List of Q&As

Primary tabs

Enquirers can use various factors to search for a Q&A:

These include searching by the Q&A ID; legal reference, date submitted, technical standard / guideline, or by keyword if known.
Searches can be extended to more than one legal act, topic, technical standard or guidelines by making multiple selections (i.e. pressing 'Ctrl' on your keyboard, and selecting the relevant ones from the drop-down lists by left mouse-click).
Further information on how to search for a Q&A can be found in the Additional background and guidance for asking questions.

Note for users:

In 2021 the EBA completed a review of the final published CRR-CRD and BRRD Q&As against the revised versions of those legislative acts following the amendments introduced in June 2019. This review led to changes for many Q&As, with many having been archived or amended. The changes were reflected in the tool, either in the new archive tab, or by highlighting changes in the final answer as appropriate. (It is noted that the background to questions has only been updated where absolutely necessary.)

As part of the adjustments, a field was added in individual Q&A pages (where relevant) - after the ‘EBA answer’ field - to provide information on how the Q&As was affected by the review. Going forward, other relevant information pertaining to a particular Q&A will also be reflected in this field, where needed.

An overview of all the Q&As affected by the review (updated on 10.12.2021) – by Legal act and filterable by topic – can be accessed here and allows stakeholders to access information about the changes made in one place.

Please note that the Q&As related to the supervisory benchmarking exercises have been moved to the dedicated handbook page. You can submit Q&As on this topic here.

LEGAL ACT

Topic

Article

COM Delegated or Implementing Acts/RTS/ITS/GLs/Recommendations

Answer prepared by

PERIOD POSTED

PUBLICATION

KEYWORDS

Question ID

List of Q&As

1
2
3
4
5
6
7
8
9
next ›
last »

1
2
3
4
5
6
7
8
9
next ›
last »

