This document is an excerpt from the EUR-Lex website
Document 02022D1982-20240103
Decision (EU) 2022/1982 of the European Central Bank of 10 October 2022 on the use of services of the European System of Central Banks by competent authorities and by cooperating authorities, and amending Decision ECB/2013/1 (ECB/2022/34)
Consolidated text: Decision (EU) 2022/1982 of the European Central Bank of 10 October 2022 on the use of services of the European System of Central Banks by competent authorities and by cooperating authorities, and amending Decision ECB/2013/1 (ECB/2022/34)
Decision (EU) 2022/1982 of the European Central Bank of 10 October 2022 on the use of services of the European System of Central Banks by competent authorities and by cooperating authorities, and amending Decision ECB/2013/1 (ECB/2022/34)
02022D1982 — EN — 03.01.2024 — 001.001
This text is meant purely as a documentation tool and has no legal effect. The Union's institutions do not assume any liability for its contents. The authentic versions of the relevant acts, including their preambles, are those published in the Official Journal of the European Union and available in EUR-Lex. Those official texts are directly accessible through the links embedded in this document
DECISION (EU) 2022/1982 OF THE EUROPEAN CENTRAL BANK of 10 October 2022 (OJ L 272 20.10.2022, p. 29) |
Amended by:
|
|
Official Journal |
||
No |
page |
date |
||
DECISION (EU) 2023/2795 OF THE EUROPEAN CENTRAL BANK of 4 December 2023 |
L |
1 |
14.12.2023 |
DECISION (EU) 2022/1982 OF THE EUROPEAN CENTRAL BANK
of 10 October 2022
on the use of services of the European System of Central Banks by competent authorities and by cooperating authorities, and amending Decision ECB/2013/1 (ECB/2022/34)
Article 1
Definitions
For the purposes of this Decision, the following definitions apply:
‘competent authority’ means either a national competent authority or the European Central Bank (ECB);
‘national competent authority’ (NCA) means a national competent authority as defined in point (2) of Article 2 of Regulation (EU) No 1024/2013 and, for the purposes of this Decision, also includes, in respect of the supervisory tasks assigned to them, national central banks that have been assigned certain supervisory tasks under national law and are not designated as NCAs;
‘participating competent authority’ means a competent authority that uses the ESCB services for the purpose of cooperating with the ESCB and with other competent authorities, in order to carry out its tasks within the Single Supervisory Mechanism (SSM), established pursuant to Regulation (EU) No 1024/2013;
‘cooperating authority’ means a public authority, other than a central bank within the ESCB or a competent authority, with which the ESCB or the SSM cooperates in carrying out the tasks of the ESCB or of the ECB under Regulation (EU) No 1024/2013;
‘ESCB services’ means any one or more of the electronic applications, systems, platforms, databases and services listed in Annex I;
‘providing central bank’ means a central bank developing, running and maintaining an ESCB service;
‘System Owner Committee’ means an ESCB Committee steering an ESCB service.
Article 2
Use of ESCB services by competent authorities
Article 3
Use of ESCB services by cooperating authorities
Article 4
Financial arrangements
Article 5
Amendment of Decision ECB/2013/1
Decision ECB/2013/1 is amended as follows:
in Article 1, the following definitions are added:
“competent authority” means either a national competent authority or the ECB;
“national competent authority” (NCA) means a national competent authority as defined in point (2) of Article 2 of Council Regulation (EU) No 1024/2013 ( *1 ) and, for the purposes of this Decision, also includes, in respect of the supervisory tasks assigned to them, national central banks that have been assigned certain supervisory tasks under national law and are not designated as NCAs;
“cooperating authority” means a public authority, other than a central bank within the ESCB or a competent authority, with which the ESCB or the Single Supervisory Mechanism (SSM) cooperates in carrying out the tasks of the ESCB or of the ECB under Regulation (EU) No 1024/2013;
“participating competent authority” means a competent authority that uses the ESCB services for the purpose of cooperating with the ESCB and with other competent authorities, in order to carry out its tasks within the Single Supervisory Mechanism (SSM), established pursuant to Regulation (EU) No 1024/2013.
