The program will be reviewed, revised and updated on an annual basis. In performing such update, provider shall consider:
(A) Provider's experiences with identity theft over the period since the last revision of the program;
(B) Changes in methods of identity theft, or in methods to detect, prevent and mitigate identity theft;
(C) Changes in provider's technology and operations, including any new electronic health record or financial software programs implemented by provider; and
(D) Changes in business arrangements of provider, including but not limited to in its relationships with service providers.
(Ord. 2416, passed 7-13-2010)