Editorial & Advertiser disclosure

Global Banking and Finance Review is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

Technology

Posted By Jessica Weisman-Pitts

Posted on March 28, 2024

Big data, big risk?

Big data, big risk?

By Ian McLean, CTO of Pollinate

The last decade of competition from fintechs, payment providers and big tech has changed customer expectations forever. Smart banking, defined by intelligent integrated experiences and efficiency, is what customers expect and is what any financial services business needs to deliver if it’s to be competitive. These experiences are underpinned by the ability to harness customer data, and surface it at the right time, in the right way. Enabling this is creating a data rush that’s driving huge innovation, but also comes with risks.

2023 has seen a number of high-profile banking data breaches. July saw banks including Deutsche Bank, Commerzbank and ING targeted in a major attack while here in the US, 1st Source bank saw nearly half a million client records breached. According to a recent report from IBM, the average cost of a data breach in the finance sector is $5.9 million, 28% higher than the average across other industries.

So, how can banks utilize data and drive the intelligent and integrated experiences customers expect, while also protecting this data, not to mention the bank’s reputation for security and prudence? To strike the balance, data controllers should stick to three principles when it comes to creating data driven customer experience, while also keeping data secure.

Less is more

The first thing to develop is a data strategy that asks how you use and store data and, crucially, how long you hold onto it. Is every data point you might have on a customer or merchant absolutely necessary?

When it comes to a customer bank account, clearly a lot of personal data is needed. But to design better experiences for customers and provide the insights that can help SMB customers grow, not all of this data will be necessary. An SMB customer running a cafe for example, might want to know what time of day to expect a rush of customers or an ebb in footfall, and they want these insights to be integrated in a way that makes business easy.

For a bank to deliver this data, is it necessary to know a customer’s full postcode, or would general geography work? The answer is not necessarily and actually incredible data can be generated in ways that don’t involve pinpointing individuals. Making use of tokenization can reduce the need for individual customer IDs.

Rather than horde data to try and compete with digital-first fintechs, banks should instead focus on brilliant basics. Rather than focus on huge customer data-sets, and all the insights you might be able to provide across a customer lifecycle ,the initial focus should be on integrated, pre-populated, informed acquisition, onboarding and early life engagement. Focus here will acquire and retain customer value and set banks apart from the competition.

Don’t be afraid to ditch dead data

This leads to our second principle, and one which is a crucial bulwark against potential data breaches.

In an age of AI enabled and highly determined hackers data hoarding can be toxic. Data has become one of the primary currencies of our tech enabled age. Because of this, data controllers can be reluctant to hit delete on unnecessary data. If the data that can drive intelligent and integrated experiences for the end user has been tokenized, the original data can be removed, thus reducing risk. Data is the new oil, but only when it’s safe. When data is compromised, it can be more like fool’s gold.

This can mean rethinking data protocols and developing a clear data strategy. If somebody else is holding a data point for example and you receive a copy of it, do you need to keep it? Let’s hold it only for as long as we need it, and then get rid of it. A lot of people don’t want to do this, but as somebody leading on data security, my advice would be to change the mindset here.

Embrace Tech

Tokenization and data clearing will take a bank so far but ultimately, a lot of customer data will need to be retained and this will always be an appealing prospect to criminals and hackers. The battle between hackers and data controllers doesn’t sleep, with hackers constantly testing systems with new technologies and techniques, and security teams needing to respond in kind.

New technologies can make data security experts nervous. This is understandable, after all, new software means new database integrations and potentially therefore more points of entry into databases. Technology however is key to matching the technological capabilities of hackers, and so data controllers shouldn’t be afraid to embrace it.

AI for example, can detect unusual behaviors which might indicate that somebody is trying to steal data and encryption can ensure that data is secure and protected. Hackers will be using the latest technologies, so it’s important that banks do too.

For financial services, a data breach isn’t just financially costly, but also hugely costly in terms of reputation. Nobody likes to imagine their personal details might have been compromised, but this is especially true in the case of sensitive financial data. While no system is foolproof, there are simple data strategies that banks can follow today, to minimize rise, while also maximizing the power of their data.

Recommended for you

  • Russia’s inflation reaches 9.5% this year, weekly data shows

  • Thriving in Uncertainty: How IA Is Turning Challenges to Sustained Growth for Financial Services

  • Factbox-What does Len Blavatnik’s streaming platform DAZN do?