Gramm-Leach-Bliley Act (GLBA) protects privacy with security requirements for all financial institutions. Are you GLBA Compliant?
Uberguard | HIPPA compliance, internet security systems, computer security software, information security policy, GLBA (Gramm-Leach-Bliley Act), business continuity plan creation, vulnerability assessment, security training, security policy consulting. Uberguard helps you understand the full implications of the Gramm Leach Bliley Act of 1999 (GLBA) including compliance with Section 501b, Protection of Nonpublic Personal Information. We are located in Rochester, NY and serve clients in Albany, Buffalo, Syracuse and New York City (NYC) as well as nation-wide.

GLBA GLBA
HOME
ABOUT US
SERVICES
NEWS
CISSP
HIPAA
GLBA
CAREERS
CONTACT
ÜberGuard specializes in GLBA compliance to better position your organization for risk analysis, vulnerability assessments, security policy writing, and business continuity planning.

What is the GLBA?
The Gramm-Leach-Bliley Act was signed into law on November 12, 1999 by then President Bill Clinton.

GLBA Section 501b, Protection of Nonpublic Personal Information, requires FEDERAL BANKING AGENCIES, THE NATIONAL CREDIT UNION ADMINISTRATION, THE SECURITIES AND EXCHANGE COMMISSION, AND THE FEDERAL TRADE COMMISSION to establish appropriate standards for financial institutions related to the ADMINISTRATIVE, TECHNICAL, AND PHYSICAL SAFEGUARDS OF CUSTOMER RECORDS AND INFORMATION.

The purpose of GLBA is to...
  1. Insure the security and confidentiality of customer data.
  2. Protect against any reasonably anticipated threats or hazards to the security or integrity of such data.
  3. Protect against unauthorized access to or use of such data that would result in substantial harm or inconvenience to any customer; for example, compromising a customer's identity and/or financial information.
Who should comply?
To comply with GLBA, all organizations within the financial services industry MUST implement a COMPREHENSIVE WRITTEN INFORMATION SECURITY PROGRAM specifying how their customer information is protected.

The following institutions fall within the purview of the GLBA:
  • banks
  • mortgage brokers
  • mortgage lenders
  • automobile dealers
  • insurance companies
  • real estate agents
  • appraisers
  • thrifts
  • securities firms
  • financial planners
  • credit card companies
  • credit unions
  • data processors
  • debt collectors
  • retail stores that issue credit cards
  • consumer reporting agencies
  • mortgage brokers
  • check-cashing businesses
GLBA Data Protection Rule requirements
GLBA data protection requirements require the organizations above to develop and implement an information security program appropriate to the size and complexity of their organization, including the nature and scope of activities, and the sensitivity of customer information.

Compliance deadlines
Enterprise-wide compliance is required by the following dates for your respective type of financial institution:

Federal Banking Agencies (OCC, FRB, FDIC, OTS, & NCUA)
     July 1, 2001
Securities and Exchange July 1, 2001
Federal Trade Commission May 23, 2003

Requirements in our digital world fluctuate on a regular basis-you may believe you are compliant today when, in truth, a small modification in this important security requirement tomorrow may put you in jeopardy.

Contact ÜberGuard at the email address below to assure that your organization is fully compliant with the GBLA. We will respond within 48 hours. Security is no longer an option. It is a requirement-don't gamble on the alternative. Contact ÜberGuard today.

infosec@uberguard.com