The Financial Sector Supervisory Commission of Luxembourg (CSSF) released a new template on the outsourcing of critical or important information and communication technology (ICT) arrangements. CSSF also published a circular on annual online questionnaire on financial crime for 2022, along with the feedback and key takeaways from the 2023 Anti-Money Laundering and Countering the Financing of Terrorism (AML/CFT) conference (held on January 30, 2023) for specialized professionals in the financial sector.
Below are the key highlights of the recent updates:
- CSSF released a new notification template, which is to be used by in-scope entities, as of February 20, 2023, when outsourcing a critical or important ICT arrangements in accordance with points 59 and 60 of the Circular CSSF 22/806 on outsourcing arrangements. CSSF notified that in-scope entities may introduce notifications using the previous template during a transitional period until March 20, 2023. After this date, only notifications received with the new template will be considered as notified in line with the instructions and forms available in accordance with point 59 of Circular CSSF 22/806. The in-scope entities include credit institutions, investment firms, and payment institutions and electronic money institutions.
- As part of the key takeaways from the AML/CFT conference, CSSF highlights that money laundering and terrorism financing (ML/TF) risk appetite, AML/CFT risk self-assessment and RC report are essential documents that provides an excellent insight of the professionals’ AML/CFT framework. CSSF also discusses on the importance of establishment of AML/CFT Expert Working Group for specialized professionals of the financial sector, the need for obligations and requirements for registration of fiducies and trusts, as well as importance of vertical risk assessments for legal persons and legal arrangements in terrorist financing.
- The 2022 questionnaire on financial crime contributes to the CSSF’s ongoing assessment of money laundering and terrorism financing risks present in the financial sectors under its AML/CFT supervision, and forms part of the AML/CFT risk-based supervision approach put in place by the CSSF. The 2022 questionnaire remains mostly unchanged compared to the previous year, however, some questions have been removed, added, or amended along with new questions that have been highlighted in the questionnaire. CSSF requires all institutions to submit answers to these questions through the CSSF eDesk Portal at the latest by March 31, 2023.
- Communication on Template for Outsourcing
- CSSF Feedback on 2023 AML/CFT Conference
- Key takeaways from AML/CFT Conference (PDF)
- Circular on 2022 Questionnaire on Financial Crime (PDF)
Keywords: Europe, Luxembourg, Banking, ML TF Risk, AML CFT, ICT Risk, Outsourcing, Q&A, Regtech, CSSF
Previous ArticleAMF France Proposes Minimum Environmental Criteria Under SFDR
Next ArticleEC Issues Amending Regulation Related to SFDR
The U.S. regulators recently released baseline and severely adverse scenarios, along with other details, for stress testing the banks in 2024. The relevant U.S. banking regulators are the Federal Reserve Bank (FED), the Federal Deposit Insurance Corporation (FDIC), and the Office of the Comptroller of the Currency (OCC).
The regulatory landscape for artificial intelligence (AI), including the generative kind, is evolving rapidly, with governments and regulators aiming to address the challenges and opportunities presented by this transformative technology.
The European Union (EU) has been working on the final elements of Basel III standards, with endorsement of the Banking Package and the publication of the European Banking Authority (EBA) roadmap on Basel III implementation in December 2023.
The European Financial Reporting Advisory Group (EFRAG), which plays a crucial role in shaping corporate reporting standards in European Union (EU), is seeking comments, until May 21, 2024, on the Exposure Draft ESRS for listed SMEs.
Banking regulators worldwide are increasingly focusing on addressing, monitoring, and supervising the institutions' exposure to climate and environmental risks.
The use cases of generative AI in the banking sector are evolving fast, with many institutions adopting the technology to enhance customer service and operational efficiency.
As part of the increasing regulatory focus on operational resilience, cyber risk stress testing is also becoming a crucial aspect of ensuring bank resilience in the face of cyber threats.
A few years down the road from the last global financial crisis, regulators are still issuing rules and monitoring banks to ensure that they comply with the regulations.
The European Commission (EC) recently issued an update informing that the European Council and the Parliament have endorsed the Banking Package implementing the final elements of Basel III standards
The Swiss Federal Council recently decided to further develop the Swiss Climate Scores, which it had first launched in June 2022.