Home > BCA Software Demo
GBLA in the NewsFederal Government is beginning to police the new GBLA Laws. As of May 23, 2003, colleges and universities must be in compliance with provisions of the GLB Act that relate to the Safeguards Rule. Colleges and universities that already comply with the Family Educational Rights and Privacy Act (FERPA) will be deemed to be in compliance with FTC privacy rules under the GLB Act. ELI LILLY TO PAY STATES FOR PRIVACY VIOLATION
U.S. APPEAL COURT UPHOLDS PRIVACY PROTECTION FOR PERSONAL FINANCIAL INFORMATION U.S. DISTRICT COURT RULES FEDERAL PRIVACY LEGISLATION TRUMPS STATE COURT'S ORDER FOR DISCLOSURE In November 1997, Charter Pacific Bank of Agoura Hills , California sold millions of credit card numbers to an adult website company, which then proceeded to bill customers for access to Internet porn sites and other services they did not request. Some of the customers billed did not even own a computer. The website company had set up numerous merchant accounts under different names to avoid detection. In September 2000, the FTC announced that it has won a $37.5 million judgment against the website company. While the bank maintained that it did not do anything wrong, it has since then stopped selling credit card numbers to merchants. In 1998, Nations Bank (later merged with Bank of America) was fined millions for securities law violations because it shared customer information with its affiliate subsidiary Nations Securities. The subsidiary then convinced low risk customers to buy high-risk investments. Many Nations Bank customers lost large amounts and many senior citizens lost large amounts of their life savings. In June 1999, the Minnesota Attorney General initiated a lawsuit against U.S. Bankcorp for sharing customer information with third party marketers in violation of its own policies without customer knowledge or authorization. The telemarketers then illicitly charged those customers. US Bankcorp eventually settled that case, along with those brought by 39 other state attorneys general. In April 2000, Minnesota settled with the third party telemarketer, Memberworks, that US Bankcorp used. According to Memberworks' SEC filings, 19 out of the 25 largest banks in the US had contracts with it. Other prominent banks, including Chase Manhattan and Citibank, have been involved in schemes where personal account information is sold to telemarketers. November 2003 NIADA statement to dealerships: GBLA requires the disclosure of a privacy policy regarding non-public consumer information. All Buy-Here/Pay-Here dealers must notify all customers that are still making payments to the dealers. Fol almost every dealer, compliance is simple but mandatory. If you are involved in arranging credit have the customer review and sign the GLB - Customer Privacy Choice document. download NIADA statement FTC Begins Investigating Dealerships for Compliance with Privacy Laws. The wait is over for those dealers who have been taking a “wait and see” approach to whether the FTC will take action to enforce its Privacy and Safeguards Rules. We recently reviewed a copy of one of the formal investigative requests served on a dealership and it asked for evidence that the dealership was in compliance with the Rules, including: A description of the dealership's corporate structure; a description of the type of information collected from or about customers and a sample copy of each form used to collect the information; a copy of the written information security program and the time period during which it was written and implemented; a description off the security risks that were identified in developing the plan and how the final plan does or does not address each of the risks; the name and title of each employee responsible for coordinating the safeguards plan; and the name of each service provider together with information regarding the types of customer information they have access to, the manner and form of access, the reasons for access, a copy of the contract requiring them to implement and maintain security safeguards, and an explanation of how the dealership confirms that they have implemented and maintain such safeguards. As a reminder, the penalty for noncompliance is $11,000 per day, retroactive back to May 23, 2003. To put this into perspective, as of the release of this LLR Update, the fine would be in excess of 1.9 million dollars. If you have any questions regarding the FTC's Privacy and Safeguards Rules or the steps your Dealership needs to take to be in compliance, contact NIADA or your Affiliated State Association. FTC, OTHERS PURSUE CREDIT COUNSELING AGENCY UNDER GLBA http://www.ftc.gov/opa/2004/07/gateway.htm
|
FTC CONSUMER COMPLAINT FORM
|
Copyright (c) 2004 a Land Integrated Services, All Rights Reserved. | Privacy Policy |
Our operators are available to assist you with the Business Compliance Assistant by calling (912) 695-4495, M-F, 8AM to 5PM EST