EBA Revises Guidelines on Outsourcing Arrangements by Institutions
EBA revised its guidelines on outsourcing arrangements for financial institutions, including credit institutions and investment firms subject to the Capital Requirements Directive (CRD) as well as payment and electronic money institutions. The guidelines cover information technology outsourcing, including fintech and outsourcing to cloud service providers. The guidelines will enter into force on September 30, 2019.
The guidelines set out specific provisions for the governance frameworks of all financial institutions within the scope of the EBA mandate with regard to their outsourcing arrangements and related supervisory expectations and processes. They clarify that the management body of each financial institution remains responsible for that institution and its activities at all times. Outsourcing must not lead to a situation in which an institution becomes an "empty shell" that lacks the substance to remain authorized. Additionally, the guidelines specify which arrangements with third parties are to be considered as outsourcing. The guidelines differentiate between requirements on critical and important outsourcing arrangements and other outsourcing arrangements. Outsourcing of critical and important functions has a higher impact on the institutions' and payment institutions' risk profile. Hence, the requirements for such functions are stricter compared to the requirements for other less risky outsourcing arrangements.
The guidelines aim to established a harmonized framework aimed to ensure that institutions can apply a single framework on outsourcing for all their banking, investment, and payment activities and services. Such a framework also ensures a level playing field between different types of financial institutions. These guidelines replace the 2006 guidelines on outsourcing while the recommendation on outsourcing to cloud service providers, which was published in December 2017, has been integrated into these guidelines.
Related Links
Effective Date: September 30, 2019
Keywords: Europe, EU, Banking, Fintech, Outsourcing Arrangements, Cloud Outsourcing, Proportionality, EBA
Previous Article
EC Welcomes Agreement on New Generation of Low-Carbon BenchmarksNext Article
EIOPA Publishes Q&A on Regulations in February 2019Related Articles
APRA Decides to Standardize Submission Date for Quarterly Reporting
APRA announced the standardization of quarterly reporting due dates for authorized deposit-taking institutions.
EBA Publishes Phase 1 of Reporting Framework 3.1
EBA published the phase 1 of its reporting framework 3.1, with the technical package covering the new reporting requirements for investment firms (under the implementing technical standards on investment firms reporting).
UK Government to Set Out Rules on Wind-down of Critical Benchmarks
HM Treasury notified that, after considering all responses, the government intends to bring forward further legislation, when the Parliamentary time allows, to address issues identified in the consultation on supporting the wind-down of critical benchmarks.
EIOPA Launches Stress Test for Insurance Sector in EU
EIOPA launched the 2021 stress test for the insurance sector in EU.
UK Authorities Publish Third Edition of Regulatory Initiatives Grid
UK authorities jointly published the third edition of Regulatory Initiatives Grid setting out the planned regulatory initiatives for the next 24 months.
EC Consults on Regulation on Non-Financial Sustainability Disclosures
EC is requesting feedback on the proposed Commission Delegated Regulation on the content, methodology, and presentation of information that large financial and non-financial undertakings should disclose about their environmentally sustainable economic activities under the Taxonomy Regulation.
OSFI Outlines Prudential Policy Priorities for Coming Months
OSFI has set out the near-term priorities for federally regulated financial institutions and federally regulated private pension plans for the coming months until March 31, 2022.
BIS Announces TechSprint on Innovative Green Finance Solutions
Under the Italian G20 Presidency, BIS Innovation Hub and the Italian central bank BDI launched the second edition of the G20 TechSprint on the lookout for innovative solutions to resolve operational problems in green and sustainable finance.
ACPR Publishes Version 1.0.0 of RUBA Taxonomy
ACPR published Version 1.0.0 of the RUBA taxonomy, which will come into force from the decree of January 31, 2022.
EBA Proposed Regulatory Standards for Central Database on AML/CFT
EBA proposed the regulatory technical standards on a central database on anti-money laundering and countering the financing of terrorism (AML/CFT) in EU.
