With identity theft a widespread issue in the financial services industry, banks and ARM companies are under increased pressure to ensure consumers’ sensitive identification, contact, and financial information is kept safe. In fact, a number of recent state and federal laws and regulations codify certain requirements for handling financial data. Firms in the ARM industry must adhere to a host of standards, including the Payment Card Industry Data Security Standard (PCI DSS), the financial privacy and safeguards rules in the Gramm–Leach–Bliley Act (GLBA), the FTC’s Red Flags Rule for identity theft, information security standard ISO 27002, HIPAA and the HITECH Act for the healthcare sector, and the Federal Information Security Management Act of 2002 (FISMA) for those collecting on government contracts. Auditing standard SAS 70 is also required for many in the financial services industry that use outside vendors such as debt collection agencies.

See all Topics

Collection Agencies, Debt Buyers are PCI Security Hot Spots

13 May 2008

Bill would Ease GLBA Pressure on Debt Buyers

4 April 2008

Report Finds Private Collectors Protecting Taxpayer Privacy

2 April 2008

Data Security: Techniques for Online Firms That Boost Transactions, Cut Fraud

21 March 2008

The Tangled Web of Google Health - Online Medical Records Could Change Healthcare Receivables Strategies

20 March 2008

Federal Security Changes Will Impact ED, IRS Collectors

19 March 2008

Supermarket Data Breach Exposed 4.2 million Cards to Hackers

19 March 2008

Gartner V: Keep Those Emails and Other Records

18 March 2008

Gartner IV: Data Protection Means Data Recovery Planning

10 March 2008

GARTNER III: Corporate Security Must Include 'Information Governance'

7 March 2008

Gartner II: Security through Obscurity Doesn?t Work Anymore

6 March 2008

Fraud Complaints Rise Due to ID Theft: FTC

22 February 2008

A Growing Movement of PCI Compliance

13 February 2008

Firms Reduce Security Threats by Mapping Risks, Testing Programs

8 February 2008