ORSA Summary Report Similarities/Differences Regulator Observations

Similar documents
NAIC ENTERPRISE RISK REPORT (FORM F) IMPLEMENTATION GUIDE

Form F Effectiveness

NAIC OWN RISK AND SOLVENCY ASSESSMENT (ORSA) GUIDANCE MANUAL

NAIC OWN RISK AND SOLVENCY ASSESSMENT (ORSA) GUIDANCE MANUAL

Own Risk Solvency Assessment (ORSA) Linking Risk Management, Capital Management and Strategic Planning

2014 Own Risk and Solvency Assessment (ORSA) Feedback Pilot Project Observations of the Group Solvency Issues (E) Working Group

Southeastern Actuaries Conference 2012 Annual Meeting. Jeffrey S. Schlinsog, CFA, FSA, MAAA

The Role of Finance and Accounting as Critical Players in ERM and ORSA

Actuaries Club of the Southwest

INTERNATIONAL ASSOCIATION OF INSURANCE SUPERVISORS

OWN RISK AND SOLVENCY ASSESSMENT. ERM Seminar Compliance All Dealing from the same deck now

H 7789 S T A T E O F R H O D E I S L A N D

Accreditation Program Manual SEG/IAR Form

Enterprise Risk Management

INTERNATIONAL ASSOCIATION OF INSURANCE SUPERVISORS

Forward Focus. The Own Risk and Solvency Assessment (ORSA) A regulatory guidepost to the future. Insurance issues and insights from Howard Mills

Re: Comments on ORSA Guidance in the Financial Analysis and Financial Condition Examiners Handbooks

EU U.S. Insurance Project Report to the Steering Committee. Key Elements of Regulations and Supervisory Practices in Respect of Group ORSA

Solvency II Insights for North American Insurers. CAS Centennial Meeting Damon Paisley Bill VonSeggern November 10, 2014

NAIC POLICY STATEMENT ON FINANCIAL REGULATION STANDARDS

Role of the Systemic Risk Regulator

RED 2.1 & 4.2: Quantifying Risk Exposure for ORSA. Moderator: Presenters: Lesley R. Bosniack, CERA, FCAS, MAAA

SOLVENCY & FINANCIAL CONDITION REPORT. SureStone Insurance dac

RULES OF DEPARTMENT OF COMMERCE AND INSURANCE CHAPTER CORPORATE GOVERNANCE ANNUAL DISCLOSURE TABLE OF CONTENTS

Emerging Trends in Quantitative ERM

Sections of the ORSA Report

General questions 1. Are there areas not addressed in the Guidance that should be considered in assessing risk culture?

MAS consults on Enterprise Risk Management ( ERM )

ORSA reports: gaps and opportunities

ORSA An International Development

IOPS Toolkit for Risk-Based Pensions Supervision Kenya

ERM and ORSA Assuring a Necessary Level of Risk Control

SMI. Capital Requirements. Governance & Risk Management. Group Supervision. Statutory Accounting & Financial Reporting.

Overview of ERM Assessment Viewpoints (June 2016) Overview

Solvency & Financial Condition Report. Surestone Insurance dac March

ERM Implementation and the Own Risk and Solvency Assessment (ORSA)

Proposed New Rules: N.J.A.C. 11: and 11:1-35 Appendix Exhibit F

SOLVENCY AND FINANCIAL CONDITION REPORT EUROLIFE LTD

Comments on the proposed Actuarial Standard of Practice (ASOP), Capital Adequacy Assessment for Insurers

Preparing for the New ERM and Solvency Regulatory Requirements

REGISTRATION AND REGULATION OF THIRD PARTY ADMINISTRATORS (TPAs) (An NAIC Guideline)

From: Director Christina Urias, Chair of the Solvency Modernization Initiative (EX) Task Force

ERM Benchmark Survey Report

CORPORATE GOVERNANCE ANNUAL DISCLOSURE MODEL REGULATION

IAIS: Enterprise Risk Management for Capital Adequacy & Solvency Purposes. George Brady. IAIS Deputy Secretary General

Guidance on the Actuarial Function April 2016

Link between Pillar 1 and Pillar 2

Credit Administration and Documentation Standards

Prudential Standard GOI 3 Risk Management and Internal Controls for Insurers

Guidance on the Actuarial Function MARCH 2018

Proposal for the Quality Assurance of the Solvency II capital requirements, own funds and balance sheet

