Identity Theft Prevention Measures

1. What is Northeast Utilities doing to help to protect the confidential information of its residential and small commercial and industrial customer accounts?
   Beginning November 1, 2008, the utility companies of Northeast Utilities implemented additional identity theft prevention measures to help us to safeguard our customers’ confidential account information and to ensure only authorized access.
   


2. Why are these additional protections being implemented now?
   The timing of this implementation is in advance of the Federal Trade Commission scheduled date for enforcement of the June 1, 2010, deadline for creditors and financial institutions to develop and implement written identify theft prevention programs to detect, prevent and mitigate “red flags.” See 16 C.F.R. 681.2 and Appendix A to Part 681. A red flag is any activity that may indicate a possible attempt at identity theft related to an existing customer account or the opening of a new account.
   


3. Could these additional information requests mean longer hold times for callers?
   To the extent that callers are required to provide identifying information in order to access customer information, this may lengthen call time. In the event customers experience any delays, we appreciate and thank our customers for their patience.
   


4. What did Northeast Utilities’ utility companies do prior to November 1 to prevent unauthorized access to customer information?
   Northeast Utilities already has existing policies and procedures to mitigate foreseeable risks to customer and company information and to verify a caller’s identity. Northeast Utilities has a new customer service information system (C2) that enhances NU’s electric and natural gas companies’ abilities to implement these additional measures. The Program, which became effective November 1, 2008, builds additional safeguards into the policies and procedures that the Company already has in place to protect utility accounts.
   


5. To comply with the Program, what additional information, if any, will be required for a customer to access an existing account?
   Individuals requesting account information or access will be asked additional questions regarding information about a customer's account in order to verify his or her identity and right to access the information. For security reasons, the specific measures are confidential.