
FSA fines HSBC insurance businesses £3 million for data security failings
HSBC is fined by the UK regulator over information security systems and controls failings in its insurance businesses
LONDON - The Financial Services Authority (FSA) has fined three firms from within the HSBC banking group more than £3 million for having inadequate systems and controls to protect their customers' confidential data.
The UK regulator says the failure to protect information from being lost or stolen contributed to customer data being lost in the mail on two occasions. HSBC Life UK was fined £1.6 million, HSBC Actuaries and Consultants was fined £875,000 and HSBC Insurance Brokers was fined a further £700,000.
During its investigation the FSA said it found large volumes of unencrypted or otherwise unprotected customer data was sent via post or courier to third parties. Other data was left vulnerable to loss or theft on open shelves or in unlocked filing cabinets. Internal members of staff were also found to be insufficiently briefed on the resultant risks of identity theft.
The three units were judged to have failed to put adequate procedures, systems or controls in place to manage financial crime risks, despite a warning in July 2007 from HSBC Group Insurance's compliance team. The following February, HSBC Life lost in the post an unencrypted CD containing the details of 180,000 policyholders.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Regulation
Jane Street rivals call for wider probes of manipulation claims
Sebi allegations raise concerns about similar behaviour in US and European markets
EU firms want clarity on new active account operational test
Final Esma rules reduce burden, but require firms to prepare for higher onshore clearing volumes
Former OCC chief on the sting of peeling the Basel III ‘onion’
Michael Hsu warns successors not to cut bank capital or neglect rate risks that destroyed SVB
Can vendors and CTAs escape the CFTC’s clutches?
Withdrawal of Sef perimeter advisory may provide greater flexibility for new breed of crypto tools
Fed succession planning: will Trump stick to the script?
The race to succeed Jerome Powell as head of the world’s most powerful central bank has already begun
Japan regulator calls on laggards to keep Basel promise
After EU and UK delays – and amid fears of US divergence – Japan is keeping a close eye on its peers, says Shigeru Ariizumi
For Esma to triumph as supervisor, it must stop being Esma
Europe’s markets watchdog may soon have sweeping new powers, but experts say it will have to shed its reputation as slow, expensive and process-driven if it is to succeed
Industry warns EU not to imitate US equity market rules
Adopting a US-style equity order protection rule will hinder, not bolster EU markets, groups say