Key points
- We review several areas as part of our assessment of a new bank application.
- We assess each firm on a case-by-case basis and each aspect of our assessment is subject to supervisory judgement.
- We aim to be proportionate in the requirements for new banks in order to facilitate greater competition, in line with our competition objective.
- We have outlined here some of our key regulatory expectations but firms are responsible for considering in detail and complying with all the applicable laws, rules and regulatory policies.
This page sets out our key regulatory expectations of firms in the areas we review as part of our assessment of a new bank application, including how these expectations evolve throughout the authorisation process.
We assess each firm on a case-by-case basis and each aspect of our assessment is subject to supervisory judgement.
We aim to be proportionate in the requirements for new banks in order to facilitate greater competition, in line with our competition objective. As such, our expectations are proportionate to the nature, size and complexity of new banks.
We consider the information provided to be good practice for all new banks and, in setting out our expectations, we encourage firms to consider how they will address them as part of their new bank propositions and documentation. However, the information provided here should not be considered to be a comprehensive list and may not be wholly applicable to some firms (for example our expectations of subsidiaries and branches of international firms differ in some areas).footnote [1]
Firms should note that, while these pages have been developed as a reference tool for firms and covers a number of key supervisory topics, they should not be treated as a comprehensive summary of all relevant laws, rules and regulatory policies (collectively, ‘Regulations’) applicable to newly authorised banks. Firms are responsible for considering in detail the relevant Regulations and ensuring that they understand and can fully comply with these.
Figure 1: New bank application assessment
The areas assessed as part of a new bank application:
Footnotes
- (a) If you require further information please speak to your FCA Case Officer.
Governance (including Senior Management and Certification Regime) assessments
Key points
- Effective governance arrangements, the right tone from the top and a culture of risk awareness are key for the long-term success of the business.
- It all starts with a strong and well-functioning board, which sets the business strategy and risk appetite and provides effective leadership.
- Boards should have appropriate composition, balance, independence as well as knowledge, skills and experience.
- Boards should have appropriate conflicts of interest management procedures, adequate MI and appropriate succession plans.
Why is this topic important?
Having the proper governance arrangements and practices is crucial for the long-term performance and sustainability of the firm. Ineffective governance is often an early indicator of risks to the safety and soundness of a firm and can be the root cause of firm failure. Firms with inadequate governance can often fail to identify emerging issues that could result in a major adverse impact.
Effective governance arrangements ensure that all areas of the firm are well controlled and are subject to the appropriate oversight and independent challenge. It all starts with the board – a strong and well-functioning board is central to good governance – and this in turn requires a strong board chair as well as knowledgeable and competent executive and non-executive directors (NEDs).
Expectations
Our rules require firms to have robust and comprehensive governance arrangements, which reflect the nature, scale and complexity of the risks inherent in their business models and activities. For new banks, the board has a pivotal role in ensuring that the bank is able to grow in a sustainable way and that they have the ability to exit the market in an orderly manner, if required.
SS5/16 Corporate governance: Board responsibilities sets out our expectations in that regard. In SS5/16 we highlight our expectations of firms to consider all the necessary sources of information and guidance on corporate governance when they are building their governance arrangements. Some aspects that we highlight include:
- Role of the board: The role of the board is to develop the business strategy and provide effective governance and leadership. It should identify the risks inherent in that strategy and develop the necessary mitigants to take on those risks and achieve the strategy. It should ensure that the firm is supported by appropriate governance arrangements as well as a robust risk management framework, so that the strategy is delivered in a well-governed and controlled manner.
- Board composition: The board needs the appropriate composition of directors to create a solid base for effective governance, well-informed decision-making and strategy setting. The composition of the board should be appropriate to the nature and size of the firm and should be reviewed (and refreshed) regularly to ensure that it remains appropriate as the firm changes and as the economy and market place evolve. For example, the board composition may need to change as the firm grows, to include a greater number of independent directors with sufficient diversity of specialisms to support both the growing firm and the executives. We encourage firms to consider the necessary provisions of General Organisational Requirements 2 and 5 as part of the PRA Rulebook as well as the Senior Management Arrangements Requirements as part of the FCA Handbook.
- Balance: The board needs an appropriate balance of executive and independent non-executive directors (iNEDs) so that no individual director has undue influence over the board’s decision-making and wider operations. INEDs should ensure that there is appropriate oversight and independent challenge of the executives and senior management.
- Independence: The board should be sufficiently independent to ensure that it can provide effective challenge to the executives and senior management. The minimum expectation at authorisation for new banks, who use the mobilisation route, is to have the chief executive officer (CEO), the chief finance officer (CFO) as well as the board chair. However, upon exiting mobilisation (or if authorised without using mobilisation), they need to have a fully functioning executive team and board. It is established good practice for new banks to have two iNEDs in place at this point.
- Appropriate knowledge, skills and experience: The board should possess adequate collective knowledge, skills and experience to understand the business model and its inherent risks and to be able to set the business strategy. This is critical in order for the board to proactively identify and address potential weaknesses in the business model or control environment, demonstrating self-awareness and willingness to tackle issues early on.
- Individual fitness and propriety: Under the Conduct Rules and other parts of the PRA Rulebook and FCA Handbook, all board directors, have a binding obligation to:
- act with honesty, integrity and independence of mind;
- act with due skill, care and diligence; and
- be open and co-operative with the PRA, FCA and other regulators and bring to their attention any information of which they would reasonably expect notice.
- Long-term success of the firm: The board should promote the long-term interests of the firm and all stakeholders. This should not be limited to value creation but should also consider aspects such as diversity and protecting the environment.
- Culture: The board should set the appropriate tone and culture from the top and ensure that this is cascaded and embedded throughout the firm. It should articulate, embed and maintain a culture of risk awareness and ethical behaviour for the entire firm to follow in pursuit of their business goals. It should ensure that the strategy and culture are aligned and act by example to promote that culture.
- Effective leadership: The board should ensure that the necessary financial and non-financial resources are available to facilitate the delivery of the business strategy. In addition, the board should establish a framework of risk management and controls together with the relevant policies, processes and procedures to ensure that the business strategy is delivered in a well-governed and controlled manner. Transparency, openness and debate as well as contributions from all directors should be promoted throughout – by ensuring clear and thorough documentation and appropriate board sign-off(s) where applicable.
- Remuneration: The board should ensure that the firm establishes and maintains remuneration policies and procedures, which are consistent with and promote sound and effective risk management and do not encourage risk-taking that exceeds the level of risk tolerated by the firm. In addition, those policies and procedures should be in line with the business strategy, objectives, values and long-term interests of the firm. They need to avoid conflicts of interest, be well-documented and subject to independent annual reviews.
How expectations evolve through the different stages of the authorisation process:
Pre-application
- At the start of the journey to progress an idea into a business, firms often have one or two key individuals in place who run the firm.
- As firms progress through their pre-application engagement with us, and in particular by the time of the feedback stage, they should have in place definitive plans in terms of building their boards and senior management teams.
- By the time of the technical challenge stage, firms should have recruited the key individuals for their boards and senior management teams. This will ensure that those key individuals are in place and contribute to the development of the business proposition.
- Firms should consider the board composition as a whole, the relevant committee structures that will support it and any other governance arrangements that need to be put in place, including having the necessary terms of reference, policies, and procedures.
Upon authorisation of a new bank and beyond
- All new banks should have fully functioning and effective boards. Minimum expectations at authorisation:
- Upon entry into mobilisation – CEO, CFO and board chair (with our very strong preference for an independent board chair).
- If authorised without mobilisation or upon exiting from mobilisation – fully functioning executive team and board. It is established good practice for new banks to have two iNEDs in place at this point.
- We encourage new banks to strengthen their governance arrangements, increase the independence of their boards as they mature, and have a clear and detailed plan for how this will be achieved. This plan will need to be updated as the firm grows with regular reviews of the skills and composition of their boards to ensure that they remain appropriate for the growing and changing firm.
- We encourage new banks to move towards board independence – by year three of their planning horizon to have a minimum of three iNEDs (including the board chair) and by year five to meet best practice including, dependent on size and complexity, having a majority independent board.
- Formal board evaluations should be undertaken on an annual basis. This should be led by the board chair and should consider the board’s composition, diversity and effectiveness – from both a collective and an individual director’s perspective. The board chair should then ensure that any remedial actions following that evaluation are completed in a timely and effective manner.
- We encourage new banks to develop and maintain robust succession plans for all board members and senior management, recognising that the individuals who have the skills to launch and build the firm in the early years may not be best suited to lead the firm as it grows.
- As part of the Senior Management and Certifications Regime (SM&CR) and through our governance assessments, we will scrutinise and hold to account all individuals that apply to become Senior Management Function (SMF) holders including those from the wider group and any shareholder directors.
Common challenges
We encourage firms to consider how they will ensure that their proposed governance arrangements sufficiently address the below points:
- Effective management of any conflicts of interest: firms are encouraged to identify any potential conflicts of interest and ensure that they are managed effectively through a robust conflicts of interest policy and other governance arrangements:
- Executive directors (EDs):
- EDs are often significant shareholders (for example they are the founders of the firm) or might have been appointed or nominated by a significant shareholder.
- This can create a significant conflict of interest. For instance, EDs who are also significant shareholders can be highly influential and may have a personal incentive in the firm pursuing certain actions or strategies (in particular, rapid, short-term growth and increased risk taking). This can lead to poorer outcomes for the firm.
- Independence of mind is a requirement for all directors who should make their own sound, objective and independent decisions and judgements.
- Firms can have shareholder directors but they should implement appropriate measures to identify, monitor and manage potential conflicts of interest or other challenges that can arise because of their circumstances.
- Non-executive directors (NEDs):
- NEDs may have a shareholding in the firm – this may not be as large as the shareholdings held by the EDs (for example the founders of the firm) but it is often material enough to create a significant conflict of interest.
- While it is not against the PRA rules for iNEDs to have de-minimis shareholdings in the firm, we have a strong preference that the iNEDs (including the board chair) do not hold a significant amount of shares in order to prevent any conflicts of interest and to ensure that they are truly independent. This is because, having an investment in the firm, may impact their judgement and their decision making may be influenced by their own personal interests as opposed to those of the firm and the remaining stakeholders. Where iNEDs have de-minimis shareholdings in the firm, the firm should consider what additional measures they would need to put in place to identify and manage any conflicts of interest.
- Any shareholdings held by iNEDs must be de-minimis from the perspective of both the iNED (ie their personal wealth) and the firm (ie the total shares issued). We will consider the combined shareholding of the iNED and their connected parties (for example their spouses) (if applicable) as part of that analysis. This ensures that any iNEDs who may hold shares remain independent and do not have undue influence at the board.
- In addition, iNEDs are not allowed to hold any share options as our remuneration rules prevent variable remuneration for iNEDs.
- Executive directors (EDs):
- Recruiting suitable individuals: We encourage firms to ensure that their boards and senior management have the adequate skills and experience to effectively oversee their firms.
- Senior Management Function (SMF) applications for individuals should clearly state why the firm consider these individuals to be suitable for the roles for which they have been selected.
