SlideShare a Scribd company logo

Outsourcing in Financial Services Infoline conference November 2016

Berwin Leighton Paisner
Berwin Leighton Paisner

Cloud computing, FCA final guidance on cloud computing, third party outsourcing, intra-group outsourcing, FinTech, IT and business process outsourcing, block chain, digitisation, regulatory sandbox, PRA, FCA, regulatory attitudes to cloud computing, FinTech, digitisation, conduct risk, outsourcing enforcement, senior managers regime and outsourcing, legal and regulatory risk and how to manage it

Economy & Finance
1 of 15
Download to read offline
Interpreting current FCA attitudes: cloud guidance, conduct risk and SYSC8/13 mark.lewis@blplaw.com 16 November 2016 Outsourcing in Financial Services 8th Annual Forum
Plan • Landscape: what the regulators have to contend with • RegTech • Deeds, not words • Regulators’ latest approach to cloud computing (and third party outsourcing) • Conduct risk and outsourcing: do we actually know what they mean? • Enforcement action in outsourcing and/or conduct risk • This time, it’s personal • Lessons learned/to be learned www.blplaw.com Page 2 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
Guess who? www.blplaw.com Page 3 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
Guess who? www.blplaw.com Page 4 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
A sample of the landscape regulators have to contend with • Cloud Computing • AI, algorithmic trading and decision-making, software robotics, robo advice • Blockchain and distributed ledger payments and processes • Crypto currencies • Big Data • FinTech • General Data Protection Regulation (GDPR) • Ring fencing, recovery and resolution • Challenger FIs and greater FS competition • Cyber risk and cyber security, and… • Brexit www.blplaw.com Page 5 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
A regulatory response? • Project Innovate • “Technology plays a fundamental and increasingly pivotal role in delivering innovative financial products and services. The FCA is committed to fostering innovation and technology – including RegTech – to promote effective competition in the interests of consumers”: https://www.fca.org.uk/firms/project-innovate-innovation- hub/regtech • TechSprint • Innovation Hub • Themed Weeks • Regulatory Sandbox www.blplaw.com Page 6 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
A regulatory response? www.blplaw.com Page 7 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
• FG 16/5 – Guidance for firms outsourcing to the ’cloud’ and other third-party IT services, https://www.fca.org.uk/publication/finalised- guidance/fg16-5.pdf • Not binding, but….: 1.8 • ’Cloud’ = public, private and hybrid models, IaaS, PaaS, SaaS: 1.4. Is that important? • ”From a regulatory perspective, the exact form of service…does not, in itself, alter the regulatory obligations placed on firms. It is important to note that where a third party delivers services on behalf of regulated firm – including a cloud provider – this is considered outsourcing and firms need to consider the relevant regulatory obligations and how they comply with them”: 3.3 • Categorisation: outsourcing of critical or important, material or important operational functions (payment institutions, electronic money institutions): 3.6 www.blplaw.com Page 8 © 2016 Mark Lewis and Berwin Leighton Paisner LLP FCA’s approach to cloud computing
FG 16/5 www.blplaw.com Page 9 © 2016 Mark Lewis and Berwin Leighton Paisner LLP Legal and regulatory considerations Access to business premises, including regulatory and firm and audit access – SYSC 8 and Sol II Art. 274 (insurers) Risk management, including off- and near- shoring Relationship between service providers - outsourcing/cloud supply chains International standards Change management Oversight of service provider Continuity and business planning Data security Resolution (where applicable) DPA 1998 [GDPR] Exit plan Effective access to data - SYSC 8.1.8(9)
What is “conduct risk”? • FCA Risk Outlook March 2013 – signals new approach to conduct risk: ” consumer detriment arising from the wrong products ending up in the wrong hands, and the detriment to society of people not being able to get access to the right products”: https://www.fca.org.uk/publication/business- plans/fca-risk-outlook-2013.pdf • OECD 2013 report on conduct risk – international principles emerging: https://www.oecd.org/finance/financial- education/G20EffectiveApproachesFCP.pdf • But what does ”conduct risk” actually mean? • 2013 narrow definitions, but…. • With increased use of technology and automation to shape consumer products, services and front-middle-back office customer engagement • Conduct risk is now actually also about IT systems and applications and data integrity, cyber security, resilience data privacy and operational risk www.blplaw.com Page 10 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
What is ”outsourcing”? • FCA Thematic Review TR15/7 Delegated authority: Outsourcing in the general insurance market https://www.fca.org.uk/publication/thematic-reviews/tr15-07.pdf • “The term ‘delegated authority’ is widely used in the general insurance industry to describe a variety of arrangements. At the core of these arrangements is external delegation by insurers, involving the outsourcing of functions to intermediaries and other third parties. This is often accompanied by the allocation of other related functions between the parties involved.”: 1.2 • ”Outsourcing and any accompanying allocation of functions can take many different forms and can relate to all stages of an insurance product life-cycle from product development, through underwriting, distribution and sales, to claims and complaint handling.”: 1.3 • See also “outsourcing” definitions in PRA/FCA Handbook (Glossary) and TR15/7 reference to SYSC 3.2.4 G: defines external delegation as ‘outsourcing’, noting that ‘guidance relevant to delegation within the firm is also relevant to external delegation (‘outsourcing’).’ • Even so, a wide view and definition of outsourcing that took the general insurance market by surprise, especially in delegating underwriting and claims management www.blplaw.com Page 11 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
Enforcement action in outsourcing and/or conduct risk I www.blplaw.com Page 12 © 2016 Mark Lewis and Berwin Leighton Paisner LLP Stonebridge International Insurance, August 2014 (FCA) http://www.fca.org.uk/news/fca-fines- stonebridge-international-insurance- limited-84m Pope and Legerton,TailorMade Independent (TMI), March 2015 (FCA) https://www.fca.org.uk/news/press- releases/fca-bans-and-fines-two- individuals-pension-advice-failings Outsourced intermediary sales, breach of FCA Principles 3 and 6 Deficiencies in training materials designed by S. Inadequate quality assurance by S of outsourced intermediary sales and contact centre post-sales cancellation calls. S failed to undertake proper oversight of outsourced operations, and failed to obtain adequate management information to overseeTCF by outsource providers. S unable properly to monitor its systems and controls in European operations because its compliance function was inadequately resourced Breach of Principle 7 Failure to assess suitability of SIPP investments, to manage conflicts of interest and to overseeTMI’s compliance function (outsourced to external consultants). Problems compounded whenTMI failed to act quickly enough when outsourced compliance function warned P and L about conflicts of interest. Both banned and P fined
Enforcement action in outsourcing and/or conduct risk II www.blplaw.com Page 13 © 2016 Mark Lewis and Berwin Leighton Paisner LLP Raphaels Bank, November 2015 (PRA) http://www.bankofengland.co.uk/publi cations/Documents/news/2015/093.pdf Aviva PensionTrustees UK and Aviva Wrap UK, October 2016 (FCA) https://www.fca.org.uk/publication/fin al-notices/aviva-pension-trustees-uk- limited-aviva-wrap-uk-limited.pdf Breach of Principle 3 and PRAThreshold Conditions R failed to manage intra-group outsourced ATM arrangements properly – putting safety and soundness at risk. Lack of appropriate controls and oversight of outsourcing, suitable intra- group outsourcing agreements and proper DD of the outsourcing arrangements. Also resulted in inadequate oversight and control over R’s regulatory capital Breaches of Principle 3, Principle 10 (Clients’ Assets) and associated rules in the Client Assets sourcebook (“CASS rules” – first CASS case for outsourcing oversight breaches) Outsourced administration toTPAs of client moneys and external reconciliations relating to custody assets Firms failed to retain the necessary expertise to supervise the outsourced functions effectively and to manage the risks associated with the outsourcing (also SYSC 8.1.6R and SYSC 8.1.8(5)R) ”With outsourced arrangements firms remain fully responsible for compliance with… CASS rules. Firms are reminded that regulated activities can be delegated but not abdicated. Other firms with similar outsourcing arrangements should take this as a warning that there is no excuse for not having robust controls and oversight systems in place to ensure their processes comply with our rules when CASS functions are outsourced”: Mark Steward, FCA Director of Enforcement and Market Oversight
www.blplaw.com Page 14 © 2016 Mark Lewis and Berwin Leighton Paisner LLP IAR: outsourcing and conduct risk • “Performance of each of the…key functions may be outsourced to another undertaking, in accordance with the provisions in the EU Solvency II Regulations, and with guidelines issued by the European Insurance and Occupational Pensions Authority (EIOPA). However, there also needs to be appropriate oversight of any outsourced functions. The PRA expects the governance map to set out which key functions have been outsourced (in whole or in part), the name of the service provider, and the identity of the key function holder within the firm who has the responsibility for oversight of that function”: Supervisory Statement SS35/15 Strengthening individual accountability in insurance, September 2016, 2.31 http://www.bankofengland.co.uk/pra/Documents/publications/ss/2016/ss3515update. pdf • Similar provisions for the banking accountability regime • IAR/SMR to be extended to all firms by 2018
Lessons learned/to be learned • Technology and outsourcing are merging • Technologies are developing quickly, and new service models will follow, but…. • The same regulatory duties apply, with or without technology • Project Innovate does not include free passes out of enforcement for firms who get it wrong using technology • Effective regulatory risk management requires a careful analysis of prudential and conduct risks arising as a result of the technological developments and business service models you may be tempted to adopt • See what the regulators actually do (enforcement) and have regard to their published guidance and interpretation – not rhetoric • Oh, and this is getting personal to senior management www.blplaw.com Page 15 © 2016 Mark Lewis and Berwin Leighton Paisner LLP

