You’ve probably heard by now the Federal Trade Commission (FTC) has extended the compliance deadline for the Standards for Safeguarding Customer Information (or Safeguards Rule for short). All finance companies and dealerships will need to implement these changes, or they could face enforcement actions from the FTC. Here’s what you need to know about the updated FTC standards.
Any business that engages in financial activities will need to comply with the revised FTC standards rule. The revised rule exempts financial institutions that maintain customer information concerning fewer than 5,000 consumers from certain (but not all) requirements.
Here are the industries we serve who should make a compliance plan:
The Safeguards Rule was designed to protect vulnerable and sensitive customer information from threats or hazards such as unauthorized access to information that could cause substantial harm or inconvenience. It’s about keeping private, personal customer information private and secure from internal and external bad actors. It first took effect in 2003 and was amended in 2021 to keep pace with current technologies.
All applicable businesses will need to comply with the revised Safeguards Rule by Friday, June 9, 2023, or face enforcement action from the FTC.
The FTC has federal jurisdiction over businesses throughout the United States. If you operate in the U.S., you’re expected to comply with the revised Safeguard Rule.
While any business required to comply with the Safeguard Rule needs to consult with legal counsel to review the rule, the changes, and how it impacts them, a few key changes include:
Data breaches have become inevitable rather than a risk. According to a report from IBM, 83% of companies will face a data breach. Data breaches cost an average of $9.44 million and take an average of nine months to identify and contain. This is costly to businesses, of course, but it’s the consumer who ultimately suffers. Their identities or savings could be stolen, accounts hacked and even crimes committed in their name. The Safeguards Rule helps to mitigate these breaches from occurring by encouraging businesses to think proactively about risk management and customer information security.
Compliance comes down to two critical factors: people and processes. You need to have both working together for the best cybersecurity risk management strategy. Here’s what the FTC recommends businesses do to get ready.
Read the FTC’s full article to get additional details here.
Check out these other helpful resources:
Need one-on-one advice when it comes to protecting your GPS customers, data and apps? We can help with 24/7 live customer support.