Brokers that collect client Social Security numbers, driver’s license numbers or any information about their clients’ credit cards or financial accounts may be affected by two new state laws on data security.
One of these two laws make it a summary criminal offense to “intentionally communicate or otherwise make available to the general public” any individual’s SSN and prohibits certain other uses of the SSN that might have it exposed to public view. The other new law requires those who collect any computerized data involving a client’s name and social security number or financial account numbers to notify the customer if there is any breach of the security of that database.
Learn more about these laws, and data security in general, with the information available through the links below. If you have specific questions, please contact us though our
online response form. More information will be posted as it is developed.
-------------
PAR is offered two sessions of our popular Risk Reduction Series telephone seminars in mid-August, which were attented by over 650 members. A recording of the call is available for purchase. If you have ever collected a client's Social Security Number and you didn't attend the seminar, YOU SHOULD GET THIS CD. Order by filling out the CD order form and faxing it to 1-800-555-4770, or go to www.bsre.biz to order online.
Pennsylvania state law, effective June 20, 2006. The Breach of Personal Information Notification Act ("BPINA") regulated entities that collect "personal information" about clients in computerized databases. "Personal information" is defined as any data that links a person's name with their Social Security Number, driver's license number or financial account information. If the security of any computerized database containing this information is breached, the entity collecting the information is required by the Act to notify the affected consumers.
This Act, effective December 26, 2006, makes it a summary criminal offense to “intentionally communicate or otherwise make available to the general public” any individual’s SSN and prohibits certain other uses of the SSN that might have it exposed to public view. Possible fines range from $50 - $5,000.
Designed to answer common questions on the enactment of Pennsylvania's new Data Security law effective June 20, 2006.
Designed to answer common questions on the enactment of Pennsylvania's Privacy of Social Security Number Act, an additional Data Security law passed by the state's legislature and effective December 26, 2006.
Two Pennsylvania Data Security laws became effective in June and December, 2006. These laws work in connection with existing state and federal laws governing the collection, storage and use of various types of consumer information. This Broker's Guide summarizes the relevant portions of these laws and regulations.
Sample policy drafted by PAR counsel. Note that brokers should NOT simply adopt this policy as written, but should consult with brokerage counsel in drafting a comprehensive data security policy based on your specific office practices and needs.
NAR has partnered with the Federal Trade Commission to promote this national program targeting identity theft. This page on the NAR Web site contains links to order the FTC brochure, articles to help you and your clients avoid ID theft, and a link to the NAR Field Guide on Identity Theft, which contains numerous other links.
-- TECHNOLOGY ARTICLES --
Some helpful tips on how to protect sensitive data stored on your computer. Also includes links to a number of products and services that may help maintain client data security.
Article from August 30, 2006 issue of USATODAY describing problems with cell phone users who are unable to delete sensitive information from their phones or data devices (Blackberries, Treos, etc.).
Article from September issue of NAR's REALTOR Magazine discussing the importance of good passwords and providing some tips on how to create them.