(a) The Superintendent of each department subject to this chapter is responsible for oversight of the program and for program implementation. The Safety-Service Director is responsible for reviewing reports prepared by staff regarding compliance with red flag requirements and with recommending material changes to the program, as necessary in the opinion of the Safety-Service Director, to address changing identity theft risks and to identify new or discontinued types of covered accounts. Any recommended material changes to the program shall be submitted to City Council for consideration by Council.
(b) The Superintendent of each department subject to this chapter will report to the Safety-Service Director at least annually on compliance with the red flag requirements. The report will address material matters related to the program and evaluate issues such as:
(1) The effectiveness of the policies and procedures of City in addressing the risk of identity theft in connection with the opening of covered accounts and with respect to existing covered accounts;
(2) Service provider arrangements;
(3) Significant incidents involving identity theft and management's response; and
(4) Recommendations for material changes to the Program.
(c) The Superintendent of each department subject to this chapter is responsible for providing training to all employees responsible for or involved in opening a new covered account, restoring an existing covered account or accepting payment for a covered account with respect to the implementation and requirements of the Identity Theft Prevention Program. The Superintendent shall exercise his or her discretion in determining the amount and substance of training necessary. (Ord. 09-20. Passed 4-27-09.)