Prospective Students · Parents · Visitors · Alumni · Current Students · Faculty · Staff
UT Arlington Home  > OIT Home > FAQ
OIT Home
About Us
Information Security
Policy
Help / FAQs
Accounts / Security
Services / Requests
Computer Store
Training
Downloads
MyMav
Help Desk

Help and Frequently Asked Questions

What Should I Do?

Was I Affected?

Questions About Credit

University Response

Data Theft Details

Miscellaneous Questions

What should I do?

If my Social Security number was stolen?

You should place a free fraud alert on your file with one of the three major credit monitoring agencies. (You need only to place a fraud alert with one of the agencies; it will share the information with the other two.) The fraud alert stays on your record for 90 days. You can re-file the free fraud alert after the initial period has ended. Step-by-step instructions can be found at the Fraud Alert, Data Theft and Identity Theft Resources web page.

This free service requests that any creditor contact you by phone at a number you designate before opening a new account. Provide them with all of your contact numbers so they can reach you at any time.

In addition, you are entitled to one free credit report in a 12-month period. To request this free annual report, go to www.annualcreditreport.com. You can also call toll-free (877) FACT ACT (322-8228). Review your credit reports carefully to ensure no fraudulent accounts have been opened in your name or unauthorized charges made to your existing accounts.

Back to Top

If I have been a victim of identity theft?

If you find evidence of identity theft on your credit reports, take these steps:

• Immediately contact the affected creditor and close the accounts that you believe have been opened fraudulently or have unauthorized activity.

• File a police report and get a copy to submit to creditors and others that may require proof of a crime. (Make several copies of the police report for future use.)

• You may file an extended security freeze on your account if you live in California, Connecticut, Illinois, Louisiana, Maine, Nevada, North Carolina, New Jersey, Texas, Vermont or Washington. You will need to contact each of the three major credit bureaus and follow specific instructions:

o Equifax

o Experian

o Transunion

If you live in Illinois, Texas, Washington, or Vermont, you must include an identity theft report or a police report indicating that you are a victim of identity theft.

• File a complaint with the FTC online or by calling 877-438-4338. Use the ID Theft Affidavit Form developed by the Federal Trade Commission to help you file a case with the affected creditors.

• If you discover misuse of your Social Security number, call the Social Security Fraud Hotline, 800-269-0271.

• Keep a detailed record of both written and oral communications with credit bureaus, creditors, financial institutions, and police, including dates and with whom you spoke. Any records should be kept for three years.

Additional Resources

The following links provide detailed information related to identity theft and protecting yourself.

Federal Trade Commission

Also see from the Federal Trade Commission, the booklet “Take Charge: Fighting Back Against Identity Theft

Social Security Administration

Department of Justice

Identity Theft Resource Center  (858-693-7935)

Privacy Rights Clearinghouse - Identity Theft Resources

National Fraud Information Center Hotline: 800-876-7060

Back to Top

If my contact information is out of date?

If you are concerned that the University may not have your current contact information, you may use our online form at … to provide your current information. Note: Updated contact information will take several business days to process and may not be available for the data theft notifications now being sent out. Returned mail and email will be resent using the updated contact information.

Back to Top

Was I Affected?

The University has identified the affected students as those that attended any of the following Department of Computer Science and Engineering classes.The University has notified by email or by letter those whose information was contained in the data theft. If you are concerned that the University may not have your current contact information, you may use our online form at … to provide your current information.

Note: Updated contact information will take several business days to process and may not be available for the data theft notifications now being sent out. Returned mail will be resent using the updated contact information.

Back to Top

Was my credit card information accessed?

No. Financial information — including credit card numbers — was not included in the information inadvertently stolen in the data theft.

Back to Top

Is information on my parents or family members at risk?

No. Information about family members was not included in the information inadvertently stolen in the data theft.

Back to Top

I am a current student in the UT Arlington Department of Computer Science and Engineering. Were my grades exposed?

Yes, possibly. Grades only for the affected classes listed on the Am I Affected web page were included in the information inadvertently stolen in the data theft.

Back to Top

I’m not affiliated with the UT Arlington Department of Computer Science and Engineering at all. Should I be worried?

If you did not take one of the UT Arlington Department of Computer Science and Engineering classes listed above, then you are not affected.

