HKMA Outlines Principles for Consumer Protection in Use of BDAI
HKMA published a set of guiding principles on consumer protection aspects in respect of the use of big data analytics and artificial intelligence or BDAI. The principles, which are applicable to all authorized institutions, are focused on four major areas: governance and accountability, fairness, transparency and disclosure, and data privacy and protection. HKMA states that the authorized institutions should adopt a risk-based approach commensurate with the risks involved in their big data analytics and artificial intelligence applications when applying these guiding principles.
HKMA specifies the following guiding principles:
- Governance and Accountability—The board and senior management of the authorized institutions should remain accountable for all the big data analytics and artificial intelligence driven decisions and processes. They should ensure the use of appropriate governance, oversight, and accountability framework, appropriate level of explainability of the big data analytics and artificial intelligence models, and proper validation before launch of big data analytics and artificial intelligence applications. The board and management should also focus on ongoing reviews and adherence to the consumer protection principles set out in the Code of Banking Practice.
- Fairness—The authorized institutions should ensure that big data analytics and artificial intelligence models produce objective, consistent, ethical, and fair outcomes to customers. These outcomes include compliance with the applicable laws, customer access to basic banking services, and robust models of big data analytics and artificial intelligence driven models.
- Transparency and Disclosure—The authorized institutions should provide appropriate level of transparency to customers regarding their big data analytics and artificial intelligence applications through proper, accurate, and understandable disclosure. They should provide explanations of the types of data used and how the models affect the big data analytics and artificial intelligence driven decisions, on customer request and where appropriate.
- Data Privacy and Protection—The authorized institutions should implement effective protection measures to safeguard customer data. These institutions should ensure compliance with the Personal Data (Privacy) Ordinance and should pay regard to the relevant good practices issued by the Privacy Commissioner for Personal Data.
Keywords: Asia Pacific, Hong Kong, Banking, Artificial Intelligence, Fintech, Consumer Protection, Big Data, Guidance, HKMA
Previous Article
BCBS Issues Guiding Principles to Operationalize Sectoral CCyBRelated Articles
APRA Sets LAC for D-SIBs, Proposes to Enhance Crisis Preparedness
APRA issued a letter on the loss-absorbing capacity (LAC) requirements for domestic systemically important banks (D-SIBs) and published a discussion paper, along with the proposed the prudential standards on financial contingency planning (CPS 190) and resolution planning (CPS 900).
EC to Review Macro-Prudential Rules while ESRB Assesses Policy Stance
The European Commission (EC) launched a call for evidence, until March 18, 2022, as part of a comprehensive review of the macro-prudential rules for the banking sector under the Capital Requirements Regulation (CRR) and Directive (CRD IV).
FSB Sets Out Good Practices for Crisis Management Groups
The Financial Stability Board (FSB) published a report that sets out good practices for crisis management groups.
APRA Penalizes Heritage Bank for Incorrect Reporting of Capital
The Australian Prudential Regulation Authority (APRA) found that Heritage Bank Limited had incorrectly reported capital because of weaknesses in operational risk and compliance frameworks, although the bank did not breach minimum prudential capital ratios at any point and remains well-capitalized.
OSFI Releases Annual Report 2021-2022
The Office of the Superintendent of Financial Institutions (OSFI) released the annual report for 2020-2021.
OSFI Updates Timeline for Implementation of Certain Basel Rules
Through a letter addressed to the banking sector entities, the Office of the Superintendent of Financial Institutions (OSFI) announced deferral of the domestic implementation of the final Basel III reforms from the first to the second quarter of 2023.
EC Defers Adoption of Regulatory Standards for Disclosures Under SFDR
EIOPA recently published a letter in which EC is informing the European Parliament and Council that it could not adopt the set of draft regulatory technical standards for disclosures under the Sustainable Finance Disclosure Regulation (SFDR) within the stipulated three-month period, given their length and technical detail.
FCA Releases MIFIDPRU Application Forms and Third Set of Rules on IFPR
The Financial Conduct Authority (FCA) published the third in a series of policy statements that set out rules to introduce the UK Investment Firm Prudential Regime (IFPR), which will take effect on January 01, 2022.
APRA Finalizes Capital Adequacy Standards for Banks
The Australian Prudential Regulation Authority (APRA) published, along with a summary of its response to the consultation feedback, an information paper that summarizes the finalized capital framework that is in line with the internationally agreed Basel III requirements for banks.
CPMI-IOSCO Seek Comments on Access to Central Clearing and Portability
The Committee on Payments and Market Infrastructures (CPMI) and the International Organization of Securities Commissions (IOSCO) issued a consultative report focusing on access to central counterparty (CCP) clearing and client-position portability.