- We encourage firms to demonstrate that they have gone through a robust and fair recruitment process and appointed individuals based on the skills and capability required to deliver the business proposal and strategy. Evidence to that effect should be submitted alongside the formal SMF applications. This evidence should capture how the board and senior management have reached the conclusion that individuals have the relevant skills/experience for the role in question and how they plan to address any gaps in their knowledge and the timeframes for that – this could include formal training and development plans.
- The board and senior management should ensure that they have satisfied themselves that the individuals recruited are appropriate, not just on an individual basis, but that they will also be a good fit for the board or senior management team. Having formal recruitment processes and using skills matrices can significantly help with that. Skills matrices, for example, can be used to assess the collective knowledge, skills and experience of boards or senior management teams. They are also valuable tools for nomination, training and succession planning purposes. Evidence of the use of skills matrices should be submitted alongside the formal SMF applications.
- Appropriate management information (MI) for the board: MI should highlight the key information necessary for the board and not be too lengthy or missing essential information. Good quality MI is essential, as the quality of the decision-making made by the board will, to a large degree, be driven by the information that they receive and on which they base those decisions. Firms should consider how to build and develop their MI so that it is timely, relevant, and accurate, and highlights the most important items for the board’s discussion. MI should be reviewed and improved on an ongoing basis.
- Appropriate structure to support the board: We encourage firms to design and build an appropriate structure of committees that support the board in its day-to-day operations and decision-making. These may include the Board Risk and Audit Committees as well as the Board Remuneration and Nominations Committees.
- Small, non-systemic firms are not explicitly required to establish separate Board Risk and Audit Committees. However, it is good practice and firms often choose to have those as separate committees. In those instances, firms sometimes propose that the same iNED chairs both their Audit and Risk Committees. This, however, can create conflicts of interest and is not our preferred approach. As such, where a firm choose to have separate Board Risk and Audit Committees, each committee should chaired by a separate iNED; and
- Similarly, firms sometimes propose that their board chair also chairs some of their other board committees. This can create a conflict. We generally discourage the board chair from chairing any sub-board committees with the exception of the Nominations Committee.
- Succession plans: Firms should have appropriate succession plans in place, especially for the key roles on their boards and for their senior management teams. There is a significant risk for the firm should any of the key individuals no longer be available, especially if this is without any prior notice. We encourage firms to consider building robust and effective succession plans which promotes personal strength and diversity. This could be led by a separate Board Nominations Committee.
Resource links
- The General Organisational Requirements Sections of the PRA Rulebook – This includes rules on: (i) whistleblowing; (ii) the individuals who direct the firm; (iii) responsibilities of senior staff; and (iv) the management body etc. Please note that this is not an extensive list but just a few examples of what the rules include.
- SS5/16 Corporate governance: Board responsibilities – This document sets out our key expectations with regards to some particular areas of corporate governance. It should be read in addition to more general guidelines on corporate governance such as the UK Corporate Governance Code.
- The Strengthening accountability section of the PRA’s website and the Senior Managers and Certification Regime (SM&CR) sections of the FCA’s website – These comprise a mix of statutory provisions, PRA/FCA rules and Supervisory Statements. Hence, it is crucial to understand and follow as these apply to all regulated firms. They aim to strengthen market confidence and integrity by making individuals accountable for their competences and conduct, and by setting a corporate culture where individuals take personal responsibility for their actions.
- The FCA’s Approach to Authorisation and feedback statement – This sets out the FCA’s approach to assessing applications for individuals under the SM&CR regime.
- The EBA guidelines on Internal governance – This is important to consider as it outlines key principles of good governance, including aspects such as: (i) organisational structures; (ii) risk management processes and mechanisms; (iii) remuneration policies; and (iv) outsourcing and suitability of key function holders.
- The EBA/ESMA guidelines on suitability – This is important to consider as it contains key guidance on assessment the suitability of members of the management body and key function holders.
- UK Corporate Governance Code – While the UK Corporate Governance Code only applies to listed firms and is not a binding financial regulatory resource, we consider it good practice for all firms to follow. As such, it is an essential source to understand and apply. It covers detailed aspects of best corporate governance practice, including the relationships between firms and their stakeholders, the importance of a corporate culture which is aligned with the firm’s purpose and strategy, and thorough policies and practices that promote transparency and trust.
Business model analysis
Key points
- The business model is one of the most important aspects of a firm’s proposition. It is set out in the firm’s Regulatory Business Plan (RBP).
- The level of detail that we expect to see in the firm’s business model analysis evolves through the authorisation journey.
- The business model should explain how the business will become profitable and self-sufficient and why this is plausible.
- The business model should include relevant market research and consideration of key risks to its delivery.
Why is this topic important?
The firm’s business model is one of the most important aspects of their proposition. Firms should set out their business models, in their regulatory business plans (RBPs), in sufficient and granular detail in order to explain why their proposed business models will be successful, ie viable (in the short term) and sustainable (in the longer term).
In terms of sustainability, it is important to understand over what timeframe the proposed business is expected to become profitable and self-sufficient so that it no longer requires external capital support, and why the firm consider this to be plausible.
Expectations
Below are some key questions firms should look to answer when developing their business models throughout their pre-application engagement with us, alongside some examples of how they may cover these questions.
The level of detail firms provide will need to develop and increase as they progress through the pre-application process:
- At the initial stage, this should focus on what they are going to do – what products and services they plan to offer, what markets and customers they plan to target, what their unique selling point is and why they want to become a bank.
- At the feedback stage, it should cover why there is demand for their products, how their business model fits within the wider market, and why their plans are realistic and achievable.
- At the technical challenge stage, this should cover the threats and vulnerabilities to their business plan and how they will react if things do not go to plan.
How expectations evolve through the different stages of the authorisation process:
Pre-application
What should firms be thinking about at each stage of the pre-application process?
Initial | Feedback | Technical challenge |
---|---|---|
What are you going to do? (Examples: What products and services will be offered and what will be the distribution channels used? Is there a unique selling point? What is the target market?) What is the rational for setting up a new bank? (Examples: Are there any other ways that may be more appropriate to deliver the business strategy than setting up a bank?) | Why is there demand for the chosen products and services? (Examples: market research/ surveys conducted which support the business plans.) How does the business model fit with the wider market? (Examples: Is the firm targeting an established area? Who will be the key competitors?) Are the business plans realistic? (Examples: Projections for balance sheet and income statement as well as key financial indicators/evidence of challenge of the assumptions.) | What are the threats that could throw the firm off course? (Examples: credit and operational risk profile of the business model/conduct risks that impact the firm’s viability.) How vulnerable is the firm to any unexpected shocks? (Examples: sensitivity analysis/consideration of downside risks included.) Corporate governance: board responsibilities (Examples: evidence of how the board has reviewed and challenged the proposed business model and projections and whether anything has been amended as a result of that challenge.) |
Upon authorisation of a new bank and beyond
- Changes to business model: New banks may need to make changes/amendments to their business models in response to changes in the macroeconomic and/or market environment that they operate in. Where this is necessary, new banks need to keep us informed of any material issues affecting their business plans, and inform us in advance of making any significant changes to those. They should ensure that they fully assess the risks of any change to their business plans and have suitable controls in place.
- Sustainability of the business model: New banks are often loss making initially and rely on external capital injections to keep the firm going and to maintain their capital adequacy. While this is common for new firms, it may not be sustainable over the longer term and creates a vulnerability to capital not being available when needed. Firms should therefore focus on reaching profitability and the ability to achieve organic capital generation within a reasonable time following authorisation, recognising that the longer they are unprofitable the more uncertainty there is about whether investor sentiment will remain positive. They should use their experience to refine and further develop their business plans and financial projections as they mature. They should ensure that they factor in the ongoing investments in their governance and controls into those financial projections.
- Path to profitability: By year three post-authorisation, new banks should refine their business models based on their experience so far, produce more accurate forecasts and have a credible strategy for a path to profitability. By year five post-authorisation, new banks should have settled business models. They should be either profitable or have a credible strategy for a path to profitability, with definitive capital support to achieve that and have realistic forecasts in place.
Common challenges
We encourage firms to consider how they will ensure that their business propositions and RBPs sufficiently address the below points:
- Aligning market research to the business model: Market research should be specific to the proposed business model and clearly draw out the conclusions on how the research supports the firm’s business proposition. We encourage firms to undertake targeted market research that is specific to their business models in order to demonstrate the potential for their propositions to be viable and sustainable. We encourage firms to include sufficient detail on their market research in their business plans to evidence what they have undertaken, how this has been reviewed and what conclusions they have reached.
- Overoptimistic financial forecasts: Profitability and balance sheet growth forecasts should be realistic. Overoptimistic forecasts raise questions over whether the forecasts have been subject to the necessary internal governance, scrutiny and challenge. Furthermore, overly optimistic projections place unrealistic expectations and pressure on firms and their management once authorised (if successful).
- Firms should take a prudent approach to profitability and balance sheet forecasting and should ensure that they have been appropriately challenged by their boards and senior management. Evidence to that effect should be captured in their business models.
- Firms should undertake some sensitivity analysis of their projections to ensure that they are: (i) realistic and achievable; and (ii) can adapt to unexpected stress events – for example, would the firm still break even if costs are higher than forecast and/or the firm suffers an expensive one-off set back. This analysis and its conclusions should also be included in the business model.
- Consideration of why the business proposition will be successful: Business propositions should adequately explain how the proposed business model fits within the wider market and why it will work. While firms do not necessarily need to have an unique selling point, it is important that they set out, in sufficient detail, why they think they will be able to attract customers based on their proposed business models (why there is space in the market for a new entrant) and how they will be able to achieve that.
- Consideration of key risks: Firms should include adequate detail of the key risks to the viability of their proposed business models – this could include not being able to raise the necessary capital to operate the firm until they break even and become profitable or suffering unexpected and/or higher costs. This is crucial to demonstrate that they have considered all the risks and will grow safely and soundly and without causing harm. We encourage firms to capture details on each inherent risk to their business model including why they consider it a risk and how they plan to mitigate it on an ongoing basis. We expect those risks to evolve as firms grow and develop. As such, the analysis of key risks should be reviewed and challenged on a regular basis.
Resource links
- The PRA’s approach to banking supervision – The pages relevant to business model are from page 13 onwards.
- Non-systemic UK banks: The Prudential Regulation Authority’s approach to new and growing banks – This outlines our expectations of new banks and how they evolve throughout the authorisation journey.
Risk management assessment
Key points
- Effective risk management and controls ensure that the business strategy is delivered in a well-governed and controlled manner and protects the interests of all stakeholders including the depositors.
- Having the appropriate risk culture, values and behaviours is essential in being able to identify emerging risks and minimise the likelihood of existing risks crystallising.
- The board and senior management are responsible for ensuring that an adequate risk management framework is in place, which is tailored to the nature, scale and complexity of the business and its risk profile.
- Firms need to ensure that their risk management frameworks and controls evolve in line with the business growth.
Why is this topic important?
- Effective risk management and controls ensure that the business strategy is delivered in a well-governed and controlled manner. They reduce the risk of any issues crystallising, which could potentially jeopardise the safety and soundness of the firm.
