Sophie Chase-Borthwick, Director of Data Ethics and Privacy, Calligo
Privacy is essentially just a data security problem, right? Surely, the requirement to act more responsibly with personal and sensitive data equates to protecting it better, encrypting it and preventing hacks and leaks?
Many financial businesses assume exactly this, and that data privacy, whether GDPR or California’s new CCPA, is merely an IT security problem. However, it goes far wider than that.
For the chief information security officers (CISOs) that have been assigned responsibility for privacy within their organisation, it can often be seen as an unenviable task. Few boards and and executive teams understand the detail of what is required for GDPR adherence or Privacy by Design to assign enough or the right resource to the task.
In fact, we regularly hear stories from financial services organisations of all sizes about shoddy approaches to data privacy, especially GDPR, with some assuming that just because they have a data security function, adherence is a given.
However, as an experienced CISO, you will understand that privacy is not as simple as ring-fencing your data. You will appreciate that because GDPR in particular requires the responsible management and use of data, just as much as its responsible protection, that a privacy strategy needs involvement from every part of a financial organisation, including marketing, HR, sales etc.
But many businesses did not think like this. Or more accurately, many CISOs were fully aware of the extent of the task, but were not given the time or resource to address it appropriately. Many were forced to focus on the parts they could fix the fastest and the easiest, predominantly technology and data protection, leaving major gaps in processes and people – the two other equally-important pills of adherence.
Others were bending over backwards to cover the basics of the new requirements, but saw their wider security strategies either derailed or delayed in the process, leaving many financial businesses more susceptible to security breaches than they were before. These are real scenarios that we have seen time and again amongst our clients.
So, how is it possible to balance data privacy with wider security strategy? Many argued when GDPR came into force that it represented a huge opportunity for those in CISO roles to change the perception of their input and value to a business; from simple data protection to instead safeguarding data across its entire lifecycle.
But how can you put this into practice? How can a CISO build the strategy that achieves the immediate data privacy goal, while enhancing – not weakening – wider data security initiatives, and their own standing?
Assess your business holistically
There are eight domains that require addressing for a successful privacy strategy: governance and accountability; risk management; security management; third party management; incident management; personal information management; rights of data subjects; and finally, understanding the scope of your organisation as it pertains to the relevant legislation.
The most obvious observation for many CISOs will be that many of these areas are outside their traditional scope. However, they all need equal attention and they are all unavoidably part of the project they are leading. The trick is to not let yourself focus on only the more easily-addressed “home turf” security areas, nor be drawn by the business too far into the non-security areas.
Ask for help
Perform a GAP analysis
Before you can even think about aligning your organisation to a privacy strategy, you must identify your baseline and areas of improvement. What are the minimum requirements within each of the eight areas for your business to be in line with the legislation facing you? And, what constitutes particularly robust observance? Finally, where on this spectrum are you aiming for and how does that compare to your current state?
Present your action plan
The GAP analysis will have provided you with a starting point and a series of non-conformances to address. The next step is to prioritise the remedial tasks required and plan how they will be executed. It is however imperative to demonstrate that the plan is tied to, but not wholly based on, the security strategy. Sales, marketing, HR, IT etc. must all understand that they have equal parts to play, and be equal in their accountability.
Secure wider resource
The final part of the process is to identify the most suitable individuals to assist. This controlled delegation maintains the CISO’s position as the lead on the project, ensures good project management and execution, while also safeguarding the security team’s resources.
It’s clear that a privacy strategy is an organisation-wide initiative and encompasses all areas of technology, people and processes. It requires far more than building higher walls around your data, or simply gaining renewed consent from customers. However, it’s important to remember that this will not be widely understood, and given it is commonplace post-GDPR for CISOs to be handed responsibility for privacy, you will need to take the initiative on a whole host of procedures and processes that span your entire enterprise – and may not be within your comfort zone.
However, get it right and you will engender more trust from within your customer base – an important commercial outcome that you can take no small amount of credit for.
THE OUTPERFORMER’S APPROACH TO FINANCIAL PROCESS AUTOMATION
By Michelle Trapani, Director of Product Marketing at Kofax
Achieving more with less is the mantra of our times. C-suite leaders demand greater efficiency. CFOs are looking to reduce costs. Customers and employees expect stellar experiences. The ability to outperform these expectations hinges on your financial operations, a vital area impacting every facet of your business.
For instance, if vital master data is incorrect, it’ll have a negative impact on service level quality, as well as the reputations of the finance and purchasing departments. Without accurate and timely visibility into processes, transparency is reduced, and it’s more difficult and time-consuming to manage compliance. The combination makes it harder to please executives, CFOs, customers, and vendors.
