The forbearance of regulators as the pandemic took hold provided much-needed flexibility for organisations, so they could prioritize the delivery of services by work forces that had become remote almost overnight.Β Employers moved fast to roll out collaboration tools like Zoom, Microsoft Teams and Webex to keep staff connected and productive β and with the overriding need for business continuity, oversight was sometimes more of an afterthought.
Fast-forward eighteen months, with collaboration tools now integral to the modern workplace, the focus is firmly back on supervision β and the compliance and security risks associated with platform usage. Organisations must now turn their attention to ensuring oversight and accountability in virtual environments mirrors that which we expect in physical ones.Β
In Autumn 2021, thereβs no longer room for excuses and in the case of financial services, regulators around the world have been clear in that they expect regulatory obligations to be met, says Stacey English, Theta Lakeβs Director of Market Intelligence.
βNow this much time has passed, regulators in every market are expecting that the compliance controls are as robust in remote working as they are in the office,β she explained. The latest expectations set out by the FCA reminds firms that βany form of remote or hybrid working adopted should not risk or compromise the firmβs ability to follow all rules, regulatory standards and obligations, or lead to a failure to meet themβ.Β With 91% of organizations surveyed in Theta Lakeβs latest research having between 2 and 6 collaboration platforms deployed, itβs no surprise that 83% have restricted usage of valuable features as they grapple with the complexity and challenges of meeting compliance, security and privacy requirements.
Principle-driven regulatory standards
Acknowledging that technology moves fast in a changing world, some regulators have cautioned that while the precise details of regulatory rules might not keep pace with technological developments, the intended outcomes relating to record keeping and supervision still apply.Β Β
βRegulators, like the FCA in the UK or The European Securities and Markets Authority (ESMA) have been clear that the βhowβ might have changed but the βwhatβ hasnβt, and technology itself doesnβt excuse lapses. The onus is on firms to ensure new tools support capture, archiving and supervision, if theyβre going to use it in a regulated environmentβ
Indeed, some of these outcome-driven standards emerged from the financial crisis over a decade ago, and theyβll continue to apply even when weβre having our investment sales calls using holograms or metaverse avatarsβ¦ βItβs about putting the focus back on conduct and mitigating risks outside a tightly controlled physical environment. So that people donβt mis-sell or abuse or behave inappropriately in any professional context, and that if they do, it can be remedied fast.β
As English pointed out, supervision tools like Theta Lake have application beyond financial services regulation, to privacy, security, and HR issues like bullying and racism. Any communications on collaboration tools can be shared and recorded through screenshots or native recording functionality, and traditional methods of supervision simply canβt protect the organisation from this kind of risk. βTake misconduct or data leakage in chat, theyβre persistent, they never go away β so itβs essential to have tools like Theta Lake deployed across all your communications so that you can pinpoint and remedy when this happened,β she continued.
Beyond immediate crisis, to sustainable standards
In times of business stress, misconduct on every level unsurprisingly escalates, as English pointed out.
βWhen you have a stressful environment with markets all over the place, people working from anywhere, you can more easily end up with people behaving in the wrong way just to get things done.Β
βAnd there are more accidental breaches, like people sharing the wrong screen with sensitive data or responding to phishing attempts, just because theyβre tired and burned out.βΒ
Regulatory compliance is not about being superhuman, but about ensuring risks are identified and dealt with. βEverything is now more data driven, and with regulators moving that way itβs clear that in the future firms will need to have data and records ready to share, to comply with supervisory requests and investigations,β she warned. βIt wonβt be acceptable to say you donβt have the records or canβt supervise your systems, you have to have a way of monitoring and managing risk.β
This is where Theta Lake can help, providing the same robust oversight of conduct and security risks across collaboration platforms, whether in or outside of a tightly controlled physical office.Β This includes detecting the sharing of confidential information through to collusive, aggressive or bullying behaviour.Β The solution continues to evolve to capture the most current risks organizations are concerned about from cryptocurrency conversations to managing information barriers across multiple collaboration tools.Β
Theta Lake provides complete integrated compliance, security and archiving support, for collaboration channels and platforms β so you can meet your responsibilities in any market, and comply with all regulatory requests with confidence
Learn more and request a demo at: https://thetalake.com/request-a-demo/
Β
