Luxembourg
01 March 2017
Reporter: Stephanie Palmer
ITAS: TAs given stark warning on data security
Transfer agents must be aware of, and reactive to, the increasing importance of cyber security, according to William Long, partner at law firm Sidley Austin.

Speaking at ITAS Luxembourg, Long told attendees that every business represented in the room “will be affected by a cyber security incident”.

Coping with the fallout from a cyber security attack “can be extremely painful”, resulting in job losses, a direct impact on profits, and reputational damage and a subsequent dip in share prices.

When the EU’s General Data Protection Regulation (GDPR) comes into effect next year, a cyber breach could also lead to “mouth-wateringly large” fines, Long said, of up to 4 percent of annual global turnover, a deliberately “persuasive figure”.

The new regulation mandates a more controlled process around gaining consent to use a client’s data, introduces a right to object to automated data profiling and a right to erasure, meaning clients can, in some cases, request data to be deleted. It also introduces the potential for individuals to file damages claims in the case of a data breach, even for non-financial loss.

In the financial services space, Long said, firms will have to take a “privacy-by-design, privacy-by-default” approach to data, only collecting the minimum amount and building privacy into processed and procedures in an “antithesis to the world of big data”.

The new rules also mean that where a vendor processes data on behalf of an asset manager, “service agreements will have to be amended”.

To manage cyber risk and the impending new regulatory requirements, Long said risk mitigation is key. Firms should determine their risk profile and get procedures and policies in place to prepare for a data breach, clarifying what the “crown jewels” are, where they are, and who is looking after them.

“Frankly,” Long asked, “are they up to the job?” He advised attendees to first identify the relevant people to have on a breach response team, with coordination between human resources, IT, legal and governance teams.

More technology news
The latest news from Asset Servicing Times
Join Our Newsletter

Sign up today and never
miss the latest news or an issue again

Subscribe now
Euroclear embarks on fintech partnership for automated asset allocation
15 June 2017 | Brussels | Reporter: Stephanie Palmer
Euroclear has partnered up with UK-based financial technology company Quantessence, to provide an automated platform for running asset allocation algorithms
Chinese fintech breeding global opportunities
14 June 2017 | Berlin | Reporter: Stephanie Palmer
Chinese innovation in financial service poses an opportunity for the wider fund management industry, according to Porter Erisman, former vice president at Chinese ecommerce platform giant Alibaba Group.
Robo revolution at risk
14 June 2017 | Berlin | Reporter: Stephanie Palmer
Robo advisory services may boost efficiency in portfolio management, but they could be at risk of a crash if they don’t adhere more closely to regulation, according to speakers at Fund Forum International
SimCorp embraces derivatives liquidity boost
09 June 2017 | London | Reporter: Stephanie Palmer
SimCorp is partnering up with multi-dealer derivative platform OTCX to provide a more integrated trading workflow for OTC derivatives
RBC and Commcise launch MiFID II-compliant research payment tool
08 June 2017 | London | Reporter: Stephanie Palmer
Royal Bank of Canada is partnering with Commcise to provide segregated research payment accounts for buy side clients, to help them in compliance with MiFID II
NEX enlists Duco for MiFID II reconciliations requirements
07 June 2017 | London | Reporter: Stephanie Palmer
NEX Regulatory Reporting is partnering with Duco, a data normalisation and reconciliation service provider, to aid its clients in compliance with MiFID II
New CCP system promises efficient collateral management
06 June 2017 | Stockholm | Reporter: Mark Dugdale
Trading and clearing technology provider Cinnober has launched a risk management system for central counterparties
More technology news