UK Data Protection Compliance - A Masterclass for Financial Services Firms

Introduction

Navigating data protection compliance in the financial services world can be a complex balance between the requirements of UK GDPR and those set out by the Financial Conduct Authority (FCA) and Prudential Regulation Authority (PRA). This seminar will help you plot a course through the complexity.

The UK GDPR’s Data Protection principles aim to minimise data processing; the overall aim is to process as little data as possible. To achieve this, firms must spend time mapping the data they process and identify an appropriate basis to do so.

The financial regulators, however, require firms to process increasing amounts of data, from data used for customer identification, financial crime prevention, product sales data reporting and helping customers with characteristics of vulnerability, to name just a few. Add to this the need to process large amounts of data to comply with the Consumer Duty’s product governance requirements we can see where the natural conflict with UK GDPR arises.

This new in-person full day masterclass focuses on the steps required to ensure compliance with both data protection and financial regulatory standards.

If you are in a compliance team or a senior manager in a regulated firm in the UK or have responsibility for data protection in a regulated firm then this course is for you.

What You Will Learn

This course will cover the following:

• The UK GDPR standards
• Importance and role of data mapping
• The relevant bases for processing data
• Exploring the impact of the Data (Use and Access) Act 2025
• Data protection policies
• Processing vulnerable customer data
• FCA data processing requirements under the Consumer Duty
• Data Retention
• Using data appropriately
• Governance and the role of the DPO