At a Banking Seminar organized by DNB in Amsterdam, Andrea Enria of ECB examined ways to mitigate the risks posed by digitization in banking sector. He discussed the role of regulators and supervisors in dealing with the fintech-related issues and outlined the steps taken and planned by ECB in this area. While discussing the suptech benefits and initiatives, he also mentioned that automated reporting, for instance, could ease the burden on banks and allow supervisors to collect data more efficiently.
Mr. Enria began by discussing the relevant operational risks posed by digitization in the banking sector and how these risks can be mitigated. In terms of operational risks, he focused on risks posed by outdated IT systems and cyber risk, also outlining ways for banks to better deal with these risks. He highlighted that ECB has been monitoring IT and cyber risk since the early days of European banking supervision. ECB has conducted a number of in-depth reviews and frequent on-site inspections on IT risk and cyber security. ECB has also set up a cyber incident reporting process, enabling ECB to track actual incidents that might harm individual banks or the entire system. In addition, ECB holds general discussions with the national authorities and EBA on how to supervise fintech banking. As fintech is a new phenomenon, there is a chance to take a common European stance right from the start. In April, ECB will, for instance, hold a workshop on fintech supervision. This workshop will bring together many different parties, including market authorities, bank supervisors, legislators, and banks.
He added that digitization of the sector also poses systemic risks. In case each small piece of the banking value chain may be occupied by an individual player—a bank or fintech—this poses systemic risk through the resulting interconnectedness that leads to forming of complex and opaque networks. Another potential systemic issue could arise from concentration, as digital services, such as cloud computing, might be offered by just a few players. In case something goes wrong any of these players, a huge number of banks might be affected, possibly unleashing a systemic crisis. In this context, banks must build up relevant expertise and knowledge and establish adequate governance structures and proper risk management practices, which need to be adapted to the digital age.
Mr. Enria believes that regulators and supervisors are technology-neutral but not risk-neutral. However, dealing with innovation is a challenge for regulators and supervisors and they need to monitor innovation, assess any new risks, and then "tackle them head on" while adhering to the core principle of “same risk, same rules, same supervision.” One factor to focus on is the perimeter of regulation and supervision and whether this should be extended to include fintechs. He believes that the focus must be on the essence of banking—that is, taking deposits and granting loans. "This is how banks are defined in the regulation and this is what defines the perimeter." While fintechs compete with banks in parts of the value chain, they may not necessarily need to be licensed, regulated, and supervised like banks. However, he believes that these boundaries need to be monitored and adjusted at some point. The fintech companies engaging in core banking business must be treated like banks and they would first need a license. To this end, ECB has published a guide on licensing for fintechs. To supplement the guide, in 2017, it had also set up a Single Supervisory Mechanism fintech hub. This hub is a central point of contact for ECB and national supervisory authorities on all matters concerning the authorization of fintech banks; it serves as a platform for sharing information and discussing best practices.
As fintech banks might come under the scope of banking supervision, the relevant risks must be addressed. He then discussed the importance of data to the work of supervisors, which results in banks being burdened with so many reporting requirements, and outlined the way the new digital tools could help supervisors and banks. Automated reporting, for instance, could ease the burden on banks and allow supervisors to collect data more efficiently. Meanwhile, machine learning could help us to validate—and even analyze—the data. Consequently, the supervisors could then become even faster in spotting new risks and dealing with them. He then mentioned that DNB is very active in the field of supervision technology or suptech. DNB has set up an innovation lab to explore new technologies and a Chief Innovation Office to coordinate suptech initiatives. DNB has lab-tested tools such as artificial intelligence and Robotics Process Automation, including the use of neural networks to detect liquidity risk. "This work should inspire other supervisors to follow suit."
Mr. Enria added that ECB is also working on this topic and is assessing the ways in which digital tools can help it to do its job more effectively and more efficiently. Supervising banks is no exception. However, it is crucial to exchange views and share first experiences—with all stakeholders and at the global level. That’s why ECB attempts to connect with as many stakeholders as possible. In conclusion, he emphasized that he clearly sees the benefits of suptech and that the time has come to harness the opportunities offered by suptech. "I am convinced that it will become part of our toolbox—not as a substitute for supervisory judgment, but as a complement to it."
Related Link: Speech
Keywords: Europe, EU, Banking, Fintech, Regtech, Suptech, Banking Supervision, Automated Reporting, ECB
Previous ArticlePRA and FCA Host First Meeting of the Climate Financial Risk Forum
PRA, via the consultation paper CP12/20, proposed changes to its rules, supervisory statements, and statements of policy to implement certain elements of the Capital Requirements Directive (CRD5).
EIOPA published the financial stability report that provides detailed quantitative and qualitative assessment of the key risks identified for the insurance and occupational pensions sectors in the European Economic Area.
EBA published its risk dashboard for the first quarter of 2020 together with the results of the risk assessment questionnaire.
EBA announced that the next stress testing exercise is expected to be launched at the end of January 2021 and its results are to be published at the end of July 2021.
PRA published the consultation paper CP11/20 that sets out its expectations and guidance related to auditors’ work on the matching adjustment under Solvency II.
MAS published a statement guidance on dividend distribution by banks.
APRA updated its capital management guidance for banks, particularly easing restrictions around paying dividends as institutions continue to manage the disruption caused by COVID-19 pandemic.
FSB published a report that reviews the progress on data collection for macro-prudential analysis and the availability and use of macro-prudential tools in Germany.
EBA issued a statement reminding financial institutions that the transition period between EU and UK will expire on December 31, 2020; this will end the possibility for the UK-based financial institutions to offer financial services to EU customers on a cross-border basis via passporting.
SRB published guidance on operational continuity in resolution and financial market infrastructure (FMI) contingency plans.