Regulation and Supervision of Fintech: Ever-Expanding Expectations

Regulation and
supervision
of fintech
Ever-expanding expectations
March 2019
kpmg.com
1 Regulation and supervision
of fntech
Contents Executive
Executive summary..................... 1
Implications for frms................... 3
Fintech risks ................................ 5
Regulation and supervision ......... 7
How KPMG can help ................. 13
summary
Contacts .................................... 15
Fintech is already delivering signifcant benefts to

consumers and investors; to fnancial services frms and
fnancial market infrastructure; and to fnancial stability and
fnancial inclusion. However, the increasing use of fntech
solutions and emerging technologies also brings risks, to
which regulators and supervisors are responding.
Consumers and investors The regulatory and supervisory

are beneftting from both the response to fntech has evolved
emergence of new fntech solutions through three stages. Initially,
and the evolution of existing the response was to focus on
fnancial services providers. This the benefts of fntech and on
has generated a wider range of supporting the growth and
fnancial products and services adoption of new fntech solutions.
being delivered more effciently Regulatory intervention was limited
and effectively, with competitive to little more than fne-tuning
- to take
pressures on frms to adopt a more account of the impact of fntech on
-
consumer-centric approach. the ways in which fnancial services
were provided.
Fintech
“Technologically enabled fnancial innovation that could
result in new business models, applications, processes
or products with an associated material effect on
fnancial markets and institutions and the provision of
fnancial services.”
Financial Stability Board
© 2019 KPMG International

Cooperative (“KPMG International”).
KPMG International provides no client
services and is a Swiss entity with
which the independent member frms
of the KPMG network are affliated. All
rights reserved.
Regulation and supervision of fintech 2
In the second stage, regulators These initiatives cover a wide range of

and supervisors began to worry areas, including technology risk, cyber Financial services frms need to be
increasingly about the risks arising security and operational resilience able to demonstrate not only that
from fntech. more generally; data privacy; consumer they are in compliance with the
protection; frms’ governance and risk growing array of fntech-related
These risks can be characterised as governance; and amendments to anti- regulatory requirements but that
risks to: money laundering requirements. they have considered and taken
• Consumers and investors; into account the various risks
The emerging international standards posed by fntech more generally.
• Financial services frms; and
have mostly taken the form of high-
• Financial stability. level principles, leaving national Successful well-managed frms
implementation (both regulation and will adopt a proactive response
In the third stage, regulators and supervision) to diverge considerably to emerging risks and to evolving
supervisors have been taking specifc across jurisdictions and across regulation and supervision, not a
actions in response to these risks. different fnancial services sectors. purely reactive response as and
This has included the development when regulatory and supervisory
of international standards (these reactions are fnalised.
standards are shown in the timeline on
pages 11-12), the implementation of
increasingly detailed and prescriptive
national rules and guidance, and shifts
in supervisory priorities.
Fintech regulation
Drivers Risks Regulatory responses
Fintech adoption Risks to consumers • Regulatory perimeter

• Increasing reliance on technology • Lack of consumer understanding • Consumer protection
• Increasing interconnectedness and • Mis-selling
- of products and services • Data protection, security and privacy
complexity • Financial exclusion
• Economies of scale in IT applications • Data privacy, security and protection
Risks to frms • Regulatory perimeter

• Business model viability • Governance
• Governance • Risk management
• Technology risk and operational • Operational resilience
resilience
• Data handling
• Conduct and AML
• Legal
Risks to fnancial stability • Data and information gathering

