FTC Safeguards Rule (GLBA) Compliance

Mosaic's Solution covers all the requirements of the revised FTC Safeguards Rule and offers a-la-carte options so you can build a program that fits your needs.

STep 1

Fill out a Safeguards Status Questionnaire.

Get Quote

Download

STep 2

We’ll contact you to provide a complimentary consultation based on your responses.

Book Meeting

STep 3

Build your custom roadmap for complete compliance.

Get Started - Safeguards

Written Risk Assessments & Vendor Oversight

Endpoint Detection & Response

Qualified Individual & Employee Training

Documentation, Processes & Procedures

2

4

6

8

1

Ongoing Vulnerability Scanning

Program Roadmap

3

Multifactor Authentication

5

Data Encryption

7

Simulated Phishing

Learn more about all the revised Rule's requirements and our solutions to each.

Learn More

Written Information Security Program (WISP)

A written Information Security Program or “WISP” is the document that defines the administrative, technical, and physical safeguards you will use to protect the customer data that your business collects. Your WISP should address the risks identified in the risk assessment that you conduct and how you plan to mitigate these risks.

Learn More

See How We Compare

Mosaic Cyber Security offers a solution that covers every requirement of the revised FTC Safeguards Rule.

Our solution

We aim to provide our clients with a one contract, one invoice, and one check solution where everything needed is covered.

Unique Needs

Because no one company provides the necessary tools to address each of the Rule’s requirements, Mosaic Cyber Security acts in the nature of a general contractor, vetting potential subcontractors and assembling a team to construct a customized solution tailored to each dealership’s unique needs.

One Contract, One Invoice, One Check

This allows dealers to enjoy the benefit of Mosaic’s volume discounts for subcontractors’ services, as well as the convenience of having one contract, one invoice, and one check.

How is Mosaic Different?

The Mosaic Safeguards Solution is being developed (it’s a continuous process) by lawyers, not techies. Data Security professionals are important to answer the How questions, but lawyers are the right professionals to answer the Why question.

How to Get Started

Every dealership’s Safeguards posture is different, but every dealership needs to perform a Risk Assessment (including a Vulnerability Assessment) and craft a Written Information Security Program (“WISP”), so that’s where we start. Complete the Safeguards Status Questionnaire either online here or download, complete, and return it to responses@MosaicCS.com. A Mosaic representative will get in contact with you and discuss the way forward appropriate for your needs.

Get Started

Defensible and Insurable

Why does Mosaic take the approach it does? Because the point is to create a solution that is both defensible and insurable. A solution must not just defend consumer data, it must protect the dealer as well. It is possible to both minimally satisfy the Safeguards Rule and leave customer (and dealership) data vulnerable. Thus, the lowest cost approach may be a false economy. If you want the cheapest solution, go elsewhere. If you want the most effective, you’re in the right place.