16 CFR 314.3 - Standards for safeguarding customer information.
(a) Information security program. You shall develop, implement, and maintain a comprehensive information security program that is written in one or more readily accessible parts and contains administrative, technical, and physical safeguards that are appropriate to your size and complexity, the nature and scope of your activities, and the sensitivity of any customer information at issue. Such safeguards shall include the elements set forth in § 314.4 and shall be reasonably designed to achieve the objectives of this part, as set forth in paragraph (b) of this section.
(2) Protect against any anticipated threats or hazards to the security or integrity of such information; and
Title 16 published on 2013-01-01
no entries appear in the Federal Register after this date.