Investor Presentaiton slide image

Investor Presentaiton

Determining Compliance: Regulatory Considerations Does licensee have a third party service provider program? Is there a third party service provider security policy? • Is the policy based on the Licensee's risk assessment? • Can the TPSP provide your data the same protection you are required to provide? TPSP Policy should address • Has there been an assessment of risk posed by the TPSP? • What security practices must the TPSP meet? • Are there periodic assessments of the TPSP? What does the contract say? • Is there a written agreement that sets forth the terms of the engagement and what the TPSP can do with the information? • Is there any auditing or oversight of the TPSP's activities?
View entire presentation