SusyG,
I don't know what kind of financial institution you are, but we are examined by the Federal Reserve. We are currently undergoing our first exam since Privacy was rolled out last year. The Fed examined our IS Policy as part of their IT exam, and will look at Privacy under Safety and Soundness. They did want to see our Privacy Policy during the IT exam, but not our Privacy Notice or our Identity Theft/Pretext Calling Policies. Therefore, combining the two would not have worked for us. Was that your question? I'm not sure I understood it completely.
Leslie
_________________________
Being kind is more important than being important.