EBA CP on Draft RTS on assessment methodologies for the Advanced Measurement Approaches for operational risk under Article 312 of CRR

Similar documents
Final draft RTS on the assessment methodology to authorize the use of AMA

CP on RTS on Disclosure of Countercyclical Capital Buffer. Public Hearing 8 September 2014

CP ON DRAFT RTS ON ASSSESSMENT METHODOLOGY FOR IRB APPROACH EBA/CP/2014/ November Consultation Paper

A discussion of Basel II and operational risk in the context of risk perspectives

Guidelines. on PD estimation, LGD estimation and the treatment of defaulted exposures EBA/GL/2017/16 20/11/2017

Draft RTS on materiality threshold for past due credit obligations. Public Hearing 16 January 2015

Guidelines on PD estimation, LGD estimation and the treatment of defaulted exposures

Guideline. Capital Adequacy Requirements (CAR) Chapter 8 Operational Risk. Effective Date: November 2016 / January

Public hearing EBA draft guidelines on Credit institutions credit risk management practices and accounting for expected credit losses

Public hearing on the Guidelines on recovery plan indicators. London, 25 November 2014

Guidelines on the treatment of CVA risk under the supervisory review and evaluation process (SREP) 27 January 2016 Public Hearing, London

Public hearing EBA Draft RTS on the methods of prudential consolidation under Article 18 of the CRR. London, 22 January 2018

Content. International and legal framework Mandate Structure of the draft RTS References Annex

Consultation Paper. Draft Guidelines On Significant Credit Risk Transfer relating to Article 243 and Article 244 of Regulation 575/2013

Guidelines on PD estimation, LGD estimation and the treatment of defaulted exposures

CRR IV - Article 194 CRR IV Principles governing the eligibility of credit risk mitigation techniques legal opinion

Guidelines on credit institutions credit risk management practices and accounting for expected credit losses

Guidelines on disclosure requirements on IFRS 9 transitional arrangements. PUBLIC HEARING, 7 September 2017

GUIDELINES ON SIGNIFICANT RISK TRANSFER FOR SECURITISATION EBA/GL/2014/05. 7 July Guidelines

Discussion Paper - Accounting for Dynamic Risk Management: a Portfolio Revaluation Approach to Macro Hedging

Regulations and guidelines 4/2018

Stress Testing the Credit Risk of Mortgage Loans: the relationship between portfolio-lgd and the Loan-to-Value Distribution

Draft RTS on the content of recovery plans

Securitisation and Covered Bonds: the work of

EBA mandate on the RTS on strong customer authentication & secure communication Status update

on creditworthiness assessment

26 June 2014 EBA/CP/2014/10. Consultation Paper

FEDERATION BANCAIRE FRANCAISE

CEBS Public Consultation on Liquidity Cost Benefit Allocation (CP 36) Presentation at Public Hearing 1 June 2010, London Dominique Laboureix

European Banking Authority Tower Old Broad Street London EC2N 1HQ United Kingdom. 2 April 2012

Ordinance No. 7. Chapter One General Provisions. Chapter Two Requirements and Criteria for Organisaiton and Risk Management

Guidance Note Capital Requirements Directive Operational Risk

FINAL REPORT ON GUIDELINES ON UNIFORM DISCLOSURE OF IFRS 9 TRANSITIONAL ARRANGEMENTS EBA/GL/2018/01 12/01/2018. Final report

22 December Feedback to the consultation on CEBS s Guidelines on Operational Risk Mitigation Techniques (CP 25)

CONSULTATION PAPER ON DRAFT RTS ON TREATMENT OF CLEARING MEMBERS' EXPOSURES TO CLIENTS EBA/CP/2014/ February Consultation Paper

4.0 The authority may allow credit institutions to use a combination of approaches in accordance with Section I.5 of this Appendix.

EBA FINAL draft Regulatory Technical Standards

Credit risk mitigation

Collective Allowances - Sound Credit Risk Assessment and Valuation Practices for Financial Instruments at Amortized Cost

25 February 2011 Burgstrasse 28 AZ ZKA: BASEL AZ BdB: C 17 - Sz/Ha/Gk

BANKING SUPERVISION UNIT

12th February, The European Banking Authority One Canada Square (Floor 46), Canary Wharf London E14 5AA - United Kingdom

Consultation Paper. Draft Guidelines EBA/CP/2018/03 17/04/2018

Guidance consultation FSA REVIEWS OF CREDIT RISK MANAGEMENT BY CCPS. Financial Services Authority. July Dear Sirs

EBA GL on fraud reporting requirements under Article 96(6) PSD2 Helene Oger-Zaher Consumer Protection, Financial Innovation and Payments, EBA

PRINCIPLES FOR THE MANAGEMENT OF INTEREST RATE RISK IN THE BANKING BOOK (IRRBB)

on credit institutions credit risk management practices and accounting for expected credit losses

Final Draft Regulatory Technical Standards

Sainsbury s Bank plc. Pillar 3 Disclosures for the year ended 31 December 2008

STANDARD OF SOUND PRACTICE ON AGENT BANKING

COMMISSION DELEGATED REGULATION (EU) /... of

DP on the treatment of structural FX under Article 352(2) of the CRR. Public Hearing Federico Cabanas 25 July 2017 London

[ANNEX H-1. Investment firms with limited licence

Consultation Paper. Draft Regulatory Technical Standards

Consultation Paper CP6/18 Credit risk mitigation: Eligibility of guarantees as unfunded credit protection

Consultation Paper CP25/17 Pillar 2: Update to reporting requirements

Feedback statement. Responses to the public consultation on a draft Guideline and Recommendation of the European Central Bank

IFRS 9 Financial Instruments and Disclosures

Instructions for the EBA qualitative survey on IRB models

Guideline Impact Analysis Statement

Key issues in Banking regulation. Investor meeting

PRA RULEBOOK CRR FIRMS INSTRUMENT 2013

Report on Internal Control

International Standard on Auditing (Ireland) 240

EBA FINAL draft implementing technical standards

EBA/GL/2013/ Guidelines

EBA/CP/2018/ May Consultation Paper

EBA/CP/2013/ Consultation Paper

The new bank provisioning standards: Implementation challenges and financial stability implications

ZAG BANK BASEL PILLAR 3 DISCLOSURES. December 31, 2015

Final Report. Guidelines on specification of types of exposures to be associated with high risk under Article 128(3) of Regulation (EU) No 575/2013

EBA /RTS/2018/04 16 November Final Draft Regulatory Technical Standards

The Global Fund. Financial Management Handbook for Grant Implementers. December 2017 Geneva, Switzerland

EBA/CP/2013/ Consultation Paper

EBA Consultation Paper on the Guidelines on Interpretation of STS Criteria. Public hearing, 11 June 2018

Summary of RBNZ response to submissions on the draft capital adequacy framework (internal models based approach)(bs2b)

EBA FINAL draft Regulatory Technical Standards

Consultation papers on estimation and identification of an economic downturn in IRB modelling. EBA Public Hearing, 31 May 2018

NATIONAL BANK OF ROMANIA


Consultation Paper Draft technical standards on content and format of the STS notification under the Securitisation Regulation

IMPLEMENTATION NOTE. Corporate Governance Oversight at IRB Institutions

Prudential Standard APS 117 Capital Adequacy: Interest Rate Risk in the Banking Book (Advanced ADIs)

EBA/RTS/2013/07 05 December EBA FINAL draft Regulatory Technical Standards

DECISION ON RISK MANAGEMENT BY BANKS

Final Report. Guidelines on the management of interest rate risk arising from non-trading book activities EBA/GL/2018/02.

Use of Internal Models for Determining Required Capital for Segregated Fund Risks (LICAT)

Public consultation. on a draft ECB Guide on options and discretions available in Union law

The French Banking Federation appreciates the opportunity to provide its views on the issues raised in the Basel Committee consultations.

Call for advice to the EBA for the purposes of revising the own fund requirements for credit, operational, market and credit valuation adjustment risk

Exemption of MiFIR access provisions for trading venues as regards exchange-traded derivatives Procedure / Policy

(Non-legislative acts) REGULATIONS

Notification of the Bank of Thailand No. FPG. 12/2555 Re: Regulations on Supervision of Capital for Commercial Banks

EBA REPORT ON RESULTS FROM THE SECOND EBA IMPACT ASSESSMENT OF IFRS July 2017

International Monetary Fund Washington, D.C.