	SCA for token replacement Is SCA required for the replacement of a tokenized card happening in the background without any ‘action by the payer’ under Article 97(1)(c) PSD2 in the following cases: Expiry of the token and update of the token Replacement of the card, and the new card has a different BIN/Account Range (e.g., for product graduation, such as standard to gold, or simple BIN management) and/or different functionalities Technical and/or configuration changes to the issuer’s BIN configuration (such as migrating from 6 to 8 digit BINs) In all these cases, the existing tokenized credentials have been initially associated with SCA to the user under Article 24(2)(b) RTS, and this is solely a technical replacement of the token. credentials have been initially associated with SCA to the user under Article 24(2)(b) RTS, and this is solely a technical replacement of the token. Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2022_6464 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 24/05/2022 \| Date of publication: 31/01/2023	Export to PDF
	SCA applicability / Application of SCA at tokenisation stage Does the authentication to unlock the mobile device count as one of the elements of strong customer authentication when a payment service user is tokenising a card on an e-wallet solution such as Apple Pay? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6145 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 31/08/2021 \| Date of publication: 31/01/2023	Export to PDF
	Application of SCA to issuing a payment instrument and tokenisation Is strong customer authentication (SCA) required when a Payment Service Provider (PSP) issues a payment instrument or creates a token? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2020_5622 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 16/11/2020 \| Date of publication: 31/01/2023	Export to PDF
	Authentication procedures that ASPSPs’ interfaces are required to support (using re-direction) In a pure redirection-based approach, can an ASPSP, which is not offering a mobile web browser to its PSU’s, decide not to support an authentication via a mobile web browser authentication page (no app-to-mobile web browser or mobile web browser-to-mobile web browser redirection) for PISPs/AISPs on the basis of duly justified security risks, without being considered a breach of Article 97 (5) PSD2 and Article 30(2) of the RTS on SCA and CSC and/or an obstacle under Article 32(3) of the RTS on SCA and CSC? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6321 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 20/12/2021 \| Date of publication: 27/01/2023	Export to PDF
	Application of SCA for confirmation of funds requests made by a PISP 1) Should two SCAs be applied when a fund confirmation is made by a PISP? i.e. one for fund confirmation and one for payment initiation? 2) Should ASPSPs provide confirmation to a CoF request made by a PISP before or after the payment is submitted? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6280 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 16/11/2021 \| Date of publication: 27/01/2023	Export to PDF
	Arbitrating between security and obstacles Can an Account Servicing Payment Service Provider (ASPSP) know a mobile phone number inside of the Third Party Provider (TPP)’s organisation in order to send a decryption password to the TPP out-of-band via SMS? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6156 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 01/09/2021 \| Date of publication: 27/01/2023	Export to PDF
	Ability of Payee’s PSP to apply exemptions from SCA in credit transfers Can the Payee’s Payment Services Provider (PSP) apply an exemption from strong customer authentication (SCA) in credit transfers that are initiated through the payee? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_5845 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 12/05/2021 \| Date of publication: 27/01/2023	Export to PDF
	Transactions initiated via electronic mail (email) Do transactions initiated via electronic mail (email) qualify as initiations pursuant to Article 97 para. 1 (b) PSD2 and are therefore subject to the RTS SCA requirements? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6315 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 15/12/2021 \| Date of publication: 06/01/2023	Export to PDF
	Change of TPP access rights for AIS consent by the PSU prior to authorisation A clarification / harmonised guidance on the Scope of the Bank Offered Consent, as defined in the Berlin Group standard, is needed. Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6246 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 19/10/2021 \| Date of publication: 14/10/2022	Export to PDF
	Future-dated payments and recurring transactions When it comes to recurring transactions and future-dated payments, would an implementation of the PSD2-interface that requires that the TPPs store the payment details until due date, and not until due date are they allowed to send the transactions to the ASPSP for execution, satisfy the requirements in Opinion on the implementation of the RTS on SCA and SCA (EBA-Op-2018-04) of June 13, 2018' paragraph 29, in cases where the ASPSP itself offers future-dated payments and recurring transactions in their mobile/web-bank application? If the answer to the preceding question is yes, what then is the meaning of the statement '… a PISP has the right to initiate the same transactions that the ASPSP offers to its own PSUs, such as … recurring transactions, … and future-dated payments'? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6318 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 16/12/2021 \| Date of publication: 14/10/2022	Export to PDF
