Gramm-Leach-Bliley Act

The Gramm-Leach-Bliley Act (GLBA) requires the University of Minnesota to implement safeguards to insure the security and confidentiality of certain non-public customer information. The GLBA protects certain private information identifiable to individuals that is obtained when the University offers or delivers a financial product or service to them. The University must develop, implement, and maintain a comprehensive information security program containing administrative, technical and physical safeguards that are appropriate based upon the University's size, complexity and the nature of its activities. The GLBA also requires that the security program coordinator (the University Controller) develop and deliver training and education to all employees. To support this education role, the following materials are available:

• GLBA: Implementation of the Safeguards Rule
  (PowerPoint Presentation) This training material and information is for University departments. It provides safeguarding information that departments should be aware of re: current and future exposure to the law.
  
  
• GLBA: Examples of Financial Services or Products
  Most University departments will not have exposure to the GLBA. However, units should review this list of activities that can subject a department or program to the law, and examples of customer information that must be protected.
  
  
• GLBA: Reference Guide
  FAQ's about the applicability of the GLBA to various University activities and programs.