🛡️ Create breach notice templates

[JFWooten4]

Subsection (a)(4)(iv) of § 248.30

a. A general description of the incident and the type of sensitive customer information that was or is reasonably believed to have been accessed or used without authorization.

b. If reasonably possible to determine at the time of notice, one of:

• the date of the incident;
• the estimated date of the incident; or
• the date range when the incident occurred.

c. Contact information sufficient for the affected individual to ask about the incident, including:

• telephone number;
• email address or equivalent method;
• postal address; and
• the name of a specific office to contact.

d. If the individual has an account with the covered institution, a recommendation that the customer review account statements and immediately report suspicious activity.

e. An explanation of what a fraud alert is and how the individual may place a fraud alert in their credit reports.

f. A recommendation that the individual periodically obtain credit reports from each nationwide credit reporting company and have fraudulent-transaction information deleted.

g. An explanation of how the individual may obtain a free credit report.

h. Information about FTC and usa.gov identity-theft guidance, encouragement to report identity theft to the FTC, and the FTC website address for identity-theft information and reporting.

[JFWooten4]

there are also the internal mailing postcard templates which are needed with the mailer data w/ provider scoping