Thaler: Collaboration needed on data security, privacy
Ahead of yesterday's Senate Banking Committee data privacy hearing, NAFCU Vice President of Legislative Affairs Brad Thaler reiterated the need for national data security and privacy standards and urged members to work collaboratively with other Senate committees to "find a package that can advance and receive bipartisan support."
During the hearing, the committee discussed approaches to data privacy, the impact on the financial services industry and how companies collect and use information in marketing and decision-making.
"Financial regulators are not the only ones engaged in big data collection; private companies are also collecting, processing, analyzing and sharing considerable data on individuals," noted Committee Chairman Mike Crapo, R-Idaho, in his opening remarks. "The data ecosystem is far more expansive, granular and informative than ever before."
Throughout the hearing, a number of lawmakers and witnesses discussed data privacy and ownership concerns as they relate to the Fair Credit Reporting Act (FCRA). Amendments to the FCRA could potentially affect financial institutions' operations.
NAFCU – a leader in calling for a national data security standard – has advocated for safeguards to ensure negligent entities are held accountable for data exposures, consumers have control over their data and are notified of breaches in a timely manner. The association believes that all entities – not just financial institutions – that handle consumer information must comply with comprehensive federal data protection standards.
"While depository institutions have had a national standard on data security since the passage of the Gramm-Leach-Bliley Act (GLBA) over two decades ago, other entities who handle consumer financial data do not have such a national standard," wrote Thaler. "Along those same lines, we also believe that there is a need for a uniform national consumer data privacy standard as opposed to a patchwork of standards stemming from different state data privacy laws."
The committee also examined the European Union's General Data Protection Regulation (GDPR) in comparison to the previous 1995 Data Protection Directive as an example of broader scope regulation. The substantive requirements of the GDPR, how they differ from existing U.S. mandates and credit unions' approach to it was outlined in an edition of the NAFCU Compliance Monitor published last summer.
NAFCU's Regulatory Committee has previously discussed the GDPR and other issues on privacy, including the proposed rule on the California Customer Privacy Act (CCPA) that intends to establish procedures to facilitate consumers' rights and provide guidance to businesses on how to comply with the law. At least 10 states have introduced draft bills to impose obligations on businesses to provide consumers with more control of their personal data.
The association has long been active with lawmakers on the issue of data security and was the first group after the massive 2013 Target data breach to call for a legislative solution to reform the nation's data security system.
Add to Calendar 2020-05-26 14:00:00 2020-05-26 14:00:00 Corporate Social Media Presence: High Risk, High Reward Having a social media presence has become a near-necessity in today’s constantly-connected world. Social media provides a unique avenue to reach customers (and potential customers) in ways that more traditional media has never been able to accomplish. But in addition to these unique benefits, a company’s social media presence also presents unique risks. Jay Williams, an attorney at Buckley LLP, will discuss these risks, as well as the ways companies can effectively mitigate them. This webinar will address recommended practices for a company’s social media presence, including developing a social media policy, understanding enforcement implications and regulatory guidance. PROGRAM UNDERWRITTEN BY Key Takeaways Review the risks associated with using social media and how to put effective controls in place to manage those risks Discuss the importance of a social media policy and best practices for developing it Identify the unique electronic discovery challenges that social media presents Understand the social media guidelines that financial regulators have developed Register Now For On-Demand Access$295 Members | $395 Nonmembers (Additional $50 for CD)One registration gives your entire credit union access to the on-demand recording until May 26, 2021.Already registered? Go to the Online Training Center to view live. Who Should Attend? NAFCU Certified Compliance Officers (NCCOs) NAFCU Certified Risk Managers (NCRMs) C-suite executives Marketing staff Communication staff Social media staff Compliance staff Risk staff Education Credits NCCOs will receive 1.5 CEUs for participating in this webinar. NCRMs will receive 1.5 CEUs for participating in this webinar. CPA credit information is below; recommended 1.5 CPE credits. CPA Certification Credit Information Reviewer: Josie Collins, Associate Director of Education, NAFCU Learning Objectives: Review the risks associated with using social media and how to put effective controls in place to manage those risks. Discuss the importance of a social media policy and best practices for developing it. Identify the unique electronic discovery challenges that social media presents. Understand the social media guidelines that financial regulators have developed. Program Level: Basic Prerequisites Needed: None Advance Preparation Needed: None Delivery Method: Group Internet-Based Recommended CPE Credits: 1.5 credits Recommended Field of Study: Communications and Marketing – Non-Technical & Regulatory Ethics - Technical National Association of Federal Credit Unions (NAFCU) is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. Learn more. About Our Webinars Our webinars are streamed live from NAFCU headquarters near Washington, D.C. Your audio/video feed of the presenters includes presentation slides and downloadable handouts. You can easily submit your questions to the presenters at any time during the live broadcast, with no dialing over the phone! The audio and video stream directly through your computer. Web NAFCU firstname.lastname@example.org America/New_York public
Credits: NCCO, NCRM, CPE
Program underwritten by Mastercard
Get daily updates.
Subscribe to NAFCU today.