The Safeguards Rule ensures that entities covered by the Rule maintain safeguards to protect the security of customer information. While preserving the flexibility of the original Safeguards Rule, the revised Rule provides more concrete guidance for businesses. It reflects core data security principles that all covered companies need to implement. The Safeguards Rule applies to financial institutions subject to the FTC’s jurisdiction and that are not subject to the enforcement authority of another regulator.
