signzy

API Marketplace

downArrow

Solutions

downArrow

Resources

downArrow

Our Company

downArrow
Logo
Responsive
Decorative line

FTC Safeguards Rule Amendments

United States

United States

2003

Privacy

Cybersecurity

Overview

The FTC Safeguards Rule, part of the Gramm-Leach-Bliley Act (GLBA), was originally adopted in 2003 and significantly amended in 2021, with most provisions enforced from June 9, 2023. The rule requires non-bank financial institutions to develop, implement, and maintain a comprehensive information security program to protect customer data.
The 2021 amendments modernize the rule to address evolving cyber threats, introducing more prescriptive requirements such as multi-factor authentication, encryption, and risk assessments. It applies to non-bank financial institutions, including mortgage brokers, auto dealers, loan servicers, investment advisors, payday lenders, and tax preparers under FTC jurisdiction. These entities must establish robust customer due diligence protocols as part of their comprehensive information security programs to verify customer identities, assess risk profiles, and maintain ongoing monitoring to protect sensitive financial information and ensure regulatory compliance.

Key Obligations

  • Designate a qualified individual to oversee the information security program
  • Conduct written risk assessments and implement safeguards based on findings
  • Encrypt customer data at rest and in transit
  • Require multi-factor authentication for system access
  • Regularly monitor and test systems for vulnerabilities
  • Provide staff training and incident response planning
  • Submit annual reports to boards of directors or governing bodies

FAQ

Related Regulations

Decorative icon
GLBA Safeguards Rule Compliance

Decorative icon
NIST CSF 2.0 Cyber Framework

Decorative icon
CIRCIA Cyber Incident Reporting Law

Stay ahead of risk with Signzy

Explore tools that help you onboard, monitor, and verify with confidence

One Touch KYC

One Touch KYC

Simplify the Know Your Customer (KYC) process with AI and sophisticated fraud detection algorithms to provide a seamless, efficient, and highly secure user verification.

AML Screening

AML Screening

Comprehensive Anti-Money Laundering screening solutions to detect and prevent financial crimes through advanced monitoring and compliance tools.

Transaction Monitoring

Transaction Monitoring

Real-time transaction monitoring and analysis to identify suspicious activities and ensure regulatory compliance across all financial operations.

We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with it.