- Having the appropriate risk culture is paramount in ensuring that firms can identify emerging risks but also minimise the likelihood of any existing risks crystallising, in an ever-changing operating environment. Such a risk culture starts with the right tone from the top and should be cascaded down from the board and embedded in every level of the organisation.
- It is the responsibility of the board and senior management to ensure that firms have adequate internal control environments, which include not only the standards, processes and procedures to identify and manage risk but also the discipline to apply those standards at the relevant times. An effective internal control environment ensures that firms are risk aware and protects the interests of their stakeholders by ensuring that they have the appropriate values, ethos and behaviours in place. This in turn should be supported by the necessary compensation structures (ie compensation packages including bonuses should not encourage the pursuit of short term profits at the expense of prudent risk management), open reporting and clear accountability.
- Different business models have different risk profiles and as such, our expectations of a new bank’s internal control environment and risk management framework will vary depending on the type of business, its complexity and nature of risks to which the firm is exposed.
- Firms should also take into account our rules and expectations such as those relating to: (i) capital; (ii) liquidity; (iii) credit and operational risks; and (iv) outsourcing. Moreover, the risk management framework and controls should be reviewed on a regular basis and developed as needed especially in light of changes to the business model or growth in the business.
Expectations
The below figure demonstrates how effective risk management and controls start at the top and are cascaded down to every level of the organisation.
Figure 2: Risk management framework pyramid
- Effective risk management and controls start at the top and should be cascaded and embedded throughout the firm.
- The board sets the business strategy but also the risk appetite and culture within which to deliver that business strategy. The board and senior management team then ensure that firms have the adequate risk management frameworks and controls to support the delivery of the business strategy.
- Firms often adopt the three lines of defence model when designing their risk management framework and controls. In this framework, the business areas are the first line of defence, independent risk management units are the second line of defence, and internal audit is the third line of defence. If firms choose to adopt this model, then we expect the first line to effectively identify, measure, manage and report risks within limits. Monitoring activities are performed independently by the second line. This framework is subject to independent oversight and challenge from the third line of defence.
The below figure outlines the key components of a risk management framework.
Figure 3: Key components of a risk management framework
Risks identification:
- Firms should:
- ensure that they have sufficiently skilled individuals (including on their boards) to identify risks and assess the potential impact of those risks on the firm.
- design and then implement a risk management framework that is appropriate for the nature and complexity of their business model and the environment that they operate in.
- allocate sufficient resources to their risk functions so that they are able to adequately discharge their duties.
Risks measurement and monitoring:
- Firms should establish a prudent risk appetite, which is commensurate with the nature, scale and complexity of their business proposition, and measure and monitor their performance against that risk appetite on an ongoing basis.
- We encourage firms to develop a comprehensive set of indicators that covers all risks in their firm – this should comprise a complete spectrum of indicators (for example green, amber and red) and include at what point management/recovery actions or the solvent wind-down (SWD) plan will be triggered. This spectrum of high-level indicators should be developed by the senior management and approved by the board after it has been subject to the necessary review and challenge.
- We encourage firms to ensure that the high-level indicators are supported by lower-level metrics and robust processes and procedures for the monitoring of the metrics and any necessary escalation such as to the Board Risk Committee or to the board itself.
- Moreover, firms should avoid setting their risk indicators and triggers too close to the regulatory minimums – this is to ensure that they have sufficient time to react and adopt any management actions in a stress. In addition, the risk appetite and triggers should be integrated (as necessary) in all key documents of the firm including the RBP, Internal Capital Adequacy Assessment Process (ICAAP), Internal Liquidity Adequacy Assessment Process (ILAAP), recovery and SWD plans.
- We encourage firms to provide evidence to demonstrate that their risk appetites and associated metrics and trigger points have been subject to the appropriate internal governance processes including challenge and approval by their boards.
Risks management:
- We encourage firms to design the appropriate policies, processes and procedures to manage risks in an effective manner. It is essential that their boards and senior management are sufficiently involved in this and the management approach for any key risks is considered and approved by the board.
- As firms grow, their operational models will evolve and their risk management frameworks and controls should evolve in line with these changes – this will include the policies, processes and procedures to effectively manage any risks in the firm.
- We encourage firms to invest significantly in the development and ongoing maintenance of their risk management frameworks and controls such that they have a mature control environment typically five years after authorisation.
Reporting of risks:
- We encourage there to be clear ownership and accountability of the risk management framework so that risks are reported accurately, in a timely manner and in a way that is appropriate for the audience – for example, in comparison to the risk reports provided to Board Risk Committee the risk reports to the board will be more focused on the key priority risks and breaches.
- We encourage firms to ensure that their MI on risks is accurate, timely and relevant and is improved on an ongoing basis. As part of that, we encourage the board and its committees to specify the nature, source, format and frequency of the management information that they require to monitor and manage risk.
- We encourage both the board and senior management to have the necessary knowledge and skills in relation to risk management and to be able to explain, amongst other things:
- what the key risks are for the firm and how they are managed, including trigger points and the processes for escalation; and
- what the processes are for bringing any significant issues to the attention of the board in relation to any risks crystallising or any new risks emerging.
How expectations evolve through the different stages of the authorisation process:
Pre-application
- Initially, while firms are finalising their business models and associated risk management frameworks and controls, it will not be possible to fully define their risk environment. We expect that this will become clearer as firms progress through their pre-application engagement with us.
- By the time a firm is at the end of its pre-application engagement, we expect there to be a near complete risk management framework that identifies the key risks to their firm and is supported by a board approved risk appetite statement.
- When a new bank application is submitted, it should include a detailed risk management framework and supporting policies, processes and procedures, which clearly set out how the risks have been identified, and how they will be monitored, managed and reported on. This should include sufficient detail on the governance arrangements that will provide oversight and challenge to the framework.
Upon authorisation of a new bank and beyond
- At the time of authorisation, we would have assessed only the design of the risk management framework and controls based on the documentation that has been submitted. As the firm has only recently been launched and is becoming operational, the actual effectiveness of the risk management framework and controls is usually untested at this time.
- Development of the risk management framework needs to keep pace with the firm’s business ambitions. New banks should ensure that they regularly assess whether their controls remain fit for purpose in the context of changes to the business and whether there is a clear framework for risk identification, management, and mitigation.
- Such an assessment could comprise internal reviews, for example, led by the chief risk officer (CRO) or the chair of the Board Risk Committee or even Internal Audit or more formal external reviewed undertaken by an independent third party commissioned by the new bank.
- The assessment should also take into consideration, but not be limited to, the following:
- the adequacy of technical knowledge, skills and expertise within the risk management framework;
- whether stress testing and downside risk analysis have sufficient prominence in decision-making and key management documents; and,
- whether the firm can produce accurate data and management information.
- Firms need to ensure that their risk management frameworks and controls evolve in line with their business growth and are effective for the type and scale of business being written. We will monitor this on an ongoing basis as part of our regulatory engagement.
- By around three years post-authorisation, we expect that the risk management framework and controls are fit for purpose, although a new bank’s controls will evolve in light of their experience. New banks should prioritise developing controls for their most material risks.
- By around five years post-authorisation, we expect new banks to have a mature control environment, which includes a fully embedded risk management framework linked to a stable business model and provides a forward-looking view across all risk types. We will continue to monitor this and may undertake formal reviews as part of our regulatory engagement.
- We encourage new banks to undertake thorough ‘lessons learnt’ exercises in cases where things do go wrong. Those should include analysis of the root cause of the issues and whether they could have been prevented. Moreover, new banks should develop and introduce additional controls, processes and procedures to avoid similar issues occurring again in the future.
- Very often, new banks choose to outsource their internal audit functions rather than building the capability in-house. This is acceptable as long as the firm ensures that they appoint a third party which have the required skills, resources and experience to perform the internal audit function for them and which is fully independent of the firm. Regardless of whether the internal audit function is outsourced, the board remains ultimately responsible for the internal audit function. Firms are encouraged to refer to the Basel Committee on Banking Supervision document on The internal audit function in banks.
Common challenges
Firms should consider how their proposed risk management frameworks and controls sufficiently address the below points:
- Defining the risk appetite: The risk appetite must be well defined and clearly articulated – from both a quantitative and qualitative perspective. A clearly defined risk appetite is crucial in being able to monitor and report the performance of the firm and the delivery of the business strategy. We encourage firms to develop detailed risk appetites, which are realistic and linked to their overall strategy and can be used to measure their performance. Moreover, firms should demonstrate the internal governance process that was followed to review, challenge and agree their risk appetites.
- Recruiting the right skills and experience: Firms must dedicate sufficient financial and/ or non-financial resources to develop and mature their risk functions. Failure to do so creates a significant risk that the risk function will not be able to adequately support the growing firm due to lack of resources. Hiring good quality individuals is key and firms should consider how their boards and senior management have determined that the individuals in their risk functions are appropriate in terms of their skills and experience and how they plan to address any gaps in their knowledge.
- Evolving risk management capabilities: We often find that firms have ambitious growth and profitability targets, but they are not always supported by a risk management framework that grows in line with the projections. This results in firms not being able to:
- monitor and manage their existing risks, and as such, those risks worsen and lead to losses (for example firms experiencing high credit losses when having underwritten large amounts of business without that being subject to the necessary underwriting and credit checks); and
- identify new or emerging risks and implement the necessary mitigants to prevent such risks from crystallising.
- We encourage firms to demonstrate that their proposed risk management frameworks and controls are not only effective at launch but remain appropriate for the size and complexity of their firms as they grow – this should be captured in the firm’s business model.
- Effective management information (MI) for the board: It is important to ensure that MI is not under-developed, too long, unfocused or not relevant for the needs of its audience – for example we have seen instances of where boards receive very extensive packs, which include a large number of metrics and triggers and which make it very challenging for the board to determine what they need to focus their discussion and decisions on. This creates a risk that the board is not able to make the right decisions for the firm. We encourage firms to ensure that their boards and senior management receive timely, accurate and relevant MI to foster their discussions and decision-making. This is because the quality of their decision-making will, to a large degree, be driven by the quality of information received on which to base those decisions. As such, it is essential that the MI provides relevant risk information, is appropriately tabled for the discussion and is accurate. In addition, firms should consider how this MI needs to change and improve as the firm grows.
Resource links
- The Risk Control and Group Risk Systems sections of the PRA Rulebook – These include relevant information, which will be helpful to consider when building risk management frameworks and controls.
- The Risk Control, Group risk systems and controls requirements, Operational risk systems and controls requirements and Risk control: guidance on governance arrangements sections of the FCA Handbook – These include more useful guidance to consider when building risk management frameworks and controls.
- The PRA’s approach to banking supervision – Pages 17-18 set out our requirements for banks in terms of their risk management and controls.
- CP30/19 Outsourcing and third party risk management – This sets out our proposals for modernising the regulatory framework on outsourcing and third-party risk management.
- SS3/18 Model risk management principles for stress testing – This sets out our expectations as to the model risk management practices firms should adopt when using stress-test models.
- Basel Committee on Banking Supervision document on ‘The internal audit function in banks’ – This is a very helpful guide to the internal audit function in banks.
Capital assessment
Key points
- Authorised banks (which includes those in mobilisation) must meet their regulatory capital requirements at all times.
