Safeguarding Customer Information Gramm-Leach-Bliley Act Compliance. Ellen Harris-Small Terry Wooding. Why was GLBA enacted?.
Section 501 of the Gramm-Leach-Bliley Act requires Financial Institutions to establish standards relating to administrative, technical and physical information safeguards to protect customer records and information.
Including Colleges and Universities must ensure that their security programs provide adequate protection to customer information
in whatever format –
electronic or hardcopy.
consumer’s information is not a privacy issue but is one of security.
Compliance with FERPA does not exempt colleges and universities from GLBA safeguarding regulations.
4802 Complaints / year
knowingly using, without authority, a means of identification of another person to commit any unlawful activity.
(unlawful activity: a violation of Federal law, or a felony under State or local law).
When someone steals your identity, they are usually using your credit to obtain goods and services for themselves that “you” will have to pay for.
- For example: pretending to be from a bank,
creating a false website, pretending to be
a real company, fake auditing letters.
Sent: May 17, 2004 6:31 PM
Subject: To All PNC bank users
Dear PNC user,
During our regular update and verification of the user data, you
must confirm your credit card details.
Please confirm you information by clicking link below.
http://Cards.bank.com pncfeatures/cardmember access.shtml
2004 PNC Bank
makes charges on your existing accounts (42%).
- File a complaint with the FTC.
Trans Union – www.tuc.com
information and records assets?
Your role as a user….
What else can you do?
The University has many policies and procedures to help you, learn them.
Standards for University Operations Handbook
Georgia Tech accidental release of credit card to the internet cost them over $1,000,000.
“Rutgers places a high level of trust in you, its faculty and staff, and requires that University assets under your control be protected and properly safeguarded from loss and misuse.”
Joanne G. Jackson
October 24, 2001