The Gramm–Leach–Bliley Act (GLBA) and its implementing regulations impose privacy requirements when financial institutions collect “nonpublic personal information about individuals who obtain financial products or services primarily for personal, family, or household purposes.”[1] GLBA does not apply, however, when a financial institution collects information about individuals “who obtain financial products or services for business,
![Hand touching Compliance Rules Law Regulation Policy Business Technology Interface](https://www.gtlaw-dataprivacydish.com/files/2021/06/Hand-touching-Compliance-Rules-Law-Regulation-Policy-Business-Technology-Interface.jpg)