This program shall be updated periodically to reflect changes in risks to customers or to the safety and soundness of the organization from identity theft based on factors such as: the experiences of the organization with identity theft; changes in methods of identity theft; changes in methods to detect, prevent and mitigate identity theft; changes in the types of accounts that the organization offers or maintains; changes in the business arrangements of the organization, including mergers, acquisitions, alliances, joint ventures and service provider arrangements.
(Res. 05-2009. Passed 4-2-09.)