Qualified enrollees must be permitted entities, as defined in PL115-174, 215(b)(4), and must possess an employer identification number (EIN) and Dun & Bradstreet D-U-N-S number. Each permitted entity will be required to submit a certification in accordance with the Banking Bill in the comment section of their application to Social Security.
- Permitted Entity – A financial institution or service provider, subsidiary, affiliate, agent, subcontractor, or assignee of a financial institution as defined by section 509 of the Gramm-Leach-Bliley Act. 42 USCA 405b(b)(4), Pub. L. No. 115-174, Title II, §215(b)(4).
- EIN - An EIN, also known as a Federal Tax Identification Number, identifies a business entity. If you need an EIN, contact the IRS.
- D-U-N-S Number - The Dun & Bradstreet D-U-N-S Number is a unique nine-digit identifier for businesses. When Dun & Bradstreet’s patented identity resolution process identifies a company as being unique from any other in the Dun & Bradstreet Data Cloud it will have a D-U-N-S number assigned. If your company does not currently have a D-U-N-S number, please visit the Dun & Bradstreet website to obtain one.
- Certification Statement – A signed declaration the permitted entity provides to Social Security at least every two years that includes an agreement to each of the following four declarations:
- The Principal is a permitted entity.
- The Principal is in compliance with this section.
- The Principal is, and will remain, in compliance with its privacy and data security requirements, as described in Title V of the Gramm-Leach-Bliley Act (15 U.S.C. 6801 et seq.), with respect to information the entity receives from the commissioner pursuant to this section.
- The Principal will retain sufficient records to demonstrate its compliance with its certification and this section for a period of not less than two years.