CMORG Privacy Notice


Welcome to the Cross Market Operational Resilience Group (CMORG) Website. CMORG leads sector-wide collective action on operational resilience. The group is made up of around 25 members, firms across retail, wholesale, FMIs, insurance, the financial authorities and the National Cyber Security Centre. It is co-chaired by senior executives of the Prudential Regulation Authority (PRA) and UK Finance. 

CMORG is dedicated to enhancing operational resilience within the financial sector and providing a platform for the exchange of knowledge and resources. Protecting your privacy is important to us, and we are committed to safeguarding your personal information. This Privacy Notice outlines our practices concerning the collection, use, and disclosure of your personal data when you access and use the CMORG Website.

This website is owned and operated by UK Finance (“we”, “us” or “our”) on behalf of the CMORG. It is supported by a Project Management Office (PMO) which is jointly resourced by UK Finance and the Bank of England.  Please read this Privacy Notice carefully to understand how we handle your personal information.    


Personal Information

We may collect personal information about you when you interact with the Website. This information may include:           
    •    Your name           
    •    Contact information (e.g., email address)           
    •    Job title and company           
    •    Affiliation with CMORG or its member organisations           
    •    Any other information you provide when using the artefact library           
Usage Data      
We may collect certain information when you visit the library, such as your IP address, browser type, operating system, and browsing behaviour. This data helps us improve the library and enhance your user experience.    


How We Use Your Information

We use the information we collect for the following purposes:

To Provide and Maintain the Website      
We use your personal information to operate and maintain the CMORG Website, as well as to communicate with you regarding Website-related updates, announcements, and changes.

Registration and Manual Verification           
Registrations for the CMORG Artefact Library are not automatic. A manual check is carried out by the PMO, before access to the library is granted. This manual verification process ensures the security and integrity of the information library.           
To Improve Library Services      
We may use usage data and feedback to analyse and enhance the functionality and content of the library. This helps us provide you with a better and more personalised experience.

To Share Knowledge           
Sharing knowledge is one of CMORG's core objectives. We may use your information to facilitate knowledge-sharing among CMORG members and individuals interested in operational resilience within the financial sector.


Information Sharing

We may share your personal information with the following parties:

CMORG Members: We may share your information with CMORG members to facilitate collaboration and knowledge-sharing.

Service Providers: We may engage third-party service providers to assist us in operating and maintaining the Website. These providers may have access to your personal information but are contractually obligated to protect it and use it only for the purposes specified by CMORG.

Legal Compliance: We may disclose your information as required by law or if we believe that such action is necessary to comply with legal obligations, protect our rights, or ensure the safety of others.


Data Security          

We take data security seriously. We implement technical and organisational measures to protect your data from unauthorised access, disclosure, or loss.   


Your Choices          

You have certain rights regarding your personal information, including the right to access, correct, or delete your data. To exercise these rights or if you have any questions or concerns about your privacy, please contact us at        


Changes to this Privacy Policy          

We may update this Privacy Notice to reflect changes to our information practices. We will notify you of any significant updates by posting the revised Privacy Notice on the Website or by other means.        


Contact Us         

If you have any questions or concerns about this Privacy Notice or our data practices, please contact us at           
For the Project Management Office (PMO) please contact