In this webinar, we’ll explore the myriad of federal (and some state) requirements around privacy and information security. You’ll learn what information must be kept “private,” and what that term means. We’ll discuss “Personally-Identifiable Information,” or PII, and the special category it occupies in privacy regulations. We’ll also go over how to keep this information safe, with regulatory expectations placed on institutions and how they operate. There isn’t just one privacy law; it is a patchwork quilt of rules, regulations, and guidelines that all operate together to mandate how a financial institution manages its data and information.
What You’ll Learn
- Gramm-Leach-Bliley Act privacy, and Regulation P
- Personally-Identifiable Information (PII) – what does this mean?
- What information can I share with third parties, and when must I provide an opt-out?
- Sharing provisions of the Fair Credit Reporting Act (FCRA) and their interplay with Reg. P
- Information Security (or InfoSec) provisions – what do these require?
- Paper vs. electronic information – different rules?
- Notification to regulators in case of breach
- The mad rush by the states to implement privacy rules – which ones apply to you?
- General Data Protection Regulation – the EU’s spin on privacyWho Should Attend
Anyone involved in the managing of information and data in the institution must be aware of the privacy requirements. This includes not only compliance and legal professionals, but also technology personnel and line of business managers and senior leadership, who are ultimately responsible for maintaining the institution’s privacy program.