Another broker was fined $ 5,000 for sending unencrypted emails from his firm email address to his personal email address, and to a third party that included attachments containing nonpublic personal information for firm customers.
Access Privileges As part of its cybersecurity program, a Covered Entity must limit access privileges to Information Systems that contain Nonpublic Information.