18 NCAC 07J .0617          identification and access control

A technology provider shall implement personnel identification and access control measures for systems supporting the electronic notary solution that:

(1)           designate and authorize users;

(2)           assign access to its data and systems based on users' roles;

(3)           restrict non-privileged users from performing privileged functions;

(4)           review, manage, and monitor users' role-based access;

(5)           restrict notarial transaction process-related data access to authorized persons; and

(6)           delete, revise, or remove access for users:

(a)           whose role changes; or

(b)           who are no longer employed with the provider.

 

History Note:        Authority G.S. 10B-4; 10B-106; 10B-125(b); 10B-126; 10B-134.15; 10B-134.17; 10B-134.19; 10B-134.21; 10B-134.23;

Eff. July 1, 2025.