Section Ins 3701.06 - Assess RiskThe licensee:
(a) Identifies reasonably foreseeable internal or external threats that could result in unauthorized disclosure, misuse, alteration or destruction of customer information or customer information systems;(b) Assesses the likelihood and potential damage of these threats, taking into consideration the sensitivity of customer information; and(c) Assesses the sufficiency of policies, procedures, customer information systems and other safeguards in place to control risks.N.H. Admin. Code § Ins 3701.06
Amended by Volume XXXVI Number 06, Filed February 11, 2016, Proposed by #11015, Effective 1/8/2016, Expires 1/8/2026.