A technology provider shall implement personnel identification and access control measures for systems supporting the electronic notary solution that:
- (1) designate and authorize users;
- (2) assign access to its data and systems based on users' roles;
- (3) restrict non-privileged users from performing privileged functions;
- (4) review, manage, and monitor users' role-based access;
- (5) restrict notarial transaction process-related data access to authorized persons; and
(6) delete, revise, or remove access for users:
- (a) whose role changes; or
- (b) who are no longer employed with the provider.
History Note: Authority G.S. 10B-4; 10B-106; 10B-125(b); 10B-126; 10B-134.15; 10B-134.17; 10B-134.19; 10B-134.21; 10B-134.23;
Eff. July 1, 2025.