Sales League Table 2020 | Banking Technology Winners

Results Announced!

Stay up-to-date with the latest industry news and analysis.

Subscribe to BankTech Daily News today. Limited time offer.

The Black Swan Opportunity | Get your bank digital ready.

IBSI Special 5 Digital Report Package with Special Offer. Subscribe now

Core Banking Market Dynamics Report 2020

Global analysis of core banking system sales. Subscribe now

Over 50% of investment firms won’t meet the GDPR deadline

Michael Corcione, Managing Director, Cybersecurity and Data Protection Consulting Services at Cordium

With only 30 days until implementation, more than 50% of investment firms globally are unlikely to be ready for the European Union’s new General Data Protection Regulation (GDPR) on 25 May 2018. This is according to a global industry survey of over 250 financial firms carried out by Cordium, a leading provider of governance, risk and compliance services, along with AmberGate, a data protection and security compliance specialist.

Designed to benchmark investment management firms’ readiness for GDPR, the survey revealed a lack of preparedness in advance of the regulation’s implementation date. With time running out, only 2% of surveyed firms had finished putting their GDPR policies and procedures in place; 59% of firms said they were unprepared to comply with the required 72-hour window to report a personal breach to regulators; and 64% were unprepared to respond to an exercise of data subject rights.

Michael Corcione, Managing Director, Cybersecurity and Data Protection Consulting Services at Cordium said: “Companies that have not yet started their GDPR program – or those still at the early stages – expose themselves to significant compliance and reputational risk. Lack of readiness is due to a failure by firms to understand their exposure to the regulation, as well as MiFID II’s earlier deadline, leaving GDPR to fall down the priority list. With just a four-week window firms should be practicing these procedures, not defining them.”

Robert Baugh, Founder and CEO, AmberGate, said: “The lack of GDPR preparedness in the industry is concerning, particularly given the risk of regulatory action and the potential impact to a firm’s reputation. Many firms will now need to divert significant resource and time to the project – there is clearly still much to do across most organisations. Firms will face growing pressure from an internal governance perspective, from investors, and from regulators likely to take an increasingly firm stance on the issue.”

The European Union’s GDPR comes into effect next month and introduces a demanding set of data privacy and security requirements on firms, with potential global reach. GDPR greatly extends EU data protection law’s territorial reach, not only applying directly to firms based in the EU but also, for example, to those offering services to or monitoring the data of individuals in the EU, irrespective of where the firm is located.

Related IBS Intelligence Research

Related Posts

BNY Mellon to boost real estate fund administration services for Deka Immobilien

BNY Mellon announced today that Deka Immobilien has selected the former’s services for the provision of global fund administration coordination and oversight for its Special Purpose Vehicles (SPVs). BNY Mellon is expected to coordinate accounting data from the SPVs around the world in which Deka funds invest, review the data, translate it into the required […]

This post is only available to members.

Read More »

PPRO study shows younger generations leading the UK alternative payment method adoption

A new study by PPRO has revealed that younger generations are spearheading the adoption of alternative payment methods (APMs), including bank transfers and e-wallets. The study showed that 42% of the Millennials and 35% of the Generation Z respondents have either used the above-mentioned methods of payments before or are confident using them. UK consumers […]

This post is only available to members.

Read More »