The main regulatory framework of the Spanish banking system is composed of the following regulations:
Bank of Spain Circulars
Additionally, credit institutions must consider the following local regulations:
In addition to this framework, banks are affected by existing regulations in other areas, such as:
In Europe, the European Central Bank (ECB), together with the national central banks (NCBs), comprises the European System of Central Banks (ESCB). All eurozone states participate in the Single Supervisory Mechanism (SSM), which promotes European financial stability.
The ECB is responsible for the prudential supervision of credit institutions as established under Regulation (EU) No 1024/2013. It supervises all EU Member States, regardless of whether they are in the eurozone.
The ECB carries out certain tasks for prudential supervisory purposes, including:
The Bank of Spain is part of the ESCB. Under the Spanish National Competent Authority, it is also conferred upon with supervisory tasks, such as:
Types of Licenses, Activities, and Services Covered
The body responsible for authorising the creation of a credit institution in Spain is the European Central Bank, at the proposal of the Bank of Spain.
The following credit institutions exist in Spain:
Credit institutions are authorised companies whose activity consists of:
The banking licence is the most complete and broad licence that a financial institution can obtain in Spain. It generally enables an institution to provide every financial service included under Spanish regulations. Predominant examples are:
Main Conditions for Authorisation
The requirements to obtain authorisation as a credit institution include:
The Bank of Spain will submit to the ECB a proposal for authorisation to exercise the activity of a credit institution, following a report by the Executive Service of the Commission for the Prevention of Money Laundering and Monetary Offences (the Spanish Financial Intelligence Unit, SEPBLAC), the National Securities Market Commission (CNMV), and the Directorate General of Insurance and Pension Funds (DGSFP).
The application for authorisation must be resolved within six months of its receipt by the Bank of Spain, or when the required documentation is complete and, in any event, within 12 months of its receipt. If the application is not resolved within this period, it is understood to have been rejected.
Other Relevant Information
The Bank of Spain has transferred the direct supervision of significant credit institutions to the SSM, but retains that of less significant institutions, on which the SSM exercises indirect supervisory functions. It must be said that even in those cases in which the SSM is directly responsible for supervision, the Bank of Spain participates actively in the supervision of Spanish institutions, and in the supervision of the institutions of other SSM Member States.
The supervision of an institution’s compliance with the rules of conduct and customer protection will vary depending on the services the institution provides. The Bank of Spain will monitor compliance with the banking regulations; the CNMV will monitor stock market regulations; SEPBLAC, the regulations for the prevention of money laundering and terrorist financing; and the DGSFP will monitor the insurance regulations and the distribution of insurance products.
Any legal or natural person, acting independently or with others, that has resolved to purchase or increase, directly or indirectly, a qualifying holding in a Spanish credit institution must notify the Bank of Spain of their decision in advance. This is provided that the percentage of voting rights or capital held is equal to or greater than 20%, 30%, or 50%, and/or that, by virtue of the acquisition, they will come to control the credit institution.
Requirements of the Notification
The above notification must include mention of the below.
Of the potential acquirer, the following must be stated:
Of the proposed acquisition:
The Bank of Spain will evaluate the proposed acquisition of qualifying shareholdings, and will then submit the decision on the proposed acquisition to the ECB for it to be approved or opposed.
If deemed necessary, the Bank of Spain may request additional information from the potential acquirer, to evaluate their proposed acquisition.
In its assessment, the Bank of Spain will request a report from the Spanish AML/CTF authority (SEPBLAC), which includes its complete assessment of the transaction.
In the event that the potential acquirer is a resident of another EU Member State, the Bank of Spain may contact the competent authority in that country to carry out further verifications.
The decision to approve/oppose the transaction must be made within 60 business days of the Bank of Spain’s acknowledged receipt of the application. Otherwise, it will be understood that there is no opposition to the acquisition from the Bank of Spain.
In addition to the authorisation process detailed above, any person who has acquired, directly or indirectly, a holding in a credit institution in such a way that the percentage held is equal to or greater than 5% must immediately inform the Bank of Spain and the relevant credit institution in writing.
The corporate governance requirements applicable to banks are increasingly demanding. The regulatory authority stresses the importance of the following:
Recently in Spain, the CNMV has reiterated the need for anti-corruption mechanisms involving top management and the board of directors.
Registration of Senior Management
Regardless of their registration with the Spanish Commercial Registry, the exercise of Senior Management functions at banks requires prior registration in the Senior Management Registry of the Bank of Spain and the ECB.
