The Gramm-Leach-Bliley Act (GLBA), also known as the Financial Services Modernization Act of 1999, is a federal law that protects customer non-public personal information (NPI), otherwise known as NPI. All financial institutions under the Safeguards Rule, which implements part of the Gramm-Leach-Bliley Act (GLBA), must comply with the rule by June 9, 2023.
This law applies to how the University System of New Hampshire (USNH) collects, stores, and uses student financial records (e.g., records regarding tuition payments and financial aid) containing personally identifiable information. The USNH GLBA Committee, with the assistance of CampusGuard, an information security and compliance firm, conducted a USNH GLBA compliance assessment from July through August 2022 and delivered the final report in December 2022. The Enterprise Technology & Services Cybersecurity Governance team oversaw the creation and delivery of this report and worked to resolve compliance violations.
This report assessed 171 Items and found 67 needed improvements. As of June 12, 2023, Enterprise Technology & Services fully resolved 57 items and 10 outstanding items with an action plan for resolution.