• Concentration and analysis
• Alternative channels of financial • Emerging regulatory interventions
intermediation
• Herd--like behaviour
• Use of crypto assets
• System--wide vulnerabilities
© 2019 KPMG International Cooperative (“KPMG International”). KPMG International provides no client services and
is a Swiss entity with which the independent member frms of the KPMG network are affliated. All rights reserved.
3 Regulation and supervision of fintech
Implications Regulatory and supervisory

pressures on frms’ governance
Board and senior

management level
for firms
awareness and
understanding of fintech
applications and fintech--
related risks.
Active board level

engagement on issues
such as cyber security,
outsourcing, and
operational resilience
more generally.
Firms entering the fntech space – established fnancial
Clarity of senior
institutions, established non-fnancial corporates and start-ups
management
– need to factor the ever-changing nature of regulation and responsibilities and
supervision into their strategies, business planning, governance accountabilities for fintech
applications.
and risk management.
Board level consideration
of the implications of
Overall approach Established fnancial institutions that fintech developments
adopt fntech may – at least initially – for the substance
As with all business and operational
face different types of regulation and and viability of a
developments, fnancial services
supervision to established fntech- firm’’s strategy and
frms need to consider the wide
enabled non-fnancial corporates business model.
range of risks arising from the use of
and start-ups entering the fnancial
fntech and ensure that these risks are
services sector, but over time these
properly captured within a frm’s risk
differences are likely to diminish.
governance structure and procedures.
Firms should also be aware of, and Redrawing the Risk governance framework
responsive to, the different ways in regulatory perimeter Regulators and supervisors are
which regulation and supervision might Regulators are redrawing the focusing on how fntech affects the
affect their businesses, and to build regulatory perimeter to take account of core risk governance competencies of
this assessment into their strategic new or changing products and services identifying, managing, measuring and
planning and risk mitigation activities. emerging as a result of fntech controlling risks across the three lines
solutions and emerging technologies. of defence, and having the appropriate
This needs to be a proactive process, resources, skills and expertise to
led by the frm itself, thinking in Governance deliver this effectively.
advance about how it can address and
mitigate fntech-related risks, not a Ever-expanding regulations and Depending on the business activities
purely reactive response to regulatory supervisory expectations are being and fntech applications adopted by
and supervisory initiatives as and introduced to require the Boards a frm, this is likely to cover at least
when they emerge. and senior management of frms to the development of new products
understand, oversee and manage and services, outsourcing, the use
effectively the risks arising from the of artifcial intelligence and the
development and adoption of fntech automation of both front and back
solutions and emerging technologies. offce tasks, technology risk, cyber
security, operational resilience, AML
and conduct risk.
Regulation and supervision of fntech 4
Data Business model Different approaches

While frms are expected to meet Current and prospective regulation and across jurisdictions
existing data protection requirements, supervision may have an impact on a Divergences across jurisdictions in
they also need to take a proactive frm’s strategy and business model. the regulation and supervision of
approach to the possibility that fntech activities are an important
fntech developments may lead to Some business opportunities may consideration for frms in deciding
a fundamental re-thinking of data be constrained by regulators and where to locate these activities.
privacy, security and protection supervisors intervening to prevent This could result in regulatory
by fnancial services regulators or limit what frms can do (for arbitrage where frms are attracted
and by data protection authorities example, restrictions on sales of by lower regulatory requirements, but
more generally. some products to more vulnerable equally there have been examples
and less sophisticated consumers of frms wanting to promote their
and retail investors), while in other fntech activities on the basis that
cases frms may need to adjust they are regulated and supervised to
their product and service offerings high standards.
in response to the costs of meeting
regulatory requirements.
Regulatory and supervisory pressures on frms adopting fntech
Risk
governance Data
Governance Business
Firms model viability
adopting
fntech
Regulatory Differences in regulation

perimeter and supervision across
jurisdictions
is a Swiss entity with which the independent member firms of the KPMG network are affiliated. All rights reserved.
Fintech risks
In response, regulators and
supervisors have identifed a wide
range of risks – to consumers, to
regulated frms themselves, and
potentially to fnancial stability.
Risks to consumers
Although fntech should bring many
Regulators and supervisors have identifed risks arising from benefts to consumers, there is
three main fntech-related drivers, namely the increasing also scope for consumers to be
reliance of fnancial services frms on technology, the disadvantaged.
increasing interconnectedness within the fnancial sector, and Lack of consumer understanding –
the prospect of greater concentration and herd-like behaviour. consumers may not fully understand
the nature and risks of the fntech-
related products and services they are
being offered.
Mis-selling of products and

