IoT
News
News
3/25/2005
01:11 PM
50%
50%
RELATED EVENTS
How to Prep for Millennials Being the Decision Makers, Are You Ready?
Aug 30, 2016
Millennials know exactly what they want and expectations are high - very high. They are empowered ...Read More>>

Feds Rule Banks Must Tell Customers Of Security Gaffes

Four federal agencies this week issued rules to U.S. banks that require them to inform customers when their personal data has been made public because of a security breach.

Four federal agencies this week issued rules to U.S. banks that require them to inform customers when their personal data has been made public because of a security breach.

The rules were issued by the FDIC (Federal Deposit Insurance Corporation), the Board of Governors of the Federal Reserve System, the Office of the Comptroller of the Currency (OCC), and the Office of Thrift Supervision (OTS).

Basing the rule on their interpretation the Graham-Leach-Bliley Act, the agencies told banks that they must implement a response program to warn consumers when information has been accessed without authorization if that "could result in substantial harm or inconvenience to the customer," the new rules, called a "guidance," said.

Additionally, the bank "should conduct a reasonable investigation to promptly determine the likelihood that the information has been or will be misused," continued the new rules. "If the institution determines that misuse of its information about a customer has occurred or is reasonably possible, it should notify the affected customer as soon as possible."

The financial and data collection sectors have been blasted by consumers and Congress alike for a recent spate of high-profile data security failures. In February, backup tapes containing credit card account information on some 1.2 million government workers, including over half of the Senate's members, were lost or stolen from a commercial airline flight. Data collection companies ChoicePoint and LexisNexis have both disclosed security breaches that involved the possible theft of thousands of consumer identities.

The new rules are available in their entirety as a PDF from the OCC Web site.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Register for InformationWeek Newsletters
White Papers
Current Issue
Top IT Trends to Watch in Financial Services
IT pros at banks, investment houses, insurance companies, and other financial services organizations are focused on a range of issues, from peer-to-peer lending to cybersecurity to performance, agility, and compliance. It all matters.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of July 17, 2016. We'll be talking with the InformationWeek.com editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.