Internal governance

EU legislation requires that institutions have robust governance arrangements, including a clear organisational structure, well defined lines of responsibility, effective risk management processes, control mechanisms and remuneration policies. The internal governance should be appropriate to the nature, scale and complexity of the institution. The main responsibility for internal governance lies with the management body, which is subject to specific suitability requirements. In this respect, the EBA published Guidelines on internal governance and in particular on the assessment of the suitability of members of the management body.

Technical Standards, Guidelines & Recommendations

  • Guidelines on outsourcing arrangements

    These draft Guidelines provide a clear definition of outsourcing and specify the criteria to assess whether or not an outsourced activity, service, process or function (or part of it) is critical or important. The Guidelines, which review the existing CEBS Guidelines on outsourcing published in 2006, aim at establishing a more harmonised framework for outsourcing arrangements of all financial institutions in the scope of the EBA’s action.

    Status: Under development

  • Recommendations on outsourcing to cloud service providers

    These recommendations intend to clarify the EU-wide supervisory expectations if institutions intend to adopt cloud computing, so as to allow them to leverage the benefits of using cloud services, while ensuring that any related risks are adequately identified and managed.

    Status: Final and translated into the EU official languages

  • Guidelines on the remuneration benchmarking exercise

    These Guidelines are meant to increase the consistency of information collected on the remuneration practices of credit institutions and investment firms in order to benchmark remuneration trends. As requested by the Capital Requirements Directive, national competent authorities shall collect the information and benchmark remuneration trends at national level while the EBA is in charge of performing the benchmarking at European level. The updates to these Guidelines, which had originally been published on 27 July 2012, follow on from changes in reporting requirements as laid down in the Capital Requirements Directive and Regulation (CRDIV and CRR).

    Status: Final and translated into the EU official languages

  • Guidelines on the data collection exercise regarding high earners

    These Guidelines are meant to increase the consistency of information collected on the number of individuals per credit institution in pay brackets of at least 1 million Euros. As requested by the Capital Requirements Directive, national competent authorities shall collect such information for all credit institutions and the EBA shall disclose the data collected on an aggregate home Member State basis. The updates to these Guidelines, which had originally been published on 27 July 2012, follow on from changes in reporting requirements as laid down in the Capital Requirements Directive and Regulation (CRDIV and CRR).

    Status: Final and translated into the EU official languages

Opinions, Reports and other Publications

 

Reports

Opinions