EIOPA consults on guidelines on Information & Communication Technology security and governance
The European Insurance and Occupational Pension Authority (EIOPA) yesterday launched a consultation on guidelines on Information and Communication Technology (ICT) security and governance. These guidelines shall provide guidance to national supervisory authorities and market participants on how regulation regarding operational risks set forth in Directive 2009/138/EC and in the Commission's Delegated Regulation 2015/35 and EIOPA Guidance set out in EIOPA's Guidelines on System of Governance is applied in the case of ICT security and governance. The consultation is open until Friday, 13 March 2020.
In line with its Joint ESA's Advice and in reply to the European Commission's FinTech Action Plan, EIOPA developed these guidelines addressed to national supervisory authorities with the following objectives:
- To create a common baseline for information security throughout the EU Member States
- To enhance convergence of supervisory practices in this area
In developing the Joint Advice, the ESAs' objective was that every relevant entity should be subject to clear and general requirements on governance of ICT, including cybersecurity, to ensure the safe provision of regulated services. As these requirements are not in general 'sector-specific for the (re)insurance market, EIOPA also considered the most recent guidelines published by the European Banking Authority
EIOPA's Guidelines cover the following areas:
- Governance and risk management
- ICT operations security
- ICT operations management
For responding to this consultation please use this link. The deadline for submission of feedback is Friday, 13 March 2020 at 23.59 hrs CET.
Unless requested otherwise, all contributions received will be published after the deadline for submission.
These guidelines have been developed according to Article 16 of the Regulation (EU) 1094/2010. Under this Article EIOPA may issue Guidelines and Recommendations addressed to competent authorities and financial institutions with a view to establish consistent, efficient and effective supervisory practices and ensuring the common, uniform and consistent application of Union law.
In accordance with Article 16(3) of that Regulation, competent authorities and financial institutions are required to make every effort to comply with those Guidelines and Recommendations.
Latest News from
The EDPS quick-guide on necessity and proportionality29/01/2020 13:25:00
Processing of personal data – be it collection, storage, use or disclosure – constitutes a limitation on the right to the protection of personal data and must comply with EU law.
Impact of the UK’s withdrawal from the EU – EUTMs and RCDs: updated information28/01/2020 15:25:00
Ahead of 1 February 2020, the day on which the UK will leave the EU in accordance with the Withdrawal Agreement concluded between the EU and the UK (read the latest news here), the EUIPO has updated the Brexit section on its website.
Sustainble urban mobility must come first: so how do you get people out of their cars?28/01/2020 14:33:00
As operators & designers of public transport services, local & regional authorities and policy makers have the opportunity to shape and structure urban spaces. The best way to make the most positive impact on people’s living conditions, and to influence their daily mobility choices, is to offer the very best options for movement.
In the EU Parliament this week: Brexit, better pay for women, Holocaust remembrance28/01/2020 12:25:00
Along with a vote on the UK withdrawal deal, this week MEPs will tackle the gender pay gap, call for a common charger for electronic devices and mark 75 years since the end of the Holocaust.
Verhofstadt on future EU-UK relations: “We should be ambitious”28/01/2020 10:33:00
Ahead of the vote on the EU-UK withdrawal agreement on 29 January, Parliament’s Brexit coordinator Guy Verhofstadt gave an interview.
EU and 16 WTO members agree to work together on an interim appeal arbitration arrangement27/01/2020 15:25:00
The EU and Ministers from 16 Members of the World Trade Organization (WTO) have agreed to develop a multi-party interim appeal arrangement that will allow the participating WTO members to preserve a functioning and two-step dispute settlement system at the WTO in disputes among them.
Q&As the United Kingdom's withdrawal from the European Union on 31 January 202027/01/2020 13:25:00
The UK is set to leave the European Union on 31 January 2020 at midnight (Brussels time). It will no longer be a Member State of the EU. This is a decision that the EU regrets but respects.
Christine Lagarde: How can a united Europe meet the challenges it faces today?24/01/2020 15:20:00
Opening remarks by Christine Lagarde, President of the ECB, during a dinner on "Uniting Europe" at the World Economic Forum
Artificial intelligence: EU must ensure a fair and safe use for consumers24/01/2020 14:20:00
MEPs want a strong set of rights to protect consumers in the context of artificial intelligence and automated decision-making.
Show us the money for new policy proposals, MEPs tell budget commissioner24/01/2020 13:20:00
During a debate with budget commissioner Johannes Hahn on 22 January, members of the Parliament’s negotiating team for the EU's next long-term budget expressed concern that the Commission’s budget proposal for how the EU should spend its money the next seven years no longer adds up.