South Africa: Regulatory Reporting: Challenges For Markets And For Regulators

Last Updated: 21 March 2014
Article by Johan Scheepers

The challenge for financial services firms is to find ways of handling the heavily increased reporting burdens effectively – ensuring compliance – and efficiently – at acceptable cost.

Key questions they need to ask include:

  • How should we monitor and interpret complex regulations?
  • How will our business be impacted?
  • How do we know if we are compliant with the reporting requirements?
  • How can we capture the reporting information to the aggregated or breakdown levels?

A systematic and comprehensive approach is essential to developing a sustainable compliance and risk management program.

Understanding

Effective governance is important to ensure awareness of the data reporting requirements across the board, and to monitor regulatory developments for changes and their impact. An efficient regulatory watch function with defined communication lines should be established to remain abreast with regulatory updates and to disseminate impact analysis across the organization. Where the implications of current or new regulations are unclear, systematic engagement with regulators, and with other stakeholders such as industry bodies, can clarify interpretations to develop appropriate solutions within the context of an organization's business, risk and information management structures. It should go without saying that understanding the impact on business and operating models requires a holistic knowledge of the business and associated workflows – but this is often challenging where there are multiple geographies, jurisdictions, markets and product lines. The need is to create a complete characterization of the business, including a clear and updated view of cross-border business activities and their implications for reporting to local regulators.

Capability

Developing the necessary capability involves creating the right infrastructure and establishing appropriate governance mechanisms. Technology systems and processes need to be both comprehensive to capture all necessary data in an appropriate form and flexible to enable reconfiguration in order to meet new reporting requirements. Translation of data collected into the appropriate form for information reporting requires detailed understanding of both the letter and the underlying intention of the relevant regulation.

"Effective governance is important to ensure awareness of the data reporting requirement across the board, and to monitor regulatory."

A single owner for each report required should be responsible for ensuring specific compliance, accuracy and coverage. Governance mechanisms need to be established at each organization level to ensure compliance and quality control.

Oversight

Senior executives and board members need assurance that the organization is meeting its obligations. The overall reporting framework and system needs to be monitored for performance and subject to independent risk analysis. Key risk and performance metrics should be used to monitor significant risk trends and the health of the control environment. Equally, regulatory feedback and reporting should be closely analyzed to confirm satisfaction and/or to identify evidence of potential shortcomings.

Sustainability

As with all critical business issues, the system and processes for regulatory reporting need to be dynamic and flexible, subject to some form of continuous improvement overview. This is all the more important in this case: first, because of the rate at which requirements are changing; second, because of the vital nature of compliance and the potential cost of failure. The continuous improvement cycle involves five steps (see Figure 1):

Figure 1

Outsourcing?

Given the scale of the challenge, it is understandable that many firms are looking to external specialist providers to take on some or all of their regulatory reporting obligations. Where a financial services firm has a shared service centre which is itself managed by an outsourced service provider, and through which most or all of the relevant data already flows, it can be a relatively simple step to extend the scope of the service to include reporting. Automation and the implementation of specialized regulatory reporting systems are a major growing trend, with companies such as Lombard Risk Management, AXIOM and FRS Global from Wolters Kluwer developing extensive market presence.


"Senior executives and board members need assurance that the organization is meeting its obligations. The overall reporting framework and system needs to be monitored for performance and subject to independent risk analysis."

However, there are critical limits to the extent to which reporting responsibility can properly be outsourced. Crucially, the initial interpretation and analysis (cf Understanding above) has to remain in-house, as do the need for continued judgment and oversight and final responsibility for ensuring effective and efficient compliance.

Designing a complete framework for regulatory reporting which balances all the requirements is itself a complex and specialist task.

Conclusion

Regulatory reporting has become not only a major data management issue but a key strategic challenge. While the primary burdens fall on financial service companies themselves, all organizations involved in the industry, including regulators themselves, are struggling to cope. Surmounting the challenge depends on buy-in and support from the most senior levels of the organization and is likely to require investment of time and money in new systems, processes and operating models. However, successful firms will secure the benefits in terms of more efficient processes, lower costs and the flexibility and scalability to deal with future challenges.

KPMG believes there is also the potential for really smart organizations to go beyond this, turning the situation to their benefit, providing themselves with deeper insights into their market and clients and creating new sources of competitive advantage. 

A growing burden in asian capital markets

The impacts of regulatory change on the reporting lifecycle are being felt particularly strongly in the Asia-Pacific region, where there are also heavy local reporting requirements. Very often, global cross-border regulations do not take into account the different reporting context in Asia- Pacific, and frame new requirements for a western environment, where the volume of regulatory reporting requirements is significantly lower.

