The Delayed FinTech Revolution

Uploaded on 2016-04-25 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Financial

Technology has transformed how we work, communicate and travel. In contrast, modern digital technology has not yet transformed financial services. Open data is the key to change in this sector of the economy.

The time has come for the financial services industry to join the open data revolution. Open data means interoperability of digital information to increase its usability and accessibility. The Obama administration has done much to make open data a cornerstone of its digital government strategy.

 When open data is brought to the private sector, moreover, one of the benefits will be information portability for consumers. “Informational portability” means that consumers will be able to share and use their personal data in different individual services and products.

Consumers and businesses have, of course, long shared their key financial information with trusted third parties, such as accountants, lawyers and financial advisors. Today, advances in technology have made it easier for customers of banks and insurance companies, among other financial institutions, to share their information with others. Rather than storing key documents in shoe boxes and file folders, consumers and small businesses can pass along digital online and mobile banking credentials.

The promise of fintech is to bring consumer finance into the 21st Century. Fintech companies have already created products that enable consumers to budget, pay their bills, limit spending and identify fraudulent transactions on credit and debit card statements. These enterprises also offer sophisticated tools for facilitating individual investment, financial planning and portfolio management.

This happy story of progress, however, is far from complete because of concerns around privacy and security, and the intermittent choke-points on data sharing. Financial institutions, such as banks and insurance companies, warn against the risks that would follow from allowing their customers to authorize access by third parties to their digital account information.

The time has come for the financial services industry to join the open data revolution.

Financial entities have also periodically taken steps to prevent their users from delegating such access to third parties. These steps are based on understandable concerns about privacy and security.

In the Dodd-Frank Act, Congress took a major step toward ensuring open data. In its Section 1033, this law authorizes the Consumer Financial Protection Bureau (CFPB) to make rules requiring financial institutions to give consumers information upon request about their use of financial products and services.

Congress also authorized the CFPB to develop standardized formats for information. In light of the current absence of cross-industry cooperation, the CFPB should act to enable consumers to get the digital financial services they desire and deserve.

Three policy principles for CFPB rulemaking stand out.

First, the law should enable mechanisms that safeguard and promote consumer consent. Consumers should be in charge of the conditions under which third parties can access their financial information, be provided with clear information about the terms under which such functionality is permitted and be able to turn access on or off.

Second, the concerns regarding privacy and security have merit and banks deserve praise for their concern about them. At the same time, these issues are eminently solvable. Encryption enables firms to share information without making it visible to third parties. Identity management tools allow firms to build systems that provide access to some but not all information, much in the way that a valet key to a car allows someone to drive it but not open the glove box.

The first move should be to seek broad industry agreement on best practices in these areas. Only if there is gridlock regarding self-regulation, the CFPB should develop regulations to establish strong privacy and security requirements.

Finally, the CFPB should act to protect consumers from liability from data sharing, so long as they behave with reasonable care. This model already exists for electronic fund transfers due to measures such as the Federal Reserve’s Regulation E and Regulation Z. These regulations limit a consumer’s liability for unauthorized electronic transactions when using credit cards and debit cards. Similar regulations are needed in the fintech context to clarify questions regarding a consumer’s liability for harms following from delegated account access.

The digital revolution will come to financial services only if consumers are guaranteed consistent, secure and up-to-date access to their financial information. The time has come for the US government to take the first steps to guarantee financial data mobility.

TechCrunch: http://tcrn.ch/1SQ3AER

« Cyber Insurer Offers Some Ransomware Insights
Cyber Threat Intelligence: Sharing Is Caring »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Computer Laboratory - University of Cambridge

Computer Laboratory - University of Cambridge

Computer security has been among the Laboratory’s research interests for many years, along with related topics such as cryptology

Combitech

Combitech

Combitech is the Nordic region’s leading cyber security consultancy firm, with about 260 certified security consultants helping companies and authorities prevent and manage cyber threats.

Industrial Cyber Security

Industrial Cyber Security

Industrial Cyber Security provides specialist consulting services in enterprise and SCADA system security.

Data61

Data61

Data61 is Australia’s leading digital research network offering the research capabilities, IP and collaboration programs to unleash the country’s digital & data-driven potential.

Multitel

Multitel

Multitel is an independent research centre. We develop and integrate emerging technologies into the industrial fabric at the regional and international levels.

Kapalya

Kapalya

Kapalya empowers businesses and their employees to securely store sensitive files at-rest and in-transit across multiple platforms through a user-friendly desktop and mobile application.

SOCOTEC Certification International

SOCOTEC Certification International

SOCOTEC Certification International has been providing management systems assessment and accredited ISO certification services to organisations around the world since 1995.

Security BSides

Security BSides

Security BSides is the first grass roots, DIY, open security conference in the world!. BSides is a community-driven framework for building events for and by information security community members.

Swisscom Blockchain

Swisscom Blockchain

Swisscom Blockchain is focused on supporting the implementation and adaption of Blockchain-based platforms in enterprises across diverse industries.

KanREN

KanREN

KanREN is a member based consortium offering custom, world-class network services and support for researchers, educators, and public service institutions in the state of Kansas.

Arkphire

Arkphire

Arkphire provide solutions across every aspect of IT to help your business perform better.

Nanitor

Nanitor

Nanitor is a powerful cybersecurity management platform focusing on hardening security fundamentals across your global IT infrastructure.

Creative ITC

Creative ITC

Creative ITC is a leading infrastructure and cloud enablement company. We design and deliver exceptional managed services and cloud solutions.

Patriot Consulting Technology Group

Patriot Consulting Technology Group

Patriot Consulting's mission is to help our clients manage cybersecurity risk through secure deployments of Microsoft 365.

Galvanick

Galvanick

Galvanick enables your operations and IT teams to protect your industrial systems and networks against digital threats.

CyberSec Vietnam

CyberSec Vietnam

The CyberSec Vietnam Conference on 13 June 2024 in Ho Chi Minh City focuses on the critical pursuit of building trust in digital networks and fortifying Vietnam's cybersecurity ecosystem.