Back to Top

Why would the UT Arlington Department of Computer Science and Engineering have my Social Security number?

The University is required by law to obtain and record the Social Security number for everyone who receives a salary, hourly wages, or expense reimbursement (including student workers), and for most students receiving financial aid. It is also common to use Social Security numbers to match admissions materials from multiple sources, such as applications, school transcripts and test scores.

For many years, however, the University also used Social Security numbers as the primary “University ID” for students, faculty and staff. This led to inclusion of Social Security numbers on various reports and in various databases. The University has replaced the Social Security number as primary ID, and an extensive Social Security remediation process is being undertaken at the University to eliminate all but essential Social Security numbers from our information systems.

Back to Top

Questions about Credit

Will filing a fraud alert affect my ability to use my credit card now or obtain credit in the future?

Fraud alerts are reported to credit bureaus to help protect against fraudulent new credit accounts from being opened. A fraud alert should not interfere with your daily use of a credit card or banking/checking accounts, however, you may not be approved if you apply for instant credit in a store.

Back to Top

I was told I have to provide a police report to get an extended (7-year) fraud alert. Where do I get a police report?

An extended (7-year) fraud alert may be filed in the event that you discover you have personally been a victim of identity theft. Identity theft occurs when someone uses your personal information without your permission to commit fraud or other crimes, and that is different than the data theft at the University. While the theft of personal information from the UT Arlington Department of Computer Science and Engineering faculty member was a criminal act, it is not sufficient to trigger an extended fraud alert in most states. If you discover that you have been the victim of identity theft, you should close the accounts that you know or believe have been tampered with or opened fraudulently and file a report with your local police or the police in the community where the identity theft took place. This police report of actual identity theft is used in creating an extended fraud alert.

Back to Top

I have never had a credit card or other credit history. What should I do?

If you do not have a credit history, the credit monitoring agencies may not have your Social Security number in the database. You will need to send a letter requesting they place a fraud alert on your Social Security number to one of the credit monitoring agencies:

Equifax

Fraud Division

P.O. Box 740250

Atlanta, GA 30374

Experian

Credit Fraud Center

P.O. Box 1017

Allen, TX 75013

Trans Union

Fraud Victim Assistance Department

P.O. Box 6790

Fullerton, CA 92634

You should include:

  1. Your name, Social Security number, current mailing address, previous mailing address during the last two years, date of birth, and telephone number (if you want it to appear on the fraud alert so that creditors may call you),
  2. a COPY of:
    • an official document showing your name and Social Security number (a copy of your Social Security card or W2 form), and
    • a government-issued identification card (such as driver's license, state-issued ID, military ID) showing your name and current address, and
    • a recent copy of a utility bill, bank statement or insurance statement that shows your current mailing address and the date of the statement. Credit card statements, voided checks, lease agreements, magazine subscriptions or postal service forward orders are not accepted as proof of current mailing address.

Be sure you are only mailing copies because documents are not returned.

Back to Top

I called to file a fraud alert with a credit monitoring agency, but they said they could not match my record. Now what?

There are three reasons a credit monitoring agency may not be able to match your record.

  1. The name and address you gave them do not match what they have on their database, or
  2. You do not have a credit history so they do not have your Social Security number in the database.
  3. You did not provide enough information to match their records.

You can try a couple of things:

  1. Try using your home address instead of your current school mailing address. (The credit monitoring agency will mail a confirmation of your fraud alert to the address that matches their database.)
  2. Try submitting your information to another of the credit monitoring agencies.

If neither works, then you will need to send a letter requesting a fraud alert to one of the credit monitoring agencies:

Equifax

Fraud Division

P.O. Box 740250

Atlanta, GA 30374

Experian

Credit Fraud Center

P.O. Box 1017

Allen, TX 75013

Trans Union

Fraud Victim Assistance Department

P.O. Box 6790

Fullerton, CA 92634

You should include:

  1. Your name, Social Security number, current mailing address, previous mailing address during the last two years, date of birth, and telephone number (if you want it to appear on the fraud alert so that creditors may call you),
  2. a COPY of:
    • an official document showing your name and Social Security number (a copy of your Social Security card or W2 form), and
    • a government-issued identification card (such as driver's license, state-issued ID, military ID) showing your name and current address, and
    • a recent copy of a utility bill, bank statement or insurance statement that shows your current mailing address and the date of the statement. Credit card statements, voided checks, lease agreements, magazine subscriptions or postal service forward orders are not accepted as proof of current mailing address.