	API functionality Is it allowed to use a dedicated PSD2 interface by a TPP that identifies itself with an eIDAS certificate for purposes other than those specified in Article 30(1)(b) - (c) of the RTS on strong customer authentication (SCA) and secure communication? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2022_6392 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 10/03/2022 \| Date of publication: 14/10/2022	Export to PDF
	Clarification of remote payment for dynamic linking Is a SEPA Credit Transfer (SCT) transaction, whereby a user mobile phone interacts locally via Near Field Communication (NFC) with a merchant payment terminal to initiate the SCT transaction, whereby the user mobile phone does not communicate remotely over a mobile network for this purpose but whereby the payment terminal connects on-line to a payment system and handles the required strong customer authentication (SCA) through this on-line channel, considered an electronic remote payment transaction? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2020_5247 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 12/05/2020 \| Date of publication: 13/04/2022	Export to PDF
	Payment Initiation Service - Batch payment / bulk payment Can you apply the PSD2 non-discrimination principle to batch/bulk payment? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6236 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 12/10/2021 \| Date of publication: 13/04/2022	Export to PDF
	Application of the exemption under Article 10 RTS and EBICS T Can an Account Servicing Payment Service Provider (ASPSP) consider that it is not applying the Article 10 Exemption under the Commission Delegated Regulation (EU) 2018/389 “at all” where it permits its Payment Services Users (PSUs) to access balances and transactions information through another direct interface (such as Electronic Banking Internet Communication Standard (EBICS) T) with no systematic or daily strong customer authentication (SCA)? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6235 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 12/10/2021 \| Date of publication: 13/04/2022	Export to PDF
	Re-engineering by TPP of the ASPSP’s redirect API and PSU customer journey May a Payment Initiation Services Provider (PISP) connect to the dedicated interface of the ASPSP, only to subsequently embed (“screen scrape”) the redirection approach into their own environment, without redirecting the PSU to the ASPSP’s mobile banking app, for authentication? Are Third-Party Providers (TPPs) allowed to re-engineer the customer journey designed by the ASPSP to the effect that authentication of the PSU will take place in the TPP domain? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2021_6044 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 21/06/2021 \| Date of publication: 13/04/2022	Export to PDF
	SCA requirements with dynamic linking for mobile initiated credit transfers (MSCTs) Can mobile initiated credit transfers (MSCT) solutions whereby a proximity technology (e.g. NFC, QR-code, BLE, etc.) is used for the exchange of payer identification data between the payer’s mobile device and the payee’s payment terminal but a mobile network is used (e.g. by a dedicated app) on the payer’s mobile device for the payer authentication, be considered as a proximity payment whereby strong customer authentication (SCA) may apply without requiring dynamic linking? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2020_5367 \| Topic: Other topics \| Date of submission: 14/07/2020 \| Date of publication: 13/04/2022	Export to PDF
	Individual's name to return in AISP/PISP calls Is the name returned in an Account Information Service Provider (AISP) / Payment Initiation Service Provider (PISP) call expected to be that of the Payment Service User (PSU) who has initiated the transaction with the Third Party Provide (TPP), or of the actual account owner/holder? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2020_5165 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 09/03/2020 \| Date of publication: 18/03/2022	Export to PDF
	Mount unattended contactless device on general goods vending machines With the limits described in Articles 11 and 16 of the Regulatory Technical Standards on strong customer authentication and secure communication under Directive 2015/2366/EU (PSD2), could a vendor mount an unattended "contactless only" device without pinpad on a general goods vending machine? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2020_5288 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 03/06/2020 \| Date of publication: 11/03/2022	Export to PDF
	Definition of an electronic remote payment transaction What are the demarcation criteria of the term „remote payment transaction“, which is an essential term in the RTS on SCA and CSC? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2019_4594 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 04/03/2019 \| Date of publication: 21/01/2022	Export to PDF
	SCA for staff assisted electronic channel Please clarify where a customer is physically present and identified in branch, the strong customer authentication (SCA) requirements if that customer completes a Standing Order instruction (Setup, Amend or Cancel) or initiates a credit transfer through a staff assisted electronic channel (i.e. tablet device)? Legal act: Directive 2015/2366/EU (PSD2) COM Delegated or Implementing Acts/RTS/ITS/GLs: Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication ID: 2020_5124 \| Topic: Strong customer authentication and common and secure communication (incl. access) \| Date of submission: 13/02/2020 \| Date of publication: 21/01/2022	Export to PDF

