tmmonline.nz  |   landlords.co.nz        About Good Returns  |  Advertise  |  Contact Us  |  Terms & Conditions  |  RSS Feeds

NZ's Financial Adviser News Centre

GR Logo
Last Article Uploaded: Tuesday, December 3rd, 6:36PM

News

rss
Latest Headlines

Digital document ~~security~~ insecurity

Following on from my outline of the problem of digital document insecurity, I’m exploring how we can all improve this so we’re protecting clients and not unwittingly propagating fraud.

Tuesday, April 16th 2024, 8:25AM

by Jon-Paul Hale

The challenge until recently has been finding good, easily accessible tools that provide security for the digital signing process. Today, I think most of these have come of age, but the providers have yet to catch up.

We need a coherent industry approach to digital sign-off, which is made somewhat more challenging with AIA, Southern Cross and others not needing signatures for applications as they have done in the past.

This lack of signatures makes changing things later in the contract life harder to do because ID signatures don't match the current signatures the clients are using. I had one client where I provided eight different documents with eight different signatures to prove their signature changes every single time!

On the subject of industry communication so far, Partners Life clearly states the digital providers they accept, AIA states the process around this, and Asteron Life has also got something in this space. None of them is a complete and coherent approach to this issue.

What I have seen, and also been told by other advisers, is even with this limited communication on digital systems, the provider staff often get it wrong and either kick stuff back that the provider defines as acceptable, or worse, they accept stuff that clearly should not be.

I recently reached out to all providers on this subject, with copies of what we do have to date, asking for clarity around this so that we have a better framework to work in and improve our protection of client contracts because it's a bloody mess!

The response so far, from the few I have talked to since, is the providers' approach is to balk and look at this as them developing internal systems for digital engagement. Nope, that's not what this is about.

We will have direct digital engagement systems from providers; many already have these facilities.

This subject is about how paper-based processes made digital are to be handled because paper-based processes are not going away and presently are not secure enough.

However, the digital signing systems we have, while pretty robust, still have flaws.

The big one is who can access and control a client's email account.

The next one, how do you get two, or more, people to sign when they share an email account?

That second one, you don't. At the same time this is an issue for those over age 55 where they don't have work email addresses and only have a "home" email address. They're still sharing a Facebook account too!

After sitting across this area for nearly 30 years, the external digital systems are excellent. Still, they all have the above fundamental flaw on account control. In the same way that my commercial manager had with fax authority, there's a connection to the signer issue in the process.

Let's be clear here: The issues discovered over the years have not been significant. If they were, providers would have moved much sooner on this subject. At the same time, we have likely missed thousands of examples where these issues were not picked up, and this becomes an issue of perception rather than volume to act upon.

What is the solution?

There are a few.
* 2Shakes out of Wellington has a biometric identification tool that uses a webcam to compare the client's biometrics against the DIA passport database. It is only effective for NZ passports; the client must have one.
* Other digital signing providers have similar options.
* RealMe, where the RealMe system is integrated into signing systems. RealMe is a government digital ID that is verified with a photo ID at a post shop.
* But it still suffers from the flaw of passwords being shared. ACC's use of this for their online system has resulted in accounting firms sharing the principal's RealMe account details around the office!
* Onetime email/links sent to mobile devices, where the number and person have been verified as connected and secure. This is an external third-party connection. This needs more work as this is managed at the adviser level, and the provider needs to have faith in the adviser business to get this right.

The recent ComCom draft report released about financial services highlights the challenges of digital documentation and ID verification as a barrier to accessing financial services, so this subject is on legislators minds.

The fundamental issue in play, as it has been from the 1990's, is the integrity of the resulting signature.
* Was it signed by the person?
* Do we know it wasn't a drag-and-drop by someone else?
* Do we know that the email account was secure and no one else had access?

Digital systems from providers will play a part in managing this in the future, at the same time, they will also have the same "who's doing what?" issues that I have outlined here.

As advisers, we are the gatekeepers on what happens and how this is managed with our clients.

Providers need to define their operating parameters and processes better so we can be as effective in this as possible.

Providers also need to train staff on these processes so that we don't end up with a back-and-forth issue of what is or is not acceptable.

And providers need to stop accepting italicised signed documents just because they came from the email address they think the client has, because that process has zero security or integrity.

Clearly, this is an issue for all professions across the spectrum. At the same time, financial services need to lead this to ensure the integrity of the market and market confidence.

Maybe this is an FMA issue to tackle?

One thing is clear: adviser firms aren't the ones making the decisions around this, but we will have to work within any resulting framework, and that means we need to make ourselves heard so we have a workable solution for everyone.

