Ensure customer information and financial transaction data security!The State Administration of Financial Supervision plans to introduce a new regulation

Posted on by

Beijing News Shell Finance News (Reporter Huang Xinyu) On March 22, in order to regulate the data processing activities of the banking insurance industry, ensure data security, and promote reasonable development and utilization of data, the General Administration of Financial Supervision drafted and announced the data security management of bank insurance institutionsMeasures (draft for comments) “(hereinafter referred to as” Measures “).

It is worth noting that the “Measures” require that in the process of sharing data within the group, the bank insurance institution should establish the “firewall” of the head office (company) and its subsidiary data security isolate, and take effective protection measures for shared data; “Measures Measures”It also puts forward corresponding security management requirements for specific data processing scenarios such as data processing, commission processing, common processing, and data transfer.

According to the person in charge of the relevant departments of the General Administration of Finance Supervision, in recent years, the “Data Security Law” and “Personal Information Protection Law” and other high -ranking laws have been released one after another, and clear requirements have been made on standardized data processing activities and personal information protection.At the same time, the digital change of digitalization in the financial industry has accelerated, new technologies and new business models have continued to emerge, and data use, processing, transmission, sharing and other activities have become increasingly frequent, which further highlights the importance of data security protection.In this regard, it is necessary to give full play to the “command stick” role of supervision. Through strengthening policy requirements, the bank insurance institutions are guided to compact the main responsibilities, improve the internal system, and take effective measures to strengthen data management and protection to ensure customer information and financial transaction data security security security.Essence

The main contents of the “Measures” include “Clarifying Data Security Governance Fragments”, “Establishing Data Classification Making Standards”, “Strengthening Data Security Management”, “Improved Data Security Technology Protection System”, “Strengthening Personal Information Protection”, “Improved Data Security Risk Monitoring and disposal Mechanism”And the seven aspects of “clarifying supervision and management responsibilities”.

Regarding “strengthening personal information protection”, the “Measures” requires bank insurance institutions to handle personal information in accordance with the principle of “clear notification and authorization consent”. The collection of personal information should be limited to the minimum range and must not be collected too much.

In the “clear supervision and management responsibilities”, the “Measures” emphasized that the General Administration of Financial Supervision will supervise and manage data security protection of bank insurance institutions, and handle data security incidents of bank insurance institutions in accordance with the law.

Edit Yue Caizhou

School pair Liu Baoqing