Directive 2014/59/EU (BRRD)
Directive 2013/36/EU (CRD)
Regulation (EU) No 575/2013 (CRR)
Directive 2014/49/EU (DGSD)
Directive 2015/2366/EU (PSD2)
Regulation (EU) No 2022/2554 (DORA)
Directive 2022/2556/EU (DORA)
Regulation (EU) No 648/2012 (EMIR) - only RTS 2016/2251
Regulation (EU) No 909/2014 (CSDR) - only RTS 2017/390
Regulation (EU) No 2017/2402 (SecReg)
Directive (EU) 2019/2034 (IFD)
Regulation (EU) No 2019/2033 (IFR)
Directive 2014/17/EU (MCD)
Directive (EU) 2015/849 (AMLD)
Regulation (EU) 2015/847 (WTR)
Directive 2014/92/EU (PAD)
Regulation (EU) 2015/751 (IcFR - Interchange Fee Reg)
Directive 2009/110/EC (EMD)
Directive 2002/65/EC (DMD) - relevant parts only
Directive 2008/48/EC (CCD)
Other

Colleges of Supervisors
Discretion to apply CRR/CRD for IF
Internal Governance
Other issues - IFD
Remuneration
Supervisory review and evaluation (SREP) and Pillar 2
Supervision of investment firm groups
Concentration risk
Fixed overheads requirement
K-factor requirements
Liquidity risk
Capital requirements
Prudential consolidation
Transparency and Pillar 3
Supervisory Reporting (IFR)
Accounting and auditing
Credit risk
Credit Risk – Non performing exposures / loan origination
Colleges of supervisors
External Credit Assessment Institutions (ECAI)
Internal governance
Large exposures
Leverage ratio
Liquidity risk
Market risk
Market infrastructures
Model validation
Operational risk
Other issues
Own funds
Interest Rate Risk for Banking Book (IRRBB)
Passporting and supervision of branches
Remuneration
Securitisation and Covered Bonds
Supervisory review and evaluation (SREP) and Pillar 2
Transparency and Pillar 3
Supervisory reporting
-Supervisory reporting - COREP (incl. IP Losses)
-Supervisory reporting - IRRBB
-Supervisory reporting - Large Exposures
-Supervisory reporting - Leverage ratio
-Supervisory reporting - Liquidity (LCR, NSFR, AMM)
-Supervisory reporting - FINREP (incl. FB&NPE)
-Supervisory reporting - Asset Encumbrance
-Supervisory reporting - Other
-Supervisory reporting - Funding Plans
-Supervisory reporting - Supervisory Benchmarking
Simplified obligations
Recovery plans
Resolution plans
Intra-group financial support
Early intervention
Resolution objectives and triggers
Special management
Valuation
Resolution tools and powers
MREL
Write-down and conversion of capital instruments
Resolution safeguards
Cross-border resolution
Resolution financing arrangements
Interactions with the DGS and the BRRD
Interactions with the CRR / CRD IV and the BRRD
BRRD Reporting
Recognition, membership and supervision of DGS
Rights of depositors (Eligibility, coverage level, repayable amount, repayment, claim against DGS, depositor information)
Funding provisions (financing means, use of funds, borrowing, calculation of contributions)
Cooperation within the Union (incl. stress testing)
Third country branches
Interactions with the BRRD
Interactions with the CRR / CRD IV
Authorisation and registration
Monetary amount of the professional indemnity insurance
Central register of the EBA
Passporting
Central contact points
Cooperation between competent authorities in the supervision of payment institutions operating cross-border
Security measures for operational and security risks
Major incidents reporting
Complaints handling by payment service providers
Fraud reporting
Strong customer authentication and common and secure communication (incl. access)
Complaints to competent authorities regarding alleged infringements of PSD2)
Digital operational resilience testing
ICT-related incidents
ICT third-party risk management
Oversight framework of CTPPs
Risk management
Other DORA topics
Arrears and foreclosure
Creditworthiness assessments
Passporting of mortgage credit intermediaries
Professional Indemnity Insurance for mortgage credit intermediaries
Benchmark rate in the ESIS
Complaints-handling by creditors and credit intermediaries
Payment accounts
Provisions applicable to all securitisations
Simple Transparent and Standardised securitisation
Supervision and Sanctions
Risk Assessment
Supervision
Customer Due Diligence
Suspicious Transaction Reporting
Third country policy
Central Contact Points (AML/CFT)
Sanctions
Electronic fund transfers
Other topics
Not applicable

