The consumer protection agency on Friday announced finalized amendments to its Safeguards Rule requiring lenders that aren’t banks—including mortgage brokers and auto dealers—to report information about the scope of security incidents affecting the unencrypted data of 500 or more customers “as soon as possible,” and within 30 days at most.
Read more at Bloomberg Law
