The EU’s Digital Operational Resilience Act (DORA) dragon is getting ready for flight in 150 days. Leave your castle walls in disrepair over the summer holidays at your peril. This regulation has taken a far deeper, broader and more prescriptive approach to derisking the ‘end to end’ Information Communication and Technology (ICT) risk than ever
We are pleased to announce the first wave of confirmed firms, regulators and trade associations are participating in JWG’s 8th annual RegTech conference, ‘Getting real about RegTech 2024. Don’t miss this opportunity to join this premier global event which articulates the key challenges which RegTech can help overcome in 2024. Register here RegTech year 8 Regulators
JWG’s eighth annual conference will be the premier, global event for setting the 2024 RegTech agenda on 7 February in London. Join us to help shape the debate today. Register for 7 February 2024 About the JWG RegTech agenda Long recognised as the first, biggest and most professional public/private sector agenda debate, JWG is continuing
An all-star cast of 40+ speakers will gather virtually on 9th & 10th November 2022 to set the 2023 RegTech agenda at JWG’s 7th annual premier RegTech conference. Markets have been rocked by turbulence unseen in over a decade and the regulatory agenda has shifted quickly. JWG research has defined 10 panels and worked with the industry to
Rulings by the Belgian and French data privacy authorities (DPAs) emphasise the risk posed by social media monitoring and scraping technology to firms and regulators such as the UK Financial Conduct Authority (FCA) that commonly use such tools for sentiment analysis, as well as to monitor individuals’ and organisations’ online activity. “The public nature of the personal data available
The great work-from-home experiment forced traders from the office and digital surveillance teams into overdrive. RegTech can provide a path forward through serious legal obstacles that stand in the way of effective oversight. However, good compliance is not just about the tech and we need collaborative action to make surveillance RegTech fit for purpose. The
A decision that U.S.-based Clearview AI breached the privacy of Australians by scraping their biometric information from the internet and disclosing it through a facial recognition tool highlights risks for regtech companies using web-scraped personal data in commercial software. The decision by the the Office of the Australian Information Commissioner’s (OAIC) says emphatically that images
100+ Organizations have registered for RegTech 2021 JWG has finalized an all-star cast of 37 speakers from the best and the brightest in our space which will be gather virtually on 16th & 17th November 2021. Don’t miss this opportunity to join international firms, the Bank of England, FCA, global regulators and trade associations and top banks,
We are delighted to reveal more details for our annual conference. With so much happening in this space – make sure that you know what risks are coming and how to tackle them! See details below and sign up now to hear a great cast of regulators, academia, firms and suppliers discussing the next generation
A decade ago, JWG worked with Banking Technology to produce the world’s first RegTech magazine for our sector. We are now delighted to be hosting the 6th annual RegTech / SupTech Conference on 16 & 17 November 2021 which promises to be one of the most exciting, digital events of the season. Register Here Today Agenda
The number of cyber incidents at UK banks, asset managers, wholesale brokers and exchanges rose from 21 in 2019 to 55 in 2020, a 161.9% increase, according to the Financial Conduct Authority (FCA). The disclosure was made in response to a request under the Freedom of Information (FoI) Act. Asset managers, wholesale brokers, platforms and
It has been a very busy 2021 and it is a very noisy financial services regulatory marketplace. JWG is pleased to be helping to contextualise the strategic issues in play with a new podcast series called RegCast which you can access here. So what is RegCast? RegCast is an industry spotlight on the business
With the General Data Protection Regulation (GDPR) coming into force, it is time to reflect on such a huge overhaul of the data protection laws affecting every organization operating within the UK and the EU, from schools to large multinationals. To put things into perspective, in the UK alone, GDPR impacts over 500,000 data controllers
The GDPR broadens and deepens the rules between data controllers and data processors for processing of personal data and for the first time, directly enforceable obligations are imposed on processors as well as controllers. The GDPR also requires that controllers and processors enter into written contracts (“C2P Clauses”). Practical Law recently published its data processing
One of the hot topics at our Capital Markets Conference this year was how RegTech could help institutions with their Know Your Client (KYC) obligations. With an expert panel from a range of backgrounds presenting fascinating perspectives on this current issue, a issues were given fresh attention ranging from artificial intelligence (AI), blockchain, data architecture
Several interconnected global trends have heightened the risk banks face when combating financial crime. First, regulators are continually revising rules as they expand their focus from organised crime to global terrorist networks, many of which have grown more sophisticated in recent years. Second, integrated networks and an increase in cross-border transactions have left gaps in
