HKMA Revises Guidance on Risk Management of Electronic Banking
HKMA issued a revised version of the Supervisory Policy Manual module TM-E-1 on risk management of electronic banking (e-banking). This module sets out guidance on the sound risk management principles and practices applicable to authorized institutions’ e-banking services. The guidance took into account the latest developments in banking industry, in relevant technologies, and in supervisory guidance used in other major jurisdictions. The guidance is intended to facilitate further development of e-banking in Hong Kong while enhancing the risk management controls of the industry.
Given that e-banking involves the delivery of financial services through technological means, both general risk management principles applicable to the provision of the underlying financial services and the typical technological controls are applicable to e-banking. This module does not repeat the general guidance of HKMA in these areas, instead it elaborates on how the relevant risk management measures may be applied or refined in case of e-banking for different types of customers. Authorized institutions should use a risk-based approach to managing the risks associated with e-banking. In this connection, authorized institutions should comply with the requirements in this module and should also make reference to other relevant Supervisory Policy Manual modules and HKMA guidance issued from time to time.
As part of the risk governance for e-banking, authorized institutions’ senior management should establish clear policies and accountability to ensure that a rigorous independent assessment is performed before the launch of any new electronic delivery channel of e-banking service, or a major enhancement to existing services. The purpose of the independent assessment is to validate whether the e-banking service complies with applicable regulatory guidance and whether sufficient risk management controls are in place in relation to the service or enhancement concerned. In general, items to be reported in the independent assessment should cover, at a minimum, the areas specified in Annex A, and the report should be submitted to HKMA on request.
Keywords: Asia Pacific, Hong Kong, Banking, E-Banking, Risk Management, Supervisory Policy Manual, Independent Assessment, HKMA
Featured Experts
María Cañamero
Skilled market researcher; growth strategist; successful go-to-market campaign developer
Nicolas Degruson
Works with financial institutions, regulatory experts, business analysts, product managers, and software engineers to drive regulatory solutions across the globe.
Patrycja Oleksza
Applies proficiency and knowledge to regulatory capital and reporting analysis and coordinates business and product strategies in the banking technology area
Previous Article
FDIC Adopts Revisions to Company-Run Stress Testing RequirementsRelated Articles
EC Rule on Contractual Recognition of Write Down and Conversion Powers
The European Commission (EC) published the Delegated Regulation 2021/1527 with regard to the regulatory technical standards for the contractual recognition of write down and conversion powers.
APRA Issues Further Guidance on Application of Securitization Standard
The Australian Prudential Regulation Authority (APRA) published a new set of frequently asked questions (FAQs) to provide guidance to authorized deposit-taking institutions on the interpretation of APS 120, the prudential standard on securitization.
SRB Provides Update on Approach to Prior Permissions Regime
The Single Resolution Board (SRB) published a Communication on the application of regulatory technical standard provisions on prior permission for reducing eligible liabilities instruments as of January 01, 2022.
APRA Publishes FAQs on Capital Treatment of Overseas Subsidiaries
The Australian Prudential Regulation Authority (APRA) published a new set of frequently asked questions (FAQs) to clarify the regulatory capital treatment of investments in the overseas deposit-taking and insurance subsidiaries.
EBA Finalizes Guidance to Assess Breaches of Large Exposure Limits
The European Banking Authority (EBA) published the final report on the guidelines specifying the criteria to assess the exceptional cases when institutions exceed the large exposure limits and the time and measures needed for institutions to return to compliance.
PRA Finalizes Changes to Consolidated Prudential Rules Under CRD5/CRR2
The Prudential Regulation Authority (PRA) issued the policy statement PS20/21, which contains final rules for the application of existing consolidated prudential requirements to financial holding companies and mixed financial holding companies.
EBA Revises Guidelines on Stress Tests of Deposit Guarantee Schemes
The European Banking Authority (EBA) revised the guidelines on stress tests to be conducted by the national deposit guarantee schemes under the Deposit Guarantee Schemes Directive (DGSD).
Nordea Bank and EIB Sign Agreement to Fund Green Projects in Nordics
The European Commission (EC) announced that Nordea Bank has signed a guarantee agreement with the European Investment Bank (EIB) Group to support the sustainable transformation of businesses in the Nordics.
HKMA Endorses Industry Guidance to Support LIBOR Transition
The Hong Kong Monetary Authority (HKMA) issued a circular, for all authorized institutions, to confirm its support of an information note that sets out various options available in the loan market for replacing USD LIBOR with the Secured Overnight Financing Rate (SOFR).
OCC Issues Booklet on Supervision of Problem Banks
The Office of the Comptroller of the Currency (OCC) issued a new "Problem Bank Supervision" booklet of the Comptroller's Handbook. The booklet covers information on timely identification and rehabilitation of problem banks and their advanced supervision, enforcement, and resolution when conditions warrant.
