EBA Final Guidance on Security Incident Reporting
The European Banking Authority (EBA) has published the Final Guidelines on major incident reporting under the new Payment Services Directive (PSD2).
The Guidelines were developed in close cooperation with the European Central Bank (ECB), are addressed to all payment services providers and competent authorities in the 28 EU Member States, and contribute to the objective of the PSD2 of minimizing disruption to users, payment service providers and payment systems.
- set out the criteria, thresholds and methodology for identifying a major security incident;
- determine when such an incident must be notified to the competent authority in the home Member State;
- provide the template that payment service providers should use for notification;
- set out reports which must be sent during the incident;
- establish a set of criteria for competent authorities to use when assessing the relevance of a major operational or security incident;
- detail the minimum information that competent authorities should share with other domestic authorities.
The Guidelines will apply from 13 January 2018.
Latest News from
Enabling a Connected London17/08/2017 15:10:00
Mayor of London announces a package of measures to boost digital connectivity across London, closely echoing recent techUK report.
ScaleUp Institute 2017 Business Survey17/08/2017 11:25:00
The ScaleUp Institute needs your help to ensure that the UK is the best place in the world for companies to both start up and scale-up!
The Government Digital Service Sets out Plans for GOV.UK Notify to Go Local16/08/2017 16:25:00
techUK welcomes the roll-out to local government and encourages continued collaboration with industry as service develops.
BBC iPlayer Team Investigate AI TV Control15/08/2017 13:15:00
The BBC, in partnership with Microsoft, are experimenting with voice prints and user voice controlled content applications.