Answer:
They will look at each of the requirements (risk assessment, identification of covered accounts, delineation of red flags, taking into consideration your institution's experience with identity theft, development, adoption and implementation of a written identity theft prevention program, appropriate board/senior management level involvement, training, oversight of service provider arrangements, etc.) and will look to see that you have taken the required action on each.
print
share