The Consumer Financial Protection Bureau has given a thumbs up to congressional mandates via legislation that would allow financial institutions to be exempt from sending privacy notices to their customers – provided that the financial companies meet certain requirements.
The Gramm-Leach-Bliley Act, as it is currently written, requires that companies send these notices to their customers annually. The notices themselves are mandated to explain what nonpublic information is collected about a consumer, where it is shared, what it is used for, and how the information is protected. If that information is indeed shared with third parties, then the firms must provide an opt-out clause and must walk consumers through how to, in fact, opt out.
Annual privacy notices can be posted online as an alternative delivery method, according to the CFPB, but with the new amendment the CFPB is proposing to remove that alternative delivery option for the firms.