Recommended

Third Party Due Diligence - Case Study Discussion
Third Party Due Diligence - Case Study DiscussionThird Party Due Diligence - Case Study Discussion
Third Party Due Diligence - Case Study DiscussionSam Gibbins 紀俊森
 
State of Compliance 2013
State of Compliance 2013State of Compliance 2013
State of Compliance 2013Stephen Selby
 
20 Questions to ask your Cyber Carrier - Wis Banker 12-2015
20 Questions to ask your Cyber Carrier - Wis Banker 12-201520 Questions to ask your Cyber Carrier - Wis Banker 12-2015
20 Questions to ask your Cyber Carrier - Wis Banker 12-2015Jeff Otteson
 
Alternative Finance Briefing Paper - Simon Deane-Johns 27 01 12
Alternative Finance Briefing Paper - Simon Deane-Johns 27 01 12Alternative Finance Briefing Paper - Simon Deane-Johns 27 01 12
Alternative Finance Briefing Paper - Simon Deane-Johns 27 01 12Simon Deane-Johns
 
SLTimes_issue_169
SLTimes_issue_169SLTimes_issue_169
SLTimes_issue_169George Trapp
 
FATF guidance on politically exposed persons 'PEPS'
FATF guidance on politically exposed persons 'PEPS'FATF guidance on politically exposed persons 'PEPS'
FATF guidance on politically exposed persons 'PEPS'Investors Europe (Mauritius) Limited
 
Sanctions Spotlight Brochure
Sanctions Spotlight BrochureSanctions Spotlight Brochure
Sanctions Spotlight BrochureFircoSoft
 
FircoSoft Company Overview
FircoSoft Company OverviewFircoSoft Company Overview
FircoSoft Company OverviewFircoSoft
 

Recommended

Third Party Due Diligence - Case Study Discussion
Third Party Due Diligence - Case Study DiscussionThird Party Due Diligence - Case Study Discussion
Third Party Due Diligence - Case Study DiscussionSam Gibbins 紀俊森
 
State of Compliance 2013
State of Compliance 2013State of Compliance 2013
State of Compliance 2013Stephen Selby
 
20 Questions to ask your Cyber Carrier - Wis Banker 12-2015
20 Questions to ask your Cyber Carrier - Wis Banker 12-201520 Questions to ask your Cyber Carrier - Wis Banker 12-2015
20 Questions to ask your Cyber Carrier - Wis Banker 12-2015Jeff Otteson
 
Alternative Finance Briefing Paper - Simon Deane-Johns 27 01 12
Alternative Finance Briefing Paper - Simon Deane-Johns 27 01 12Alternative Finance Briefing Paper - Simon Deane-Johns 27 01 12
Alternative Finance Briefing Paper - Simon Deane-Johns 27 01 12Simon Deane-Johns
 
SLTimes_issue_169
SLTimes_issue_169SLTimes_issue_169
SLTimes_issue_169George Trapp
 
FATF guidance on politically exposed persons 'PEPS'
FATF guidance on politically exposed persons 'PEPS'FATF guidance on politically exposed persons 'PEPS'
FATF guidance on politically exposed persons 'PEPS'Investors Europe (Mauritius) Limited
 
Sanctions Spotlight Brochure
Sanctions Spotlight BrochureSanctions Spotlight Brochure
Sanctions Spotlight BrochureFircoSoft
 
FircoSoft Company Overview
FircoSoft Company OverviewFircoSoft Company Overview
FircoSoft Company OverviewFircoSoft
 
Response to Call for Input on Crowdfunding: BWB Compliance
Response to Call for Input on Crowdfunding: BWB ComplianceResponse to Call for Input on Crowdfunding: BWB Compliance
Response to Call for Input on Crowdfunding: BWB ComplianceBWB Compliance
 
Chapter 10 stored value facilities
Chapter 10 stored value facilitiesChapter 10 stored value facilities
Chapter 10 stored value facilitiesQuan Risk
 
The SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the Top
The SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the TopThe SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the Top
The SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the TopDuff & Phelps
 
A regulator’s view of virtual currencies as the first use-case of blockchain...
A regulator’s view of virtual currencies as the first use-case of blockchain... A regulator’s view of virtual currencies as the first use-case of blockchain...
A regulator’s view of virtual currencies as the first use-case of blockchain...thebitcoinconference
 
