Definition
Requires financial institutions to protect the confidentiality and security of customers' personal information.
Excerpt
(a) Privacy obligation policy
It is the policy of the Congress that each financial institution has an affirmative and continuing obligation to respect the privacy of its customers and to protect the security and confidentiality of those customers' nonpublic personal information.
(b) Financial institutions safeguards
In furtherance of the policy in subsection (a), each agency or authority described in section 6805(a) of this title, other than the Bureau of Consumer Financial Protection, shall establish appropriate standards for the financial institutions subject to their jurisdiction relating to administrative, technical, and physical safeguards-
(1) to insure the security and confidentiality of customer records and information;
(2) to protect against any anticipated threats or hazards to the security or integrity of such records; and
(3) to protect against unauthorized access to or use of such records or information which could result in substantial harm or inconvenience to any customer.
Related cases
The FTC sued LendingClub and found the company liable for deducting hidden up-front fees from loans and failing to provide consumers with clear and conspicuous privacy notices. Despite claiming "no hidden fees," LendingClub was found to have charged borrowers hundreds or even thousands of dollars in undisclosed fees.