GLBA (Gramm-Leach-Bliley Act) is a federal law requiring financial institutions to protect consumers' nonpublic personal information. The FTC's Safeguards Rule implements GLBA's security requirements and was significantly updated in 2023.
GLBA applies to a broad range of financial institutions including banks, credit unions, mortgage brokers, auto dealers, financial advisors, insurance companies, and many fintech companies. Learn if your business is covered and what obligations apply.
GLBA Safeguards Rule compliance costs depend on organization size, existing security infrastructure, and whether you build in-house or use a managed service. This guide breaks down typical costs and what drives them.
A practical GLBA compliance checklist covering the 9 required elements of the FTC Safeguards Rule. Use this to assess your current information security program and identify gaps to remediate.
The FTC's updated Safeguards Rule (effective June 2023) replaced vague guidelines with specific, mandatory security controls for financial institutions. Learn what changed, what's new, and how to come into compliance.
How GLBA Safeguards Rule compliance compares to SOC 2, NY DFS 23 NYCRR 500, and NIST CSF. Understanding overlaps and gaps helps financial institutions build one integrated program that satisfies multiple requirements.