Systems and process infrastructures in Asia-Pacific firms or branches/subsidiaries are often ill-suited to coping with the reporting burden. They have often been built in an ad-hoc fashion, mixing a wide range of local and global systems, across business lines. There are also a number of broader cultural constraints. In an environment that remains highly manual, the amount of time and effort spent on regulatory reporting in Asia is generally not properly assessed, and is often under-estimated. Cross-border activity can be less closely monitored and more difficult to manage, creating difficulties in satisfying local requirements in different jurisdictions.

All of this means that implementing effective governance frameworks to ensure the appropriate quality and extent of regulatory reporting is especially challenging. Banks in many Asian countries are facing heavy pressures from these changes in supervisory structures and from heavily increased reporting burdens. The numbers involved are huge: we estimate that a bank operating in the main Asian markets may have to submit more than 50,000 regulatory reports each year, which represents, of course, 50,000 individual potential points of failure.

Regulators struggling too

The massive increase in information reporting is not simply a burden simply for financial institutions. Regulators across the world are themselves struggling to cope. Commissioner Scott O'Malia of the US Commodity Futures Trading Commission (CFTC) recently said it needed drastic improvements in its technical capabilities in order to analyse the trading data it is now collecting in accordance with the Dodd-Frank Act:

"Since the beginning of 2013, certain market participants have been required to report their interest rate and credit index swap trades to a [Swap Data Repository] SDR. Unfortunately, I must report that the Commission's progress in understanding and utilizing the data in its current form and with its current technology is not going well. Specifically, the data submitted to SDRs and, in turn, to the Commission is not usable in its current form. The problem is so bad that staff have indicated that they currently cannot find the London Whale in the current data files... Solving our data dilemma must be our priority and we must focus our attention to both better protect the data we have collected and develop a strategy to understand it. Until such time, nobody should be under the illusion that promulgation of the reporting rules will enhance the Commission's surveillance capabilities."

Scott O'Malia, US Commodity Futures Trading Commission1

US OTC trade reporting: A specific challenge

In the wake of the financial crisis, there was a new emphasis placed on the potential risks posed by over-the-counter (OTC)-traded derivatives. The leaders of the G20 called for a determined effort to regulate global OTC derivative trading to mitigate systemic risk, improve market transparency and protect against market abuse.


Policy and regulatory initiatives have since followed a twin-track approach to ensuring greater stability: encouraging the migration of 'standard' OTC swap transactions onto regulated exchanges; and imposing new reporting, surveillance and oversight on the remainder. In the US, Title VII of the US Dodd-Frank Act – the section governing OTC derivatives – created a new regulatory regime for this previously unregulated market.


In the securities market, while ultimate responsibility rests with the US Securities and Exchange Commission (SEC), the bulk of the operational burden falls on the Financial Industry Regulatory Authority (FINRA), which regulates broker-dealers that operate in the OTC market. FINRA is the largest independent regulator of securities firms doing business with the public in the US, and is authorized by Congress to take action to ensure that investors are protected. FINRA oversees about 4,250 brokerage firms, about 162,155 branch offices and approximately 629,525 brokers.


However, the challenge posed by these numbers alone is far from the whole of the story. The scale of the task is vastly complicated by the fact that these complex transactions routinely cross borders, and are potentially subject to multiple and competing sets of regulations and regulators.


There is also continuing debate over how far the global reach of the US regulatory requirements should extend. A key issue was articulated most clearly recently by the SEC Chairman:






"...subjecting every OTC derivatives transaction that touches the US in some way to all aspects of US law – that is, the "all-in" approach – ignores the realities of the global marketplace. And yet, treating clearly different regimes as equivalent across all key policy areas risks will create regulatory gaps, regulatory arbitrage, and a potential regulatory race to the bottom."2


For the last decade and more, the imperative among equity market participants has been to pursue constant improvements in speed and access to markets. Trades and markets are highly automated, and react in fractions of a second. Capturing the massive amounts of data involved, at the required real-time speed, is a massive challenge.


For firms engaged in this market, there are comparable challenges in satisfying the increasingly demanding regulatory requirements. As the market has developed, IT systems and infrastructures have evolved, often piecemeal, to serve the prime focus on speed and access. They have rarely been built for systematic data collection and transfer. The blanket emphasis on trading as rapidly and as efficiently as possible has crowded out the scope for developing the systems needed for systematic regulatory reporting. This does not necessarily imply that there are many broker-dealers failing in their obligations. But the increasing pressure from regulators is leading to a constant series of low-level penalties for technical infractions.


As a general conclusion, current reporting systems may be increasingly unfit for purpose. Patching and mending will eventually prove inadequate. If the regulatory agenda is to succeed in its objective of increasing the stability of markets and electronic trading, many market participants will need to implement major systems changes. Among the most important challenges for firms is to put in place robust change management processes (rules and IT enhancements) and an equally robust testing program to continually monitor reporting against rules and requirements. Lastly, reporting and escalation to management on key metrics (volumes, errors, system issues, audit issues, late trades, etc) need to be incorporated into the governance processes to ensure efficient attention and the right tone from the top.