INTERNAL CAPITAL ADEQUACY ASSESSMENT PROCESS GUIDELINE. Nepal Rastra Bank Bank Supervision Department. August 2012 (updated July 2013)

Internal Capital Target

Procedures for Review of Qualifications for Signing NAIC Property and Casualty Annual Statement Loss Reserve Opinion

South Carolina General Assembly 122nd Session,

January 30, Dear Mr. Seeley:

State of Rhode Island and Providence Plantations DEPARTMENT OF BUSINESS REGULATION Division of Insurance 1511 Pontiac Avenue Cranston, RI 02920

VIRGINIA ACTS OF ASSEMBLY SESSION

CORPORATE GOVERNANCE ANNUAL DISCLOSURE MODEL REGULATION

American Academy of Actuaries Webinar: The Practice of ERM in the Insurance Industry. Enterprise Risk Management Committee November 19, 2013

Overview of Results of ERM 1 Assessment based on ORSA 2 Reports and ERM Hearings

ERM in the Rating Process: A Practical Perspective

UNITED STATES OF AMERICA BEFORE THE BOARD OF GOVERNORS OF THE FEDERAL RESERVE SYSTEM WASHINGTON, D.C.

Draft for Consultation FICOM ICAAP Guide

Guidance Note: Internal Capital Adequacy Assessment Process (ICAAP) Credit Unions with Total Assets Greater than $1 Billion.

Exploring the New Era of ORSA Enterprise Risk Management (ERM)/ Own Risk and Solvency Assessment (ORSA) Committee

NAIC/FIO Meeting on Financial Regulation (Documents shared with FIO to facilitate discussion are attached) Thursday, December 1, 2011 Time: 9am-1pm

DECREE. No. 194/2011 Coll. of 27 June 2011 on More Detailed Regulation of Certain Rules in Collective Investment PART ONE FUNDAMENTAL PROVISIONS

INSURANCE CORE PRINCIPLES, STANDARDS, GUIDANCE AND ASSESSMENT METHODOLOGY

THE STATE OF FLORIDA

May 2015 DISCUSSION DRAFT For Illustrative Purposes Only Content NOT Reviewed or Approved by the Actuarial Standards Board DISCUSSION DRAFT

ELECTRONIC TRADING PARTNER AGREEMENT

Risk Concentrations Principles

ANNEX B Illustrative U.S. Bank Regulatory Driven Board or Board Committee Review and Approval Items

SOLVENCY AND FINANCIAL CONDITION REPORT EUROLIFE LTD

SENATE FLOOR VERSION February 12, 2018 AS AMENDED

RESERVE BANK OF MALAWI

CHAPTER Committee Substitute for Committee Substitute for Senate Bill No. 1018

BERMUDA INSURANCE (GROUP SUPERVISION) RULES 2011 BR 76 / 2011

Reference Guide. Captives. State of New Jersey Department of Banking and Insurance. Office of Captive Insurance

Enterprise Risk Management

NAIC IID International Insurers Department Plan of Operation

Critical Reflection of Two State-of-the-Art Risk Management Frameworks (SRM004)

The Impact of International Issues on Insurance Compliance in the United States

Academy Presentation to NAIC ORSA Implementation (E) Subgroup

How to Ace Your CFPB Exam

performed 9. For provider complaints: MC-7

Assistant Director of Accounts & Budgets

Preparatory Guidelines on Product Oversight and Governance arrangements by insurance undertakings and insurance distributors as required by the

Insights. NAIC s ORSA. A Broader Approach to Regulation. NAIC S ORSA Part of a Global Shift to Regulatory Modernization

MEMORANDUM. To: From: Metrolinx Board of Directors Robert Siddall Chief Financial Officer Date: September 14, 2017 ERM Policy and Framework

The following definitions apply in Articles 1 through 13 of these regulations:

Risk Appetite. What is risk appetite?