Tags: Jon-Paul Hale

« Digital Signatures and FraudDigital Docs more stuff... »

Special Offers

Comments from our readers

No comments yet

Sign In to add your comment

 

print

Printable version  

print

Email to a friend
News Bites
Latest Comments
  • Partners kills its matrix
    “Partners Life has decided to stop using its COM for advisers as it believes the system may breach the CoFI regulations which...”
    16 hours ago by Amused
  • Partners kills its matrix
    “Insurance companies should stick to their lane. They are not advisers and even those that employ advisers should not be crossing...”
    19 hours ago by Tash
  • [GRTV] The nitty gritty of Smart’s ETFs
    “Advisors should consider all gateways into investment markets including cheaply priced ETFs to provide access to low priced...”
    23 hours ago by Pragmatic
  • DRS member or not - client care remains advisers’ responsibility
    “FAPs are members of DRS too. Substitute “adviser” for “FAP” and the story is actually a lot more accurate. If...”
    2 days ago by Aggressively_passive
  • Partners kills its matrix
    “COM has no relationship to CoFI, never did. It was self indulgent and a tiny overstep. Great way to finally weed out possible...”
    2 days ago by Backstage
Subscribe Now

Mortgage Rates Newsletter

Daily Weekly

Previous News

MORE NEWS»

Most Commented On
Mortgage Rates Table

Full Rates Table | Compare Rates

Lender Flt 1yr 2yr 3yr
AIA - Back My Build ▼4.94 - - -
AIA - Go Home Loans ▼7.49 ▼5.79 ▼5.49 ▼5.59
ANZ ▼7.39 ▼6.39 ▼6.19 ▼6.19
ANZ Blueprint to Build 7.39 - - -
ANZ Good Energy - - - 1.00
ANZ Special - ▼5.79 ▼5.59 ▼5.59
ASB Bank ▼7.39 ▼5.79 ▼5.49 ▼5.59
ASB Better Homes Top Up - - - 1.00
Avanti Finance ▼7.90 - - -
Basecorp Finance 9.60 - - -
BNZ - Classic - 5.99 5.69 5.69
Lender Flt 1yr 2yr 3yr
BNZ - Mortgage One ▼7.54 - - -
BNZ - Rapid Repay ▼7.54 - - -
BNZ - Std ▼7.44 ▼5.79 ▼5.59 5.69
BNZ - TotalMoney ▼7.54 - - -
CFML 321 Loans 6.20 - - -
CFML Home Loans 6.45 - - -
CFML Prime Loans 8.25 - - -
CFML Standard Loans 9.20 - - -
China Construction Bank - 7.09 6.75 6.49
China Construction Bank Special - - - -
Co-operative Bank - First Home Special - ▼5.69 - -
Lender Flt 1yr 2yr 3yr
Co-operative Bank - Owner Occ ▼6.95 ▼5.79 ▼5.59 5.69
Co-operative Bank - Standard ▼6.95 ▼6.29 ▼6.09 6.19
Credit Union Auckland 7.70 - - -
First Credit Union Special - ▼5.99 ▼5.89 -
First Credit Union Standard ▼7.99 ▼6.69 ▼6.39 -
Heartland Bank - Online ▼6.99 5.65 5.55 5.55
Heartland Bank - Reverse Mortgage - - - -
Heretaunga Building Society 8.60 ▼6.65 6.40 -
ICBC 7.49 ▼5.79 ▼5.59 5.59
Kainga Ora 8.39 7.05 6.59 6.49
Kainga Ora - First Home Buyer Special - - - -
Lender Flt 1yr 2yr 3yr
Kiwibank ▼7.25 6.89 6.59 6.49
Kiwibank - Offset ▼7.25 - - -
Kiwibank Special ▼7.25 5.99 5.69 5.69
Liberty 8.59 8.69 8.79 8.94
Nelson Building Society ▼7.94 5.95 6.09 -
Pepper Money Advantage 10.49 - - -
Pepper Money Easy 8.69 - - -
Pepper Money Essential 8.29 - - -
SBS Bank ▼7.49 6.95 6.29 6.29
SBS Bank Special - 6.15 5.69 5.69
SBS Construction lending for FHB - - - -
Lender Flt 1yr 2yr 3yr
SBS FirstHome Combo ▼4.94 5.15 - -
SBS FirstHome Combo - - - -
SBS Unwind reverse equity 9.75 - - -
TSB Bank ▼8.19 6.49 6.49 6.49
TSB Special ▼7.39 5.69 5.69 5.69
Unity 7.64 5.99 5.69 -
Unity First Home Buyer special - 5.49 - -
Wairarapa Building Society 8.10 6.05 5.79 -
Westpac ▼7.39 ▼6.39 ▼6.09 ▼6.19
Westpac Choices Everyday ▼7.49 - - -
Westpac Offset ▼7.39 - - -
Lender Flt 1yr 2yr 3yr
Westpac Special - ▼5.79 ▼5.49 ▼5.59
Median 7.49 5.99 5.79 5.69

Last updated: 3 December 2024 9:25am

About Us  |  Advertise  |  Contact Us  |  Terms & Conditions  |  Privacy Policy  |  RSS Feeds  |  Letters  |  Archive  |  Toolbox  |  Disclaimer
 
Site by Web Developer and eyelovedesign.com