Related provisions for CREDS 2.2.55
1 - 20 of 30 items.
(1) As the credit union'sgoverning body, the committee of management has responsibility for ensuring that the credit union complies with the requirements of SYSC 4.1.1 R (see CREDS 2.2.1 G and CREDS 2.2.2 G). So, the committee of management has overall responsibility for:(a) establishing objectives and formulating a business plan;(b) monitoring the financial position of the credit union;(c) determining and documenting policies and procedures;(d) directing and coordinating the
At least two independent minds should be applied to both the formulation and implementation of the policies of a common platform firm, a management company3 and the UK branch of a non-EEA bank1. Where such1 a firm1 nominates just two individuals to direct its business, the appropriate regulator will not regard them as both effectively directing the business where one of them makes some, albeit significant, decisions relating to only a few aspects of the business. Each should
Where there are more than two individuals directing the business of a common platform firm, a management company3 or the UK branch of a non-EEA bank,1 the appropriate regulator does not regard it as necessary for all of these individuals to be involved in all decisions relating to the determination of strategy and general direction. However, at least two individuals should be involved in all such decisions. Both individuals' judgement should be engaged so that major errors leading
A firm may use external documentation (including contracts, transaction statements or advertising brochures) to define or clarify terms and conditions for its products or activities, its business strategy (for example, including through press statements), or its brand. Inappropriate or inaccurate information in external documents can lead to significant operational exposure.
A firm should establish and maintain appropriate systems and controls for the management of its IT system risks, having regard to:(1) its organisation and reporting structure for technology operations (including the adequacy of senior management oversight);(2) the extent to which technology requirements are addressed in its business strategy;(3) the appropriateness of its systems acquisition, development and maintenance activities (including the allocation of responsibilities
(1) This Remuneration Principle stresses the importance of risk adjustment in measuring performance, and the importance within that process of applying judgment and common sense. A firm should ask the risk management function to validate and assess risk-adjustment techniques, and to attend a meeting of the governing body or remuneration committee for this purpose.(2) A number of risk-adjustment techniques and measures are available, and a firm should choose those most appropriate
A firm must ensure that:(1) its pension policy is in line with its business strategy, objectives, values and long-term interests;(2) when an employee leaves the firm before retirement, any discretionary pension benefits are held by the firm for a period of five years in the form of instruments referred to in SYSC 19A.3.47 R (1); and(3) in the case of an employee reaching retirement, discretionary pension benefits are paid to the employee in the form of instruments referred to
4The financial risk assessment should be based on a methodology which provides a reasonable estimate of the potential business losses which a UK RIE might incur in stressed but plausible market conditions. The FCA5 would expect a UK RIE to carry out a financial risk assessment at least once in every twelve-month period, or more frequently if there are material changes in the nature, scale or complexity of the UK RIE's operations or its business plans that suggest such financial
4The FCA5 would expect to consider the financial risk assessment, any proposal with respect to an operational risk buffer and, if applicable, the consolidated balance sheet, in formulating its guidance on the amount of eligible financial resources it considers to be sufficient for the UK RIE to hold in order to meet the recognition requirements. In formulating its guidance, the FCA5 would, where relevant, consider whether or not the financial risk assessment makes adequate provision
A firm that wishes to make a significant change to its business, or is unsure whether the changes it is proposing would be considered to be significant, should contact the relevant regulator. The relevant regulator27 will discuss with the firm whether it will be required to submit parts of the application pack and whether any reports from third parties may be required.127
If the variation ofPart 4A permission is given, the relevant regulator27 will expect a firm to commence a new regulated activity in accordance with its business plan (revised as necessary to take account of changes during the application process) or scheme of operations for an insurer. Firms should take this into consideration when determining when to make an application to the relevant regulator.272727
The FCA will
adopt a pre-emptive approach which will be based on making forward-looking
judgments about firms' business
models, product strategy and how they run their businesses, to enable the FCA to identify and intervene earlier to
prevent problems crystallising. The FCA's approach
to supervising firms will contribute
to its delivery against its objective to protect and enhance the integrity
of the UK financial system (as
set out in the Act). Where the FCA has responsibilities
Before entering into, or significantly changing, an outsourcing arrangement, a firm should:(1) analyse how the arrangement will fit with its organisation and reporting structure; business strategy; overall risk profile; and ability to meet its regulatory obligations;(2) consider whether the agreements establishing the arrangement will allow it to monitor and control its operational risk exposure relating to the outsourcing;(3) conduct appropriate due diligence of the service
For the purpose of LR 5.6.4R (2), the FCA considers that the following factors are indicators of a fundamental change:(1) the extent to which the transaction will change the strategic direction or nature of its business; or(2) whether its business will be part of a different industry sector following the completion of the transaction; or(3) whether its business will deal with fundamentally different suppliers and end users.
A firm should plan its business appropriately so that it is able to identify, measure, manage and control risks of regulatory concern (see SYSC 3.2.11 G (2)). In some firms, depending on the nature, scale and complexity of their business, it may be appropriate to have business plans or strategy plans documented and updated on a regular basis to take account of changes in the business environment.
(1) An overseas firm, which is not an incoming firm, must notify the appropriate regulator8 within 30 business days of any person taking up or ceasing to hold the following positions:8(a) the firm's worldwide chief executive (that is, the person who, alone or jointly with one or more others, is responsible under the immediate authority of the directors for the whole of its business) if the person is based outside the United Kingdom;(b) the person within the overseas firm with
1In deciding how they will satisfy and continue to satisfy the threshold conditions set out in paragraphs 2F and 3E of Schedule 6 to the Act, firms should consider matters including (but not limited to) the following:(1) the assumptions underlying the firm's business model and justification for it;(2) the rationale for the business the firm proposes to do or continues to do, its competitive advantage, viability and the longer-term profitability of the business;(3) the needs of
As part of its business planning and risk management obligations under SYSC, a firm must reverse stress test its business plan; that is, it must carry out stress tests and scenario analyses that test its business plan to failure. To that end, the firm must:(1) identify a range of adverse circumstances which would cause its business plan to become unviable and assess the likelihood that such events could crystallise; and(2) where those tests reveal a risk of business failure that
1In PR 5.5.3R (2)(b)(iii), external management company means in relation to an issuer that is a company which is not a collective investment undertaking, a person who is appointed by the issuer (whether under a contract of service, a contract for services or any other commercial arrangement) to perform functions that would ordinarily be performed by officers of the issuer and to make recommendations in relation to strategic matters.
(1) A Chief Risk Officer should:(a) be accountable to the firm'sgoverning body for oversight of firm-wide risk management;(b) be fully independent of a firm's individual business units;(c) have sufficient authority, stature and resources for the effective execution of his responsibilities; (d) have unfettered access to any parts of the firm's business capable of having an impact on the firm's risk profile; (e) ensure that the data used by the firm to assess its risks are fit for
6An issuer must at all times ensure that the discretion of its board to make strategic decisions on behalf of the company has not been limited or transferred to a person outside the issuer'sgroup, and that the board has the capability to act on key strategic matters in the absence of a recommendation from a person outside the issuer'sgroup.
Strategy
and plans will often dictate the risk which the business is prepared to take
on and high level controls will dictate how the business is to be run. If
the strategy of the business is to enter high-risk areas, then the degree
of control and strength of monitoring reasonably required within the business
will be high. In organising the business for which he is responsible, the approved person performing a significant influence function should bear
this in mind.