The amendment will require non-bank financial institutions to report when they discover that information affecting 500 or more people has been acquired without authorization.

The Federal Trade Commission has approved an amendment to the Safeguards Rule requiring non-banking institutions to report certain data breaches and other security events to the agency.