If you aim to operate a regulated Investment Firm in Cyprus, you need to apply to CySEC and obtain the relevant license. In a continuously changing regulatory environment, you need to identify whether a license is needed and to set up your operations in the best possible way, thus saving time and money in the process of obtaining the relevant license.
We can help you:
Markets in Financial Instruments Directive II (“MiFID II”) and Markets in Financial Instruments Regulation (MiFIR)
The Market in Financial Instruments Directive (“MiFID” or the “Directive”) officially took effect on 1 November 2007. The Directive’s aim was to integrate the European Union’s financial markets and to increase the amount of cross border investment activities. The financial crisis of 2008 highlighted existing problems and led to the decision of the European Commission to revise MiFID. As a result, MiFID II/MiFIR have entered into force on 3rd January 2018, and are expected to significantly affect entities providing investment services.
We can help you:
Capital Requirements Directive IV (“CRD IV”) Package
The successful creation of a single rule book for European credit institutions and investment firms resulted in the CRD IV package, which consists of the Capital Requirements Regulation (“CRR”), which is adopted directly by the EU Member States, and the Capital Requirements Directive (“CRD”), which has been transposed into national law by credit institutions and investment firms regulators across Europe.
The CRD IV rules promote a robust capital and liquidity framework through strict requirements. These pose challenges for credit institutions and investment firms alike and raise questions on the efficient use of capital and liquidity resources. CRD IV also focuses on rules relating to corporate governance, including remuneration, as well as specifications regarding standardised EU regulatory reporting.
Since the introduction of CRD IV, the Basel Committee on Banking Supervision has been working on a new set of requirements, commonly referred to as “Basel IV”, which may have a significant impact on the way that investment firms operate as well as on the size of their Risk Weighted Assets.
We can help you:
Foreign Account Tax Compliance Act (“FATCA”)
The Foreign Account Tax Compliance Act (‘‘FATCA’’) is a US tax legislation which was enacted as part of the Hiring Incentives to Restore Employment (“HIRE”) Act in March 2010 to prevent and detect US tax evasion and improve taxpayer compliance. FATCA is focused on strengthening information reporting and withholding compliance with respect to US persons that invest through, or in, non-US entities, such as Cyprus resident financial institutions.
All investment firms in Cyprus are affected by FATCA, irrespective of whether they have US clients. The penalties of non-compliance are significant and include a 30% withholding tax on any incoming payments relating to US-sourced income. In addition, failure to comply with FATCA may involve legal and reputational issues which could disrupt business relationships with other financial institutions which are FATCA compliant (e.g. counterparties) and lead to loss of business.
We can help you:
OECD Common Reporting Standard (“CRS”)
In February 2014, the Organization for Economic Cooperation and Development (“OECD”), released a global standard for the automatic exchange of financial account information, which involves the systematic and periodic transmission of ‘bulk’ taxpayer information.
Similar to the provisions of FATCA, the OECD Common Reporting Standard imposes obligations on financial institutions (“FIs”) to review and collect information in an effort to identify an account holder’s country of residence and then in turn, to provide certain specified account information to the home country’s tax administration.
Most financial institutions in Cyprus, including Cyprus Investment Firms, are affected by CRS, which involves significant complexity compared to FATCA and which fundamentally changes an FI’s way of doing international business both from a strategic and an operational point of view. Therefore, designing effective due diligence through smart and strategic alignment with AML/KYC processes is key for a successful CRS project.
CRS enforcement is achieved through the imposition of penalties under local legislation as well as compliance activities carried out by the relevant local authorities. Non-compliance may also result in indirect costs from disruption of business relationships and reputational risk.
We can help you:
European Market Infrastructure Regulation (“EMIR”)
In 2009, the G20 group of nations agreed on a set of Over the Counter (‘‘OTC’’) market reforms designed to reduce systematic risks and to improve market transparency. The European Market
Infrastructure Regulation, Regulation (EU) No 648/2012, which came into force on 16 August 2012, brought a number of reforms in the regulation of the global OTC derivatives market. Derivative contracts are traded on exchanges or electronic platforms, cleared through central counter parties (‘‘CCPs’’), reported to trade repositories (‘‘TRs’’) and are subject to capital or other requirements to reflect the risk of transactions. As such, all Investment Firms engaging in derivative transactions are affected by EMIR.
More specifically, EMIR introduced clearing, transaction reporting and significant risk management procedures for firms that are subject to EMIR requirements (“firms”), as well as a pan-European regulatory regime for CCPs and TRs. Risk management requirements were phased- in from 15 March 2013, whereas reporting requirements, which have affected a significant number of firms, came into force on 12 February 2014. Clearing obligations for specific asset classes have also come into force and further obligations will be phased-in depending on a firm’s clearing classification category.
We can help you:
Anti-Money Laundering (“AML”) and Combating the Financing of Terrorism
The fight to deter money laundering and terrorist financing has been a high priority of law enforcement agencies and financial regulators around the globe. Laws and regulations become more demanding aiming to provide a stronger framework to address new threats to the international financial system.
To successfully follow a risk-based approach, institutions need to perform thorough and regular AML risk assessments and implement adequate controls to mitigate their risks. Know-Your Customer (“KYC”) specific procedures, including enhanced due diligence for high risk customers remain a critical requirement. Boards and senior management are increasingly seeking to build integrated, risk-based and efficient AML compliance control programmes.
Not only are institutions concerned about avoiding enforcement actions or remedying weaknesses and failures, but many are learning that by treating these initiatives as long-term investments, they can capitalize on potential opportunities.
We can help you:
Today more than ever Boards of Directors are facing ongoing pressure from stakeholders to mitigate risk yet drive business performance. Internal Audit plays a critical role in regulated entities by providing objective assurance that protects the business against risk, supports strategic decision making and improves regulatory compliance.
However, for an organisation’s internal audit function to provide value, it needs to be equipped with the right tools, technology and know-how. Also an organisation needs to balance the costs and benefits from having the internal audit function in-house or cosourced/outsourced.
We can help you:
In June 2014, the European Parliament and Council approved the Bank Recovery and Resolution Directive (“BRRD”), Directive 2014/59/EU. This important piece of legislation sets a common framework across all 28 countries of the European Union on how to deal with troubled financial institutions. In March 2016, the BRRD was transposed to national law and published in the Official Gazette of the Republic (“the Law”).
The investment firms impacted by the Law will have to prepare and submit Recovery Plans to CySEC, setting out the actions to be taken to restore their financial position in case of significant deterioration of their financial situation. Following the submission of the Recovery Plans, CySEC will be responsible for their assessment, evaluation and approval.
In summary, the main areas which should be included in a Recovery Plan include strategic analysis, recovery plan indicators, scenarios and stress testing, recovery options as well as a governance and communication plan. It is noted that, as per the Law, CySEC will have the power to apply simplified recovery planning obligations to investment firms that meet certain criteria.
We can help you: