15
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 26 May 2024
15 points (100.0% liked)
Aotearoa / New Zealand
1653 readers
1 users here now
Kia ora and welcome to !newzealand, a place to share and discuss anything about Aotearoa in general
- For politics , please use !politics@lemmy.nz
- Shitposts, circlejerks, memes, and non-NZ topics belong in !offtopic@lemmy.nz
- If you need help using Lemmy.nz, go to !support@lemmy.nz
- NZ regional and special interest communities
Rules:
FAQ ~ NZ Community List ~ Join Matrix chatroom
Banner image by Bernard Spragg
Got an idea for next month's banner?
founded 1 year ago
MODERATORS
Europe has GDPR, so you're not legally allowed to collect data unless it's necessary for the actual service you're providing your customer, and you're not allowed to use data for anything else once you've collected it for the purpose you stated.
Having said that, your customer will always have to prove who they are, how they acquired funds, and where funds are going. This is to prevent bribery & corruption, money laundering, terrorist financing, tax evasion etc.
I was working as a software developer for an EU investment bank when the EU implemented GDPR, and the amount of paperwork required to collect and hold personal data meant we destroyed a ton of data & documentation and rewrote a lot of software. And every spreadsheet containing personal data or which was used more than once had to be recorded in an EUC register with signed commitments about GDPR compliance. Even if data wasn't strictly forbidden by GDPR we'd be very wary asking for any information which could theoretically be misused to discriminate against protected classes.
The NZ Privacy Act 2020 looks broadly similar in intent to the GDPR, so I imagine there'd be the same disinclination to collect information which can't be proven necessary to perform the requested service or satisfy regulatory requirements.
I have several NZ insurance policies and they had no interest in transaction history. Same with my mortgage. I sent bank statements, but only as proof of address.
Only my credit card application wanted to drill into my spending, which is not unexpected considering it's unsecured lending. For sure I'd rather approve the API access than try to find where I can download (& probably pay extortionate fees) for copies of historic statements
It is similar. Not sure about GDPR but in NZ, you can only use data for what it's collected for but you just ask for consent at the point of collection, and state your intent as using the information to assess suitability for insurance (or whatever), then you have met the requirements.
I think the idea is in future you could get cheaper life or health insurance if you agree to let the insurance company scan your records to check how much fast food you eat or whatever. It's not feasible today as you'd have to have staff processing it which negates the cost saving, but in a future world maybe it could be a thing.
For mortgages, they definitely check your bank statements after the new rules against loan sharks came in (a couple of years ago), but if you are borrowing from a bank you're with then they aready have that info.
I think life insurance is already pretty grabby with data, behind the scenes. We had a ton of data on some high value life policies we'd bought - down to records of all doctors visits. And even for lower value policies they can currently just ask you the important actuarial questions (e.g. are you a poor obese guy who smokes, rides a motorcycle & lives alone) and then deny the payout if you lied.
Given how disgustingly evil the US health insurance system is, my hope is that NZ resists the temptation to go there. I don't have health insurance since moving back to NZ and it's been fine. All the things I was told by the doctor "go private or the wait will be too long" turned out to have reasonable waits after all.