FSA fines HSBC insurance businesses £3 million for data security failings
HSBC is fined by the UK regulator over information security systems and controls failings in its insurance businesses
LONDON - The Financial Services Authority (FSA) has fined three firms from within the HSBC banking group more than £3 million for having inadequate systems and controls to protect their customers' confidential data.
The UK regulator says the failure to protect information from being lost or stolen contributed to customer data being lost in the mail on two occasions. HSBC Life UK was fined £1.6 million, HSBC Actuaries and Consultants was fined £875,000 and HSBC Insurance Brokers was fined a further £700,000.
During its investigation the FSA said it found large volumes of unencrypted or otherwise unprotected customer data was sent via post or courier to third parties. Other data was left vulnerable to loss or theft on open shelves or in unlocked filing cabinets. Internal members of staff were also found to be insufficiently briefed on the resultant risks of identity theft.
The three units were judged to have failed to put adequate procedures, systems or controls in place to manage financial crime risks, despite a warning in July 2007 from HSBC Group Insurance's compliance team. The following February, HSBC Life lost in the post an unencrypted CD containing the details of 180,000 policyholders.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Regulation
Regulators question human-in-the-loop as AI governance tool
Bank of England and FSB executives suggest it’s more important to retain overall accountability
Esma supervisory switch could become ‘distraction’
Push to transform watchdog might hinder market reforms, say some
ECB urged to follow Fed’s lead on ‘material risks’
Senior banker at JP Morgan’s EU subsidiary backs US-style approach to streamlining supervision
EU weighs response to US dropping Basel capital floors
European regulators assessing whether US proposal amounts to a “substantial” deviation
The challenges facing Fed chair Kevin Warsh
New chair has pledged sweeping change, but can he keep Trump – and the FOMC – onside?
European Commission plans permanent changes to FRTB
EU legislator will start work on new rules later this year to ensure level playing field with US
Why bank stablecoin projects get stuck in the sandbox
Five years ago, a wave of banks launched stablecoin projects, but most never got beyond the testing phase
Banks fear US cross-product capital relief will fall short
Proposal to treat repo as futures for SA-CCR may not do enough to support UST clearing mandate
