book

The REGTECH Book

Name: The REGTECH Book
ISBN: 9781119362142

by Janos Barberis, Douglas W. Arner, Ross P. Buckley

August 2019

Intermediate to advanced

392 pages

14h 11m

English

Wiley

Read now

Unlock full access

Cover
A FinTech and RegTech Overview: Where We Have Come From and Where We Are Going
About the Editors
Acknowledgements
1. Introduction
What a RegTech Compliance Killer System Will Look Like
Real-time Data Machine-readable Streams for RegulatorsSharing the KYC Burden for Small Business Through Digital ID
Technology-Enabled Collaborative Compliance
Collaboration in Compliance Is KeySharing Responsibility Within the OrganizationCollaborating Within the IndustryCollaborating with the RegulatorsThe Technology Boost to Enable Collaborative ComplianceThe Journey Has Just BegunNote
The Age of RegTech Disruption to the Status Quo Is Here
Regulatory Change Is No Longer a ProjectStep Forward RegTechNotes
RegTech and Financial Crime Prevention
Lack of ROI – Calling for a Framework OverhaulWhere We Stand Today – Manual, Manual, ManualRegTech – A World of Opportunities?OutlookNotes
RegTech: Tackling Regulation with Innovation
Removing the Bottlenecks to InnovationNot HibernatingFinancial Services = Financial TechnologyLondon and New York DominateBright FutureKey RegTech TrendsOther Developments

