Mastering Privacy Solves LOTS of Unexpected FinTech Compliance Issues

Published by Yana on

In recent months, many compliance officers had to answer the following questions:

  • Should we ban Whatsapp on the company’s mobile phones?
  • How much can we share on Slack?
  • Should we stop using Equifax services?
  • How can we explain to our auditors that using AWS contracts based on the US is safe from the outsourcing and privacy perspective?
  • How do we know that our contracts with Jumio, Onfido, ComplyAdvantage, or Elliptic are compliant with GDPR?
  • Where do we document the audit rights for our regulators with respect to the vendors we use for compliance checks?
  • How do we know our marketing activities are GDPR compliant?

You see understanding your Privacy Policy matters for practical application in REAL FinTech life:

  • How to respond to customer questions and complaints, especially when they ask to delete their data?
  • How to reconcile data transfers with outsourcing documentation?
  • What needs to be logged by your IT systems to prepare for privacy audits?
  • How and where to disclose the fact that you are sharing a lot of customer data with vendors and service providers?
  • What about sharing data from the EU with US or UK entities?
  • Are there any special rules for inter-company sharing?

A typical lean FinTech startup does not have massive privacy or legal team to research all of that, which is why most FinTechs can only benefit from the knowledge of privacy, when it’s targeted, to the point, and answers specific questions they have.

So, if you don’t know how to answer any (or all) of the questions listed above, you will absolutely benefit from my Privacy Policy workshop next week!

AGENDA:

  • Day 1: Information we collect from or about our customers and why we need it. Q&A (data security, encryption, when data moves or does not move).
  • Day 2: How we use and share information and what are our customers’ rights. How to organize your Privacy Policy without relying on the Privacy Shield. Q&A (covered Privacy Shield, right to be forgotten, B2B2C models).

 Yes, we will also talk about US cloud-based service providers and B2B2C models.

If you cannot make it to the session, everything is recorded and you will have lifetime access to the recordings and templates (as well as future updates I make). 

 Intrigued? Click here to register!

>