Skip to main content

State Regulators Enter into Consent Order with Equifax

Today, eight state financial regulators entered into a consent order with Equifax, Inc. The order addresses serious deficiencies in the company’s cybersecurity program that resulted in the breach of personal data of almost 150 million consumers last year. 

The consent order can be read here. Announcements from individual states: California, New York, North Carolina, Texas.

Key facts:

  • Financial regulators from eight states led the action. The states represented are: Alabama, California, Georgia, Maine, Massachusetts, New York, North Carolina and Texas. 

  • The consent order arose from a joint examination these regulators performed of the company.

  • In the consent order, Equifax agreed to dramatically improve how it protects personally identifiable information. The company will undertake a restructuring of its risk management processes, strengthening of internal controls and processes, and enhanced oversight by the Board of Directors on the information security program.

  • The corrective actions will apply to Equifax’s operations nationwide.

  • Compliance with the consent order will be subject to regulator approval. Follow-up reports are required from the company.

  • The consent order preserves the right of individual states to bring additional actions.

Recent Blog Posts

Blog post
Community banks have just over two weeks to complete the CSBS 2019 Community Bank Survey. Responses are due by June 30.
Jun 14, 2019
Blog post
Consumer protections are always top of mind for state financial regulators. And protecting the elderly is a growing concern.
Jun 13, 2019
Blog post
Pennsylvania Department of Banking and Securities Secretary Robin Wiessmann explains what state regulators are doing to create a model payments law.
Jun 6, 2019
Blog post
CSBS President and CEO John Ryan explains how the annual State-Federal Supervisory Forum strengthens the network of supervision.
May 30, 2019
exit