Identities, the RegTech Holy Grail
The Identity ProblemWhy Financial Services and RegTech?The Race Is OnThe Path ForwardNotes
2. The RegTech Landscape
Islamic RegTech
The IndustryThe OpportunityThe ChallengesThe SolutionConclusionsNotes
How RegTech Could Help Determine the Future of Financial Services
Where It All StartedCould It Have Been Different for Esther?Advent of RegTech and Innovation in TrustView from the Top – Feedback Received from Interviews of 120+ CEOs and Board MembersUse Cases
Introducing the RegTech Quality Compass: The Five Factors of RegTech Quality
The SERVQUAL Dimensions in BriefDeveloping a Quality Framework for the Digital RegTech WorldThe Directions of the RegTech Quality CompassQuality Drives Satisfaction Drives ProfitabilityBenefits of Working with the RegTech Quality Compass FrameworkNotes
How Banks Are Managing Their Risk Through Technology and Market Infrastructure
The Markets Post Lehman BrothersBasel IIIDodd-Frank, EMIR, and LiquidityBCBS 248EMIR, Dodd-Frank, and MiFID II – More Players, More CompetitionRole of Clearing-houses and Related InfrastructureManagement of Collateral Requirements by CCPs
RegTech and the Science of Regulation
Science Fiction and Banking RealityManaging Risk – The Holy Grail of BankingRegTech and the Regulatory FrameworkRegTech and Modern TechnologyHuman-Factors Impact of RegTechPreparing for RegTech – Technologists and Bankers
GDPR and PSD2: Self-Sovereign Identity, Privacy, and Innovation
A Market in Data-led ServicesThe Need for a More Nuanced and Better Understood Working Definition of PrivacyPrivacy Is Not Just About Withholding Information from Others; It Is About the Individual Having Control Over Who Has Access to ItHow Can Technology Help Implement These Principles and the Intention of GDPR?The Future: Privacy and Innovative Markets Both Better Served by Self-Sovereign Identity
Rise of RegTech in the German Market
Overview of RegTech Business Models in GermanyUse Case: SolarisBankHow RegTech Will Evolve
The Power of RegTech to Drive Cultural Change and Enhance Conduct Risk Management Across Banking
Culture Determines What You Do When No-one Is LookingGovernance Framework: Three Lines of Defence Powered by RegTechData and New Skills as Strategic AssetsTechnology to the RescueCompliance SpendingFinTech and RegTech SolutionsNotes
3. Regulatory Innovation and Sandboxes
Discover the Innovative Technology Behind RegTech Leaders
The Regulatory QuestBig DataConclusion
Enabling RegTech Up Front: Unambiguous Machine-readable Regulation
Publishing Machine-readable Regulation on the WebNotes
Align Open Banking and Future-Proof RegTech for Regulators and Third-Party Providers to Deliver the Optimal Consumer Convenience and Protection
Transaction Model (for a Picture-perfect Open Banking Scenario)Notes
A Seat at the Table – Bringing the Voice of FinTech to the US Regulatory Process
The Case for Financial Services Innovation in SME LendingUS Financial Regulation – Outdated, ComplexThe US Financial Regulatory System Is Silent on Innovation in General and FinTech in ParticularWho’s Speaking Up for the FinTech Sector?Looking ForwardNotes
Sandbox Games for RegTech
Regulatory Sandbox in the Stricter SenseConclusion
Legal Guidance for Entering the Sandbox and Taking Advantage of Cross-Border Cooperation Agreements
Background: The Genesis of the SandboxWhy Enter the Sandbox?Note
RegTech and the Sandbox − Play, Innovate, and Protect!
The Rise of RegTechRegulatory Sandboxes for More InnovationNotes
4. A Call for Innovation or Disruption?
Governance, Risk, and Compliance: Complex or Complicated?
Asset Management: A Case StudyComplex: ‘Involving Many Different and Connected Parts’Complicated: ‘Involving Many Different and Confusing Parts’From Complicated to ComplexTechnologyNote
Innovation or Disruption: Not Always Black and White
Disruption or Innovation: A Tale of Two CulturesKeys to Success for FinTech PartnershipsNotes
How to Use Digital Marketing Data in Regulated Industries
Conclusion
Invention Versus Reinvention
What Is Open Banking?Building a Bank Through PartnershipsPlatform Banking Is How It StartsMarketplace Banking Is How It DevelopsCo-ownership of Products and CustomersThe Execution Model Is Fundamental to SucceedAPI Monetization and Getting the Business Model RightConclusionNote
Making Regulation Machine Readable
Invest in Industry Standards, Instead of Individual ApproachesShift Lawyers’ Mindsets Towards DigitalManaging Regulations Digitally, Instead of by HandHow to Digitize Regulations?But How Can RegTech Platforms Digitize Regulation?Notes
Can We Digitize Know Your Client?
How Are We Doing Today?Cognitive ComputingConclusionNotes
5. RegTech Investment and Compliance Spending
Why a Substantial Investment in Financial Services RegTech Now Will Strategically Reduce Your Future Regulatory Compliance Costs
Notes
Old Tech + New Tech = RegTech: Excel Spreadsheets and End User Computing in a Regulated World
Which Regulations Apply to EUC Solutions in Financial Organizations?ConclusionsNotes
Will Financial Institutions Ever Achieve a 100% Compliance with Anti–Money Laundering and Combating the Financing of Terrorism Rules?
Innovation and Disruption – The Magic Words for Investors?Standardization, Digitization, and Automatic ValidationCustomer Identification and VerificationRepository, Data Ownership, and Self-AssessmentConclusion
Merits and Demerits of a Shared Risk Engine
Cloud Infrastructure for StorageData HandlerModel SilosStress Testing and Scenario AnalysisIntegrated Risk ReportingArchitecture DetailsRapid ScalingReduced CostImproved Data QualityFaster and Modular ModellingImproved Supervisory ComparabilityData PrivacyStandardization of Internal ModelsSystemic Model RiskConclusions
Spend on Compliance: A Necessary Evil or Business Enabler?
Compliance as a Cost CentreWhy Is Compliance Not Addressing the Blind Spot?RegTech: A New Wave of OpportunityExamplesHow to Get StartedNotes
6. RegTech for Authorized Institutions
RegTech Opportunities in a Post-4MLD/5MLD World
A GLOBAL ISSUEThe Risk Based Approach (RBA)The Union of RegTech and Increased RegulationBeyond Regulatory ComplianceBeyond the Regulatory Need for RegTechAn Enhanced Approach
Passporting in the EU – Is an Opportunity Also a Problem?
What Constitutes ‘to Provide Any or All of the Investment Services’The Actual Application Form Process That an Investment Firm Is Required to Complete When Seeking an EU PassportConclusion
What Do PSD2 and Similar Activities Mean for Banks and FinTech Start-ups?
PSD2 Introduces Two Types of Entities to the Financial Industry: PISP and AISPAccess to Accounts (XS2A)Customer Authentication and SecurityNotes
7. RegTech from a Regulatory Perspective
The Role of Anti–Money Laundering Law and Compliance in FinTech
