EBA Guidelines on Internal Governance

Similar documents
EBA Guidelines on Internal Governance (GL 44)

High level principles for risk management

EBA final draft Regulatory Technical Standards

System of Governance

Principles for An. Effective Risk Appetite Framework

HSBC FINANCE CORPORATION CHARTER OF THE RISK COMMITTEE

CONSULTATION PAPER CP 41 CORPORATE GOVERNANCE REQUIREMENTS FOR CREDIT INSTITUTIONS AND INSURANCE UNDERTAKINGS

GUIDANCE NOTE FOR DEPOSIT-TAKERS. Operational Risk Management. March 2012

EIB Group Risk Management Charter

Principles for the supervision of financial conglomerates

Regional workshop BCCL-METAC Operational functioning of supervisory Colleges BEYROUTH, April 25 th, 2012

Compliance. Group Standard

Guidelines on the Application of the Supervisory Review Process under Pillar 2 (CP03 revised)

Navigate the regulatory maze

Building a framework for operational risk management: the FSA s observations

Guidelines on preparation for and management of a financial crisis

A Guide to Corporate Governance for QFC Authorised Firms

GUIDANCE PAPER No. 2 ON CORPORATE GOVERNANCE IN INSURANCE COMPANIES

Guidelines. on the data collection exercise regarding high earners EBA/GL/2014/ July 2014

DECLARATION ON STRENGTHENING THE FINANCIAL SYSTEM LONDON SUMMIT, 2 APRIL 2009

Effective risk management

The implementation of ring-fencing: consultation on legal structure, governance and the continuity of services and facilities

Regulation for Establishing the Internal Control System of an Investment Management Company

Consultation Paper CP37/15 The implementation of ring-fencing: prudential requirements, intragroup arrangements and use of financial market

GUIDE TO BANKING SUPERVISION

Business Continuity & Crisis Management

Audit, Risk Management and Compliance Committee Charter

The EBA s competence to deliver an opinion is based on the sixth subparagraph of Article 10(1) of Regulation (EU) No 1093/

EUROPEAN CENTRAL BANK

BOARD OF GOVERNORS FEDERAL RESERVE SYSTEM

Consultation Paper CP18/15. Corporate governance: Board responsibilities

Risk Committee Charter

Consultation Paper CP13/14. Implementing the Bank Recovery and Resolution Directive

Capital Requirements Directive Pillar 3 Disclosure. December 2015

Basel Committee on Banking Supervision

Circular CSSF 12/552 on Central Administration, Internal Governance and Risk Management December 2012

11/12/2013. Role of the Board. Risk Appetite. Strategy, Planning and Performance. Risk Governance Framework. Assembling an effective team

The Internal Capital Adequacy Assessment Process (ICAAP) and the Supervisory Review and Evaluation Process (SREP)

Basel Committee on Banking Supervision

Consultation Paper. Draft Guidelines on credit institutions credit risk management practices and accounting for expected credit losses EBA/CP/2016/10

Financial Services. Internal Audit: What s on the horizon? kpmg.co.uk

CRO Forum Paper on the Own Risk and Solvency Assessment (ORSA): Leveraging regulatory requirements to generate value. May 2012.

Core Principles for Effective Banking Supervision: New Edition Released

Consultation Paper CP38/15 Ensuring operational continuity in resolution

Board Risk & Compliance Committee Charter

Arnout H. E. M. Wellink. President, De Nederlandsche Bank Chairman, Basel Committee on Banking Supervision

Cyber Security and Privacy Services. Working in partnership with you to protect your organisation from cyber security threats and data theft

REPORT ON INVESTMENT FIRMS

Policy Statement PS20/15 Strengthening individual accountability in banking: UK branches of non EEA banks. August 2015

14 December 2006 GUIDELINES ON OUTSOURCING

ESM Management Comments on Board of Auditors Annual Report to the Board of Governors for the period ended 31 December 2014

GUIDELINES FOR THE MANAGEMENT OF OPERATIONAL RISK

OWN RISK AND SOLVENCY ASSESSMENT AND ENTERPRISE RISK MANAGEMENT

EBA Work Programme 2015

List of legislative acts

Mapping of outsourcing requirements

Insurance Guidance Note No. 14 System of Governance - Insurance Transition to Governance Requirements established under the Solvency II Directive

