Anyone with a computer can hack into your life and snatch your identity. With the right combination of information, such as a name, account number, or Social Security number, identity thieves can apply for credit cards, open checking accounts, and commit other crimes using our names. And the victims of these thieves are piling up fast. In 2002 alone, 10 million people reported being victim to identity theft, according to statistics from the US Federal Trade Commission (http://www.ftc.gov/os/2003/09/synovatereport.pdf).
Our home computers, academia, and most places where we do business have computer databases containing pieces of our personal information. These databases may be hacked into and our information stolen without our being aware of it for months or even years.

Victims Must be Notified
In an attempt to curb this growing crime, California passed a new law this summer (California Civil Code Section 1798) that forces organizations,

Previous Issue The UC plans to comply with new California law How secure is the New Business Architecture? US Federal Trade Commission statistics on identity theft Network and Desktop Security: Protection of Personal Information Identity Theft Prevention Web

including institutions of higher education, to notify California state residents when a security breach results in the release of personal information. Potential victims of identity theft must be made aware that their personal information may have been obtained by others, so they can take action to prevent or minimize the effects.

Campus Advises Aggressive Action
At UC Davis, Provost and Vice Chancellor Virginia Hinshaw advised campus units to take “aggressive action” to identify systems housing personal information, then either protect or remove the information, according to her “Network and Desktop Security: Protection of Personal Information” directive released on August 26, 2003.

New Web Site Offers Help
The campus developed a new Identity Theft Prevention Web site that provides information about the campus notification plan and steps that individuals can take in the event that they become victims of identity theft. The site includes an introduction to identity theft, tips on how to prevent it in the workplace and home, and instructions on what to do if you receive a notification letter or suspect that your identity has been stolen. The site also provides links to state and federal resources a vailable to aid in identity theft prevention, incident reporting, and recovery.

Other Resources
With the help of Information Technology Security Coordinator Robert Ono, the campus has developed a notification plan that addresses the process that UC Davis will follow when assessing security breaches and notifying all appropriate individuals. The campus Misuse Committee plays a major role in examining each incident and determining when personal notification is required.

Vice Provost John Bruno identified specific measures that campus can take to help prevent identity theft. His directive, “Preventing Unauthorized Access to Personal Information” issued on July 30, 2003, provides links to other information about identity theft prevention and recovery.