The Convergence of AML and Cybersecruity
The Convergence of AML and CybersecruityThe Convergence of AML and Cybersecruity
The Convergence of AML and CybersecruityDuff & Phelps
 
IEF2019 Infocredit
IEF2019 InfocreditIEF2019 Infocredit
IEF2019 InfocreditCenter for Entrepreneurship (C4E), University of Cyprus
 
FCPA Enforcement Tends and Their Impact on Corporate Compliance Programs
FCPA Enforcement Tends and Their Impact on Corporate Compliance ProgramsFCPA Enforcement Tends and Their Impact on Corporate Compliance Programs
FCPA Enforcement Tends and Their Impact on Corporate Compliance ProgramsPECB
 
Security Compliance Models- Checklist v. Framework
Security Compliance Models- Checklist v. FrameworkSecurity Compliance Models- Checklist v. Framework
Security Compliance Models- Checklist v. FrameworkDivya Kothari
 
Two Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should WatchTwo Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should WatchIdentityMind
 
Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018Initio
 
Firco Continuity
Firco ContinuityFirco Continuity
Firco ContinuityFircoSoft
 
A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...
A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...
A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...Alessa
 
Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...
Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...
Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...FinTechLabs.io
 
Winning Tactics for Data Governance
Winning Tactics for Data GovernanceWinning Tactics for Data Governance
Winning Tactics for Data GovernanceColleen Beck-Domanico
 
DLT - AML & CFT - Risks & Opportunites
DLT - AML & CFT - Risks & Opportunites DLT - AML & CFT - Risks & Opportunites
DLT - AML & CFT - Risks & Opportunites Philip Vasquez
 
Crypto asset regulators directory
Crypto asset regulators directoryCrypto asset regulators directory
Crypto asset regulators directoryRein Mahatma
 
KYC Initiative
KYC InitiativeKYC Initiative
KYC InitiativeJeff Plein
 
Tfs
TfsTfs
Tfsbizsolution
 
McGregor Boyall - Compliance & Financial Crime Market Update
McGregor Boyall - Compliance & Financial Crime Market UpdateMcGregor Boyall - Compliance & Financial Crime Market Update
McGregor Boyall - Compliance & Financial Crime Market UpdateAmreet Rai
 
Alpha wave miner body condition monitoring safety helmet
Alpha wave miner body condition monitoring safety helmetAlpha wave miner body condition monitoring safety helmet
Alpha wave miner body condition monitoring safety helmet通 金
 
Creativity in Business is an Everyday Job
Creativity in Business is an Everyday JobCreativity in Business is an Everyday Job
Creativity in Business is an Everyday JobSue-Ann Bubacz
 
ум ктп 11 кл. 2016 2017
ум ктп 11 кл. 2016 2017ум ктп 11 кл. 2016 2017
ум ктп 11 кл. 2016 2017PolinaMokrushina
 

More Related Content

What's hot

Response to Call for Input on Crowdfunding: BWB Compliance
Response to Call for Input on Crowdfunding: BWB ComplianceResponse to Call for Input on Crowdfunding: BWB Compliance
Response to Call for Input on Crowdfunding: BWB ComplianceBWB Compliance
 
Chapter 10 stored value facilities
Chapter 10 stored value facilitiesChapter 10 stored value facilities
Chapter 10 stored value facilitiesQuan Risk
 
The SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the Top
The SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the TopThe SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the Top
The SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the TopDuff & Phelps
 
A regulator’s view of virtual currencies as the first use-case of blockchain...
A regulator’s view of virtual currencies as the first use-case of blockchain... A regulator’s view of virtual currencies as the first use-case of blockchain...
A regulator’s view of virtual currencies as the first use-case of blockchain...thebitcoinconference
 
The Convergence of AML and Cybersecruity
The Convergence of AML and CybersecruityThe Convergence of AML and Cybersecruity
The Convergence of AML and CybersecruityDuff & Phelps
 
FCPA Enforcement Tends and Their Impact on Corporate Compliance Programs
FCPA Enforcement Tends and Their Impact on Corporate Compliance ProgramsFCPA Enforcement Tends and Their Impact on Corporate Compliance Programs
FCPA Enforcement Tends and Their Impact on Corporate Compliance ProgramsPECB
 
Security Compliance Models- Checklist v. Framework
Security Compliance Models- Checklist v. FrameworkSecurity Compliance Models- Checklist v. Framework
Security Compliance Models- Checklist v. FrameworkDivya Kothari
 
Two Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should WatchTwo Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should WatchIdentityMind
 
Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018Initio
 
Firco Continuity
Firco ContinuityFirco Continuity
Firco ContinuityFircoSoft
 
A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...
A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...
A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...Alessa
 
Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...
Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...
Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...FinTechLabs.io
 
DLT - AML & CFT - Risks & Opportunites
DLT - AML & CFT - Risks & Opportunites DLT - AML & CFT - Risks & Opportunites
DLT - AML & CFT - Risks & Opportunites Philip Vasquez
 
Crypto asset regulators directory
Crypto asset regulators directoryCrypto asset regulators directory
Crypto asset regulators directoryRein Mahatma
 
KYC Initiative
KYC InitiativeKYC Initiative
KYC InitiativeJeff Plein
 
McGregor Boyall - Compliance & Financial Crime Market Update
McGregor Boyall - Compliance & Financial Crime Market UpdateMcGregor Boyall - Compliance & Financial Crime Market Update
McGregor Boyall - Compliance & Financial Crime Market UpdateAmreet Rai
 

What's hot (19)

Response to Call for Input on Crowdfunding: BWB Compliance
Response to Call for Input on Crowdfunding: BWB ComplianceResponse to Call for Input on Crowdfunding: BWB Compliance
Response to Call for Input on Crowdfunding: BWB Compliance
 
Chapter 10 stored value facilities
Chapter 10 stored value facilitiesChapter 10 stored value facilities
Chapter 10 stored value facilities
 
The SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the Top
The SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the TopThe SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the Top
The SFC's new "Managers-in-Charge" Regime: It's Getting Tougher at the Top
 
A regulator’s view of virtual currencies as the first use-case of blockchain...
A regulator’s view of virtual currencies as the first use-case of blockchain... A regulator’s view of virtual currencies as the first use-case of blockchain...
A regulator’s view of virtual currencies as the first use-case of blockchain...
 
