Compliance risks facing financial institutions surveyed
- Published: Tuesday, 18 October 2016 08:47
Delphix has published the result of a survey that looked at the compliance risks that financial institutions expect to face in the near future. The Anti-Money Laundering Directive (AML), the EU-US Privacy Shield and the Market Abuse Directive (MAD) and Regulation (MAR) are the three biggest regulatory pressures across EMEA. The study found that organizations are worryingly behind in developing the data architectures needed to meet evolving reporting demands and need to overhaul data delivery practices.
Over half (59 percent) of respondents cited ‘delivery’ as a number one challenge in their day to day operations, with over a third (38 percent) claiming high levels of rework hinders their capacity to deliver on data and reporting objectives. Additionally, one in five (20 percent) claim they are forced to use data that is not fully anonymised as they take increasing risks with sensitive data.
These insufficient processes are leading to major concerns over the consequences for non-compliance. Over half of respondents (53 percent) fear large financial penalties, followed closely by the loss of customers (51 percent). Fear of losing banking licenses is ranked as a number one concern by nearly one in five respondents (19 percent), with brand damage and risk of jail time also highlighted as a worry for over one in ten (13 percent).
Due to the time and cost it takes to mask data, banks copy and move data to testing environments or reporting applications without being protected and 18 percent of respondents admit that data loss as a result of poor data security is a daily challenge. Inefficient data delivery processes are driving concerns about upcoming regulations. Respondents cited regulations that require proof of data integrity and personal information as their biggest future challenges, with 62 percent naming the EU Directive on Security of Network and Information Systems (NIS) and 54 percent the EU General Data Protection Regulation (GDPR).
To improve the efficiency of reporting, nearly half of respondents (46 percent) are invested in speeding up the process of data delivery. While 31 percent believe improving the quality of test data by using near-real time copies would be advantageous. A fifth of respondents (20 percent) also ranked the ability to mask sensitive data for testing as a number one priority, followed by 12 percent who said the same for masking data for reporting.