Tougher reporting rules for banks set

Amid recent cyber security concerns plaguing banking clients, the Bangko Sentral ng Pilipinas is issuing a circular providing new guidelines on reporting standards that banks should observe.

The circular, which is still unnumbered, will take effect on Jan. 1, 2018.

Under the new guidelines, banks are expected to ensure that reports submitted to the BSP are complete, accurate, consistent, reliable and timely.

“This should be done independent of any validation process that the BSP may conduct prior to accepting a report as compliant with the standards,” the BSP said. “As such, an effective governance process over the bank’s reporting system must be established by the bank’s board of directors.”

The regulator was referring to written policies and procedures as well as defined processes for periodic review, enhancements and reporting to the bank’s board and senior management.

“This should be supported by a management information system and technology infrastructure that is commensurate to the bank’s level of activity and complexity,” the BSP said.

In cases of noncompliance with the reporting standards, the BSP is introducing through the circular a combination of enforcement actions that are intended to bring about an improvement in the bank’s behavior.

“In addition to rationalizing the monetary penalties currently being imposed on banks, nonmonetary sanctions for habitual incurrence of reporting violations as determined through a demerit system were also introduced,” the BSP said.

“Formal corrective measures may also be required to be undertaken by the bank should there be significant deficiencies noted during the assessment of its reporting system,” it added.

Earlier this week, BSP deputy governor Nestor A. Espenilla Jr. warned industry players that they would soon have to face penalties for non-implementation of required security measures.—RONNEL W. DOMINGO