Dubai FSA Consults on Cyber Risk Rules & Aspects of Innovation Program
The Dubai Financial Services Authority (Dubai FSA) is consulting on the cyber risk management requirements for regulated firms and on its role in supporting innovation in financial services. The consultation period ends on April 25, 2023 while the proposed compliance date for the cyber risk management rules is January 01, 2024.
As part of this consultation, Dubai FSA proposes to modify the legacy provisions in certain parts of the Dubai FSA Rulebook with respect to requiring firms to protect their information technology assets from information security threats. The amendments are being introduced to the GEN (General), AUD (Auditor), COB (Conduct of Business), AMI (Authorized Market Institutions), and PIB (Prudential: Investment, Insurance Intermediation, and Banking) modules in the Rulebook. To facilitate innovation and to support the further development of a technology and innovation-focused community in the Dubai International Financial Center (DIFC) and in Dubai, Dubai FSA has introduced new and amended rules in areas such as Crowdfunding, Fund Platforms, Money Services, Venture Capital, Investment Tokens, Credit Funds, and Crypto Tokens. Dubai FSA is planning to review some of these regimes in 2023. The authority intends to publish a Call for Evidence shortly as part of a review of the Crowdfunding regime and will welcome feedback from stakeholders on the need for further evolution of this regime.
Dubai FSA, in 2017, had introduced the Innovation Testing License (ITL) program, which is its version of regulatory sandbox. The authority is concerned that the program is at risk of being used as a vehicle to support start-up entities and entities with no regulatory history, who are not adequately prepared to apply for a DFSA license in the normal way. Thus, it seeks public comments on a series of proposals aimed at refocusing the
ITL program even more clearly on innovation and proposes to clarify some of the processes involved and the related regulatory expectations, such as the application process, the entry into and exit out of the ITL program, and changes in relation to the application criteria, timeline, and regulatory interaction. While not part of the proposals that will result in any Rulebook changes, Dubai FSA is also seeking feedback on ideas related to its engagement with technology firms providing certain non-regulated services in or from the DIFC.
Related Links
Keywords: Middle East and Africa, UAE, Dubai, Banking, Cyber Risk, Regtech, Regulatory Sandbox, Crowdfunding Service Providers, Lending, Dubai FSA
Previous Article
EBA Issues No-Action Letter on Trading Book Boundary ProvisionsRelated Articles
BIS and Central Banks Experiment with GenAI to Assess Climate Risks
A recent report from the Bank for International Settlements (BIS) Innovation Hub details Project Gaia, a collaboration between the BIS Innovation Hub Eurosystem Center and certain central banks in Europe
Nearly 25% G-SIBs Commit to Adopting TNFD Nature-Related Disclosures
Nature-related risks are increasing in severity and frequency, affecting businesses, capital providers, financial systems, and economies.
Singapore to Mandate Climate Disclosures from FY2025
Singapore recently took a significant step toward turning climate ambition into action, with the introduction of mandatory climate-related disclosures for listed and large non-listed companies
SEC Finalizes Climate-Related Disclosures Rule
The U.S. Securities and Exchange Commission (SEC) has finalized the long-awaited rule that mandates climate-related disclosures for domestic and foreign publicly listed companies in the U.S.
EBA Proposes Standards Related to Standardized Credit Risk Approach
The European Banking Authority (EBA) has been taking significant steps toward implementing the Basel III framework and strengthening the regulatory framework for credit institutions in the EU
US Regulators Release Stress Test Scenarios for Banks
The U.S. regulators recently released baseline and severely adverse scenarios, along with other details, for stress testing the banks in 2024. The relevant U.S. banking regulators are the Federal Reserve Bank (FED), the Federal Deposit Insurance Corporation (FDIC), and the Office of the Comptroller of the Currency (OCC).
Asian Governments Aim for Interoperability in AI Governance Frameworks
The regulatory landscape for artificial intelligence (AI), including the generative kind, is evolving rapidly, with governments and regulators aiming to address the challenges and opportunities presented by this transformative technology.
EBA Proposes Operational Risk Standards Under Final Basel III Package
The European Union (EU) has been working on the final elements of Basel III standards, with endorsement of the Banking Package and the publication of the European Banking Authority (EBA) roadmap on Basel III implementation in December 2023.
EFRAG Proposes XBRL Taxonomy and Standard for Listed SMEs Under ESRS
The European Financial Reporting Advisory Group (EFRAG), which plays a crucial role in shaping corporate reporting standards in European Union (EU), is seeking comments, until May 21, 2024, on the Exposure Draft ESRS for listed SMEs.
ECB to Expand Climate Change Work in 2024-2025
Banking regulators worldwide are increasingly focusing on addressing, monitoring, and supervising the institutions' exposure to climate and environmental risks.