Interagency Guidance on Response Programs for Unauthorized Access to Customer Information and Customer Notice

Citation
Office of Thrift Supervision, Interagency Guidance on Response Programs for Unauthorized Access to Customer Information and Customer Notice, 12 C.F.R. Parts 568 and 570, 70 Fed. Reg. 15736 (Mar. 29, 2005).

Overview
These final Guidance interpret the requirements of section 501(b) of the Gramm-Leach-Bliley Act, and the Security Guidelines 2 to include the development and implementation of a response program to address unauthorized access to, or use of customer information that could result in substantial harm or inconvenience to a customer. The Guidance describes the appropriate elements of a financial institution’s response program, including customer notification procedures.