services – the adoption of new
fntech solutions could inadvertently,
The list of fntech-related
- risks identifed by regulators and supervisors or intentionally, provide new or
has grown rapidly over the last few years. There are three main drivers of different ways for manufacturers and
these risks. distributors of fnancial products and
services to mislead consumers, or
to expose consumers to fraudulent
Financial services frms are becoming activities. More complex value
chains may also complicate the
increasingly reliant on technology and on responsibilities and accountabilities
the use of large data sets. for redress and remediation when
The use of technology is not new, but the pace of misconduct occurs.
change has picked up markedly and expanded into areas
that are new for many frms, including data collection Financial exclusion – the increasing
and analytics, artifcial intelligence, automation, robo-- use of big data analytics offers scope
advice, cloud computing services, platforms, blockchain for greater price and availability
and crypto assets. discrimination, while increasing
digitalisation may exclude older and
other vulnerable consumers.
The fnancial sector is becoming
increasingly interconnected and complex. Data privacy, security and
Examples of this include the outsourcing of protection – consumers are
many fntech-related
- functions and services, and vulnerable to the loss of data, and may
the increasingly platform-based
- nature of many not understand the ways in which their
fnancial services. data are being used.
Reduced competition – although

Economies of scale tend to be strong in IT the initial infux of new entrants has
increased competition, and niche
applications, leading to a natural tendency players are likely to continue to provide
for a highly concentrated market with a competition in some parts of the value
small number of large providers. chain, natural economies of scale in
Meanwhile, the use of the same or similar IT solutions technology and data handling may
by fnancial services frms may generate herd-- eventually result in some markets
like behaviour. being dominated by a small number of
large frms.
© 2019 KPMG International Cooperative (““KPMG International””). KPMG International provides

no client services and is a Swiss entity with which the independent member firms of the KPMG
network are affiliated. All rights reserved.
Regulation and supervision 6
of fntech
Risks to frms Risks to financial stability

Although the precise nature of the Fintech may prove to be yet another Although mostly still at a stage
risks depends on the types of fntech example of the familiar story of where the risks to financial
solutions and new technologies that business developments running stability remain small, regulators
frms are adopting, the identifed ahead of the ability of some frms to are paying increasing attention
risks to regulated frms fall into six put in place the systems and controls to the potential risks to financial
broad categories. necessary to manage and control stability from a number of
the risks. -
fintech-related developments.
Business model viability – fntech There is also the more general
developments have increased the Data handling – as customer data concern of whether there is
competitive pressures on many become even more valuable this sufficient information available to
fnancial services frms. Some will increases the potential for misuse track accurately the magnitude
struggle to survive. and concerns about data privacy and precise nature of some of
and protection. In addition, data these developments.
Governance – the boards and limitations may make it diffcult for
senior management of frms may frms to validate outcomes, not least Concentration–– successful
not have suffcient awareness where artifcial intelligence is used fintech firms (and fintech adopters)
and understanding of fntech and to analyse data sets and to generate and a small number of dominant
of fntech-related risks, and may solutions. third party suppliers may emerge
therefore be unable to identify, as being of systemic importance.
measure, manage and control these Conduct and AML – fntech adoption
risks effectively. Responsibilities and the resulting changes in how frms Alternative channels of financial
and accountabilities for fntech and operate could result in frms struggling -
intermediation–– non-bank
risk management may also not be to meet conduct of business, market providers of credit, payment
suffciently clear. dealing and anti-money laundering systems and other financial
requirements. activities may grow rapidly while
Technology risk and operational not being regulated appropriately.
resilience – the increased reliance Legal – some fntech applications
on technology, the increasing use of raise diffcult legal questions, some of Herd-like behaviour–– this may
outsourcing to third party providers of which remain to be fully resolved, not arise from the widespread use of
technology and data, and other forms least where cross-border operations similar machine learning and other
of increasing interconnectedness extend across different national legal strategies for lending or trading.
all serve to heighten risks around and regulatory frameworks.
operational failures, control over third Use of crypto assets–– although
party providers and cyber security. the use of crypto assets is
relatively low, there are concerns
Financial institutions are becoming that an increasing use of crypto
increasingly vulnerable to internal assets could lead to financial
and external attacks, including cyber- instability as a result of price
attacks, and to operational failures that volatility and the potential
may arise from inadequate business impact of crypto assets on
continuity planning for IT systems and paymen t systems.
processes, or poor processes relating
to IT change management – especially Vulnerabilities–– from the
for frms with multiple and old legacy increasing levels of operational
IT systems. risk and cyber risk in the
financial system.
Regulation and
supervision
Fintech is moving rapidly from ‘under the regulatory radar’ and
is attracting growing regulatory responses and supervisory
scrutiny. The list of regulatory and supervisory responses to
fntech-related risks continues to lengthen. This will ratchet up
over the coming years as the fntech sector and the adoption
of fntech solutions continue to develop and grow, and as the
associated risks evolve.
The regulatory response to fntech is

