The leading knowledge platform for the financial technology industry
The leading knowledge platform for the financial technology industry

A-Team Insight Blogs

Next Year’s European Data Privacy Reforms Could Potentially Have a Significant Impact on Data Storage and Access

The UK government has this month issued a call for evidence on the current European data protection legislative framework, ahead of European-wide negotiations on an update of the European Data Protection Directive 95/46/EC due at the start of next year. Reforms could potentially have a significant impact on the data storage and access requirements for financial institutions and therefore entail a reworking of firms’ current data warehouses and EDM systems.

The UK’s call for evidence, which is open until 6 October 2010, is asking for general feedback on the current data privacy practices and recommendations for improvement. At the same time as this information gathering exercise, the government has also published a provisional post-implementation review impact assessment of the Data Protection Act 1998, on which it is also asking for comments.

The call for evidence has broken down the areas in which the government is seeking feedback upon into seven categories: definitions; data subjects’ rights; obligations of data controllers; powers and penalties of the Information Commissioner; the principles-based approach; exemptions under the Data Protection Act; and international transfers. In terms of impact, the move from a principles-based approach to a more prescriptive environment could potentially significantly alter financial institutions’ obligations and data management practices.

The politicians are keen to revise these requirements, however, as it has been 15 years since the European directive was passed and technology has moved on substantially since that time. The legislation will therefore need to take into account trends such as the storage of data in the cloud and mobile technology in order to better address data privacy risks posed by these technological innovations. The call for evidence notes: “It is important that any new legislative changes take into account the way technology is advancing, enabling it to be ‘future proofed’ as far as possible.”

Data managers will need to keep a close eye on developments, as they happen and feed back any recommendations to the relevant bodies in their jurisdictions in order to ensure data privacy requirements to not become overly prescriptive and difficult to navigate. The likelihood is that many new requirements will spring from the updated directive and these could mean extra security measures, but they could also mean the reworking of current EDM systems to separate different levels of data by the nature of its customer sensitivity.

Related content

WEBINAR

Recorded Webinar: Entity identification and client lifecycle management – How financial institutions can drive $4 billion in cost savings

A new model in Legal Entity Identifier (LEI) issuance has created significant opportunities for financial institutions to capitalise on their KYC and AML due diligence. By becoming Validation Agents and obtaining LEIs on behalf of their clients, financial institutions can enhance their client onboarding experience, streamline their internal operations, and open the door to new,...

BLOG

DANIE Consortium Uses Game Changing Privacy Enhancing Technology to Improve Client Reference Data Quality

The DANIE consortium set up to help financial institutions improve the quality of their client reference data by benchmarking data with peers without revealing data sources and with encryption, is calling for banks to confirm places in its 2021 community by 18th December 2020. You can find out more and sign up by contacting community@danie.tech....

EVENT

Data Management Summit London

The Data Management Summit Virtual explores how financial institutions are shifting from defensive to offensive data management strategies, to improve operational efficiency and revenue enhancing opportunities. We’ll be putting the business lens on data and deep diving into the data management capabilities needed to deliver on business outcomes.

GUIDE

Regulatory Data Handbook 2020/2021 – Eighth Edition

This eighth edition of A-Team Group’s Regulatory Data Handbook is a ‘must-have’ for capital markets participants during this period of unprecedented change. Available free of charge, it profiles every regulation that impacts capital markets data management practices giving you: A detailed overview of each regulation with key dates, data and data management implications, links to...