ID theft prevention act

Department Responsibility for Non-Public Personal Information

Departments maintaining non-public personal information (NPPI) are responsible for that information and any disclosure of it. Departments holding unnecessary NPPI should remove and properly dispose of it. Departments should actively scan for identification of NPPI on servers, desktops and laptops to assure that no NPPI remains unidentified, inviting a breach or compromise.

Best Practices
Compliance
exposure incident
ID theft prevention act
memo
nondisclosure agreement
scanning for NPPI