The Gramm-Leach Bliley Act (GLBA) was designed to protect consumer's private financial information. GLBA affects a wide range of financial institutions such as banks, credit unions, tax services, credit card activities, mortgage companies, and investment advisors. GLBA defines a Safeguard Rule that requires financial institutions to develop a written information security plan that describes how the company is prepared for, and plans to continue to protect clients' nonpublic personal information.

Requirement	eSilo Compliance
Insure the security and confidentiality of customer records and information.	All data stored with eSilo is encrypted prior to transfer with 256-bit AES encryption; only the customer can decrypt the data.
To protect against any anticipated threats or hazards to the security or integrity of such records.	eSilo's network is protected by a multi-level security infrastructure. Data resides on enterprise quality hard drives; no tape is ever used.
To protect against unauthorized access to or use of such records or information which could result in substantial harm or inconvenience to any customer.	Only the customer has access to the unencrypted form of such records; access is available 24/7 365 days a year.

The Safeguards Rule forces financial institutions to take a closer look at how they manage private data and to do a risk analysis on their current processes. No process is perfect, so this has meant that every financial institution has had to make some effort to comply with the GLBA.

All non-public personal information and personally identifiable financial information is subject to the privacy controls of GLBA. GLBA compliance is not voluntary; whether a financial institution discloses nonpublic information or not, there must be a policy in place to protect the information from foreseeable threats in security and data integrity.

Federal Trade Commission
Electronic Privacy Information Center (EPIC)