Featured Product

    BoM Revises Guideline on Outsourcing by Financial Institutions

    October 13, 2020

    BoM revised the guideline setting out a broad framework for financial institutions that have entered into outsourcing or are planning to outsource their business activities to service providers. The guideline covers risk management framework in outsourcing, evaluation of risks involved in outsourcing, classification of outsourcing activities, and the use of cloud-based services by financial institutions. This guideline is applicable to all financial institutions falling under the regulatory purview of BoM.

    The guideline is based on a three-tier classification of activities: material activities that require authorization, non-material activities that do not require authorization, and core activities that cannot be outsourced. BoM considers cloud-based services operated by service providers as a form of outsourcing and recognizes that financial institutions may have recourse to such services to enhance their operations and service efficiency. The usage of cloud-based services by financial institutions shall be restricted to non-core activities only. Financial institutions are required to take appropriate measures with respect to data access, confidentiality, integrity, sovereignty, recoverability, regulatory compliance, and auditing. They should ensure that the service providers have the capacity to identify and segregate customer data using strong physical or logical controls. As per the guideline, financial institutions are ultimately responsible and accountable for maintaining oversight of cloud-based services and managing the attendant risks of adopting cloud-based services, as in any other form of outsourcing arrangement.

    Financial institutions should conduct an assessment of all their existing outsourcing arrangements against this guideline. Where the outsourcing is considered material, financial institutions should inform BoM in writing about the level of compliance with the guideline and report weaknesses, if any. Institutions should also submit a plan and timeframe on how such weaknesses would be rectified. This should be done within four months from when the guideline becomes effective. Financial institutions should annually submit to BoM a Return on Outsourced Activities, containing a list of all material and non-material activities that have been outsourced, in such form and manner prescribed by BoM. This return should be submitted within the next twenty working days of the previous calendar year. The guideline follows the high-level principles on outsourcing in financial services, developed by the Joint Forum comprising BCBS, IOSCO, and IAIS.

     

    Related Links

    Keywords: Middle East and Africa, Mauritius, Banking, Outsourcing, Cloud Computing, Regtech, BoM

    Related Articles
    News

    BIS Paper Outlines Vision for Future Financial System

    In a recent paper, the General Manager of Bank for International Settlements (BIS) and the Indian entrepreneur (Infosys co-founder) Nandan Nilekani have laid out a vision for the Finternet, which is proposed to be a network of multiple financial ecosystems, much like the internet.

    April 29, 2024 WebPage Regulatory News
    News

    NGFS Outlines Options for Supervisory Review of Transition Plans

    The Network for Greening the Financial System (NGFS) recently published three reports on the use of transition plans to boost sustainable finance and manage climate-related financial risks.

    April 29, 2024 WebPage Regulatory News
    News

    BCBS Issues Discussion Paper on Climate Scenario Analysis

    The Basel Committee on Banking Supervision (BCBS) issued a discussion paper on the use of climate scenario analysis to strengthen the management and supervision of climate-related financial risks.

    April 29, 2024 WebPage Regulatory News
    News

    OSFI Issues Phase2 Consultation on Climate Scenario Exercise for Banks

    The Office of the Superintendent of Financial Institutions (OSFI) recently announced a consultation on the second phase of the Standardized Climate Scenario Exercise (SCSE) for banks and other financial institutions it regulates in Canada.

    April 25, 2024 WebPage Regulatory News
    News

    CFIT to Chair Open Finance Taskforce Announced by UK Government

    The UK government announced the formation of an industry-led Open Finance Taskforce, chaired by the Center for Finance, Innovation, and Technology (CFIT).

    April 25, 2024 WebPage Regulatory News
    News

    BIS and Central Banks Experiment with GenAI to Assess Climate Risks

    A recent report from the Bank for International Settlements (BIS) Innovation Hub details Project Gaia, a collaboration between the BIS Innovation Hub Eurosystem Center and certain central banks in Europe

    March 20, 2024 WebPage Regulatory News
    News

    Nearly 25% G-SIBs Commit to Adopting TNFD Nature-Related Disclosures

    Nature-related risks are increasing in severity and frequency, affecting businesses, capital providers, financial systems, and economies.

    March 18, 2024 WebPage Regulatory News
    News

    Singapore to Mandate Climate Disclosures from FY2025

    Singapore recently took a significant step toward turning climate ambition into action, with the introduction of mandatory climate-related disclosures for listed and large non-listed companies

    March 18, 2024 WebPage Regulatory News
    News

    SEC Finalizes Climate-Related Disclosures Rule

    The U.S. Securities and Exchange Commission (SEC) has finalized the long-awaited rule that mandates climate-related disclosures for domestic and foreign publicly listed companies in the U.S.

    March 07, 2024 WebPage Regulatory News
    News

    EBA Proposes Standards Related to Standardized Credit Risk Approach

    The European Banking Authority (EBA) has been taking significant steps toward implementing the Basel III framework and strengthening the regulatory framework for credit institutions in the EU

    March 05, 2024 WebPage Regulatory News
    RESULTS 1 - 10 OF 8962