Menu
Working from Home – Data Protection and Security

The Information Commissioner’s Office (ICO) and National Cyber Security Centre (NCSC) have recently updated their guidance on data protection and cyber security. With many of us now working from home we thought this would be a useful reminder of what to consider.

The ICO recognises the unprecedented challenges we are all facing during the Coronavirus (COVID-19) pandemic.

They know firms might need to share information quickly or adapt the way they work. Data protection need not stop firms doing that. It’s about being proportionate and making reasonable judgements. Think about how you, as a member of the public, would feel about any judgements made. If something feels excessive from the public’s point of view, then it probably is.

The ICO has provided some revised guidance and answers to the questions they’re being asked at this time.

The National Cyber Security Centre has also issued some guidance – ‘Home working: preparing your organisation and staff’.

This guidance is intended to helps firms ensure their organisation is prepared for any increase in home working, and advice on spotting coronavirus (COVID-19) scam emails.

Finally, we would suggest that you refer to ATEB’s previous article on Cyber Resilience.

Don’t forget to check Our View about this article and the Actions Required By You

Working from Home – Data Protection and Security

Important Note: ATEB news is intended to provide general information ONLY. The content, including any views expressed or guidance provided, does not replace the need to comply fully with FCA Rules and Guidance. Unless you have discussed news article content with ATEB, and specifically how it relates to your circumstances, then ATEB disclaims all liability and responsibility and actions arising from any reliance placed upon it. For the avoidance of doubt therefore, any reliance you place on such information without our consultation is at your own risk.

ATEB Compliance offers compliance and regulatory advice.

ATEB Suitability provides report writing software for the financial services market.

Our View

Some useful guidance and reminders for all staff working from home.

Firms should already have a Data protection/GDPR policy in place which covers business continuity arrangements. 

Action Required By You

  • Remind all staff of the importance of data protection and security and keeping client data safe;
  • Check that staff working from home have appropriate hardware and software and that their internet security is adequate;
  • Update current Data Protection/GDPR policies if needed;
  • Any data breaches should be reported internally in the usual way and. if material, should also be reported to the ICO;
  • Check whether you have appropriate insurance cover for cyber attacks;
  • If you do not have current up to date Business Continuity or Data Protection policies, please contact your ATEB consultant for further information, or contact ATEB directly.
SUIT - Beautiful Reports
CREATE BEAUTIFUL
SUITABILITY
REPORTS
TRY IT FOR FREE
SUIT - Complete Control
TAKE BACK
CONTROL OF YOUR
SUITABILITY REPORT
PRODUCTION
TRY IT FOR FREE
SUIT - Comp confidence
SUITABILITY
REPORTS
WITH FULL
COMPLIANCE
CONFIDENCE
TRY IT FOR FREE
previous arrow
next arrow

About the Author

Contact Us

Brought to you by

Explore more articles in this category

Other articles that you might be interested in

Woman climbing on rocky mountains under cloudy sky

Pension transfer advice – assessing transfer risk

Compliance , , , , , , , , , ,

It has been well publicised that the FCA has aimed increasingly close scrutiny in the direction of firms that have been providing advice in relation to defined benefit pension transfers. Apparently caught off guard by the then Chancellor’s introduction in the Pension Schemes Act 2015 of what are generally called ‘pension freedoms’, the regulator has […]

Read More
White caution cone on keyboard

Data protection – children, third-parties and lawful basis

Compliance ,

We have written before (see here) about the situation where a privacy notice (and if required, consent) is covered with say, one party of a couple but where that individual then provides personal data about his or her partner. In our experience, many firms are still not handling this correctly. Children Under the regulations, for […]

Read More
Ace of spade playing card on grey surface

DB Pension Transfers – some charging issues

Compliance , , , , , ,

The rules that came into effect in October 2020 arrived under a headline objective of ‘banning contingent charging’. Inevitably, the simple rule required to achieve this seemingly straightforward outcome had to be accompanied by a fairly large retinue of supplementary rules and guidance. Definitely a case of the devil being in the detail. Much of […]

Read More
Sign pen business document

Anti Money Laundering Review …… Dear CEO – Banking Sector

Compliance , , , , ,

The Financial Conduct Authority (FCA), in May 2021, issued a Dear CEO letter entitled “Action needed in response to common control failings identified in anti-money laundering frameworks”. While this letter was issued to banks only, many of the key takeaways of the letter have wider application, notably within the financial advice sector. A copy of […]

Read More
Woman looking at the map

General Insurance Pricing Practices: rule change mapping

Compliance

We have recently issued a couple of newsletter articles relating to the changes being implemented by policy statement 21/05 “General Insurance Pricing Practices Market Study” that can be accessed from here. To assist our clients, ATEB has mapped the relevant rules for distributors to help them be ready when the changes are to be implemented. […]

Read More
Load More