Gramm-Leach-Bliley Act (GLBA) Overview
The Gramm-Leach-Bliley Act (GLBA) requires financial institutions to establish standards for protection of their customers’ non-public personal information. Section 501(b) of the act directs financial institutions to follow specific guidelines regarding the security of customer information. The regulations require financial institutions to provide continuous protection against threats to prevent unauthorized access and use of customer information. CertainSafe® is designed with security, privacy and compliancy at its core providing a complete and comprehensive solution.
GLBA guidelines direct financial organizations to evaluate the use of encryption to secure electronic customer information while in transit or in storage. Per the Federal Financial Institutions Examination Council, financial institutions must maintain encryption standards to mitigate the risk of disclosure or alteration of sensitive information.
The Council has the right to investigate institutions that elected not to use encryption for storing and transmitting data. CertainSafe® has the solution for operating within these formidable regulatory requirements.
GLBA and the Cloud – Considerations
GLBA’s Financial Privacy Rule requires institutions to provide an annual privacy notice to customers explaining the organization’s data collecting, sharing, and protecting procedures.
Institutions are finding it extremely challenging to adhere to these burdensome regulations. Without CertainSafe’s® proprietary services, data is challenging to control. CertainSafe® eases the pain of data and audit requirements by use of our unique administration.
The Safeguards Rule requires institutions to secure consumer records and information. When public cloud services are adopted, an organization’s security programs are significantly convoluted. Many financial institutions are losing control of data because of their decision to utilize less secure cloud services. They are turning to CertainSafe® for reliable data security as they move to secure data in the cloud. CertainSafe’s® PCI Level 1 DSS CERTIFICATION is a significant benefit.