EBA Final Guidance on Security Incident Reporting
The European Banking Authority (EBA) has published the Final Guidelines on major incident reporting under the new Payment Services Directive (PSD2).
The Guidelines were developed in close cooperation with the European Central Bank (ECB), are addressed to all payment services providers and competent authorities in the 28 EU Member States, and contribute to the objective of the PSD2 of minimizing disruption to users, payment service providers and payment systems.
- set out the criteria, thresholds and methodology for identifying a major security incident;
- determine when such an incident must be notified to the competent authority in the home Member State;
- provide the template that payment service providers should use for notification;
- set out reports which must be sent during the incident;
- establish a set of criteria for competent authorities to use when assessing the relevance of a major operational or security incident;
- detail the minimum information that competent authorities should share with other domestic authorities.
The Guidelines will apply from 13 January 2018.
Latest News from
Home Office Publishes “Understanding the Costs of Cyber-Crime” Report19/01/2018 15:15:00
The report outlines the development of a governmental framework for estimating the costs of cyber-crimes to the UK
Digital Infrastructure Plan Announced for Liverpool City Region17/01/2018 14:05:00
A specialist consortium has been appointed to deliver Metro Mayor Steve Rotheram’s pledge to make the city region the most digitally connected in the UK.
Open Banking – Opening Doors for Your Finances15/01/2018 13:43:00
Head of Financial Services and Payments, Ruth Milligan runs through the landmark legislation launching on 13 January.
“Partnership will be Pivotal” - Automotive Sector Deal Confirmed15/01/2018 11:25:00
Secretary of State for Business, Energy and Industrial Strategy Greg Clark announced the First Automotive Sector Deal last week.