Okla. Admin. Code § 365:35-3-6

Current through Vol. 42, No. 3, October 15, 2024
Section 365:35-3-6 - Assess risk

The licensee:

(1) Identifies reasonably foreseeable internal or external threats that could result in unauthorized disclosure, misuse, alteration or destruction of customer information or customer information systems;
(2) Assesses the likelihood and potential damage of these threats, taking into consideration the sensitivity of customer information; and
(3) Assesses the sufficiency of policies, procedures, customer information systems and other safeguards in place to control risks.

Okla. Admin. Code § 365:35-3-6

Added at 22 Ok Reg 2059, eff 7-14-05