The Federal Trade Commission (FTC) proposed amendments to two regulations in place under the Gramm-Leach-Bliley Act (GLBA). The regulations â€“ the Safeguards Rule and the Privacy Rule â€“ protect the privacy and security of consumer information held by financial institutions.
The Safeguards Rule, in place since 2003, requires financial institutions to develop, implement and maintain a comprehensive information security program to protect consumer data. The FTC would like to add more specific requirements, which would require applicable financial institutions to:
Note that financial institutions maintaining secure information for fewer than 5,000 consumers would be exempt from certain requirements.
The Privacy Rule, which went into effect in 2000, requires financial institutions to inform consumers of its information-sharing practices and allows consumers to choose not to have their information shared with third parties. However, unlike the Safeguards Rule, this rule only applies to certain motor vehicle dealers. The proposed changes would:
For both rules, the FTC proposes expanding the definition of â€śfinancial institutionâ€ť to include â€śfinders,â€ť or companies that connect consumers looking for a loan with a lender.
Currently the proposed amendments are in a 60-day commenting period. As more information is made available our Financial Institutions Group will keep you updated. Stay tuned! In the meantime, should you have any questions about how this may impact your financial institution, contact one of our team members.
A quick registration is required to view our resources.
You will only be asked to do this one time (unless you don't save your browser cookies).