PII SSN question

A question for those who have worked on PII and Social Security Number (SSN).

What are the storage and transmission security requirements for SSN?
Are we allowed to store SSN? What are the rules and/or regulation
that apply? What does IT have to do to protect it?

Any feedback is appreciated.