The Identity Theft Protection Act, commonly abbreviated as the ITPA ensures that no resident of North Carolina suffers from a misuse of their personal information. The act is put to implementation by systematic businesses which are responsible for the protection of residents’ personal information. These authorities have also shed light on some appropriate means which should be used when disposing personal information of any sort. The Identity Theft Protection Act North Carolina also exercises such methods which have restricted the use of Social Security Numbers. This means that the act gives residents a unique to way to access their credit histories which is via the security freeze. As per this, customer consent is highly important before any information is released.
Along with Social Security Numbers, the Identity Theft Protection Act also protects against the publication, of personal information, in case there is any. As per the ITPA, personal information is referred to as a combination of a person’s name, driver’s license number, fingerprints, digital signature and biometric data.
Moreover, the ITPA is applied to all businesses which operate within the boundaries of North Carolina as well as those authorities which maintain enormous records of information that includes the personal information of those living in North Carolina. The main objective of the act is to devise new methods and procedures so as to avoid any unauthorized access that may be gained by fraudsters or information hackers. This also encompasses the burning, shredding of documents and pulverizing in such a manner that the information cannot be read or taken up for any illicit use. The ITPA is a broad concept and therefore takes into account the procedures of destruction of electronic media that may contain personal information.
In order to conduct due diligence, the Identity Protection Act practiced in North Carolina requires businesses to hire an external company. The outside company then conducts an analysis of all such businesses so as to check their competency and integrity in the protection of the personal information of the residents. Furthermore, the act emphasizes that all businesses must implement the procedures and policies designed for protection against unauthorized access.
Since the ITPA has been put forward for to prevent identity theft, any non compliance or misconduct is taken seriously. In case of the act’s violation performed by an employer of the concerned authorities, the employer will be required to face civil actions. A penalty may also be imposed on the responsible party as per which they will be asked to pay $5000 as a fine for each violation that is committed regarding the ITPA.
If a security breach occurs anyway, the act suggests that the business which has been victimized should be given a notice by the business without any further delay. Every business in North Carolina is required to comply with three conditions in order to comply with the act itself. First, the business should conduct an initial assessment in order to check all its procedures are in compliance with the ITPA. Second, a formal policy should be designed which should state all the procedures implemented to prevent identity theft. Finally, every business should construct a strategy for storing all the personal information in such a manner that it remains safe and secure. The policy should also include a complete description on possible steps which will be taken in case of security breaches.