moving on from high level principles –
for example the ten “considerations”
for banks and their supervisors set out
in the Basel Committee’s February
2018 sound practices paper on the
implications of fntech developments
– or a reliance on existing legislation
and rules to a more detailed application
of new rules and guidance to the Our earlier paper Regulation 2030:
specifcs of fntech-related activities. what lies ahead? raised the question
of whether the regulatory response to
There may not yet be a one-for-one fntech might provide an opportunity
mapping of regulatory responses to redraw the boundaries about where
to each identifed risk, but on past consumer/investor responsibility
performance we can expect regulators begins and ends, or similarly to use
to end up not far away from such fntech as a way of improving risk
an outcome. warnings and then leaving the choices
and consequences to consumers/
Despite the growing number of sets of investors. All the evidence to date
fntech-related international principles points in the opposite direction, so
and standards, the implementation frms can expect ever more detailed
of these principles and standards regulation of their fntech-related
remains very uneven and inconsistent activities, especially (but by no means
at national level, while some countries only) where they touch on retail
have introduced very detailed consumers and investors.
regulations in some specifc areas.
Regulation
The regulatory response to fntech Data and artifcial intelligence –
takes many forms. existing data protection legislation,
such as the EU General Data
Regulatory perimeter – some fntech Protection Regulation (GDPR), already
developments, such as the use of covers some of the data protection
crypto currencies, the outsourcing issues arising from fntech.
of cloud computing, and the move
of some non-fnancial services frms But fntech developments are
into the provision of specifc products continually highlighting new areas in
and services such as lending to SMEs which additional or refned regulation
and retail payments systems, raise may be required, for example in
questions about where the regulatory the use of artifcial intelligence and
perimeter should be drawn. The distributed ledger technology, and
regulatory net is widening, and some in the general trend towards the
frms that are currently outside the gathering of an ever-broader range of
perimeter may fnd themselves subject fnancial and non-fnancial data from,
to regulation in the future. and sharing across, a wider set of
parties. A more intense debate can
As the regulatory net widens, the be expected about whether there are
intensity of regulation may also appropriate frameworks in place for
increase. For example, the regulatory the gathering, storing, sharing and use
requirements on loan-based and of data, both domestically and cross-
investment-based crowdfunding have border.
tended to expand from their initial
emphasis on clear communications Governance of regulated frms –
and risk warnings to funders. These regulators are increasingly setting rules
requirements have shifted to a or guidelines that focus on ensuring
focus on service providers holding that boards and senior management
capital-type resources to protect have suffcient awareness and
funders in some circumstances, understanding of the fntech
and putting in place adequate applications being used by the frm, in
procedures for credit risk assessment, order to manage the risks effectively.
governance, systems and controls, Some regulators are also requiring
and complaints handling. This is also frms to identify clear individual
refected in guidance on fntech credit senior manager responsibilities
licence applications, with a focus and accountabilities for managing
on governance, internal controls, fntech-related risks.
operations, capital and liquidity.
Within this approach, some regulators
Retail conduct – regulators are are also focusing on board and
turning to familiar approaches to senior management responsibilities
