Data Security

MFA is advancing three simple recommendations for regulators to protect the data of financial entities. First, regulators should narrow information requests to only ask for data that is necessary to achieve their core mission. Second, regulators should build protections into their forms and reporting systems, including alphanumeric identifiers rather than names and other identifying information. Third, regulators’ protections and security should be tiered based on the level of sensitivity of the data.