230 R.I. Code R. 230-RICR-20-60-8.7

Current through December 3, 2024
Section 230-RICR-20-60-8.7 - Assess Risk
A. The licensee:
1. Identifies reasonably foreseeable internal or external threats that could result in unauthorized disclosure, misuse, alteration or destruction of customer information or customer information systems;
2. Assesses the likelihood and potential damage of these threats, taking into consideration the sensitivity of customer information; and
3. Assesses the sufficiency of policies, procedures, customer information systems and other safeguards in place to control risks.

230 R.I. Code R. 230-RICR-20-60-8.7

Amended effective 7/16/2020