- Firms need to provide proof of capital before (i) they are authorised (either directly or into mobilisation) and (ii) they can exit mobilisation (if this is the chosen route).
- The ICAAP is key in identifying the risks in the business and ensuring that the capital, held against those risks, is sufficient.
- The ICAAP is the responsibility of senior management, it must be approved by the board and used as part of the firm’s management processes and decision-making.
Why is this topic important?
Authorised banks are required to maintain appropriate capital resources, both in terms of quality and quantity, consistent with the safety and soundness of the firm and taking into account the risks to which they are exposed.
Having enough capital of sufficiently high quality is essential in being able to absorb losses. In addition, it reduces the risk of an authorised bank becoming unable to meet the claims of its creditors and is crucial for maintaining depositor confidence. Sufficient capital resources are also essential to demonstrate compliance with the PRA’s ‘Prudential conduct of business’ Threshold Condition (having appropriate financial resources).
A documented Internal Capital Adequacy Assessment Process (ICAAP) is an integral part of a firm identifying the risks in their business model and ensuring that the capital they have against those risks is adequate and proportionate to the nature, scale and complexities of their business proposition.
It is critical that the ICAAP is owned by the board. It should be updated at least annually or more frequently if there are changes in the business strategy or the operational environment that suggests the current level of financial resources is no longer adequate.
Expectations
Extensive information and guidance on capital has already been published and as such the below list is not exhaustive but highlights some of our key regulatory expectations. Firms are required to fully consider the guidance that is available as part of their capital management and ICAAP processes.
Risk appetite | The ICAAP should reflect the firm’s risk appetite as set by the board and should be consistent with the business proposition. It is good practice that the overarching risk appetite is informed by, and monitored using, the firm’s stress-testing framework. |
Preparation of the ICAAP | Firms should be familiar with the PRA’s policy on the ICAAP and apply the methodologies to measure their risks described in the relevant PRA publications. See the ‘Resource links’ below for a non-exhaustive list. The ICAAP should be firm-specific and reflect the inherent risks associated with the specific business model. It should adequately identify, analyse, and measure the risks and risk mitigants. As well as assess what capital the firm needs in relation to the risks and illustrate that the firm has adopted sound risk management processes and develops them on an ongoing basis. The ICAAP should be consistent with other key documents such as the RBP. |
Governance of the ICAAP | The ICAAP is the responsibility of senior management and it must be approved by the board. It should be used as an integral part of the firm’s management processes and decision-making. The board should possess the necessary technical knowledge and expertise to be able to understand the ICAAP in terms of both the capital needs of the firm and the regulatory expectations in that regard. The board should be confident in discussing and challenging the ICAAP and its conclusions and recommendations. As such, the board should only sign off the ICAAP after it has been subject to the appropriate scrutiny and challenge. Although third-party consultants may be appointed to assist in the preparation of the document, this does not replace the need to maintain the appropriate in-house skills and experience. |
Forward-looking capital management processes and procedures: | Firms should manage their capital position on a sufficiently forward-looking basis and, as outlined in SS31/15, should not use their PRA buffers in the usual course of business or enter into them as part of their base case business plans. Where capital injections are needed, these should take place sufficiently in advance to avoid entering the buffers. Responsibility for managing the capital position should be clearly allocated to an appropriate SMF holder. |
Expectations – how do they evolve throughout the authorisation process?
Pre-application
- As part of their pre-application engagement with us, firms should provide a draft ICAAP document for us to review and challenge. We expect to see a good quality draft ICAAP and will provide detailed feedback (where needed) on that draft ICAAP document.
- We expect that the ICAAP document develops as firms go through their pre-application engagement with us and by the time firms reach the Challenge Stage (and submit the ICAAP to us for review), the ICAAP document should include, at a high level, the following:
Executive summary | This should provide an overview of the ICAAP approach and methodologies as well as the key findings and conclusions of the analysis. In addition, firms should include a summary of the most material risks and details on capital planning (including any future capital needs and any other major issues). |
Background | This should include information on the business model and financial data (both historic and forecasts), as well as, details on the organisational and management structures and any significant developments that have either recently taken place or are expected to happen in the near future. |
Governance | Here the internal governance processes that the ICAAP has been subject to should be captured – including who the responsible Senior Management Function (SMF) holder is for the preparation of the document, how the document has been challenged and whether the board has approved it. |
Risk framework and risk appetite | This should articulate the capital management and planning processes and how they fit into the overall risk management framework. Moreover, it should capture the capital risk appetite through the inclusion of the necessary key risk indicators and metrics. |
Financial projections and capital strategy | This should outline the proposed business plans and what capital strategy has been designed in order to ensure that there is sufficient capital to deliver the business plans. It should also capture an analysis of the economic/market environment, that the firm will be operating in, the sources of funds available and how the firm plans to access those. Here, it will be highly beneficial to consider potential capital shortfalls and how they will be managed. |
Capital assessment approach and analysis | This should include a detailed review and analysis of the risk profile and internal capital adequacy. It needs to include information on each individual risk that has been considered including the processes used to identify the risk, the methodology adopted to measure it and how much capital it is proposed to hold against each risk that has been identified. Firms should provide detailed analysis against each of the Pillar I risks (credit, market and operational risks) and any relevant Pillar II risks (such as those set out in our Statement of Policy ‘The PRA’s Methodologies for Setting Pillar 2 capital’). |
Stress testing and reverse stress testing | This should provide detailed information on the stress-test scenarios that have been considered, including the assumptions and impacts of the scenarios and how they have been challenged by senior management and the board. In addition, this section should capture any management actions and how the actions will help manage a capital stress. |
- As part of a new bank application, firms need to submit a final version of the ICAAP document covering the business plan and incorporating all the feedback provided.
Upon authorisation of a new bank and beyond
- We expect firms to provide proof of capital before (i) they are authorised (either directly or into mobilisation) and (ii) they can exit mobilisation (if this is the chosen route).
- Authorised banks (including those in mobilisation) must meet their minimum capital requirements at all times.
- We expect new banks to have high capital burn rates as they invest in order to build their firms while at the same time they are still loss making. As a result, new banks should have sufficient levels of capital to meet their capital requirements (ie their Pillar 1 and Pillar 2a requirements as well as their buffers and any MREL (if applicable) for at least 12 months after being authorised (either exiting from mobilisation or upon authorisation if a firm does not follow the mobilisation route). This is key to ensure that new banks maintain sufficient capital during their first year. In addition, this may help new banks to focus on building and running their firms without having to raise new capital soon after being authorised.
- The PRA buffer for established banks is calculated based on the amount of capital needed to remain above TCR under a severe but plausible stress scenario. For new banks, the amount of capital needed to survive such a scenario would be generally very large. This could give rise to a disproportionate level of capital relative to the financial stability risks posed by new banks, as these banks should be able to exit the market easily if required. As a result, an alternative approach is applied to calculating the PRA buffer for new banks. This is introduced in SS3/21 and it replaces the existing methodology where we set the PRA buffer for new banks on the basis of wind down costs. The new approach allows new banks time to find alternative sources of capital or make business model adjustments, in the event of a loss of investor support and assumes that a reasonable amount of time to do that is around six months. Therefore, new banks are expected to calibrate their PRA buffer to be equal to six months projected operating expenses, defined as those costs associated with the day-to-day running of the business.
- The PRA’s approach for setting the PRA buffer is designed to support new banks in their early years of operation, and as such is time-limited. Once the new bank has been trading fully for five years or they have become profitable for a full trading year (whichever is sooner), they are expected to transition the calculation of their PRA buffer onto stress testing, in line with established banks. As such, firms are expected to prepare for that and undertake stress testing from the point of authorisation.
- While we accept the use of forecast data before a firm is authorised, once authorised, firms are expected to use actual data.
Common challenges
Our review of the ICAAP document is a key part of our assessment – both during our pre-application engagement and as part of our assessment of a new bank application. We encourage firms to consider how they will ensure that their ICAAP documents sufficiently address the below issues:
- Governance: The board and senior management must be familiar with the high level ICAAP content and principles, and be able to demonstrate proportionate understanding of the risks and methodologies that have been considered in the document. Firms must also be able to demonstrate that robust challenge has taken place. This will help to prevent ICAAPs, which are too long, not clear and not consistent with the other key documents. The ICAAP is an essential document, which needs to be embedded within the firm’s capital management process and procedures and not referred to as merely a regulatory requirement. As such, firms should ensure that there is sufficient board engagement and understanding of the ICAAP as well as thorough oversight and independent challenge.
- Consistency: Firms should ensure that their ICAAPs clearly communicate the assessment that they have carried out - this includes what key risks have been identified as well as the supporting analysis and conclusions of how much capital to hold against each of the risks. In addition, firms should ensure that their ICAAPs are consistent throughout the document and aligned with other key documents such as the RBP. Sometimes, firms address our feedback in their RBP or in one part of their ICAAP but do not reflect these changes throughout the remainder of the ICAAP document. Having effective internal governance, review and challenge of the ICAAP and other remaining documents will significantly help with consistency. As such, it is essential for firms to ensure that such arrangements are in place.
- Articulation of the risk appetite: Firms should clearly articulate their risk appetite with regard to both the amount and quality of capital within in their ICAAP. Firms often set their capital risk appetites very close to their capital regulatory requirements without having sufficient analysis or justification as to why the risk appetite has been calibrated at that level.
- Capital contingency plans: Market uncertainty can leave a firm’s access to external capital exposed to enhanced risk, particularly, where there are limited sources of capital. In many instances, firms rely on a single investor or a small pool of investors for their future capital raising. This creates a significant risk should those investors no longer be able or willing to commit to their investments. Firms should develop capital contingency plans that consider what they would do if their capital raising does not go to plan or does not raise a sufficient amount of capital or they take longer to become profitable (and capital self-sufficient).? This plan should capture in sufficient detail the proposed management actions and how firms have ensured that the actions are credible and achievable. Evidence of this should be captured in the ICAAP document.
- Stress testing: Across all stages of the application journey, stress testing must be sufficiently detailed, appropriate for the business model and its inherent risks, and should have the numerical analysis to back the conclusions. Firms should develop their own scenarios and ensure that these are as severe in relation to their business model as the concurrent stress-testing scenario (for firms participating in concurrent stress testing) or the scenario published by the PRA (for all other firms). Firms should consider the severity expectations about stress testing outlined in SS31/15 ‘The Internal Capital Adequacy Assessment Process (ICAAP)’. Stress testing should be forward-looking and linked to risk appetite, in order to show the true vulnerabilities in the firms’ capital profile. Comprehensive and robust stress testing which has been subject to the necessary internal governance, oversight and challenge is vital to ensure compliance with the overall level of capital adequacy.
- Mobilisation versus post-mobilisation: Firms need to demonstrate an understanding of the regulatory requirements at the different stages of the authorisation process and embed these requirements into their capital planning and management processes. For example, we often see ICAAPs which do not include the proposed capital requirements during mobilisation (if this is the chosen route). However, the requirements for the mobilisation and post-mobilisation periods will differ. As a result, the ICAAP needs to set out how the capital position and risks change over that timeline and over the course of the planning horizon. Firms must meet their mobilisation capital requirements throughout the period of time they remain in mobilisation. In some instances, this may require them to raise additional capital during mobilisation and should be incorporated into their capital funding plans.