For that reason, credit institutions must notify the Bank of Spain and the ECB of any new members and provide assurance that they:
Credit institutions must have a board of directors composed of persons who meet the eligibility requirements for the performance of their duties. They must be of acknowledged commercial and professional integrity, have the appropriate knowledge and experience to perform their duties, and be able to exercise good governance of the institution.
The requirements mentioned above must also be applied to directors or their equivalent, as well as to those responsible for internal control functions and other key positions in the day-to-day financial operations of the credit institution. These persons must be of good repute, demonstrating personal, commercial and professional conduct that casts no doubt on their ability to manage the institution. They must be persons with the appropriate educational profile, particularly in the areas of banking and financial services, as well as having practical experience derived from previous positions. They must possess the appropriate knowledge and experience to perform their duties at the credit institution.
In assessing the ability to exercise good corporate governance, potential conflicts of interest and the ability to devote sufficient time to perform the relevant functions will be taken into account.
An assessment of the suitability requirements shall be carried out, both individually and for the entire board.
Roles and Accountability Requirements
In Spain, there is no system like the UK's Senior Management Regime. There is no dual administration system, and the board of directors assumes the functions of management and supervision.
The board of directors has the following functions, which cannot be delegated:
In the case of listed banks, the list of tasks that cannot be delegated is longer.
The remuneration requirements in Spain are outlined in Law 10/2014, Royal Decree 84/2015, and Circular 2/2016.
Remuneration Policy and Principles
As a general principle, credit institutions must have a remuneration policy applicable to all staff (including related agents). This policy must be consistent with sound and effective risk management and refrain from assuming risks that exceed the tolerated level. Additionally, it must be in line with the business strategy, objectives and values, as well as long-term interests, and it must incorporate the measures necessary to avoid any conflict of interest.
Moreover, Spanish regulation provides specific sound remuneration principles for members of senior management, staff whose professional activities significantly affect the credit institution’s risk profile (“risk takers”), staff engaged in control functions, and any employee receiving full remuneration in the same bracket as senior management and risk takers (provided their professional activities have a material impact on the institution’s risk profile).
The principles applicable to establishing variable remuneration, which includes stringent requirements, are particularly relevant and apply not only to credit institutions but to all the entities of a banking group. This may create a disadvantaged position for those financial entities (investment firms or management companies) that are not part of a banking group, which may therefore be more flexible and competitive when establishing staff remuneration.
There are also specific requirements for the members of the management board, whose remuneration must be approved by the General Meeting of Shareholders, as well as for compliance and risk management staff.
In addition to those principles, there are reporting obligations to the Bank of Spain, aimed at verifying compliance with the applicable rules.
This is in line with the increasing supervisory scrutiny of the Bank of Spain and other European and local regulators, which, in recent years, have launched a number of initiatives to control and (in some cases) limit banking bonuses.
This supervisory pattern also extends to other sectors, such as the securities market. As such, the CNMV has amended the Good Governance Code of Listed Companies to clarify remuneration for the executive members of the board.
Failure to comply with remuneration requirements in Spain is considered a very serious or serious infringement, depending on the relevance of the specific rules breached or the economic and financial position of the credit institution. Therefore, the sanctions imposed are, in the first instance, a fine, withdrawal of authorisation, and public reprimand, among others, and, in the second instance, a fine and public reprimand.
While these obligations are subject to the principle of proportionality, setting remuneration systems that are aligned with the legal framework and simultaneously capable of attracting talent to a banking group is an increasingly complex task that requires expert advice. It has become an issue of strategy rather than human resources.
The main AML/CTF requirements in Spain are set out in Law 10/2010 of 28th April, on the prevention of money laundering and terrorist financing (Law 10/2010) and its implementing Royal Decree 304/2014.
The basic requirements contained in these regulations are fairly aligned with the EU AML and counter terrorist financing (AML/CTF) framework and can be summarised as follows:
A few features from certain Spanish requirements are the following:
In September 2018, Law 10/2010 was amended to implement Directive (EU) 2015/849 of the European Parliament and of the Council of 20 May 2015, on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing (known as the Fourth AML/CTF Directive or the Directive), which is still ongoing. In this regard, Royal Decree 304/2014 is still pending updates.
