Content Options:

Content Options

View Options:


You are viewing the version of the document as on 2025-12-01.

CTPS 8.3 Final incident report

CTPS 8.3.1R

1A critical third party must, within a reasonable time of the CTP operational incident being resolved, provide the regulators and the affected firms with the following information in relation to the CTP operational incident:

  1. (1)

    the time and date that the CTP operational incident was resolved;

  2. (2)

    a description of the root causes (in so far as it is aware at the time of submission);

  3. (3)

    a description of any remedial actions the critical third party has or is planning to put in place and an estimated timeline for the completion of those remedial actions;

  4. (4)

    a description of the critical third party’s assessment of:

    1. (a)

      the likelihood of recurrence of the CTP operational incident; and

    2. (b)

      the long-term implications of the CTP operational incident;

  5. (5)

    a description of identified areas for improvement for the critical third party and, where relevant, the affected firms; and

  6. (6)
    1. (a)

      any other information the critical third party reasonably considers to be relevant to affected firms; and

    2. (b)

      to the regulators only, any other information the critical third party reasonably considers to be relevant to the regulators.