With identity theft a widespread issue in the financial services industry, banks and ARM companies are under increased pressure to ensure consumers’ sensitive identification, contact, and financial information is kept safe. In fact, a number of recent state and federal laws and regulations codify certain requirements for handling financial data. Firms in the ARM industry must adhere to a host of standards, including the Payment Card Industry Data Security Standard (PCI DSS), the financial privacy and safeguards rules in the Gramm–Leach–Bliley Act (GLBA), the FTC’s Red Flags Rule for identity theft, information security standard ISO 27002, HIPAA and the HITECH Act for the healthcare sector, and the Federal Information Security Management Act of 2002 (FISMA) for those collecting on government contracts. Auditing standard SAS 70 is also required for many in the financial services industry that use outside vendors such as debt collection agencies.
Filter by Location
insideARM Weekly Recap – Week of October 28th, 2024
4 November 2024
NYDFS cybersecurity regulations to take effect on November 1
1 November 2024
insideARM Weekly Recap – Week of July 15th, 2024
22 July 2024
insideARM Weekly Recap – Week of July 8th, 2024
15 July 2024
Pennsylvania Amends Data Breach Notification Law
11 July 2024
Rhode Island Enacts Haphazard Customer Data Privacy Law
3 July 2024
Minnesota Becomes 18th State to Enact Comprehensive Consumer Data Privacy Law
12 June 2024
insideARM Weekly Recap- Week of May 6th, 2024
13 May 2024
CFPB Bites of the Month - April 2024 - Won't Get Fooled Again, CFPB
8 May 2024
Nebraska Becomes 16th State to Enact Comprehensive Consumer Data Privacy Law
7 May 2024
Kentucky Becomes 15th State to Enact a Comprehensive Consumer Data Privacy Law
17 April 2024
New Hampshire Enacts Comprehensive Consumer Data Privacy Law
13 March 2024
New Jersey Enacts Comprehensive Consumer Data Privacy Law
29 January 2024
Data Privacy & Security Roundup: New Laws, Regulations and Important Dates in 2024
9 January 2024
FTC Amends Safeguards Rule to Require Reporting of Data Breaches
7 November 2023
California Takes an Aggressive Approach to Regulating Data Brokers
25 October 2023
Delaware Enacts Personal Data Privacy Act
19 September 2023
Texas Enacts Data Privacy and Security Act with Small Business Exception
5 July 2023
A Closer Look at the Gramm-Leach-Bliley Act (GLBA): Updates to the Safeguards Rule
26 June 2023
Montana Enacts Comprehensive Consumer Data Privacy Law
30 May 2023