On October 27, the Federal Trade Commission (“FTC”) unanimously voted to amend the Safeguards Rule to require non-banking financial institutions to report data breaches and security events to the Agency. This amendment will become effective 180 days after its publication in the Federal Register.
Under the amended rule, financial institutions subject to the authority of