The Convergence of AML and Cybersecruity
The Convergence of AML and CybersecruityThe Convergence of AML and Cybersecruity
The Convergence of AML and Cybersecruity
 
IEF2019 Infocredit
IEF2019 InfocreditIEF2019 Infocredit
IEF2019 Infocredit
 
FCPA Enforcement Tends and Their Impact on Corporate Compliance Programs
FCPA Enforcement Tends and Their Impact on Corporate Compliance ProgramsFCPA Enforcement Tends and Their Impact on Corporate Compliance Programs
FCPA Enforcement Tends and Their Impact on Corporate Compliance Programs
 
Security Compliance Models- Checklist v. Framework
Security Compliance Models- Checklist v. FrameworkSecurity Compliance Models- Checklist v. Framework
Security Compliance Models- Checklist v. Framework
 
Two Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should WatchTwo Regulatory Battles Fintechs Should Watch
Two Regulatory Battles Fintechs Should Watch
 
Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018Initio at World Blockchain & Cryptocurrency Summit 2018
Initio at World Blockchain & Cryptocurrency Summit 2018
 
Firco Continuity
Firco ContinuityFirco Continuity
Firco Continuity
 
A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...
A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...
A Regulatory Understanding of Virtual Assets (Cryptocurrency) Types and their...
 
Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...
Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...
Issues towards Open Banking ecosystem and how OpenID Foundation tackles them ...
 
Winning Tactics for Data Governance
Winning Tactics for Data GovernanceWinning Tactics for Data Governance
Winning Tactics for Data Governance
 
DLT - AML & CFT - Risks & Opportunites
DLT - AML & CFT - Risks & Opportunites DLT - AML & CFT - Risks & Opportunites
DLT - AML & CFT - Risks & Opportunites
 
Crypto asset regulators directory
Crypto asset regulators directoryCrypto asset regulators directory
Crypto asset regulators directory
 
KYC Initiative
KYC InitiativeKYC Initiative
KYC Initiative
 
Tfs
TfsTfs
Tfs
 
McGregor Boyall - Compliance & Financial Crime Market Update
McGregor Boyall - Compliance & Financial Crime Market UpdateMcGregor Boyall - Compliance & Financial Crime Market Update
McGregor Boyall - Compliance & Financial Crime Market Update
 

Viewers also liked

Alpha wave miner body condition monitoring safety helmet
Alpha wave miner body condition monitoring safety helmetAlpha wave miner body condition monitoring safety helmet
Alpha wave miner body condition monitoring safety helmet通 金
 
Creativity in Business is an Everyday Job
Creativity in Business is an Everyday JobCreativity in Business is an Everyday Job
Creativity in Business is an Everyday JobSue-Ann Bubacz
 
ум ктп 11 кл. 2016 2017
ум ктп 11 кл. 2016 2017ум ктп 11 кл. 2016 2017
ум ктп 11 кл. 2016 2017PolinaMokrushina
 
Plano negócios chip livre PR-2017
Plano negócios chip livre PR-2017Plano negócios chip livre PR-2017
Plano negócios chip livre PR-2017Salete Kauka
 
Achieving Income Growth in a Consumer Regulated Environment - May 2016
Achieving Income Growth in a Consumer Regulated Environment - May 2016Achieving Income Growth in a Consumer Regulated Environment - May 2016
Achieving Income Growth in a Consumer Regulated Environment - May 2016Tony Moroney
 
Урок 17 для 3 класу - Поняття про інтернет
Урок 17 для 3 класу - Поняття про інтернет Урок 17 для 3 класу - Поняття про інтернет
Урок 17 для 3 класу - Поняття про інтернетVsimPPT
 
U.S. Approach to Cybersecurity Governance
U.S. Approach to Cybersecurity GovernanceU.S. Approach to Cybersecurity Governance
U.S. Approach to Cybersecurity GovernanceGwanhoo Lee
 
Why I Lost My Job As a Test Manager and What I Learnt As a Result
Why I Lost My Job As a Test Manager and What I Learnt As a ResultWhy I Lost My Job As a Test Manager and What I Learnt As a Result
Why I Lost My Job As a Test Manager and What I Learnt As a ResultStephen Janaway
 
Mobile phone etiquette
Mobile phone etiquetteMobile phone etiquette
Mobile phone etiquetteRAHUL KANEKAR
 
Mobile Applications
Mobile ApplicationsMobile Applications
Mobile ApplicationsShweta Jain
 

Viewers also liked (11)

Alpha wave miner body condition monitoring safety helmet
Alpha wave miner body condition monitoring safety helmetAlpha wave miner body condition monitoring safety helmet
Alpha wave miner body condition monitoring safety helmet
 
Creativity in Business is an Everyday Job
Creativity in Business is an Everyday JobCreativity in Business is an Everyday Job
Creativity in Business is an Everyday Job
 
ум ктп 11 кл. 2016 2017
ум ктп 11 кл. 2016 2017ум ктп 11 кл. 2016 2017
ум ктп 11 кл. 2016 2017
 
Plano negócios chip livre PR-2017
Plano negócios chip livre PR-2017Plano negócios chip livre PR-2017
Plano negócios chip livre PR-2017
 
Achieving Income Growth in a Consumer Regulated Environment - May 2016
Achieving Income Growth in a Consumer Regulated Environment - May 2016Achieving Income Growth in a Consumer Regulated Environment - May 2016
Achieving Income Growth in a Consumer Regulated Environment - May 2016
 
Урок 17 для 3 класу - Поняття про інтернет
Урок 17 для 3 класу - Поняття про інтернет Урок 17 для 3 класу - Поняття про інтернет
Урок 17 для 3 класу - Поняття про інтернет
 
Bio Daniel Donatelli
Bio Daniel DonatelliBio Daniel Donatelli
Bio Daniel Donatelli
 
U.S. Approach to Cybersecurity Governance
U.S. Approach to Cybersecurity GovernanceU.S. Approach to Cybersecurity Governance
U.S. Approach to Cybersecurity Governance
 
Why I Lost My Job As a Test Manager and What I Learnt As a Result
Why I Lost My Job As a Test Manager and What I Learnt As a ResultWhy I Lost My Job As a Test Manager and What I Learnt As a Result
Why I Lost My Job As a Test Manager and What I Learnt As a Result
 
Mobile phone etiquette
Mobile phone etiquetteMobile phone etiquette
Mobile phone etiquette
 
Mobile Applications
Mobile ApplicationsMobile Applications
Mobile Applications
 

Similar to Outsourcing in Financial Services Infoline conference November 2016

BCBS239 - A Roadmap for Data Governance - 04202016.pdf
BCBS239 - A Roadmap for Data Governance - 04202016.pdfBCBS239 - A Roadmap for Data Governance - 04202016.pdf
BCBS239 - A Roadmap for Data Governance - 04202016.pdfssusere0e4e8
 
Microsoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdfMicrosoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdfadanilsoafricanocarv
 
Money Laundering Risk Technological Perspective Fina Lv1
Money Laundering Risk Technological Perspective Fina Lv1Money Laundering Risk Technological Perspective Fina Lv1
Money Laundering Risk Technological Perspective Fina Lv1anthonywong
 
Bovill outsourcing bcp and client money and assets 16 aug16
Bovill outsourcing bcp and client money and assets 16 aug16Bovill outsourcing bcp and client money and assets 16 aug16
Bovill outsourcing bcp and client money and assets 16 aug16bovill
 
