Customer Privacy & Information Security Statement
Introduction & Commitment
Anza Mortgage Insurance Corporation is a mortgage guaranty insurance provider, delivering efficient, technology-driven solutions to residential mortgage lenders, investors, servicers, and other financial institutions and counterparties. In the course of underwriting and administering our mortgage insurance products, we may receive proprietary and confidential information from our counterparties, including sensitive consumer information. Protecting this information is fundamental to our role in the mortgage finance ecosystem.
We are committed to protecting:
- Counterparty confidential information, including loan-level data, operational details, underwriting and servicing information, and other proprietary business materials; and
- Non-public personal information ("NPI") and other consumer information provided to us through mortgage insurance transactions.
It is our policy to comply with all applicable laws and regulations governing the use and protection of customer confidential information and NPI, including requirements under the Gramm-Leach-Bliley Act ("GLBA") and related regulations, state law analogs to the GLBA, and state insurance privacy and data-protection laws. Our information security and privacy program incorporates industry-standard safeguards designed to protect the confidentiality, integrity, and availability of the information.
Collection of Customer and Consumer Information
In providing mortgage insurance and related services, we may obtain confidential information independently or receive it directly from lenders, servicers, investors, correspondents, brokers, consumer reporting agencies, and other unaffiliated third parties. This information may include:
- Loan application and underwriting data
- Borrower credit information
- Payment and transaction history information
- Property-related information
- Other information needed to underwrite or administer mortgage insurance
Retention & Disposal
We may retain information as required by law and in the ordinary course of business, including for the life of an insured loan. When information is no longer required, we dispose of it securely in accordance with the FACTA Disposal Rule, the GLBA Security Guidelines, and other applicable laws.
Use and Disclosure of Information
We use confidential information solely for purposes permitted by law, including:
- Underwriting and issuing mortgage insurance
- Servicing insured loans
- Supporting risk, quality, and regulatory oversight
- Preventing fraud and unauthorized access
We may disclose information:
- To our affiliates
- To service providers who support our mortgage insurance operations
- To reinsurers
- To regulators and supervisory authorities
- Pursuant to judicial or law enforcement requirements
- To consumer reporting agencies, as permitted by law
- With the consent of your company or the consumer
- As otherwise permitted or required under applicable law
No Marketing or Sale of NPI
We do not sell non-public personal information and do not disclose information to unaffiliated third parties for marketing purposes or under other circumstances that would require either that prior notice be given to the consumer or that the consumer be afforded an opportunity to opt out of such disclosure under the provisions of the GLBA and related regulations.
Vendor Oversight
Third-party service providers with access to confidential information must:
- Enter into confidentiality and information-protection agreements
- Maintain safeguards consistent with our Information Security Program
- Undergo risk-based due diligence and monitoring
- Report incidents of unauthorized access as required by law
Protection of Information
We maintain administrative, technical, and physical safeguards designed to:
- Protect against anticipated threats or hazards
- Prevent unauthorized access, use, or disclosure
- Support secure and resilient operations
Safeguards include:
- Risk-based access controls and strong authentication
- Encryption of data in transit and at rest
- Secure development and change-management practices
- Monitoring and logging of system activity
- Physical and environmental controls at our facilities
- Secure disposal of records and media
Social Security Number Protection
Access to Social Security Numbers is limited to authorized personnel with a business need, and disclosure is restricted as permitted by law.
Monitoring, Testing, & Incident Response
We routinely perform:
- Risk assessments
- Internal and independent reviews
- Monitoring and testing of controls
Incident Response
If we determine that a material incident of unauthorized access involving customer information has occurred, we will notify affected counterparties and provide information about the incident, the categories of information involved, and steps taken to contain and mitigate the issue.
Business Continuity & Resilience
We maintain a business continuity and disaster recovery program designed to support continued operations in the event of disruption. Our program includes recovery plans for key business functions and requires regular testing.
Employee Training & Awareness
All employees, contractors, and temporary staff with access to confidential information receive:
- New-hire training before handling NPI
- Annual refresher training
- Ongoing awareness activities (e.g., phishing simulations, policy reminders)
Training addresses, at a minimum, the GLBA requirements, secure handling of information, and incident reporting procedures. Violations are subject to disciplinary action.
Policy Changes
We may update this Statement periodically. Material changes may be communicated via our website or directly to customers. This policy was last updated on November 24, 2025.
Contact Information
Anza Mortgage Insurance Corporation
929 N. Front Street, Suite 900
Wilmington, NC 28401
Email: legal@anzaglobal.com