Regulatory Consultation Paper Round-up

Assessing capital adequacy under Pillar 2

Interaction between the prudential and accounting framework - Expected losses

PILLAR 3 DISCLOSURE APS 330: PUBLIC DISCLOSURE

POSITION PAPER. Introduction

Transcription:

EBA CP on Draft RTS on assessment methodologies for the Advanced Measurement Approaches for operational risk under Article 312 of CRR 15 July 2014, London

Contents Mandate Sources of the draft RTS Objective of the draft RTS Structure of the draft RTS Main points of the draft RTS Next steps Public hearing on AMA 2

Mandate Article 312(4) mandates the EBA to develop technical standards to specify the following: a) The assessment methodology under which the competent authorities permit institutions to use Advanced Measurement Approaches; b) The conditions for assessing the materiality of extensions and changes to the Advanced Measurement Approaches; c) The modalities of the notification required in paragraph 3 of Article 312 of the CRR. Points (b) and (c) of this Article have been included in the RTS on the Conditions for assessing the materiality of extensions and changes of internal approaches when calculating own funds requirements for credit and operational risk, adopted by the Commission on 12 March 2014. These draft RTS should therefore be read in conjunction with the RTS mandated under points b) and c). Public hearing on AMA 3

Sources of the draft RTS on AMA The RTS on AMA are based on the Guidelines on the Advanced Approaches, issued by the CEBS/EBA in the past years and in particular on the: Guidelines on the implementation, validation and assessment of AMA and IRB approaches (GL-10 CEBS, issued on April 2006); Compendium of Supplementary Guidelines on implementation issues of operational risk (GL-21 CEBS, issued on September 2009); Guidelines on Operational Risk Mitigation Techniques (GL-25 CEBS, issued on December 2009) The RTS on AMA also rely on documents on AMA issued by the BCBS (Insurance paper of Oct 2010, AMA Supervisory Guidelines of Jun 2011), Consortia standards, Supervisory experience gained in validation/review of AMA frameworks. 4

Objective of the draft RTS on AMA The evolutionary nature of the op risk discipline, the AMA in particular, naturally means a range of practice. Indeed, the Basel II Accord left a significant amount of flexibility to banks for the design of their AMA. However this flexibility has caused significant differences in the quality of the implemented AMA frameworks and has raised supervisory concerns regarding their effectiveness and consistency across banks and countries. These RTS represent a concrete answer to those concerns, as they aim to harmonize the standards across EU for critical components of an AMA. By doing so they should contribute to reduce the observed differences among the AMA and make their outcome more consistent with the banks op risk profiles and comparable each other. 5

Structure of the draft RTS I General provisions (including definitions) II Scope of operational risk and operational risk loss III Operational risk management IV Operational risk measurement The four AMA elements AMA modelling assumptions Expected losses and dependence Insurance and other risk transfer mechanisms V Capital allocation VI Parallel running V Data quality and IT infrastructure VI Use test VII Audit and internal validation Public hearing on AMA 6

Scope of operational risk and operational risk loss Article 6 Fraud events in the credit area Question n.2 1. Operational risk events occurring in a credit product or credit process, which are caused by first party fraud or third party fraud shall be classified as fraud events in the credit area. These events, and the related losses, shall be included within the scope of operational risk for the purpose of calculating the AMA regulatory capital. 2. The definition in paragraph 6(1) shall include the following events: (a) lending decisions based on counterfeit documents or miss-stated financial statements, such as non-existence or over-estimation of collaterals and counterfeit salary confirmation; (b) fraudulent use of credit funds; (c) loan application fraud through phishing and using clients data; (d) loan application by client using fictitious identity; (e) fraudulent use of clients credit cards by third parties. 7

