EIOPA published the strategies for cyber underwriting and supervisory technology (suptech), in response to the evolving insurance landscape. Also published was the Supervisory Convergence Plan for 2020, which sets out priorities and activities for the coming year. The convergence plan builds on the work of the previous year while incorporating new priorities to reflect new trends and emerging risks. The three new priorities that have been identified for supervisory convergence for 2020 are the development of suptech solutions, promotion of assessment and mitigation tools to address potential systemic cyber and extreme risks; and identification and monitoring of supervisory risks in the authorization of cross-border institutions for occupational retirement provision (IORPs) to develop appropriate supervisory responses.
EIOPA is of the view that appropriate cyber insurance coverage, underwriting practices, and sound supervision can make a valuable contribution for people, businesses, and economies to manage cyber risk. Thus, EIOPA will undertake specific actions as part of its own supervisory and regulatory priorities as well as in its capacity as a facilitator and catalyst to provide advice on cyber insurance. These actions include periodic assessment and supervision of cyber underwriting and risk management; further investigation into the issue of non-affirmative cyber exposures and accumulation of risk; inclusion of scenarios related to cyber risk events and incidents in the stress testing framework; and working with partners to explore and promote the development of a harmonized cyber incident reporting taxonomy.
The suptech strategy of EIOPA aims to facilitate the establishment of a mid- and long-term coordinated plan for development of suptech-based supervisory tools and processes, in line with the strategic objective and annual supervisory convergence plans. The strategy covers both prudential and conduct of business supervision, policy, and interaction with entities, for insurance and occupational pensions sectors. In 2020, the InsurTech Task Force of EIOPA is also expected to work on the regtech field—that is, the application of new technologies for regulatory and compliance requirements by the undertakings. Intrapreneurship programs have been promoted to identify and develop specific tools by the national competent authorities. Supervisors
were invited to present ideas to improve the efficiency and/or effectiveness of their work. Some projects have been chosen and are under development. In the area of improving supervisory processes and the use of data, both quantitative and qualitative, some of the following examples may be identified:
- Text analysis tool to compare the Solvency and Financial Condition Reports (SFCRs) published with the Quantitative Reporting Templates, including sentiment analysis in both to assess differences
- Structure prospects and yearly reports by using machine learning mechanism from unstructured documents
- Text mining or analysis of narrative data with natural language processing to support the use of qualitative information like Own Risk and Solvency Assessment and SFCR, but also from data on authorizations and other publicly available sources
- Smart search engine to access relevant information during on-site supervision activities
- Monitor social media data to capture consumer sentiment and identify informal complaints, based on a third-party and APIs, then build programs to do the analytics
- Search tool among regulatory, methodology, and doctrine texts relevant to the business of the national competent authorities, developing a relevant content navigation and visualization system that will rely on Text Mining algorithms
- Exploit, through artificial intelligence, the thousands of judicial decisions rendered each year against banking and insurance professionals to guide the supervisory actions of national competent authorities
- The use of machine learning techniques to improve data quality and data analytics through supervised and unsupervised learning. Clustering, outlier detection, identification of patterns, and trends are some examples
- A new financial supervision tool based on predictive analytics that can make sense of a growing set of available data
- Press Release on Cyber Underwriting and Suptech Strategies
- Cyber Underwriting Strategy (PDF)
- Suptech Strategy (PDF)
- Press Release on Supervisory Convergence Plan
- Supervisory Convergence Plan (PDF)
Keywords: Europe, EU, Insurance, Cyber Underwriting, Suptech, Cyber Risk, SREP, Regtech, Fintech, Solvency II, EC, EIOPA
Previous ArticleECB Presents Benchmarking Analysis of Recovery Plans of Banks
The Prudential Regulation Authority (PRA) published the final policy statement PS21/21 on the leverage ratio framework in the UK. PS21/21, which sets out the final policy of both the Financial Policy Committee (FPC) and PRA
The Consumer Financial Protection Bureau (CFPB) proposed to amend Regulation B to implement changes to the Equal Credit Opportunity Act (ECOA) under Section 1071 of the Dodd-Frank Act.
The Prudential Regulation Authority (PRA) decided to maintain, at the 2019 levels, the buffer rates for the Other Systemically Important Institutions (O-SII) for another year, with no new rates to be set until December 2023.
The Financial Stability Board (FSB) published a progress report on implementation of its high-level recommendations for the regulation, supervision, and oversight of global stablecoin arrangements.
In a letter to the authorized deposit taking institutions, the Australian Prudential Regulation Authority (APRA) announced an increase in the minimum interest rate buffer it expects banks to use when assessing the serviceability of home loan applications.
The Committee on Payments and Market Infrastructures (CPMI) and the International Organization of Securities Commissions (IOSCO) are consulting on the preliminary guidance that clarifies that stablecoin arrangements should observe international standards for payment, clearing, and settlement systems.
The European Banking Authority (EBA) and the European Insurance and Occupational Pensions Authority (EIOPA) have set out their respective work priorities for 2022.
The Malta Financial Services Authority (MFSA) updated the guidelines on supervisory reporting requirements under the reporting framework 3.0, in addition to the reporting module on leverage under the common reporting (COREP) framework.
The European Commission (EC) published the Implementing Decision 2021/1753 on the equivalence of supervisory and regulatory requirements of certain third countries and territories for the purposes of the treatment of exposures, in accordance with the Capital Requirements Regulation or CRR (575/2013).
EC published the Implementing Regulation 2021/1751, which lays down implementing technical standards on uniform formats and templates for notification of determination of the impracticability of including contractual recognition of write-down and conversion powers.