The Gramm Leach Bliley Act, or GLBA for short, repealed the Glass-Steagall Act, allowing commercial banks, investment banks, securities firms, and insurance companies to merger.
Because the legalization of these types of mergers meant that a single financial institution would have access to a vast amount of individuals’ personal information, such as mortgages and health records, the GLBA also included financial privacy provisions for the secure storage of, notification for the sharing policies of, and the ability to opt out of the sharing of personal information.
The GLBA went into effect on November 12, 1999. Businesses under regulation by the GLBA were required to be in full compliance by July 1, 2001. The GLBA is officially titled the Financial Services Modernization Act of 1999.
To understand why the Gramm Leach Bliley Act exists, you need to know what the Glass-Steagall Act is.
The Glass-Steagall Act refers to four provisions - specifically sections 16, 20, 21, and 32 - of the U.S. Banking Act of 1933 that essentially separated commercial banks activities from investment bank activities. These provisions were included in the U.S. Banking Act of 1933 as a response to the U.S. stock market crash in 1929.
Much of the blame for the stock market crash was placed on commercial banks and their involvement stock market. The following sequence of events led to the stock market crash on October 29, 1929:
As you can see, there were long-lasting, devastating effects of the stock market crash, none of which government officials were eager to repeat.
And so, they set about creating legislation that would prevent commercial banks from participating in investment bank activities. They accomplished this with four provisions, collectively known as the Glass-Steagall Act, in the U.S. Banking Act of 1933.
The four provisions prohibited the following activities:
In short, the Glass-Steagall Act made it illegal for commercial banks, investment banks, securities firms, and insurance companies to merge to form a singular financial institution that dealt with both commercial banking services as well as investment banking services.
Once the Glass-Steagall Act went into effect on June 16, 1933, banks and financial institutions were given a 1-year deadline to decide whether they wanted to be a commercial bank or an investment bank. For commercial banks, an exception was made so that they could at least have up to 10% of their income coming from securities.
Of course, something as catastrophic as the stock market crash would prompt legislators to attempt to pinpoint the cause and then pass legislation that prevent such an event from occurring again. In fact, there was a popular belief that separating commercial banks from investment banks could beneficial for inducing a healthier financial system. However, as even the co-author of the act, Senator Carter Glass, would soon admit that the passing of the act was an overreaction to the stock market crash.
Although its intentions were to prevent another stock market crash from occurring, the act had negative consequences on the abilities of financial institutions to provide competitive, needed financial services. The negative consequences became clearer in the 1960s as more and more commercial banks began to adopt a looser interpretation on the prohibitions created by the Glass-Steagall Act, in order to effectively compete with each other, by creating products and services that blurred the line between banking and securities.
In 1998, Citigroup, a commercial bank holding company, and Travelers Group, an insurance company, merged together to form Citigroup, which ended up combining banking, securities, and insurance services under one financial institution. Although this merger violated the Glass-Steagall Act, the Federal Reserve actually granted them a temporary waiver against the Glass Steagall Act.
At this point, it was clearly obvious that the Glass-Steagall Act was more repressive as opposed to beneficial for the modern financial landscape: when the economy is good, people tended to invest their money, but when the economy is bad, people tended to save their money in savings accounts. It just made sense that financial institutions be allowed to provide both types of services.
And so, legislators went to work the repeal the prohibitions enacted by the Glass-Steagall Act by enacting the Gramm Leach Bliley Act in 1999. In addition to rolling back the Glass-Steagall Act prohibitions, the Gramma Leach Bliley Act made mergers, like the Citigroup merger described above, legal.
It should be noted that the Gramm Leach Bliley Act is not without its own controversy; many believe that the repealing of the Glass-Steagall Act is what allowed the stock market crash of 2008 to occur.
Because the Gramm Leach Bliley Act allows for merging of commercial banks, investment banks, securities firms, and insurance companies, legislators realized that whenever there was a merge, a financial institution would have a vast amount of personal financial and health information on each customer who does business with the financial institution.
To protect customers and their personal information, the Gramm Leach Bliley Act included three regulations that financial institutions needed to follow to secure all this personal information:
In essence, financial institutions comply with the Gramm Leach Bliley Act by:
If your business is a financial institution, the Gramm Leach Bliley Act does apply to your business, and therefore, is required to comply with the regulations described in the section above in order to comply.
A financial institution is a company that offers financial products or services to individuals, like loans, financial or investment advice, or insurance”; financial institutions include the following:
If your business is not a financial institution, the Gramm Leach Bliley Act does not apply to your business, and therefore, you do not have to do anything in order to comply.
Much of the Gramma Leach Bliley Act’s rules and regulations have been covered, but there are certain details that are too nuanced to sufficiently address here.