Helping you comply with your responsibilities to information rights in the finance, insurance and credit sector, including banks, lenders and credit reference agencies.
ICO and FCA joint statement
Financial Services firms asked the Financial Conduct Authority (FCA) about their ability to comply with both the GDPR and rules made by the FCA. The ICO and the FCA believe the GDPR does not impose requirements which are incompatible with the rules in the FCA Handbook.
Big data, artificial intelligence and machine learning
Our big data paper looks at the data protection implications of big data, AI, and machine learning, and the tools that can assist with compliance.
Filing defaults with credit reference agencies
Guidance for lenders and others who provide credit about when and how to file information about defaults with the credit reference agencies to ensure credit reference agencies are able to hold fair and accurate records about the financial standing of those individuals.
Credit agreements and data sharing
The ICO’s view on whether credit reference agencies can process information after a credit agreement has ended.
Findings from ICO review visits to credit reference agencies
During 2014 the ICO undertook reviews at Callcredit, Equifax and Experian, the three main UK credit reference agencies (CRAs), to get a better understanding of the processing they undertake and how they operate. The reviews were designed to help organisations who may be experiencing particular issues.
Credit unions - advisory visits report
In 2012/13 the ICO undertook seven advisory visits at credit unions (CRUs) to get a better understanding of the processing they undertake and the circumstances that they operate in. Read our findings from ICO advisory visits to credit unions which covers our experience of personal data handling by CRUs and where they can make improvements in how they handle their members’ information.
See the latest enforcement action we've taken in the finance, insurance and credit sector.