This form is intended to provide a systematic and standardised means of alerting the Authority of cyber breaches, and to provide periodic update reports through to incident resolution. A cyber incident should be reported immediately when it is deemed to have a material impact or has the potential to become a material incident.  Material cyber threats may include instances of significant loss of data or system controls; potential to impact a significant volume of clients; where unauthorised parties are able to gain or has gained access to your systems; unauthorised parties are able to introduce material, software, viruses, or spyware to your systems; and/or alter or extract data from your systems. Forms should be submitted to ContactFiduciary@cima.ky 

The Authority requires that every proposed shareholder, manager, controller, and director who wish to be appointed to a company licensed under the Banks and Trust Companies Act and the Private Trust Companies Regulations complete and submit a personal questionnaire along with supporting documentation per the licensing requirements.