APRA notified that AUSkey, which is the authentication credential for Direct to APRA (D2A) and the APRA Extranet, will be replaced with myGovID, Relationship Authorization Manager (RAM), and machine to machine (M2M) credentials. AUSkey will be decommissioned at the end of March 2020 and entities will be required to take steps in February/March 2020 to ensure continued access to APRA systems. APRA will provide technical and support information in early 2020 to enable entities to transition.
The new Data Collection Solution was originally due to go live in March 2020; however, APRA has now advised that implementation will now be later in 2020. For entities to continue to submit data to APRA via D2A from April onward, they will need to complete the necessary steps with respect to transition from AUSkey to myGovID and RAM by the end of March 2020. To be ready for AUSkey changeover for D2A by the end of March 2020:
- Entities should ensure that users set up their digital identity in myGovID and that their business is linked and administrators authorized in RAM. Entities may also create machine credentials ready for next year, but should store them in a different file to the current D2A credential.
- Entities will need to complete a minor update to D2A in February/March 2020.
Additionally, the users of APRA Extranet will only need to set up a myGovID and link it to the APRA Extranet service when available in RAM. APRA is working closely with the Australian Taxation Office to facilitate the transition. Entities should prepare now by following Australian Taxation Office published materials to set up users with myGovID and manage business authorizations in RAM.
Additionally, APRA has been exploring alternative implementation approaches for the new Data Collection Solution. In late October and early November, APRA engaged a cross-section of industry representatives to explore the benefits and impact of contrasting approaches. Entities were asked about the impact of continuing to report through D2A after March 2020. Some interesting themes that emerged are as follows:
- Many entities are keen to involve regtech firms to support the uplift of their capability, to move from manual to automated submission processes, and to set them up for future, more granular data collections.
- Entities want APRA to engage with them early in relation to future data collection roadmap. This will help entities plan their future technology uplift for regulatory reporting.
- There was tolerance for continuing to use D2A after March for a limited period; however, some concerns were raised about an implementation approach which would require continuing two systems (D2A and new solution) in the longer term.
- Entities confirmed that re-submission of past returns (which may be required if all existing collections were migrated in their current form), would create a significant burden.
Keywords: Asia Pacific, Australia, Banking, Insurance, Superannuation, AUSKey, myGovID, RAM, D2A, Reporting, Extranet, Data Collection Solution, Regtech, APRA
Previous ArticleSEC Finalizes Requirements Under Regulatory Regime for Swaps
EBA issued a revised list of validation rules with respect to the implementing technical standards on supervisory reporting.
EBA published its response to the call for advice of EC on ways to strengthen the EU legal framework on anti-money laundering and countering the financing of terrorism (AML/CFT).
NGFS published a paper on the overview of environmental risk analysis by financial institutions and an occasional paper on the case studies on environmental risk analysis methodologies.
MAS published the guidelines on individual accountability and conduct at financial institutions.
APRA published final versions of the prudential standard APS 220 on credit quality and the reporting standard ARS 923.2 on repayment deferrals.
SRB published two articles, with one article discussing the framework in place to safeguard financial stability amid crisis and the other article outlining the path to a harmonized and predictable liquidation regime.
FSB hosted a virtual workshop as part of the consultation process for its evaluation of the too-big-to-fail reforms.
ECB updated the list of supervised entities in EU, with the number of significant supervised entities being 115.
OSFI published the key findings of a study on third-party risk management.
FSB is extending the implementation timeline, by one year, for the minimum haircut standards for non-centrally cleared securities financing transactions or SFTs.