Funds and asset servicers need action plan to manage GDPR

Fund entities, managers and their legal advisers need to identify the specific processing/uses of investor personal data


The EU General Data Protection Regulation (GDPR) comes into effect on 25 May. The aim of GDPR is to modernise the existing EU data protection framework to ensure consistent protection of personal information by businesses. GDPR’s obligations relate to the ‘processing’ of ‘personal data’ by a ‘controller’ or ‘processor’. A