With identity theft a widespread issue in the financial services industry, banks and ARM companies are under increased pressure to ensure consumers’ sensitive identification, contact, and financial information is kept safe. In fact, a number of recent state and federal laws and regulations codify certain requirements for handling financial data. Firms in the ARM industry must adhere to a host of standards, including the Payment Card Industry Data Security Standard (PCI DSS), the financial privacy and safeguards rules in the Gramm–Leach–Bliley Act (GLBA), the FTC’s Red Flags Rule for identity theft, information security standard ISO 27002, HIPAA and the HITECH Act for the healthcare sector, and the Federal Information Security Management Act of 2002 (FISMA) for those collecting on government contracts. Auditing standard SAS 70 is also required for many in the financial services industry that use outside vendors such as debt collection agencies.

See all Topics

Credit Card Fraud Prevention Tips for Online Payments (sponsored)

29 March 2018


Collectors Need a Better Way to Confirm they are Speaking with the Right Person

15 March 2018

New European Union Data Protection Regs Apply to Debt Collectors, Too

27 February 2018

PCI 3.2 Updates Webinar Hosted By TECH LOCK

13 February 2018

Portions of New York DFS Cybersecurity Rules Now in Effect

31 August 2017

IT Security Best Practices Webinar

24 July 2017

PDCflow Passes Payment Card Industry Data Security Standards, renews compliance

15 June 2017

Cybersecurity Checklist for HIPAA Covered Entities

15 June 2017

RevSpring Logo

TECH LOCK’S Albertson To Address Security at ARM-Industry Event

6 June 2017

RevSpring Logo

TECH LOCK’s Wright to Address Data Security at NCHER Conference

5 June 2017

Ransomware Cyberattacks: How to Minimize Your Risks

31 May 2017

What Does PCI Compliance Mean for Your Business? (sponsored)

25 May 2017

How to Improve IT Security While Reducing Costs – The State Collection Service Story (Sponsored)

9 February 2017

FTC Issues Guide to Data Breach Response; Collectors Should Take Note

25 January 2017


Data Breach at UMass Leads to Settlement; Sends Warning to Healthcare Providers About Policies and Procedures

6 December 2016

Data Security and the Debt Industry Podcast

Podcast: Data Security and the Debt Industry

1 October 2016

New York Proposes Extensive Data Security Regs for Financial Services Companies, Begins 45-Day Comment Period

15 September 2016

It's Phishing Season: How to Prevent Your Company from Getting Speared

14 September 2016

FBCS Completes Renewal of SSAE-16, PCI-DSS, and ISO 27001-27002 Certifications

20 July 2016

Neustar Announces Intention to Separate into Two Independent Publicly Traded Companies

27 June 2016