Presentation is loading. Please wait.

Presentation is loading. Please wait.

Gramm-Leach-Bliley Act for Financial Aid Val Meyers Associate Director Michigan State University.

Published byTyrone Becket Modified over 9 years ago

Similar presentations

Presentation on theme: "Gramm-Leach-Bliley Act for Financial Aid Val Meyers Associate Director Michigan State University."— Presentation transcript:

1 Gramm-Leach-Bliley Act for Financial Aid Val Meyers Associate Director Michigan State University

2 GLB Act – who is affected  Federal Trade Commission Regulation  Applies to all institutions that act in a banking capacity  Applies to universities that make loans and/or do loan collections  This includes Perkins Loans, institutional loans, and “school-as-lender” FFELP

3 GLB Act – what it means  Requires institutions meet standards related to safeguarding customer financial information  Deadline for compliance was 5/23/03  Two major areas  Privacy of information  Safety of information

4 Privacy of Information  Universities who abide by FERPA are meeting the criteria to protect information privacy  FERPA – Family Educational Rights & Privacy Act  Protects the privacy of all student educational records, including financial information

5 FERPA Requirements  You should have a written policy in place  Staff should have periodic training  Exceptions are “need to know” within the institution  Audits  Law enforcement with proper legal documents  Financial servicers or partners (i.e., loan servicers, collection agencies)

6 FERPA Extended  To comply with GLB, financial information for non-students must also have privacy protection  Apply FERPA policies to parents and anyone else for whom you make loans

7 Safety of Information  Natural Disaster  Human Error  Deliberate Fraud  Corruption of Data  Theft of Hardware, Software, Reports  Unauthorized Access

8 Safety of Information  Natural Disaster  Backups in remote locations  Human Error  Audit trails, reports  Deliberate Fraud  Separation of Duties

9 Safety of Information  Corruption of Data  Secured Access  Anti-virus software  Firewalls & hacker protection

10 Safety of Information  Theft of Hardware, Software, Reports  Secure during non-business hours  Work areas require escort  Documents control  Shred discards  Keep unauthorized visitors away from documents

11 Safety of Information  Unauthorized Access  Password access  Anti-hacker software  Policies on who may receive reports and files from your office  Privacy shields on computers

12 Task Force Concerns  Involve all offices who handle student loan or collections data  Financial Aid  Bursar/Controller  Information Technology/Computer Systems  Recommended addition  University Counsel

13 Designate a Compliance Office or Officer  Each institution must designate a compliance office or officer who is responsible for holding and monitoring compliance documents

14 Risk Assessment Documentation  List each privacy and safety concern  Address how your institution minimizes each risk  Documents should be on file from each office that “touches” the data  Third party servicer contracts should contain protective language as well

15 Contract Language  University Counsel should recommend contract language to be inserted in all university contracts with 3 rd party vendors who have access to your student/parent financial loan data  The deadline to add such language to your contracts was May 2004

16 Recommended Office Policies  Place all student-specific documents in shredding bins  Verify identity of students & parents before sharing data  Refer 3 rd party requests to your designated staff  May be Compliance Officer, AD or Director  Report computer problems promptly

17 Other Office Policies  Staff must not share passwords  Lock or power down computers when leaving work area  Shield computer screens and data from other students  Do not leave visitors unattended

18 Questions & Answers Val Meyers Michigan State University meyersv@msu.edu

Download ppt "Gramm-Leach-Bliley Act for Financial Aid Val Meyers Associate Director Michigan State University."

Similar presentations

FERPA - Sharing Student Information

FERPA - Sharing Student Information
Protect Our Students Protect Ourselves

Protect Our Students Protect Ourselves
FERPA: Family Educational Rights and Privacy Act

FERPA: Family Educational Rights and Privacy Act
UNDERSTANDING RED FLAG REGULATIONS AND ENSURING COMPLIANCE University of Washington Red Flag Rules Protecting Against Identity Fraud.

UNDERSTANDING RED FLAG REGULATIONS AND ENSURING COMPLIANCE University of Washington Red Flag Rules Protecting Against Identity Fraud.
HIPAA: An Overview of Transaction, Privacy and Security Regulations Training for Providers and Staff.

HIPAA: An Overview of Transaction, Privacy and Security Regulations Training for Providers and Staff.
HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.

HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.
Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.
Regulatory Issues in Campus Computing Privacy and Security in a Digital World Presented by David Gleason, Esq. University Counsel University of Maryland,

Regulatory Issues in Campus Computing Privacy and Security in a Digital World Presented by David Gleason, Esq. University Counsel University of Maryland,
Before reviewing the following presentation click on the links below and print off the documents: NAM-43 The Bair Foundation HIPAA Policy NAM- 89 HIPAA.

Before reviewing the following presentation click on the links below and print off the documents: NAM-43 The Bair Foundation HIPAA Policy NAM- 89 HIPAA.
Randy Benson RHQN Executive Director May, 2012. Compliance Issues During Survey Compliance Officers monitor healthcare facilities (hospitals and clinics)

Randy Benson RHQN Executive Director May, Compliance Issues During Survey Compliance Officers monitor healthcare facilities (hospitals and clinics)
Springfield Technical Community College Security Awareness Training.

Springfield Technical Community College Security Awareness Training.
2006 Spring MASFAP CONFERENCE Ginny D’Angelo Vice President of Student Loans Commerce Bank Leo Hertling Associate Director St. Louis College of Pharmacy.

2006 Spring MASFAP CONFERENCE Ginny D’Angelo Vice President of Student Loans Commerce Bank Leo Hertling Associate Director St. Louis College of Pharmacy.
The Financial Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA) UNDERSTANDING AND DEVELOPING A STRATEGIC PLAN TO BECOME COMPLIANT.

The Financial Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA) UNDERSTANDING AND DEVELOPING A STRATEGIC PLAN TO BECOME COMPLIANT.
Protecting Personal Information Guidance for Business.

Protecting Personal Information Guidance for Business.
FAIR AND ACCURATE CREDIT TRANSACTIONS ACT (FACTA)- RED FLAG RULES University of Washington Red Flag Rules Protecting Against Identity Fraud.

FAIR AND ACCURATE CREDIT TRANSACTIONS ACT (FACTA)- RED FLAG RULES University of Washington Red Flag Rules Protecting Against Identity Fraud.
Securing NPI Mary Schuster Mike Murphy.  Gramm-Leach-Bliley Act Enacted to control the ways that financial institutions deal with the private information.

Securing NPI Mary Schuster Mike Murphy.  Gramm-Leach-Bliley Act Enacted to control the ways that financial institutions deal with the private information.
Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.

Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.
Auditing Computer Systems

Auditing Computer Systems
Auditing Computer-Based Information Systems

Auditing Computer-Based Information Systems
FERPA: Family Educational Rights and Privacy Act.

FERPA: Family Educational Rights and Privacy Act.

Similar presentations

Ads by Google