In response to the Gramm-Leach-Bliley Act (GLBA), the National Credit Union Administration (NCUA) recently issued a revision to the NCUA Rules & Regulations Part 748, Security Program, Report of Crime and Catastrophic Act and Bank Secrecy Act Compliance. The change to the regulation itself was minimal; however, the NCUA incorporated an appendix entitled “Guidelines for Safeguarding Member Information” to assist credit unions in determining how to best protect their members’ data. While Part 748 addresses both the physical protection and electronic protection of member information, the enclosure to this letter, Electronic Data Security Overview, focuses primarily on the electronic aspects of member data security. The enclosure discusses how to develop and implement a security program for electronic data and information systems. This letter and its attachment assist the NCUA in meeting the requirements of Title V, Subtitle A, of the GLBA.
If you have any questions or concerns, please contact your NCUA Regional Office or State Supervisory Authority.
Sincerely,
/s/
Dennis Dollar Acting
Chairman