Resource links
- The Internal Capital Adequacy Assessment part of the PRA Rulebook – These rules provide more detail on a range of topics including the different risks against which capital must be available, stress testing and reverse stress testing etc.
- SS31/15 The Internal Capital Adequacy Assessment Process (ICAAP) – This outlines the PRA’s expectations about the ICAAP document as well as the PRA’s Capital Review (SREP) processes.
- The PRA’s methodologies for setting Pillar 2 capital (Statement of Policy) – Firms should be familiar with the PRA’s methodologies for setting both Pillar 2a and Pillar 2b capital requirements.
- Stress testing (published results of annual stress test and ICAAP scenarios for firms to use as benchmark) – Although not necessarily applicable to newly authorised firms, this can be very useful when designing the stress-test scenarios and analysing their results and conclusions. This will help ensure that stress tests are both plausible and sufficiently severe.
- The Bank of England’s approach to setting a minimum requirement for own funds and eligible liabilities (MREL) (SP) – This outlines the powers that the Bank of England has, as a Resolution Authority, to require firms to maintain a minimum level of MREL (if applicable).
- PS29/20 Capital Requirements Directive V (CRD V) – This outlines changes to the PRA’s rules, supervisory statements and statements of policy in order to implement elements of CRD V.
- SS3/21 Non-systemic UK banks: The Prudential Regulation Authority’s approach to new and growing banks – This is the latest Supervisory Statement outlining our expectations of firms and new banks and how those evolve throughout the authorisation journey.
- The ICAAP Section of the New Banks Seminar Slides (October 2019) – There are very helpful slides to consider as they outline some of our key expectations and review processes.
Capital instruments assessment
Key points
- For a firm to be authorised as a new bank, they must have sufficient capital of the right quality in place, ie the capital must meet the criteria set out in the Capital Requirements Regulation.
- Share structures should be designed to be as simple as possible – preferably with only one class of shares that is fully subordinated, has full voting rights and equal rights across all shares with respect to dividends and rights in liquidation.
- Our pre/post-issuance notification rules require firms to notify us of issuances of capital instruments – either in advance of the issuance for CET1 and AT1 instruments or on or after the issuance for T2 instruments.
Why is this topic important?
For a firm to be authorised as a new bank they must have sufficient capital of the right quality in place, ie the capital must meet the criteria for regulatory capital as outlined in the Capital Requirements Regulation (CRR). In the case of CET1 capital, we are required by the CRR to evaluate whether the firm’s proposed CET1 capital instruments are eligible as regulatory capital against the specific criteria set by the CRR (for example Articles 26(3) and 28(1)). Only when we are satisfied that the instruments fully comply with the criteria, we will grant a permission for the firm’s capital to be classified as regulatory capital.
Expectations
- Share structures should be designed to be as simple as possible. As set out in SS7/13 ‘CRDIV and capital’, our preference is for firms to adopt simple, vanilla share structures consisting of preferably only one class of shares that is:
- fully subordinated to all other capital and debt; and
- has full voting rights and equal rights across all shares with respect to dividends and rights in liquidation.
- Issuances with complex structures often have features that are inconsistent with the spirit of the CRR eligibility requirements and our supervisory expectations.
Expectations – how do they evolve throughout the authorisation process?
Pre-application
- We encourage firms to
- design and build their share structures to be as vanilla as possible (for example with one class of shares and equal rights across all of the shares) and have good governance arrangements; and,
- As part of your new bank application, for CET1 instruments, we encourage firms to submit the following for our review: (i) pre-issuance notification form; (ii) CET1 compliance template; (iii) independent legal opinion; (iv) the terms and conditions of the CET1 capital instruments including any side agreement; and (v) CRR permission application form.
Upon authorisation of a new bank and beyond
- We operate a capital quality review regime achieved through the pre/post-issuance notification (PIN) rules that require firms to notify us of issuances of capital instruments – either in advance of the issuance for CET1 and AT1 instruments (unless the instruments are on ‘substantially the same’footnote [2] terms as previously issued instruments that qualify as CET1 or AT1 capital, in which case the PIN should be submitted no later than the day of issuance) or on or after the issuance for Tier 2 instruments.
- Based on our experience, new banks do not often issue AT1 or T2 instruments. However, this is acceptable (ie as part of the overall capital stack) and more information can be found in the links included in the ‘Resource links’ below.
- It is important to have clear, individual accountability for the firm’s capital arrangements consistent with those set out in the Senior Management Regime (SMR). Hence, firms should ensure that the responsibility for the quantity and quality of capital is allocated to an appropriate Senior Management Function (SMF) holder.
Common challenges
We encourage firms to consider how they will ensure that their proposed capital instruments sufficiently address the below points:
- Complex share structures and features:
- We often see very complex ownership and shareholding structures being proposed by firms. However, it is important to consider whether those structures fit within our risk tolerance and supervisory expectations, ie to have a capital structure, which is as simple as possible.
- There is a risk that complex features and structures can complicate the prudential assessment and may undermine the loss absorbing properties of the capital instruments and hence their compliance with the CRR.
- Shareholder versus regulatory expectations:
- We appreciate the importance of satisfying investor demands so that they can provide funding for the firm, however this often results in complex share structures that do not fully comply with the CRR. It is crucial for firms to consider how they will manage and balance those demands against our supervisory expectations when they design their capital structuress.
- We have a strong preference for simple and vanilla share structures. We encourage firms to avoid complex features such as multiple classes of shares, different rights and entitlements with respect to voting rights and proceeds on share sales and the inclusion of anti-dilution provisions.
- Access to external capital will be exposed to greater risk where investors demand capital instruments with such complex features, ie this could adversely affect a firm’s ability to recapitalise. Hence, it is important for firms to build the necessary contingencies and management actions within their capital planning in order to manage and mitigate this risk.
- The availability of external capital will also be subject to investor expectations around profitability of the firm and other targets that investors would expect firms to meet. We encourage firms to be transparent with us around investor expectations including any associated timelines. In addition, we encourage firms to share with us any known investor exit strategies that are in place should any of the targets not be met.
- Appropriate governance arrangements:
- Having the right individuals identified to implement and manage the firm’s capital arrangements is a critical part of the process. The board should consider why those individuals are suitable for the role and whether they have the right skills and experience to manage the overall quality of capital within the firm.
Resource links
- PS5/20 Regulatory capital instruments: update to Pre-Issuance Notification (PIN) requirements – This document provides useful information on how to submit a PIN in order to classify the firm’s capital as regulatory capital.
- SS7/13 CRD IV and capital – This document sets out our expectations on how to comply with the relevant CRR criteria for the quality of capital. It covers areas such as composition of the capital base, preference rights, subordination, events of default, triggers and set offs etc.
- Capital instruments – pre/post-issuance notification (PIN) – these are the PIN rules for firms to follow when issuing or amending capital instruments that will be included as either capital resources or own funds.
- PRA’s CET1 flow chart – This outlines the interaction of the PIN and CRR 26(3) CET1 permission processes.
- PRA’s AT1 flow chart – This outlines the interaction of the PIN process for the issuance of AT1 instruments.
Liquidity assessment
Key points
- All authorised banks (which includes those in mobilisation) should meet the LCR standard and their Individual Liquidity Guidance requirements at all times, absent a situation of financial stress.
- The ILAAP is the key document, which sets out the firm’s approach to liquidity and funding.
- The ILAAP should state how the firm meets the Overall Liquidity Adequacy Rule. This should take in to account the key liquidity risks in the business model.
- The ILAAP is the responsibility of senior management and it must be approved by the board. It should be used as an integral part of the firm’s management processes and decision-making.
Why is this topic important?
Sufficient liquidity is key to ensuring that firms are able to meet their liabilities as they fall due and to survive any liquidity stresses. As well as capital, sufficient liquidity is critical in being able to meet the PRA’s ‘Prudential Conduct of Business’ Threshold Condition (having appropriate financial resources). Firms are therefore required to identify, measure, manage and monitor liquidity and funding risks that arise from their business models.
The Internal Liquidity Adequacy Assessment Process (ILAAP) is the key document, which sets out the firm’s approach to liquidity and funding. Our review of the ILAAP therefore forms a key part of our assessment of a new bank application and once a firm is authorised as a new bank (if successful).
Expectations
The table below is not exhaustive but pulls together some of our key regulatory expectations. Firms should read and apply all the necessary liquidity guidance that has been published:
Liquidity adequacy | SS24/15 ‘The PRA’s approach to supervising liquidity and funding risk’ sets out that all firms should provide summarised conclusions of their overall liquidity adequacy review, stating how they meet the Overall Liquidity Adequacy Rule. This should take into account the key liquidity risks in the business model such as planned growth of the balance sheet, funding concentrations, and risks arising from distribution channels (for example digital and intermediaries) etc. |
Risk drivers | As part of assessing the key liquidity risks in their business model, firms will need to make appropriate assumptions around the major sources of liquidity risk, including those as required under Rule 11 of the Internal Liquidity Adequacy Assessment part of the PRA Rulebook. An assessment of the importance of these to the firm’s business should be included within their ILAAP. |
Governance | The ILAAP is the responsibility of the board. It is prepared by the management body and must be approved by the board. It must be consistent with the overall risk appetite set by the board. The management body and board need to have the necessary skills and knowledge to understand the ILAAP and be confident in discussing its content and conclusions. Although third-party consultants may be appointed to assist in the preparation of the document, this does not replace the need to maintain appropriate in-house skills and experience. |
ILAAP document style and content | The ILAAP should be firm-specific, not prepared in a formulaic manner, and reflect the applicable business model. We are equally sceptical of overly large, unwieldy documents as of documents providing too little detail. Firms should ensure that all applicable areas in Appendix 1 ‘Suggested structure and content of the ILAAP document’ of SS24/15 are covered. We have outlined a summary of those areas below. |
Expectations – how do they evolve throughout the authorisation process?
Pre-application
- As part of their pre-application engagement with us, firms should provide a draft ILAAP document for us to review and challenge. We expect to see a good quality draft ILAAP and will provide detailed feedback (where needed) on that draft ILAAP document.
