What is the Gramm–Leach–Bliley Act (GLBA)? | A Definition by UpGuard

Looking to streamline your TPRM? Join our Product Deep Dive Webinar with live Q&A!

What is the Gramm–Leach–Bliley Act (GLBA)?

The Gramm–Leach–Bliley Act (GLBA) is a U.S law that mandates the disclosure of customer data collection practices for organizations selling financial products and/or services.

Key takeaways

GLBA compliance is mandatory for all U.S entities selling financial products and/or services.
The GLBA expects financial entities to establish security controls that protect customer data from compromise.
Under the GLBA, financial entities must implement secure Privileged Access Management policies.

No items found.

Read more about the GLBA

Learn more about The Gramm–Leach–Bliley Act (GLBA) and the latest issues in cybersecurity.

Top 9 Cybersecurity Regulations for Financial Services

Top 9 Cybersecurity Regulations for Financial Services

The top 12 cybersecurity regulations every business in the finance sector must be aware of.

December 2, 2025

View all blog posts

See UpGuard In Action

Book a free, personalized onboarding call with one of our cybersecurity experts.

More from our blog

Learn more about the latest issues in cybersecurity.

Risk Automations: The Shift From Catch-Up to Command

Risk Automations: The Shift From Catch-Up to Command

Connect intelligence to system execution with Risk Automations, your new resolution layer for risk. Reduce remediation from hours to seconds - read more.

Revashni Moodley

December 1, 2025

UpGuard’s Future: The Strategic Edge Your Security Team Needs

UpGuard’s Future: The Strategic Edge Your Security Team Needs

Start unifying your security and improve your posture in real-time with UpGuard’s CRPM platform. Lead your team into the next era of cybersecurity today.

Revashni Moodley

September 26, 2025

Solving CISOs’ Toughest Security Challenges with CRPM

Solving CISOs’ Toughest Security Challenges with CRPM

Feeling the pressure of leading your security team? You’re not alone. Learn how CRPM reduces risk and automates compliance to prove your security posture.

Revashni Moodley

December 1, 2025

Shai-Hulud's True Lesson for CISOs: A Crisis of Communication

Shai-Hulud's True Lesson for CISOs: A Crisis of Communication

Shai-Hulud was driven by a communication crisis between security and engineering. Get a CISO's perspective on how to finally bridge this gap.

December 1, 2025

Compounding Intelligence: UpGuard’s GRID and 1+1>2 Approach

Compounding Intelligence: UpGuard’s GRID and 1+1>2 Approach

Tired of fighting fires? Learn how UpGuard’s CRPM platform, powered by the GRID and 1+1>2 effect, helps you control your security posture proactively.

Revashni Moodley

September 16, 2025

Introducing UpGuard's Unified CRPM Platform

Introducing UpGuard's Unified CRPM Platform

Move away from point solutions to a unified defense of your security posture with UpGuard’s CRPM platform. Read more to learn how.

Revashni Moodley

September 11, 2025

View all blog posts

Sign up for our newsletter

UpGuard's monthly newsletter cuts through the noise and brings you what matters most: our breaking research, in-depth analysis of emerging threats, and actionable strategic insights.

Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.

Instant insights you can act on immediately
Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities

Website Security scan results