Following a successful seventh reporting and reference data special interest group (RRDS 7) at the Financial Conduct Authority (FCA) on 13 February 2018, participants met for the usual post-RRDS drinks and networking session. At one point during the evening, we found ourselves mediating a friendly debate between two senior compliance officers on the post-trade reporting
The past year has been illuminating for the RegTech market, the past twelve months has seen an increase in discussion on the application of technology to regulatory compliance. We have seen action from the regulators, including the FCA’s recent TechSprint in which we at JWG were involved, and major regulatory initiatives, most notably MiFID II,
Thomson Reuters Regulatory Intelligence originally published this article on 21/12/2017. Thomson Reuters Regulatory Intelligence speaks to important figures in the compliance and financial arena to hear their thoughts and discuss wider issues related to their fields. Today we talk to PJ Di Giammarino founder and CEO of regulatory think-tank JWG–IT, trusted by the global financial
With the implementation date of GDPR just seven months away, firms will need to start getting to grips with the requirements soon to be ushered in under the EU’s flagship regulation for data protection. As things stand, GDPR will kick in before the UK formally leaves the European Union, meaning that its implications will still
One of the many weaknesses that the financial crisis exposed was the feeble transparency framework in financial markets. In response, MiFID II and MiFIR built on the regulatory agenda of the G20 by aiming to strengthen the transparency framework of markets in financial instruments, including OTC trading. Building on MiFID I, the second incarnation extends
In exactly one year, the General Data Protection Regulation (GDPR) will apply across the European Union, yet firms are struggling to prepare for new data security obligations due to the sheer quantity of regulations due to be enforced in 2018. With the current date of MiFID II being 3 January 2018 and PSD2 due 10
What image is conjured up when you hear the term “cybercriminal”? A Guy Fawkes mask partially concealed underneath a black hoodie to the accompaniment of sinister music? Whilst this image provides an excellent trope for Saturday night TV, it does not reflect the reality of cybercrime. At our second RegTech Capital Markets Conference, we held
The common image of a cybercriminal is that of a slovenly, yet highly-skilled, individual sitting alone in a basement having not seen daylight in weeks. The modern cybercriminal, however, is far removed from this. Cybercriminals are organised in large networks, often well-funded and highly talented which allows them to unleash devastating attacks. According to online
Big data and financial regulation share two striking resemblances: both are overwhelming and largely impenetrable to the uninitiated. Although combining the two is pursued with noble intentions by regulators, the result is a concoction of stress, confusion and frustration for most firms. This combination, however, is of paramount importance for firms’ and clients’ concerns about
This is the second in a series of occasional blogs we’ll be writing about what Brexit means for IT and IT Law in the coming weeks and months. Deirdre Moynihan reviews what Brexit is likely to mean for Data Protection, where the approach to implementing the General Data Protection Regulation could well turn out to
This is the first in a series of occasional blogs we’ll be writing about what Brexit means for IT and IT Law in the coming weeks and months. It looks at the choices facing the UK IT industry around Brexit and Article 50. In the second, Deirdre Moynihan reviews what Brexit is likely to mean
The push for increased transparency following the financial crisis has had a visible impact on the financial services industry. Many regulations have created similar, but slightly different, requirements, in particular across the Atlantic. Increased – but uncoordinated – demand on data, and proof of process in different formats and languages, without proper impact assessments conducted
In November last year, at JWG’s monthly CDMG meeting, we discussed the incoming General Data Protection Regulation which – at that stage – remained a draft and the implications of the removal of the US safe harbour rule. The safe harbour rule was an agreement between the US and EU allowing businesses to transfer personal
JWG analysis. Amongst a number of themes and issues that are raised on a regular basis at our monthly Customer Data Management Group (CDMG) meetings, data protection and the need for harmonisation are consistently top contenders. Recently, CDMG has covered the OECD Common Reporting Standard, MiFID II and the new Market Abuse Regulation, and will
By Sam Tyfield, Vedder Price. Back in 2009, the EU issued a Recommendation (which has no binding legal effect) on the use and application of RFIDs (which, for our purposes, means ID/swipe/access cards). The EU has just issued a review of the implementation of the Recommendation EU-wide and has found take-up by EU member States
By Bird & Bird LLP This is an update from Bird & Bird on the progress of the EU Data Protection Regulation. The original document can be found here: EU Data Protection Regulation: one step forward After months of discussion, the LIBE Committee of the European Parliament voted on compromise amendments to the draft, General Data
Is data protection soon to become the biggest compliance hurdle facing the back office? In an effort to improve the protection offered to consumers, and to harmonise data practices, the EU is currently in the process of passing two pieces of legislation: the Cybercrime Directive and the General Data Protection Regulation (GDPR). Few people have