PRA issued two letters to Category 5 credit unions with the findings of the 2019 assessment of credit unions. Each credit union received one of the two letters, depending on the peer group it falls into. One peer group (group 1) is made up of credit unions with total assets above GBP 15 million and/or with more than 10,000 members. The other peer group (group 2) is made up of credit unions with total assets below GBP 15 million and fewer than 10,000 members. Both letters addressed key issues such as governance, operational risk and resilience, and cyber security.
The key findings of the assessment include the following:
- Operational risk and resilience and cyber security—Before undertaking strategic initiatives to expand and develop new activities, especially online activities, it is essential to conduct a comprehensive operational risk assessment, ensuring that appropriate and adequate robust systems and controls are in place. There has been an increase in the number of operational and cyber incidents in credit unions over the last year. Credit unions should think about their business services, how their services could be disrupted, and how they might need to adapt to ensure that critical services can continue to be delivered through disruptions.
- Outsourcing—All credit unions using or considering the use of outsourcing should review their arrangements in light of the requirements listed in Section 14 (Outsourcing) of the Credit Union Rulebook Part. This includes, among other things, demonstrating that the credit union is able to terminate the arrangement, where necessary, without detriment to the continuity and quality of its provision of services to members. There have been instances where this has not been the case and this poses a risk to credit unions and their members.
- Management and monitoring of liquidity—Many credit unions with total assets above GBP 15 million and/or with more than 10,000 members have been successful in increasing lending over the last twelve months. However, PRA has noted instances where either an increase in lending and/or an illiquid investment, deposit, or reinvestment led to a significant reduction in the liquidity of a credit union, with some credit unions falling below the minimum required level. In some cases, credit unions could only rectify their position by taking out short-term loans from other credit unions. All credit unions are expected to maintain an up-to-date liquidity management policy statement approved by the Board.
- Provisioning—All credit unions with total assets below GBP 15 million and fewer than 10,000 members are required to make adequate provision for bad debts. PRA has seen instances where credit unions have treated their bad debt incorrectly and miscalculated their provisions. This has led to instances of financial difficulty and, in some cases, failure. Directors must ensure that they regularly review management information on bad debt and provisions and take steps for the assurance that the information reported to them is being correctly and properly calculated.
Keywords: Europe, UK, Banking, Credit Unions, Operational Risk, Governance, Outsourcing, Provision for Bad Debts, Liquidity Risk, Cyber Risk, PRA
Previous ArticleESRB Assesses Vulnerabilities in Residential Real Estate in EEA
FCA and PRA in the UK, FED in the US, and the authorities in Singapore have fined Goldman Sachs for risk management failures in connection with the 1Malaysia Development Berhad (1MDB).
BCBS announced that OSFI and the Bank of Canada hosted the 21st International Conference of Banking Supervisors (ICBS) virtually on October 19-22, 2020.
FCA proposed guidance on how firms should continue to seek to help customers who hold insurance and premium finance products and may be in financial difficulty because of COVID-19, after October 31, 2020.
EBA issued an opinion on prudential treatment of the legacy instruments as the grandfathering period nears an end on December 31, 2021.
ESRB published the fifth issue of the EU Non-bank Financial Intermediation Risk Monitor 2020 (NBFI Monitor).
HM Treasury announced that the new Financial Services Bill has been introduced in the Parliament.
APRA announced that it has increased the minimum liquidity requirement of Bendigo and Adelaide Bank for failing to comply with the prudential standard on liquidity.
PRA published the consultation paper CP17/20 to propose changes to certain rules, supervisory statements, and statements of policy to implement elements of the Capital Requirements Directive (CRD5).
US Agencies adopted a final rule that applies to advanced approaches banking organizations and aims to reduce interconnectedness in the financial system as well as to reduce contagion risks associated with the failure of a global systemically important bank (G-SIB).
US Agencies (FDIC, FED, and OCC) adopted a final rule that implements the net stable funding ratio (NSFR) for certain large banking organizations.