BBB Advice: Writing a Privacy and Identity Theft Policy
Online privacy policies have garnered a lot of attention as social networking sites and search engines have come under fire for sharing user information. As a result, the Federal Trade Commission (FTC) has created the Red Flags Rule, which will require many businesses and organizations to implement a written Identity Theft Prevention Program. The goals of these rules is to detect the warning signs, or red flags, of identity theft in daily operations.
Even if you think your business is too small to have a written policy, your BBB advises that it is to your benefit to have a comprehensive policy - you may be required to do so. You can find out by going to ftc.gov/redflagsrule.
In the meantime, your BBB recommends using simple language to help you answer the following five questions: