Which act must organizations comply with to protect consumer financial information?

Organizations must comply with the Gramm-Leach-Bliley Act to protect consumer financial information because this act specifically mandates financial institutions to safeguard sensitive customer data. The law requires these institutions to implement privacy policies that disclose how they collect, use, and share consumer information, and it provides consumers with the right to opt-out of certain information-sharing practices.

The Gramm-Leach-Bliley Act is focused on the financial sector, establishing requirements for the protection of personally identifiable financial information held by financial institutions, thus ensuring that consumers' privacy is prioritized. Compliance with this act helps organizations prevent identity theft and misuse of financial information, enhancing overall consumer trust in financial services.

In contrast, other acts listed focus on different types of information. For example, the Family Educational Rights and Privacy Act governs educational records, the Health Insurance Portability and Accountability Act addresses health information privacy, and the Children’s Online Privacy Protection Act concerns the online data collection from children under the age of 13. These acts do not specifically target consumer financial information, which differentiates the Gramm-Leach-Bliley Act as the correct answer in this context.