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...FinTechLabs.io
 
Technology Facilitating the Regulatory Reporting
Technology Facilitating the Regulatory ReportingTechnology Facilitating the Regulatory Reporting
Technology Facilitating the Regulatory ReportingNIIT Technologies
 
NIIT Technologies regulatory reporting
NIIT Technologies regulatory reportingNIIT Technologies regulatory reporting
NIIT Technologies regulatory reportingNIIT Technologies
 
A summary of solvency ii directives
A summary of solvency ii directivesA summary of solvency ii directives
A summary of solvency ii directivesYogesh Pandit
 
A summary of Solvency II Directives
A summary of Solvency II DirectivesA summary of Solvency II Directives
A summary of Solvency II DirectivesHEXANIKA
 
Clearing A Path Through The Regulatory Maze
Clearing A Path Through The Regulatory MazeClearing A Path Through The Regulatory Maze
Clearing A Path Through The Regulatory MazeIan Philips
 
Cyber ANPR Regulatory Alert - October 2016
Cyber ANPR Regulatory Alert - October 2016Cyber ANPR Regulatory Alert - October 2016
Cyber ANPR Regulatory Alert - October 2016Ben-Ari Boukai
 
WBC Summit Initio AML and blockchain
WBC Summit Initio AML and blockchainWBC Summit Initio AML and blockchain
WBC Summit Initio AML and blockchainInitio
 
Sandbox in Financial Services
Sandbox in Financial ServicesSandbox in Financial Services
Sandbox in Financial ServicesHEXANIKA
 
SMCR The Chicken & The Pig with GRC2020 & SureCloud
SMCR The Chicken & The Pig with GRC2020 & SureCloudSMCR The Chicken & The Pig with GRC2020 & SureCloud
SMCR The Chicken & The Pig with GRC2020 & SureCloudSureCloud
 
EPA AML presentation 23 February 2016 small
EPA AML presentation 23 February 2016 smallEPA AML presentation 23 February 2016 small
EPA AML presentation 23 February 2016 smallJohn Pauley
 
ISDA Opinions for Basel Capital Regulatory Relief
ISDA Opinions for Basel Capital Regulatory ReliefISDA Opinions for Basel Capital Regulatory Relief
ISDA Opinions for Basel Capital Regulatory ReliefLiz Zazzera
 

Similar to Outsourcing in Financial Services Infoline conference November 2016 (20)

BCBS239 - A Roadmap for Data Governance - 04202016.pdf
BCBS239 - A Roadmap for Data Governance - 04202016.pdfBCBS239 - A Roadmap for Data Governance - 04202016.pdf
BCBS239 - A Roadmap for Data Governance - 04202016.pdf
 
Microsoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdfMicrosoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdf
 
Solvency II Offering
Solvency II Offering Solvency II Offering
Solvency II Offering
 
Money Laundering Risk Technological Perspective Fina Lv1
Money Laundering Risk Technological Perspective Fina Lv1Money Laundering Risk Technological Perspective Fina Lv1
Money Laundering Risk Technological Perspective Fina Lv1
 
Bovill outsourcing bcp and client money and assets 16 aug16
Bovill outsourcing bcp and client money and assets 16 aug16Bovill outsourcing bcp and client money and assets 16 aug16
Bovill outsourcing bcp and client money and assets 16 aug16
 
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
 
Your Third-Party Vendor's Risk Is Your Risk, Too
Your Third-Party Vendor's Risk Is Your Risk, Too Your Third-Party Vendor's Risk Is Your Risk, Too
Your Third-Party Vendor's Risk Is Your Risk, Too
 
Technology Facilitating the Regulatory Reporting
Technology Facilitating the Regulatory ReportingTechnology Facilitating the Regulatory Reporting
Technology Facilitating the Regulatory Reporting
 
NIIT Technologies regulatory reporting
NIIT Technologies regulatory reportingNIIT Technologies regulatory reporting
NIIT Technologies regulatory reporting
 
A summary of solvency ii directives
A summary of solvency ii directivesA summary of solvency ii directives
A summary of solvency ii directives
 
A summary of Solvency II Directives
A summary of Solvency II DirectivesA summary of Solvency II Directives
A summary of Solvency II Directives
 
Clearing A Path Through The Regulatory Maze
Clearing A Path Through The Regulatory MazeClearing A Path Through The Regulatory Maze
Clearing A Path Through The Regulatory Maze
 
Standards in Third Party Risk - DVV Solutions ISACA North May 19
Standards in Third Party Risk - DVV Solutions ISACA North May 19 Standards in Third Party Risk - DVV Solutions ISACA North May 19
Standards in Third Party Risk - DVV Solutions ISACA North May 19
 
Cyber ANPR Regulatory Alert - October 2016
Cyber ANPR Regulatory Alert - October 2016Cyber ANPR Regulatory Alert - October 2016
Cyber ANPR Regulatory Alert - October 2016
 
The UK Fintech Market
The UK Fintech MarketThe UK Fintech Market
The UK Fintech Market
 
WBC Summit Initio AML and blockchain
WBC Summit Initio AML and blockchainWBC Summit Initio AML and blockchain
WBC Summit Initio AML and blockchain
 
Sandbox in Financial Services
Sandbox in Financial ServicesSandbox in Financial Services
Sandbox in Financial Services
 
SMCR The Chicken & The Pig with GRC2020 & SureCloud
SMCR The Chicken & The Pig with GRC2020 & SureCloudSMCR The Chicken & The Pig with GRC2020 & SureCloud
SMCR The Chicken & The Pig with GRC2020 & SureCloud
 
EPA AML presentation 23 February 2016 small
EPA AML presentation 23 February 2016 smallEPA AML presentation 23 February 2016 small
EPA AML presentation 23 February 2016 small
 
ISDA Opinions for Basel Capital Regulatory Relief
ISDA Opinions for Basel Capital Regulatory ReliefISDA Opinions for Basel Capital Regulatory Relief
ISDA Opinions for Basel Capital Regulatory Relief
 

Recently uploaded

Group 8 - Goldman Sachs & 1MDB Case Studies
Group 8 - Goldman Sachs & 1MDB Case StudiesGroup 8 - Goldman Sachs & 1MDB Case Studies
Group 8 - Goldman Sachs & 1MDB Case StudiesNghiaPham100
 
NO1 Verified Online Love Vashikaran Specialist Kala Jadu Expert Specialist In...
NO1 Verified Online Love Vashikaran Specialist Kala Jadu Expert Specialist In...NO1 Verified Online Love Vashikaran Specialist Kala Jadu Expert Specialist In...
NO1 Verified Online Love Vashikaran Specialist Kala Jadu Expert Specialist In...sarkh428
 
falcon-invoice-discounting-unlocking-prime-investment-opportunities
falcon-invoice-discounting-unlocking-prime-investment-opportunitiesfalcon-invoice-discounting-unlocking-prime-investment-opportunities
falcon-invoice-discounting-unlocking-prime-investment-opportunitiesFalcon Invoice Discounting
 
