APRA notified that AUSkey, which is the authentication credential for Direct to APRA (D2A) and the APRA Extranet, will be replaced with myGovID, Relationship Authorization Manager (RAM), and machine to machine (M2M) credentials. AUSkey will be decommissioned at the end of March 2020 and entities will be required to take steps in February/March 2020 to ensure continued access to APRA systems. APRA will provide technical and support information in early 2020 to enable entities to transition.
The new Data Collection Solution was originally due to go live in March 2020; however, APRA has now advised that implementation will now be later in 2020. For entities to continue to submit data to APRA via D2A from April onward, they will need to complete the necessary steps with respect to transition from AUSkey to myGovID and RAM by the end of March 2020. To be ready for AUSkey changeover for D2A by the end of March 2020:
- Entities should ensure that users set up their digital identity in myGovID and that their business is linked and administrators authorized in RAM. Entities may also create machine credentials ready for next year, but should store them in a different file to the current D2A credential.
- Entities will need to complete a minor update to D2A in February/March 2020.
Additionally, the users of APRA Extranet will only need to set up a myGovID and link it to the APRA Extranet service when available in RAM. APRA is working closely with the Australian Taxation Office to facilitate the transition. Entities should prepare now by following Australian Taxation Office published materials to set up users with myGovID and manage business authorizations in RAM.
Additionally, APRA has been exploring alternative implementation approaches for the new Data Collection Solution. In late October and early November, APRA engaged a cross-section of industry representatives to explore the benefits and impact of contrasting approaches. Entities were asked about the impact of continuing to report through D2A after March 2020. Some interesting themes that emerged are as follows:
- Many entities are keen to involve regtech firms to support the uplift of their capability, to move from manual to automated submission processes, and to set them up for future, more granular data collections.
- Entities want APRA to engage with them early in relation to future data collection roadmap. This will help entities plan their future technology uplift for regulatory reporting.
- There was tolerance for continuing to use D2A after March for a limited period; however, some concerns were raised about an implementation approach which would require continuing two systems (D2A and new solution) in the longer term.
- Entities confirmed that re-submission of past returns (which may be required if all existing collections were migrated in their current form), would create a significant burden.
Keywords: Asia Pacific, Australia, Banking, Insurance, Superannuation, AUSKey, myGovID, RAM, D2A, Reporting, Extranet, Data Collection Solution, Regtech, APRA
Scott is a Director in the Regulatory and Accounting Solutions team responsible for providing accounting expertise across solutions, products, and services offered by Moody’s Analytics in the US. He has over 15 years of experience leading auditing, consulting and accounting policy initiatives for financial institutions.
Previous ArticleECB Recommendations Address Impact of Transition from EONIA to €STR
The European Banking Authority (EBA) has published the final templates, and the associated guidance, for collecting climate-related data for the one-off Fit-for-55 climate risk scenario analysis.
The European Banking Authority (EBA) recently published a report that recommends enhancements to the Pillar 1 framework, under the prudential rules, to capture environmental and social risks.
As a follow on from its prudential standard on the treatment of crypto-asset exposures, the Basel Committee on Banking Supervision (BCBS) proposed disclosure requirements for crypto-asset exposures of banks.
The Basel Committee on Banking Supervision (BCBS) and the European Banking Authority (EBA) have published results of the Basel III monitoring exercise.
The Prudential Regulation Authority (PRA) recently issued a few regulatory updates for banks, with the updated Basel implementation timelines being the key among them.
The U.S. Department of the Treasury has recently set out the principles for net-zero financing and investment.
The European Commission (EC) launched a stakeholder survey on the draft International Guiding Principles for organizations developing advanced artificial intelligence (AI) systems.
The finalization of the two sustainability disclosure standards—IFRS S1 and IFRS S2—is expected to be a significant step forward in the harmonization of sustainability disclosures worldwide.
Decentralized finance (DeFi) is expected to increase in prominence, finding traction in use cases such as lending, trading, and investing, without the intermediation of traditional financial institutions.
The Basel Committee on Banking Supervision (BCBS) published reports that assessed the overall implementation of the net stable funding ratio (NSFR) and the large exposures rules in the U.S.