As required by the Gramm-Leach-Bliley Act (GLBA)¹ and the regulations promulgated pursuant to GLBA by the Federal Trade Commission (FTC), financial institutions are required to take steps to ensure the privacy, security and confidentiality of customer records. Because higher education institutions engage in financial activities, such as making Federal Perkins Loans, FTC regulations consider them financial institutions for GLB Act purposes.
The Safeguards Rule of the GLB Act requires financial institutions to have an information security plan to protect confidentiality and integrity of personal information. In 2003, the University of Missouri developed a comprehensive information security program to protect the security and confidentiality of “customer information.” In 2008, the Vice President for Information Technology authorized the development of a comprehensive Information Security Program², applicable for all university entities. The Gramm-Leach Bliley Program is a component of the Information Security Program³.
- Gramm-Leach-Bliley Act
- UM Policy 11010 - Protection of Personally Identifiable Information
- Gramm-Leach-Bliley Program Training Module
- Workplace Information Security Manual (PDF) - Please right click on the file and download it to your device for viewing.
- GLB Committee Member Contact Information
- Finance and Administration
¹ The Gramm-Leach-Bliley Act (GLBA) and the regulations promulgated pursuant to GLBA by the Federal Trade Commission
² Business Policy Manual – BPM-1203 Information Security
³ Business Policy Manual – BPM-1203 Information Security