Mahendragarh Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Mahendragarh Escorts 🥰 8617370543 Call Girls Offer VIP Hot GirlsMahendragarh Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Mahendragarh Escorts 🥰 8617370543 Call Girls Offer VIP Hot GirlsDeepika Singh
 
abortion pills in Jeddah Saudi Arabia (+919707899604)cytotec pills in Riyadh
abortion pills in Jeddah Saudi Arabia (+919707899604)cytotec pills in Riyadhabortion pills in Jeddah Saudi Arabia (+919707899604)cytotec pills in Riyadh
abortion pills in Jeddah Saudi Arabia (+919707899604)cytotec pills in Riyadhsamsungultra782445
 
+971565801893>>SAFE ORIGINAL ABORTION PILLS FOR SALE IN DUBAI,RAK CITY,ABUDHA...
+971565801893>>SAFE ORIGINAL ABORTION PILLS FOR SALE IN DUBAI,RAK CITY,ABUDHA...+971565801893>>SAFE ORIGINAL ABORTION PILLS FOR SALE IN DUBAI,RAK CITY,ABUDHA...
+971565801893>>SAFE ORIGINAL ABORTION PILLS FOR SALE IN DUBAI,RAK CITY,ABUDHA...Health
 
Certified Kala Jadu, Black magic specialist in Rawalpindi and Bangali Amil ba...
Certified Kala Jadu, Black magic specialist in Rawalpindi and Bangali Amil ba...Certified Kala Jadu, Black magic specialist in Rawalpindi and Bangali Amil ba...
Certified Kala Jadu, Black magic specialist in Rawalpindi and Bangali Amil ba...batoole333
 
Explore Dual Citizenship in Africa | Citizenship Benefits & Requirements
Explore Dual Citizenship in Africa | Citizenship Benefits & RequirementsExplore Dual Citizenship in Africa | Citizenship Benefits & Requirements
Explore Dual Citizenship in Africa | Citizenship Benefits & Requirementsmarketingkingdomofku
 
MASTERING FOREX: STRATEGIES FOR SUCCESS.pdf
MASTERING FOREX: STRATEGIES FOR SUCCESS.pdfMASTERING FOREX: STRATEGIES FOR SUCCESS.pdf
MASTERING FOREX: STRATEGIES FOR SUCCESS.pdfCocity Enterprises
 
Call Girls Howrah ( 8250092165 ) Cheap rates call girls | Get low budget
Call Girls Howrah ( 8250092165 ) Cheap rates call girls | Get low budgetCall Girls Howrah ( 8250092165 ) Cheap rates call girls | Get low budget
Call Girls Howrah ( 8250092165 ) Cheap rates call girls | Get low budgetSareena Khatun
 
In Sharjah ௵(+971)558539980 *_௵abortion pills now available.
In Sharjah ௵(+971)558539980 *_௵abortion pills now available.In Sharjah ௵(+971)558539980 *_௵abortion pills now available.
In Sharjah ௵(+971)558539980 *_௵abortion pills now available.hyt3577
 
Toronto dominion bank investor presentation.pdf
Toronto dominion bank investor presentation.pdfToronto dominion bank investor presentation.pdf
Toronto dominion bank investor presentation.pdfJinJiang6
 
Dubai Call Girls Deira O525547819 Dubai Call Girls Bur Dubai Multiple
Dubai Call Girls Deira O525547819 Dubai Call Girls Bur Dubai MultipleDubai Call Girls Deira O525547819 Dubai Call Girls Bur Dubai Multiple
Dubai Call Girls Deira O525547819 Dubai Call Girls Bur Dubai Multiplekojalpk89
 
7 tips trading Deriv Accumulator Options
7 tips trading Deriv Accumulator Options7 tips trading Deriv Accumulator Options
7 tips trading Deriv Accumulator OptionsVince Stanzione
 
Q1 2024 Conference Call Presentation vF.pdf
Q1 2024 Conference Call Presentation vF.pdfQ1 2024 Conference Call Presentation vF.pdf
Q1 2024 Conference Call Presentation vF.pdfAdnet Communications
 
Pension dashboards forum 1 May 2024 (1).pdf
Pension dashboards forum 1 May 2024 (1).pdfPension dashboards forum 1 May 2024 (1).pdf
Pension dashboards forum 1 May 2024 (1).pdfHenry Tapper
 
Economics Presentation-2.pdf xxjshshsjsjsjwjw
Economics Presentation-2.pdf xxjshshsjsjsjwjwEconomics Presentation-2.pdf xxjshshsjsjsjwjw
Economics Presentation-2.pdf xxjshshsjsjsjwjwmordockmatt25
 
Responsible Finance Principles and Implication
Responsible Finance Principles and ImplicationResponsible Finance Principles and Implication
Responsible Finance Principles and ImplicationNghiaPham100
 
Avoidable Errors in Payroll Compliance for Payroll Services Providers - Globu...
Avoidable Errors in Payroll Compliance for Payroll Services Providers - Globu...Avoidable Errors in Payroll Compliance for Payroll Services Providers - Globu...
Avoidable Errors in Payroll Compliance for Payroll Services Providers - Globu...globusfinanza
 
Seeman_Fiintouch_LLP_Newsletter_May-2024.pdf
Seeman_Fiintouch_LLP_Newsletter_May-2024.pdfSeeman_Fiintouch_LLP_Newsletter_May-2024.pdf
Seeman_Fiintouch_LLP_Newsletter_May-2024.pdfAshis Kumar Dey
 

Recently uploaded (20)

Group 8 - Goldman Sachs & 1MDB Case Studies
Group 8 - Goldman Sachs & 1MDB Case StudiesGroup 8 - Goldman Sachs & 1MDB Case Studies
Group 8 - Goldman Sachs & 1MDB Case Studies
 
NO1 Verified Online Love Vashikaran Specialist Kala Jadu Expert Specialist In...
NO1 Verified Online Love Vashikaran Specialist Kala Jadu Expert Specialist In...NO1 Verified Online Love Vashikaran Specialist Kala Jadu Expert Specialist In...
NO1 Verified Online Love Vashikaran Specialist Kala Jadu Expert Specialist In...
 
falcon-invoice-discounting-unlocking-prime-investment-opportunities
falcon-invoice-discounting-unlocking-prime-investment-opportunitiesfalcon-invoice-discounting-unlocking-prime-investment-opportunities
falcon-invoice-discounting-unlocking-prime-investment-opportunities
 
Mahendragarh Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Mahendragarh Escorts 🥰 8617370543 Call Girls Offer VIP Hot GirlsMahendragarh Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Mahendragarh Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
 
abortion pills in Jeddah Saudi Arabia (+919707899604)cytotec pills in Riyadh
abortion pills in Jeddah Saudi Arabia (+919707899604)cytotec pills in Riyadhabortion pills in Jeddah Saudi Arabia (+919707899604)cytotec pills in Riyadh
abortion pills in Jeddah Saudi Arabia (+919707899604)cytotec pills in Riyadh
 
+971565801893>>SAFE ORIGINAL ABORTION PILLS FOR SALE IN DUBAI,RAK CITY,ABUDHA...
+971565801893>>SAFE ORIGINAL ABORTION PILLS FOR SALE IN DUBAI,RAK CITY,ABUDHA...+971565801893>>SAFE ORIGINAL ABORTION PILLS FOR SALE IN DUBAI,RAK CITY,ABUDHA...
+971565801893>>SAFE ORIGINAL ABORTION PILLS FOR SALE IN DUBAI,RAK CITY,ABUDHA...
 