Not applicable
Delegated Regulation (EU) 2015/61 - DR with regard to liquidity coverage requirement
Delegated Regulation (EU) 2015/62 - DR with regard to the leverage ratio
Delegated Regulation (EU) 2015/63 - DR on ex ante contributions to resolution financing arrangements
Delegated Regulation (EU) 2016/1075 - DR on the content of recovery and resolution plans, financial support, independent valuers, contractual recognition of write down and conversion powers, notices of suspension and resolution colleges
Draft ITS on Supervisory Reporting of Institutions
Draft ITS on Supervisory Reporting of Institutions (for benchmarking the internal approaches)
Draft ITS on the provision of information for the purpose of resolution plans
Draft ITS on reporting and disclosure requirements for investment firms
Regulation (EU) No 1423/2013 - ITS on disclosure of own funds requirements
Regulation (EU) No 183/2014 - RTS for the calculation of specific and general credit risk adjustments
Regulation (EU) No 241/2014 - RTS for Own Funds requirements for institutions
Regulation (EU) No 484/2014 - ITS on hypothetical capital of a CCP
Regulation (EU) No 523/2014 - RTS on close correspondence between the values of an institution's covered bonds and assets
Regulation (EU) No 524/2014 - RTS on information exchange between home and host competent authorities
Regulation (EU) No 525/2014 - RTS on the definition of market
Regulation (EU) No 526/2014 - RTS on proxy spread and limited smaller portfolios for CVA risk
Regulation (EU) No 527/2014 - RTS on classes of other instruments appropriate for the purposes of variable remuneration
Regulation (EU) No 528/2014 - RTS on non-delta risk of options in the standardised market risk approach
Regulation (EU) No 529/2014 - RTS on materiality of extensions and changes in the advanced approaches (IRB and AMA)
Regulation (EU) No 530/2014 - RTS on materiality of thresholds for internal approaches to specific risk in the trading book
Regulation (EU) No 602/2014 - ITS for the convergence of supervisory practices regarding the implementation of additional risk weights
Regulation (EU) No 604/2014 - RTS Remuneration: criteria to identify categories of staff
Regulation (EU) No 620/2014 - ITS on information exchange between home and host competent authorities
Regulation (EU) No 625/2014 - RTS on requirements for investor, sponsor, original lenders and originator institutions of transferred credit risk exposures
Regulation (EU) No 650/2014 - ITS on disclosure by competent authorities
Regulation (EU) No 680/2014 - ITS on supervisory reporting of institutions (repealed)
Regulation (EU) No 710/2014 - ITS on joint decision process for institution-specific prudential requirements
Regulation (EU) No 926/2014 - ITS on notifications relating to the exercise of the right of establishment and the freedom to provide services
Regulation (EU) No 945/2014 - ITS on relevant appropriately diversified indices
Regulation (EU) No 1030/2014 - ITS on disclosure of values used to identify global systemically important institutions (as amended)
Regulation (EU) No 1125/2014 - RTS-on PII for mortgage credit intermediaries
Regulation (EU) No 1151/2014 - RTS on information to be notified when exercising the right of establishment and the freedom to provide services
Regulation (EU) No 1152/2014 - RTS on the identification of the geographical location of relevant credit exposures for institution-specific countercyclical capital buffer rate
Regulation (EU) No 1187/2014 - RTS for determining the overall exposure to a client or a group of connected clients in respect of transactions with underlying assets
Regulation (EU) No 1222/2014 - RTS on methodology for the identification of global systemically important institutions (GSII) and the definition of GSII subcategories
Regulation (EU) 2015/233 - ITS on currencies with an extremely narrow definition of central bank eligibility
Regulation (EU) 2015/585 - RTS for the specification of margin periods of risk
Regulation (EU) 2015/942 - RTS on materiality of extensions and changes in internal approaches for market risk
Regulation (EU) 2015/2197 - ITS on closely correlated currencies (as amended)
