Home » Topics » Cybersecurity » FCA’s business plan flags some key areas of focus for 2017/18

FCA’s business plan flags some key areas of focus for 2017/18

Avatar photoby Nick Ismail

The Financial Conduct Authority’s annual business plan, which was published on 17th April 2017, highlights a number of regime changes, which are due to take effect in the coming year.

These changes will force financial services firms – including those selling investments and other financial products – to implement a much higher level of accountability at all levels.

The Senior Managers Review (SMR) and Certification Regime are already in force in the banking sector and will be rolled out to all firms under the Financial Services & Markets Act next year.

>See also: Open banking: a financial revolution?

The FCA’s business plan makes it clear that these regime changes are designed to ensure that the right people are in the right roles and that if problems arise in the future, consumers know exactly where the buck stops.

Of course this also flags up another hot topic for the FCA on the treatment of longstanding customers and how they could become vulnerable. Specifically, the FCA has recognised that firms should aim to identify and address the real-life circumstances of vulnerable customers and take steps to address the complexity of products and information available.

While this focus on governance and culture was expected, the regulator’s business plan has failed to offer any explanation about how the regime changes will sit alongside GDPR legislation.

Given the level of interaction the FCA has with the Information Commissioner’s Office (ICO) and the focus on GDPR for many firms, it has already been noted that there are likely to be some crossover issues when it comes to implementation. Firms had been hoping for greater clarity about how they should manage and prioritise these issues.

Instead, they must continue to plan for both in parallel whilst waiting for further guidance. This could significantly increase compliance risks for smaller firms that lack dedicated resources.

>See also: Financial services and the great cloud conundrum

The drive to eradicate money laundering has been flagged as a significant area of focus in this year’s business plan. As well as promising to use its teeth to prosecute the worst offenders, the FCA is also going to review the way money-laundering supervision is managed by professional bodies such as the Institute of Chartered Accountants and the Solicitors Regulation Authority (SRA).

This review will also lead to the creation of a new watchdog role known as the Office of Professional Body AML Supervision or OPBAS, which the FCA will fulfil. While this is a positive step that will be welcomed right across the sector, there is bound to be some concern about how the watchdog will operate and the degree of scrutiny it will have over firms’ affairs.

Cybercrime is another key area of focus in this year’s business plan and rightly so. Quoting data provided by the Office of National Statistics (ONS), the report highlights that there were 2.11 million victims of cybercrime and 2.5 million incidents of bank and credit account fraud in 2015/16.

The scale of cybercrime is now so severe that some will be questioning whether enough is being done to address it. The recent rise in the number of FinTech firms, particularly over the last 12 to 18 months, is likely to have contributed to the problem. In view of this, it could be possible that some of this investment in consumer-driven innovation needs to be redirected to protecting data and preventing cybercrime.

>See also: The business of Blockchain in financial services

A new focus for the FCA this year is a review of the motor finance industry. This will involve a detailed thematic review into how motor finance firms are lending to consumers, taking into consideration suitability and affordability assessments to ensure good customer outcomes are maintained; and prevent potential mis-selling.

Looking further ahead, the plan has identified a number of new areas of focus for 2018/19 and beyond. These include a debt management sector review to find out more about what is leading to the current raised levels of household indebtedness and whether changes are need to protect consumers. Other schematic changes are also planned.

All in all, the FCA’s business plan has covered a lot of the expected ground and addressed some important industry issues.

 

Sourced by Laura Havard is a legal director at Shakespeare Martineau. She advises banks, building societies, insurance companies and intermediaries on a wide range of compliance matters

 

Nominations are now open for the Tech Leaders Awards 2017, the UK’s flagship celebration of the business, IT and digital leaders driving disruptive innovation and demonstrating value from the application of technology in businesses and organisations. Nominating is free and simply: just click here to enter. Good luck!

Avatar photo

Nick Ismail

Nick Ismail is a former editor for Information Age (from 2018 to 2022) before moving on to become Global Head of Brand Journalism at HCLTech. He has a particular interest in smart technologies, AI and...

Related Topics

Cyber Crime
FinTech
GDPR

Related Stories

Cybersecurity

How AI will shift the security landscape in 2024

The impact of AI within cybersecurity is expected to grow significantly this year, says Alex Holland, senior malware analyst at HP

AI & Machine Learning

NCSC releases guidelines for secure AI development

New guidance from the National Cyber Security Centre (NCSC) aims to help businesses securely innovate with AI and minimise risks

Cybersecurity

3 cybersecurity compliance challenges and how to address them

Earning those trust seals can strengthen relationships with board members and prospective customers, but it sure isn’t easy.

Cybersecurity

70% of UK firms reported cyber insurance changes in past year

According to research from Databarracks, seven in 10 UK businesses have seen changes to their cyber insurance in the past 12 months, as requirements rise