E-NEWSLETTER

Subscribe to FREE E-Newsletters
Friday, July 30, 2010
Get the and !

Compliance

Safeguards Rule - The Road to Compliance

(Gramm-Leach-Bliley Act)

Dealerships must keep all customer information secure and confidential to comply with the Gramm-Leach- Bliley Act. They must protect customers’ data from all security threats and unauthorized access. This roadmap walks you through the steps your dealership should take to achieve total compliance with the GLBA. You can also take a free online survey at plantemoran.com to determine where your dealership is at in its compliance formula. For more information contact: Raj Patel, technology consulting manager at Plante & Moran PLLC (248) 223-3428 or raj.patel@plantemoran.com

1. Formal Risk Assessment
  • Take inventory of and document all customer– information assets and systems
  • Prioritize and classify information assets
  • Identify/document all threats to customer data, their likelihood and impact
  • Evaluate and improve control environment
  • Develop/document policies and procedures to secure information and enforce sanctions
2. Information Security Program
  • Obtain dealership management’s buy-in
  • Appoint a security officer or delegate compliance responsibility
  • Define and communicate compliance responsibility
  • Establish/document a formal training and awareness program for F&I and sales staff
3. Vendor Relationship Assessment
  • Identify/document all vendors who access, process and store your customer data
  • Assess/document how vendors are protecting customer data
  • Review and monitor vendor agreements annually for compliance
4. Technical Security Management
  • Design a secure network topology
  • Develop virus standards and controls
  • Perform security testing (external and internal penetration tests) at least annually
  • Monitor your security environment by recording transactions and reviewing logs
  • Develop security-incident response procedures
5. Annual Audit and Update
  • Develop an audit strategy
  • Perform audits on an annual basis
  • Report audit findings to dealership management
  • Revise vendor management practices as needed
  • Test and revise your security compliance program as needed

Dealer Job Finder


Save time and money. Search for auto-dealer jobs. Advance your career. Access our career coaching services.

Job Seekers

  Post your resume & manage your job search.

Employers

  Post jobs & search top quality resumes.

Featured Jobs

Finance Compliance Basics

  • Credit, Capacity, Collate and Compliance - There were the three Cs of consumer credit, but today's credit crisis has probably tacked on two more Cs. Compliance expert makes the argument for a sixth "C."
  • The Truth Behind OFAC Compliance - OFAC checks might seem useless, but not complying could mean 10 to 30 years in prison. Find out why compliance is a good thing and how it can act as a first line of defense.
  • Lender Confidence and Compliance - Dealers are definitely in a tough spot. So what’s a dealer to do? Industry insider says the answer will ultimately be tied to regulatory compliance.
  • Compliance Rules and Financial Regulators - You may be aware of these five compliance rules, but do you know how to stay off the radars of regulators and plaintiff attorneys?

News Channels

Copyright © 2010 F&I Magazine. All Rights Reserved.