PRAG Guidance: How Cybercrime affects Pension Schemes

The Pensions Research Accountants Group (PRAG) has published new guidance to assist trustees of pension schemes, the pension sector organisations that support them and their advisers, about the holistic protection that is needed to minimise the damage which can be caused by cybercrime. The Pensions Regulator has also just issued guidance for trustees on the “Cyber…

Read More

Do I need to Appoint a Data Protection Officer (DPO) under GDPR?

Data Protection – responsibilities and compliance The requirements of the GDPR are significant, and even if you currently comply with existing regulations, you may need to update your current policies, develop new ones, and ensure that these are properly documented. This will necessitate, time, effort, and costs. “But do I need to appoint a Data…

Read More

UK Government Confirms its Adoption of the European Union’s GDPR, Post-Brexit – Part 2

Data Protection and Cyber Security The additional data security requirements within the GDPR may require businesses to reassess their own cyber security measures. The “10 steps to Cyber Security”, published by the National Cyber Security Centre, provides detailed guidance on how organisations can protect themselves from cyber security threats, and is a good starting point…

Read More

Coping with the Demands of Assurance: How to Reduce Cost and Improve Effectiveness – Part 2

Agreed upon Procedures A business may commission an “Agreed upon procedures” report, specifying a range of controls on which they wish to receive assurance that they are operating effectively. This may be used in response to requests from potential clients who would like re-assurance that certain controls on which they are reliant are effective. Internal…

Read More