(A) The city has conducted an internal risk assessment to evaluate the risk level of its current procedures with respect to allowing customers to create a fraudulent account and to evaluate if current, existing accounts are being wrongfully manipulated. This risk assessment evaluated how new accounts were opened as well as the methods used to access account information. Using this information, the city was able to identify red flags which were appropriate situations to be evaluated to prevent identity theft.
(B) The identified red flags are:
(1) New accounts opened in person;
(2) New accounts opened via facsimile;
(3) New accounts opened via mail;
(4) Account information accessed in person;
(5) Account information accessed via telephone (person);
(6) New account opening or the accessing of account information by a person other than the individual in whose name the account is currently, or was previously, opened; and
(7) Identity theft which has occurred in the past, including as a result of a person falsely opening a utility account.
(Ord. 2009-10, passed 6-1-2009)