consumer protection in the fntech age, in specifc areas of risk such as
using a mixture of (a) transparency algorithmic trading, cyber security,
and disclosure to raise consumer outsourcing to third party service
awareness of the nature and risks of providers, and operational resilience
products and services, (b) prohibiting more generally.
or limiting the sale of some products
and services to retail customers,
and (c) re-writing detailed conduct of
business requirements to adapt them
to fntech developments.
Risk management – although Open banking – regulation has in part Similarly, in the UK the government
mostly covered by existing regulatory constituted a market in open banking has established a Centre for Data
requirements on risk management, by establishing the basis on which Ethics and Innovation. Although not
some fntech developments have data can be shared between different itself a regulator, the role of the Centre
generated regulatory responses parties, usually through an application will be to analyse and anticipate
calling for regulated frms to address programming interface (API). gaps in governance and regulation
specifc fntech-related emerging that could impede the ethical and
risks within their risk management Accounting and regulatory innovative deployment of data and
framework. This has included the treatments – fntech can generate artifcial intelligence (AI); agree and
money laundering and market abuse new types of exposure, such as to articulate best practice, codes of
risks in the use of crypto assets; the crypto assets, requiring the clarifcation conduct and standards that can guide
risks arising from the use of distributed or revision of the accounting and ethical and innovative uses of data
ledger technology in payment, clearing regulatory (risk weight) treatments. and AI; and advise government on the
and settlement systems, and more specifc policy or regulatory actions
generally in the storing and validation Financial stability – the frst steps by required to address or prevent barriers
of transactions data; the application regulators here are likely to continue to innovative and ethical uses of data
of outsourcing principles to specifc to focus on data and information and AI.
fntech applications such as cloud gathering and analysis, but in due
computing and artifcial intelligence; course some regulatory interventions
the testing and use of artifcial may emerge in response to fntech-
intelligence, machine learning and ‘big related risks to fnancial stability.
data’ across a range of applications;
and data privacy, security and Endorsing industry and other
protection. codes and principles – regulators
and supervisors may rely in part on
Cyber security – regulators are codes and principles developed by the
generally focusing on the national industry or by other agencies.
implementation of international
standards in the key areas of For example, the EU Commission has
governance, workforce skills and established a High-Level Expert Group
capabilities, identifcation (risk analysis on Artifcial Intelligence, tasked with
and assessment), protection and making recommendations on policy
detection (access management, development and on ethical, legal
information security, security controls, and societal issues related to artifcial
expertise and training, monitoring and intelligence. The Group proposed a
testing, and information sharing), and draft set of artifcial intelligence ethics
incident response (crisis management, guidelines in December 2018.
recovery and learning lessons).
Main regulatory responses to emerging technologies and fntech solutions
and competition
Data protection
investor access
Limits on retail
Governance of
Concentration
Disclosures to
Changing the
management
resilience of
Operational
consumers
regulatory
perimeter
Firms’’risk
frms
frms
AML
Crypto assets
Distributed ledger technology
Cloud computing
Crowdfunding
Payment systems
Artifcial intelligence, machine learning

