Balancing the use of personal data required by Markets in Financial Instruments Directive II (MiFID) as part of its transparency regime with the personal data protection rules set out in General Data Protection Regulation (GDPR) is a tough task – tell us everything, but keep it secret – that many financial institutions are struggling with. How can they store personal data for five or seven years as required by MiFID II when GDPR states that data should be kept for no longer than necessary? And how can they respond to data subjects’ requests to exercise the right to be forgotten under GDPR when the transparency requirements of MiFID II allow no such thing?

This website uses cookies.

By continuing to use this website you are giving consent to cookies being used in accordance with the MarkLogic Privacy Statement.