PRA issued two letters to Category 5 credit unions with the findings of the 2019 assessment of credit unions. Each credit union received one of the two letters, depending on the peer group it falls into. One peer group (group 1) is made up of credit unions with total assets above GBP 15 million and/or with more than 10,000 members. The other peer group (group 2) is made up of credit unions with total assets below GBP 15 million and fewer than 10,000 members. Both letters addressed key issues such as governance, operational risk and resilience, and cyber security.
The key findings of the assessment include the following:
- Operational risk and resilience and cyber security—Before undertaking strategic initiatives to expand and develop new activities, especially online activities, it is essential to conduct a comprehensive operational risk assessment, ensuring that appropriate and adequate robust systems and controls are in place. There has been an increase in the number of operational and cyber incidents in credit unions over the last year. Credit unions should think about their business services, how their services could be disrupted, and how they might need to adapt to ensure that critical services can continue to be delivered through disruptions.
- Outsourcing—All credit unions using or considering the use of outsourcing should review their arrangements in light of the requirements listed in Section 14 (Outsourcing) of the Credit Union Rulebook Part. This includes, among other things, demonstrating that the credit union is able to terminate the arrangement, where necessary, without detriment to the continuity and quality of its provision of services to members. There have been instances where this has not been the case and this poses a risk to credit unions and their members.
- Management and monitoring of liquidity—Many credit unions with total assets above GBP 15 million and/or with more than 10,000 members have been successful in increasing lending over the last twelve months. However, PRA has noted instances where either an increase in lending and/or an illiquid investment, deposit, or reinvestment led to a significant reduction in the liquidity of a credit union, with some credit unions falling below the minimum required level. In some cases, credit unions could only rectify their position by taking out short-term loans from other credit unions. All credit unions are expected to maintain an up-to-date liquidity management policy statement approved by the Board.
- Provisioning—All credit unions with total assets below GBP 15 million and fewer than 10,000 members are required to make adequate provision for bad debts. PRA has seen instances where credit unions have treated their bad debt incorrectly and miscalculated their provisions. This has led to instances of financial difficulty and, in some cases, failure. Directors must ensure that they regularly review management information on bad debt and provisions and take steps for the assurance that the information reported to them is being correctly and properly calculated.
Keywords: Europe, UK, Banking, Credit Unions, Operational Risk, Governance, Outsourcing, Provision for Bad Debts, Liquidity Risk, Cyber Risk, PRA
Previous ArticleIFRS Publishes the Interpretations Committee Update for June 2019
Next ArticleEBA Single Rulebook Q&A: Third Update for June 2019
ECB published Guideline 2021/975, which amends Guideline ECB/2014/31, on the additional temporary measures relating to Eurosystem refinancing operations and eligibility of collateral.
EIOPA published a report, from the Consultative Expert Group on Digital Ethics, that sets out artificial intelligence governance principles for an ethical and trustworthy artificial intelligence in the insurance sector in EU.
HKMA published the seventh and final issue of the Regtech Watch series, which outlines the three-year roadmap of HKMA to integrate supervisory technology, or suptech, into its processes.
EC launched a targeted consultation to improve transparency and efficiency in the secondary markets for nonperforming loans (NPLs).
BIS, Danmarks Nationalbank, Central Bank of Iceland, Norges Bank, and Sveriges Riksbank launched an Innovation Hub in Stockholm, making this the fifth BIS Innovation Hub Center to be opened in the past two years.
FDITECH, the technology lab of FDIC, announced a tech sprint that is designed to explore new technologies and techniques that would help expand the capabilities of community banks to meet the needs of unbanked individuals and households.
EC released the EU Taxonomy Compass, which visually represents the contents of the EU Taxonomy starting with the EU Taxonomy Climate Delegated Act.
FDIC is seeking comments on a rule to amend the interagency guidelines for real estate lending policies—also known as the Real Estate Lending Standards.
EIOPA published its annual report, which sets out the work done in 2020 and indicates the planned work areas for the coming months.
The ESRB paper that presents an analytical framework that assesses and quantifies the potential impact of a bank failure on the real economy through the lending function.