CAPITAL MANAGEMENT GUIDELINE

Statement of Position 17-1

FORM B INSURANCE HOLDING COMPANY SYSTEM ANNUAL REGISTRATION STATEMENT. Filed with the Insurance Department of the State of. Name of Registrant

DRAFT 3/18/14 Financial Analysis Handbook 2014 Annual/2015 Quarterly

Guidance and Checklist for Submitting Applications for Authorisation of a Branch of a Third-Country Insurance Undertaking

CERA Module 1 Exam 2015

OIC & ORSA. Thanita Anusonadisai Director of Capital and Solvency Standard Department Office of Insurance Commission, Thailand

Transcription:

To: Justin Schrader, Chair of the Group Solvency Issues (E) Working Group From: NAIC Staff Date: March 24, 2018 RE: Comparison of Form F and ORSA Reporting Requirements The following table compares the basic reporting requirements applicable to insurers and insurance holding company groups outlined in the of the NAIC s Insurance Holding Company System Regulatory Act (Model #440) and Insurance Holding Company System Model Regulation with Reporting Forms and Instructions (Model #450) against those included in the ORSA Summary Report of the NAIC s Risk Management And Own Risk And Solvency Assessment Model Act (Model #505) and ORSA Guidance Manual. Purpose To identify material risks within the insurance holding company system that could pose enterprise risk to the insurer. To provide a group-level perspective on risk and capital, as a supplement to the existing legal entity view. Similarities Both reports are intended to provide information on material risks to the group/enterprise. Differences Material risk is defined differently for the two reports. ORSA also provides information on the ERM framework including governance, identification, tolerances, controls, reporting of risks and sufficiency of current and projected group capital under normal and stressed scenarios. The Form F only identifies enterprise risks. In general, Form F reports do not appear to be adequately fulfilling their intended purpose of identifying material risks within the insurance holding company that could pose enterprise risk to the insurer. This is primarily due to few risks being reported and limited supporting detail being provided, even in situations where regulators are aware of significant exposures that could pose enterprise risk to the insurer. In general, ORSA reports appear to be developing towards fulfilling their intended purpose of providing a grouplevel perspective on risk and capital, as well as a description of ERM practices in place. The only clear limitation of ORSA reporting is in the level/scope of entities covered by the report. 2018 National Association of Insurance Commissioners 1

Rptg. Level Exempt. The Ultimate Controlling Person of every domestic insurer subject to registration. No standard exemptions included in Model #440. The domestic insurer, but the ORSA Summary Report may apply to the insurer or the insurance group of which the insurer is a member. An insurer is exempted if: The insurer has annual direct written and unaffiliated assumed premium but excluding premiums reinsured with the Federal Crop Insurance Corporation and Federal Flood Program, less than $500,000,000; and, The insurance group of which the insurer is a member has annual direct written and unaffiliated assumed premium including international direct and assumed premium, but excluding premiums reinsured with the Federal Crop Insurance Corporation and Federal Flood Program, less than $1,000,000,000. Similarities Depending upon facts, circumstances and the interpretation of the group, the UCP and all its affiliates could be part of the defined insurance group. In this case, the Form F and ORSA filings would be prepared at the same reporting level. Differences In many cases, the UCP and a number of its affiliates would not be part of the defined insurance group. Similarities Insurers and insurance groups exceeding the premium thresholds within Model #505 are also subject to Form F reporting requirements. Differences The UCP of insurers and insurance groups that do not exceed the ORSA premium thresholds would only be required to submit Form F reports, which could limit regulator insight into the ERM function. Form F reporting is generally being provided at the UCP level, albeit with limited detail on non-insurance entity exposures (as noted above). States have noted a wide range of practices in the level at which ORSAs are being prepared and filed, including ORSAs prepared at the UCP level that include reporting on all downstream entities. However, reports are more commonly filed at an intermediate insurance group level with limited to no discussion of exposures outside of the defined insurance group. None Noted 2018 National Association of Insurance Commissioners 2