Regulation (EU) 2015/2344 - ITS on currencies with constraints on the availability of liquid assets
Regulation (EU) 2016/98 - RTS specifying the general conditions for the functioning of colleges of supervisors
Regulation (EU) 2016/99 - ITS determining the operational functioning of colleges of supervisors
Regulation (EU) 2016/100 - ITS specifying the joint decision process with regard to the application for certain prudential permissions
Regulation (EU) 2016/101 - RTS for prudent valuation under Article 105(14) CRR
Regulation (EU) 2016/200 - ITS on disclosure of the leverage ratio for institutions
Regulation (EU) 2016/709 - RTS specifying the conditions for the application of the derogations concerning currencies with constraints on the availability of liquid assets
Regulation (EU) 2016/911 - ITS on disclosure of group financial support agreement
Regulation (EU) 2016/962 - ITS on proportionality notifications templates
Regulation (EU) 2016/1400 - RTS on business reorganisation plan content
Regulation (EU) 2016/1450 - RTS specifying criteria for MREL (minimum requirements for liabilities eligible for bail-in)
Regulation (EU) 2016/1799 - ITS with regard to the mapping of credit assessments of external credit assessment institutions
Regulation (EU) 2016/2070 - ITS on Supervisory Reporting (for benchmarking the internal approaches) (as amended)
Regulation (EU) 2016/2251 - RTS on risk mitigation techniques for OTC derivatives not cleared by a central counterparty (CCP)
Regulation (EU) 2017/208 - RTS for additional liquidity outflows corresponding to collateral needs resulting from the impact of an adverse market scenario on an institution's derivatives transactions
Regulation (EU) 2017/323 correcting Regulation (EU) 2016/2251 – RTS on risk mitigation techniques for OTC derivatives not cleared by a central counterparty (CCP)
Regulation (EU) 2017/390 - RTS on prudential requirements of CSDs (CSDR-related)
Regulation (EU) 2017/1230 - RTS on criteria for preferential outflow or inflow rate for cross-border undrawn credit or liquidity facilities within a group or IPS
Regulation (EU) 2017/2055 - RTS on passporting under PSD2
Regulation (EU) 2018/33 - ITS with regard to the standardised presentation format of the statement of fees
Regulation (EU) 2018/171 - RTS on the materiality threshold for credit obligations past due
Regulation (EU) 2018/389 - RTS on strong customer authentication and secure communication
Regulation (EU) 2018/728 - RTS for excluding transactions with third country non-financial counterparties from own funds requirement for CVA risk
Regulation (EU) 2018/1624 - ITS on the provision of information for resolution plans
Regulation (EU) 2018/1108 - RTS on CCP to strengthen fight against financial crime
Regulation (EU) 2019/348 - RTS on simplified obligations for recovery and resolution planning
Regulation (EU) 2019/410 - ITS on EBA register under PSD2
Regulation (EU) 2019/411 - RTS on EBA register under PSD2
Regulation (EU) 2019/758 – RTS on implementation of group wide AML/CFT policies in third countries
Regulation (EU) 2020/1423 - RTS on central contact points under PSD2
Regulation (EU) 2021/451 – ITS on supervisory reporting of institutions
Regulation (EU) 2021/453 - ITS with regard to the specific reporting requirements for market risk
Regulation (EU) 2021/622 – ITS with regard to uniform reporting templates, instructions and methodology for reporting on MREL
Regulation (EU) 2021/637 - ITS with regard to disclosures of information referred to in Titles II and III of Part Eight CRR
Regulation (EU) 2021/763 – ITS with regard to the supervisory reporting and public disclosure of MREL
Regulation (EU) 2021/2153 - RTS on the criteria for subjecting certain investment firms to the CRR (EUR 5bn)
Regulation (EU) 2021/2154 - RTS on Identified Staff
Regulation (EU) 2021/2155 - RTS on Instruments variable remuneration
Regulation (EU) 2021/2284 - ITS on Reporting
Regulation (EU) 2021/2284 - ITS on Disclosure of Own funds
Regulation (EU) 2022/76 - RTS to specify adjustments to the K-DTF coefficients
Regulation (EU) 2022/2453 - ITS on ESG disclosures
EBA/REC/2017/03 - Recommendation on outsourcing to cloud service providers
