The Gramm-Leach-Bliley Act


The GLBA Act: The Gramm-Leach-Bliley Act requires financial institutions – companies that offer consumers financial products or services like loans, including car dealerships, to safeguard sensitive personal/customer data.

GLBA-covered businesses, which include Automotive dealerships, have until December 9 to implement significant changes to their information security programs as required by the recently amended GLBA Safeguards Rule, amended in Dec of 2021.

The changes to the rule took effect in January 2022, and the compliance deadline is December 9, 2022, however, to ensure compliance, we will be implementing our safeguards in mid-October.

Next Steps:

As an auto dealership, you collect a range of personal information about your customers in the course of normal business. This includes information like an address, phone number, email, credit card number, social security number, and more. It’s important to understand that your dealership is subject to strict laws through the GLB Privacy Rule about how you can share this information.

As a result, any vendor or partner working with a dealer must make sure their customer data, that may come in as a lead to our website, is protected under MFA (multi-factor authentication). In addition, we can no longer send this data in an email to the dealer, this personal data must also be protected, which is why we will be sending a “notification of a lead” in the future, and asking dealership to log into the platform using MFA to access that data.

Once implemented, the first time a customer or employee of the company that can access the location where this data is kept will need to choose to MFA (Multi-factor authenticate) in one of two ways. They can download the Microsoft authenticator app and approve the request that way moving forward, or they can enter their phone number and receive a code each time they log in to the platform.

The first time a user logs in to the standard DealerSocket – Autopoint login page will get redirected to a page where it will ask the users to select their way of login, either by Phone or by using Microsoft Authenticator. User can select one or both the options, by checking one or both boxes.


While selecting Phone and clicking on Continue button, it should redirect to the page which asks for the registered number to send Verification code.

Once you click on ‘Send verification code’ button, it asks to enter the code sent on the registered phone number. You also have additional functionalities to ‘Verify Code’ or ‘Send New Code’.

Once you enter the correct code and click on Continue button, the login is successful.


Click on Authenticator App and click on continue button.

It will redirect to the page that will ask for the code to verify.

Scan the above QR code using the Microsoft Authenticator App under Verified IDs on your mobile phone to receive the code. Once you enter the correct code and click on ‘Verify’ button, it will take you to the home page.



"*" indicates required fields


AutoPoint dealership and service center software transforms the vehicle ownership experience, bringing together every service necessary for providing unmatched automotive customer service. Our industry-leading tools empower dealerships and OEMs with a robust technology platform that demystifies sales and customer retention.

Our powerful software suite contains every tool dealerships and OEMs need to promote sales, launch effective digital and email marketing campaigns, provide maintenance support, supply proper documentation, and increase customer retention. Our comprehensive software solution supports you every step of the way so that you can ensure top-notch customer satisfaction.