Entities Covered Info. to be Reported The ultimate controlling person of every insurer subject to registration shall file an annual enterprise risk report. The report shall identify the material risks within the insurance holding company system (any affiliate) that could pose enterprise risk to the insurer. Insurance holding company system is defined as two or more affiliated persons, one or more of which is an insurer. The report shall, to the best of the ultimate controlling person s knowledge and belief, identify the material risks within the insurance holding company system that could pose enterprise risk to the insurer. Enterprise risk is defined as any activity, circumstance, event or series of events involving one or more affiliates of an insurer that, if not remedied promptly, is likely to have a material adverse effect upon the financial condition or liquidity Insurers not exempted from the act are required to file an ORSA Summary Report with the insurance group s lead state on an annual basis. Alternately, the requirement may be satisfied if the insurance group of which the insurer is a member maintains a risk management framework applicable to the operations of the insurer and provides an ORSA Summary Report at that level. The term insurance group shall mean those insurers and affiliates included within an insurance holding company system as defined in the Insurance Holding Company System Regulatory Act (NAIC #440). To allow the commissioner to achieve a high level understanding of the insurer s ORSA, the ORSA Summary Report should discuss three major areas, which will be referred to as the following sections: Section 1 Description of the Insurer s Risk Management Framework Section 2 Insurer s Assessment of Risk Exposure Section 3 Group Assessment of Risk Capital and Prospective Solvency Similarities Insurers and insurance groups (as well as their subsidiaries and affiliates) would be covered under both ORSA and Form F reporting requirements. Differences The UCP (if not an insurer) and its affiliates that are not deemed to be part of an insurance group, are only required to be covered by Form F reporting. Therefore, it is possible that the ORSA Summary Report may only include information related to a subset of the insurance holding company system. Similarities Material risks are required to be identified and discussed in both reports. Differences Form F requires information on a list of specific topics that could produce enterprise risk, whereas ORSA reporting does not provide a list of topics required to be addressed (if material). However, Form F reporting is limited to activities or events that are likely to have a material adverse effect, if not remedied Similar to the discussion on reporting level provided above, Form F reporting is generally provided at the UCP level and intended to cover all downstream entities. However, in practice, states are receiving very limited (if any) information on non-insurance entity exposures within the filing. ORSA reporting is rarely performed at the UCP level and therefore does not typically cover non-insurance entity affiliates within the scope of reporting unless they are subsidiaries (downstream entities) of one of the insurers. Information reported in Form F is generally limited to brief descriptions of risk factors or exposures related to the list of specific topics included in Model #450. Often, registrants interpret the report as only requiring discussion of exposures that are currently material and unmitigated, which results in limited to no discussion of risks. Regulators would encourage that additional detail be provided on exposures that could cause enterprise risk, as well as any changes in 2018 National Association of Insurance Commissioners 3

of the insurer or its insurance holding company system as a whole. The Registrant/Applicant, to the best of its knowledge and belief, shall provide information regarding the following areas that could produce enterprise risk: Any material developments regarding strategy, internal audit findings, compliance or risk management affecting the insurance holding company system; Acquisition or disposal of insurance entities and reallocating of existing financial or insurance entities within the insurance holding company system; Any changes of shareholders of the insurance holding company system exceeding ten percent (10%) or more of voting securities; Developments in various investigations, regulatory activities or litigation that may have a significant bearing or impact on the insurance holding company system; Business plan of the insurance holding company system and summarized strategies for next Assessment In order to aid the commissioner s understanding of the information provided in the ORSA Summary Report, it should include certain key information. The ORSA Summary Report should identify the basis of accounting for the report and the date or time period that the numerical information represents. The ORSA Summary Report should also explain the scope of the ORSA conducted such that the report identifies which insurer(s) are included in the report. This may be accomplished by including an organizational chart. The ORSA Summary Report should also include a short summary of material changes to the ORSA from the prior year, including supporting rationale, as well as updates to the sections listed above, if applicable. In analyzing an ORSA Summary Report, the commissioner will expect that the report represents a work product of the ERM framework that include all of the material risks identified by the insurer to which an insurer or insurers (if applicable) is exposed. promptly, whereas ORSA reporting does not include this limitation. This may result in certain risk exposures not being reported in Form F (due to mitigating controls in place) that would be required to be addressed in the ORSA. ORSA reporting also requires a description of the insurer s risk management framework, and assessment of exposure to all material risks, and information on group risk capital and prospective solvency. These topics are not required to be addressed within Form F. ORSA guidance provides that reporting should quantify the identified material risks under both normal/expected and stressed scenarios as projected by the filing entity, which allows the entity and the regulator to prioritize risks and likelihoods. The Form F does not have any quantitative requirement for risks presented. exposures from the prior filing. In addition, regulators noted that the information provided by non-orsa filers could be more beneficial if it included a description of the insurer s risk management framework, including materiality thresholds and mitigation practices utilized in identifying and addressing exposures. Information reported in ORSA reports generally describes the risk management framework and practices in place at the insurer, as well as the insurer s most significant risk exposures. However, regulators note a wide range of practices in quantifying risk exposures, stressing those exposures and determining/allocating risk capital to the risks accepted by the insurer. In addition, regulators would like to see more detailed information provided on the insurer s prospective solvency assessment. 2018 National Association of Insurance Commissioners 4

