ARSD 20:06:45:20
Each licensee shall implement a comprehensive written information security program that includes administrative, technical, and physical safeguards for the protection of customer information. The administrative, technical, and physical safeguards included in the information security program shall be appropriate to the size and complexity of the licensee and the nature and scope of its activities.
Licensed producers must determine the level of safeguards appropriate for their business. For those licensed producers that require only a minimum level of safeguards based upon their size and complexity, the appropriate level of safeguards may consist of the following:
Source: 29 SDR 48, adopted September 20, 2002, effective March 1, 2003; 31 SDR 67, effective November 14, 2004.
General Authority: SDCL 58-2-40 , 58-2-41.
Law Implemented: SDCL 58-2-40 , 58-2-41.