Gramm-Leach-Bliley Compliant Hosting Solutions
The Gramm-Leach-Bliley Act (GLBA), enacted in 2000, requires financial institutions to take steps to ensure the security and confidentiality of customer records such as names, addresses, phone numbers, bank and credit card account numbers, income and credit histories, and social security numbers.
The GLB Act specifies that to ensure the security and confidentiality of customer records and information, organizations must establish appropriate standards for the financial institutions subject to their jurisdiction relating to administrative, technical and physical safeguards. Organizations are required to:
- Ensure the security and confidentiality of customer records and information
- Protect against any anticipated threats or hazards to the security or integrity of such records
- Protect against unauthorized access to or use of such records or information which could result in substantial harm or inconvenience to any customer
Organizations looking to transmit or store Personal Financial Information (PFI) on the Internet should take a multi-layered approach to securing their data. Security considerations should be tailored to the particular application and business process.