Finance orgs have 30 days to confess cyber sins under incoming FTC rules

  • 📰 TheRegister
  • ⏱ Reading Time:
  • 46 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 22%
  • Publisher: 61%

Belgique Nouvelles Nouvelles

Belgique Dernières Nouvelles,Belgique Actualités

Follows similar efforts from the SEC and DHS in recent months

The amendment to the Federal Trade Commission's Safeguards Rule, which aims to hold the US finance sector to high cybersecurity standards, will apply to entities including insurance companies, mortgage brokers, payday lenders, and car dealerships.

"The addition of this disclosure requirement to the Safeguards Rule should provide companies with additional incentive to safeguard consumers' data." The FTC ultimately reduced this to 500, but said it would likely only lead to the additional reporting of a small number of incidents a year – around 5 percent more that would, by the FTC's estimates, affect 155 extra organizations.Lawyers slam SEC for 'blatant fishing expedition' after Exchange mega-attack

Other states, like Colorado, have different rules for different cutoffs. If the number of affected residents is between 500 and 999, notices must be sent to the Attorney General. For those that impact 1,000 or more, the organization must notify all consumer reporting agencies too. Data breaches of any size must always be reported to individuals that are affected, no matter how small the number, within 30 days.

 

Merci pour votre commentaire. Votre commentaire sera publié après examen.
Nous avons résumé cette actualité afin que vous puissiez la lire rapidement. Si l'actualité vous intéresse, vous pouvez lire le texte intégral ici. Lire la suite:

 /  🏆 67. in BE

Belgique Dernières Nouvelles, Belgique Actualités