Spanish Implementation of the Fourth AML/CTF Directive
The main amendments introduced to Law 10/2010 are the following:
Spanish Implementation of the Fifth AML/CTF Directive
Finally, Directive (EU) 2018/843 of the European Parliament and of the Council of 30 May 2018 amending Directive (EU) 2015/849 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing (known as the “Fifth AML/CTF Directive”) has not been implemented yet and it is uncertain when the implementation will take place.
In June 2020, the Spanish Ministry of Economy released a preliminary draft of the implementation bill for public hearing. The draft, among other relevant changes, foresees the creation of a new and unique register overseen by the Ministry of Justice, which will contain all the necessary UBO information of all Spanish companies and legal instruments.
Spain has already been warned by the European Commission for the late implementation of the Fifth AML/CTF Directive.
Regulatory Framework and Administrators
The Spanish deposit guarantee scheme is the Spanish Deposit Guarantee Fund of Credit Institutions (the FGD or the “Fund”), regulated by Royal Decree-Law 16/2011 and Royal Decree 2606/1996.
Royal Decree-Law 16/2011 unified the three deposit guarantee schemes that existed (one for banking establishments, another for saving banks, and a third for credit co-operatives) into a single Deposit Guarantee Fund for Credit Institutions, which maintains the functions and characteristics of the three funds it replaced.
The Fund, which is a legal entity, is managed by a Management Committee with 11 members: one representative from the Ministry of Economic Affairs and Digital Transformation (formerly, the Ministry of Economy), one from the Ministry of Finance, four appointed by the Bank of Spain, and five designated by the associations representing the credit institutions.
Types of Deposits, Depositors, and Limits
The Fund covers:
In addition, the Fund also covers the following types of deposits, regardless of their amount, during the three months after the funds have been credited or the deposits have become legally transferable:
These guarantees apply per single depositor, whether they are private individuals or legal entities, regardless of the number and class of monetary deposits they hold with the same credit institution. This limit also applies to depositors holding deposits exceeding the maximum guaranteed amount (EUR100,000, or its equivalent in another currency).
Depositors Excluded from the Coverage
However, not all legal entities qualify as depositors eligible for the guarantee, since the FGD regime excludes, among others, the following from its coverage:
All Spanish credit institutions are mandatory members of the Fund, as are branches in Spain of non-EU credit institutions provided their deposits are not covered by similar regulations in their home country.
The FGD is funded in the following ways:
In any case, if the Fund’s assets are insufficient enough to affect its ability to carry out its functions, it will take the necessary actions to restore them.
Additionally, the deposit guarantee compartment of the Fund may be fed by the payment commitments of the member institutions, provided that such commitments:
Royal Decree-Law 16/2011 specifies the sanctioning regime with penalties for those entities not complying with their Fund obligations.
In Spain, there is no specific law regulating bank secrecy. The concept of bank secrecy is less specific in Spain than in other jurisdictions or countries where taxation is lower. Nevertheless, the requirements applicable to this concept are extracted from several laws.
The Spanish Constitution and the Civil Code
The Spanish Constitution guarantees the right to honour, personal and family privacy, and self-image. Therefore, banks must protect the honour, privacy, and image of individuals.
Similarly, the Civil Code establishes due diligence obligations in contractual relationships.
Consequently, as one of their tasks, bank employees and even the bank itself have the obligation to keep their clients’ banking information confidential under their existing contractual relationship.
In addition to the above, credit institutions are required to comply with the requirements of Law 10/2014, which foresees the duty of reservation (commonly referred to as the “secrecy duty”) regarding their clients’ information.
Relationships and Information within Bank Secrecy
According to Law 10/2014, credit institutions must comply with the duty of secrecy regarding all financial client information, including their balances, positions and transactions. This information cannot therefore be communicated to third parties nor disclosed in any way.
Additionally, under Regulation 2016/679 on data protection (GDPR), credit institutions will include their clients’ personal data in the scope of the bank’s secrecy requirements. Data processors and controllers will also implement measures to ensure that data processing complies with regulations. To that end, Organic Law 3/2018 of 5th December, on Personal Data Protection and Guarantee of Digital Rights, establishes that credit institutions must consider, among others, the risk of losing confidential client data to determine if they need to perform the impact assessment under GDPR.
Credit institutions will provide information requested by competent national authorities, such as the Bank of Spain, the CNMV, or the DGSFP, enabling these authorities to carry out their supervisory activities. Specific disclosures of information are foreseen in different regulations, such as the following:
Royal Decree of 14 September 1982 enacting the Criminal Prosecution Law
This law foresees a general exception whereby any person who is aware of a crime because of his or her position, function, or profession is obliged to report it immediately to the Public Prosecutor's Office, the competent court, the investigating judge, or the police in the case of flagrant crimes.