- We expect that the ILAAP document develops as firms go through their pre-application engagement with us and by the time they reach the Challenge Stage (and submit the ILAAP to us to review), the ILAAP document should include the following (in line with Appendix 1 of SS24/15):
Executive summary | This should provide an overview of the proposed business model and details on the approach and methodologies chosen for the management of liquidity and funding risks. In addition, this should include how firms plan to meet the Overall Liquidity Adequacy Rule. |
Liquidity coverage ratio (LCR) reporting | Firms should provide details on how they plan to ensure compliance with the liquidity coverage ratio (ie with the LCR Delegated Act). |
Liquidity risk assessment | Liquidity needs in the short to medium term: Firms should capture their expected liquidity needs and the sources of liquidity under both business as usual and stress conditions. Evaluation of liquidity buffer and counterbalancing capacity: Firms should describe their internal processes for the ongoing calculation, control and monitoring of their liquidity buffers including the amount of high-quality liquid assets (HQLA) as defined by the LCR. They should also include considerations on whether to apply for a Bank of England reserve account and whether to pre-position any assets at the Bank of England. |
Inherent funding risk assessment | Evaluation of risks to the stability of the funding profile: Firms should articulate their funding profile including their funding strategy and appetite. In addition, considerations on collateral values, maturity mismatch, asset encumbrance and funding concentrations should be included. Evaluation of market access and of any expected changes in funding risks based on the firm’s funding plans (if relevant): Firms should describe how their funding plans are expected to change over their planning horizon. |
Risk management assessment (both liquidity and funding) | Assess risk strategy and risk appetite: Firms should include details on their liquidity and funding risk appetites and strategies including how they have been developed, approved, monitored and reported. Organisational framework, policies and procedures: Firms should describe the governance arrangements around the ILAAP including the processes for its preparation, review and sign off. Risk identification, measurement, management, monitoring and reporting: Firms need to describe the systems and controls they plan to use to identify, measure, manage, monitor and report liquidity and funding risks – both for internal, external and regulatory reporting. Key risk indicators that firms plan to use should also be included here. Liquidity specific stress testing: Firms should capture details of the internal liquidity stress testing that they have undertaken – these are to include, amongst other things, information on the specific scenarios that have been considered and the results of those scenarios. In addition, this section should include details on the governance arrangements around stress testing – the derivation of the assumptions, the design of the scenarios, the processes of review and challenge, how the stress test results have been incorporated into the overall liquidity risk framework and recovery planning. Liquidity risk internal control framework: This should include details on the limits and controls that the firms plan to use to ensure adequate control of liquidity risk. As well as how firms will ensure that liquidity and funding costs, benefits and risks are fully incorporated into their product pricing, performance measurement and incentives, and new product and transaction approval processes. Liquidity contingency plans: Firms should develop full liquidity contingency plans (LCP). We strongly encourage firms to combine their liquidity contingency plans (also known as a contingency funding plan) and their recovery plans into one integrated document. We recognise that there may be some instances when it is necessary to maintain separate documents but expect these to be exceptional and that any separate documents should be consistent with each other. Funding plans: Firms should submit a funding plan, which demonstrates how they will fund their projected business activities and growth. It should include sensitivity analysis and alternative funding scenarios. |
- As part of a new bank application, firms needs to submit a final version of the ILAAP document covering the business plan and incorporating all the feedback provided.
Upon authorisation of a new bank and beyond
- All authorised banks should meet the LCR standard and their Individual Liquidity Guidance at all times, absent a situation of financial stress.
- All authorised banks should consider their medium to longer-term liquidity and funding needs, ie the net stable funding ratio (NSFR) standard, in addition to the LCR.
- While we accept the use of forecast data before a firm is authorised, once authorised, firms are expected to use actual data.
- The ILAAP should be updated on an annual basis (or more regularly if there are significant changes) to reflect any key changes to the new bank’s business model and to become more detailed as the firm grows and/or becomes more complex. The ILAAP should be an integral part of the new bank’s risk management processes and decision-making.
Common challenges
Our review of the ILAAP document is a key part of our authorisation assessment and ongoing supervision of banks. Firms should consider how they will ensure that their ILAAP documents sufficiently address the following key issues:
- Governance: The board and senior management must be familiar with the ILAAP document and be able to demonstrate proportionate understanding of the risks and methodologies that have been considered in the document. In addition, firms must be able to demonstrate that robust challenge has taken place. Where ILAAPs are very long, unclear and inconsistent with other key documents this would suggest adequate challenge has not taken place. The ILAAP is an essential document, which needs to be embedded within the firm’s liquidity management process and procedures and not referred to as merely a regulatory requirement. As such, firms should ensure that there is sufficient board engagement and understanding of the ILAAP (for example, through providing appropriate oversight and independent challenge).
- Consistency: The ILAAP needs to be consistent both within itself and with other key documents. Where it is not, it can lead us to require clarification from firms and in some cases request for documents to be resubmitted. This is often due to firms having addressed feedback in their RBP or in one part of their ILAAP but failing to reflect these changes throughout the ILAAP document. This often indicates that the ILAAP and other documents have not been subject to the necessary internal review and challenge processes. Moreover, this often results in significant delays and hinders our ability to set the firm’s liquidity requirements.
- Liquidity contingency plans (LCP): Firms should develop an LCP as this is a crucial aspect of their overall liquidity and funding risk management. Having such a plan in place provides firms with options in the event of a liquidity stress and reduces the risk of liquidity issues crystallising further. We encourage firms to develop detailed and robust LCPs that set out how they will respond to any potential liquidity shortfalls or stress events. They must capture in sufficient detail their proposed management actions and how they have ensured that those actions will be feasible and achievable in order to bring them out of the stress event. Firms should have in place forward-looking early warning indicators, which will detect any signs of stress as early as possible.
- Stress testing: Liquidity stress testing should be focused and relevant to the business proposition and risks within the firm. We encourage firms to undertake comprehensive stress testing which is appropriate to their business models and the risks inherent within those. The stress test scenarios must be plausible and sufficiently severe in order to show the true vulnerabilities in their liquidity profile. We encourage that both the board and senior management have the necessary understanding and knowledge of stress testing and are fully involved in (i) the development of the stress test scenarios, and (ii) the discussion and challenge of the results of those scenarios.
- Mobilisation versus post-mobilisation: Firms, that use the mobilisation route, should clearly articulate the different liquidity risks that they will have during their mobilisation versus post-mobilisation periods. This is important because firms must meet their regulatory liquidity requirements as soon as they are authorised (no matter whether using the mobilisation route or not). Moreover, the ILAAP needs to set out how the firm’s liquidity position and risks evolve over the course of their planning horizon.
- Access to the Bank of England reserve account: Many firms express a preference, within their ILAAPs, for holding the majority of their HQLA in a Bank of England reserve account. We often see firms making overoptimistic plans in terms of when they will be able to have access to a Bank of England reserves account. However, this is subject to a separate application process led by the Bank of England Markets Division and is usually not available until a firm is authorised. We encourage firms to factor that into their plans and consider alternative arrangements until they have access to a Bank of England reserve account.
Resource links
- The Internal Liquidity Adequacy Assessment part of the PRA Rulebook – These rules are referenced within SS24/15 above and provide more detail on a range of topics including liquidity risk drivers, liquidity contingency plans and stress testing etc.
- SS24/15 The PRA's approach to supervising liquidity and funding risks – This is the key document to read, understand, and apply proportionately. It includes what areas to include in the ILAAP document (where applicable) in Appendix 1.
- PRA110 and PRA110 Q&A – These contain guidance on completing the PRA110 which authorised banks will need to complete and submit to us.
- Statement of Policy ‘Pillar 2 liquidity’ – While a lot of this may not be directly relevant to many new banks straight away, this should be considered from the outset and as it will become relevant as their firms grow.
- Liquidity Coverage Ratio Delegated Act, reporting guidance and reporting clarifications – Firms should familiarise themselves with these as they contain detail on the liquidity coverage ratio and how to report on this.
- EBA/GL/2014/13 – Guidelines on common procedures and methodologies for the supervisory review and evaluation process (SREP) – This sets out the European Banking Authority (EBA) Liquidity SREP guidelines (expected to be a proportionate application of these) so will be most useful for newly authorised banks and in the lead up to the first L-SREP.
Owner/controller assessment
Key points
- An investor is classed as a controller when they have at least 10% of the economic or voting interest in the firm.
- Some investors with less than 10% voting interest may be classed as controllers if they are acting in concert with other investors/controllers.
- As part of a new bank application assessment, we assess whether the proposed controllers are fit to run a UK bank, and the safety and soundness of their source of funds.
- Firms should disclose to us details on the investor/controller involvement and influence as part of their proposed governance arrangements.
Why is this topic important?
An investor is classed as a controller when they have at least 10% of the economic or voting interest in the firm. Some investors with less than 10% voting interest may be classed as controllers if they are acting in concert with other investors/controllers. To determine this, firms should share with us, as part of the application process, a full group structure chart outlining all their investors.
As part of a new bank application assessment, we assess whether their proposed controllers are fit to run a UK bank and the safety and soundness of their source of funds.
Firms should disclose to us the full extent of investor/controller involvement and influence as part of their proposed governance arrangements. This should include how firms plan to manage investor expectations and any conflicts of interest.
Firms should consult all the relevant guidance that has been published concerning this topic – we have provided some useful links below, under the heading ‘Resource Links’.
Expectations
Firms need to have investors/controllers in place, who are disclosed to us before we can reach a decision on their new bank applications.
Firms should have clear plans that set out how and when they expect to raise capital including the source and amount of each capital raise. We expect these plans to evolve throughout the application process and as firms grow and develop.
The exact timing of when they raise their capital is largely up to the firms – but they will need to be open and transparent with us throughout, and submit the necessary controller forms and other supporting documentation as part of their new bank applications. Firms must have the necessary capital in place before they can be authorised.
Expectations – how do they evolve throughout the authorisation process?
Pre-application
- Firms should disclose the investors that they are talking to during their pre-application engagement with us, as well as, if they have any plans to merge with or acquire an existing firm.
Application assessment
- As part of a new bank application firms should disclose to us who their investors are and submit all the necessary documentation for us to assess them. The capital injected in the firm must be provided by the same investors that have been disclosed to us and that we have assessed.
- For those investors holding a controlling share (above 10% economic interest or voting power), the firm needs to submit the relevant controller forms. Controllers will also need to provide supporting documents, such as, audited financial statements and letters of good standing. These supporting documents should demonstrate the controller has adequate financial resources and that they have a suitable source of funds.
- Firms should be open and transparent with us regarding the influence of the investors at their firm - for example, do the investors have the power to make decisions that directly impact the running of the firm or do they have significant influence over the remaining board members?
- Firms should share with us the expectations of their investors such as targeted growth rates, profitability and returns and demonstrate how their board will manage those expectations.
- We have a strong preference for there to be no more than two investor non-executive directors on the board. This is because a heavy investor presence could pose a risk to the independence of the board.
Upon authorisation of a new bank and beyond
- Once a firm has been authorised, we will review and approve any new controllers or changes to the existing controllers and must grant approval of any changes to a bank’s controllers before the changes take place.
- We encourage all firms to alert us to any new controllers or changes to their controller bands before they happen. We will then assess any new controllers, and any impact on the firm’s business model and governance arrangements.
Common challenges
We encourage firms to consider how they will ensure that their new bank applications and controller submissions address the below points:
- Investor disclosure: Some investors may not want to commit funding until they are confident that the firm will be authorised. However, to be able to fully assess a new bank application, we need to know who the investors are. While we are not expecting investors to actively fund the firm until they are ready to inject the capital, it is important that they disclose who they are as part of the new bank application so that we can determine if they are controllers (including if there are parties acting in concert), and their impact and influence on firms’ governance arrangements.
- Firms must submit the relevant controller forms and supporting documents so that we can assess the controllers and their source of funds accordingly.
- For us to be able to authorise the firm, they need to have the capital in place and provide us with the necessary proof that this is case.