That’s why financial process automation is the key to operational efficiency and the overall success of your business. Even small- and medium-sized businesses are investing in process automation to optimise the financial processes within enterprise resource planning (ERP) systems, such as SAP.
For many, accounts payable is the first financial process to be automated. Like many other financial areas, Accounts Payable (AP) is mired in paper and consumed by highly manual tasks. For these reasons, once AP is automated, the benefits become quickly apparent, leading firms to immediately consider which other financial processes they can optimise. However, outperformers know the approach that yields the greatest return is automation of the entire purchase-to-pay process chain.
Why? Let’s consider what benefits can be gained from automating document-driven and transactional processes tied to an SAP ERP system – in AP and beyond.
Why a high-level of automation is an advantage
We don’t have to look far to see how end-to-end automation eliminates labour-intensive work, reduces costs, and increases process efficiency. Organisations with high levels of automation provide indisputable proof of the advantages of the outperformers’ approach.
According to research by Shared Services Link and Kofax, just 12 percent of organisations with high levels of automation manually process their invoices compared to 74 percent of those with low levels of automation. In addition, only 41 percent of highly automated companies experience problems with purchase orders, 24 percent have poor visibility into spend, and 8 percent fail to capture early payment discounts. By comparison, those with low-level automation report these same problems significantly more often: 68 percent, 23 percent, and 24 percent, respectively.
In an age when process automation has become table stakes, there are clear advantages for organisations that optimise processes across the business. “Best-in-class” firms – those with high levels of automation – don’t only become more competitive, they save time and resources as well.
Comparing “best-in-class” organisations to others illustrates the sharp differences. According to Ardent Partners, a “best-in-class” organisation processes 57.1 percent of all invoices “straight-through,” in just 3.9 days at an all-inclusive cost of $2.87 per invoice. By contrast, the gap with other organisations – those with low levels of automation – is wide: Only 16.1 percent of invoices are processed straight-through, and a single invoice takes 17.1 days to close and costs $15.38. Further, “best-in-class” organisations experience 81 percent lower invoice processing costs and 77 percent faster invoice processing cycle times.
Why ERP optimisation?
Another reason to follow the outperformers’ approach is to increase the return on investment of Enterprise Resource Planning (ERP) software. Many organisations haven’t fully leveraged their investments in ERP software, like SAP, giving them plenty of hidden opportunities to exploit.
“ERPs are not optimised for all the complex activities occurring today, such as matching printed or electronic invoices with supplier master data, purchase orders, shipping, tax and discount data,” says consultancy The Hackett Group. “Since it can be cost-prohibitive to replace a legacy ERP, companies often augment them instead with document management systems.”
When processes are paper-driven and manual, financial teams struggle to meet the volume-based performance requirements set by their CFOs. Meeting the high bar for raw numbers of invoices and payments processed is exceedingly difficult without automation. Think back to the pain points listed above. Every time the process is interrupted because the PO number is wrong, there’s an invoice exception or an early pay discount is missed, the process slows appreciably – or breaks down entirely.
One option is to use a certified add-on solution providing a single software platform to automate a series of processes directly within the ERP system. For SAP users, this type of solution offers more than integration with the ERP system; it provides the exact same look and feel as any other SAP transaction. It can be presented inside of the SAP GUI, providing non-SAP users an intuitive interface, and offering a real-time view of workloads, pending tasks, document inflow, ongoing transactions, and up-to-the-moment validation against SAP data. Solutions like this are proven to help users become more cost efficient, improve control over financial processes and shorten total processing times.
How to dominate your financial process
As the examples above show, expanding process improvement from AP to the entire purchase-to-pay process chain allows you dominate your financial processes in SAP, realise maximum efficiency and take your current ROI to the next level. Whether you’re just starting your automation journey or want to expand past AP, a full-scale strategy for end-to-end financial process automation will enable you to begin working like tomorrow, today.
About the author
In her role as Director of Product Marketing, Michelle Trapani delivers market positioning, strategic narratives and go-to-market strategies driving awareness, preference, and growth – bringing an increased level of insight, leadership, and overall execution discipline to Kofax’s growing business. Michelle was most recently with Cinch Connectivity Solutions where she reduced product launch times from eight months to eight-12 weeks. Previously, Michelle was with Adobe, Equinix, IBM, Infogix, iPass, Macrovision and Vision Solutions. Michelle earned a Bachelor of Arts degree at Illinois State University.
