Image
Icon

Directory

IconAccounting & Tax
IconActuaries
IconAdministrators
IconAppraisers & Valuers
IconArbitration Services
IconASIB
IconAssessors & Loss Adjusters
IconAssist and Lifestyle Benefits
IconAssociations & Institutes
IconAuditors
IconBBBEE Consulting and Verification Agencies
IconBroker Acquisition Financing
IconBrokers for Brokers
IconBusiness Process Management
IconBusiness Process Outsourcing
IconCall Centre Outsourcing & Sales
IconCompany Secretarial Services
IconCompliance
IconConsumer Protection
IconCorporate Governance
IconCredit Bureaus
IconDebit Order Collection Facilities
IconDefensive Driver Training
IconEducation and Training
IconEmergency Medical Rescue
IconFAIS
IconFire, Storm, Flood Damage Specialists
IconForensic Investigation Services
IconHuman Resources
IconIndustrial Cleaners
IconInformation Technology and Software Partners
IconInsurance Companies
IconLegal
IconLightning Damage & Surge Protection Specialists
IconNiche Insurance Products
IconOmbud
IconOutbound Sales
IconOutsourcing Companies
IconPolicy Administration
IconPremium Financing
IconPublic Loss Adjustors
IconPublications
IconRating Agencies
IconReference Books & Material
IconRegulatory Authorities
IconRisk Finance
IconRisk Management
IconRisk Surveyors
IconSalvage Operators
IconSpecialized Claims Investigations & Assessing
IconSurveys and Research
IconTraining Courses & Workshops
IconUnderwriting Managers
IconVehicle Accident Management
IconVehicle and Household Risk Inspection Services
IconVehicle Tracking
IconWellness Programs
IconWholesale Brokers
IconZZZZZZ
Image
  Subscribe To »

Digital transformation in the financial services sector

Published

2020

Thu

06

Aug

by Carla Collett, Partner, Peter Grealy, Partner, Nozipho Mngomezulu, Partner, Dawid de Villiers, Partner, Karl Blom, Senior Associate, and Wendy Tembedza, Senior Associate from Webber Wentzel

 

Data protection and cybercrime are becoming more pressing issues for financial services companies to address from a legal perspective, as Covid-19 accelerates digital transformation

Before Covid-19 landed on South African soil and forced many citizens into the digital, contactless arena, the financial services industry had already started its digital transformation.

South African consumers are increasingly becoming familiar with contactless payment portals and online lending solutions, chat-bots and robo-advisors and obtaining insurance quotes and entering into insurance policies using their mobile devices. However, the shift from brick and mortar stores to a faceless, digital environment opens the door to a new world of legal and commercial risks and issues. 

A particular legal consideration which should be front of mind for the financial services industry is data protection.  In the insurance industry in particular, this is a requirement in terms of the Policyholder Protection Rules issued under the Long-term Insurance Act, 1998 and the Short-term Insurance Act, 1998, and it is mentioned in Prudential Standard GOI3 and GOI5.  South African banks are also subject to the cyber security requirements set out in Guidance Note G4 of 2017 and the cloud computing and offshoring of data requirements set out in Guidance Note G5 of 2018 (read with Directive 3 of 2018) which require them to adhere to certain standards on data protection (among other things).

The Protection of Personal Information Act, 2013 (POPIA) has more general application.  Financial services businesses will need to ensure that the way they process personal information is POPIA-compliant by 30 June 2021. This means that those businesses that have created novel fintech and insurtech solutions will need to think carefully about whether those solutions have been designed in such a way that on 1 July 2021 they are not deemed unlawful.

For example, if potential insurance customers enter their details on a mobile device to receive an insurance quote, are they aware of all the purposes for which their personal information will be used? How long is that personal information stored? What technical and organisational measures are built into the solution, and what does the insurer have in place to prevent any loss of damage to or unauthorised destruction of potential customers’ personal information, as well as unlawful access to or processing of their personal information when they enter their details onto a mobile device to obtain an insurance quote? These are just some of the POPIA-related questions to ask to check for POPIA compliance.

Another significant aspect for financial services businesses to consider when moving into the digital environment is the risk posed by cybercrime. On 1 July 2020, the National Council of Provinces passed the Cybercrimes Bill. Once this Bill becomes effective, financial institutions (as this term is defined in the Financial Sector Regulation Act, 2017) have reporting obligations. In terms of the Cybercrimes Bill, if a financial institution is aware or becomes aware that its computer system (which will extend to its fintech or insurtech platform) is involved in committing any offence set out in Part 1 of Chapter 2 of the Cybercrimes Bill, the financial institution must, without undue delay and where feasible, not later than 72 hours after becoming aware of the offence, report it to the South African Police Service.

From a commercial perspective, there are some key considerations for a bank or insurer to consider when embarking on the journey of rolling out a digital solution. For instance, the decision should be made beforehand whether to engage a third-party software developer or to use in-house software developers. Both options have their pros and cons. Should you choose the former, ensuring that your agreement with your selected service provider is drafted correctly from the outset is imperative to:

  • secure your ownership of all of the intellectual property rights in the fintech or insurtech solution, as well as any customisations, modifications, updates and upgrades;
  • agree appropriate pricing for the solution;
  • ensure that your platform is maintained (if required) with appropriate service levels and possible penalties for non-performance; and
  • agree other vital provisions, such as, without limitation, data protection, warranties and indemnities. 
 
Source: NADINE VAN TONDER - TS COMMUNICATIONS
 
« Back to previous page Print this page » |
 

Breaking News »

AUTO & GENERAL INSURANCE PUTS ITS MONEY WHERE ITS MOUTH IS

In these uncertain and unpredictable times, service reliability is crucial. But, how many companies actually practice what they preach, are accountable for their actions, stick to their promises and put ...
Read More »

  

SANDWICH PANELS: A Burning Issue - Understanding the Risk

Sandwich Panel related fires have resulted in major property damage and business interruption losses over the years. What are Sandwich Panels? Sandwich Panels or Composite Panels are structures made ...
Read More »

  

Allianz and Euler Hermes strengthen Africa team

Johannesburg – September 16, 2020 – Allianz Global Corporate & Specialty (AGCS) appointed Asheen Maikoo and Piet Schutte as Senior Risk Engineers on September 1, 2020, to continue ...
Read More »

  

QSURE STEPS INTO COLLECTIONS AND PAYMENTS INDUSTRY AS KEY PLAYER

        Well-known collections and payments company, QLINK Holdings (Pty) Ltd, today announced it has rebranded Insure Group Managers Services (IGMS) to QSURE. Chief Executive ...
Read More »

 

More News »

Image

Healthcare »

Image

Investment »

Image

Life »

Image

Retirement »

Advertise Here
Image
Image
Image
Image
Image
Image
Image
Advertise Here

From The Glossary »

Icon

CAC 40 Index:

Weighted index of the largest 40 companies listed on the Paris Stock Exchange.
More Definitions »

 

Advertise

 

eZine

 

Contact IG

 

Media Pack

 

RSS Feeds

By using this website you agree to the Terms of Use.
Copyright © Insurance Gateway (Pty) Ltd 2004 - 2020. All Rights Reserved.