New data protection regulation to hit financial services with €4.7bn in fines

European financial institutions are forecast to face fines totaling €4.7bn (£4.14bn) in the first three years under incoming General Data Protection Regulation (GDPR).

 

Thursday 22

New data protection regulation to hit financial services with €4.7bn in fines

That is according to a new report from Consult Hyperion, which predicts 384 data breaches by 2021, each incurring fines as high as €260m, with additional regulations potentially bringing further liabilities.

 

The consultancy firm said that their forecasts were conservative, excluding compensation claims, costs associated with lost customers, damaged reputations, and senior executive resignations.

 

“Financial institutions are myopically focused on preventative measures, ignoring the importance of the resilience,” Bo Holland, CEO of AllClear ID, which commissioned the report, said.

 

“History tells us that companies that have dealt with data breaches poorly have seen loss of customers, reduced earnings and board level resignations. GDPR raises the stakes even higher.”

 

The GDPR comes into force in May next year, and is designed to harmonise data privacy laws across Europe, giving extra protection to citizens’ data privacy, and applies to all firms that do business inside the EU.

 

Breaches can hit institutions with fines of up to 2% of their previous year’s global annual revenues for a first offence, and 4% for repeat offences, while criminal penalties are also possible.

 

The report says the most risky feature of the GDPR is a 72-hour breach notification requirement. “Financial institutions that have not invested in response readiness will face the most serious fines and collateral business damage,” Holland added.

 

In addition, firms in the UK will be under further pressure to protect data after the Queen’s Speech introduced a new Data Protection Bill yesterday, intended to increase privacy and give citizens the right to be forgotten.

 

“The tech sector shares the government’s ambition of making the UK the safest place to be online,” techUK CEO, Julian David, said. “However, there is a fine line between strengthening protection and over reaching rules that constrain the creativity of businesses and citizens.

 

“Collaboration, cooperation and trust are key to creating a safe and secure digital world.”

 

Most popular

  1. Financial firms record 85% increase in cyber security spending

    Finance and insurance companies in the UK invested more money in cyber security than any other type of firm over the latest financial year, new analysis has found.

     

    Monday 16

     

    16 July 2018

  2. Company board members want more cyber security spending

    The vast majority of company board members across the world believe their firms should spend more money on cyber security, a new global survey has found.

     

    Monday 25

    25 June 2018

  3. InsurTech deal numbers hit record high

    There were a record 66 InsurTech investment deals recorded in the first quarter of this year as insurers continued to look to start-ups to improve their claims handling and underwriting excellence.

     

    Wednesday 23

     

    23 May 2018

White paper

  • Quarterly InsurTech Briefing Q1 2017

    Why InsurTech? A Pressured Insurance Value Chain

    By Andrew Sagon, Andrew Johnston and Matthew Wong

    InsurTech is a burgeoning phenomenon that is modernising the insurance industry. It is disrupting the traditional value chain whereby insurers offer loss protection, and shifting the emphasis to risk mitigation. Incumbents face disintermediation as investors in search of higher yields pour money into insurance-linked instruments in the capital markets. And entrepreneurial businesses are targeting friction costs and inefficiencies within every aspect of the traditional value chain.

     

     

  • Insurance big data – float like a butterfly, sting like a bee

    Nimbleness and agility will unlock potential

    By Elinor Friedman, Andrew Harley and Klayton Southwood

    Recent Willis Towers Watson surveys in the U.S. have shown that P&C and life insurers in developed markets are taking seriously the potential of big data and predictive analytics to improve their businesses. Nimbleness and agility, rather than brute force, are likely to be key to realizing that potential.

    Download PDF

  • The new era of insurance analytics

    Driven by technology, toolkits and talent

    By Claudine Modlin and Graham Wright

    Advanced analytics is helping some insurers offer innovative products and solutions. What do insurers need to know about the changing nature of analytics and whether it is worth the investment? Claudine Modlin and Graham Wright discuss technology, toolkits and talent — topics that may help you decide.

    Download PDF

  • How can we manage the dynamic nature of cyber-risk?

    Risk transfer is part of a comprehensive solution

    By Adeola Adele, Patrick Kulesa, Kevin Madigan and Alice Underwood

    Given the dynamic nature of cyber-risk, taking a multidimensional approach that integrates board governance, technology solutions, behavioral change and risk transfer solutions can help reduce risk to a manageable level.

    Whitepaper Form