Liontrust Responsible Capitalism Report 2022 - Flipbook - Page 39
Compliance Training
Our policies and procedures are communicated and enforced
through periodic training and auditing. Our compliance team
develops various e-learning modules, followed by an assessment or
attestation. These include:
Training on key policies and procedures including:
• anti-money laundering;
• anti-bribery and corruption;
• dealing with conflicts of interest;
• market abuse regulations; and
• treaty customers fairly.
These e-learning modules are rolled out on a rotating basis. All
employees and members must complete these modules. All new joiners
are required to complete these modules within three months of joining.
Data Protection
Liontrust’s Data Protection Security Policy reflects the legal requirements
set out in the General Data Protection Regulations 2017 (GDPR).
Liontrust is committed to protecting the personal data of its staff,
customer and contacts and using it in the appropriate manner.
We recognise the rights afforded to individuals by data protection
legislation and must advise stakeholders of the fact that we process
their personal data and the specific purpose for which we do so.
Our policy requires our employees to:
• handle personal data in accordance with Liontrust’s policies and
procedures for safeguarding confidential information
• comply with data protection principles
• use personal data only for the purpose for which it has been
provided and in the proper course of their duties as a Liontrust
employee or partner
During the year to the 31 March 2020, there were no complaints
concerning historic data breaches.
Cyber Resilience
Liontrust is dependent on our IT infrastructure and systems. A
successful cyber-attack could result in the loss of data, disrupt our
ability to service our customers or in a worst-case scenario lead
to a loss of clients’ assets. Liontrust has included the management
of cyber security in our governance framework for several years
and use specialist external consultants to review and test our IT
infrastructure and security including penetration testing.
The Board has received specialist training on the threats and
challenges and all company staff receive regular training to keep
their skills up to date and to help maintain threat awareness.
We continue to use third party specialists to help define, test and
review our security arrangements at least annually with internal and
external penetration testing happening several times a year.
Liontrust has included certain cybersecurity extensions to our
comprehensive crime insurance policy to provide additional cover
in line with a standard cyber insurance policy.
Liontrust demands the same commitment to tackling cybersecurity
from its key outsourced providers.
Approach to Taxation
Liontrust aims to pay the appropriate levels of tax in a timely manner
and this means that we comply with our tax filing, reporting and
payment obligations globally. We have developed a formal tax
strategy to detail how tax risks are managed including governance,
systems and controls, Board oversight and our attitude to tax
planning.
Cybersecurity has remained a key focus for us over the last 12
months. A governance structure, including the appointment of a
virtual Chief Information Security Officer overseeing information
security, with a nominated responsible Board member is in place.
We perform a
our procedures
not tolerate tax
evasion by any
Staff awareness and training is an important part of our defence
against attack.
tax evasion risk assessment and have reviewed
to prevent the facilitation of tax evasion. We do
evasion, nor do we tolerate the facilitation of tax
person(s) acting on the Group’s behalf.
Liontrust Sustainability Report 2020 - 39