Anti–Money Laundering LawCounterterrorist Financing LawSanctions LawAML Compliance 101
Banking Supervision at a Crossroads – RegTech as the Regulators’ Toolbox
Technology and RegulationCompliance and ReportingRisk MitigationConclusionNotes
FinReg, FinTech, and RegTech – Quo Vadis, EU?
Financial Market Regulations as a Game ChangerRegTech – The Helping Hand for Financial Institutions and RegulatorsEU’s Watchful Approach on FinTech and RegTechOutlook: Call for Regulatory InteroperabilityNotes
The RegTech Landscape from a Regulator’s Perspective
The Emergence of a New Breed of Technology-Driven Financial InstitutionsThe Need for Traditional Financial Institutions to Redesign Their ProcessesThe Positioning of Regulators in the Midst of This EvolutionNotes
RegTech is for Regulators Too, and its Future is in Emerging Markets
Regulators Are Starting to Innovate as WellFor Emerging Market Regulators, the Risk of Inaction Is Too HighGlimpses of a RegTech Approach to Regulation are EmergingIn Emerging Economies, We Are at the Beginning of a Wave of Regulatory Experimentation with RegTechWhere RegTech for Regulators Is Headed
8. Blockchain and AI in RegTech
The ROI of RegTech
So what does this mean in practice?
The Augmented Compliance Office
Know Your CustomerEnterprise Risk ManagementPredictive Regulatory MonitoringIn Conclusion
Dissolving Barriers: A Global Digital Trust Protocol
Attempts at Unified Global IdentityGetting to Know More About This Identity (Due Diligence)Beyond One-time KYC: Keeping RecordsUnderlying Core Global Regulatory PrinciplesCore Function of Compliance Can Be Replaced by an AI PlatformThe Power of a Common Global KYC PlatformKeeping Records Beyond KYCConclusion
Can AI Really Disrupt Monitoring for Suspicious Activity?
Grinding to a HaltA DefinitionLinking with the FactsThe Next Generation of Suspicious Activity Monitoring in PracticeThe Challenge with the Next-Generation ApproachConclusion
Forging a Responsibility and Liability Framework in the AI Era for RegTech
Applying Current Legal Frameworks in the AI EraKey Issues for Forging a Responsibility and Liability Framework in the AI EraThe Road Ahead: Addressing Opacity and Complexity for AI ResponsibilityNotes
Compliance with Data Protection Regulations by Applying the Blockchain Technology
Distributed and Transparent Source of TruthImmutable and Tamper-proof LedgerSecure Space to Process TransactionsNotes
Blockchains Are Diamonds’ Best Friend: The Case for Supply Chain Transparency
What Is Provenance?What Technology Solutions Are Available?Knowing Your Object (KYO)Blockchain’s PotentialFuture Challenges
9. RegTech Applicability Outside the Financial Services Industry
Protecting Consumers and Enabling Innovation
What Is RegTech?Data RevolutionEnter Data Protection RegulationConsumer EmpowermentThe RegTech Solution
RegTech Impact on the Private Security Industry
ArtTech: How Blockchain Can Improve Provenance
IntroductionProvenance and Blockchain BackgroundConclusionNotes
The Potential of RegTech in Improving the Effectiveness of Environmental Regulation
The Clean Energy RevolutionRegulatory Uncertainty in Monitoring Environmental DataThe Use of Technology in Achieving More Effective Environmental RegulationConclusionNotes
RegTech Applicability Outside the Financial Services Industry
Non-financial ComplianceTone from the Top/EthicsDue Diligence/Enhanced Due DiligenceAnti-bribery and CorruptionTrust and SafetyCommunications Archival/MonitoringInsider TradingConclusion
Using RegTech as a Cross-Industry Digitization Tool
Lessons Learned in the Financial Services IndustryData Protection Is a Now a Cross-industry ProblemConsequences of Not Protecting Data (and the Benefits of Doing So)Issues Related to Industries Outside of the Financial Services SectorHow RegTech Can Be Applied to Industries Outside of the Financial Services SectorConclusionNote
RegTech Unleashed: Discovering the Pathways Beyond Finance
More than FinTech and FinanceRegulatory Costs Driving Cross-sector DemandBig Data Also Drives Demand in BusinessCo-opting Public Sector for Vibrant EcosystemRegTech: The Next GenerationConclusionNotes
RegTech Outside Finance: Four Options, One Clear Choice
FATF RecommendationsFour Available OptionsThe Option to FightThere Are So Many Solutions Out ThereConclusionNotes
RegTech: A Safe Bet for Tackling AML and Fraud in the Gambling Sector
The RegTech Technology ToolboxRegTech in a Gambling ContextSupervised Learning TechniquesUnsupervised Learning Techniques360° View of BettorsImproving Efficiency by Centralizing Data for Compliance TeamsAssembling Everything in a Real-time ArchitectureMachine Learning’s Black Box ProblemThe Positive RegTech Externality
10. Social Impact and Regulation
The FinTech Ecosystem Between Legal Compliance and Social Dimension
Notes
The End Justifies the Means: Putting Social Purpose Back at the Heart of Banking and Financial Regulation
Lessons Learned or Business as Usual?The Collapse of Trust and the Spread of InequalityThe Role of RegTech as an Instrument of ChangePurpose-driven RegulationBetter Collaboration for Better OutcomesNotes
RegTech’s Impact on Trust and Identity
Tools for Restoring TrustIdentity Vulnerability Is Globally PervasiveHow the Futurist Sees Trust and Identity: Social Due DiligenceNotes
How Technology Is Driving Financial Inclusion
The Role of GovernmentThe Role of TechnologyThe Emergence of the Regulatory SandboxTechnological Inclusion Means Financial InclusionWhere Next?Notes
Banking the Unbanked and Underbanked: RegTech as an Enabler for Financial Inclusion
Why Is That?RegTech as a Solution to Financial ExclusionIndia as a Case StudyAfrica as a Case StudyMENA Region as a Case StudyRefugees as a Case StudyConclusion
Superhero Way: Enhancing Regulatory Supervision with Superpowers
The Flavour of PreventionThe PreyAt Eye LevelRobocop Way?
11. The Future of RegTech
Market Surveillance 2020
Fifty Billion EventsCapital Markets Policing ChallengesCall for Action – Regulations in EuropeKey Business and Technology Requirements for Market Analysis Platform (MAP)
I Regulate, Therefore I Am? Regulating Humans’ and Machines’ Conduct and Culture
A Brave New World of Regulated ActivityRegTech and the Future of Digital Conduct RiskWhom Do You Trust? Empowerment Through Blockchain and Identity ManagementConclusionNotes
The Future of RegTech
A Big OpportunityCompliance CultureNew TechnologiesRoles of RegTech Companies
From RegTech to TechReg – Regulation in a Decentralized World
Existing Regulatory FrameworkDecentralizationRegulation in a Decentralized MarketA Broader Case for Regulating Technology ProvidersTechReg Market OpportunitiesNote
Emerging Innovations in RegTech
List of Contributors
Index
End User License Agreement