EBA/GL/2013/01 - Guidelines on retail deposits subject to different outflows for purposes of liquidity reporting
EBA/GL/2014/01 - Guidelines on applicable notional discount rate for variable remuneration
EBA/GL/2014/03 - Guidelines on disclosure of encumbered and unencumbered assets
EBA/GL/2014/04 - Guidelines on harmonised definitions and templates for funding plans of credit institutions - repealed by EBA/GL/2019/05
EBA/GL/2014/05 - Guidelines on significant credit risk transfer
EBA/GL/2014/07 - Guidelines on data collection exercise regarding high earners
EBA/GL/2014/08 - Guidelines on remuneration benchmarking exercise
EBA/GL/2014/09 - Guidelines on the types of tests, reviews or exercises that may lead to support measures
EBA/GL/2014/10 - Guidelines on criteria to identify other systemically important institutions (O-SIIs)
EBA/GL/2014/11 - Guidelines on measures to reduce or remove impediments to resolvability
EBA/GL/2014/13 - Guidelines on common procedures and methodologies for the SREP
EBA/GL/2014/14 - Guidelines on materiality, proprietary, confidentiality and disclosure frequency under Pillar 3
EBA/GL/2015/03 - Guidelines on triggers for use of early intervention measures
EBA/GL/2015/04 - Guidelines on the effectiveness of the sale of business tool
EBA/GL/2015/05 - Guidelines on the asset separation tool
EBA/GL/2015/06 - Guidelines on the minimum list of services or facilities
EBA/GL/2015/07 - Guidelines on failing or likely to fail
EBA/GL/2015/08 - Guidelines on the management of interest rate risk arising from non-trading activities
EBA/GL/2015/09 - Guidelines on payment commitments
EBA/GL/2015/10 - Guidelines on methods for calculating contributions to deposit guarantee schemes
EBA/GL/2015/11 - Guidelines on creditworthiness assessment
EBA/GL/2015/12 - Guidelines on arrears and foreclosure
EBA/GL/2015/16 - Guidelines on the application of simplified obligations under Article 4(5) of Directive 2014/59/EU
EBA/GL/2015/17 - Guidelines specifying the conditions for group financial support under Article 23 of Directive 2014/59/EU
EBA/GL/2015/19 - Guidelines on passport notifications
EBA/GL/2015/20 - Guidelines on limits on exposures to shadow banking entities which carry out banking activities outside a regulated framework under Article 395(2) of CRR
EBA/GL/2016/02 - Guidelines on cooperation agreements between deposit guarantee schemes
EBA/GL/2016/07 - Guidelines on the application of the definition of default under Article 178 CRR
EBA/GL/2016/08 - Guidelines on implicit support for securitisation transactions
EBA/GL/2016/09 - Guidelines on corrections to modified duration for debt instruments under Article 340(3) CRR
EBA/GL/2016/10 - Guidelines on ICAAP and ILAAP information collected for SREP purposes
EBA/GL/2016/11 - Guidelines on disclosure requirements under Part Eight of CRR
EBA/GL/2017/01 - Guidelines on LCR disclosure to complement the disclosure of liquidity risk management under Article 435 CRR
EBA/GL/2017/05 - Guidelines on ICT Risk Assessment under SREP
EBA/GL/2017/06 - Guidelines on credit institutions' credit risk management practices and accounting for expected credit losses
EBA/GL/2017/08 - Guidelines on the criteria on how to stipulate the minimum monetary amount of the professional indemnity insurance
EBA/GL/2017/09 - Guidelines on authorisation and registration under PSD2
EBA/GL/2017/13 - Guidelines on procedures for complaints of alleged infringements under PSD2
EBA/GL/2017/14 - Guidelines on supervision of significant branches
EBA/GL/2017/15 - Guidelines on connected clients under Article 4(1)(39) CRR
EBA/GL/2017/16 - Guidelines on PD estimation, LGD estimation and the treatment of defaulted exposures
EBA/GL/2018/01 - Guidelines on uniform disclosure requirements on IFRS 9 transitional arrangements
EBA/GL/2018/02 - Guidelines on the management of interest rate risk arising from non-trading book activities
EBA/GL/2018/03 - Guidelines on the revised common procedures and methodologies for SREP and supervisory stress testing (consolidated version)
EBA/GL/2018/04 - Guidelines on institutions' stress testing
EBA/GL/2018/05 - Guidelines on fraud reporting under PSD2 (amended by EBA/GL/2020/01)
EBA/GL/2018/06 - Guidelines on management of non-performing and forborne exposures
