- December 01, 2005
- All Issuing Offices in New Jersey
- New Jersey Identity Theft Prevention Act
On September 22, 2005, Acting Governor Codey signed A4001/S1914, the
The Act provides the following safeguards concerning the personal information of consumers:
Requires any company that lawfully collects and maintains computerized record containing consumer's personal information to notify the affected consumers in the event that the personal data is compromised
Requires businesses to destroy records containing a customer's personal information that is no longer needed
Limits the use of a consumer's Social Security number as an identifier and prohibits public display and usage of the number on printed materials except when required by law
Allows consumers to request that the credit reporting agency place a security freeze on their consumer credit report if they believe they have been the victim of identity theft
Affirms an individual's right to file and receive a copy of a police report concerning the suspected identity theft, although it does not require the police to investigate
The first three points will affect our business practices most directly.
The Act contains definitions regarding the collection of personal data. "Breach of security" means the unauthorized access to electronic files which have not been encrypted which compromises the security, confidentiality or integrity of personal information. "Customer" means an individual who provides personal information to a business. "Personal information" means in individual's first name or first initial and last name linked with any one or more of the following: (1) Social Security Number; (2) driver's license number or State identification card number; or (3) account number or credit or debit card number in combination with any required security code, access code, or password that would permit access to an individual's financial account.
In the event that a business's computerized records which include personal information are breached, the business must disclose the breach to any customer who is a
Any business records containing personal information must be destroyed by shredding, erasing or otherwise modifying the personal information so as to make it unreadable, undecipherable or nonreconstructable through generally available means. If you have documents containing personal information (such as loan applications or approved attorney applications), they must be shredded before they are discarded.
The display or public posting of social security numbers is prohibited, as is the provision of the individual's social security number to the general public. You cannot require an individual to use his or her social security number to access any internet web site unless an additional password is required. If the display of the social security number is required by federal law or certain
As you are aware, previous legislation gave the county clerks the right to redact social security numbers from document submitted for recording. We suggest that you advise any out-of-state clients who may be unfamiliar with the new rules that they should not require social security numbers to be a part of documents to be recorded.
The two companion acts deal with the criminalization of the use of scanning devices and reencoders and offences relating to false birth certificates, driver's licenses and other identification documents.
This Bulletin provides only a synopsis of the new law. You should review your office procedures and make sure you are in compliance with the new law when it becomes effective on January 1, 2006. Please call the State office if you have any questions or would like a full copy of the Act.
THIS BULLETIN IS FURNISHED TO INFORM YOU OF CURRENT DEVELOPMENTS. AS A REMINDER, YOU ARE CHARGED WITH KNOWLEDGE OF THE CONTENT ON VIRTUAL UNDERWRITER AS IT EXISTS FROM TIME TO TIME AS IT APPLIES TO YOU, AS WELL AS ANY OTHER INSTRUCTIONS. OUR UNDERWRITING AGREEMENTS DO NOT AUTHORIZE OUR ISSUING AGENTS TO ENGAGE IN SETTLEMENTS OR CLOSINGS ON BEHALF OF STEWART TITLE GUARANTY COMPANY. THIS BULLETIN IS NOT INTENDED TO DIRECT YOUR ESCROW OR SETTLEMENT PRACTICES OR TO CHANGE PROVISIONS OF APPLICABLE UNDERWRITING AGREEMENTS. CONFIDENTIAL, PROPRIETARY, OR NONPUBLIC PERSONAL INFORMATION SHOULD NEVER BE SHARED OR DISSEMINATED EXCEPT AS ALLOWED BY LAW. IF APPLICABLE STATE LAW OR REGULATION IMPOSES ADDITIONAL REQUIREMENTS, YOU SHOULD CONTINUE TO COMPLY WITH THOSE REQUIREMENTS.
- Bulletins Replaced:
- Related Bulletins:
- NJ000087 Standards for Safeguarding Customer Information - N.J.A.C. 11:1-44.1 et seq.
- NL000103 Privacy of Personal Information of Consumers and Customers
- SLS00160 Privacy of Personal Information of Consumers and Customers; Update
- Underwriting Manual:
- Exceptions Manual: