With identity theft a widespread issue in the financial services industry, banks and ARM companies are under increased pressure to ensure consumers’ sensitive identification, contact, and financial information is kept safe. In fact, a number of recent state and federal laws and regulations codify certain requirements for handling financial data. Firms in the ARM industry must adhere to a host of standards, including the Payment Card Industry Data Security Standard (PCI DSS), the financial privacy and safeguards rules in the Gramm–Leach–Bliley Act (GLBA), the FTC’s Red Flags Rule for identity theft, information security standard ISO 27002, HIPAA and the HITECH Act for the healthcare sector, and the Federal Information Security Management Act of 2002 (FISMA) for those collecting on government contracts. Auditing standard SAS 70 is also required for many in the financial services industry that use outside vendors such as debt collection agencies.

See all Topics

Cybersecurity Checklist for HIPAA Covered Entities

15 June 2017

RevSpring Logo

TECH LOCK’S Albertson To Address Security at ARM-Industry Event

6 June 2017

RevSpring Logo

TECH LOCK’s Wright to Address Data Security at NCHER Conference

5 June 2017

Ransomware Cyberattacks: How to Minimize Your Risks

31 May 2017

What Does PCI Compliance Mean for Your Business? (sponsored)

25 May 2017

How to Improve IT Security While Reducing Costs – The State Collection Service Story (Sponsored)

9 February 2017

FTC Issues Guide to Data Breach Response; Collectors Should Take Note

25 January 2017


Data Breach at UMass Leads to Settlement; Sends Warning to Healthcare Providers About Policies and Procedures

6 December 2016

Data Security and the Debt Industry Podcast

Podcast: Data Security and the Debt Industry

1 October 2016

New York Proposes Extensive Data Security Regs for Financial Services Companies, Begins 45-Day Comment Period

15 September 2016

It's Phishing Season: How to Prevent Your Company from Getting Speared

14 September 2016

FBCS Completes Renewal of SSAE-16, PCI-DSS, and ISO 27001-27002 Certifications

20 July 2016

Neustar Announces Intention to Separate into Two Independent Publicly Traded Companies

27 June 2016

Account Control Technology Foundation Announces Winners of $50,000 in College Scholarships

21 June 2016

Kinum, Inc. Completes SSAE 16 SOC 1 Type 2 Examination

20 June 2016

PDCflow Achieves PCI-DSS Level 1 Certification

2 June 2016

How to Increase Productivity While Decreasing IT Costs

26 May 2016

LiveVox Discusses the Future of Consumer Contact Technology at iA’s 2016 Large Market Participant Summit

22 April 2016

RevSpring Renews Critical Security Requirements, Complies with PCI DSS

31 March 2016

Columbia Ultimate Expands Ajility Compliance with ARM Industry’s Data Security Gold Standard

12 February 2016