The Gramm-Leach-Bliley Act (GLBA) is a federal law that was enacted in 1999 to protect the privacy of individuals' financial information held by financial institutions. The GLBA requires banks to: * Provide customers with annual notice of their privacy policies, and to give customers the right to opt-out of having their information shared with non-affiliated third parties. * Put in place reasonable safeguards to protect customer information from unauthorized access. These safeguards include physical, electronic, and procedural protections such as data encryption, password protection, firewalls, and other security measures. * Banks must also regularly monitor and test their systems for vulnerabilities.