18 Jun 2008
Stockbroker Merchant Securities (MS) was penalised by the Financial Services Authority (FSA) with a £77,000 fine for managing "weak data security controls" for customer information.
The holes in the firm’s security structure were discovered in September 2007 during a routine visit. The FSA then realised that MS’s staff used methods such as chatting to clients about "personal matters such as holidays or hobbies" because it didn’t have appropriate systems to identify them over the phone.
Further reading
MS also sent personal account numbers in correspondence to clients, information that could be used by fraudsters in conjunction with customers' names. And back-up tapes with unencrypted customer data were found in a bag at the home of a member of staff.
Even though MS was reportedly given a 30 per cent discount on the fine for co-operating with the FSA's enquiry – it would have been £110,000 – the watchdog said the firm’s behaviour was unacceptable.
'It is unacceptable that despite increased awareness of data security issues, a firm should be so careless about its systems for protecting customers' personal details,” said FSA’s director of enforcement Margaret Cole.
“People have the right to expect their details to be kept secure and firms should be committed to treating their customers fairly in all aspects of their business.”
Data leakage is an issue that should top the list of priorities at organisations from the financial services sector, said Deloitte’s head of investment banking technology risk David Bettesworth.
“A substantial amount of time and money is being spent by a number of organisations to put mitigating controls in place, but it will take time to address that problem,” said Bettesworth.
“The point is that this is not just about IT, but business processing issues which make it hard for organisations to understand where risks are and finding effective solutions to protect customer data,” he said.
Have your say on this article
Newsletters
Latest stories from Security Technology
Latest videos
You may also like
Security Technology jobs
Technology Patent Wars
Case studies from large organisations across all sectors
... And rich media, and flexible working, and peaks in traffic ...
Upcoming Events
Join us for this Computing web seminar, in which the Head of BI at the Co-operative Group Nick Colebourn will be explaining just how he reigned in the Group’s sprawling database estate and how significant savings were realised and data quality improved as a result.
Date: 31 May 2012
Time: 11:00 AM
Live June 13th 11:00am: Register now. During this web seminar we will be looking at the sorts of incidents that can bring data centres grinding to a halt and what can be done about them.
Date: 13 Jun 2012
Time: 11:00 am
Receive the latest jobs direct to your inbox
Are you being paid what you are worth?