and use of big data
: Denotes the main types of regulation that are being

introduced in response to each type of fntech development.
“ ”
Supervision
Supervisors are increasingly refecting More specifcally, supervisors are Risk management function –
fntech-related issues in their focusing (to varying degrees across whether frms have reshaped their
supervisory priorities. This is seen countries) on: internal organisation in response to
most generally in areas such as cyber fntech developments, with adequate
security, outsourcing, operational Business models and viability – resources and clear reporting lines
resilience and AML. whether a frm has a well-considered across all three lines of defence;
strategy and business model that and whether frms (and indeed their
To a large extent the focus here is takes account of fntech developments supervisors) have the technical
on the ‘basics’ of how regulated and provides a solid basis for the capabilities required to manage
frms identify, monitor and manage continuing viability and sustainability of technological innovation, including
the risks to them arising from the frm. hiring for appropriate skill sets such as
fntech. Supervisors are reviewing data scientists, mathematicians and
and evaluating how frms address Governance – how well boards and statisticians.
these risks through their strategic senior management understand
and business planning, new product fntech and its related risks, and how Conduct – in addition to complying
approval and outsourcing procedures, well a frm has identifed, assessed with specifc detailed regulatory
and risk management practices more and addressed these risks. requirements, whether frms are
generally; and how frms monitor and taking a more wide-ranging view of
review the impact of fntech on their how fntech may be changing the risks
compliance with applicable regulatory facing consumers and how these risks
requirements, including those might be addressed.
related to consumer protection and
data protection.
Fintech-related
- regulatory and supervisory initiatives Oct 2017
International standard setters, EU and UK FSB report on fnancial
sector cyber security
May 2017 regulations, guidance and
FSB report on fntech credit: supervisory practices
market structure, business
models and fnancial
Dec 2016 stability implications
ESAs Joint
Committee report on
Feb 2015 the use of big data by Feb 2017 June 2017
EBA opinion on lending - fnancial institutions IOSCO research FSB report on fnancial stability
based crowdfunding report on fntech implications from fntech
2015 2016 2017
Feb 2017
June 2015 June 2017
Committee on Payments Nov 2017
FATF guidance on a risk-based EBA report on
and Market Infrastructure FSB report on artifcial
approach to virtual currencies innovative uses of
report on distributed ledger intelligence and machine
technology in payment, consumer data by learning in fnancial services
clearing and settlement fnancial institutions
Key:
Aug 2017
General The EBA's
’ approach to
Crypto assets May 2017 fnancial technology
Distributed ledger technology EBA draft recommendations
on outsourcing to cloud
Peer to peer lending service providers
Data and AI
Cyber security
“
© 2019 KPMG International Cooperative ("KPMG International"). ”
KPMG International provides no client services and
Outsourcing – whether frms are In addition, major frms may be Firms active in this area are being
exercising appropriate oversight over expected to advance from meeting asked to demonstrate that they
third party providers, including the core requirements towards understand and can manage
frm’s access and audit rights, and implementing more advanced effectively the risks that greater use of
the implications of outsourcing for tools (such as technology and risk AI and machine learning might pose.
business continuity, recovery and management tools) to manage cyber
resolution planning. risks more proactively, and to drive Sandboxes – using sandboxes
innovation in people, processes, and innovation hubs to test fntech
Cyber security – whether frms technology and information sharing to applications and to identify and
can demonstrate that they have enhance cyber resilience. address risks in a constrained
in place effective governance, risk environment.
identifcation, security controls Artifcial intelligence and machine
(over access management, incident learning – how well frms control “Suptech” – the use of fntech by
management, network security and and mitigate the risks arising as supervisors to improve the regulatory
end-user computing), detection and they make increased use of AI and reporting process and the supervisory
prevention, testing, incident response machine learning, not least in terms analysis of data and other information
and information sharing. of governance, understanding, and (for example to detect outlier
relationships with third party providers. frms, money laundering, fraud and
suspicious trading patterns).
Oct 2018 Dec 2018

