How do we balance security and the customer experience?

How do we balance security and the customer experience?

Tom Stinton

Head of Product at Intelligent Environments

Views 1039

How do we balance security and the customer experience?

06.03.2017 09:15 am

Security and customer experience are two vital pieces of the digital banking puzzle. Unfortunately, one is usually prioritised over the other, leaving consumers confused around best practice, and frustrated when things go wrong. With Ciaran Martin, head of the National Cyber Security Centre, recently stating that changing our password too often leaves us more open to cyber-attacks, consumers are increasingly left in the dark about what they should and shouldn’t be doing to keep their data safe online. Intelligent Environments has long been calling on the digital banking sector to not only make users more aware of cyber fraud by improving education, but also to make it easier for customers to protect their personal data online. Although there has been movement towards more reliable data security procedures, there is still much more that needs to be done to ensure consumers are better protected, while still providing a quality user experience.

Our own research shows, specifically in terms of online banking, that consumers agree with Mr Martin. Managing their personal security is seen to be too complicated, and this ultimately leads to unsafe behaviour. Passwords and log-in processes seem to be a particularly significant problem.

According to a recent study carried out by Intelligent Environments, over a third (34 per cent) of people admit to writing their passwords down to remember them. We are told that best practice states passwords should be long and unique for each different account, with some organisations suggesting changes every 30 days. It’s fair to say that the majority of consumers don’t follow these guidelines, especially as the average citizen in the UK is registered on over 90 accounts, according to password management company Dashlane. If an average consumer followed these guidelines, they would need 1,095 different passwords, or password iterations, every year. It comes as no surprise then, that people are writing passwords down to keep track of which is for online banking, and which is for their magazine subscription, compromising their security.

Worryingly, our research also showed that 21 per cent of consumers admitted to sharing their PINs with colleagues, friends or family members to withdraw money on their behalf, an act which we are warned against regularly. This demonstrates that the issue goes beyond simply better education, which the financial sector is already heavily investing in through banks’ individual campaigns, and through joint-activities with third parties such as the Government backed Get Safe Online campaign.

Consumers are aware that there is a need to improve their own data protection habits, with 60 per cent saying they have become more aware of security due to high-profile cyberattacks such as the Three and Tesco hacks of 2016. However, ultimately, banks and other organisations who hold sensitive data need to implement more robust security measures against hacking and cybercrime. This includes making better use of technology such as biometrics, which can not only be more secure than traditional password and PIN technology, but also more user friendly.

The EU General Data Protection Regulation (GDPR) that will come into force in 2018 will ensure financial institutions pay far more attention to security, as the punishments for neglecting data protection will be severe. However, increased security cannot be to the detriment of the user experience and users will find a way around the measures if they are seen to be in any way cumbersome.

A recent story from the US highlights the disconnect between the user experience and security. It was reported that a child accidently ordered a doll house via Amazon Echo by simply asking "Can you … get me a doll house?".  It turned out that her parents had not set up the optional four-digit security code, spoken aloud to confirm purchases. The story went viral, and in the process highlighted consumers’ sometimes casual consideration for personal security.  During the local news’ broadcast, the anchor signed-off by saying, "I love the little girl saying 'Alexa, order me a doll house'". This then caused several other Echo owners’ machines to place orders for doll houses as their devices were activated by the anchor’s off-the-cuff remark.

As much as this story is amusing, the message here is that security features are there for a reason, to stop unwanted purchases and to protect data. Yet, consumers’ natural inclination is to side-step complicated processes wherever possible. So, while there is an increased need for improved cybersecurity technology and process, the financial sector must make a great effort to ensure it is never to the detriment of a great and seamless user experience.

There is no doubt that technology is improving the customer experience, but it is also opening consumers up to growing security threats and therefore increasing the need for financial institutions to improve their cybersecurity technology. Now that senior security experts are recognising the problem, hopefully this message will trickle down to the wider business community.

 

 

Latest blogs

Simon Black Awaken Intelligence

Boom or Bust: How the Financial Services Sector is Coping

Covid-19 has had an impact across all industries and businesses are feeling the sting. However, is it equally devastating within every sector? As industry and individual concerns grow during the inevitable economic crisis, financial services are Read more »

n/a n/a

Tips on How to Successfully Trade CFDs

A CFD or contract for difference is a financial product that allows a trader to speculate on asset classed without owning a portion of the underlying asset. A CFD trade is not an investment but high-risk speculation that carries the risk of losing Read more »

Patrick McKinney and Joe Fuchs Wolters Kluwer Finance, Risk & Regulatory Reporting

Building an Integrated Data Management System: A Guide for Digital Banks

Digital banks and other FinTechs are emerging as more nimble competitors to established legacy banks. The digital banks that are on their way to becoming fully chartered have the opportunity to setup fully automated processes and systems without Read more »

n/a n/a

How COVID-19 Is Ushering In a New Era of Cashless Technology

  Image source: https://www.pexels.com/photo/person-shopping-online-3944405/   Cashless technology isn't a completely fresh concept. People have been using credit cards for decades, and the market for fintech services has been Read more »

Jean Shin tyntec

Using WhatsApp for 2FA is the Future of Banking

From user authentication and password resets to transaction verification, two-factor authentication (2FA) offers basic but useful protection for consumers. The 2FA process typically sends an SMS sent to the customer with a one-time password (OTP). Read more »

Related Blogs

Amit Purohit LoginRadius

The Death of Passwords [Infographic]

In the beginning days of the Internet, Users had to remember only few passwords: An email, and a  bank password.But with the rapid development of e-commerce, self-service websites and social media, everyone now has to remember and manage dozens of Read more »

Magazine
ALL
Free Newsletter Sign-up
+44 (0) 208 819 32 53 +44 (0) 173 261 71 47
Download Our Mobile App
Financial It Youtube channel