Certified Kala Jadu, Black magic specialist in Rawalpindi and Bangali Amil ba...
Certified Kala Jadu, Black magic specialist in Rawalpindi and Bangali Amil ba...Certified Kala Jadu, Black magic specialist in Rawalpindi and Bangali Amil ba...
Certified Kala Jadu, Black magic specialist in Rawalpindi and Bangali Amil ba...
 
Explore Dual Citizenship in Africa | Citizenship Benefits & Requirements
Explore Dual Citizenship in Africa | Citizenship Benefits & RequirementsExplore Dual Citizenship in Africa | Citizenship Benefits & Requirements
Explore Dual Citizenship in Africa | Citizenship Benefits & Requirements
 
MASTERING FOREX: STRATEGIES FOR SUCCESS.pdf
MASTERING FOREX: STRATEGIES FOR SUCCESS.pdfMASTERING FOREX: STRATEGIES FOR SUCCESS.pdf
MASTERING FOREX: STRATEGIES FOR SUCCESS.pdf
 
Call Girls Howrah ( 8250092165 ) Cheap rates call girls | Get low budget
Call Girls Howrah ( 8250092165 ) Cheap rates call girls | Get low budgetCall Girls Howrah ( 8250092165 ) Cheap rates call girls | Get low budget
Call Girls Howrah ( 8250092165 ) Cheap rates call girls | Get low budget
 
In Sharjah ௵(+971)558539980 *_௵abortion pills now available.
In Sharjah ௵(+971)558539980 *_௵abortion pills now available.In Sharjah ௵(+971)558539980 *_௵abortion pills now available.
In Sharjah ௵(+971)558539980 *_௵abortion pills now available.
 
Toronto dominion bank investor presentation.pdf
Toronto dominion bank investor presentation.pdfToronto dominion bank investor presentation.pdf
Toronto dominion bank investor presentation.pdf
 
Dubai Call Girls Deira O525547819 Dubai Call Girls Bur Dubai Multiple
Dubai Call Girls Deira O525547819 Dubai Call Girls Bur Dubai MultipleDubai Call Girls Deira O525547819 Dubai Call Girls Bur Dubai Multiple
Dubai Call Girls Deira O525547819 Dubai Call Girls Bur Dubai Multiple
 
7 tips trading Deriv Accumulator Options
7 tips trading Deriv Accumulator Options7 tips trading Deriv Accumulator Options
7 tips trading Deriv Accumulator Options
 
Q1 2024 Conference Call Presentation vF.pdf
Q1 2024 Conference Call Presentation vF.pdfQ1 2024 Conference Call Presentation vF.pdf
Q1 2024 Conference Call Presentation vF.pdf
 
Pension dashboards forum 1 May 2024 (1).pdf
Pension dashboards forum 1 May 2024 (1).pdfPension dashboards forum 1 May 2024 (1).pdf
Pension dashboards forum 1 May 2024 (1).pdf
 
Economics Presentation-2.pdf xxjshshsjsjsjwjw
Economics Presentation-2.pdf xxjshshsjsjsjwjwEconomics Presentation-2.pdf xxjshshsjsjsjwjw
Economics Presentation-2.pdf xxjshshsjsjsjwjw
 
Responsible Finance Principles and Implication
Responsible Finance Principles and ImplicationResponsible Finance Principles and Implication
Responsible Finance Principles and Implication
 
Avoidable Errors in Payroll Compliance for Payroll Services Providers - Globu...
Avoidable Errors in Payroll Compliance for Payroll Services Providers - Globu...Avoidable Errors in Payroll Compliance for Payroll Services Providers - Globu...
Avoidable Errors in Payroll Compliance for Payroll Services Providers - Globu...
 
Seeman_Fiintouch_LLP_Newsletter_May-2024.pdf
Seeman_Fiintouch_LLP_Newsletter_May-2024.pdfSeeman_Fiintouch_LLP_Newsletter_May-2024.pdf
Seeman_Fiintouch_LLP_Newsletter_May-2024.pdf
 

