The initial adoption and approval of the identity theft prevention program shall be by the corporate authorities of the municipality. Thereafter, changes to the program of a day to day operational character and decisions relating to the interpretation and implementation of the program may be made by the comptroller who shall be the program administrator. Major revisions of this policy shall be approved by the board of trustees.
Development, implementation, administration and oversight of the program will be the responsibility of the program administrator. The program administrator will report at least annually to the village board of trustees regarding compliance with this chapter.
Issues to be addressed in the annual identity theft prevention report include:
(A) The effectiveness of the policies and procedures in addressing the risk of identity theft in connection with the opening of new covered accounts and activity with respect to existing covered accounts.
(B) Service provider arrangements.
(C) Significant incidents involving identity theft and management's response.
(D) Recommendations for material changes to the program, if needed, for improvement. (Ord. 2008-23, 12-4-2008)