Content preview from The REGTECH Book

Old Tech + New Tech = RegTech: Excel Spreadsheets and End User Computing in a Regulated World

By Brendan Bradley¹ and David Jones²

¹Chairman, ipushpull

²CTO, ipushpull

In the 2012 ‘London Whale’ trading debacle, JPMorgan suffered a loss of at least $6 billion on a portfolio of credit default swaps. The bank’s internal report¹ into the event described how misuse of Microsoft Excel spreadsheets had contributed to the loss. A set of Excel spreadsheets was being used to manage the risk on the portfolio. The risk management process was manual and involved copying and pasting data from one spreadsheet to another. More importantly, a calculation error in the spreadsheet had the effect of underestimating risk by half.

This scenario is all too familiar within financial institutions (FIs), where tools like Excel, Access, and MatLab are widely used by non-developers to implement end user computing (EUC) solutions. Regulators have recognized the risks that EUC solutions pose and have issued regulations aiming to oblige banks to monitor and control their use. In this chapter, we examine the regulations that aim to mitigate the risks of EUC solutions. We look at how FIs use EUC solutions and why this is likely to continue, and we summarize the RegTech solutions that can help banks implement these regulations.

Which Regulations Apply to EUC Solutions in Financial Organizations?

A number of recent regulations apply to spreadsheet usage within FIs. It is important to note that they do not ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781119362142Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

The REGTECH Book

by Janos Barberis, Douglas W. Arner, Ross P. Buckley

Old Tech + New Tech = RegTech: Excel Spreadsheets and End User Computing in a Regulated World

Which Regulations Apply to EUC Solutions in Financial Organizations?

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.