FSA Imposes Biggest Ever Fine on HSBC in the UK for Data Breaches


The UK Financial Services Authority (FSA) announced that it has fined HSBC almost £3.2 million in respect of data security breaches by three of the banks' units. HSBC Life UK Limited was fined £1,610,000, HSBC Actuaries and Consultants Limited was fined £875,000 and HSBC Insurance Brokers Limited was fined £700,000. The three firms are wholly owned subsidiaries of the HSBC Group of companies.

This is the largest fine ever imposed by the UK's financial regulator for data breach violations. The fine would have been higher but it was discounted by 30% because HSBC agreed to settle early during the FSA's investigation.

The FSA imposed the fine pursuant to section 206 of the Financial Services and Markets Act 2000 (the Act) in respect of breaches of Principle 3 of the FSA’s Principles for Businesses. Principle 3 of the FSA’s Principles for Businesses states that:“A firm must take reasonable care to organise and control its affairs responsibly and effectively, with adequate risk management systems.”

Please see full update for more information.

LOADING PDF: If there are any problems, click here to download the file.

Written by:

Published In:

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Morrison & Foerster LLP | Attorney Advertising

Don't miss a thing! Build a custom news brief:

Read fresh new writing on compliance, cybersecurity, Dodd-Frank, whistleblowers, social media, hiring & firing, patent reform, the NLRB, Obamacare, the SEC…

…or whatever matters the most to you. Follow authors, firms, and topics on JD Supra.

Create your news brief now - it's free and easy »

All the intelligence you need, in one easy email:

Great! Your first step to building an email digest of JD Supra authors and topics. Log in with LinkedIn so we can start sending your digest...

Sign up for your custom alerts now, using LinkedIn ›

* With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name.