GLB - Gramm-Leach Bliley Act

What is GLBs purpose

Advising consumers of policies and use of and exchange of personal information Offering consumers the opportunity to limit the use and exchange of that information Create a security program to protect information

GLB: Customer

Have a continuing relationship with a financial institution

If we plan to share information, the customer must be provided with what

Notice of their right to opt out of the sharing of their information

The customer must be given what to opt out

Reasonable means

GLB falls under what regulation

Regulation P (for privacy)

Who is the Inital Privacy notice required for

Required for customers when the customer relationship has been established

What is Pretexting

Pretending to be someone you are not in order to obtain public personal information

GLBs obligations to customers

Provide initial privacy notice when customer relationship has been established Provide annual privacy notices for the duration of the customer relationship Must provide a "reasonable opportunity" to opt out of disclosing non-public information (NPI) to affiliated 3rd parties

Must provide what to opt out of disclosing non-public information (NPI) to affliated 3rd parties

Reasonable opportunity

Which rule protects the privacy of personal information with the creation of an effective security program

Redflags rule

What is the primary difference of the redflags rule when compared to the safeguards rule

Redflags rule rule focuses on the methods for detecting a security breach

What are both safeguards rule and the redflags rule intended to prevent

The release of personal information

GLB penalties for individuals

$10,000 and up to 5 years in prison

GLB Penalties for financial institutions

$100,000

Annual Privacy notice: Online delivery of the notice requires what

Acknowledgement of receipt

Who enforces GLB

CFPB (Consumer Financial Protection Bureau)

GLB: Consumer

Conduct and isolated transaction with a financial institution

When is the Opt Out notice due

Due at same time as the privacy notice

When is the Annual Privacy notice provided

Every 12 months

What is GLBs regulatory body

FTC (Federal Trade Commission)

What does FTC stand for

Federal Trade Commission

What is the GLB also known as

Financial Modernization Act of 1999

What is the whole purpose behind Safe guard rule

Financial privacy

When must we provide annual privacy notices

For the duration of the customer relationship

What does GLB stand for

Gramm-Leach Bliley Act

What notice includes descriptions of the categories of NPI that are collected and disclosd as well as a description of the policy for how that information is handled

Initial Privacy notice

What are the 3 disclosure and notifications required by GLB

Initial Privacy notice Opt Out notice Annual Privacy notice

Is the Initial Privacy notice required for consumers

No

What does NPI stand for

Non-Public Information

Think SPF...

Safeguarding Pretexting Financial privacy

Which rule is concerned with preserving the confidentiality of personal information

Safeguards rule

What is the primary difference of the safeguards rule when compared to the redflags rule

Safeguards rule focuses on the methods of securing personal information

What information is in the Annual Privacy notice

Same information thats in the privacy notice

When must we provide the inital privacy notice

When customer relationship has been established

Does the Annual Privacy notice include the right to opt out

Yes

What is Redflags rule

To protect the privacy of personal information with the creation of an effective security program Concerned with preserving the confidentiality of personal information