Compliance Guide:Gramm-Leach-Bliley Act (GLB)
The Gramm–Leach–Bliley Act (GLB), also known as the Financial Services Modernization Act of 1999 is a US act designed to enhance competition in the financial services industry by providing a prudential framework for the affiliation of banks, securities firms, insurance companies, and other financial service providers. The Act includes specific sections on the protection of non public personal information and privacy protection for customer information. Under the Act Financial institutions are responsible for protecting the security and confidentiality of their customers' personal information and must ensure they have appropriate standards in place relating to technical and physical safeguards to ensure security and protection against anticipated threats.
The Gramm-Leach-Bliley Act requires financial institutions to determine when encryption of customer information in transit or in storage is appropriate and if so, to implement it.
|Secure data at rest within the organisation||All versions of DESlock+ include file, folder and virtual drive encryption as standard to secure data at the endpoint.|
|Secure data in transit||DESlock+ Pro includes full-disk and removable media encryption for USB drives and optical media to secure data on the move.|
|Secure data for mobile / home working practices||DESlock+ Pro includes full-disk encryption for laptops. Business licences extend to privately owned home computers at no extra cost.|
|Secure transfer of data between locations||All versions of DESlock+ include an Outlook plug-in, clipboard encryption compatible with all mail clients including webmail, and attachment encryption for any system. optical media encryption allows the safe transfer of data stored on CD or DVD.|
|Block / Limit access to certain data||The unique patented key sharing methods of DESlock+ allow different levels of access to be configured for different users.|
|Allow access to secure data when requested.||using the DESlock+ Enterprise Server management tool allows extensive, remote control of encryption software policy and encryption keys.|
|Secure safe storage of personal data||DESlock+ is FIPS-140-2 validated.|
|Secure destruction of redundant data||The DESlock+ Desktop Shredder tool securely deletes data to the DoD-5220.2 M standard ensuring that it is completely unrecoverable.|
DESlock+ is the only FIPS 140-2 validated product available, free of charge to personal users. This creates a secure bridge between what is business information to those inside Financial Services yet personal to end clients. Email, attachments, data on USB Flash Dives, CD or DVD may all be exchanged securely between advisers consultants and private clients seamlessly, at no cost to the customer.
Contact us for more information, advice regarding your data security policy or to arrange a demo or pilot.