General Information & Client Services
  • Americas: +1.212.553.1653
  • Asia: +852.3551.3077
  • China: +86.10.6319.6580
  • EMEA: +44.20.7772.5454
  • Japan: +81.3.5408.4100
Media Relations
  • New York: +1.212.553.0376
  • London: +44.20.7772.5456
  • Hong Kong: +852.3758.1350
  • Tokyo: +813.5408.4110
  • Sydney: +61.2.9270.8141
  • Mexico City: +001.888.779.5833
  • Buenos Aires: +0800.666.3506
  • São Paulo: +0800.891.2518
December 20, 2017

EBA published final guidance on the use of cloud service providers by financial institutions. The guidance, which is applicable as of July 01, 2018, is addressed to credit institutions, investment firms, and competent authorities.

In its guidance, EBA offers recommendations that clarify the EU-wide supervisory expectations if institutions intend to adopt cloud computing, to allow them to leverage the benefits of using cloud services, while ensuring that any related risks are adequately identified and managed. The guidance builds on the existing guidelines on outsourcing developed by the Committee of European Banking Supervisors (CEBS) and provides additional clarity on cloud computing. The EBA recommendations address five key areas: security of data and systems; location of data and data processing; access and audit rights; chain outsourcing; and contingency plans and exit strategies. 

The recommendations have been developed according to Article 16 of Regulation (EU) No 1093/2010, which mandates EBA to issue guidelines and recommendations addressed to competent authorities, with a view to establishing consistent, efficient, and effective supervisory practices and ensuring the common, uniform, and consistent application of EU law. The principle of proportionality applies throughout the recommendations, which should be employed in a manner proportionate to the size, structure, and operational environment of the institution as well as the nature, scale, and complexity of its activities. The recommendations fit into the broader EBA work on fintech, as cloud computing is an important enabling technology leveraged by financial institutions to deliver innovative financial products and services. The growing importance of cloud services as a driver of innovation and the increasing interest on the use of cloud outsourcing solutions within the banking industry have prompted EBA to develop these recommendations on its own initiative. 

 

Related Link: Press Release

Effective Date: July 01, 2018

Keywords: Europe, EU, Banking, Cloud Outsourcing, Cloud Computing, Proportionality, Fintech, EBA

Related Insights
News

PRA Finalizes Policy on Minor Amendments to Regulatory Reporting

PRA published the policy statement PS30/18, which contains the final policy following a consultation (CP16/18) on certain amendments to regulatory reporting.

December 05, 2018 WebPage Regulatory News
News

EIOPA Publishes Q&A on Regulations and Guidelines

EIOPA published new sets of questions and answers (Q&A) on guidelines, implementing regulations, and delegated regulations applicable to insurers in Europe.

December 03, 2018 WebPage Regulatory News
News

ESMA Registers A.M. Best (EU) Rating Services as Credit Rating Agency

ESMA, the direct supervisor of credit rating agencies (CRAs) in EU, has registered A.M. Best (EU) Rating Services B.V. as a CRA under the CRA Regulation, with effect from December 03, 2018.

December 03, 2018 WebPage Regulatory News
News

ECB Publishes the Cyber Resilience Oversight Expectations

ECB published the final cyber resilience oversight expectations for financial market infrastructures (FMIs).

December 03, 2018 WebPage Regulatory News
News

ESAs Clarify Securitization Disclosure Requirements for Institutions

ESAs (EBA, EIOPA, and ESMA) published a statement in response to the industry concerns about severe operational challenges in meeting the transitional provisions of the Securitization Regulation disclosure requirements.

November 30, 2018 WebPage Regulatory News
News

OSFI Revises the 2019 Minimum Capital Test Guideline for P&C Insurers

OSFI released a revised Minimum Capital Test (MCT) Guideline for federally regulated property and casualty (P&C) insurers.

November 30, 2018 WebPage Regulatory News
News

BCBS Met to Discuss Challenges for Bank Supervision and Regulation

The Group of Central Bank Governors and Heads of Supervision (GHOS) met, on November 26–27, in Abu Dhabi to discuss a range of policy and supervisory topics. GHOS represents nearly 80 jurisdictions and is the governing body of BCBS.

November 29, 2018 WebPage Regulatory News
News

FED Consults on Rule Establishing Risk-Based Categories for Banks

FED proposed a rule that would establish risk-based categories for determining prudential standards for large U.S. banking organizations, consistent with section 401 of the Economic Growth, Regulatory Relief, and Consumer Protection Act (EGRRCP Act).

November 29, 2018 WebPage Regulatory News
News

DNB Publishes Banking and Insurance Newsletters for November 2018

DNB issued the banking and insurance newsletters for November 2018.

November 29, 2018 WebPage Regulatory News
News

BoE Publishes Financial Stability Report and Stress Test Results

The Financial Policy Committee (FPC) of BoE published the financial stability report for 2018, including the results of its 2018 stress test for the banking sector in the UK.

November 28, 2018 WebPage Regulatory News
RESULTS 1 - 10 OF 2299