Be sure you are only mailing copies because documents are not returned.

Back to Top

I live outside of the United States. How can I contact the credit monitoring agencies?

By Internet:

You may place your fraud alert online at Experian’s Web site.

By telephone:

You can request a fraud alert by telephone or postal mail with TransUnion. TransUnion will then notify the other two credit monitoring agencies.

To make a telephone request to TransUnion:

  1. Call TransUnion, 714-738-3800, ext 7289. There is no international toll-free number.
  2. The TransUnion representative will ask for your name, Social Security number and a previous United States address. It does not matter if the U.S. address is your current address or not; you need a U.S. address to access the database.
  3. TransUnion will place a fraud alert on your Social Security number and mail a notification and credit report to your international address. They will accept an international telephone number as a note to the file, but it is not part of the database. While the fraud alert will be shared with the other credit monitoring agencies, neither the international address nor the international telephone number will be shared. Only U.S. telephone numbers and addresses are entered into he TransUnion database.
  4. Creditors who call TransUnion will be able to see the international phone number on your record but are not likely to call for authorization. The creditor will likely deny the request for credit if they cannot reach you, although there is no assurance.
  5. It's important to check your credit report regularly and be on the alert for other fraudulent uses of identity. You can request your free credit report from each of the agencies.

To get your free annual credit report:

  1. Under the FACT Act amendments to the Fair Credit Reporting Act, you are entitled to one free credit report in a 12-month period.
  2. To request this free annual disclosure you may contact the Central Source online at http://www.annualcreditreport.com. You can also contact the Central Source to request this free annual disclosure by calling toll-free (877) 322-8228 or by using the mail request form available at the Central Source Web site by going to https://www.annualcreditreport.com/cra/order.

By postal mail:

Equifax

Fraud Division

P.O. Box 740250

Atlanta, GA 30374

Experian

Credit Fraud Center

P.O. Box 1017

Allen, TX 75013

Trans Union

Fraud Victim Assistance Department

P.O. Box 6790

Fullerton, CA 92634

You should include:

  1. Your name, Social Security number, current mailing address, previous mailing address during the last two years, date of birth, and telephone number (if you want it to appear on the fraud alert so that creditors may call you),
  2. a COPY of:
    • an official document showing your name and Social Security number (a copy of your Social Security card or W2 form), and
    • a government-issued identification card (such as driver's license, state-issued ID, military ID) showing your name and current address, and
    • a recent copy of a utility bill, bank statement or insurance statement that shows your current mailing address and the date of the statement. Credit card statements, voided checks, lease agreements, magazine subscriptions or postal service forward orders are not accepted as proof of current mailing address.

Be sure you are only mailing copies because documents are not returned.

Back to Top

The free fraud alert lasts only 90 days. What happens after that?

The fraud alert stays on your record for 90 days. You can continue to re-file the free fraud alert after each 90-day period ends. At a minimum, experts recommend filing a second 90-day fraud alert, as well as reviewing your credit report once a year as well as bank and credit statements monthly.

For long-term monitoring, there are commercial services that offer additional credit protection available for purchase. While we cannot recommend specific services, we are currently negotiating with some firms to offer discounts to those whose records were exposed in the Department of Computer Science and Engineering data theft. As soon as additional information regarding these discounts is received it will be made available on this website. As a consumer, please evaluate the suitability of all products for your own personal circumstances. UT Arlington does not endorse any commercial program or product, and the offering of any discount does not imply endorsement.

See www.consumer.gov/idtheft/ for more information about identity theft.

Back to Top

Doesn’t frequent checking of the report have a negative effect on my credit score?

No. Individuals may request their credit reports as often as they would like to without negative effect. You are entitled to one free credit report disclosure in a 12-month period. To request this free annual disclosure, visit www.annualcreditreport.com or call toll-free (877) FACT ACT.

Back to Top

I am/was an international student and don't have a Social Security number. Should I file a fraud alert?