12 months; Identification of material concerns of the insurance holding company system raised by supervisory college, if any, in last year; Identification of insurance holding company system capital resources and material distribution patterns; Identification of any negative movement, or discussions with rating agencies which may have caused, or may cause, potential negative movement in the credit ratings and individual insurer financial strength ratings assessment of the insurance holding company system (including both the rating score and outlook); Information on corporate or parental guarantees throughout the holding company and the expected source of liquidity should such guarantees be called upon; and Identification of any material activity or development of the insurance holding company system that, in the opinion of senior management, could adversely affect the insurance holding company system. Section 1 of the ORSA Summary Report should provide a high-level summary of the ERM framework principles, if present. Section 2 of the ORSA Summary Report should provide a high-level summary of the quantitative and/or qualitative assessments of risk exposure in both normal and stressed environments for each material risk category in Section 1. Examples of relevant material risk categories may include, but are not limited to, credit, market, liquidity, underwriting and operational risks. Section 3 of the ORSA Summary Report should describe how the insurer combines the qualitative elements of its risk management policy with the quantitative measures of risk exposure in determining the level of financial resources needed to manage its current business and over a longer term business cycle (e.g., the next one to three years). The group risk capital assessment should be performed as part of the ORSA regardless of the basis (group, legal entity or other subset basis) and in a manner that encompasses the entire insurance group. 2018 National Association of Insurance Commissioners 5

Filing Process Confiden. The report shall be filed by the ultimate controlling person with the lead state commissioner of the insurance holding company system as determined by the procedures within the Financial Analysis Handbook adopted by the NAIC. Submission is confidential by law and privileged, not subject to state public records law, not subject to subpoena, and not subject to discovery or admissible in evidence in any private civil action. Upon the commissioner s request, and no more than once each year, an insurer shall submit to the commissioner an ORSA Summary Report or any combination of reports that together contain the information described in the ORSA Guidance Manual, applicable to the insurer and/or the insurance group of which it is a member. Notwithstanding any request from the commissioner, if the insurer is a member of an insurance group, the insurer shall submit the report(s) required by this subsection if the commissioner is the lead state commissioner of the insurance group as determined by the procedures within the Financial Analysis Handbook adopted by the NAIC. Submission is confidential by law and privileged, not subject to state public records law, not subject to subpoena, and not subject to discovery or admissible in evidence in any private civil action. ORSA Summary Reports and related information also recognized as proprietary and containing trade secrets Similarities If the ORSA is prepared on a group basis, both the ORSA and Form F filing are required to be filed with the lead state commissioner. Differences Although some variance is noted across states, Form F filings are generally due by specific dates, whereas ORSA Summary Reports may be filed at any time during the year. The domestic commissioner of any insurer subject to ORSA filing requirements may require a filing even if they are not the lead state of the group. Only the lead state may require a Form F filing from the UCP of an insurance group. Similarities Strong confidentiality protections are in place for both reports. Differences ORSA reports are recognized explicitly as proprietary and containing trade secrets, thereby pulling in state trade secret law as an additional protection from disclosure. None Noted Regulators note that Form F filings often fail to provide information on enterprise risk exposures beyond what is already included in a public document. However, as the Form F is subject to strong confidentiality provisions, regulators should encourage the disclosure of additional detail on risk exposures within the Form F. 2018 National Association of Insurance Commissioners 6

