Gramm-Leach-Bliley Act (GLBA) requires financial institutions, particularly those who lend money or perform collections activities, to take steps to ensure the security and confidentiality of customer information. While Case Western Reserve is primarily an educational institution, we are also considered a financial institution because we lend money to students. We also perform collections activity on past due accounts. As such, we are required to comply with GLBA and protect our students’ non-public personal information (NPPI).
Non-public personal information (NPPI) can include name, address, phone number, social number number, account number, date of birth, and any other personally identifiable information. NPPI can also include any resulted financial transactions (such as account balance, grants, loans, etc.) between the student and CWRU.
CWRU has added a new GLBA training course for faculty and staff whose job duties require them to interact with NPPI protected under GLBA or who have access to student financial account data in the Student Information System (SIS) even if they do not use it regularly.
To request or retain access to student financial account data in SIS, CWRU faculty and staff are asked to complete the GLBA Compliance and Cybersecurity Fundamentals training course. Click on the link to self enroll in the course through (CWRU login and password is required).