2. For the purposes of this submission RAAI will mean RAA Insurance Limited and RAA Insurance Holdings Limited

APPLICATION OF THE KING III REPORT ON CORPORATE GOVERNANCE PRINCIPLES

Bank of Papua New Guinea Prudential Standard BPS251: Business Continuity Management

Strengthening individual accountability in banking

Audit, Risk and Compliance Committee Charter

Capital Requirements Directive IV Framework Operational Risk. Allen & Overy Client Briefing Paper 13 January

EBA s Proposed Definition of Shadow Banking poses Risks to the Real Economy

Board of Directors Meeting 12/04/2010. Operational Risk Management Charter

Statement of Guidance: Outsourcing All Regulated Entities

Managing Risk at Bank of America Corporation. Overview

Addendum to Consultation Paper CP38/15 Ensuring operational continuity in resolution

Strengthening individual accountability in banking

Jupiter Asset Management Ltd Pillar 3 Disclosures as at 31 December 2014

Risk management systems of responsible entities

Solvency Assessment and Management: Pillar II Sub Committee Governance Task Group Discussion Document 81 (v 3)

Final Draft Guidelines

Loi M Bakani: Effective compliance, risk mitigation and control

Direct Line Insurance Group plc (the Company ) Board Risk Committee (the Committee ) Terms of Reference

BOARD OF AUDITORS. European Stability Mechanism. Annual Report to the Board of Governors for the period ended 31 December 2014

Standard 4.1. Establishment and maintenance of internal control and risk management. Regulations and guidelines

February Audit committee performance evaluation

Client Update Basel Committee 2015 Corporate Governance Principles

Decision on recovery plans of credit institutions. Subject matter Article 1

ESM direct bank recapitalisation instrument -Main features of the operational framework and way forward -

Issued on: 1 March Risk Governance

ICAAP Report Q2 2015

Risk management report

Supervisory Statement SS18/13. Recovery planning. December (Last updated 16 January 2015)

Setting up a banking institution in Luxembourg

Capital Requirements Directive IV Framework Liquidity Requirements. Allen & Overy Client Briefing Paper 15 January

Setting up a Gibraltar Asset Management Company

Transcription:

EBA Guidelines on Internal Governance Bernd Rummel Policy Expert Regulation, EBA 15 April 2013 Malta 2013 EBA European Banking Authority

Contents Guidelines on Internal Governance (GL44) > The Single Rulebook > GL 44 Background - the broad picture > Implementation issues > Challenges and future developments 2

Building the single rulebook 2010 The Basel committee presents Basel III : set of global regulatory standards on bank capital adequacy and liquidity agreed by the Governors and Heads of Supervision, and endorsed by the G20 Leaders at their November Seoul summit July 2011 The European Commission put on the table the CRD IV package (CRD/CRR) transposing Basel III agreement into EU law. 2013 The capital requirements regulation (CRR) and directive (CRD4) will enter into force New capital regulations will require credit institutions to hold more capital phased in over time 2013-2018 EBA to publish various reports, guidelines and technical standards on a wide range of issues. The guidelines and technical standards will ensure a common framework for all European credit institutions 3

Regulation within the European context EBA aims at a level playing field in Europe >EU Regulation directly applicable >Regulatory and implementing technical standards directly applicable >EU Directives national implementation >EBA Guidelines national implementation 4

The Single Rulebook Introduction of the a single rulebook: > exactly the same rules across the EU internal market > proportionality > direct visibility, clear distinction with national rules But > company law not harmonised > different board structures and ownerships 5

Workflow when developing Guidelines Planning Develop ment by SG/proje ct team Discussi on with EU COM SC review BoS endorsm ent Public consultat ion SG/proje ct team review and feedback statemen t Discussi on with EU COM SC review BoS endorsm ent Publicati on INTERMEDIATE PRODUCTS -drafting the CP GL -Impact Assessment FINAL PRODUCTS -revision of the GL -Feedback statement (post consultation) 6

Survey to identify good governance practices and weaknesses Sound strategy and setting of risk appetite >Considering all risks and adverse scenarios (stress tests) >understanding of risks within management and supervisory function Holistic risk management approach >Aggregated view on all risks >Strong CRO, independent >Highly qualified staff in control functions, sufficient resources >Qualitative and quantitative risk assessments Sound reporting lines >Direct reporting from all control functions to CEO and supervisory function 7 7