Outsourcing in Financial Services Infoline conference November 2016

  • 1. Interpreting current FCA attitudes: cloud guidance, conduct risk and SYSC8/13 mark.lewis@blplaw.com 16 November 2016 Outsourcing in Financial Services 8th Annual Forum
  • 2. Plan • Landscape: what the regulators have to contend with • RegTech • Deeds, not words • Regulators’ latest approach to cloud computing (and third party outsourcing) • Conduct risk and outsourcing: do we actually know what they mean? • Enforcement action in outsourcing and/or conduct risk • This time, it’s personal • Lessons learned/to be learned www.blplaw.com Page 2 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
  • 3. Guess who? www.blplaw.com Page 3 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
  • 4. Guess who? www.blplaw.com Page 4 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
  • 5. A sample of the landscape regulators have to contend with • Cloud Computing • AI, algorithmic trading and decision-making, software robotics, robo advice • Blockchain and distributed ledger payments and processes • Crypto currencies • Big Data • FinTech • General Data Protection Regulation (GDPR) • Ring fencing, recovery and resolution • Challenger FIs and greater FS competition • Cyber risk and cyber security, and… • Brexit www.blplaw.com Page 5 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
  • 6. A regulatory response? • Project Innovate • “Technology plays a fundamental and increasingly pivotal role in delivering innovative financial products and services. The FCA is committed to fostering innovation and technology – including RegTech – to promote effective competition in the interests of consumers”: https://www.fca.org.uk/firms/project-innovate-innovation- hub/regtech • TechSprint • Innovation Hub • Themed Weeks • Regulatory Sandbox www.blplaw.com Page 6 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
  • 7. A regulatory response? www.blplaw.com Page 7 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
  • 8. • FG 16/5 – Guidance for firms outsourcing to the ’cloud’ and other third-party IT services, https://www.fca.org.uk/publication/finalised- guidance/fg16-5.pdf • Not binding, but….: 1.8 • ’Cloud’ = public, private and hybrid models, IaaS, PaaS, SaaS: 1.4. Is that important? • ”From a regulatory perspective, the exact form of service…does not, in itself, alter the regulatory obligations placed on firms. It is important to note that where a third party delivers services on behalf of regulated firm – including a cloud provider – this is considered outsourcing and firms need to consider the relevant regulatory obligations and how they comply with them”: 3.3 • Categorisation: outsourcing of critical or important, material or important operational functions (payment institutions, electronic money institutions): 3.6 www.blplaw.com Page 8 © 2016 Mark Lewis and Berwin Leighton Paisner LLP FCA’s approach to cloud computing
  • 9. FG 16/5 www.blplaw.com Page 9 © 2016 Mark Lewis and Berwin Leighton Paisner LLP Legal and regulatory considerations Access to business premises, including regulatory and firm and audit access – SYSC 8 and Sol II Art. 274 (insurers) Risk management, including off- and near- shoring Relationship between service providers - outsourcing/cloud supply chains International standards Change management Oversight of service provider Continuity and business planning Data security Resolution (where applicable) DPA 1998 [GDPR] Exit plan Effective access to data - SYSC 8.1.8(9)
  • 10. What is “conduct risk”? • FCA Risk Outlook March 2013 – signals new approach to conduct risk: ” consumer detriment arising from the wrong products ending up in the wrong hands, and the detriment to society of people not being able to get access to the right products”: https://www.fca.org.uk/publication/business- plans/fca-risk-outlook-2013.pdf • OECD 2013 report on conduct risk – international principles emerging: https://www.oecd.org/finance/financial- education/G20EffectiveApproachesFCP.pdf • But what does ”conduct risk” actually mean? • 2013 narrow definitions, but…. • With increased use of technology and automation to shape consumer products, services and front-middle-back office customer engagement • Conduct risk is now actually also about IT systems and applications and data integrity, cyber security, resilience data privacy and operational risk www.blplaw.com Page 10 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
  • 11. What is ”outsourcing”? • FCA Thematic Review TR15/7 Delegated authority: Outsourcing in the general insurance market https://www.fca.org.uk/publication/thematic-reviews/tr15-07.pdf • “The term ‘delegated authority’ is widely used in the general insurance industry to describe a variety of arrangements. At the core of these arrangements is external delegation by insurers, involving the outsourcing of functions to intermediaries and other third parties. This is often accompanied by the allocation of other related functions between the parties involved.”: 1.2 • ”Outsourcing and any accompanying allocation of functions can take many different forms and can relate to all stages of an insurance product life-cycle from product development, through underwriting, distribution and sales, to claims and complaint handling.”: 1.3 • See also “outsourcing” definitions in PRA/FCA Handbook (Glossary) and TR15/7 reference to SYSC 3.2.4 G: defines external delegation as ‘outsourcing’, noting that ‘guidance relevant to delegation within the firm is also relevant to external delegation (‘outsourcing’).’ • Even so, a wide view and definition of outsourcing that took the general insurance market by surprise, especially in delegating underwriting and claims management www.blplaw.com Page 11 © 2016 Mark Lewis and Berwin Leighton Paisner LLP
  • 12. Enforcement action in outsourcing and/or conduct risk I www.blplaw.com Page 12 © 2016 Mark Lewis and Berwin Leighton Paisner LLP Stonebridge International Insurance, August 2014 (FCA) http://www.fca.org.uk/news/fca-fines- stonebridge-international-insurance- limited-84m Pope and Legerton,TailorMade Independent (TMI), March 2015 (FCA) https://www.fca.org.uk/news/press- releases/fca-bans-and-fines-two- individuals-pension-advice-failings Outsourced intermediary sales, breach of FCA Principles 3 and 6 Deficiencies in training materials designed by S. Inadequate quality assurance by S of outsourced intermediary sales and contact centre post-sales cancellation calls. S failed to undertake proper oversight of outsourced operations, and failed to obtain adequate management information to overseeTCF by outsource providers. S unable properly to monitor its systems and controls in European operations because its compliance function was inadequately resourced Breach of Principle 7 Failure to assess suitability of SIPP investments, to manage conflicts of interest and to overseeTMI’s compliance function (outsourced to external consultants). Problems compounded whenTMI failed to act quickly enough when outsourced compliance function warned P and L about conflicts of interest. Both banned and P fined
  • 13. Enforcement action in outsourcing and/or conduct risk II www.blplaw.com Page 13 © 2016 Mark Lewis and Berwin Leighton Paisner LLP Raphaels Bank, November 2015 (PRA) http://www.bankofengland.co.uk/publi cations/Documents/news/2015/093.pdf Aviva PensionTrustees UK and Aviva Wrap UK, October 2016 (FCA) https://www.fca.org.uk/publication/fin al-notices/aviva-pension-trustees-uk- limited-aviva-wrap-uk-limited.pdf Breach of Principle 3 and PRAThreshold Conditions R failed to manage intra-group outsourced ATM arrangements properly – putting safety and soundness at risk. Lack of appropriate controls and oversight of outsourcing, suitable intra- group outsourcing agreements and proper DD of the outsourcing arrangements. Also resulted in inadequate oversight and control over R’s regulatory capital Breaches of Principle 3, Principle 10 (Clients’ Assets) and associated rules in the Client Assets sourcebook (“CASS rules” – first CASS case for outsourcing oversight breaches) Outsourced administration toTPAs of client moneys and external reconciliations relating to custody assets Firms failed to retain the necessary expertise to supervise the outsourced functions effectively and to manage the risks associated with the outsourcing (also SYSC 8.1.6R and SYSC 8.1.8(5)R) ”With outsourced arrangements firms remain fully responsible for compliance with… CASS rules. Firms are reminded that regulated activities can be delegated but not abdicated. Other firms with similar outsourcing arrangements should take this as a warning that there is no excuse for not having robust controls and oversight systems in place to ensure their processes comply with our rules when CASS functions are outsourced”: Mark Steward, FCA Director of Enforcement and Market Oversight
  • 14. www.blplaw.com Page 14 © 2016 Mark Lewis and Berwin Leighton Paisner LLP IAR: outsourcing and conduct risk • “Performance of each of the…key functions may be outsourced to another undertaking, in accordance with the provisions in the EU Solvency II Regulations, and with guidelines issued by the European Insurance and Occupational Pensions Authority (EIOPA). However, there also needs to be appropriate oversight of any outsourced functions. The PRA expects the governance map to set out which key functions have been outsourced (in whole or in part), the name of the service provider, and the identity of the key function holder within the firm who has the responsibility for oversight of that function”: Supervisory Statement SS35/15 Strengthening individual accountability in insurance, September 2016, 2.31 http://www.bankofengland.co.uk/pra/Documents/publications/ss/2016/ss3515update. pdf • Similar provisions for the banking accountability regime • IAR/SMR to be extended to all firms by 2018
  • 15. Lessons learned/to be learned • Technology and outsourcing are merging • Technologies are developing quickly, and new service models will follow, but…. • The same regulatory duties apply, with or without technology • Project Innovate does not include free passes out of enforcement for firms who get it wrong using technology • Effective regulatory risk management requires a careful analysis of prudential and conduct risks arising as a result of the technological developments and business service models you may be tempted to adopt • See what the regulators actually do (enforcement) and have regard to their published guidance and interpretation – not rhetoric • Oh, and this is getting personal to senior management www.blplaw.com Page 15 © 2016 Mark Lewis and Berwin Leighton Paisner LLP