EBA/GL/2018/07 - Guidelines on the exemption from the contingency mechanism under Regulation (EU) 2018/389
EBA/GL/2018/08 - Guidelines on the STS criteria for ABCP securitisation
EBA/GL/2018/09 - Guidelineson the STS criteria for non-ABCP securitisation
EBA/GL/2018/10 - Guidelines on disclosure of non-performing and forborne exposures
EBA/GL/2019/01 - Guidelines on specification of types of exposures to be associated with high risk under Article 128(3) of CRR
EBA/GL/2019/02 - Guidelines on outsourcing arrangements
EBA/GL/2019/03 - Guidelines for the estimation of LGD appropriate for an economic downturn
EBA/GL/2019/04 – Guidelines on ICT and security risk management - repealing EBA/GL/2017/17
EBA/GL/2019/05 – Guidelines on harmonised definitions and templates for funding plans of credit institutions under Recommendation A4 of ESRB/2012/2 - repealing EBA/GL/2014/04
EBA/GL/2020/04 - Guidelines on the determination of weighted average maturity (WAM) of contractual payments due under the tranche per of Article 257(1) (a) CRR
EBA/GL/2020/05 - Guidelines on credit risk mitigation for institutions applying the IRB approach with own estimates of LGDs
EBA/GL/2020/06 - Guidelines on loan origination and monitoring
EBA/GL/2020/09 - Guidelines on the treatment of structural FX under Article 352(2) of CRR
EBA/GL/2020/13 - Guidelines on the appropriate subsets of sectoral exposures to which competent or designated authorities may apply a systemic risk buffer in accordance with Article 133(5)(f) of CRD
EBA/GL/2020/14 - Guidelines on the specification and disclosure of systemic importance indicators
EBA/GL/2021/01 - Guidelines specifying the conditions for the application of the alternative treatment of institutions’ exposures related to ‘tri-party repurchase agreements’ set out in Article 403(3) of CRR
EBA/GL/2021/02 - Guidelines on customer due diligence and the factors institutions should consider when assessing the ML /TF risk associated with individual business relationships and occasional transactions under Articles 17 and 18(4) of AMLD
EBA/GL/2021/03 - Guidelines on major incident reporting under PSD2 - repealing EBA/GL/2017/10
EBA/GL/2021/04 - Guidelines on sound remuneration policies under CRD (repealing EBA/GL/2015/22)
EBA/GL/2021/05 - Guidelines on internal governance under CRD - repealing EBA/GL/2017/11
EBA/GL/2021/06 - Joint ESMA and EBA Guidelines on the assessment of the suitability of members of the management body and key function holders under CRD and MiFID - repealing EBA/GL/2017/12
EBA/GL/2021/07 - Guidelines on criteria for the use of data inputs in the risk-measurement model referred to in Article 325bc of CRR
EBA/GL/2021/08 - Guidelines on the monitoring of the threshold and other procedural aspects on the establishment of intermediate EU parent undertakings under Article 21b of CRD
EBA/GL/2021/09 - Guidelines specifying criteria to assess exceptional cases when institutions exceed the large exposure limits of Article 395(1) CRR and time and measures to return to compliance under Article 396(3) CRR
EBA/GL/2021/10 - Revised Guidelines on stress tests of deposit guarantee schemes under DGSD (repealing and replacing EBA/GL/2016/04)
EBA/GL/2021/11 - Guidelines on recovery plan indicators under Article 9 BRRD - repealing EBA/GL/2015/02
EBA/GL/2021/12 - Guidelines on a common assessment methodology for granting authorisation as a credit institution under Article 8(5) CRD
EBA/GL/2021/13 - Guidelines on sound remuneration policies under Directive (EU) 2019/2034
EBA/GL/2021/14 - Guidelines on internal governance under Directive (EU) 2019/2034
EBA/GL/2021/17 - Guidelines on the delineation and reporting of available financial means (AFM) of DGS
EBA/GL/2022/02 - Guidelines on the limited network exclusion
JC/GL/2016/72 - Guidelines on risk based AML/CFT supervision
JC/GL/2017/16 - Guidelines to prevent the abuse of fund transfers for ML/TF purposes
JC/GL/2018/35 - Joint Committee Guidelines on complaints-handling for the securities and banking sectors
JC/GL/2019/81 - Guidelines on cooperation and information exchange for AML/CFT supervision purposes

Primary tabs

Search for Q&As Submit a question

List of Q&As