 27, 2011 Page 1 of 6
Keystne STARS Accreditatin Applicatin Philsphy The Keystne STARS prgram is Pennsylvania s QRIS which began in 2002. There are fur quality levels frm STAR 1 t STAR 4, each level building n the prir levels;
More informationScotiabank Group Privacy Agreement
Sctiabank Grup Privacy Agreement Last revised Octber 2010 Yur privacy is imprtant t Sctiabank. This Agreement sets ut the infrmatin practices fr Sctiabank Grup Members in Canada, including what type f
More informationHIPAA Notice of Privacy Practices. Central Ohio Surgical Associates, Inc.
HIPAA Ntice f Privacy Practices Central Ohi Surgical Assciates, Inc. THIS NOTICE OF PRIVACY PRACTICES (THE NOTICE ) DESCRIBES HOW HEALTH INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN
More informationITRC Fact Sheet 117 Identity Theft and the Deceased: Prevention and Victim Tips
ITRC Fact Sheet 117 Identity Theft and the Deceased: Preventin and Victim Tips This guide will address several areas: Steps t take t decrease identity theft risk when a lved ne passes away Specific instructins
More informationMSB FINANCIAL CORP. MILLINGTON BANK AUDIT COMMITTEE CHARTER
MSB FINANCIAL CORP. MILLINGTON BANK AUDIT COMMITTEE CHARTER This Audit Cmmittee Charter has been amended as f July 17, 2015. The Audit Cmmittee shall review and reassess this Charter annually and recmmend
More informationEmergency Preparedness Plans. Page 1 of 19
Emergency Preparedness Plans Page 1 f 19 Page 2 f 19 Requirements SUA Respnsibilities t AA Designate a Disaster Aging Officer DADS Disaster Crdinatr - Glen Basn A&I AAA Sectin s Disaster Team Aimee Mick*,
More informationVENDOR REGISTRATION AND DISCLOSURE STATEMENT AND SMALL, WOMEN-, AND MINORITY-OWNED BUSINESS CERTIFICATION APPLICATION
WV-1A New Update REV. 09/18/15 STATE OF WEST VIRGINIA - PURCHASING DIVISION VENDOR REGISTRATION AND DISCLOSURE STATEMENT AND SMALL, WOMEN-, AND MINORITY-OWNED BUSINESS CERTIFICATION APPLICATION Befre a
More informationGuidance for Law Enforcement Regarding The Medical Use of Marijuana Online System ( MMJ Online System ) Updated April 15, 2015
CHARLES D. BAKER Gvernr KARYN E. POLITO Lieutenant Gvernr The Cmmnwealth f Massachusetts Executive Office f Health and Human Services Department f Public Health Bureau f Health Care Safety and Quality
More informationDisplayNote Technologies Limited Data Protection Policy July 2014
DisplayNte Technlgies Limited Data Prtectin Plicy July 2014 1. Intrductin This dcument sets ut the bligatins f DisplayNte Technlgies Limited ( the Cmpany ) with regard t data prtectin and the rights f
More informationLoss Share Data Specifications Change Management Plan
Lss Share Data Specificatins Change Management Plan Last Updated: 2/27/2013 Table f Cntents I. Purpse... 3 II. Change Management Apprach... 3 III. Categries f Revisins... 4 IV. Help and Supprt... 6 Lss
More informationKentwood Police Department 4742 Walma Ave SE Kentwood, Michigan 49512 (616) 698-6580 http://www.ci.kentwood.mi.us REPORTING IDENTITY THEFT
Kentwd Plice Department 4742 Walma Ave SE Kentwd, Michigan 49512 (616) 698-6580 http://www.ci.kentwd.mi.us REPORTING IDENTITY THEFT If yu are the victim f identity theft and ne f the fllwing cnditins are
More informationRequest for Resume (RFR) CATS II Master Contract. All Master Contract Provisions Apply
Sectin 1 General Infrmatin RFR Number: (Reference BPO Number) Functinal Area (Enter One Only) F50B3400026 7 Infrmatin System Security Labr Categry A single supprt resurce may be engaged fr a perid nt t
More informationUNITED STATES SECURITIES AND EXCHANGE COMMISSION Washington, D.C. 20549 FORM WB-DEC
UNITED STATES SECURITIES AND EXCHANGE COMMISSION Washingtn, D.C. 20549 FORM WB-DEC DECLARATION OF ORIGINAL INFORMATION SUBMITTED PURSUANT TO SECTION 21F OF THE SECURITIES EXCHANGE ACT OF 1934 A. SUBMITTER
More informationAUDIT AND RISK COMMITTEE TERMS OF REFERENCE
AUDIT AND RISK COMMITTEE TERMS OF REFERENCE 1. TITLE OF COMMITTEE Audit and Risk Cmmittee 2. ESTABLISHMENT The Audit and Risk Cmmittee is established under Part 3 Sectin 19(1) f the Charles Darwin University
More informationDATA REQUEST GUIDELINES
DATA REQUEST GUIDELINES This dcument describes prcedures law enfrcement authrities and individuals invlved in civil litigatin shuld fllw t request data frm LinkedIn and its affiliated service prviders.