Information may be disclosed:
Organic Law 3/2018 sets forth that the Data Protection Officer will have access to the personal data even if the data is covered under professional secrecy.
Exchanges of information are also exempt from the duty of secrecy between credit institutions belonging to the same consolidated group, according to Law 10/2014.
Organic Law 6/1985 of 1st July, on Judicial Power
This law regulates the obligation of all individual persons and public and private entities to collaborate during judicial processes as required by the courts and tribunals, with the exceptions foreseen by law. In this respect, the Criminal Prosecution Act establishes the following exceptions to providing testimony in the judicial process:
Common Reporting Standard (CRS) and Foreign Account Tax Compliance Act (FATCA)
CRS is the approved model for members of the Organisation for Economic Co-operation and Development (OECD), and it allows the automatic exchange of financial information between countries for tax purposes. This exchange permits tax administrations of member countries to periodically have tax information on the investments or positions of their taxpayers in financial entities located abroad.
Similarly, FATCA covers a similar data exchange with the Internal Revenue Service of the United States.
Any breach of the duty of secrecy is considered severe, punishable by a fine under Law 10/2014.
Also, aside from disciplinary consequences for the employee, a breach could result in investigations into the liability of both the employee towards the entity, and of the entity towards the client as part of the contractual relationship.
The global frame of reference in the field of banking supervision in Spain is embodied in Basel III, which establishes measures related to risk management, governance, transparency, capital, liquidity and excess leverage.
Basel III has been incorporated into the European Union regulation through:
This Directive focuses on the access requirements for the activity of credit institutions, the principles of prudential supervision, review processes and capital buffers.
CRR contains the obligations related to own funds and capital requirements, as well as the definitions and requirements on liquidity and leverage. It also contains information disclosure requirements.
Both obligations entered into force on 1 January 2014. These regulations are further detailed in secondary regulations which, in most cases, are developed by the European Banking Authority (EBA).
Incorporation into National Legislation
The most notable consequence of the implementation of the RDL 14/2013 is the allowance of certain tax assets to be computed as capital, as is done in other EU Member States.
Lastly, the aforementioned Spanish regulations are currently undergoing a parliamentary process which will amend and align them with the new European requirements (May 2019 amendments).
Objectives of the Regulatory Framework
The fundamental objective is to ensure that entities have sufficient capacity to face unexpected losses as a result of their activity. Therefore, the framework focuses mainly on three aspects:
Measures Applied to Achieve the Objectives
Modification of minimum capital requirements, including the following
Definition of capital buffers
Regulation determines certain buffer tiers and establishes that institutions which (i) do not meet the combined buffer requirements or (ii) distribute CET1, implying reduction to a level where the combined requirement is no longer respected, must calculate the maximum distributable amount of profits.
The minimum requirement is 3%, to which 50% of the global systemic entity buffer is added for these entities.
These capital requirements, which determine whether a credit institution can access banking activities, are complemented by additional requirements imposed by the supervisor.
This additional capital requirement (or “supervisory capital”) is specific to each entity as a result of the supervisory review and evaluation process (SREP). The SREP includes a global assessment of the strategies, processes, and risks of credit institutions, and adopts a one-year and three-year vision to determine the amount of capital and liquidity that each institution needs to cover the risks/obligations assumed in a standard scenario; specifically in a sufficiently probable adverse scenario.
Once the SREP has been carried out, the supervisor will notify each entity of its solvency requirements, as summarised below.
The TSCR, together with the combined capital buffer requirements, form the overall capital requirements (OCR). This “supervisory capital” is obtained by including P2G in the OCR.
Liquidity Risk Management
The following two new indicators have been created to monitor liquidity risk.
Liquidity coverage ratio (LCR)
Institutions are required to hold high-quality liquid assets on their financial statement that can, in crisis situations, be quickly liquidated without significantly affecting the value of the company. The exact components of the LCR are published in Delegated Regulation (EU) 2015/61.
Net stable financing ratio (NSFR)
The NSFR promotes the use of long-term assets covering long-lived assets. Definition is still pending development by the EBA.
A minimum level of 100% is required for both ratios.
