Software Contract Solutions

The cyber security challenges facing emerging fintech startups

A shakedown is happening in the financial world. The traditional banking giants are struggling to retain customers, and an emerging market of fintech companies are collecting them en masse.

In 2017, 13 fintech startups were valued at $1 billion or more, an achievement so rare that Silicon Valley classifies it as unicorn status.

A growing industry, their success lies in offering alternatives to conventional financial solutions through cryptocurrencies, online loans, and robo-advisors. Though it’s a rich tapestry of services that make up the fintech world, they’re united by one challenge: cyber security. Its unfettered growth on online platforms makes this industry uniquely vulnerable to security breaches.

Regulations can’t keep up with advancements.

The innovations of the fintech world are happening at lightspeed and few competitors can keep up — including regulating bodies. Part of the fintech platform’s success relies on this rapid pace.Unlike their slow and laborious counterpart in the country’s biggest banks, startups can adapt and change on a dime to evolve alongside its users’ needs and expectations.

They’re quick and flexible partly because they aren’t subject to the same regulatory rules as traditional financial services. The household brands of Chase and Bank of America are subject to the Basel Accord, a supervisory mandate that ensures sustainable growth for conventional institutions. There are no such regulations controlling the way startups conduct their business.

Good governance is profitable for most startups. Security that protects customers from breaches is a selling point — one that appeals to security-minded individuals worried how their personal banking information will be handled by relatively new and unknown companies. Proof that they’re taking the appropriate steps to defend its customers is just as important as the other features that set fintech startups apart from their traditional counterparts.

But as the gap between startups and financial regulations widen, there grows a risk for careless entrepreneurs to sidestep security altogether. As of yet, no official legislature is stopping them. These companies could prioritise getting to market as fast as possible, even if that means they have to sacrifice cyber security in order to do so.

Some fintechs follow a self-regulatory framework

While many champions of fintech believe strict regulations would stifle the innovation powering the industry, others are already employing a self-regulatory framework to their platforms, so they can ensure risk-management and data privacy.

Though they may not be held to the same regulations as traditional banks, they must follow privacy laws. If they don’t, they can suffer costly legal issues. Last year, some of the biggest US companies were hacked. Yahoo, Uber, and Equifax were separately targeted by cybercriminals in acts that exposed billions of customers’ personal information.

While Uber and Equifax are stilling settling in court, Yahoo had to pay $350 million in damages for its breach. Nearly a third of a billion dollars is a big incentive for companies to see to their security policies. The legal consequences of a lax security policy — plus the potential loss of business — should inspire startups to invest some of that venture capital money into their security. And as the industry grows, so will their defence against breaches.

 

This article originally appeared on Information-Age.

Share