Скопировано

New ISO/IEC 27562:2024 standard to strengthen data protection in fintech

21.01.2025 11:37:00
Дата публикации
The recently published ISO/IEC 27562:2024 international standard provides recommendations for the effective protection of personal data in the field of financial and technological services.

The document was developed to improve data security and minimize risks during their processing.

The standard covers all major business models, including interactions between consumers and commercial organizations, as well as between the companies themselves (banks, payment services, etc.).

Key provisions of the standard:

Guidance for fintech: focus on the specific risks associated with data processing in financial and technological services.

Risks of data processing: description of approaches to risk management when using personal data in innovative services, such as mobile payments, blockchain and machine learning algorithms.

International principles: compliance with the requirements of leading international standards in the field of data protection, including GDPR and other regional regulations.

Data Subject Rights: Recommendations for Ensuring Transparency and Protecting Users' Rights.

Technical and Organizational Measures: Include encryption, anonymization, and access management.

The application of the standard will improve data protection and support innovation in the financial technology sector.

It is worth noting that according to RISE Research, from 2019 to 2023, the number of active online banking users in Kazakhstan increased 4.6 times to 23.1 million active users.

And the number of fintech startups in the country has increased sharply - from about 50 in 2018 to more than 200 by 2024.


(the text is translated automatically)