Data Protection

Cyber and Payments Are Priority Areas for Policy Changes

Posted on September 18, 2020

Elisabeth Stheeman of the Financial Policy Committee outlined the new frameworks for building operational resilience against cyber risks and protection of payment chains.

By Brett Carr and Stuart Davis

On 9 September 2020, Elisabeth Stheeman, an External Member of the Financial Policy Committee (FPC) for the Bank of England (BoE) delivered a speech entitled, “The Financial ‘Plumbing’ Committee: from Plumbing to Policy” outlining the changes that financial services firms can expect in two priority areas — cyber and payments — in order to build operational resilience of the financial system.

World Economic Forum Launches First-of-Its-Kind Blockchain Deployment Toolkit

Posted on April 28, 2020

Posted in Blockchain, Data Privacy and Cybersecurity

The resource aims to help businesses create more resilient supply chains and trusted data by responsibly deploying blockchain technology.

By Stuart Davis, Fiona Maclean, Andrew Moyle, Jenny Cieplak, Mitch Rabinowitz and Masha Smith

The World Economic Forum has launched a new, first-of-its-kind resource — Redesigning Trust: Blockchain Deployment Toolkit (Toolkit) — to help organizations responsibly develop and deploy blockchain technology based on their business needs. The resource aims to address the need for more resilience, trust, and efficiency in global supply chains.

The Toolkit reflects the ongoing efforts of numerous experts at the intersection of law and technology to document blockchain deployment best practices. It contains 14 modules addressing key topics, considerations, and challenges implicated in blockchain deployments. Latham lawyers both drafted and contributed to sections on Consortium Governance, Data Protection, Personal Data Handling, and Legal and Regulatory Compliance.

Regulator Raises Concerns Over Alternative Data

Posted on January 31, 2020

Posted in Data Privacy and Cybersecurity

The FCA is considering whether alternative data could introduce new risks to market integrity.

By Rob Moulton, Fiona Maclean, Stuart Davis, and Charlotte Collins

The FCA’s recently published Insight article explores how alternative data might give rise to market abuse risks. The article reports a significant increase in spending on alternative data in recent years, leading to questions about whether access to such data might provide recipients of the data with an unfair informational advantage over other market participants.

While traditional sources of data, such as a company’s financial statements, may contain inside information and must be treated appropriately before they are made public, the nature of alternative data is less clear-cut. Alternative data does not come from the company itself, and may derive from (or be extrapolated from) a number of sources. Alternative data may allow those with access to know things about a company that others in the market do not know, or that the company itself does not know. This may be the case, even if, as is frequently the case, the pool of structured/unstructured data used by the analytics engine is in the public domain. Evidently, this could provide trading opportunities that put the holder of such information at an advantage, as compared with other market participants.

A key example of where alternative data has raised concerns recently is in relation to so-called “secret polling”. The government has had exchanges with the FCA concerning the potential use of private polling data to obtain a trading advantage in advance of election results. The regulator’s view is that, while the Market Abuse Regulation (MAR) might be engaged by such activities, MAR would only apply if the underlying information were to constitute inside information. This is unlikely to be the case, unless the information met the MAR recital 28 test of information “routinely expected by the market” to be published, such as weekly BBC opinion polls. Therefore, MAR does not restrict the sharing of polling information that is not inside information. However, this position clearly raises political questions of fairness, as those able to pay for and access the data may well gain an advantage in the market, and those providing the data may not understand the use to which it will be put.

Financial Institutions and the Cloud: How to Navigate an Evolving Regulatory Landscape

Posted on November 12, 2019

Posted in Data Privacy and Cybersecurity, Digital

Insights from Latham’s flagship event: Managing the risk and promise of digitisation in financial services.

By Fiona Maclean, Stuart Davis, and Alistair Wye

In a bid to keep pace with rapid advances in cloud adoption across financial services, regulators have published a raft of new guidance in the past year. Most recently, the European Insurance and Occupational Pensions Authority launched guidelines for insurers and reinsurers on outsourcing to cloud providers in July 2019, while the European Banking Authority (EBA) published updated guidance on outsourcing that came into effect on 30 September 2019, covering both cloud and other outsourcings.

We discussed some of the challenges facing financial institutions in the evolving area of cloud compliance at our recent event entitled Balancing the Scales: Managing the Risk and Promise of Digitisation in Financial Services. One key issue highlighted in the discussion is that the new EBA guidelines do not contain an overarching split between cloud and non-cloud arrangements, and there are no general exclusions or exceptions for new entrants or FinTech providers. Entities subject to the EBA guidelines will therefore face additional administrative burdens that they must balance with the need to stay ahead of the competition.

GDPR & PSD2: Squaring the Circle

Posted on August 13, 2018

Posted in Payments

GDPR and PSD2 are two legal initialisms that have both generated a great deal of press coverage in recent months, but they are seldom considered together.

By Christian F. McDermott, Calum Docherty and Brett Carr

There were around 122 billion non-cash payments in the European Union (EU) in 2016, with card payments accounting for 49% of all transactionsⁱ and the trend is continuing: UK Finance recently reported that UK debit card payments overtook the number of cash transactions for the first time in the final quarter of 2017. As Europeans increasingly swap cash for cards and live their lives online, businesses have tremendous opportunities to take advantage of the vast amount of personal data generated by the increased use of payment services.

FCA Speaks Out on the Ethics of Big Data

Posted on July 16, 2018

Posted in Data Privacy and Cybersecurity, Digital

FCA Chair hints that new regulation addressing data ethics in the FinTech space may be on the horizon.

By Nicola Higgs, Fiona Maclean and Terese Saplys

Will societies of the future be ruled by algocracy, in which algorithms decide how humans are governed? Charles Randell, Chair of the Financial Conduct Authority (FCA) and Payment Systems Regulator, addressed how to avoid this hypothetical scenario in a broad-ranging speech on that he delivered on 11 July 2018 in London.

Randell’s Remarks

Contributing Factors to an Algocracy

According to Randell, the following three conditions could collectively give rise to a future algocracy:

Menu

Global Fintech & Digital Assets Blog