Scope of operational risk and operational risk loss Art. 6(4). For the purpose of this provision: (1) first party fraud means a fraud that is committed by an individual or group of individuals on their own account with no intention of any repayment of the loss caused. A first party fraud generally occurs when the party misrepresents its financial abilities on the application forms and by using another person's identifying information. Any fraud which is initiated at a later stage of the lifecycle of a credit product, such as the misstatement of financial reports, even when it is used to prolong or to extend an existing credit product does not fall within this definition; (2) third party fraud means a fraud that is committed by means of use of a person s identity, such as the use of false identification documents, without the knowledge of the person whose identity is used to commit the fraud. The fraudster can be an individual without a business relationship with the institution (external fraud) or an employee (internal fraud) and can involve existing client relationships (client is unaware) or new client relationships (real identity of client is unknown). If there is any active involvement of an existing client in the fraud, this is treated as first party fraud. 8

Scope of operational risk and operational risk loss Art 6(3). The competent authority shall verify that the institution adjusts the data collection threshold relating to the loss events described in Article 6(1) up to levels consistent with those adopted for the collection of the loss events pertinent to the other operational risk categories of the AMA framework. Article 8 Recorded loss amount of the operational risk items The whole amount of the incurred loss or expenses shall be included in the scope of operational risk loss according to Article 7(1). This includes:. (d) in case of fraud events in the credit area, the total outstanding amount at the time or after the discovery of the fraud (whole write-off amount, total credit loss) and any other related expenses, such as interest in arrears and legal fees.. 9

Scope of operational risk and operational risk loss Article 7 Scope of operational risk loss 1. For the purpose of calculating the AMA regulatory capital, the scope of operational risk loss shall include the following items (d) pending losses that are recognised to have a relevant impact. Pending losses shall be included within a time period commensurate to the size and age of the pending item. For this purpose, consideration shall be given to the recognition of pending losses actual amount in the loss database or pertinent scenario analysis; (e) uncollected revenues related to contractual obligations with third parties, such as the decision to compensate a client following the operational risk event, rather than by a reimburse or direct payment, through a revenue adjustment waiving or reducing contractual fees for a specific future period of time; 10

Scope of operational risk and operational risk loss Article 8 Recorded loss amount of the operational risk items 1. The whole amount of the incurred loss or expenses shall be included in the scope of operational risk loss according to Article 7(1). This includes: (c) in case of tax payments related to failures and/or inadequate processes, the expenses incurred as a result of the operational risk event, such as penalties, interest/late-payment charges, legal fees, with the exclusion of the tax amount originally due; 3. In case of timing losses, the loss amount to be recorded comprises all the expenses incurred as a result of the operational risk event, including the correction of the financial statement, when it involves the direct relation with third parties (such as customers or authorities) or employees of the institution, and excluding the correction of the financial statement in all other cases. 11

Operational risk management Article 11 Operational risk governance and management 1. The competent authority shall evaluate the effectiveness of an institution s operational risk governance and management framework on the basis of their impact on behaviour, engagement in operational risk management and culture. The competent authority shall focus on: (a) awareness of staff; (b) operational risk culture; (c) internal challenge process. 2. For purposes of Article 11(1), the competent authority shall verify that: (f) an institution ensures that there is a regular evaluation of the effectiveness of the operational risk governance and risk management arrangements and notifies the relevant competent authority of its findings. Such evaluation and pertinent notification shall be carried out on at least an annual basis. 12

Operational risk measurement Article 17 External loss data The competent authority shall verify that an institution that participates in consortia initiatives for the collection of operational risk events and losses shall provide data of comparable quality, as to scope, integrity and comprehensiveness, to the internal data standards set out in Article 16. Information obtained from consortia initiatives which have the abovementioned characteristics are an appropriate external data source for AMA capital calculation. Article 19 Business Environment and Internal Control Factors 2. Given the subjective nature of BE&ICF adjustments, an institution shall have clear policy guidelines that limit the magnitude of either positive or negative adjustments as well as a policy to handle situations where the adjustments actually exceed these limits based on the current BE&ICFs. 13

Operational risk measurement 14 Article 21 Building the calculation data set 5. The competent authority shall verify that the choice of de minimis modeling threshold does not adversely impact the accuracy of the operational risk measures. In particular, the use of de minimis modeling thresholds that are much higher than the data collection thresholds shall be limited and, when established, properly justified by sensitivity analysis at various thresholds. All operational losses above the set modelling threshold(s) shall be included in the calculation dataset and used, whatever their amounts, for generating the AMA regulatory measures. 8. The competent authority shall verify that an institution ensures that loss adjustments of single or linked events are not discarded from the AMA calculation data set in the case that the reference date of these adjustments falls inside the observation period and the reference date of the initial (single or root) event falls outside such a period. 9. The competent authority shall verify that an institution shall be able to distinguish for each reference year included in the observation period the loss amounts pertinent to events discovered (accounted) in that year from the loss amounts pertinent to adjustments or grouping of events discovered (accounted) in previous years.