The insolvency, recovery, and resolution of banks are regulated by Law 11/2015 of 18 June 2015 on the recovery and resolution of credit institutions and investment firms (“Law 11/2015”) and its implementing Royal Decree 1012/2015 of 6 November 2015.
They incorporate European regulations, such as the Bank Recovery and Resolution Directive (BRRD) and the Single Resolution Mechanism Regulations (SRM), into Spanish law.
Principal Means of Resolution
Under this legal framework, Spanish regulation holds a model that distinguishes between two functions:
Along with the resolution strategy, the principal means of resolving a failing bank are:
A bridge entity is a public limited company controlled by the FROB in which it may hold a stake, as well as any other authority or public financing mechanism. The ultimate purpose of the bridge entity is the sale of the bank in question to a third party within the specific period stipulated by the regulations.
Implementation of FSB Key Attributes of Effective Resolution Regimes (FSB keys report)
Spain has implemented the FSB Key Attributes, as they are closely aligned with the European regulations that have been incorporated into Spanish law.
More specifically, the main objectives and principles of the FSB Key Attributes are established in the Spanish resolution scheme, as follows:
Applicable Rules for Deposits
In relation to the insolvency preference rules applicable to deposits, Spain relies on the Deposit Guarantee Fund for Credit Institutions (Fondo de Garantía de Depósitos de Entidades de Crédito); a private institution in charge of deposit guarantees of up to EUR100,000 per depositor and credit institution.
In this context, Law 11/2015 grants maximum preferential treatment in the hierarchy of creditors to deposits guaranteed by the Deposit Guarantee Fund for Credit Institutions, and a general privilege to all deposits from SMEs and natural persons.
Banks suffer from great regulatory pressure due to a wide range of regulations, both specific to their activities and cross-regulations, such as AML or consumer protection laws. Although the regulatory framework is mostly determined at an EU level, banks must also consider local requirements.
Regulatory requirements have increased since the financial crisis of 2008. Today, European and Spanish legislators are focused on:
In this context, the analysis of regulatory requirements applicable to banks must consider the fact that banks provide investment services, significantly expanding the number of regulations under assessment.
Given the foregoing, the authors have highlighted the upcoming regulatory challenges that banks will face in different areas, summarising the main impacts of each one.
Prudential and Governance Requirements
The modifications to CRD IV and CRR introduced by Directive 2019/878 (CRD V) and Regulation 2019/876, respectively, aim to harmonise the interpretations of certain aspects regulated under CRD IV and adapt the framework to the international standards developed by the Basel Committee on Banking Supervision (BCBS).
In the short term, banks will need to:
MiFID II and Environmental Social and Governance (ESG) Initiatives
Banks have already implemented major changes to adapt to Directive 2014/65/EU of the European Parliament and of the Council of 15 May 2014, on markets in financial instruments (MiFID II) introduced in 2018, which were already challenging, especially those related to inducements, research, transparency, costs and charges, and product governance obligations.
The European Commission has reviewed the impact on the industry linked to MiFID II requirements to:
Additionally, the European Commission has proposed certain urgent amendments (also known as quick fixes) to mitigate the administrative burden and support the economy due to the impact of COVID-19.
The proposal to amend MiFID II includes several modifications that will impact banks’ existing processes and models. These include:
The date on which the proposed urgent modifications will apply has yet to be determined. However, it seems likely that it will be 31 December 2020.
MiFID II review
In addition to these quick fixes, the European Commission is assessing the effectiveness of MiFID II obligations, especially those related to inducements, research, product governance and others concerning minimum records.
These will also directly impact existing processes and business models adapted to comply with the incentives regime and the prohibitions set out under regulation (stricter in Spain after implementation). Amendments to the requirements concerning minimum records will also affect internal systems, databases, and even agreements with third-party providers.
These aspects will need to be reviewed by investment firms to achieve an effective administrative cost reduction.
In addition to the MiFID II review, banks will need to assess the impact of the European Commission Action Plan on financing sustainable growth, which sets forth several legislative initiatives that, among other actions, will require affected credit institutions to determine their strategic positioning around ESG obligations. Credit institutions must decide whether to embrace the change to a green EU economy and provide support at the outset, ahead of their competitors. However, regardless of positioning or strategy, affected entities will need to adapt to the new obligations, some of which are summarised below.