- Determining the controllers: Firms should disclose to us the ultimate parent of their controller Group structure – this is to ensure that we are aware of who the ultimate parent is and we have assessed their fitness and propriety as well as the suitability of their source of funds. It also ensures that we capture the correct entities/ individuals in the group structure as controllers. It is therefore important for firms to provide us with the full controller group structure (up to the ultimate owners of the firm) when they apply. Firms should ensure that they have identified all controllers in the structure chart and submit the relevant controller forms alongside their application.
- Connected parties and/or acting in concert: We encourage firms to disclose instances where any connected parties (such as the spouses of any board members) also have a shareholding in the firm. In addition, we encourage firms to disclose any other personal relationships or connections – for example, between the board members themselves or between board members and investors. This is to ensure that any potential conflicts of interest are identified, disclosed to us and managed appropriately.
Resource links
- Change in control – quick reference guide – This includes information to support firms going through a change in control.
- New firm authorisation – controller forms under ‘Banks: application forms and guidance’ – This provides links to the relevant controller form to be submitted alongside your application.
Recovery planning
Key points
- A recovery plan is a formal document that includes essential information on how an authorised bank will respond to a financial stress.
- It needs to be sufficiently detailed and practical and consider a range of options that are available, including their limitations.
- At authorisation (or exit from mobilisation), new banks should have in place a board approved recovery plan that is credible, realistic and current.
- Post authorisation, new banks should continue to keep their recovery plans up to date by ensuring that they are sufficiently detailed and appropriate as their businesses grow.
Why is this topic important?
Recovery planning addresses the risk that the management of firms concentrate disproportionately on growth opportunities at the expense of managing downside risk. It advances the PRA’s primary objective to promote the safety and soundness of the firms that we regulate.
We encourage firms to undertake robust and detailed recovery planning so that they are ready for periods of financial stress, can stabilise their financial positions and can recover from financial losses.
Firms should have a number of recovery options and maintain and test their recovery plans on a regular basis. Governance of the recovery plan should be clearly defined and firms should have effective processes to identify and report the risks affecting their ability to recover. Ownership of the recovery plan should be allocated to an appropriate Senior Management Function (SMF) individual.
Expectations
The below figure sets out the key questions that a recovery plan should cover.
Figure 4: Key components of a recovery plan
- A recovery plan is a formal document that includes essential information on how an authorised bank will respond to a financial stress. It captures aspects such as the strategies/recovery options to be used to stabilise and restore the financial position of the firm.
- To ensure that it can be useable in a stress, the recovery plan needs to be sufficiently detailed and practical. Firms should consider the range of recovery options that they have available – what their limitations are, how quickly they can be executed and whether they can be improved over time.
- While the recovery plan is prepared by senior management it should be signed off by the board and refreshed at least annually (or more often if the circumstances demand that). Boards should ensure that the recovery plan (i) has been through the necessary internal governance including ample oversight and challenge and (ii) is credible, realistic and current.
- Firms should consider the components of recovery planning, shown in the chart above, and ensure that these are sufficiently covered in their recovery plans. In addition, firms should consult the relevant PRA and EBA guidance.
Expectations – how do they evolve throughout the authorisation process?
Pre-application
- Upon submitting a new bank application, we expect firms to consider all recovery options that they have available to them and to start to build a robust and credible recovery plan.
Upon authorisation of a new bank and beyond
- At authorisation (or exit from mobilisation if this is the chosen route), new banks should have in place a board approved recovery plan.
- Post authorisation, new banks should continue to keep their recovery plans up to date by ensuring that they are sufficiently detailed and appropriate as their firms grow. The plans should be reviewed at least annually.
Common challenges
We encourage firms to consider how they will ensure that their proposed recovery plans and arrangements sufficiently address the below points:
Recovery plans
- Recovery plan indicators: The recovery plan should include a comprehensive set of indicators that are appropriate for the firm’s specific business model and can enable the firm to spot a stress emerging. Setting multiple thresholds for each metric helps the firm to monitor the stress as it unfolds.
- A breach of an indicator threshold should trigger a governance process where there is a discussion on whether to take any action, ie it should not automatically trigger action. If the Board risk appetite/risk tolerance has been breached, then the Board should be having a discussion over whether management action should be taken. Use of projections, change in metrics and forward looking indicators such as asset quality and macroeconomic indicators could prompt discussions at Board level on whether to take action prior to risk appetite being breached.
- The calibration of the last recovery indicator threshold should ensure there is sufficient time to execute the remaining, difficult to execute and franchise damaging options. In a stress, we would expect non-franchise damaging actions to be taken well before this point. Firms should articulate how the range and calibration of indicators have been reviewed and challenged and how they have taken into account the EBA guidelines on recovery plan indicators. We expect recovery indicator frameworks to be integrated into the firm’s risk management practices. Firms should ensure they have a coherent process for monitoring indicator metrics within their management information framework. They should set out the governance surrounding the monitoring of indicators and associated escalation procedures.
- Recovery options: The recovery plan should clearly set out the recovery options available. The plan needs to set out why these are feasible and achievable and provide the necessary analysis to justify the conclusions. This includes not only the description of the recovery options but also numerical analysis on how any of the options are capable of restoring the firm. Firms should consider the mutual exclusivity of their recovery options, ie how the implementation of one recovery option may affect their ability to implement other recovery options.
- Governance: The board and senior management must be familiar with the recovery plan. We encourage firms to ensure that their boards and senior management have sufficient knowledge and skills to be able to be fully involved in the development of their recovery plans. This includes ensuring that the recovery plan is taken through the necessary internal governance, including review and challenge, before it is formally signed off by the board.
- Usability and structure: The recovery plan should contain adequate detail to support the firm in the stress. For example, having to clarify decision-making processes or draft communications detracts the board and senior management from being able to respond quickly and effectively to the stress. Therefore, the structure of the recovery plan should ensure that it is practical, usable and accessible during a stress period. Firms should consider designing and implementing fire drill simulation exercises to test their recovery plans as well as developing a playbook, which is a concise implementation guide for the board and senior management.
- Recovery capacity: The recovery plan should include analysis of the firm’s recovery capacity, ie the total financial benefits they could credibly realise in a range of stresses if they need to do so. Recovery capacity should be quantified in terms of CET1, leverage ratio and LCR percentage points and relevant nominal amounts for each scenario included in the plan and the plan should clearly detail the timelines over which these benefits could be realised. SS9/17 sets out an appropriate methodology for calculating recovery capacity.
- Scenario testing: The recovery plan should capture details on scenario testing, ie how firms have considered and decided which options would likely be selected in response to the specific conditions in the different scenarios. Scenario testing is important for demonstrating that the recovery plan is suitable for use in a range of different types of stress, and testing how different elements of the plan (such as indicators, governance and options) would interact in these stresses.
Resource links
Orderly exit (solvent wind-down) and resolution
Key points
- Competitive markets involve firms being able to enter and exit in an orderly manner. This also includes authorised banks.
- This topic is particularly important to new banks as the likelihood of exit is higher during the early years, due to challenges such as failure to obtain the required capital or inability to realise their business models.
- At authorisation, new banks should have in place a board approved solvent wind down (SWD) plan and phase 1 resolution pack. They should also be able to produce credible Single Customer View (SCV) files.
- Post authorisation, new banks should continue to keep their SWD plans up to date by ensuring that they are sufficiently detailed and appropriate as their businesses grow.
Why is this topic important?
As new banks build and grow their focus will be on how to make the firm a success. As such they may not necessarily consider, at that point, the need to have robust SWD plans. However, we consider it crucial to have these in place to ensure that if things do not go to plan firms can exit in an orderly manner. These are also needed to ensure that firms comply with PRA’s Fundamental Rule 8, ‘A firm must prepare for resolution so, if the need arises, it can be resolved in an orderly manner with a minimum disruption of critical services’. This is because competitive markets involve firms being able to enter and exit in an orderly manner. Our aim is not to avoid all instances of firm failure but to ensure that authorised banks would be able to, if necessary, exit in an orderly manner. The orderly exit of a new bank at an early stage of its life is likely to have no or minimal impact on financial stability and is a natural part of a competitive economy.
This topic is particularly important to new banks as the likelihood of exit is higher during the early years of their development. Factors, which may lead new banks to exit, include failure to obtain the required capital or inability to realise their business model.
Many new banks operate in highly competitive markets and many have novel and untested business plans. This facilitates innovation and competition but not all of the proposed business models may prove to be viable. Coupled with this, new banks may have fewer recovery options available to them than established banks, meaning that it is crucial that they have the ability to exit the market in an orderly way, if required.
As discussed in SS3/21, orderly exit is the overarching term for banks that no longer have a viable business model and that need to exit the market following unsuccessful attempts to recover. The exit options include going concern and resolution routes. Going concern routes refer to the actions the bank may be able to take to facilitate its own exit from the market. These firm led actions include selling the firm as a whole or wind down the firm as a whole while maintaining solvency throughout to the point it can be liquidated safely, repaying all depositors and creditors in full. Gone concern routes refer to the firm’s entry into the resolution regime.
Expectations – how do they evolve throughout the authorisation process?
Pre-application
- As part of their pre-application engagement with us, firms should start thinking about SWD and resolution planning.
Upon authorisation of a new bank and beyond
- Information on resolution planning will be requested from firms in two main phases, phase 1 and phase 2, with ad hoc contingent information requests if required. Phase 1 outlines the baseline information needed to establish a resolution strategy and it should be submitted by all firms. Phase 2 outlines the detailed information needed to support the preferred resolution strategy, while ensuring that critical economic functions are maintained and it is tailored to individual firms. Phase 2 information is more likely to be requested from firms with a bail-in or partial transfer resolution strategy. More details on both phase 1 and phase 2 resolution planning can be found in SS19/13 ‘Resolution planning’.
- As part of a new bank application assessment, firms need to demonstrate that they will be able to exit the market in an orderly way, if needed, and that they will be able to produce a compliant SCV file and the relevant information under phase 1 resolution planning.
- At authorisation, new banks should have in place a board-approved SWD plan and phase I resolution pack. New banks should also be able to produce credible SCV and exclusions files within 24 hours.
- Post authorisation, new banks should continue to keep their SWD plans up to date by ensuring that they are sufficiently detailed and appropriate as their firms grow. The plans should be reviewed at least annually.
- As a new bank grows, it may become appropriate for the Bank of England to change its preferred resolution strategy (for example, from bank insolvency procedure (BIP) to either a partial transfer or a bail-in resolution strategy). Authorised banks should be aware of the PRA’s and Bank of England’s Resolvability Assessment Framework (RAF). Firms need to consider the implications of a change in their resolution strategy and forward plan where they may come into scope of different policies, for example MREL or operational continuity in resolution (OCIR). Authorised banks should plan for this well in advance and consider how they will transition to meet these policies.
Solvent wind-down (SWD) plans – overall expectations
- A SWD plan is a way for firms to exit the market in an orderly way by winding down, while maintaining solvency throughout, to the point that they can be liquidated safely and repay all depositors and creditors in full.
- New banks should have a board approved SWD plan in place at the point of authorisation (or exit from mobilisation). We will review that SWD plan and will only authorise a firm (or allow the firm to exit mobilisation) if we deem that the SWD is reasonable and credible.
- Entering SWD may be the final option before resolution, ie the recovery plan has not been able to restore the firm back to viability and hence the firm needs to be wound down.
- The board is ultimately responsible for deciding whether to enter SWD and for ensuring that the firm maintain their solvency during the implementation of a SWD plan. Firms should engage with us at an early stage if they are considering enacting their SWD plans. The Bank of England may also need to assess the firms’ solvency under the SWD plan at this point to judge whether it will be sufficient in order to avoid resolution conditions being met (those are explained further below).
- Firms in SWD need to comply with their authorisation conditions as set by the PRA and FCA, throughout the wind down period. As part of their forward capital planning, firms should understand the constraints on the feasibility of their SWD plans. A credible SWD plan needs to demonstrate the capability to unwind the firm while maintaining solvency throughout.
- It is essential that the SWD plans maintain the solvency of the firm, where both cash flow and the balance sheet must be maintained throughout the wind down. If firms attempt SWD but fail to produce the anticipated surplus of assets over liabilities forecast at the outset, this could result in some bank creditors being ‘time-preferred’, as some recover 100% if they withdraw funds early, whereas the remainder will not (ie they may suffer from ‘time-subordination’). Such circumstances raise director fiduciary duties concerns as under the Insolvency Act 1986 (IA’86), ‘once Directors became aware of or ought to be aware’ that there was no reasonable prospect of the firm avoiding an insolvent administration or liquidation, they potentially run this risk of wrongful trading (Section 214 of the IA’86).
- If the firm no longer meets the PRA’s and/or FCA’s threshold conditions, and a SWD is not possible, then the Bank of England and the PRA will assess whether the firm would meet the conditions to be placed into resolution. If the firm’s directors become aware that a SWD plan is judged to no longer maintain the firm’s solvency, they will need to consider their fiduciary duties under the Companies Act and their statutory obligations under Insolvency Act 1986 and Market Abuse Regulations.
Solvent wind-down (SWD) plans – specific criteria
SWD plans should be credible, specific, measurable, granular, open, risk aware, adaptable, owned by an individual and board approved. We have outlined some high level guidance against each of the criteria below:
Credible | New banks should ensure that their SWD plans can be effectively implemented – this includes, amongst other aspects, detailed numerical analysis of the options, a spectrum of metrics and as much preparation to execute the plan as possible before the plan is actually triggered – for example identifying potential buyers for the deposit or loan books and what price the firm is hoping to achieve; also (i) demonstrating how the firm will meet minimum regulatory requirements throughout, and (ii) considering the impact of changing accounting treatment, particularly in the last 12 months of the wind down and any implications for contractual debt covenants. |
Specific | New banks should ensure that their SWD plans are firm-specific, not prepared in a formulaic manner, and reflect their specific business models, operating costs and contractual obligations. |
Measurable | New banks should consider the timelines that they would be able to achieve in case of invoking any of the options in their SWD plans – against each option, it is highly beneficial to consider the ordering and timescales attached to each individual action as well as any possible divergences from the plans. Another helpful aspect to consider is whether an accelerated timeline is achievable and what it would take to facilitate that. |
Granular | New banks should ensure that their SWD plans are sufficiently detailed and consider both the financial and non-financial resources that will be needed to deliver the SWD (and maintain solvency throughout), for example what financial resources will be needed to keep the firm going until the wind down is complete and what non-financial resources in terms of key staff will be needed to achieve that. |
Open | New banks should undertake sensitivity analysis of the assumptions in their SWD plans. For example, what would happen if they have to suffer a larger haircut than planned on any of their assets sales or what would happen if it takes longer than planned to realise any of their management actions. |
Adaptable | New banks should consider contingencies in case things do not go as planned including considerations of stressed market conditions – for example what would they do if the options in their SWD plan fail and how they can improve their SWD plans on an ongoing basis as their firms grow and develop. |
Risk aware | New banks should ensure that their SWD plans include details of any key risks to the delivery of the plan and what mitigants they have put in place to manage those. |
Owned by an individual | New banks should assign the ownership of their SWD plans to an appropriate Senior Management Function (SMF) holder. |
Board approved | New banks should ensure that their SWD plans are reviewed, challenged and approved by their boards. Before implementing a SWD plan, directors should be satisfied that the firm has a reasonable prospect of avoiding an insolvent administration or liquidation and that every step to minimise the potential loss to the firm’s creditors has been taken. |
Linked to key documents | New banks should ensure that their SWD plans are closely linked to other key documents such as their recovery plans and ICAAP documents. |
Common challenges
We encourage firms to consider how they will ensure that their proposed solvent wind-down plans and arrangements sufficiently address the below points:
Solvent wind-down (SWD) plans
- Insufficient preparation: SWD plans should include a sufficient level of detail and as much planning and preparation as possible. It is essential for new banks to devote the necessary time and care in preparing their SWD plans. Firms should undertake regular, forward-looking and realistic assessments of their preparations for SWD in the event of failure.
- Unrealistic expectations: SWD plans need to be achievable and workable in practice in terms of the expected actions and timelines for the actions to be implemented. For example, new banks should consider whether they will be able to achieve the objectives of SWD if they need to suffer larger haircuts on the sale of any of their assets/portfolios or if they take longer than anticipated to complete the sales.
- Managing maturity mismatch: Firms in SWD will close out existing assets and realise their value, allowing them to meet liabilities as they fall due and build up a sufficient funds to pay out depositors and creditors in full. Critically, this must be achieved while avoiding a situation where liabilities fall due before the firm has managed to sell their existing assets.
- Valuation complexity: Firms that are fast growing and/or have complex assets can be more challenging to value. They are also usually effected by a greater range of external events, which may impact asset values. As a result, in the case where complex assets have to be realised, it may become more difficult to achieve a smooth and predictable wind-down that can ensure solvency throughout while repaying all creditors in full.
- Wind down speed: Firms in SWD should strike a balance in developing their wind down strategies, for example between accelerated portfolio sales and minimising the erosion of capital as these can often require large discounts to par value to execute.
- Changing accounting treatment: The solvency of a firm’s wind down can be impacted by changing accounting treatment particularly as the firm enters the last 12 months of wind down. Auditors may consider it appropriate for the accounts of firms in SWD to be completed on a gone concern rather than going concern basis. This may lower the valuation of the firm’s assets and potentially trigger covenants or early termination clauses in the firm’s contracts. In addition, if a firm in SWD has publicly traded instruments in issue, the change in the accounting basis may have disclosure obligations under listing rules. Such disclosures could also result in increased depositor withdrawals. The implications of a change in accounting treatment needs to be fully considered by banks as part of their planning.
Resolution plans
As described in the Bank of England’s approach to resolution, the Bank of England is responsible for taking action to manage the failure of banks, building societies and certain investment firms. This process is known as ‘resolution’. It is distinct from a normal corporate insolvency. Resolution is designed to protect the stability of the financial system of the UK by ensuring continuity in critical banking services, including deposits, as well as to avoid the use of public funds to support failed banks.
- Resolution takes place if a bank is ‘failing or likely to fail’ and it is not reasonably likely that action will be taken by the firm to change this. But resolution powers are only used if it is in the public interest. Two conditions must be met before a firm is resolved by the Bank of England:
- Firstly, the firm must be deemed ‘failing or likely to fail’. This includes where the firm is failing or likely to fail to meet our (both PRA’s and FCA’s) threshold conditions in a manner that would justify the withdrawal or variations of their authorisation. The specific threshold conditions include that the bank must have: (i) adequate resources to satisfy applicable capital and liquidity requirements; (ii) appropriate resources to measure, monitor and manage risk; and (iii) fit and proper management who conduct business prudently. This assessment is made by the PRA, having consulted with the Bank of England as a resolution authority.
- Secondly, it is not reasonably likely that action will be taken that will result in the firm recovering. This assessment is made by the Bank of England, as a resolution authority, having consulted the PRA, the FCA and HM Treasury (HMT).
- The conditions for entry into the resolution regime are designed to strike a balance between, on the one hand, avoiding placing an authorised bank into resolution before all realistic options for a private sector solution have been exhausted and, on the other, reducing the chances of an orderly resolution by waiting until it is technically insolvent.
- The determination that a bank satisfies the conditions for resolution discussed above does not, on its own, allow the use of all the resolution tools. Resolution powers allow the authorities to take actions, which directly affect people’s property rights and should therefore not be exercised unless justified in the public interest. In conducting the public interest assessment, the Bank of England must determine that resolution action is necessary to advance its statutory resolution objectives – those are summarised in Figure 2 of The Bank of England’s approach to resolution, October 2017.
- If the public interest test is not met, firms are placed instead into a modified insolvency regime, if they carry out critical banking services including deposits or client assets, and a normal corporate insolvency if they do not.
- The Bank of England sets the preferred resolution strategies for all authorised banks. For non-systemic authorised banks that do not supply transactional deposit accounts or other critical functions to a scale likely to justify the use of resolution tools, the preferred resolution strategy is the applicable modified insolvency procedure. This is the Bank of England’s insolvency procedure (BIP) as described in the Banking Act 2009, which is designed to ensure that, where a bank fails, depositors who are eligible claimants under the terms of the Financial Services Compensation Scheme (FSCS) are paid out promptly. Under this, the authorised bank’s business and assets are sold or wound up after covered depositors have been paid by the FSCS or had their account transferred by the insolvency practitioner to another institution using FSCS funds. BIP is likely to be the preferred resolution strategy for most new banks. Note that:
- Transactional deposit accounts are defined as accounts where customer withdrawals have been made nine or more times within a three-month period.
- The Bank of England will re-confirm and pursue the appropriate resolution strategy that best meets the special resolution objectives, including use of stabilisation powers, taking into account the circumstances at that time of a firm’s failure.
- In order to support orderly resolution, all authorised banks must maintain a single customer view and exclusions file and are required to provide this to the FSCS within 24 hours of a request – this is a formal document which lists all depositors including all necessary details for the FSCS to be able to facilitate a pay-out. Authorised banks should have the necessary systems and processes in place to be able to automatically identify the amount of covered deposits payable to each depositor and identify any portion of an eligible deposit that is over the specified coverage level.
- Authorised banks should provide resolution packs to enable us to prepare for orderly resolution. This will need to include Phase 1 information as defined under SS19/13 ‘Resolution Planning’.
Resource links
- SS3/21 Non-systemic UK banks: The Prudential Regulation Authority’s approach to new and growing banks – This outlines our expectations of firms and new banks and how those evolve throughout the authorisation journey.
- SS19/13 Resolution Planning – This document sets out our expectations on the information that authorised banks should provide to aid resolution planning.
- The Bank of England’s approach to resolution – This includes lots of useful resources on the UK resolution regime including a link to the Bank of England’s approach to resolution (also known as the ‘Purple Book’).
- Bank of England's Resolvability Assessment Framework (RAF) – This includes details on the RAF and a link to the latest PS ‘The Bank of England’s approach to assessing resolvability’.
Please refer to the International banks factsheet for further details. We will discuss our expectations with firms during the authorisation process and through the ongoing supervisory dialogue thereafter. If firms are in any doubt about what applies to them, we encourage them to speak to their supervisory contacts.
The PRA SS7/13 ‘CRD IV and capital’ clarifies ‘substantially the same’ for the purposes of pre-issuance notifications.