The Dubai Financial Services Authority (Dubai FSA) is consulting on the cyber risk management requirements for regulated firms and on its role in supporting innovation in financial services. The consultation period ends on April 25, 2023 while the proposed compliance date for the cyber risk management rules is January 01, 2024.
As part of this consultation, Dubai FSA proposes to modify the legacy provisions in certain parts of the Dubai FSA Rulebook with respect to requiring firms to protect their information technology assets from information security threats. The amendments are being introduced to the GEN (General), AUD (Auditor), COB (Conduct of Business), AMI (Authorized Market Institutions), and PIB (Prudential: Investment, Insurance Intermediation, and Banking) modules in the Rulebook. To facilitate innovation and to support the further development of a technology and innovation-focused community in the Dubai International Financial Center (DIFC) and in Dubai, Dubai FSA has introduced new and amended rules in areas such as Crowdfunding, Fund Platforms, Money Services, Venture Capital, Investment Tokens, Credit Funds, and Crypto Tokens. Dubai FSA is planning to review some of these regimes in 2023. The authority intends to publish a Call for Evidence shortly as part of a review of the Crowdfunding regime and will welcome feedback from stakeholders on the need for further evolution of this regime.
Dubai FSA, in 2017, had introduced the Innovation Testing License (ITL) program, which is its version of regulatory sandbox. The authority is concerned that the program is at risk of being used as a vehicle to support start-up entities and entities with no regulatory history, who are not adequately prepared to apply for a DFSA license in the normal way. Thus, it seeks public comments on a series of proposals aimed at refocusing the
ITL program even more clearly on innovation and proposes to clarify some of the processes involved and the related regulatory expectations, such as the application process, the entry into and exit out of the ITL program, and changes in relation to the application criteria, timeline, and regulatory interaction. While not part of the proposals that will result in any Rulebook changes, Dubai FSA is also seeking feedback on ideas related to its engagement with technology firms providing certain non-regulated services in or from the DIFC.
Keywords: Middle East and Africa, UAE, Dubai, Banking, Cyber Risk, Regtech, Regulatory Sandbox, Crowdfunding Service Providers, Lending, Dubai FSA
Previous ArticleEBA Issues No-Action Letter on Trading Book Boundary Provisions
The U.S. regulators recently released baseline and severely adverse scenarios, along with other details, for stress testing the banks in 2024. The relevant U.S. banking regulators are the Federal Reserve Bank (FED), the Federal Deposit Insurance Corporation (FDIC), and the Office of the Comptroller of the Currency (OCC).
The regulatory landscape for artificial intelligence (AI), including the generative kind, is evolving rapidly, with governments and regulators aiming to address the challenges and opportunities presented by this transformative technology.
The European Union (EU) has been working on the final elements of Basel III standards, with endorsement of the Banking Package and the publication of the European Banking Authority (EBA) roadmap on Basel III implementation in December 2023.
The European Financial Reporting Advisory Group (EFRAG), which plays a crucial role in shaping corporate reporting standards in European Union (EU), is seeking comments, until May 21, 2024, on the Exposure Draft ESRS for listed SMEs.
Banking regulators worldwide are increasingly focusing on addressing, monitoring, and supervising the institutions' exposure to climate and environmental risks.
The use cases of generative AI in the banking sector are evolving fast, with many institutions adopting the technology to enhance customer service and operational efficiency.
As part of the increasing regulatory focus on operational resilience, cyber risk stress testing is also becoming a crucial aspect of ensuring bank resilience in the face of cyber threats.
A few years down the road from the last global financial crisis, regulators are still issuing rules and monitoring banks to ensure that they comply with the regulations.
The European Commission (EC) recently issued an update informing that the European Council and the Parliament have endorsed the Banking Package implementing the final elements of Basel III standards
The Swiss Federal Council recently decided to further develop the Swiss Climate Scores, which it had first launched in June 2022.