Challenges and opportunities
On the one hand, the proposed MiFID II amendments should simplify the provision of investment services by banks and investment firms. On the other hand, ESG initiatives affect several aspects of financial institutions and implement new requirements. However, both MiFID II updates and the new ESG framework could be a great opportunity for these companies:
Capital Markets Union (CMU): European Commission Action Plan
It is also worth noting the European Commission CMU Action Plan since, it could be said, it entails actions that would impact the regulatory framework of financial institutions, among others.
The objective of this Action Plan is to:
Some of the most relevant steps for financial institutions are:
Upcoming Spanish Initiatives to Be Considered by Banks
In addition to the amendments of existing regulations and the new regulatory requirements under European regulations described above, banks must monitor Spanish legislative initiatives. These include the following:
The Spanish Financial Transaction Tax Law
The Spanish financial transaction tax law will be applicable as of 15 January 2020.
Although the purchaser of the securities is the taxpayer, in general, the financial intermediary who transmits or executes the acquisition order is affected by the purchase. Therefore, banks will need to review their processes to ensure they identify the transactions and the clients subject to taxation.
Implementation of the Fifth AML/CTF Directive
Banks will also be impacted by some of the new aspects regulated by the Directive 2018/843 of the European Parliament and of the Council of 30 May 2018, amending Directive (EU) 2015/849 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing (Fifth AML/CTF Directive).
The implementation of the Fifth AML/CTF Directive in Spain is currently in the parliamentary phase, although the implementation deadline ended on 10 January 2020.
Obliged entities, including credit institutions, will need to consider both certain changes introduced by this Directive and the proposed amendments to Spanish Law 10/2010. Aspects subject to change include:
Implementation of Directive 2017/828 as regards the encouragement of long-term shareholder engagement (SRD II)
SRD II is designed to encourage long-term shareholders and enhance transparency between investors and companies. This Directive, in the process of being implemented in Spain, will affect banks because they often serve as intermediaries.
According to SRD II, intermediaries will be required, in some cases and upon request from a company, to provide the company with information regarding shareholder identity. SRD II also establishes the obligation of intermediaries to publish their applicable service rates on their websites, to facilitate the exercise or delegation of the rights of representation and voting.
Furthermore, SRD II imposes transparency obligations on institutional investors and asset managers, regarding the extent to which investments are made in shares traded on a regulated market.
A policy of SRD II requires entities to disclose shareholder engagement, describing how shareholder engagement is integrated into their investment strategy. This policy looks to disclose how an entity does the following:
Additionally, institutional investors and asset managers are required to publicly disclose, on an annual basis, how their engagement policy is implemented. This must include a general description of voting behaviour, an explanation of the most significant votes, and the use of proxy adviser services. Such disclosures may exclude votes that are insignificant due to the subject matter of the vote or the size of the holding in the company.
The proposed law regarding the encouragement of long-term shareholder engagement (which will implement SRD II) will enter into force 20 days following its publication in the Spanish Official State Gazette.
Requirements applicable to advertising banking and investment products and services
In 2020, banks will need to take into consideration updates to the rules governing the advertisement of banking and investment services and products. The Spanish rules, currently comprising the regulatory framework, are the following:
Bank of Spain Circular 4/2020 on advertising banking products and services (“Circular 4/2020”)
This Circular introduced several modifications to the previous advertising regime. For example, it now includes payment services and foreign entities that carry out commercial activities in Spanish territories though a branch, agent, or under the Freedom to Provide Services regime. It also extends the definition of advertising to that performed on the internet, mobile devices (banners, buttons and pop-ups), social media or direct advertising (letters, emails and coupons).
Finally, it establishes the need to implement a commercial communications policy (to be approved by the management body), and create and maintain an internal registry of commercial activities.
Though most of the requirements are applicable from 15 October 2020, financial entities will need to create the internal registry six months after the technical specifications are published by the Bank of Spain.
Proposed Circular from the CNMV Regarding Requirements for Advertising Investment Products and Services
The proposed Circular will enter into force three months after its publication in the Spanish Official State Gazette.
Overall, it is consistent with the definitions, message and format previously established in Circular 4/2020, continuing to set forth the obligation to maintain an internal registry. However, its scope varies in that it now applies to all products, services, and activities under CNMV supervision and to all entities supervised by the CNMV.
The regulatory framework is vast, complex, interconnected and ever-changing. This increases regulatory and reputational risk.
Consequently, banks must ensure that their internal control systems and governance frameworks are reviewed frequently and that synergies are in place to ensure the entity complies in an efficient, proportionate, and safe manner.