On 19 December 2019, the Netherlands Authority for the Financial Markets (Autoriteit Financiële Markten, the AFM) published on its website Principles for Information Security (the Principles). The Principles were submitted for consultation earlier this year and have now become final.
The AFM indicates that the management of information security risks is becoming increasingly important as a result of the increasing digitalisation of society. The AFM expects financial undertakings to take appropriate measures to guarantee the continuity and reliability of their IT and provision of information, and to limit the impact of any security incidents. The principles provide guidance in this respect. They consist of starting points with regard to issues that involve various statutory norms subject to supervision by the AFM, but financial undertakings decide for themselves how they implement these principles.
View the Principles for Information Security, 19 December 2019.