Cyber threats include privacy breaches


Australian financial services licensees (AFSLs) and digital advice licensees should be aware that cyber security threats or incidents could encompass privacy breaches as per new legislation tabled to introduce mandatory data breach reporting.
Such was the warning from law firm, Holley Nethercote, which referred to the Privacy Amendment (Notifiable Data Breaches) Bill 2016 and ‘Regulatory Guide 255: Providing digital financial product advice to retail clients' released by the corporate regulator to warn licensees they should implement a cyber resilience program that would be linked with their privacy policies.
The law firm's partner, Paul Derham, said: "All I'm saying is the law around privacy is gaining momentum and what licensees need to realise is when they have a cyber security incident, that triggers a possible privacy incident and a possible contravention of Australian Privacy Principle 11, which is the obligation to keep information secure".
In addition, Derham, and commercial and financial services lawyer, Matthew Twomey, said RG255 was the first regulatory guide that highlighted that the threat of cyber security went beyond just digital advice providers.
The Australian Securities and Investments Commission (ASIC) provided industry specific guidance but emphasised that it applied across the board to all licensees as everyone used software, platforms, and servers in their businesses, they said.
"ASIC is pinning that back to what we call the 10 commandments in section 912A of the Corporations Act, one of them being having the obligation on a licensee to have adequate risk management systems, and adequate IT resources is another obligation," Derham said.
These stipulated obligations, combined with the magnitude of cyber security issues facing AFSLs and digital advice licensees, indicated that ASIC was justifiably escalating its focus in this area, he said.
Recommended for you
AFCA has confirmed United Global Capital’s membership of the body will not be extended to accept further complaints, avoiding a repeat of the Dixon Advisory scenario.
Three of Australia’s largest financial advice groups have shared their thoughts with Money Management on whether they would include crypto on their approved product lists.
Shadow treasurer Angus Taylor has vowed to introduce a bill to legislate a raft of financial services reforms if the Coalition is elected.
Money Management examines the share price of financial advice licensees over one year to 31 March, with M&A actions in the final quarter having a positive effect for two licensees.