Editor’s Note: Sunshine Request makes no claim as to the veracity of any statements or information contained in any of the requests, or public records, we receive.
Other (indicate in message) Submitted: May 9, 2025 | Updated: May 13, 2025
(May 2025) Request for NC Secretary of State: Current policies and procedures to safeguard the estates of the people of North Carolina.
Good evening Ann, Elaine, Tim, Publications, Records, and NC Secretary of State Offices (Records Officer / Custodian(s) of these Records),
Please reply promptly to the following public records request, which I’m making in accordance with NC Public Records Law. https://www.ncleg.net/enactedlegislation/statutes/html/bychapter/chapter_132.html
In recent years there has been increasing concern about data privacy and security, particularly regarding sensitive information related to estates. I am interested in learning more about what measures are being taken to ensure unauthorized access by agencies or individuals is prevented, and I’m looking for copies of any current rules / regulations / policies / procedures implemented by the NC Secretary of State’s office to safeguard the estates of the people of North Carolina. I believe transparency in these matters is crucial for maintaining public trust and ensuring that people feel their personal information is secure.
With this in mind – I request that you please provide the electronic copy of all current regulations manuals related to the following. If any / all of this info is already publicly available online, please provide a link to where it can be accessed:
1) Copies of Data Protection Measures.
What records protocols are in place to protect personal and estate-related information from unauthorized access? This includes both physical security measures and digital safeguards.
2) Copies of Access Control Policies.
How does your office determine who has access to estate information? Are there specific criteria or processes that must be followed before an agency or individual can gain access?
3) Copies of Incident Response Procedures.
Manuals including information on the following: In the event of a data breach or unauthorized access incident, what steps does your office take to address the situation? Is there a protocol for notifying affected individuals?
4) Copies of Training and Awareness Programs Manuals.
Manuals including information on the following: What training do employees receive regarding data protection and privacy? Are there ongoing education programs to keep staff updated on best practices?
5) Copies of Compliance with Regulations.
Information or Manuals related to the following: How does your office ensure compliance with state and federal regulations concerning data protection and privacy?
** I’m simply requesting an electronic copy of an electronic record, if one exists. I’m NOT asking for the opportunity to come in person to “inspect”, nor to obtain a printed copy of, this electronic record. I’m requesting explicitly that any responsive info be provided to me via the electronic medium / electronic format (in which the copy of this record already exists). If you are unable to fulfill any or all parts of this request, please specifically cite where a reason for denial is justified under NC Public Records Law. **
————————————
Please note that by submitting this request, I’m NOT agreeing to pay any potential fees or associated costs related to my request. If it isn’t possible to process the request without incurring fees, then please let me know the itemized potential cost and clear explanations of those charges upfront, and DO NOT proceed until I respond.
By Law I’m not required to provide a name or address to associate with a public records request. However, in order to move things along I’d like to clarify that this request is being made by:
Sunshine Request
PO Box 17391
Asheville, NC 28816
The request has been sent solely by me and my email address [email protected] . If anyone other than that email address contacts you to pursue a similar request, it did not come from me. Please do not commingle or treat that as an alteration or cancellation of my request – I intend to continue to pursue my request.
Thank you for your assistance!
** Sunshine Request (www.sunshinerequest.com) makes no claim as to the veracity of any statements or information contained in any of the requests, or public records, we receive.
Status: Completed
Activity:
-
May 13, 2025 3:44 pm
1 month ago
from: postmaster <[email protected]>
date: May 13, 2025, 3:44 PM
subject: Returned mail: see transcript for detailsThe original message was received at Tue, 13 May 2025 15:44:51 -0400
from:
[REDACTED]
—– The following addresses had permanent fatal errors —-
(reason: 550 No such recipient)
—– Transcript of session follows —–
… while talking to sosnc.gov.:
>>> RCPT To:<[email protected]>
<<< 550 No such recipient
550 5.0.0 No such recipient
from: Sunshine Request <[email protected]>
to: generalcounsel <[email protected]>
cc: corpinfo <[email protected]>, Elaine Marshall <[email protected]>, “[email protected]” <[email protected]>, pubs <[email protected]>, Tim Crowley <[email protected]>
date: May 13, 2025, 3:44 PM
subject: Re: Public records request. (May 2025) Request for NC Secretary of State: Current policies and procedures to safeguard the estates of the people of North Carolina.Hi Ann,
Thank you for clarifying, and thank you for your response to my request.
Later this evening, or early tomorrow, I’ll mark the request as “Completed” on our website.
Thank you for your help!
~ The Sunshine Request Team
Editor’s Note to Sender:
This info. comes from our FAQs page:
Who should I contact if I think there are results of requests that have been improperly disclosed or should be redacted?
The results of all Completed requests are published on our site, and have been provided to Sunshine Request directly by the disclosing government agency (government entity).
Sunshine Request’s policy in situations involving an alleged improper disclosure is to refer you to the disclosing agency (government entity). If any party feels that an alleged improper disclosure has taken place, please contact the disclosing agency (government entity) directly.
If the disclosing agency, after a review of your case, determines that confidential information was improperly disclosed, and notifies us of such disclosure, we will then be able to review your case.
Similarly — Sunshine Request has reviewed any info given to us from the NC Secretary of State Office to determine if it satisfies the initial request. We make no claim as to the veracity of records / responses we receive from Entities. If you have reason to believe that they have improperly disclosed (or are not disclosing) all available public records in accordance with NC Public Records Law, we encourage you to reach out to them directly.
Thank you for using Sunshine Request!