1 CFTC's Implementation of Dodd-Frank – Grading Agency Transparency, Keynote Address to SIFMA Compliance and Legal Society Annual Seminar, March 19, 2013

2 Regulation of Cross-Border OTC Derivatives Activities: Finding the Middle Ground, Elisse Walter, Chairman US SEC, American Bar Association Spring Meeting, April 6, 2013

To print this article, all you need is to be registered on Mondaq.com.

Click to Login as an existing user or Register so you can print this article.

Authors
 
Some comments from our readers…
“The articles are extremely timely and highly applicable”
“I often find critical information not available elsewhere”
“As in-house counsel, Mondaq’s service is of great value”

Related Topics
 
Related Articles
 
Up-coming Events Search
Tools
Print
Font Size:
Translation
Channels
Mondaq on Twitter
 
Register for Access and our Free Biweekly Alert for
This service is completely free. Access 250,000 archived articles from 100+ countries and get a personalised email twice a week covering developments (and yes, our lawyers like to think you’ve read our Disclaimer).
 
Email Address
Company Name
Password
Confirm Password
Position
Mondaq Topics -- Select your Interests
 Accounting
 Anti-trust
 Commercial
 Compliance
 Consumer
 Criminal
 Employment
 Energy
 Environment
 Family
 Finance
 Government
 Healthcare
 Immigration
 Insolvency
 Insurance
 International
 IP
 Law Performance
 Law Practice
 Litigation
 Media & IT
 Privacy
 Real Estate
 Strategy
 Tax
 Technology
 Transport
 Wealth Mgt
Regions
Africa
Asia
Asia Pacific
Australasia
Canada
Caribbean
Europe
European Union
Latin America
Middle East
U.K.
United States
Worldwide Updates
Registration (you must scroll down to set your data preferences)

Mondaq Ltd requires you to register and provide information that personally identifies you, including your content preferences, for three primary purposes (full details of Mondaq’s use of your personal data can be found in our Privacy and Cookies Notice):

  • To allow you to personalize the Mondaq websites you are visiting to show content ("Content") relevant to your interests.
  • To enable features such as password reminder, news alerts, email a colleague, and linking from Mondaq (and its affiliate sites) to your website.
  • To produce demographic feedback for our content providers ("Contributors") who contribute Content for free for your use.

Mondaq hopes that our registered users will support us in maintaining our free to view business model by consenting to our use of your personal data as described below.

Mondaq has a "free to view" business model. Our services are paid for by Contributors in exchange for Mondaq providing them with access to information about who accesses their content. Once personal data is transferred to our Contributors they become a data controller of this personal data. They use it to measure the response that their articles are receiving, as a form of market research. They may also use it to provide Mondaq users with information about their products and services.

Details of each Contributor to which your personal data will be transferred is clearly stated within the Content that you access. For full details of how this Contributor will use your personal data, you should review the Contributor’s own Privacy Notice.

Please indicate your preference below:

Yes, I am happy to support Mondaq in maintaining its free to view business model by agreeing to allow Mondaq to share my personal data with Contributors whose Content I access
No, I do not want Mondaq to share my personal data with Contributors

Also please let us know whether you are happy to receive communications promoting products and services offered by Mondaq:

Yes, I am happy to received promotional communications from Mondaq
No, please do not send me promotional communications from Mondaq
Terms & Conditions

Mondaq.com (the Website) is owned and managed by Mondaq Ltd (Mondaq). Mondaq grants you a non-exclusive, revocable licence to access the Website and associated services, such as the Mondaq News Alerts (Services), subject to and in consideration of your compliance with the following terms and conditions of use (Terms). Your use of the Website and/or Services constitutes your agreement to the Terms. Mondaq may terminate your use of the Website and Services if you are in breach of these Terms or if Mondaq decides to terminate the licence granted hereunder for any reason whatsoever.

Use of www.mondaq.com

To Use Mondaq.com you must be: eighteen (18) years old or over; legally capable of entering into binding contracts; and not in any way prohibited by the applicable law to enter into these Terms in the jurisdiction which you are currently located.

You may use the Website as an unregistered user, however, you are required to register as a user if you wish to read the full text of the Content or to receive the Services.

You may not modify, publish, transmit, transfer or sell, reproduce, create derivative works from, distribute, perform, link, display, or in any way exploit any of the Content, in whole or in part, except as expressly permitted in these Terms or with the prior written consent of Mondaq. You may not use electronic or other means to extract details or information from the Content. Nor shall you extract information about users or Contributors in order to offer them any services or products.