More informationNSW FAIR TRADING. Real Estate Fraud Prevention Guidelines
NSW FAIR TRADING Real Estate Fraud Preventin Guidelines Real Estate Fraud Preventin Guidelines Cntents 1. Intrductin..... 2 2. Backgrund.. 2 3. The Law.. 2 4. Cmmissiner s Guidance.... 3 5. Prescribed
More informationProject Open Hand Atlanta. Health Insurance Portability and Accountability Act (HIPAA) NOTICE OF PRIVACY PRACTICES
Prject Open Hand Atlanta Effective Date: April 14, 2003 Health Insurance Prtability and Accuntability Act (HIPAA) The Health Insurance Prtability and Accuntability Act f 1996 (HIPAA) directs health care
More informationPrivacy and Security Training Policy (PS.Pol.051)
Privacy and Security Training Plicy (PS.Pl.051) Purpse T define the plicies and prcedures fr prviding privacy and security training in respect f the CnnectingGTA Slutin. Definitins Electrnic Service Prvider
More informationTHIRD PARTY PROCUREMENT PROCEDURES
ADDENDUM #1 THIRD PARTY PROCUREMENT PROCEDURES NORTH CENTRAL TEXAS COUNCIL OF GOVERNMENTS TRANSPORTATION DEPARTMENT JUNE 2011 OVERVIEW These prcedures establish standards and guidelines fr the Nrth Central
More informationPrivacy Policy. The Central Equity Group understands how highly people value the protection of their privacy.
Privacy Plicy The Central Equity Grup understands hw highly peple value the prtectin f their privacy. Fr that reasn, the Central Equity Grup takes particular care in dealing with any persnal and sensitive
More informationRATIONALE TERMS OF REFERENCE FOR THE QUALITY COMMITTEE UNDER THE EXCELLENT CARE FOR ALL ACT. Authority
RATIONALE With the intrductin f the Excellent Care fr All Act, hspital bards must nw have a quality cmmittee that reprts t the bard. The template prvides sample terms f references fr rganizatins t adapt
More informationFREQUENTLY ASKED QUESTIONS ON THE EUCOMED ETHICAL BUSINESS LOGO
Rue Jseph II, 40 www.eucmed.rg FREQUENTLY ASKED QUESTIONS ON THE EUCOMED ETHICAL BUSINESS LOGO Q1: What is the Eucmed Ethical Business Lg? A1: The Ethical Business Lg is a Lg licensed by Eucmed, the Eurpean
More informationRQ10.06 AACo Share Trading Policy
Australian Agricultural Cmpany Limited ACN 010 892 270 RQ10.06 AAC Share Trading Plicy Versin 5 This plicy was apprved by the Bard f Australian Agricultural Cmpany Limited n 15 December 2010. This plicy
More informationMaryland General Service (MGS) Area 29 Treatment Facilities Committee (TFC) TFC Instructions
Maryland General Service (MGS) Area 29 Treatment Facilities Cmmittee (TFC) TFC Instructins Lve And Service Facility Presentatin t Patients We are frm Alchlics Annymus (AA), fr AA, and ur service is fr
More informationTO: Chief Executive Officers of all National Banks, Department and Division Heads, and all Examining Personnel
AL 96-7 Subject: Credit Card Preapprved Slicitatins TO: Chief Executive Officers f all Natinal Banks, Department and Divisin Heads, and all Examining Persnnel PURPOSE The purpse f this advisry letter is
More informationCLEARANCE REVIEWS FOR STUDENT RESTRICTION ISSUES OTHER THAN ACADEMIC PROGRESS
CLEARANCE REVIEWS FOR STUDENT RESTRICTION ISSUES OTHER THAN ACADEMIC PROGRESS Only the Ministry f Training, Clleges & Universities can cnsider clearance reviews fr mst ther student restrictin issues. These
More informationNAIC Replacement Requirements For Certain Life Insurance Policies And Annuity Contracts
