Home > Order BCA Software

GLBA Available Resources

SquareOne wants you to be fully informed about compliancy.

The bottom line for each of these laws is accountability--accountability that goes beyond IT's responsibility to keep information systems and data secure. Management must create policies and procedures that comply with GLBA, HIPAA and Sarbox and ensure these policies are effectively implemented. In the event compliancy is not meet, civil and criminal penalties may apply. Fines for ignoring a specific requirement under HIPAA can reach $25,000 per violation, and a corporate officer who knowingly signs a false financial report can be fined up to $1 million and/or face as many as 10 years in prison under Sarbox.

Fast forward to today: Industry self-regulation is being replaced with law and government regulation. But though GLBA, HIPAA and Sarbox require corporate accountability in handling transactions, security and data on networks, they do not provide a detailed road map of the hardware and software you'll need to comply. Rather, each provides broad objectives and suggests implementation strategies for compliance (see "Law vs. Regulation," ). This leaves a lot for IT to interpret. This is why SquareOne has taken the quesswork and self intepretation out of play by developing the Business Compliance Assistant. This software makes it possible for the enterprise business to immediately begin to institute a plan of compliance to adhere to the FTC laws and regulations.

(detailed info available at Network Computing's website, "Feds Reach Out and Touch IT" by Sean Doherty.)

FTC Fair Information Practice Principles : Delineates five core principles:of privacy protection: (1) Notice/Awareness; (2) Choice/Consent; (3) Access/Participation; (4) Integrity/Security; and (5) Enforcement/Redress

(detailed info available at Catholic Universities website, "Office of General Counsel ")

Federal Trade Commission: Government Links

Privacy is a central element of the FTC's consumer protection mission. In recent years, advances in computer technology have made it possible for detailed information about people to be compiled and shared more easily and cheaply than ever.

Here's a brief look at the basic financial privacy requirements of the Gramm-Leach-Bliley Financial Modernization Act of 1999 .
The Financial Privacy Requirements of the Gramm-Leach-Bliley Act

How To Comply with the Privacy of Consumer Financial Information Rule of the Gramm-Leach-Bliley Act

For more information about the Financial Privacy Rule
requirements, please see the FTC's Small Business Guide

Online Gramm-Leach-Bliley Act. 15 USC, Subchapter I, Sec. 6801-68 09
Disclosure of Nonpublic Personal Information, Entire Act with links.

Examination procedures to determine compliance with guidelines to safeguard customer information. Download pdf

Frequently Asked Questions for the Privacy Regulation December 2001

FAQ of the GLBA and privacy Issues
http://www.ftc.gov/privacy/glbact/glb-faq.htm

FTC Staff to Offer Safeguards Rule Training

US Senate Committee of Banking, Housing, and Urban Affairs. Information Regarding the Gramm-Leach-Bliley Act of 1999

- Effective dates of provisions in the GRAMM-LEACH-BLILEY ACT
- Conference Report and Text of Gramm-Leach-Bliley Bill

What security professional need to know about GLBA.

 

 

Additional links:
http://www.ftc.gov/privacy/glbact/glbsub1.htm
http://www.ftc.gov/bcp/conline/pubs/buspubs/glbshort.htm
http://banking.senate.gov/conf/
http://counsel.cua.edu/glb/resources/
http://www.complianceheadquarters.com/HTML/research_links.html
http://www.network-intelligence.com/solutions/GLBA/index.asp
http://www.epic.org/privacy/glba/
http://www.ajc.com/business/content/business/0304/
advertorial/bus_howitstrikes.html

 

Back to Top