PRA, FCA and HMT ECB cyber resilience Jan 2019
Feb 2018
report on crypto assets oversight expectations FCA guidance
Basel Committee Sound
Jun 2018 for fnancial market on crypto assets
Practices for fntech
PRA supervisory statement infrastructures (regulatory perimeter)
developments for banks
on algorithmic trading
and bank supervisors
Jul 2018
FSB report on the Dec 2018 Feb 2019
work of the FSB and Basel Committee report Jan 2019 FSB report on
Mar 2018 international standard-- on range of regulatory EBA report on fntech and market
EU Commission setting bodies on crypto and supervisory practices crypto assets structure in
Fintech action plan assets on cyber security fnancial services
2018 2019
Jan 2019
Mar 2018 Jul 2018
ESAs Joint
EU Commission legislative FCA consultation on loan-
Committee
proposal for an EU based (‘‘peer-to-peer’
- - ’)
report on
framework on crowd and Mar 2018 and investment-based
-
Dec 2018 regulatory
peer to peer fnance ECB guide to assessments crowdfunding platforms
EBA draft guidelines sandboxes and
of fntech credit institution
on technology innovation hubs
licence applications
and security risk
management
Feb 2019
FSB Global
monitoring report on
non--bank fnancial
intermediation
“
© 2019 KPMG International Cooperative (“KPMG ” KPMG International provides no client services and
International”).
13 Regulation and supervision of fntech
How KPMG
can help
KPMG member frms have established teams
of specialists able to help fnancial institutions to
identify opportunities and benefts from fntech,
and to support them in addressing a wide range
of fntech-related risks.
KPMG member frms work with both incumbent fnancial

institutions adopting fntech solutions and a wide range of
fntech businesses, from early stage start-ups
- to established
fntech providers. Our fntech network spans fnancial services
including digital banking, payments, lending, insurance and
wealth management.
“
International”).
KPMG professionals can support fnancial institutions through:
Helping fnancial Combining domain Identifying and

institutions to expertise addressing fintech- -
realise the potential Bringing together related risks
of fntech KPMG expertise Gap analysis and
Helping fnancial in audit, tax, remediation.
institutions to grow corporate fnance,
their business, explore new innovative legal services, cyber security and
solutions, meet evolving customer regulation with fntech expertise to
demands, and enable them to remain deliver global solutions that are not
relevant and competitive in the only on the cutting edge of technology,
evolving landscape. but also sustainably aligned to the
overall processes and frameworks
of the client.
Providing an Offering a Applying an end--to--

-
enterprise-wide technology end framework and
Operational and innovation tools for artificial
Resilience matchmaking intelligence
framework platform solutions
Offering a framework KPMG Matchi Ensuring that
that incorporates fintech and connects fnancial institutions and AI solutions have integrity, are
fintech-related
- risks into designing other corporations with a global explainable, are free from prejudice,
and building operational resilience, community of leading-edge
- technology and are agile and robust in order
starting with strategy and governance providers. This can help resolve issues to be used effectively and trusted
and extending through all aspects or support new opportunities by using when making decisions; and to
of execution. a more targeted sourcing approach support fnancial institutions in the
across our fntech database, reducing development and deployment of
signifcantly the time it takes clients to AI and the use of risk, compliance
target, select, test and implement the and audit functions in managing
optimal fntech solutions. relevant risks.
Developing scalable Providing fntech Connecting fnancial

regtech solutions insights to fnancial services and fntech
Harnessing emerging services clients clients
technologies for KPMG member frms KPMG arranges
accelerated, robust, are at the forefront fntech showcases,
and less costly of current and future networking events
risk management, compliance and developments in technological and - pitching events which
and start-up
regulatory reporting processes, based commercial innovation across banking, bring together fntech businesses,
on an understanding of how fnancial insurance, capital markets and other fnancial institutions and investors.
institutions can use regtech as a digital fnancial services; and in providing
transformation enabler, helping them insights and thought leadership on
improve customer service, develop the development of fntech regulation
new offerings and achieve greater and supervisory approaches. KPMG
competitive differentiation. fntech publications include an annual
Fintech 100 report listing the top 50
established and top 50 emerging
fntech businesses globally, and Pulse
of Fintech, a six-monthly
- review of
investment in the fntech sector.
“
International”).
Contacts
Ian Pollari Anton Ruddenklau
Global Co-Leader
- of Fintech Global Co-Leader
- of Fintech
KPMG International KPMG International
T: +61 2 93358408 T: +44 20 76942224
E: ipollari@kpmg.com.au E: anton.ruddenklau@kpmg.co.uk
James Lewis Clive Briault

