The U.S. Securities and Exchange Commission announced a $35 million settlement with multinational financial services provider Morgan Stanley Smith and Barney's wealth and asset management division related to alleged insufficient data protection measures for approximately 15 million customers over a five-year period. The SEC claims various data deletion issues, including those occurring via a contracted third-party moving and storage company "with no experience or expertise in data destruction services" and by MSSB itself. SEC Enforcement Division Director Gurbir Grewal said, "Today's action sends a clear message to financial institutions that they must take seriously their obligation to safeguard (sensitive) data."
22 Sept. 2022
SEC fines Morgan Stanley $35M over alleged data protection, deletion issues
Related stories
10 tips to prepare for the EU Cyber Resilience Act
A view from Brussels: State of the (European) Union
US senator aims to advance US AI leadership with sandbox, federal regulatory exemptions
Notes from the Asia-Pacific region: India's AI ecosystem, digital competition and more
Ninth Circuit takes cautious approach to privacy and data security standing
