SAFEGUARDS FOR SECURITY AND PRIVACY ARE NOT IDENTICAL. THE LARGE NUMBER OF RECORD SYSTEMS PROCESSING PERSONAL RECORDS IN BOTH THE PUBLIC AND PRIVATE SECTORS POINTS UP THE MAGNITUDE OF THE PROBLEM OF RETROFITTING THESE SYSTEMS FOR SECURITY AND PRIVACY SAFEGUARDS. IN MANY CASES, SOPHISTICATED SYSTEMS ARE NOT REQUIRED, AND GOOD INFORMATION PRACTICES WILL BE SUFFICIENT TO MEET THE REQUIREMENTS. THE SAFEGUARDS DIFFER FOR EACH SYSTEM. THERE IS ALSO A NEED FOR AUDITING TECHNIQUES TO CHECK ON THE EFFECTIVENESS OF THE SAFEGUARDS PUT INTO PLACE. THE TECHNIQUES DEVELOPED WILL BE USEFUL IN PREVENTING COMPUTER FRAUD, ASSURING FUNCTIONAL FIDELITY, AND MAINTAINING DATA INTEGRITY DURING INPUT AND PROCESSING. (AUTHOR ABSTRACT)...PLO