Regulation S-P in Focus: Navigating the SEC’s New Data Privacy Rules

Financial institutions are facing heightened pressure to protect consumer financial data as the SEC strengthens expectations around privacy, cybersecurity, and breach response under the newly amended Regulation S-P.

These updates reinforce the Gramm-Leach-Bliley Act (GLBA) by requiring firms to clearly disclose how customer information is shared, provide opt-out options, implement written information-security programs, and notify customers and the SEC in the event of unauthorized access to nonpublic personal information.

The amendments elevate the importance of operational resilience, incident-response readiness, and board-level accountability, placing privacy protection squarely within the broader cybersecurity governance framework.

Join Christopher Hetner, former Senior Cybersecurity Advisor to two SEC Chairs, for a candid 45-minute discussion on how broker-dealers, investment advisers, investment companies, and other covered entities can:

• Interpret and operationalize the SEC’s new breach-notification and safeguard provisions
• Integrate privacy requirements into cybersecurity, risk, and governance structures
• Strengthen data governance and resilience while maintaining investor and consumer trust

Moderated by Amanda Georgoff, CRO at RadarFirst, this live dialogue will provide practical guidance for CISOs, CPOs, compliance leaders, risk officers, general counsel, and board members preparing for increased regulatory scrutiny and enforcement momentum.