In your use of the Website and/or Services you shall: comply with all applicable laws, regulations, directives and legislations which apply to your Use of the Website and/or Services in whatever country you are physically located including without limitation any and all consumer law, export control laws and regulations; provide to us true, correct and accurate information and promptly inform us in the event that any information that you have provided to us changes or becomes inaccurate; notify Mondaq immediately of any circumstances where you have reason to believe that any Intellectual Property Rights or any other rights of any third party may have been infringed; co-operate with reasonable security or other checks or requests for information made by Mondaq from time to time; and at all times be fully liable for the breach of any of these Terms by a third party using your login details to access the Website and/or Services

however, you shall not: do anything likely to impair, interfere with or damage or cause harm or distress to any persons, or the network; do anything that will infringe any Intellectual Property Rights or other rights of Mondaq or any third party; or use the Website, Services and/or Content otherwise than in accordance with these Terms; use any trade marks or service marks of Mondaq or the Contributors, or do anything which may be seen to take unfair advantage of the reputation and goodwill of Mondaq or the Contributors, or the Website, Services and/or Content.

Mondaq reserves the right, in its sole discretion, to take any action that it deems necessary and appropriate in the event it considers that there is a breach or threatened breach of the Terms.

Mondaq’s Rights and Obligations

Unless otherwise expressly set out to the contrary, nothing in these Terms shall serve to transfer from Mondaq to you, any Intellectual Property Rights owned by and/or licensed to Mondaq and all rights, title and interest in and to such Intellectual Property Rights will remain exclusively with Mondaq and/or its licensors.

Mondaq shall use its reasonable endeavours to make the Website and Services available to you at all times, but we cannot guarantee an uninterrupted and fault free service.

Mondaq reserves the right to make changes to the services and/or the Website or part thereof, from time to time, and we may add, remove, modify and/or vary any elements of features and functionalities of the Website or the services.

Mondaq also reserves the right from time to time to monitor your Use of the Website and/or services.

Disclaimer

The Content is general information only. It is not intended to constitute legal advice or seek to be the complete and comprehensive statement of the law, nor is it intended to address your specific requirements or provide advice on which reliance should be placed. Mondaq and/or its Contributors and other suppliers make no representations about the suitability of the information contained in the Content for any purpose. All Content provided "as is" without warranty of any kind. Mondaq and/or its Contributors and other suppliers hereby exclude and disclaim all representations, warranties or guarantees with regard to the Content, including all implied warranties and conditions of merchantability, fitness for a particular purpose, title and non-infringement. To the maximum extent permitted by law, Mondaq expressly excludes all representations, warranties, obligations, and liabilities arising out of or in connection with all Content. In no event shall Mondaq and/or its respective suppliers be liable for any special, indirect or consequential damages or any damages whatsoever resulting from loss of use, data or profits, whether in an action of contract, negligence or other tortious action, arising out of or in connection with the use of the Content or performance of Mondaq’s Services.

General

Mondaq may alter or amend these Terms by amending them on the Website. By continuing to Use the Services and/or the Website after such amendment, you will be deemed to have accepted any amendment to these Terms.

These Terms shall be governed by and construed in accordance with the laws of England and Wales and you irrevocably submit to the exclusive jurisdiction of the courts of England and Wales to settle any dispute which may arise out of or in connection with these Terms. If you live outside the United Kingdom, English law shall apply only to the extent that English law shall not deprive you of any legal protection accorded in accordance with the law of the place where you are habitually resident ("Local Law"). In the event English law deprives you of any legal protection which is accorded to you under Local Law, then these terms shall be governed by Local Law and any dispute or claim arising out of or in connection with these Terms shall be subject to the non-exclusive jurisdiction of the courts where you are habitually resident.

You may print and keep a copy of these Terms, which form the entire agreement between you and Mondaq and supersede any other communications or advertising in respect of the Service and/or the Website.

No delay in exercising or non-exercise by you and/or Mondaq of any of its rights under or in connection with these Terms shall operate as a waiver or release of each of your or Mondaq’s right. Rather, any such waiver or release must be specifically granted in writing signed by the party granting it.

If any part of these Terms is held unenforceable, that part shall be enforced to the maximum extent permissible so as to give effect to the intent of the parties, and the Terms shall continue in full force and effect.

Mondaq shall not incur any liability to you on account of any loss or damage resulting from any delay or failure to perform all or any part of these Terms if such delay or failure is caused, in whole or in part, by events, occurrences, or causes beyond the control of Mondaq. Such events, occurrences or causes will include, without limitation, acts of God, strikes, lockouts, server and network failure, riots, acts of war, earthquakes, fire and explosions.

By clicking Register you state you have read and agree to our Terms and Conditions