Menu
FG 16/5 Outsourcing to the cloud and other third party IT services

Over the past few years, there has been a huge increase in the way people use technology. Many people stopped buying music CDs when it became possible to download the tracks straight from iTunes or Amazon. And now it’s possible to get music for free or by paying a subscription via services like Spotify.

Using internet based services like this is not limited to personal use and many businesses now access such services in a variety of ways, perhaps using cloud based Office software or storing data on a remote server, or by creating and managing client portfolios on an investment platform. Such use of technology is undoubtedly here to stay and generally offers benefits to both firms and clients alike.

However, it brings with it risks that need to be identified, monitored and managed, for example, data security. Reacting to these risks, the FCA has published final guidance (FG 16/5) on outsourcing to third party IT services, in particular using cloud based services.

The guidance is neither all-encompassing nor binding for adviser firms but includes a list of areas that firms should consider when selecting and monitoring third parties in the delivery of IT services that are essential to the effective functioning of the regulated firm’s business operations.  The FCA’s SYSC sourcebook contains general outsourcing requirements for firms and should also be considered (SYSC 8.1). Firms should also follow ICO guidance on cloud computing in relation to data protection.

For adviser firms, the FCA guidance refers to whether the function being outsourced is considered critical or important, or is material outsourcing.

Critical or important
An operational function is regarded as critical or important if a defect or failure in its performance would materially impair the continuing compliance of a firm with the conditions and obligations of its authorisation, its other obligations under the regulatory system, its financial performance, or the soundness or continuity of its relevant services and activities. 

Material outsourcing
This is defined in the FCA Handbook as outsourcing services of such importance that weakness or failure of the services would cast serious doubt upon the firm’s continuing satisfaction of the threshold conditions or compliance with the Principles for Businesses. 

Firms should notify the FCA when entering into, or significantly changing, material or critical outsourcing arrangements.

Don’t forget to check Our View about this article and the Actions Required By You

FG 16/5 Outsourcing to the cloud and other third party IT services

Important Note: ATEB news is intended to provide general information ONLY. The content, including any views expressed or guidance provided, does not replace the need to comply fully with FCA Rules and Guidance. Unless you have discussed news article content with ATEB, and specifically how it relates to your circumstances, then ATEB disclaims all liability and responsibility and actions arising from any reliance placed upon it. For the avoidance of doubt therefore, any reliance you place on such information without our consultation is at your own risk.

ATEB Compliance offers compliance and regulatory advice.

ATEB Suitability provides report writing software for the financial services market.

Our View

Firms should note the guidance from the FCA and ICO and, where appropriate, use it to inform their systems and controls on outsourcing.

Action Required By You

Read FG 16/5 and other relevant requirements and guidance.

The following aspects should be considered when selecting or monitoring an outsourced service …

  • Legal and regulatory considerations;
  • Risk management;
  • International standards;
  • Oversight of service provider;
  • Data security;
  • Data Protection Act (DPA) 1998;
  • Effective access to data;
  • Access to business premise;
  • Relationship between service providers;
  • Change management;
  • Continuity and business planning;
  • Resolution (where applicable);
  • Exit plan.

ATEB clients should speak with their account manager; otherwise contact ATEB here to find out how we can help.

 

SUIT - Beautiful Reports
CREATE BEAUTIFUL
SUITABILITY
REPORTS
TRY IT FOR FREE
SUIT - Complete Control
TAKE BACK
CONTROL OF YOUR
SUITABILITY REPORT
PRODUCTION
TRY IT FOR FREE
SUIT - Comp confidence
SUITABILITY
REPORTS
WITH FULL
COMPLIANCE
CONFIDENCE
TRY IT FOR FREE
previous arrow
next arrow

About the Author

Contact Us

Brought to you by

Explore more articles in this category

Other articles that you might be interested in

Papers

Papers galore!

Compliance , , , , , , , , , , , ,

It has been a busy month for papers and publications at the FCA.      These include:     New Consumer Duty CP  The FCA is consulting on plans to introduce a new Consumer Duty, which aims to set a higher level of consumer protection in retail financial markets. The Duty will have 3 key elements: A new Principle – the […]

Read More
https---s3-eu-west-1.amazonaws.com-fta-ez-prod-ez-images-5-2-0-7-1217025-1-eng-GB-FCA2.JPG?v1

FG21/4: Guidance for insolvency practitioners on how to approach regulated firms

Compliance , , ,

Following consultation in GC 20/05, the FCA has published finalised non-handbook guidance for insolvency practitioners (IPs) on how to approach insolvencies of regulated firms. This finalised guidance aims to help IPs comply with FCA rules and guidance and relevant legislation to achieve better outcomes for consumers and market participants when a regulated firm fails. The […]

Read More
analysis Shallow focus photography of microscope

FG21/3 – Appropriate Pension Transfer Analysis (APTA)

Compliance , , , , ,

COBS 19.1.2 states …   “To prepare an appropriate transfer analysis a firm must:  (1) assess the benefits likely to be paid and options available under the ceding arrangement; (2) compare (1) with those benefits and options available under the proposed arrangement; (3) where the proposed arrangement is a personal pension scheme, stakeholder pension scheme […]

Read More
survey

FCA survey – Credit broking

Compliance , , , , ,

The FCA continues to keep busy with yet another survey being announced. We have received the following notification from the FCA. “We wanted to advise you that we will shortly be sending a survey to all firms holding the credit broking permission. The survey will give us an updated view of whether and how firms […]

Read More
White and black marketing word on brown wooden table

DP 21/1 – strengthening financial promotion rules for high-risk investments

Compliance , , , ,

The FCA has published a discussion paper on strengthening financial promotion rules for high-risk investments and firms approving financial promotions. Following feedback to its Call for Input (CFI) on Consumer Investments which closed in December 2020, the FCA has published discussion paper DP21/1 which outlines proposals to strengthen financial promotion rules for high-risk investments. The […]

Read More
Load More