In these days of unprecedented economic pressure and accompanying financial volatility, regulators around the world are realigning their priorities and rapidly shifting their strategies to support institutions through the ongoing crisis. In this regular weekly feature, we keep you up to date on the latest regulatory news, responses and approaches – from deadline delays to relief measures, reporting requirements to business continuity. Check in every week to see what’s changed and which goalposts have been moved.
- The FSB has issued a statement on business continuity plans, including coordination to ensure that essential personnel are to allowed continue working on-site.
- The UK’s FCA and PRA have confirmed that they intend to provide flexibility to FCA and PRA dual-regulated firms around SMCR requirements due to the coronavirus, and have made specific provisions for firms in these circumstances, on the understanding that it may take longer than usual to submit revised Statements of Responsibilities (SoRs) under the current circumstances. This may include relaxing the 12-week rule (allowing individuals to perform senior management functions without approval for up to 12 weeks in a consecutive one-year period) if they conclude that the rule is insufficient to allow firms to respond to temporary SMF absences linked to coronavirus. For single regulated firms, the FCA has confirmed that it does not require them to have a single Senior Manager responsible for their coronavirus response.
- The European Securities and Markets Authority (ESMA), the EU’s securities markets regulator, has relaxed its requirements regarding the publication by execution venues and firms of the general best execution reports required under RTS 27 and 28 of MiFID II, in light of the COVID-19 pandemic. It has recommended that national authorities extend the 31 March deadline for RTS27 reports by three months to 30 June, 2020.
- The FCA has also agreed to offer supervisory flexibility to traders and investment managers regarding their best execution requirements during the coronavirus crisis. The regulator will not take action against firms that do not publish the 1 April reports, as long as they do so by 30 June.
- The Bank of England, through the PRA, has asked banks to suspend their dividend payments, as well as curbing staff bonuses.
- The EBA has also provided further clarity on measures to mitigate the impact of COVID-19 on the EU banking sector, including details on its call for competent authorities to offer leeway on reporting dates, urging one-month flexibility for reports with remittance dates between March and the end of May 2020. The EBA has called for flexibility in assessing deadlines of institutions’ Pillar 3 disclosures, and has decided, in coordination with the Basel Committee, to cancel the Quantitative Impact Study based on June 2020 data.
- ESMA has updated its risk assessment to account for the COVID-19 pandemic, predicting prolonged period of risk to institutional and retail investors of market corrections and very high risks across the whole of ESMA’s remit.
- The US SEC has warned of an increase in insider trading during the crisis, with a statement from its enforcement division warning that it would be committing “substantial resources” to protect investors.
- SEC Chairman Jay Clayton on 1 April stated that the 30 June implementation deadline for Regulation Best Interest (BI), a major change for broker-dealers, will remain unchanged. However, the SEC will offer some flexibility in the light of the pandemic. “To the extent that a firm is unable to make certain filings or meet other requirements because of disruptions caused by COVID-19, including as a result of efforts to comply with national, state or local health and safety directives and guidance, the firm should engage with us,” Clayton said. “I expect that the Commission and the staff will take the firm-specific effects of such unforeseen circumstances (and related operational constraints and resource needs) into account in our examination and enforcement efforts.”
The Financial Conduct Authority (FCA) has said it is working with the Bank of England and the Treasury department to review all firms’ contingency plans. This will extend to assessments of operational risks, the ability of firms to continue to operate effectively and the steps firms are taking to serve and support their customers. However, the bank has taken a relatively hard-line approach to reporting requirements and has reiterated that it will continue to monitor and crack down on any market abuse.
“We expect firms to take all reasonable steps to meet their regulatory obligations. For example, we would expect firms to be able to enter orders and transactions promptly into the relevant systems, use recorded lines when trading and give staff access to the compliance support they need. If firms are able to meet these standards and undertake these activities from backup sites or with staff working from home, we have no objection to this,” said the regulator in a statement on 4 March, 2020.
The FCA, Prudential Regulation Authority (PRA) and the Financial Reporting Council (FRC) released a joint statement on 26 March allowing listed companies an extra two months to publish their annual reports, albeit with a further warning that: “The Market Abuse Regulation (MAR) remains in force and companies are still required to fulfil their obligations concerning inside information as soon as possible unless a valid reason to delay disclosure under the regulation exists.”
The FCA has also confirmed that the LIBOR transition timeline remains in place, and will be phased out by the end of 2021. On 25 March, the regulator acknowledged however that: “Many preparations for transition will be able to continue. There has, however, been an impact on the timing of some aspects of the transition programmes of many firms. Particularly in segments of the UK market that have made less progress in transition and are therefore still more reliant on LIBOR, such as the loan market, it is likely to affect some of the interim transition milestones.” Alongside other international authorities, the Bank of England, FCA and Working Group will continue to monitor and assess the impact on transition timelines, and have promised to update the market as soon as possible.
