Small-Entity Compliance Guide is intended to aid compliance with previously issued interagency guidelines
Federal banking agencies have issued guidelines to help small banks implement the Interagency Guidelines Establishing Information Security Standards.
The Interagency Guidelines implement section 501(b) of Gramm-Leach-Bliley and section 216 of the Fair and Accurate Credit Transactions Act, and establish standards for the security of customer information.
The guidelines, however, do not address any other state of federal laws that may concern customer information.
The guidelines apply to any personal information that institutions gather, whether or not the person becomes a customer.
Source: IT Compliance Institute