NAIC Replacement Requirements Fr Certain Life Insurance Plicies And Annuity Cntracts Duties f Prducers If a transactin invlves a replacement, the prducer must leave with the applicant, at the time an applicatin
More informationTrustED Briefing Series:
TrustED Briefing Series: Since 2001, TrustCC has prvided IT audits and security assessments t hundreds f financial institutins thrugh ut the United States. Our TrustED Briefing Series are white papers
More informationPrivacy Breach and Complaint Protocol
Privacy Breach and Cmplaint Prtcl Effective: December 31, 2012 Apprved by: Le McKenna, CFO 1.0 General Privacy breaches and privacy cmplaints will be handled in accrdance with this prtcl. This prtcl is
More informationHampton Roads Orthopaedics & Sports Medicine. Notice of Privacy Practices
This is being prvided t yu as a requirement f the privacy regulatins issued under the Health Insurance Prtability and Accuntability Act f 1996 (HIPAA). This ntice describes hw HROSM may use and disclse
More informationHIPAA Compliance 101. Important Terms. Pittsburgh Computer Solutions 724-942-1337
HIPAA Cmpliance 101 Imprtant Terms Cvered Entities (CAs) The HIPAA Privacy Rule refers t three specific grups as cvered entities, including health plans, healthcare clearinghuses, and health care prviders
More informationCreating an Ethical Culture and Protecting Your Bottom Line:
Creating an Ethical Culture and Prtecting Yur Bttm Line: Best Practices fr Crprate Cdes f Cnduct Nte: The infrmatin belw and all infrmatin n this website is nt meant t be taken as legal advice. Please
More informationCell Phone & Data Access Policy Frequently Asked Questions
Cell Phne & Data Access Plicy Frequently Asked Questins 1. Wh is eligible fr a technlgy allwance? First and fremst, the technlgy allwance is fr the benefit f the University, rather than fr the cnvenience
More informationCASSOWARY COAST REGIONAL COUNCIL POLICY ENTERPRISE RISK MANAGEMENT
CASSOWARY COAST REGIONAL COUNCIL POLICY ENTERPRISE RISK MANAGEMENT Plicy Number: 2.20 1. Authrity Lcal Gvernment Act 2009 Lcal Gvernment Regulatin 2012 AS/NZS ISO 31000-2009 Risk Management Principles
More informationPENETRATION TEST OF THE INDIAN HEALTH SERVICE S COMPUTER NETWORK
Department f Health and Human Services OFFICE OF INSPECTOR GENERAL PENETRATION TEST OF THE INDIAN HEALTH SERVICE S COMPUTER NETWORK Inquiries abut this reprt may be addressed t the Office f Public Affairs
More informationBLUE RIDGE COMMUNITY AND TECHNICAL COLLEGE BOARD OF GOVERNORS
BLUE RIDGE COMMUNITY AND TECHNICAL COLLEGE BOARD OF GOVERNORS SERIES: 1 General Rules RULE: 17.1 Recrd Retentin Scpe: The purpse f this rule is t establish the systematic review, retentin and destructin
More informationCHARTER OF THE COMPENSATION COMMITTEE OF THE BOARD OF DIRECTORS OF UPLAND SOFTWARE, INC.
CHARTER OF THE COMPENSATION COMMITTEE OF THE BOARD OF DIRECTORS OF UPLAND SOFTWARE, INC. PURPOSE The purpse f the Cmpensatin Cmmittee f the Bard f Directrs (the Bard ) f Upland Sftware, Inc. (the Cmpany
More informationSEMA Memorial Scholarship Fund Scholarship & Loan Forgiveness Programs
SEMA Memrial Schlarship Fund Schlarship & Lan Frgiveness Prgrams SCHOLARSHIP PROGRAM FREQUENTLY ASKED QUESTIONS Schlarship Prgram T be eligible fr this award, yu must: be a U.S. citizen enrlled in a full-time
More informationIssue Brief. SBC Distribution Rules for Employer Sponsored Health Plans October 2012. Summary. Which Plans Are Required to Provide the SBC?
