The FTC's updated Safeguards Rule now requires specific technical controls for any business handling consumer financial data. If you serve financial clients or process payments, here's what changed.
The rule reaches well beyond banks — auto dealers, accountants, mortgage brokers, and many service providers handling consumer financial data are covered.
A written information security program, a qualified individual to run it, risk assessments, access controls and MFA, encryption of customer data, monitoring and logging, vendor oversight, and an incident response plan.
Start with a gap assessment against the rule's specific controls. We help financial services firms implement and evidence them ahead of the deadline.
More RIAs and wealth management firms are being asked for SOC 2 reports. Here's what the audit covers and how to prepare.
Dental practices face unique HIPAA challenges around imaging systems, patient portals, and multi-location data sharing. Here's what your IT setup needs.