Status: Completed -
May 13, 2025 3:21 pm
1 month ago
from: generalcounsel <[email protected]>
to: Sunshine Request <[email protected]>
cc: corpinfo <[email protected]>, Elaine Marshall <[email protected]>, “[email protected]” <[email protected]>, pubs <[email protected]>, Tim Crowley <[email protected]>
date: May 13, 2025, 3:21 PM
subject: Re: Public records request. (May 2025) Request for NC Secretary of State: Current policies and procedures to safeguard the estates of the people of North Carolina.Dear Sunshine Request:
The information that you have requested is confidential pursuant to G.S. 132-6.1(c): “Nothing in this section requires a public agency to disclose security features of its electronic data processing systems, information technology systems, telecommunications networks, or electronic security systems, including hardware or software security, passwords, or security standards, procedures, processes, configurations, software, and codes.”
You may also wish to look at G.S. 132-1.10 which governs some State agency conduct regarding data privacy and security. That is one of many statutes that govern how State agencies protect personal information of individuals and other confidential information.
Finally, you may wish to contact the Department of Information Technology, which sets the basic State government data privacy and security standards. The Department of Information Technology provides regular mandatory training regarding security, confidentiality and privacy.
Regards,
Ann B. Wall
General Counsel
NC Department of the Secretary of State
Post Office Box 29622
Raleigh, North Carolina 27626-0622
919 814 5400Connect with us!
On the Web: http://www.sosnc.gov/
Facebook: https://www.facebook.com/
NCSecState Twitter: https://twitter.com/NCSecState
YouTube: https://www.youtube.com/c/
NCSecState Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient (s) and may contain confidential and privileged information. Any unauthorized use, disclosure, or distribution is prohibited.
Status: Response Received from Government -
May 9, 2025 6:07 pm
1 month ago
from: postmaster <[email protected]>
date: May 9, 2025, 6:07 PM
subject: Returned mail: see transcript for detailsThe original message was received at Fri, 9 May 2025 18:07:44 -0400
from:[REDACTED]
—– The following addresses had permanent fatal errors —-
(reason: 550 No such recipient)
—– Transcript of session follows —–
… while talking to sosnc.gov.:
>>> RCPT To:<[email protected]>
<<< 550 No such recipient
550 5.0.0 No such recipient
from: Sunshine Request <[email protected]>
to: generalcounsel <[email protected]>
cc: [email protected], [email protected], Elaine Marshall <[email protected]>, Tim Crowley <[email protected]>, pubs <[email protected]>
date: May 9, 2025, 6:07 PM
subject: Public records request. (May 2025) Request for NC Secretary of State: Current policies and procedures to safeguard the estates of the people of North Carolina.Good evening Ann, Elaine, Tim, Publications, Records, and NC Secretary of State Offices (Records Officer / Custodian(s) of these Records),
Please reply promptly to the following public records request, which I’m making in accordance with NC Public Records Law. https://www.ncleg.net/
enactedlegislation/statutes/ html/bychapter/chapter_132. html In recent years there has been increasing concern about data privacy and security, particularly regarding sensitive information related to estates. I am interested in learning more about what measures are being taken to ensure unauthorized access by agencies or individuals is prevented, and I’m looking for copies of any current rules / regulations / policies / procedures implemented by the NC Secretary of State’s office to safeguard the estates of the people of North Carolina. I believe transparency in these matters is crucial for maintaining public trust and ensuring that people feel their personal information is secure.
With this in mind – I request that you please provide the electronic copy of all current regulations manuals related to the following. If any / all of this info is already publicly available online, please provide a link to where it can be accessed:
1) Copies of Data Protection Measures.
What records protocols are in place to protect personal and estate-related information from unauthorized access? This includes both physical security measures and digital safeguards.
2) Copies of Access Control Policies.
How does your office determine who has access to estate information? Are there specific criteria or processes that must be followed before an agency or individual can gain access?
3) Copies of Incident Response Procedures.
Manuals including information on the following: In the event of a data breach or unauthorized access incident, what steps does your office take to address the situation? Is there a protocol for notifying affected individuals?
4) Copies of Training and Awareness Programs Manuals.
Manuals including information on the following: What training do employees receive regarding data protection and privacy? Are there ongoing education programs to keep staff updated on best practices?
5) Copies of Compliance with Regulations.
Information or Manuals related to the following: How does your office ensure compliance with state and federal regulations concerning data protection and privacy?
** I’m simply requesting an electronic copy of an electronic record, if one exists. I’m NOT asking for the opportunity to come in person to “inspect”, nor to obtain a printed copy of, this electronic record. I’m requesting explicitly that any responsive info be provided to me via the electronic medium / electronic format (in which the copy of this record already exists). If you are unable to fulfill any or all parts of this request, please specifically cite where a reason for denial is justified under NC Public Records Law. **
————————————
Please note that by submitting this request, I’m NOT agreeing to pay any potential fees or associated costs related to my request. If it isn’t possible to process the request without incurring fees, then please let me know the itemized potential cost and clear explanations of those charges upfront, and DO NOT proceed until I respond.
By Law I’m not required to provide a name or address to associate with a public records request. However, in order to move things along I’d like to clarify that this request is being made by:
Sunshine Request
PO Box 17391
Asheville, NC 28816The request has been sent solely by me and my email address [email protected] . If anyone other than that email address contacts you to pursue a similar request, it did not come from me. Please do not commingle or treat that as an alteration or cancellation of my request – I intend to continue to pursue my request.
Thank you for your assistance!
** Sunshine Request (www.sunshinerequest.com) makes no claim as to the veracity of any statements or information contained in any of the requests, or public records, we receive.
Status: Sent to Government -
May 9, 2025 6:05 pm
1 month ago
Submitted to Sunshine Request
Status: Pending