SAFEGUARD YOURSELF FROM FINANCIAL STRUGGLE AND UNCERTAINTY IN THE CASE OF DEMENTIA
Despite the rising incidence of dementia globally – The World Health Organization (WHO) estimates one new case every three seconds – and the risk of losing mental capacity in old age, few individuals plan for this possibility.
Dementia is caused by a variety of brain illnesses that affect memory, thinking, behaviour and ability to perform everyday activities. The WHO estimates the number of people living with dementia worldwide will almost triple to 152 million by 2050.
September is Alzheimer’s awareness month, an international campaign by Alzheimer’s Disease International to raise awareness and challenge the stigma that surrounds the illness. Financial management is one of the first tasks which deteriorate with the condition, leaving people struggling to do simple tasks such as paying bills or managing their tax affairs.
“Most people don’t like to think about death, dying or incapacity,” says Mark Hawes, certified financial planner at Alexander Forbes. Figures from the Masters of High Courts back up this assertion, revealing that more than 80% of South Africa’s working population don’t have wills.
“If you have been diagnosed with dementia, the best way to avoid unnecessary financial burden or being taken advantage of financially, or otherwise, is to put plans in place immediately. If one day you are not able to look after yourself, you and your family should know who these responsibilities will fall to.”
Most types of dementia are progressive. Therefore, the earlier it is identified the better. In addition, the easier it is to put the necessary preparations in place. Very importantly, while our faculties are still with us we can and should be involved in the important decisions for our own future.
At the very least, it is time to ensure that your wishes are documented, understood and are willing to be carried out by all involved. Naturally the inverse is true. For the caregivers and the persons tasked with the respective areas of responsibility, making sure that you understand and are willing to carry out the wishes of the affected person (within reason) is paramount in the early days of diagnosis.
“It is therefore important to allocate someone you trust with different areas of your life. Consider your options and where you have existing policies in place, double-check what you are covered for.”
Putting your plan in place simply gets everyone pulling in the same direction. Do this for at least three areas with the help of a trusted professional:
- Set up or review your will
To ensure that this is done accurately, you need to be fully informed about what assets and other financial products you have. Importantly, remember that all retirement funds fall outside your estate and so beneficiaries should be nominated on each retirement fund respectively. In addition, bring in your trusted and professional financial adviser to make sure your legacy planning is effective, efficient and accurate to ensure that your wishes and priorities are met.
- Choose your healthcare professionals and caregivers
Understanding the expected treatment and what your lifestyle may look like in the years to come will provide insight into what facilities and care you may require. This information puts a sense of control and independence back in the affected person’s hands. It will create a great sense of comfort that the challenging journey ahead will be manageable and on your own terms. Of course, it is always recommended to include your loved ones when making the decisions – especially the ones who are expected to carry out your wishes, if only to understand if they have the capacity to do so. The cost of care for those with advanced dementia should also be factored in, as full-time nursing can be expensive. Knowing your expected care and the respective costs puts you back in control.
You can then compare your requirements with any existing insurance policies to see where you can provide the financial resources. Importantly, as cash flow may come under pressure for you and your family, you would also be able to see which policies are no longer a priority and can be cancelled. In addition, you will be able to allocate your savings and investments toward your expected expenses or make alternative arrangements with the people in your support structure – especially your family where available.
- Who will conduct your financial transactions on your behalf?
The Covid-19 pandemic has seen increased reports of fraudsters targeting unsuspecting and vulnerable people. Those with dementia who are already struggling to use ATMs or do internet or telephone banking may be more prone to being targeted or simply telling strangers their bank details. Now more than ever identity theft is a real concern.
It is therefore highly recommended that a trusted and responsible person or family member is appointed to conduct financial transactions on behalf of the affected. For high net worth people, a special trust can be set up and preferred trustees (along with an independent professional trustee) appointed to ensure the financial affairs and assets are managed effectively. Again, legacy planning is crucial to helping the affected person to rest easy.
Many people are unaware that a power of attorney is invalid if a person is no longer of sound mind, and financial institutions will not assist until the person is placed under administration or curatorship.
Therefore, it is important that this person is aware of your lifestyle and preferences. This can be simply from what groceries you buy to which financial institutions and structures your make use of. The latter should be considered together with your trusted professional’s financial adviser.
Hawes says it is important to know what policies one has and what they cover. “You need savings to cover your cost of living when you’re alive and no longer working. Understand your medical aid and what they will cover – at minimal, you should have a hospital plan and gap cover.”
Hawes also advises introducing your trusted confidant to your certified financial planner, in the event that something happens.
