June's FCA round-up is dominated by the issue of cyber security. We know from recent client training days that this is a real growth area for compliance officers - especially in the FinTech sector, where cyber often underpins whole business models. Never one to miss a trick, the FCA has this month published a new one-page reference guide on good cyber security for regulated firms.
According to the FCA's stats, it received 90 cyber-related notifications last year, up from single figures two years ago. And it's probably worth questioning whether this is comprehensive, as we suspect many firms don't realise they have a regulatory duty to report material breaches. If a cyber incident results in data loss, unauthorised access to information, or could impact large numbers of clients, firms are required to make a PRIN 11 notification.
With the number of high profile cyber incidents growing, it's worth taking time to review your firm's approach, and consider whether your disaster recovery and business continuity plans are fully up to date.
Also on the FCA's radar this month is a recently completed piece of follow up work on Appointed Representatives (ARs), that will be of interest to both principal firms and ARs themselves. In July last year, the FCA conducted a thematic review of AR relationships in the general insurance sector, and found many shortcomings. This month, it has released the findings of follow up work showing:
We just sent you an email. Please click the link in the email to confirm your subscription!
OKSubscriptions powered by Strikingly