We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
Starling bank gave details of my finances in an unsecure email
Comments
-
I have received a final response to my complaint from Starling. Having checked with their Privacy team they have concluded that the email to me containing details of my bank accounts (the account numbers and totals of transactions) did not "meet the principles" of a privacy breach.
They have offered me £75 to compensate me for the distress and inconvenience caused.
I may exercise my right to file a complaint with the Financial Ombudsman.
0 -
They have offered me £75 to compensate me for the distress and inconvenience caused.
I may exercise my right to file a complaint with the Financial Ombudsman.
Point of principle or hoping for more cash?
0 -
The offer of compensation might still stand as it relates to how they treated me, not for the breach of privacy. But yes there is a point of principle too, given that if they don't think that they did anything wrong, then they will be doing it to other customers too.
0 -
Would have thought it's quite hard to quantify your losses due to Starling putting some transaction totals in an email, unless you've already worked out a number?
The regulator might impose punitive fines against Starling for their lapses (wouldn't be the first time) but you won't be seeing any of that.
1 -
if Starling learn a lesson as a result of my complaint that will be good enough for me.
1 -
As well as, or perhaps instead of, escalating a complaint to the Financial Ombudsman Service, you have the option of complaining to the Information Commissioner's Office, responsible for data protection matters. They won't get involved in any financial compensation for you, but if you're wanting Starling's conduct to be scrutinised by the relevant authority (and potentially added to similar complaints from others) then this avenue is available to you…
2 -
I have just consulted the ICO and they replied that organisations are only responsible for setting appropriate security measures to their data protection processes. Apparently it is the individual's responsibility to keep their email information secure. So no help there!
0 -
Not sure the person you dealt with really understood the key point about the inherent lack of security of unencrypted email during transmission, as opposed to internal processes at each end, but ultimately if the ICO doesn't consider the matter to constitute a privacy breach then it's unlikely that anyone else will.
A quick look at their site shows more concern about inadequate CC/BCC practices and protection of genuinely sensitive personal data, rather than any specific guidance about good practice for email content - it does seem to have become standard within most financial institutions to avoid transmission of account-specific data by standard email, but perhaps this is independent of any ICO input.
1 -
The ICO response put the responsibility on me for the bank sending me an unsecure email. So they effectively agreed with Starling who denied any wrong doing as I had given them the right to send me emails when I initially opened my account. It was a rather disappointing response.
0 -
Well that's clearly nonsense. You have no control over what a third party sends you. I suggest you forward the ICO the emails and then report them for a data breach as the responsible party. ;)
In all seriousness, I would make use of
In your complaint, ask them if they are aware of Article 5(1)(f) of UK GDPR.
0
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 354.6K Banking & Borrowing
- 254.5K Reduce Debt & Boost Income
- 455.5K Spending & Discounts
- 247.5K Work, Benefits & Business
- 604.4K Mortgages, Homes & Bills
- 178.6K Life & Family
- 261.9K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.7K Read-Only Boards