Stockbrokers fined £77k
LONDON - The UK Financial Services Authority (FSA) has fined stockbroking firm Merchant Securities Group £77,000 for failure to protect its customers from the risk of identity fraud. It is the first time the UK regulator has fined a stockbroker for data security issues.
The regulator says Merchant Securities had inadequate telephone procedures for verifying customers' identities. In fact, the firm relied on recognising customers' voices over the phone and talking to them about informal matters such as hobbies and holidays. Personal account numbers, meanwhile, which could be used together with a customer's name, to access account information, were included in routine letters. The FSA also revealed that unencrypted back-up tapes upon which customer information was stored, were kept overnight at an employees home, while staff were allowed free access to personal messaging and web-based email services in the workplace.
The FSA discovered the failings in September 2007 during a visit to the firm as part of wider thematic research into how firms managed data security risks. There have been no known cases of identity theft related to the matter.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Regulation
EBA proposes drastic overhaul to supervisory data reporting
Revamp will cut back the number of datapoints and integrate overlapping reports
CFTC wants to regulate prediction markets. Is it up to the task?
Former officials echo state gambling authorities’ concerns over agency’s ability to police betting risks
EBA seeks to allay Simm divergence concerns
EU validator pledges to co-ordinate with global regulators, but retains ability to act alone “if needed”
FRTB models find salvation in US Basel III proposal
Changes to P&L attribution test and NMRFs make IMA viable for US banks, risk managers say
US blows the floors off Basel III
Barr criticises “downward deviations” in US rule; Bowman rejects “blind adherence” to global standards
Basel III endgame – a timeline
A review of Risk.net’s coverage of the US implementation saga
Leaked EU plans offer extra temporary relief for FRTB models
Risk factors would need only two observations to be modellable. Do changes foreshadow US Basel III?
Iosco chief talks cyber, AI and clearing
Buenaventura discusses Iosco’s role in aiding market resilience and cross-border co-operation