At UT Arlington, international students are issued a unique identifier in place of a Social Security number. It is for internal purposes only and is not a government-issued Social Security number. Although the number may have been part of the database that was stolen, these unique numbers may not be used for credit purposes so there is no need to file a fraud alert.

If you do have government-issued Social Security number for any reason, it would be prudent to place a fraud alert with the credit bureau.

Back to Top

How can I protect the Social Security number of someone who is deceased?

The executor of the estate or the spouse should notify each of the three major credit bureaus (Equifax, Experian, and Transunion) in writing.  The letter should include the deceased person's full name, most recent address, date of birth, and Social Security number. Include a copy of the death certificate. An executor should send a copy of the legal document authorizing executorship.

Please see www.idtheftcenter.org for further details on the steps to take when a loved one passes away to decrease the risk of identity theft.

Back to Top

How can I protect myself against people using my SSN to apply for a job?

Social Security number fraud is different than credit fraud and requires a different response. The Social Security Administration cannot put a flag or alert of any kind on your SSN, but they will allow you to request a copy of your earnings statement online. You can request a copy of your statement at www.ssa.gov/mystatement. You should review this information on a regular basis. Instances of fraud should be reported to the Social Security Fraud Hotline (800-269-0271) and the Federal Trade Commission (877-438-4338).

Back to Top

University Response

What measures have the University taken in response to the data theft?

UT Arlington has been working diligently on several fronts following the discovery of the Department of Computer Science and Engineering data theft. At this time, we are notifying by email and by letter those individuals whose information was inadvertently stolen. If you believe you are affected, or might be affected, or that the University may not have your correct contact information, we encourage you to complete the online form at the Contact Us web page so that we are assured of an up-to-date postal mail and email address for you.

Back to Top

What has been the time frame for notifying affected people?

The first wave of official notifications will begin on October 10th, 2006 using the contact information currently on file for the affected individuals. If you believe you are affected, or might be affected, or that the University may not have your correct contact information, we encourage you to complete the online form at the Contact Us web page so that we are assured of an up-to-date postal mail and email address for you.

Back to Top

Why can’t the University handle this with the credit bureau?

We deeply regret the burden this crime has placed on those whose information was accessed. Please understand that as much as we would like to be of assistance in this matter, the University cannot act as your agent in the administration of your credit bureau relationship. As a public university, we cannot make decisions regarding the placement of a fraud alert on your personal credit file, and we are not able to collect financial information in order to alert credit card companies and other institutions. These are personal transactions that are appropriately handled by you or by your financial advisers.

Back to Top

Data Theft Details

When did the data theft occur?

On Friday, September 29th a Department of Computer Science and Engineering faculty member reported to the local Police Department that a burglary had occurred at his residence. On Monday October 2nd, 2006 the University was notified that a stolen item from the burglary included some student information.

For a more detailed timeline of the data theft, discovery and notification plan.

Back to Top

Miscellaneous Questions

I was contacted by someone claiming to represent the University who asked for personal information including my Social Security number. What should I do?

Please be aware that UT Arlington will only contact you with information on how to take steps to prevent possible fraud or identity theft. We will not ask for your Social Security number. We will not ask for credit card or bank information. We recommend that you do not release personal information in response to any contacts of this nature that you have not initiated.

If you have any questions about the validity of any communication from UT Arlington, please contact us at (817) 272-2208 (local Dallas/Fort Worth number).

The help desk is open:

  • 7 a.m. to midnight - Monday through Thursday
  • 7 a.m. to 8 p.m. - Friday
  • 9 a.m. to 8 p.m. - Saturday
  • 9 a.m. to midnight - Sunday

Back to Top

Was my NetID and password stolen?

UT Arlington NetID’s and passwords were not among the stolen data.

Back to Top

 
Links
Data Theft Home
Am I Affected?
Notification Plan
Fraud Alert, Data Theft and Identity Theft Resources
UT Arlington Discounts for Credit Protection and Fraud Monitoring Services
Contact Us
Help and Frequently Asked Questions
Credit Reporting Agencies
Equifax
Experian
TransUnion
Links
Additional Resources
© 2001 The University of Texas at Arlington
Office of Information Technology, Box 19318, Arlington, Texas 76019-0318
Phone 817.272.2271 | Fax 817.272.5800
Questions about this site? Email: OIT Webmaster