the following Article 9a is inserted:
‘Article 9a
Use of the ESCB-PKI services by cooperating authorities
Article 14 is replaced by the following:
‘Article 14
Financial arrangements
Participating central banks and participating competent authorities shall bear the costs of developing and operating the ESCB-PKI services according to a defined reimbursement framework, which is based on a cost allocation key, as further specified in the ESCB-PKI financial envelopes following the applicable reimbursement rules. Cooperating authorities shall contribute to the costs in accordance with a specific reimbursement framework.’.
Article 6
Entry into force
This Decision shall enter into force on the twentieth day following that of its publication in the Official Journal of the European Union.
ANNEX I
ESCB services to be made available to competent authorities and cooperating authorities
ANNEX II
Requirements for competent authorities’ use of ESCB services
Competent authorities must carry out the tasks and assume the responsibilities corresponding to their role in the relevant ESCB service.
Competent authorities must adjust their internal systems and interfaces to operate seamlessly with the ESCB service.
Competent authorities will be liable for any loss or damage incurred as a result of any deliberate or negligent action and/or omission in performing their obligations. The limitations of liability laid down in the Level 2 – Level 3 Agreement will apply accordingly.
Competent authorities will bear the burden of proof of demonstrating that they have not breached their duty of reasonable care in performing their obligations, including in operating the technical facilities.
Outsourcing, delegation or subcontracting by a competent authority to third parties will be without prejudice to the liability of that competent authority.
Competent authorities may only outsource, delegate or subcontract to a third party tasks that have or may have a material impact on compliance with the requirements set forth in this Annex to the extent that they have obtained the express, prior and written consent (or deemed consent as provided for in paragraph (6)) of the Eurosystem central banks, or the ESCB central banks, as the case may be. No such consent is needed if the third party is a joint affiliate of the relevant competent authority and if that competent authority’s rights and obligations remain materially unchanged.
Competent authorities must give reasonable prior notice of any planned outsourcing, delegation or subcontracting as referred to in paragraph 5 and must provide details of the requirements that are proposed to apply to such outsourcing, delegation or subcontracting.
The competent ESCB Committee must respond to any request for consent under paragraph 5 within two months of it being notified of the planned outsourcing, delegation or subcontracting. Any refusal to grant consent must be accompanied by the reasons for such refusal. If the competent authority receives no response within the two-month deadline, it may notify the competent ESCB Committee of its request once again. The Eurosystem central banks, or ESCB central banks, as the case may be, will have one further month within which to respond to the second notification. If there is no response within that time period, the competent authority will be deemed to have received consent to proceed with the outsourcing, delegation or subcontracting.
Competent authorities must keep confidential all sensitive, secret or confidential information and know-how (whether such information is of a commercial, financial, regulatory, technical or other nature) that is marked as such and belongs to the providing central bank and/or to other ESCB/Eurosystem central banks, and may not disclose such information to any third party without the express, prior and written consent of the central bank(s) concerned.
Competent authorities must restrict access to the information or know-how referred to in paragraph 7 to their relevant technical staff, and such access may only be exercised in cases of clear operational need.
Competent authorities must establish appropriate measures to prevent access to such confidential information or know-how by persons other than the relevant technical staff.
In the case that the usage of the ESCB service involves the processing of personal data by the competent authority, the competent authority must comply with the applicable data protection legislation.
Access to personal data may be granted only to those with a need to know in order to perform their tasks and fulfil their responsibilities in relation to the relevant ESCB service.
( *1 ) Council Regulation (EU) No 1024/2013 of 15 October 2013 conferring specific tasks on the European Central Bank concerning policies relating to the prudential supervision of credit institutions (OJ L 287, 29.10.2013, p. 63).’;