Info. sharing Role of NAIC and other third parties Form F may be shared with other state, federal and international regulatory agencies, with the NAIC and its affiliates and subsidiaries, and with state, federal, and international law enforcement authorities, including members of any supervisory college, provided that the recipient agrees in writing to maintain the confidentiality and privileged status of the document, material or other information, and has verified in writing the legal authority to maintain confidentiality. Sharing with another state insurance regulator is conditioned on the receiving state having a law substantially similar to Section 8A of Model #440. Authorized to share with NAIC and its affiliates and subsidiaries, but state must maintain agreement with NAIC that specifies procedures and protocols regarding the confidentiality and security of information, including procedures and protocols for sharing by the NAIC with other state, federal or international regulators; specifies that ownership of information shared remains with the commissioner and the NAIC s use of the information is subject to the Information may be shared with other state, federal and international financial regulatory agencies, including members of any supervisory college, with the NAIC and with any third-party consultants designated by the commissioner, provided that the recipient agrees in writing to maintain the confidentiality and privileged status of the ORSArelated documents, materials or other information and has verified in writing the legal authority to maintain confidentiality Authorized to share with NAIC (but not its affiliates or subsidiaries) and third-party consultants, but state must maintain agreement that specifies procedures and protocols regarding the confidentiality and security of information, including procedures and protocols for sharing by the NAIC with other state regulators from states in which the insurance group has domiciled insurers; specify that ownership of information shared remains with Similarities Both reports may be shared with other regulators, the NAIC and third parties, provided that they agree to maintain the confidentiality and privileged status of such information and the sharing state has verified their legal ability to do so. Differences Form F information cannot be shared with another state insurance regulator unless they ve adopted a law substantially similar to Section 8A of Model #440. There is no authorization for sharing the ORSA Summary Report or related information with non-financial regulators or law enforcement authorities. Similarities Form F and ORSA Information shared with the NAIC and third-parties is subject to many of the same restrictions and confidentiality protections. Differences Sharing of ORSA information with third parties requires written consent from the insurer. Written consent is not required for the sharing of Form F information with third parties. The NAIC and third None noted Although Model #505 requires consent before ORSA reports can be shared with third-party consultants, a number of states have not adopted this element of Model #505 and instead follow processes outlined in exam statutes or other department developed practices regarding the use of third-party consultants. Such practices include the completion of confidentiality agreements for contractors that are performing regulatory monitoring activities. 2018 National Association of Insurance Commissioners 7

direction of the commissioner; requires prompt notice to be given to an insurer whose confidential information in the possession of the NAIC is subject to a request or subpoena to the NAIC for disclosure or production; and requires the NAIC and its affiliates and subsidiaries to consent to intervention by an insurer in any judicial or administrative action in which the NAIC and its affiliates and subsidiaries may be required to disclose confidential information Third-party consultants not specifically addressed. the commissioner and the NAIC s or a third-party consultant s use of the information is subject to the direction of the commissioner; prohibits the NAIC or third-party consultant from storing the information in a permanent database after the underlying analysis is completed; requires prompt notice to be given to an insurer whose confidential information in the possession of the NAIC or a third-party consultant is subject to a request or subpoena to the NAIC or a thirdparty consultant for disclosure or production; requires the NAIC or a third-party consultant to consent to intervention by an insurer in any judicial or administrative action in which the NAIC or a third-party consultant may be required to disclose confidential information; and in the case of an agreement involving a third-party consultant, provides for the insurer s written consent. parties are barred from storing ORSA Summary Reports and related information in a permanent database. 2018 National Association of Insurance Commissioners 8

Attest. If the Registrant/Applicant has not disclosed any information pursuant to Item 1, the Registrant/Applicant shall include a statement affirming that, to the best of its knowledge and belief, it has not identified enterprise risk subject to disclosure pursuant to Item 1. The report(s) shall include a signature of the insurer or insurance group s chief risk officer or other executive having responsibility for the oversight of the insurer s enterprise risk management process attesting to the best of his/her belief and knowledge that the insurer applies the enterprise risk management process described in the ORSA Summary Report and that a copy of the report has been provided to the insurer s board of directors or the appropriate committee thereof. Similarities If no risks are reported in Form F, both reports are required to include an attestation regarding the accuracy of the information presented. Differences The ORSA report requires a specific attestation in every filing. Form F only requires an attestation if no risks are reported. Many Form F filings are provided without an attestation, in accordance with Models $440 and #450. However, some states have requested attestations on all Form F filings, consistent with other holding company filings (e.g. Forms B, C, etc.) and registrants have generally agreed to comply with this request. Regulators would generally prefer that all Form F filings be supported by an attestation. ORSA Summary Reports generally include an attestation, in accordance with Model #505 requirements. 2018 National Association of Insurance Commissioners 9

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback