The Bank of Mauritius (BOM) published guidelines on the use of cloud services and revised an existing guideline on cross-border exposure for banks.
The guideline on use of cloud services is relevant for financial institutions engaged in the use of cloud services and can help these institutions to duly identify and manage the associated risks. The guideline sets out general requirements for the use of cloud services and the additional minimum requirements for use of material cloud services and for cloud services that involve customer information. The guideline expects financial institutions to follow a risk-based approach commensurate with the materiality of the services, including the level of governance, the risk assessment, the information security requirements, the types of controls to be deployed, the contingency plans and exit strategies, and the level of the initial and ongoing due diligence and assurance. The guideline stipulates that financial institutions shall have a phased and prudent deployment for material cloud services. Financial institutions should comply with all the requirements of this guideline and implement additional controls in light of the latest international standards and best practices for material cloud services. This guideline shall come into effect on September 07, 2022 and will be applicable to all cloud-based arrangements entered by any financial institution licensed by BOM under the Banking Act 2004 and the National Payment Systems Act 2018.
The revised guideline on cross-border exposure provides a risk-based management framework to mitigate the key cross-border banking risks. BOM has issued several guidelines in respect of the identification, measurement, management, and mitigation of credit risk. These include the guideline on country risk management, the guideline on credit risk management, and the guideline on credit concentration risk. The guideline on cross-border exposure supplements these existing guidelines and provides a set of additional minimum standards that would need to be followed by banks in respect of their cross-border exposure. With respect to regulatory reporting, the guideline specifies that a bank shall immediately inform BOM when the bank is affected by a material increase in underlying risks such as credit, legal, or reputational risks in connection with its cross-border exposure or is approached by foreign authorities regarding such matters. BOM stipulates that banks shall fully implement the requirements of this guideline within three months from its effective date. The revised guideline shall come into effect on August 22, 2022 and will be applicable to all banks licensed under the Banking Act 2004.
Keywords: Middle East and Africa, Mauritius, Banking, Regtech, Cross Border Exposures, Credit Risk, Cloud Service Providers, Cloud Computing, BOM
The three European Supervisory Authorities (ESAs) issued a letter to inform about delay in the Sustainable Finance Disclosure Regulation (SFDR) mandate, along with a Call for Evidence on greenwashing practices.
The Financial Stability Board (FSB) and the Network for Greening the Financial System (NGFS) published a joint report that outlines the initial findings from climate scenario analyses undertaken by financial authorities to assess climate-related financial risks.
The Financial Stability Board (FSB) published a letter intended for the G20 leaders, highlighting the work that it will undertake under the Indian G20 Presidency in 2023 to strengthen resilience of the financial system.
The International Sustainability Standards Board (ISSB) of the IFRS Foundations made several announcements at COP27 and with respect to its work on the sustainability standards.
The International Organization for Securities Commissions (IOSCO), at COP27, outlined the regulatory priorities for sustainability disclosures, mitigation of greenwashing, and promotion of integrity in carbon markets.
The European Banking Authority (EBA) issued a statement in the context of COP27, clarified the operationalization of intermediate EU parent undertakings (IPUs) of third-country groups
The European Union has finalized and published, in the Official Journal of the European Union, a set of 13 Delegated and Implementing Regulations applicable to the European crowdfunding service providers.
The Office of the Superintendent of Financial Institutions (OSFI) published an annual report on its activities, a report on forward-looking work.
The Australian Prudential Regulation Authority (APRA) finalized amendments to the capital framework, announced a review of the prudential framework for groups.
The Bank for International Settlements (BIS) Innovation Hubs and several central banks are working together on various central bank digital currency (CBDC) pilots.