The UK’s Information Commission Office (ICO) has approved an application by First Data to share personal customer data across international borders.
This will allow the payment and transactions technology provider to use and store customer information sourced in one nation or jurisdiction in overseas branches, departments and locations.
To get clearance, the payment technology provider had to submit a Processor Binding Corporate Rules (BCR) application to the government agency. This is used to show that a company is able to keep in line with the EU’s Data Protection Directive, the toughest data security framework in existence.
First Data is among the first companies in the world to meet its strict requirements.
“First Data should be commended for its commitment to the concept of binding corporate rules and for the respect for the privacy of individuals that this demonstrates,” said David Smith, ICO Deputy Commissioner, in a statement. “The ICO welcomes approaches from multi-national organizations that need to share personal information within their own group, but outside Europe and who want to use binding corporate rules to enable that.”
In 2011, the ICO also granted First Data its Controller BCR, allowing the company to transfer employee information across national borders.
A survey of corporate decision makers across Europe finds that chief executives in more than half of the businesses canvassed take responsibility for the issue of cybersecurity.
Regulatory technology - aka RegTech - should become a priority for bankers as regulators increasingly focus on risk data aggregation, argues a white paper from Wolters Kluwer.
Despite significant cost-cutting in recent years, management consultancy McKinsey says the world’s biggest banks need more radical business plans.
With its estimated market capitalisation reduced to US$235bn, Wells Fargo’s current valuation is some US$4bn less than its rival.