MFSA Publishes Regulatory Updates and Supervisory Priorities for 2021
MFSA published its cross-sector supervisory priorities for 2021, along with the principles-based cross-sectoral guidelines on outsourcing and technology arrangements, including addressing the management of Information and Communication Technology (ICT), security, and cloud deployment risks. In another update, MFSA announced that it will adopt the ECB recommendation (ECB/2020/62) on restrictions on dividend distribution during COVID-19 pandemic in its entirety and the recommendation will be applicable to all credit institutions licensed in terms of the Banking Act until September 30, 2021. The ECB recommendation requires credit institutions to consider refraining from, or to limit, distributing any cash dividends or share buy-backs until September 30, 2021. Finally, MFSA published a circular to credit institutions on the exercise of discretion under Article 178(2)(d) of the Capital Requirements Regulation (CRR) with regard to the threshold for assessing the materiality of credit obligations past due.
In the circular addressing credit obligations past due, MFSA announced that, from December 31, 2020, the ECB guideline (ECB/2020/32; published on June 25, 2020) on materiality threshold for assessing credit obligations past due shall apply to all credit institutions licensed in terms of the Banking Act (Chapter 371 of the Laws of Malta). The ECB guideline sets the materiality threshold that shall be applied for the purposes of point (d) of paragraph 2 of Article 178 of the CRR. The materiality threshold comprises two components: an absolute limit and a relative limit. A default shall be deemed to have occurred when both the following limits are exceeded for more than 90 consecutive days:
- A limit in terms of the sum of all amounts past due owed by the obligor, which is equal to EUR 100 for retail exposures and EUR 500 for exposures other than retail exposures
- A limit in terms of the amount of the credit obligation past due in relation to the total amount of all on-balance sheet exposures to that obligor, excluding equity exposures, equal to 1%.
The guidance on ICT risk and outsourcing arrangements informs authorized firms on the implementation of technology arrangements, ICT and security risk management, and relevant outsourcing arrangements (including cloud computing). The guideline stipulates that the approach to adoption of cloud computing resources and services should be based on sound governance and management and should take into consideration the Guiding Principles for Cloud Computing Adoption and Use, which were issued by the global non-profit IT association ISACA, as outlined in clauses 2.4.2 to 2.4. The Accountability Principle states that the internal and cloud provider responsibilities should be clearly defined such that accountabilities are managed accordingly. The guideline elaborates on different type of cloud service models and shared responsibilities for these cloud service models. MFSA notes that this guidance document should be considered as a live document due to the dynamic nature of regulatory developments, technology evolution, and related opportunities and risks. MFSA plans to conduct thematic reviews on a sectoral basis on key aspects of the guidance document, which will be cross-referenced by the respective prudential rules of the applicable sectors along with ESAs guidelines (where applicable).
Related Links
- News Release on Supervisory Priorities
- Supervisory Priorities (PDF)
- News Release on Outsourcing Guidance
- Guidance on Outsourcing Arrangements (PDF)
- Circular Restricting Capital Distributions
- Circular on Threshold for Credit Obligations
Keywords: Europe, EU, Banking, Insurance, Securities, ICT Risk, Outsourcing Arrangements, Fintech, CRR, Credit Risk, Materiality Threshold, Credit Obligations, Supervisory Priorities, Dividend Distribution, COVID-19, ECB, MFSA
Featured Experts

Victor Calanog, Ph.D.
Leading economist; commercial real estate; performance forecasting, econometric infrastructure; data modeling; credit risk modeling; portfolio assessment; custom commercial real estate analysis; thought leader.
Previous Article
PRA Finalizes Exit Instrument and Guidance Before BrexitRelated Articles
BIS Examines Use of Big Data and Machine Learning at Central Banks
BIS published a paper that provides an overview on the use of big data and machine learning in the central bank community.
APRA Finalizes Reporting Standard for Operational Risk Requirements
APRA finalized the reporting standard ARS 115.0 on capital adequacy with respect to the standardized measurement approach to operational risk for authorized deposit-taking institutions in Australia.
ECB Publishes Guide for Determining Penalties for Regulatory Breaches
ECB published a guide that outlines the principles and methods for calculating the penalties for regulatory breaches of prudential requirements by banks.
MAS Sets Out Good Practices to Manage Operational Risks Amid COVID
MAS and The Association of Banks in Singapore (ABS) jointly issued a paper that sets out good practices for the management of operational and other risks stemming from new work arrangements adopted by financial institutions amid the COVID-19 pandemic.
ACPR Announces New Data Collection Application for Banks and Insurers
ACPR announced that a new data collection application, called DLPP (Datalake for Prudential), for collecting banking and insurance prudential data will go into production on April 12, 2021.
BCB Maintains CCyB at 0%, Initiates First Cycle of Regulatory Sandbox
BCB announced that the Financial Stability Committee decided to maintain the countercyclical capital buffer (CCyB) for Brazil at 0%, at least until the end of 2021.
EIOPA Launches Study on Non-Life Underwriting Risk in Internal Models
EIOPA has launched a European-wide comparative study on non-life underwriting risk in internal models, also kicking-off of the data collection phase.
SRB Publishes Overview of Resolution Tools Available in Banking Union
SRB published an overview of the resolution tools available in the Banking Union and their impact on a bank’s ability to maintain continuity of access to financial market infrastructure services in resolution.
EBA Consults on Pillar 3 Disclosure Standards for ESG Risks Under CRR
EBA is consulting on the implementing technical standards for Pillar 3 disclosures on environmental, social, and governance (ESG) risks, as set out in requirements under Article 449a of the Capital Requirements Regulation (CRR).
ESAs Issue Advice on KPIs on Sustainability for Nonfinancial Reporting
ESAs Issue Advice on KPIs on Sustainability for Nonfinancial Reporting