Information Security Resources

The Washington State Department of Financial Institutions Division of Consumer Services is concerned with the security of consumer information.

Not maintaining confidentiality, integrity, and availability of information can result in direct harm to consumers and operational and reputational risk for companies.

Resources

The following are resources regarding information security:

Washington Administrative Code

The following Washington Administrative Code relate to information security:

Consumer Loan Companies

  • WAC 208-620-531 - Must I have a business resumption plan?
  • WAC 208-620-532 - Records disposal.
  • WAC 208-620-571 - Information security program required by the federal Safeguards Rule implementing the Gramm-Leach-Bliley Act
  • WAC 208-620-572 - Consumer financial information privacy under the Gramm-Leach-Bliley Act (GLBA) and Regulation P
  • WAC 208-620-573 - Notice to consumers of data breach

Mortgage Brokers

  • WAC 208-660-460 - Information security program required by the federal Safeguards Rule implementing the Gramm-Leach-Bliley Act
  • WAC 208-660-470 - Consumer financial information privacy under the Gramm-Leach-Bliley Act (GLBA) and Regulation P
  • WAC 208-660-480 - Notice to consumers of data breach
  • WAC 208-660-490 - Business resumption plan

Money Service Providers

  • WAC 208-690-240 – Cyber security program
  • WAC 208-690-250 - Information security program required by the federal Safeguards Rule implementing the Gramm-Leach-Bliley Act (GLBA)
  • WAC 208-690-260 - Consumer financial information privacy under the Gramm-Leach-Bliley Act (GLBA) and Regulation P
  • WAC 208-690-270 – Notice to consumers of data breach
  • WAC 208-690-280 – Business resumption plan