The Financial Conduct Authority and the Information Commissioner’s Office published a joint update on the General Data Protection Regulation. The update includes reference to the board level responsibility required under GDPR and that fact that financial institutions must be able to produce evidence to demonstrate the steps that they have taken to comply.
For more information, click here.