Head of EMA FS Risk & Regulatory Insight Centre Senior Advisor, EMA FS Risk & Regulatory Insight Centre
KPMG International KPMG International
T: +44 20 73114028 T: +44 77 95351927
E: james.lewis@kpmg.co.uk E: clive.briault@kpmg.co.uk
Chris Steele David Milligan

Director, Banking Risk and Regulation CEO, Matchi
KPMG in the UK KPMG in South Africa
T: +44 77 99886782 T: +27 60 9977174
E: chris.steele@kpmg.co.uk E: david.milligan@matchi.biz
Rachel Bentley Pierre Guerineau

Fintech Senior Manager Manager
KPMG in the UK KPMG ECB Offce
T: +44 78 25114912 T: +49 69 95871224
E: rachel.bentley@kpmg.co.uk E: pguerineau1@kpmg.com
kpmg.com
The information contained herein is of a general nature and is not intended to address the
circumstances of any particular individual or entity. Although we endeavor to provide accurate and
timely information, there can be no guarantee that such information is accurate as of the date it is
received or that it will continue to be accurate in the future. No one should act on such information
without appropriate professional advice after a thorough examination of the particular situation.
Some or all of the services described herein may not be permissible for KPMG audit clients and
their affiliates or related entities.
© 2019 KPMG International Cooperative (“KPMG“ ” a Swiss entity. Member firms
International”),
of the KPMG network of independent firms are affiliated with KPMG International. KPMG
International provides no client services. No member firm has any authority to obligate or bind
- - third parties, nor does KPMG International
KPMG International or any other member firm vis-à-vis
have any such authority to obligate or bind any member firm. All rights reserved. The KPMG name
and logo are registered trademarks or trademarks of KPMG International.
The KPMG name and logo are registered trademarks or trademarks of KPMG International.
CREATE. | CRT109370A | March 2019

Regulation and Supervision of Fintech: Ever-Expanding Expectations

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Regulation and Supervision of Fintech: Ever-Expanding Expectations

Uploaded by

Copyright:

Available Formats

Regulation and

Fintech is already delivering signifcant benefts to

Consumers and investors The regulatory and supervisory

© 2019 KPMG International

In the second stage, regulators These initiatives cover a wide range of

Drivers Risks Regulatory responses

Fintech adoption Risks to consumers • Regulatory perimeter

Risks to frms • Regulatory perimeter

Risks to fnancial stability • Data and information gathering

Implications Regulatory and supervisory

Board and senior

Active board level

Data Business model Different approaches

Regulatory and supervisory pressures on frms adopting fntech

Regulatory Differences in regulation

Mis-selling of products and

Reduced competition – although

© 2019 KPMG International Cooperative (““KPMG International””). KPMG International provides

Risks to frms Risks to financial stability

The regulatory response to fntech is

Main regulatory responses to emerging technologies and fntech solutions

Distributed ledger technology

Artifcial intelligence, machine learning

: Denotes the main types of regulation that are being

2015 2016 2017

Oct 2018 Dec 2018

KPMG member frms work with both incumbent fnancial

KPMG professionals can support fnancial institutions through:

Helping fnancial Combining domain Identifying and

Providing an Offering a Applying an end--to--

Developing scalable Providing fntech Connecting fnancial

James Lewis Clive Briault

Chris Steele David Milligan

Rachel Bentley Pierre Guerineau

You might also like