Client feedback

Kathy, may l take this opportunity to thank you for your assistance. There were many times l thought l was losing my mind during my efforts with Aviva. You were a pillar of support for me and you saw my case through to the very end. I cannot thank you enough but thank you again. It is through people like you who strive for professional fairness as well as thoroughness, HCA has such a good reputation.
Ethel Chimutwe,
HCA International Ltd Staff Retirement Benefits Scheme
Edwin’s working to ensure the other trustees get involved. Last year he took more of a leading role, which I was very grateful for. He is well organised and proactive. Feedback from external advisers has been good.
Jeremy Barnard ,
Imerys
The work that has been done has been delivered beyond expectations.
Head of Trustee Services
Mark Fletcher - excellent independent trustee, personality and high standards.
Sukhjit Dhillon ,
RATP
Ann is very proactive and ensures we address all issues well ahead of time and extremely efficiently.
Ian Edwards,
Comet
So much more proactive than the previous company. On the ball - thinking in advance of things needing doing - very proactive.
Paul Rudd ,
Chairman of Trustees, Express Newspaper

From a simple admin error to a data security problem

Topic:

Legal & governance

Date published:

Wednesday, 2 August 2017

Author:

Julie Karavis

Image of Julie Karavis, Scheme Manager

One of my pension scheme clients was recently advised by their administrator of an error that had occurred with the issuing of payslips. This could easily affect any pension trustee board and it is important - it directly relates to data security.

How sure can you be?

It was only when they heard about this problem that the pension trustees became aware that the scheme administrator outsourced the issuing of payslips. The trustees also realised they could not be certain whether any of their scheme advisers used other providers in delivering services to the pension scheme.

With no direct agreement in place, trustees may not be aware of what information is going to external companies and have no knowledge of their processes and security protections. In this case, the trustee board agreed they needed to have a better understanding of all the providers being used.

It started with a slip…

The issue that started this was a straightforward administrative error. The payslip for a member of pension scheme A was inserted into the envelope of a member of pension scheme B, together with that individual’s own payslip. In theory, this shouldn’t have been able to happen as they are members of different schemes. In practice, it did happen.

There was no data security breach for my client - scheme B - it just raised the question of who handles data that the pension trustees are unaware of. The trustees have asked the administrator (and their other scheme advisers) to draft a schedule detailing who they provide data to and why so they can collate a complete list and fully understand where services are outsourced and/or where data is provided to other parties.

Of course, we advised the trustees of scheme A about what had happened. For them, the data breach could be much more serious.

 

 

Back to opinions

 

Hot topics

PSGS & 20-20 Trustees merge to form Vidett
Hot Topic

Punter Southall Governance Services (PSGS) & 20-20 Trustees (20-20) have today announced they...

Read more »

Don’t be surprised that your gilt funds are being treated like an emerging market
Image of Hot Topic author Sophia Harrison, Client Director

You may have seen or heard about the article in the Financial Times about how Insight...

Read more »

More opinions »

Call: 0118 207 2900

online enquiry