Computer Hacking Forensic Investigator (CHFI v10) — Question 9

Which U.S. Federal law requires financial institutions that offer consumers financial products or services to protect their customers' private information?

Answer options

• A. Payment Card Industry Data Security Standard (PCI DSS)
• B. Federal Information Security Management Act of 2002 (FISMA)
• C. Health insurance Portability and Accountability Act of 1996 (HIPAA)
• D. Gramm-Leach-Bliley Act (GLBA)

Correct answer: D

Explanation

The correct answer is D, the Gramm-Leach-Bliley Act (GLBA), which specifically requires financial institutions to protect private information of their customers. The other options, while related to data security and privacy, do not apply directly to financial institutions in the same context as GLBA does.