Chapter 2: RegTech, SupTech and the future of compliance Flashcards
What caused the heightened regulatory expectations?
The aftermath of the 2008 financial crisis has led to much-needed
regulatory reforms, large fines for misconduct and mismanagement,
and heightened compliance and risk management expectations within
firms.
What is RegTech?
RegTech is generally defined as the adoption of new technologies to facilitate more efficient and effective delivery or regulatory requirements.
What does RegTech do?
reduction of the cost of compliance via automation, or leveraging technology to increase the effectiveness of compliance (for example, by accessing broader data sets or employing better data analytics).
Who are the key players in the RegTech ecosystem? (4)
- RegTech companies,
- regulators,
- financial institutions and
- professional service providers, such as accounting,
legal, compliance and tax experts and advisers.
What are 3 types of RegTech application which the FCA has identified?
• those aimed at supporting regulatory compliance firms
• those aimed at improving regulatory oversight and modernising
regulation
• those aimed at re-engineering or reforming regulatory systems.
What is SupTech?
RegTech’s counterpart, SupTech, is revolutionising the work of supervisory agencies.
What does SupTech do?
Instead of periodically collecting aggregated data in reporting templates, ‘data pull’ approaches source data directly from the operating systems of regulated institutions at intervals ranging from 24 hours to 15 minutes.
What are the advantages of SupTech? (4)
This allows for the real-time monitoring of transactions, minimising reporting errors, and removing the opportunity for financial misstatements – even allowing automatic
incorporation of changes in regulatory requirements into the technological reporting protocols.
What are data-input approaches?
‘Data-input’ approaches, involve reporting institutions submitting data that are encoded into a human- and machine-readable format that use standardised electronic taxonomies, or ‘tags’ and sending it to a central database in a non-aggregated
form.
Give an example of data consolidation and analysis based on SupTech solutions.
For example, the Bank of Italy is combining suspicious activity reports with natural language processing analysis of press reviews to detect money laundering.
Give an example how the FCA uses trained algorithms.
the FCA has trained algorithms to model normal trading behaviour and automatically report signs of insider trading. These are revelations which otherwise might only have been brought to light by a human whistleblower, if at all.
How can SupTech help governmental organisations?
SupTech can also be used to refer to the use of technology by governments
to supervise their own agencies, and to assist with the supervisory
activities of the public and independent watchdog organisations.
What are challenges to RegTech adoption? (6)
- Lengthy procurement process
- Preference for large and established providers
- Privacy
- Bias decision making in ML
- Black Box in using ML
- Adoption of the Cloud
Explain why privacy concerns has prevented RegTech from further adoption.
The first obstacle is the balance between transparency and privacy. A survey conducted by Ernst & Young revealed a ‘tension between opinions about what channels companies should monitor and the types of surveillance that their employees
consider a violation of privacy’. For example, around 65 per cent of respondents respectively felt that email and phone call monitoring was a violation of privacy.
Explain bias in ML algorithms and give an example.
ML algorithms will learn from and perpetuate distortions in training data. Moreover, inherently algorithms are optimised to achieve particular goals, which can lead to biased decision making.
RegTech and SupTech are not immune. For example, fraud detection algorithms have been shown to be biased against certain ethnic minorities, immigrants and even against men.
