If the Bank qualifies under the “Fixing America's Surface Transportation Act” (FAST Act) to GLBA, is the bank still required to continuously post its privacy notice on its website and mail a current privacy notice to customers who request it by telephone within ten days of request?
What regulations outline requirements for shredding of paper documents that are bank, or customer, consumer information?
A big part of our IT Security budget is spent on GLBA compliance. Are we doing something wrong?
How can a bank achieve assured compliance given the constrained information security budgets today?
Among credit risk, market risk and operational risk, developing a good operational risk management program seems to be the most challenging. Can't our existing compliance processes (e.g., AML, Red Flags, GLBA, etc.) contribute to operational risk management?
The FACTA (fair and accurate credit transaction act) section 113 requires that account numbers on credit card receipts are truncated. Does the same apply to banking receipts? Is this covered by GLBA?
I would welcome any suggestions regarding how to conduct an information technology risk assessment.
In the June issue of the BANKERS' HOTLINE the front-page article entitled "Privacy II" talks about implementing the provisions of the Gramm-Leach Bliley Act (GLBA) 501(b).
On an individual account for a son where the mother is an authorized signer what rights does the mother have on the account. My concern is that the son is going to war but does not want to make the mother a joint owner, with GLBA what in mind can the authorized signer receive statements, balance, information, etc.?