“Many people only bother to find out their family history after something happens to them. Find out if you have a history of cancer or heart conditions, Alzheimer’s or dementia in your family. By having these difficult discussions now, a person is better able to decide how their money should be used, and is less likely to be financially exploited at a later stage.”
THE OUTPERFORMER’S APPROACH TO FINANCIAL PROCESS AUTOMATION
By Michelle Trapani, Director of Product Marketing at Kofax Achieving more with less is the mantra of our times....
WHY BANKS NEED TO EMBRACE WELLBEING IN THE DIGITAL EXPERIENCE
Howard Pull, Head of Digital Transformation Strategy at MullenLowe Profero The impact of the COVID-19 crisis on the economy...
SAFEGUARD YOURSELF FROM FINANCIAL STRUGGLE AND UNCERTAINTY IN THE CASE OF DEMENTIA
Despite the rising incidence of dementia globally – The World Health Organization (WHO) estimates one new case every three seconds...
WHY TECHNOLOGY IS KEY TO THE FUTURE OF AUDITING
By Piers Wilson, Head of Product Management at Huntsman Security The Financial Reporting Council (FRC), which is responsible for corporate...
BOOM OR BUST: HOW THE FINANCIAL SERVICES SECTOR IS COPING
by Simon Black, CEO, Awaken Intelligence Covid-19 has had an impact across all industries and businesses are feeling the...
BACK TO SCHOOL – CEOS NEED TO LEARN A NEW LANGUAGE, FAST!
By Simon Axon, Financial Services Industry Consulting practice lead in EMEA, Teradata Chief Executive Officers of banks know all...
REVITALISING THE TOKEN MARKET
By Gavin Smith, CEO at Panxora With interest rates near zero and fears that whipsawing stock markets are set for...
A SLEEPING DIGITAL GIANT WAKES? 4 KEY TRENDS ACCELERATING PAYMENTS TRANSFORMATION IN THE US
Lauren Jones, International Payments Ambassador, Icon Solutions The US payments industry is undoubtedly ripe for change. Before the unprecedented...
CAN ACCOUNTING DEPARTMENTS WIN THE FIGHT AGAINST FRAUD?
Magali Michel, Director, Yooz Despite the implementation of increasingly sophisticated security systems, corporate fraud continues to gain ground: half...
REMOTE INVOICE CAPTURE: ADAPTING TO THE NEW WAY OF WORKING
Author: James Adie, Vice President EMEA Sales at Ephesoft When the government announced a country-wide lockdown on March 23,...
GALA TECHNOLOGY SELECTS NUAPAY TO ENABLE OPEN BANKING PAYMENTS
Nuapay, powered by Sentenial, today announces it has been chosen by Gala Technology, a payment security solution specialist, to provide Open...
THE ROLE OF OPEN SOURCE IN UNCERTAIN TIMES
Kris Sharma, Finance Sector Lead, Canonical Financial services are an important part of the economy and play a wider...
SIMPLIFYING THE RETIREMENT FUND DEATH CLAIMS PROCESS
By Dolana Conco, Regional Executive at Alexander Forbes Losing a loved one is one of the most difficult experiences...
THE EMBEDDED BENEFITS IN ESEF DIGITAL FINANCIAL REPORTING
The inclusion of a simple link delivers serious gains in transparency, trust and real time verifiability for the whole financial...
YAPILY AND OZONE API PARTNERSHIP MARKS TURNING POINT IN OPEN BANKING ADOPTION FOR BANKS
Open banking leader Yapily has today announced a strategic partnership with Ozone API, the leading API standards-based platform, to enable banks and...
PROGRESSIVE SCENARIO PLANNING FOR THE LIBOR TRANSITION
James Gannaway, Head of Financial Services, Board International The Financial Stability Board have announced that disruption to markets caused...
AS DIGITAL TRANSFORMATION ACCELERATES, ENTRUST DATACARD BECOMES “ENTRUST”
Entrust name and identity reflect the critical need for trust at the heart of the digital transformation – and the...
HOW TO TAME YOUR FINANCES TO REGAIN CONTROL OF YOUR MONEY
Credit, combined with bad spending habits, means many South Africans find themselves living from payday to payday, but you can...
HOW DATA VIRTUALISATION CAN HELP THE FS INDUSTRY REGAIN COMPLIANCE CONTROL
Charles Southwood, Regional VP – Northern Europe and MEA at Denodo In recent years, the financial services (FS) sector has witnessed a...
HOW TECHNOLOGY IS CHANGING ACCOUNTING
Mike Whitmire is Co-founder and CEO of FloQast, The fundamentals of accounting have been around for hundreds of years....