Frequent weaknesses in the financial crisis >Too complex organisation >Unclear definition of roles within the organization >Lack of committee structures (audit, risk, nomination, remuneration) >Conflicts of interests (e.g. role of CRO and CFO mixed up) >Low standing of risk management function and CRO >No holistic view >Overreliance on risk models 8 8

Directive 2006/48/EC Robust governance arrangements are required by Article 22 and Annex V >clear organisational structure >well defined, transparent and consistent lines of responsibility >effective processes to identify, manage, monitor and report the risks >adequate internal control mechanisms >new remuneration rules 9 9

Older CEBS Guidelines Under CEBS several GL dealt with internal governance > 2006 Guidelines on the Supervisory Review process chapter on Internal Governance > 2006 GL on Outsourcing > 2010 High level Principles on Risk Management > 2010 GL on Remuneration Policies and Practices 10

Guidelines on Internal Governance Consolidating, improving and completing older guidelines Corporate structure and organisation Management body Risk management Internal control Systems and continuity Transparency 11 11

Corporate structure and organisation In particular for a group of institutions: >know your structure principle suitable and transparent corporate structure reduce complexity; evolve as needed over time >overall responsibility for adequate internal governance lies with the management body of the parent institution >checks and balances between parent and subsidiaries 12 12

Management Body Composition, appointment and succession > sound assignment process challenging repute and experience > proper composition ensures sufficient collective experience > enhance individual and collective knowledge; training > time devotion > identify and manage conflicts of interest 13

Management body s responsibilities monitoring and review of performance proposals for (change of ) direction implementation in day-to-day business constructive challenge setting of strategy/risk appetite 14

Three lines of defence Appropriate resources, culture and standing in all lines 1) Risk management within business line 2) Independent risk control 3) Internal audit Risks Exposures Losses 15 15

Risk management Develop a risk culture in line with the risk tolerance/appetite > business strategy and risk appetite to be implemented > awareness about responsibilities relating to risk management > holistic risk management framework > strong new product approval process 16 16

Guidelines on the management of operational risk Specific guidelines for banks active in market related activities exist in parallel > Proactive anti fraud measures introduce controls day-to-day and other e.g. Scenario analysis, incident reviews, creating risk awareness; protect data integrity; rules on acting from outside the office; audit trail back to the person/trader; consider relationships between staff and clients/counterparties code of conduct review of amendments to transactions 17

Remuneration Develop a risk aligned remuneration framework > alignment of remuneration with risk profile > institution to identify which staff has material impact on risk profile > variable remuneration partly paid out in instruments > control function are remunerated independent from business 18 18

Internal Control ensure effective and efficient operations > GL aim to strengthen the control function > sufficient resources and involvement Budget Systems HR 19

Risk Control Function Chief Risk Officer (CRO) should be appointed >responsible for providing comprehensive, understandable and well interpreted risk information >qualification requirements apply >removal of CRO to be disclosed >replacement only with approval of non-exec. directors >supervisory authority to be informed about the reasons 20

Information systems and business continuity Today s banking business depends on sound infrastructures > Generally accepted IT Standards (e.g. BS 7799; information security) > BCM section consistent with Basel Principles operate on a ongoing basis (business continuity plans) limit losses in case of severe disruptions (contingency plans) swift return to normal situation (recovery plan) > Testing Testing - Testing 21

Other implementation issues Proportionality and supervisory activities > Rules apply according to the nature, size and complexity > Effect on internal governance: fitness and propriety committee structures hierarchic level of CRO and structure of control functions sophistication of risk management tools 22

Challenges and future developments Changing regulatory requirements > CRD IV, CRR > MiFiD II > EU COM proposal regarding public companies Short implementation periods Costs of doing banking business 23

Evolution of European Banking Regulation > Most recent major regulatory proposals - 2012 CRD IV/CRR: Single rulebook and Basel III implementation - 2012 CMD: Crisis management framework - 2012 Banking Union proposals: SSM and roadmap for future steps (resolution and depositor protection) 24

Conclusions > Financial stability requires a more robust governance framework > Quality and responsibility of the supervisory function increased > Risk culture and risk awareness to be created > Increased supervisory review of internal governance 25

Contact Information Floor 18 Tower 42 25 Old Broad Street London EC2N 1HQ United Kingdom t +44 (0)20 7382 1767 f +44 (0)20 7382 1771 info@eba.europa.eu www.eba.europa.eu 26

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information