On 3 March, the European Central Bank (ECB) issued a letter to significant institutions concerning their contingency preparedness in the context of COVID-19. In the letter, the bank makes it clear that supervised entities are expected to review their business continuity plans and consider what actions can be taken to enhance preparedness to minimise the potential adverse effects of the spread of COVID-19. These include an assessment of how long business continuity measures could be sustained under a global pandemic scenario, an assessment of whether alternative and sufficient back-up sites could be established, urgent testing of whether large scale remote working or other flexible working arrangements for critical staff could be activated and maintained, proactive assessment and testing of the capacity of existing IT infrastructure, also in light of a potential increase of cyber-attacks and potential higher resilience on remote banking services, and the requirement to contact critical service providers to ascertain how services continuity can be ensured.
The European Securities Markets Association (ESMA) has also set out its expectations for regulated firms with respect to business continuity planning, market disclosure and their other regulatory obligations. In a statement on 11 March, the regulator noted that: “All financial market participants, including infrastructures, should be ready to apply their contingency plans, including deployment of business continuity measures, to ensure operational continuity in line with the regulatory obligations.” ESMA also requires that issuers disclose “as soon as possible” any relevant significant information concerning the impacts of COVID-19 on their fundamentals, prospects or financial situation in accordance with their transparency obligations under the Market Abuse Regulation, and requests that firms provide transparency on the actual and potential effects of COVID-19 in their financial reporting.
“In response to the COVID-19 outbreak, ESMA has intensified its coordination with NCAs. To help market participants’ business continuity, we have clarified the requirements regarding the recording of telephone conversations, have provided relief regarding a number of deadlines, including that regarding SFTR, and have coordinated the implementation of short selling measures in a number of member states. We will continue this strong cooperation with NCAs to respond to the current exceptional circumstances,” says Steven Maijoor, Chair of ESMA.
On 20 March, ESMA published a Public Statement to ensure coordinated supervisory actions by national competent authorities on the application of the new tick size regime for systematic internalisers under Regulation (EU) 600/2014 of MiFIR, as part of its attempt to mitigate the impact of the COVID-19 outbreak on European financial markets. The regulator noted the difficulties for SIs to comply with the tick size regime in the current market situation and acknowledged that “in the current environment, market participants’ human and technological resources are stretched and have to focus on ensuring business continuity”. It also highlighted that introducing changes to “critical trading technology infrastructure” in such a situation could potentially “create additional operational risks for certain EU markets participants at a time of heightened volatility in markets.”
On 26 March, ESMA issued a public statement requesting competent authorities and NCAs to relax their supervisory actions around SFTR until at least 13 July 2020, thus effectively delaying implementation of SFTR reporting for three months.
“ESMA understands that the SFT reporting implementation is now heavily impacted by the COVID-19 pandemic. Counterparties, entities responsible for reporting and report submitting entities and TRs face severe resource restrictions in implementing at the same time contingency plans to ensure the continuity of their operations and ongoing projects to meet new regulatory requirements,” said the regulator.
On 27 March, ESMA also relaxed reporting requirements around the Transparency Directive, noting that it was “aware of the difficulties encountered by issuers whose securities are admitted to trading on regulated markets to prepare their financial reports and publish them within the deadline set out in the national law transposing the Transparency Directive1 (TD) and the significant challenges faced by auditors concerning the timely audit of the accounts due to the COVID-19 pandemic and the related actions taken by the Member States to prevent contagion.” In line with similar action taken by the UK’s FCA, the regulator has therefore advised National Competent Authorities to give institutions a two month grace period for annual reports, and a one month grace period for half yearly reports.
However, despite requests from some stakeholders to postpone the requirement to submit transparency calculations for equity instruments (required by MiFIDII/MiFIR to apply from 1 April, 2020), the regulator has decided to keep the submission date unchanged, noting that “adapting to new transparency results for equity instruments is a process that market participants have performed several times in the past and should not require new IT releases.”
Finally, ESMA has delayed the reporting requirement for Money Market Fund (MMF) managers from April 2020 to September 2020, due to an update to the XML schemas used for the reporting, according to a statement on 31 March.
The European Banking Authority (EBA) has also issued several measures to support banks’ operational resilience during this time. On 12 March, the EBA announced that the upcoming EU-wide stress test exercise would be postponed to 2021 to allow banks to focus on and ensure the continuity of their core operations. For 2020, the EBA will instead carry out an additional EU-wide transparency exercise in order to provide updated information on banks’ exposures and asset quality to market participants. The EBA also urged national authorities to “make full use of the flexibility embedded in existing regulation” and recommended that they plan supervisory activities, including on-site inspections, in a “pragmatic and flexible way”, and possibly postpone those deemed non-essential. Authorities should also give banks some leeway in the remittance dates for some areas of supervisory reporting, without putting at stake the crucial information needed to monitor closely banks’ financial and prudential situation.
The Basel Committee has delayed the implementation of Basel IV by a year following intense lobbying from the financial industry due to the coronavirus chaos, with a new deadline of 1 January, 2023.
Apart from a ban on short-selling, the French financial regulator (ACPR) has been tight-lipped around further measures, with very little published about its response to COVID-19 from an operational resilience or business continuity perspective. An emergency bill was presented to the French government on 18 March to counter the economic repercussions of the virus, including a guarantee for new loans. Central bank governor Francois Villeroy de Galhau stated in an interview on 3 March that their “coherent and powerful” response comprised three layers: “the quasi-unlimited provision of funding, agile intervention to purchase long-term securities, [and] intelligent flexibilities.” Further information is unavailable.
