Back Custom print Link Text Only Rich Text Print

  • Business continuity

    • IA-1.1.9

      Insurance aggregators must ensure they have an up-to-date business continuity plan and arrangements consisting of the following information:

      a) a business impact analysis, including the business processes and recovery objectives, such as recovery time objectives, recovery point objectives and protected assets;
      b) the identification of the back-up site, access to IT infrastructure, and the key software and data to recover from a disaster or disruption;
      c) an explanation of how the licensee will deal with significant continuity events and disruptions, such as the failure of key systems; the loss of key data; the inaccessibility of the premises; and the loss of key persons; and
      d) the frequency with which the licensee intends to test the business continuity and disaster recovery plans, including how the results of the testing will be recorded.
      October 2019

    • IA-1.1.10

      Insurance aggregators must ensure that there are documented measures to protect confidentiality of client data consistent with Law No. 30 of 2018, Personal Data Protection Law (PDPL) issued on 12 July 2018.

      October 2019

    • IA-1.1.11

      Insurance aggregators must ensure that the requirements relating to enhanced due diligence as required under Module FC are met when the client is assessed as higher risk and also where the client relationship (whether at the time of on-boarding or otherwise) is on a non-face-to-face basis.

      October 2019