Management of WFCU shall be responsible for developing, implementing, and maintaining an effective information security program to: 1.) insure the security and confidentiality of member records and information, 2.) protect against any anticipated threats or hazards to the security or integrity of such records, and 3.) protect against unauthorized access to or use of such records or information that would result in substantial harm or inconvenience to any member.

Management shall regularly (no less than annually) report to the board on the current status of the credit union’s information security program.