The German financial regulator, BaFin, has stated that it will take into account the recommendations of the EBA (as above) for its supervisory practice. Its risk guidelines (published in 2017) specifically state that the conclusion of transactions, as part of the trading activities by a credit institution or an investment firm, are only permissible outside of business premises if explicitly allowed by internal rules and with proper documentation of every transaction. However, on 12 March BaFin published a notice confirming that an institution may temporarily deviate from these strict rules for a “home office”-concept in a crisis, as part of a business contingency plan.
“If there is no access to office and commercial space, it is necessary to create an alternative to keep the business going,” said the regulator. “If institutions had previously ruled out these transactions, they would have to explicitly lift the ban and clearly outline the conditions under which, and if so, the period over which the new regulation should apply, and record this in work instructions.”
BaFin also emphasised that it always aimed to formulate its minimum requirements so that they do not stand in the way of technical innovations, noting that also applies in principle to the requirements for decentralized workplaces set up as part of crisis management in the area of ??retail business. It confirmed that all required security measures and controls can therefore be implemented electronically.
On 6 March 2020, the Dutch Central Bank (De Nederlandsche Bank, DNB) issued a press release outlining its approach to business continuity during the crisis, and emphasising the potential major impact of the Coronavirus on the operations of financial institutions. It warned that continuity plans and preparations sufficient to accommodate short isolated events could prove inadequate in the event of an ongoing pandemic, and noted that it expected institutions to recognize this risk, analyse its impact and take additional measures where necessary – highlighting that coronavirus represents a different and more long-term threat than may have been planned for under standard BCP measures. It requested that firms specifically address the following issues in their business continuity measures:
- Proactively monitor developments surrounding the pandemic, preferably through the creation of a multidisciplinary team consisting of representatives from IT, human resources, business and business continuity planning.
- Map and analyse possible consequences.
- Assess existing BCPs for adequacy, taking into account the possible absence of up to 30% of staff. Where necessary, improvements to existing BCPs should be implemented as soon as possible, taking into account both the directly time-critical business processes and the business processes that become critical in the event of (long-term) outages. An evaluation of the IT change calendar should be part of this.
- Explicitly include the pandemic scenario in BCP test strategy.
- Update infrastructure facilities to support a strong increase in internet traffic as staff work from home.
- Ensure that, where external service providers and / or critical suppliers are used, that these have taken adequate measures and are sufficiently prepared for a pandemic (the dependence of all outsourcing partners must be transparent and that measures are adequate). In critical outsourcing relationships (or suppliers), this may mean that outsourcing partners / suppliers for several financial institutions must be able to continue to provide services (anticipating possible concentration risks).
The Netherlands Authority for the Financial Markets (Autoriteit Financiële Markten, AFM) has also stated that due to the impact of the coronavirus it will be suspending large data requests to financial undertakings until 1 June, 2020, in order to “give the financial sector room to focus fully on the challenges of this crisis and on the needs of customers.” Exceptions include compliance with the Money Laundering and Terrorist Financing (Prevention) Act and the Market Monitor for Advisers and Mediators (MMAB), it said in a statement on 26 March. However: “Despite the exceptional situation, the AFM expects financial parties to continue to comply with all laws and regulations that apply to them.”
In a statement on 23 March, the Securities and Exchange Commission stated that: “The 2019 coronavirus disease (COVID-19) has impacted the securities markets in unprecedented ways. The SEC, other governmental authorities, and market participants have worked to ensure that our markets have continued to function, as many have transitioned to telework and instituted business continuity plans. The Commission has provided relief to facilitate these transitions.”
It also warned against insider trading, warning that in these dynamic circumstances, corporate insiders are regularly learning new material non-public information that may hold an even greater value than under normal circumstances. This may particularly be the case if earnings reports or required SEC disclosure filings are delayed due to COVID-19. Given these unique circumstances, a greater number of people may have access to material non-public information than in less challenging times. “Those with such access – including, for example, directors, officers, employees, and consultants and other outside professionals – should be mindful of their obligations to keep this information confidential and to comply with the prohibitions on illegal securities trading,” it stated.
The SEC has delayed comment periods for certain rules and actions due to the crisis, including on required due diligence by broker-dealers.
On 4 March, the SEC issued relief to public companies with regards their filing obligations, covering the period from 1 March to 30 April 2020. A modified order of 25 March later extended this relief to 1 July, 2020. The SEC’s Division of Corporate Finance has issued guidance expressing its views regarding disclosure and other securities law obligations related to COVID-19, and has also partnered with the divisions of Investment Management and Trading and Markets to issue a no-action relief statement regarding the manual signature and document retention requirements due to COVID-19 concerns.
The SEC has also offered relief to registered investment management firms around their reporting requirements, including prospectus delivery. It exempts them from, among others, Form N-CEN and Form N-PORT filing deadlines from 30 April to 30 June, and from annual and semi-annual report transmittal deadlines.