Issue Brief SBC Distributin Rules fr Emplyer Spnsred Health Plans Octber 2012 Summary The Affrdable Care Act (ACA) expands ERISA's disclsure requirements by requiring that a summary f benefits and cverage
More informationAccessible Service Policy
Accessible Service Plicy Date Created Revisin Oct. 16, 2012 1 Gal This plicy is intended t meet the requirements f the Accessibility Standards fr Custmer Service, Ontari Regulatin 429/07 under the Accessibility
More informationPOLICY 1390 Information Technology Continuity of Business Planning Issued: June 4, 2009 Revised: June 12, 2014
State f Michigan POLICY 1390 Infrmatin Technlgy Cntinuity f Business Planning Issued: June 4, 2009 Revised: June 12, 2014 SUBJECT: APPLICATION: PURPOSE: CONTACT AGENCY: Plicy fr Infrmatin Technlgy (IT)
More informationES PROCEDURES FOR OVERPAYMENT RECOVERY
ES PROCEDURES FOR OVERPAYMENT RECOVERY Effective: 7/1/2012 Respnsible Office: Emplyee Services (ES) Apprved: ES Directr Applicatin: All Emplyees f the University f Clrad Plicy The University f Clrad will
More informationThere are a number of themed areas for which the Council has responsibility, and each of these is likely to generate debts of a specific type:
Wiltshire Cuncil Crprate Debt Recvery Plicy: 29102010 WILTSHIRE COUNCIL CORPORATE DEBT RECOVERY POLICY 1. Intrductin The Cuncil raises a significant prprtin f its ttal incmes thrugh lcal taxes and charges,
More informationHow To Ensure Your Health Care Is Safe
Guidelines fr Custdians t assess cmpliance with the Persnal Health Infrmatin Privacy and Access Act (PHIPAA) This dcument is designed t help custdians evaluate readiness fr cmpliance with PHIPAA and t
More informationWhat Information Is Collected and How Is It Collected?
RCI PRIVACY NOTICE RCI Pacific Pty Ltd is cncerned abut privacy issues and wants yu t be familiar with hw we cllect, use and disclse infrmatin. This Privacy Ntice describes ur practices in cnnectin with
More informationGUIDANCE FOR BUSINESS ASSOCIATES
GUIDANCE FOR BUSINESS ASSOCIATES This Guidance fr Business Assciates dcument is intended t verview UPMCs expectatins, as well as t prvide additinal resurces and infrmatin, t UPMC s HIPAA business assciates.
More informationOur Privacy Policy and Credit Reporting Privacy Policy. 1. Privacy at FlexiGroup Our Privacy Policy and Credit Reporting Privacy Policy
Our Privacy Plicy and Credit Reprting Privacy Plicy 1. Privacy at FlexiGrup Our Privacy Plicy and Credit Reprting Privacy Plicy Backgrund At Flexigrup it is imprtant t us that we manage yur persnal infrmatin
More informationVersion: Modified By: Date: Approved By: Date: 1.0 Michael Hawkins October 29, 2013 Dan Bowden November 2013
Versin: Mdified By: Date: Apprved By: Date: 1.0 Michael Hawkins Octber 29, 2013 Dan Bwden Nvember 2013 Rule 4-004J Payment Card Industry (PCI) Patch Management (prpsed) 01.1 Purpse The purpse f the Patch
More informationData Protection Policy & Procedure
Data Prtectin Plicy & Prcedure Page 1 Prcnnect Marketing Data Prtectin Plicy V1.2 Data prtectin plicy Cntext and verview Key details Plicy prepared by: Adam Haycck Apprved by bard / management n: 01/01/2015
More informationGeneral Records Authority 33. Accredited Training
General Recrds Authrity 33 2012/00579704 Accredited Training February 2013 This is an accurate reprductin f the authrised recrds authrity cntent, created fr accessibility purpses CONTENTS INTRODUCTION
More informationColorado Health Benefit Exchange Board Advisory Group Selection Process, Timeline, Charters and Nominee Form
Clrad Health Benefit Exchange Bard Selectin Prcess, Timeline, Charters and Nminee Frm Backgrund At the COHBE Bard meeting n April 9, 2012, staff shared a mem utlining a recmmendatin t frm vlunteer s (Health
More informationNHVAS Mass Management Spot Check Checklist
Legal Entity Name f NHVAS Operatr: DTMR Representative: Lcatin: NHVAS Mass Management Spt Check Checklist Spt Check Date: Spt Check Number: DMS Number: 540/ The fllwing surces f evidence have been identified
More informationInvestment Adviser Switch Workshop
Investment Adviser Switch Wrkshp Investment Adviser Registratin, Renewal, Amendment And Pst-Registratin Requirements Presented by Office f the Attrney General Maryland Divisin f Securities 1 Registratin
More informationCCPRF. Request for Proposals. Monitoring Services. November 25, 2009
CCPRF Request fr Prpsals Mnitring Services Nvember 25, 2009 Table f Cntents SECTION I... 1 1.1 INTRODUCTION AND OPPORTUNITY... 1 1.2 OBJECTIVES OF RFP... 1 1.3 STATEMENT OF WORK... 1 SECTION II... 2 2.1
More informationMunising Memorial Hospital. Administrative/Financial Policy
Munising Memrial Hspital Administrative/Financial Plicy SUBJECT: Credit and Cllectins & Financial Assistance POLICY NO. 100-072 REVISED: March 26, 2014 Authrized By: The credit and cllectin plicy f Munising
More informationJohnston Public Schools Special Education Procedural Manual. IEP Overview
Jhnstn Public Schls Special Educatin Prcedural Manual IEP Overview Definitin The Individualized Educatin Prgram (IEP) is a written plan fr the apprpriate educatin f students with disabilities. It is a
More informationResearch Report. Abstract: The Emerging Intersection Between Big Data and Security Analytics. November 2012
Research Reprt Abstract: The Emerging Intersectin Between Big Data and Security Analytics By Jn Oltsik, Senir Principal Analyst With Jennifer Gahm Nvember 2012 2012 by The Enterprise Strategy Grup, Inc.
