Auto dealers are classified as financial institutions under the FTC Safeguards Rule (16 CFR Part 314). That means every Texas dealership must maintain a documented information security program — or risk FTC enforcement.
What the Rule Requires
- Designate a Qualified Individual to run the security program.
- Maintain a written information security program (WISP), reviewed regularly.
- Protect customer data with encryption in transit, MFA, and access controls.
- Conduct continuous monitoring or annual penetration testing, vendor oversight, and staff training.
Where Email Security Fits
Encrypted, authenticated email and transport security are among the first things the rule’s safeguards touch — and the first things our audit scores. Run a free scan at audit.emailmenow.com/?industry=auto-dealers to see your SPF, DKIM, DMARC, and transport posture.
The Golden Rule
Document everything and review your program annually. A documented program is also your defense under the Texas SB 2610 Safe Harbor.
Get compliant. Contact EmailMeNow IT Consulting for a written information security program and email security hardening for your dealership.