Frequently Asked Questions - ERDS

The Electronic Recording Delivery Act of 2004 requires the Attorney General to develop regulations, certify and provide oversight for any electronic recording delivery system being developed and established by a county. Also, the Attorney General is required to evaluate electronic recording delivery systems and report to both house of the legislature on or before June 30, 2009.

The Attorney General monitors the security of electronic recording delivery systems (ERDS) statewide, in close cooperation with county recorders and public prosecutors. In the event of an emergency involving multiple fraudulent transactions linked to one county’s use of an ERDS, the Attorney General may order the suspension of the ERDS to protect the security of the system.

The Attorney General has established the ERDS Program within the Department of Justice which is responsible for implementing the requirements of the law.

An ERDS is “a system to deliver for recording, and to return as applicable, to the party requesting recording, specified digitized or digital electronic records”. Each ERDS shall focus on protecting the confidentiality and integrity of digital and digitized electronic records during the process of delivery using an ERDS. (Refer to Question #4 for the specified ERDS electronic structure.)

“ERDS Payload” means an electronic structure designed for the purpose of delivering digital or digitized records to a County Recorder via an ERDS. The structure is also used to return, when applicable, digital or digitized records to an Agent or Authorized Submitter via an ERDS.

A County Recorder or his/her designee, upon approval by resolution of the board of supervisors, desiring to obtain system certification for an Electronic Recording Delivery System(ERDS) from the Department of Justice will submit an application to the ERDS Program.

“Agent” means a representative and his/her employees who are authorized to submit documents on behalf of an Authorized Submitter who is eligible to enter into a contract with a County Recorder, and, be assigned a role by the County Recorder, to deliver, and, when applicable, return the submitted ERDS payloads via an ERDS. An Agent may not be a Computer Security Auditor, County Recorder Designee, ERDS Account Administrator, ERDS System Administrator, or Certified Vendor of ERDS Software.

What is a DOJ approved computer security auditor? Answer: An individual that conducts security audits on an Electronic Recording Delivery System (ERDS) for the purpose of 1) assessing the safety of the system; 2) verifying that the system is secure from vulnerabilities and unauthorized penetration; 3) ensuring ERDS operating procedures are in place and are being followed; and 4) that ERDS implementations have no capability to modify, manipulate, insert, or delete information in the public record.

The Department of Justice, ERDS Program approves computer security auditors on the basis of significant experience in the evaluation and analysis of Internet security design, the conduct of security testing procedures, and specific experience performing Internet penetration studies. A County Recorder shall contract with, and obtain audit reports from a computer security auditor selected from a list of DOJ approved computer security auditors. This level of access requires fingerprints for a criminal record background check.

An individual requesting approval as a DOJ approved computer security auditor may apply with the Department of Justice, Electronic Recording Delivery System (ERDS) Program by obtaining the DOJ Security Auditor Approval package by directly contact the ERDS Program or downloading from the ERDS web page.

Yes, you may call the Electronic Recorder Delivery System Program at (916) 210-4237 or email to erds@doj.ca.gov. You may also mail your request to:

Department of Justice
Justice Data & Investigative Services Bureau
Electronic Recording Delivery System Program
P.O. Box 160968
Sacramento, CA 95816-0968

No, all the Electronic Recording Delivery System documentation submitted in support of an application shall be exempt from disclosure pursuant to the Information Practices Act of 1977, Civil Code Section 1798 et seq.

This is to ensure that all criteria required at the time of the initial certification and approval is still current and meets the requirements.

Secure access is a role assigned by the County Recorder to an individual which requires fingerprinting to:

1. An Authorized Submitter and Agent, if any, who are authorized to use an ERDS
2. A DOJ approved Computer Security Auditor hired by the County Recorder to perform independent audits;
3. An ERDS System Administrator who is authorized to configure hardware, software and network settings;
4. An ERDS Account Administrator who is authorized to configure accounts, assign roles, and issue credentials;
5. An individual who is granted physical access to an ERDS server;
6. 6. A County Recorder Designee authorized to retrieve, and return submitted ERDS payloads. (Refer to Question #4 for the specified ERDS electronic structure.)

A Secure Access role assigned by the County Recorder to an individual who is authorized to configure hardware, software, and network settings, and to maintain ERDS security functions. An ERDS System Administrator may not be a Computer Security Auditor, Authorized Submitter, Agent, or Certified Vendor of ERDS Software. This role requires fingerprinting.

A Secure Access role assigned by the County Recorder to an individual who is authorized to configure accounts, assign roles, and issue credentials. An ERDS Account Administrator may not be a Computer Security Auditor, Authorized Submitter, Agent, or Certified Vendor of ERDS Software. This role requires fingerprinting.

All persons entrusted with secure access to an electronic recording delivery system(ERDS) and any individual authorized physical access to an ERDS server, unless otherwise exempted, shall submit fingerprints for a criminal record background check.

No person shall be granted secure access if her or she has been convicted of a felony, has been convicted or a misdemeanor related to theft, fraud, or a crime of moral turpitude, or if her or she has pending criminal charges for any of these crimes. A plea of guilty or no contest, a verdict resulting in conviction, or the forfeiture of bail, shall be a conviction pursuant to Government Code section, 27395 (a), irrespective of a subsequent order under section 1203.4 of the Penal Code.

This is the form completed by an individual in order to have a fingerprint background record check done. The form can be downloaded and filled out at: Background Check and Live Scan; one is given to the operator who processes your fingerprints (see Question #17); one is sent to the Department of Justice along with your application; and one is kept for your records. Leave the last three boxes on the form blank.

To find out where to have this process done, access the Public Live Scan Sites web site or call your local law enforcement agency. Send a completed form to the Department of Justice with your application; keep a form for your records. The fee for this process is separate from the Department of Justice fee and is charged to you at the time the prints are taken and can vary, depending on where you go.

The individual shall use the FD 258 fingerprint card to have their fingerprints rolled at a local law enforcement agency. Contact the Electronic Recording Delivery System (ERDS) Program to obtain the FD 258.

$32.00 per for the Department of Justice and $17.00 for the Federal Bureau of Investigation.

Individuals residing outside of California that cannot be fingerprinted in California shall have their fingerprints rolled at a law enforcement agency in their state of residence.

Yes, you still need fingerprints taken and a criminal record background check for an Electronic Recording Delivery System secure access role.