More informationCOMPLIANCE WITH THE FEDERAL TRADE COMMISSION S SAFEGUARDS RULE
COMPLIANCE WITH THE FEDERAL TRADE COMMISSION S SAFEGUARDS RULE COMPLIANCE WITH THE FEDERAL TRADE COMMISSION S SAFEGUARDS RULE Mst dealers are familiar with the requirements f the Gramm-Leach-Bliley Act
More informationAudit Committee Charter. St Andrew s Insurance (Australia) Pty Ltd St Andrew s Life Insurance Pty Ltd St Andrew s Australia Services Pty Ltd
Audit Cmmittee Charter St Andrew s Insurance (Australia) Pty Ltd St Andrew s Life Insurance Pty Ltd St Andrew s Australia Services Pty Ltd Versin 2.0, 22 February 2016 Apprver Bard f Directrs St Andrew
More informationDirectives to LHINs in respect of Reporting Requirements under the BPSAA. Issued By Minister of Health and Long-Term Care
Directives t LHINs in respect f Reprting Requirements under the BPSAA Issued By Minister f Health and Lng-Term Care Effective April 1, 2011 Table f Cntents 1. BACKGROUND... 2 2. REPORT ON THE USE OF CONSULTANTS...
More informationTITLE: Supplier Contracting Guidelines Process: FIN_PS_PSG_050 Replaces: Manual Sections 6.4, 7.1, 7.5, 7.6, 7.11 Effective Date: 10/1/2014 Contents
TITLE: Supplier Cntracting Guidelines Prcess: FIN_PS_PSG_050 Replaces: Manual Sectins 6.4, 7.1, 7.5, 7.6, 7.11 Cntents 1 Abut university supplier cntracting... 2 2 When is a cntract required?... 2 3 Wh
More informationAustralian Institute of Psychology. Human Research Ethics Committee. Terms of Reference
Australian Institute f Psychlgy Human Research Ethics Cmmittee Terms f Reference What is research? Accrding t the Natinal Statement research... is widely understd t include at least investigatin undertaken
More informationFINANCIAL SERVICES FLASH REPORT
FINANCIAL SERVICES FLASH REPORT New Requirements fr Internatinal Mney Transfers December 9, 2013 Octber 28, 2013, was the effective date f the Cnsumer Financial Prtectin Bureau s (CFPB) final rules amending
More informationApplication Submission Checklist To Mutual of Omaha For Medicare Supplement Coverage NEW YORK
Mutual f Omaha Insurance Cmpany P.O. Bx 3608 Omaha, Nebraska 68103-3608 Applicatin Submissin Checklist T Mutual f Omaha Fr Medicare Supplement Cverage NEW YORK THIS APPLICATION MUST BE USED TO WRITE MUTUAL
More informationAnnuities and Senior Citizens
Illinis Insurance Facts Illinis Department f Insurance January 2010 Annuities and Senir Citizens Nte: This infrmatin was develped t prvide cnsumers with general infrmatin and guidance abut insurance cverages
More informationHeythrop College Disciplinary Procedure for Support Staff
Heythrp Cllege Disciplinary Prcedure fr Supprt Staff Intrductin 1. This prcedural dcument des nt apply t thse academic-related staff wh are mentined in the Cllege s Ordinance, namely the Librarian and
More informationE-Business Strategies For a Cmpany s Bard
DATATEC LIMITED BOARD CHARTER / TERMS OF REFERENCE 1. CONSTITUTION The primary bjective f the Cmpany s Bard Charter is t set ut the rle and respnsibilities f the Bard f Directrs ( the Bard ) as well as
More informationState Fleet Card Oversight Usage and Responsibilities
State Fleet Card Oversight Usage and Respnsibilities Intrductin The Department f General Services (DGS), Office f Fleet and Asset Management (OFAM) administers a statewide ne-prvider payment system cntract
More information