Have protocols in place to secure access to client data

When it comes to the client data for which you're responsible, protecting clients' privacy and finances must come first.
FEB 17, 2015
News that a Morgan Stanley broker allegedly stole data on 350,000 clients and that information for 900 of them made it online was a jolt for many about the reality that cyberthreats don't come only from strangers in the cloud. The person sitting at the next desk can dump files onto a flash drive or access accounts online just as easily — if not more easily — than outsiders. It's not natural to distrust the people you hire, work with and speak to about their families every day. But when it comes to the client data for which you're responsible, protecting clients' privacy and finances must come first. It's OK to trust, but it's critical to verify. Wherever personal financial gain at the expense of others is possible, checks, rechecks and more redundant checks are required. And big firms aren't the only ones that need to be on top of data security.

EARLY DETECTION

Fortunately, Morgan Stanley spotted the theft early. As InvestmentNews' Liz Skinner reported last week, broker-dealers and custodians typically subscribe to cyber-security services that monitor postings, but mom-and-pop adviser shops often don't have the resources to do that. How can they avoid internal breaches in the first place? Experts recommend instituting an information-security plan that houses client data in a secure place and tightly restricts who can access it. Think of it as security clearances and sharing on a need-to-know basis. Even if you've worked with colleagues for decades and would trust them with your life, it does not mean the virtuous among us can't make mistakes. What if Jane takes a laptop home and misplaces it at the post office along the way? Or Bob uses a public hot spot at his local coffee shop to access client accounts he's working on? They may have good intentions, but those around them might not. In any case, having protocols in place to secure access to and usage of client data and company equipment is a key step in protecting the very business you've worked so hard to build.

Latest News

Western Asset agrees to $100M SEC penalty over cherry-picking scheme
Western Asset agrees to $100M SEC penalty over cherry-picking scheme

Franklin Resources' fixed-income unit settles SEC charges and closes firm-level DOJ and regulatory probes, but Kenneth Leech's criminal case continues.

Where investment returns meet tax returns: Why integrating wealth management and tax services matters
Where investment returns meet tax returns: Why integrating wealth management and tax services matters

Beyond rising client demand, firms and advisors with a focus on delivering tax alpha are in a better position to compete and thrive in the face of growing industry challenges.

PDT rule removal opens active trading to millions of retail investors
PDT rule removal opens active trading to millions of retail investors

Brokerages roll out real-time risk frameworks as $25,000 equity barrier falls after 25 years.

The wealth transfer isn't a logistics problem. It's a relationship problem
The wealth transfer isn't a logistics problem. It's a relationship problem

Some advisors are focused on moving assets. The families who trust us are worried about something far more important

Women may trust their advisors, but many still want better conversations
Women may trust their advisors, but many still want better conversations

While most women investors trust their advisors, new research points to “mansplaining” and other barriers that could undermine client relationships.

SPONSORED Estate planning isn't a service add-on. It's your retention strategy.

As $84 trillion prepares to change hands, advisors who treat estate planning as peripheral are quietly building a sieve, not a book.

SPONSORED Why strategy matters more than performance

In volatile markets, the advisors who win aren't the ones with the best calls - they're the ones whose clients stay the course.