RBI on Internal Controls, Regulatory Sandbox and Digital Lending Rules
RBI issued a statement on strengthening governance arrangements with respect to the risk-based internal audit framework. The statement highlights that while the RBI guidance note on risk-based internal audit lays out the basic approach for risk-based internal audit functions, banks are expected to re-orient their approach, in line with the evolving best practices, as a part of their overall governance and internal control framework. Banks are encouraged to adopt the International Internal Audit standards, like those issued by BCBS and the Institute of Internal Auditors (IIA). In a separate statement, RBI announced the opening of a Second Cohort under the Regulatory Sandbox with cross-border payments as its theme. The window for submission of applications for the Cohort shall be open from until February 15, 2021.
RBI also decided to select “micro, small, and medium enterprise (MSME) lending” as the theme for the Third Cohort, the details of which shall be announced in due course. In addition, RBI notified that a working group is being set up to study all aspects of digital lending activities in the regulated financial sector as well as by unregulated players so that an appropriate regulatory approach can be put in place. The terms of reference would require the working group to:
- Evaluate digital lending activities and assess the penetration and standards of outsourced digital lending activities in RBI regulated entities
- Identify risks posed by unregulated digital lending to financial stability, regulated entities, and consumers
- Suggest regulatory changes, if any, to promote orderly growth of digital lending
- Recommend measures, if any, for expansion of specific regulatory or statutory perimeter and suggest the role of various regulatory and government agencies
- Recommend measures for robust data governance, data privacy and data security standards for deployment of digital lending services
Keywords: Asia Pacific, India, Banking, Governance, Internal Audit, Internal Control, Regulatory Sandbox, Cross-Border Payments, Digital Lending, Credit Risk, Regtech, RBI
Previous Article
ECB Analysis Shows Privacy as Biggest Concern in Use of Digital EuroNext Article
CMF Consults on Implementation of IFRS 17 in ChileRelated Articles
EBA Publishes Regulatory Standards to Identify Shadow Banking Entities
The European Banking Authority (EBA) published the final draft regulatory technical standards specifying the criteria to identify shadow banking entities for the purposes of reporting large exposures.
EU Agencies Update LCR Rule and Macro-Prudential Policy Recommendation
The European Commission (EC) published the Delegated Regulation 2022/786 with regard to the liquidity coverage requirements for credit institutions under the Capital Requirements Regulation (CRR).
OSFI Discusses Benchmark Rate Transition, Sets Out Work Priorities
The Office of the Superintendent of Financial Institutions (OSFI) published the strategic plan for 2022-2025 and the departmental plan for 2022-23.
EBA Proposes Standards to Support Secondary NPL Markets
The European Banking Authority (EBA) is consulting, until August 31, 2022, on the draft implementing technical standards specifying requirements for the information that sellers of non-performing loans (NPLs) shall provide to prospective buyers.
EU Confirms Agreement on Rules on Cybersecurity and Banking Resolution
The European Council and the Parliament reached an agreement on the revised Directive on security of network and information systems (NIS2 Directive).
EBA Issues Standards for Crowdfunding Service Providers Under ECSPR
The European Banking Authority (EBA) published the final draft regulatory technical standards specifying information that crowdfunding service providers shall provide to investors on the calculation of credit scores and prices of crowdfunding offers.
EU to Amend Credit Risk Adjustment Rules; ESAs Submit Queries on SFDR
The European Council published a draft Commission Delegated Regulation to amend the regulatory technical standards on specification of the calculation of specific and general credit risk adjustments.
EU Confirms Agreement on Rules on Cybersecurity and Banking Resolution
The European Securities and Markets Authority (ESMA) published a paper that examines the systemic risk posed by increasing use of cloud services, along with the potential policy options to mitigate this risk.
MAS Amends Notice 635 and Issues Second Proposal on Green Taxonomy
The Monetary Authority of Singapore (MAS) published amendments to Notice 635, which sets out requirements that a bank in Singapore has to comply with when granting an unsecured non-card credit facility to individuals.
EC Consults on PSD2 and Open Finance; EU Reaches Agreement on DORA
The European Commission (EC) published a public consultation on the review of revised payment services directive (PSD2) and open finance.