What defines nonpublic personal information (NPI)?

Nonpublic personal information (NPI) refers specifically to private information that is not available from public sources, making it sensitive and subject to privacy regulations. This type of information can include details like a consumer's financial data, social security number, or account details, which are not generally accessible to the public.

The definition of NPI is crucial as it establishes the boundaries for what constitutes sensitive information that requires protection. Laws such as the Gramm-Leach-Bliley Act (GLBA) emphasize safeguarding this type of information to ensure consumers’ privacy and financial security.

Other options are either too broad or focus on details that do not align with the definition of NPI. Public records refer to information accessible to anyone and do not encompass private details. General consumer information can include both public and nonpublic categories, so it doesn’t specifically define NPI. Stolen information, while illegal and sensitive, does not fall under the NPI framework as it emphasizes information that is legitimately held and requires protection.