Wed, Jun 10, 2020

William Rimington Discusses GDPR Concerns with FTAdviser

On May 25, 2018 the General Data Protection Regulation (GDPR) came into effect to prepare the European Union (EU) for the digital age. GDPR was designed to give EU citizens more control over their personal data and ensure organizations gather personal data legally and under strict conditions. Organizations were  further obligated to protect the data from misuse and exploitation and respect the rights of data owners or face penalties for not doing so.

In an article for FTAdviser, William Rimington, Managing Director, in the Cyber Risk practice of Kroll, a division of Duff & Phelps, states “A number of organizations were still struggling to meet their obligations when confronted with tasks like subject access requests – where an individual can demand details of all the data held on them by a company.” This has been a major challenge facing advisors as organizations fail to comply with GDPR. The first three quarters of the UK’s 2019-2020 financial year saw over 799 reports of personal data breaches across the finance, insurance and credit sector. According to William, organizations need to improve how they manage, treat and protect their data or they will have to pay large fines. 

Read the full article here.



Cyber Risk

Incident response, digital forensics, breach notification, managed detection services, penetration testing, cyber assessments and advisory.

Cyber Risk Assessments

Kroll's cyber risk assessments deliver actionable recommendations to improve security, using industry best practices & the best technology available.

Data Protection Officer (DPO) Consultancy Services

Kroll's data privacy team provide DPO consultancy services to help you become and stay compliant with regulatory mandates.


Data Breach Call Center Services

A notification letter can generate lots of questions for those affected by a data breach. Kroll’s call center services are provided by skilled representatives who know how to handle difficult questions and stand at the ready to serve your breached population.

Cyber Policy Review and Design

Ensure that your cyber security policy has the appropriate controls needed to keep your organization's information secure with a remediation plan in place in the event of an incident.