The FSA said that fraudsters exploited the weaknesses the life assurance firm’s systems to gain personal information, allowing them to ask for the surrender of the policies of 74 customers, worth £3.3 million, last year.
“Norwich Union Life let down its customers by not taking reasonable steps to keep their personal and financial information safe and secure,” said Margaret Cole, director of enforcement for the FSA, in the statement. “This fine is a clear message that the FSA takes information security seriously and requires that firms do so too.”
The fine exceeds that made against Nationwide building society, of £980 000, earlier this year. The FSA said that Norwich Union Life, a division of Aviva, would have been fined £1.8m but, as with Nationwide, it co-operated fully and settled at an early stage of the investigation, gaining it a 30% discount under the authority’s rules.