Operational risk measurement Article 23 Identification of the probability distributions 3. The competent authority shall verify that an institution pays particular attention to the positive skewness and leptokurtosis of the data when selecting a severity distribution. When the data are much dispersed in the tail, empirical curves shall not be used to estimate the tail region. Subexponential distributions shall be used for this purpose unless there exist exceptional reasons to apply other functions, which shall be in any case properly addressed and fully justified to prevent undue reduction of the capital figures.. 7. The competent authority shall verify that, when an institution adopts robust estimators, it can demonstrate that their use does not underestimate the risk in the tail. 15

Operational risk measurement Article 25 Expected losses 2. The competent authority shall verify that an institution s estimate of EL is consistent with the EL plus UL regulatory capital calculated using the operational risk measurement system. The EL estimation process shall be done by operational risk category and shall be consistent over time. Article 26 Dependence Question n.5 3. The competent authority shall verify that an institution carefully considers dependence between tail events. The dependence structure shall not be based on Normal Gaussian or Normal-like distributions. 16 Section IV - Insurance and other risk transfer mechanisms The standards envisaged by the BCBS document Recognizing the riskmitigating impact of insurance in operational risk modelling (October 2010) are adopted.

Operational risk measurement Section VI Parallel running Article 34 General principles 2. In order to demonstrate the stability and robustness of the AMA output and to benchmark the AMA capital figure against the former approach, the competent authority in granting the permission to use the AMA shall request the institution to continue to parallel run for one year after the permission is granted. 17

Data quality and IT Infrastructure Article 40 Supervisory assessment of IT infrastructure 3. The competent authority shall verify that the SDLC for AMA purposes satisfies the best practice for software systems, which ensure sound and proper: (a) project management, risk management, and governance; (b) requirements engineering, quality assurance and test planning; (c) systems modelling; (d) systems development; (e) quality assurance in all activities (including code reviews and if appropriate, code verification), and (f) testing, which includes user acceptance. 18 Article 1 Definition (25) System Development Life Cycle means a process for planning, creating, testing, and deploying an IT infrastructure;

Use Test Article 41 Question n.6 Use test (not limited to regulatory purposes) The competent authority shall verify that an institution ensures that the purpose and use of AMA are not limited to regulatory purposes, rather that:.. (d) the operational risk measurement system is not only used for the calculation of the institution s regulatory own funds requirement in accordance with Articles 92(2)(e) and 312(2) of Regulation (EU) No 575/2013, but also for the purposes of its internal capital adequacy assessment process in accordance with Article 73 of Directive 2013/36/EU. 19

Audit and Internal Validation Article 45 Audit and internal validation reviews 6. The competent authority shall verify that the audit and internal validation reviews on the AMA framework are properly documented and their output distributed to the appropriate recipients within the institutions, such as the risk committees, operational risk management function, business line management and pertinent staff, if appropriate. 7. The competent authority shall verify that results of the audit and internal validation reviews including senior management s attestation are summarized and reported at least annually to the institutions management body, or a committee thereof, for approval. Attestation by senior management entails review and approval of the effectiveness of the institution s AMA framework on an annual basis. 20

Next steps 12 September End 2014 End of consultation. EBA to submit the Final draft RTS to the Commission (expected) 20th day after publication in Official Journal of the EU Entry into force 1 year from entry into force 1 year from entry into force 2 years from Entry into force The RTS shall apply to the institutions already using an AMA for regulatory purposes Article 6(3) shall apply Article 6(1) shall apply Public hearing on AMA 21

EUROPEAN BANKING AUTHORITY Tower 42, 25 Old Broad Street London EC2N 1HQ Tel: +44 2073821776 Fax: +44 207382177-1/2 E-mail: info@eba.europa.eu http://www.eba.europa.eu

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback