Romania
Financial Sector Assessment Program-Detailed Assessment of Observance of the Basel Core Principles for Effective Banking Supervision

This paper discusses findings of the Detailed Assessment of Observance of the Basel Core Principles (BCP) for Effective Banking Supervision in Romania. The supervisory approach of the National Bank of Romania (NBR) has been changing toward a more risk based approach since the previous BCP assessment, but more needs to be done. Further development of the NBR’s supervisory approach will make supervision more effective and in line with the requirements of the 2012 BCP. The NBR may need to devote more supervisory attention to banks’ risk models and building up further expertise in specialized areas such as information technology and market risk. In the area of corrective actions and sanctions, the NBR should review its framework to ensure it is protected from undue legal challenges.

Abstract

This paper discusses findings of the Detailed Assessment of Observance of the Basel Core Principles (BCP) for Effective Banking Supervision in Romania. The supervisory approach of the National Bank of Romania (NBR) has been changing toward a more risk based approach since the previous BCP assessment, but more needs to be done. Further development of the NBR’s supervisory approach will make supervision more effective and in line with the requirements of the 2012 BCP. The NBR may need to devote more supervisory attention to banks’ risk models and building up further expertise in specialized areas such as information technology and market risk. In the area of corrective actions and sanctions, the NBR should review its framework to ensure it is protected from undue legal challenges.

Summary1

1. As an European Union (EU) Member State, Romania is subject and aligned to the EU common regulatory framework for banking supervision. The EU regulatory framework for banking supervision has been subject to significant changes since the 2008 global financial crisis and the subsequent sovereign debt crisis. The adoption of the Capital Requirements Regulation and the Capital Requirements Directive IV (CRR/CRD IV) which forms the Single Rule Book was an important step towards stronger prudential regulation. Given that a large part of Romania’s banking system is owned by Eurozone banks, the Single Supervisory Mechanism (SSM), as the home supervisor for Eurozone banks, is a key partner of the National Bank of Romania (NBR). Prudential regulations of the NBR are broadly aligned to the requirements of the Basel Core Principles (BCP). As of 2017, the NBR has identified 11 banks as systematically important, of which 8 are supervised at group level by the SSM.

2. The supervisory approach of the NBR has been changing toward a more risk based approach since the previous BCP assessment, but more needs to be done. As of January 2016, the NBR Board approved the adoption of the Supervisory Review and Evaluation Process (SREP) Guidelines of the European Banking Authority (EBA)2 into national supervisory practices making it the core supervisory tool for banking supervision. Nevertheless, the new EBA SREP methodology is still in the early stages of implementation. The processes for ensuring consistency and accuracy of scoring, findings, and supervisory measures across different banks need to be improved and have yet to be formalized and documented. The NBR needs to further enhance off-site monitoring tools by incorporating more forward-looking views (e.g., bottom up stress testing tools). More risk-focused and thematic banking industry-wide analyses and examinations triggered by recent trends or events are also warranted.

3. Further development of the NBR’s supervisory approach will make supervision more effective and in line with the requirements of the 2012 BCP. The NBR may need to devote more supervisory attention to banks’ risk models and building up further expertise in specialized areas such as IT and market risk. In the area of corrective actions and sanctions, the NBR should review its framework to ensure it is protected from undue legal challenges, and strengthen internal procedures to ascertain that supervisory measures or sanctions are more consistently applied across the banking system. Post examination processes should be enhanced for banks to implement supervisory measures in a prompt manner. Intensified engagement with nonexecutive/independent board members is warranted for a more proactive supervisory practice.

4. Some weaknesses were observed concerning regulations not governed by the harmonized EU framework. Prudential regulations of the NBR are broadly aligned with the requirements of the BCP. However, the regulations on related party transactions and country/transfer risk include only high level principles, and lack sufficient specificity. The NBR should consider giving more specific guidance to banks and supervisors through amending regulations, issuing instructions, and/or developing the on-site handbook. The NBR also needs to enhance its oversight of concentration risk and intra-group transactions, even if the exposures comply with the regulatory limits.

5. The authorities should maintain their current successful and proactive approach to steer the timely reduction in problem assets. Nonperforming loans (NPLs) peaked at 21.9 percent in 2013 following the 2007 crisis, before declining to close to 6 percent in 2017. The NBR successfully led efforts to clean up banks’ balance sheets through multiple initiatives designed to ensure the timely recognition, realistic provisioning and disposal of NPLs, and maintains annual bank-by-bank supervisory targets for NPL reductions. The framework for credit risk management was significantly strengthened and close monitoring, including through annual examinations, is conducted. Considering still high levels of nonperforming and forborne exposures, the NBR shall continue to closely monitor these exposures and ensure that proactive measures are implemented to clean up bank balance sheets and prevent any new increase in credit risk.

6. The NBR should better ensure banks’ boards effectively exercise their responsibilities. Corporate governance requirements were appropriately strengthened in recent years and now constitute a cornerstone of the NBR’s supervisory approach. Attention is paid to effective implementation during on-site full-scope examinations and when approving key persons. However, the NBR only requires some banks (i.e., subsidiaries) to have an “adequate” number of independent board members. Banks usually only have one or two independent board member(s), which is insufficient. Although the NBR places a lot of responsibilities on the board, it does not yet organize regular exchanges with nonexecutive and independent members.

Introduction and Methodology

7. This assessment of the implementation of the BCP in Romania has been completed as part of the Financial Sector Assessment Program (FSAP), which has been jointly undertaken by the International Monetary Fund (IMF) and the World Bank in 2017, at the request of the Romanian authorities. The assessment reflects the regulatory and supervisory framework in place as of the completion of the assessment. It is not intended to analyze the state of the banking sector or the crisis management framework, which are addressed by other assessments conducted in this FSAP.

8. An assessment of the effectiveness of banking supervision requires a review not only of the legal framework, but also a detailed examination of the policies and practices of the institutions responsible for banking regulation and supervision. In line with the BCP methodology, the assessment focused on the NBR’s supervision of banks, and did not cover the specificities of regulation and supervision of other financial intermediaries, which are addressed by other assessments conducted in this FSAP.

A. Information and Methodology Used for Assessment

9. This assessment was against the standard issued by the Basel Committee on Banking Supervision (BCBS) in 2012. Since the past BCP assessment, which was conducted in 2011, the BCP standard has been revised. The revised Core Principles (CPs) strengthen the requirements for supervisors, the approaches to supervision, and the supervisors’ expectations of banks through a greater focus on effective risk-based supervision and the need for early intervention and timely supervisory actions. Furthermore, the 2012 revision placed increased emphasis on corporate governance and supervisors’ conducting sufficient reviews to determine compliance with regulatory requirements and thoroughly understanding the risk profile of banks and the banking system. This assessment was thus performed according to a significantly revised content and methodological basis, compared to the previous BCP assessment carried out in 2011 (Box 1).

10. The Romanian authorities opted to be assessed against both essential criteria (EC) and the additional criteria (AC) but graded on the basis of EC only. To assess compliance, the BCP Methodology uses a set of EC and AC for each principle. The EC set out minimum baseline requirements for sound supervisory practices. The AC are recommended as the best practices against which the authorities of some more complex financial systems may agree to be assessed and graded. Romanian authorities chose to be graded against only EC.

11. Grading is not an exact science and the CPs can be met in different ways. The assessment of compliance with each principle is made on a qualitative basis. Compliance with some criteria may be more critical for effectiveness of supervision, depending on the situation and circumstances in a given jurisdiction. Emphasis should be placed on the commentary that accompanies each Principle grading, rather than on the grading itself.

12. The assessment team held extensive meetings with NBR staff, the Ministry of Public Finance (MOPF), the industry, and other relevant counterparts who shared their views with the assessors. The team also reviewed the framework of laws, regulations, and supervisory guidelines. The NBR provided self-assessments of the CPs and comprehensive questionnaires filled out by the authorities. The NBR also facilitated access to supervisory documents and files, staff, and systems.

13. The assessment team appreciated the excellent cooperation, including extensive provision of internal guidelines/procedures, supervisory files, and reports. In particular, the team would like to thank the NBR staff who responded to the extensive and detailed request promptly and accurately during the assessment.

The 2012 Revised Core Principles

The revised BCP reflect market and regulatory developments since the last revision, taking account of the lessons learned from the financial crisis in 2008/2009. These have also been informed by the experiences gained from FSAP assessments as well as recommendations issued by the G-20 and the FSB, and take into account the importance now attached to: (i) greater supervisory intensity and allocation of adequate resources to deal effectively with systemically important banks; (ii) application of a system-wide, macro perspective to the microprudential supervision of banks to assist in identifying, analyzing, and taking pre-emptive action to address systemic risk; (iii) the increasing focus on effective crisis preparation and management, and recovery and resolution measures for reducing both the probability and impact of a bank failure; and (iv) fostering robust market discipline through sound supervisory practices in the areas of corporate governance, disclosure, and transparency.

The revised BCP strengthen the requirements for supervisors, the approaches to supervision and supervisors’ expectations of banks. The supervisors are now required to assess the risk profile of the banks not only in terms of the risks they run and the efficacy of their risk management, but also the risks they pose to the banking and financial systems. In addition, the supervisors need to consider how the macroeconomic environment, business trends, and the build-up and concentration of risks inside and outside the banking sector may affect the risks to which individual banks are exposed. While the BCP set out the powers that supervisors should have to address safety and soundness concerns, there is heightened focus on the actual use of the powers in a forward-looking approach through early intervention.

The number of principles has increased from 25 to 29. The number of essential criteria has expanded from 196 to 231. This includes the amalgamation of previous criteria (which means the contents are the same), and the introduction of 35 new essential criteria. In addition, for countries that may choose to be assessed against the additional criteria, there are 16 additional criteria. While raising the bar for banking supervision, the CPs must be capable of application to a wide range of jurisdictions. The new methodology reinforces the concept of proportionality, both in terms of the expectations on supervisors and in terms of the standards that supervisors impose on banks. The proportionate approach allows assessments of banking supervision that are commensurate with the risk profile and systemic importance of a wide range of banks and banking systems.

Institutional and Market Structure

14. Romania’s financial sector remains dominated by banks that hold around 80 percent of financial sector assets. In April 2018, there were 35 banks in Romania, 29 of which are foreign-owned (22 subsidiaries, seven branches). The five largest banks concentrate about 60 percent of total deposits in the system (57 percent of all loans). The nonbank financial sector remains small, although their relative share slightly increased, with investment funds, private pension funds, insurance companies and other nonbank financial institutions accounting for about 20 percent of financial system assets. The Romanian insurance market has one of the lowest levels of insurance density and insurance penetration in Europe. The sector has recently stagnated as several major insurance companies have come under financial strain. The Romanian capital market is characterized by relatively few issuers, a limited number of new issues and initial public offereings (IPOs), and low liquidity. The equity market with only 84 listed companies had a market capitalization of EUR 32 billion as at the end of 2015. The fixed-income market is also relatively small and undiversified, with around 80 bonds traded at the Bucharest Stock Exchange, the majority being securities issued by central and local governments. There are only seven corporate bonds issued.

Table 1.

Overview of the Structure of the Banking System (As of end–2016)

article image
Source: NBR.

15. Foreign-owned banks’ dependencies on parent funding has significantly declined. The share of deposits from the domestic private sector (about a third of which are demandable, and the rest at short terms of up to one year) has increased from about 48 percent of banks’ total liabilities in 2011 to about 66 percent in 2017, while parent funding has declined markedly to about EUR 7 billion (approximately 7 percent of total liabilities), a third of the level in 2011. As a result, the system-wide loan-to-deposit ratio fell to around 77 percent in 2017, from 131 percent in 2008. In the context of the Vienna initiative, debt liabilities were replaced by capital injections from parent banks, boosting capital ratios and reducing vulnerabilities.

16. As a non-Eurozone EU Member State, Romania is subject to the EU common regulatory framework for banking supervision. All Member States must apply the CRR/CRD IV. The SSM is applicable only to Eurozone members and non-Eurozone members who opt to join. Until now, no non-Eurozone EU members have officially opted into the SSM. For non-Eurozone EU countries like Romania, where a large part of the banking system is owned by SSM-supervised Eurozone banks, the SSM has become the home supervisor with whom close collaboration with the NBR takes place.

17. Responsibilities for prudential supervision of the financial sector are split:

  • The NBR is an administratively independent Central Bank with a mandate to supervise credit institutions and verify observance of the laws and regulations that apply to the banking sector.

  • The Financial Supervisory Authority (ASF), established in 2013, is responsible for the supervision of nonbanking financial market participants and the licensing and registration of individuals and institutions. In particular, it supervises (i) the intermediaries of financial instruments operations (financial investment undertakings, undertakings for collective investment, investment management companies, financial investment consultants, financial instruments markets, market and system operators, central depositories, clearing houses, central counterparties, market operations, securities issuers); (ii) insurance, insurance-reinsurance and reinsurance companies, mutual undertakings, and insurance intermediaries; and (iii) the private pension system.

18. The NBR plays key roles in the institutional framework underpinning financial stability. The NBR, established under the Law 312/2004, is responsible for ensuring and maintaining price stability. The main tasks of the NBR include the following: to define and implement the monetary policy and the exchange rate policy; to license, regulate and supervise credit institutions; to promote and oversee the payment systems; to issue notes and coins to be used as legal tender on the territory of Romania; to set the exchange rate regime and supervise its observance; and to manage the official reserves of Romania.

Preconditions for Effective Bank Supervision

A. Sound and Sustainable Macroeconomic Policies

19. Romania made important progress in addressing economic imbalances and restoring growth after the global financial crisis. Partly in the context of successive EU and IMF-supported programs in the period to 2015, macroeconomic stability was restored. Growth more recently accelerated on the back of fiscal stimulus, and Romania’s real GDP growth surged to 6.9 percent in 2017. Low imported inflation and indirect tax cuts kept inflation subdued, but inflationary pressures have increased since mid-2017 on account of sharp wage increases and strong domestic demand, leading monetary policy to tighten after a long period of accommodation. With signs of overheating, there is a risk that the current policy trajectory increases macroeconomic volatility, and wears down buffers, adversely afecting market confidence.

20. Implementation of sound macroeconomic policies is essential for the stability of the Romanian financial system as a whole. Relatively weak cooperation, coordination and synchronization among policies (monetary, macroprudential and fiscal policies) may lead to cyclical imbalances and structural vulnerabilities. Such imbalances and vulnerabilities could lead to negative spill-overs on the financial and the general macro equilibrium, creating the potential for negative reaction to the occurrence of adverse standard business cycle or rare shocks.

B. Framework for Financial Stability Policy Formulation

21. The institutional framework for macroprudential policymaking has recently been strengthened and contains a clear mandate and well-defined objectives, but NBR’s role seems constrained. A new National Committee for Macroprudential Oversight (NCMO) was established in April 2017. By law, the NCMO is the national macroprudential authority with a clear legal mandate to set macroprudential policies with the objective to contribute to safeguarding financial stability by strengthening the resilience of the financial system and containing the build-up of systemic risk. The law was the result of a three-year long parliamentary process, mainly due to concerns about excessive powers of the NBR. As a result, the number of NBR representatives in the nine-member NCMO was reduced from the proposed five members to three, giving the NCMO the same number of representatives as the ASF, and the Government. It is chaired by the Governor of the NBR and the Secretariat resides within the NBR.

22. The institutional arrangement seems to guarantee adequate powers to ensure the NCMO’s ability to act, but its willingness to act remains to be more thoroughly tested. The NCMO has direct (hard) powers over a wide-range of macroprudential tools. It is empowered to recommend actions to be taken by other supervisory authorities or the Government, and to issue warnings, coupled with a ‘comply or explain’ mechanism. As of April 2018, it has only held five meetings and issued ten recommendations, including the required quarterly recommendations on the countercyclical capital buffer. The Technical Commissions on Systemic Risk and Financial Crisis Management, respectively, who should support the NCMO’s work, are still to become operational.

23. The communication process is performed in a transparent and relatively effective manner. The communication process includes the following: (i) an official press release is published on the website after the meeting of NCMO’s General Board, which includes a summary of the meeting; (ii) publication of a macroprudential policy strategy; (iii) publication of the recommendations and adopted decisions on the NCMO’s official website, where the motivation behind these is also detailed; (iv) the publication of the Annual Report, which will take place for the first time next year, by 30 June 2018; (v) publication of opinions; (vi) NCMO’s own website provides various information about macroprudential policies; (vii) the macroprudential measures can also be found within the Financial Stability Report of the NBR which is published on a semi-annual basis; and (viii) there will be future seminars and debates to promote the activities of the NCMO.

24. The macroprudential policy toolkit was recently expanded with the CRR/CRD IV framework becoming operational in Romania. In particular, the authorities have implemented or are phasing-in a number of capital buffers. The stressed Debt Service to Income (DSTI) limit is currently applied to consumer loans and maximum LTV ratios on mortgages have been undermined by the Prima Casa program.

C. A Well-Developed Public Infrastructure

25. The delay in implementing the new personal insolvency regime may be hampering access to credit. The new Personal Insolvency Law3 aims at providing over-indebted consumers with a second chance by allowing them to access a debt discharge, which is in line with the trend observed in Eastern European countries in recent years. Initially scheduled to enter into force in January 2016, implementation of the Law has been postponed several times due to administrative reasons, including the establishment of specialized regional administrative bodies and the lack of trained personnel and financial resources. The law was adopted without an impact assessment and its final effects on the financial sector remain to be seen. On June 9, 2017, the Government approved the methodological norms required to administer the procedure, although additional rules, regulations, and guidelines would need to be prepared for an efficient implementation.

26. Significant improvements have been made on the credit reporting system in the past decade. Credit information sharing is universally considered a key credit infrastructure component for its positive impact on the quality of lending (for example, by reducing information asymmetry) and overall financial sector stability (by providing data driven tools for both lenders and regulators). The project for establishing a Private Credit Bureau was initiated in 2004 with a large participation of local banks. The process of collecting and disseminating data was initially limited to negative information, but later expanded to include positive data following international best practices. After five years of operations, the Bureau started to provide additional services to banks, such as credit scoring.

27. Both the NBR and the ASF have taken important steps to strengthen the oversight of systemically important financial market infrastructures, and increased cooperation between the authorities is recommended. The NBR oversees the real time gross settlement payment system and SaFIR, the central securities depository for government securities and NBR securities, whereas the ASF supervises the clearing and settlement systems of the Bucharest Stock Exchange. The legal framework for financial market infrastructures has been strengthened through the adoption of EU legislation. The NBR also formally adopted the CPSS-IOSCO Principles for Financial Market Infrastructures and has assessed the systems under its purview against these principles. The NBR’s project to internalize the payment and settlement systems within the central bank is expected the strengthen the financial infrastructure.

28. Parliament passed several populist laws last year that would have allowed debtors to walk away from mortgages (‘datio in solutum’) and convert Swiss Franc denominated loans at historical exchange rates. Recent rulings by the constitutional court have limited the potential negative impact on the banking sector of these laws, but there is a concern that further legislative measures could be in the offing. The final effects of the personal insolvency law, providing over-indebted consumers with a second chance by allowing them to access a debt discharge, remain to be seen. Recently, Romania’s Government decided to cap deductions from nonperforming loan sales to 30 percent of their value, limiting tax deductibility of losses incurred by firms who sell NPLs at a discount relative to what they had provisioned for. As such, banks are discouraged to sell receivables and are encouraged to directly execute debtors.

D. Framework for Crisis Management, Recovery, and Resolution

29. Implementation of the Bank Recovery and Resolution Directive (BRRD) in Romania is recent and institutions are still adapting to the change. The transposition of the EU directive into the country’s primary legislation concluded in 2015 (Law 312/2015). Since then, the institutions in charge of the bank recovery and resolution framework (NBR, MOPF, ASF, and Bank Deposit Guarantee Fund (FGDB)) have made important strides towards adapting to their new responsibilities and toolkit. As the resolution authority, the NBR has been charged with all key responsibilities in the bank resolution area, while some components of the framework have been delegated to the deposit insurer (management of the bank resolution fund and financing of the resolution measures) and to the MOPF (granting extraordinary public financial support) as a key domestic counterpart in crisis prevention and resolution. Some of the operational elements of implementing the new framework have yet to settle, especially part of the contingent arrangements (e.g., a Memorandum of Understanding (MOU), framework agreements between the MOPF and FGDB). The operational readiness has not been tested and given a market structure where systemic banks are subsidiaries of major international banks (61 percent of assets in the banking sector fall under single resolution board’s (SRB’s) authority), part of the contingent arrangements require a tight cross-border coordination with the other relevant authorities within the resolution colleges. This international coordination work has started, at the level of the resolution colleges, where a continuous process of reviewing the group resolution plans takes place.

30. The responsibilities of the FGDB have been significantly enlarged in the area of bank resolution. The 2015 resolution framework empowered the FGDB as the administrator of the newly created bank resolution fund. The resolution fund’s target level is 1 percent of deposits covered and is currently at 60 percent of that objective, which should be attained latest by 2024. In addition, the FGDB has the mandate to serve as (i) a temporary administrator; (ii) special administrator of a credit institution under resolution; (iii) shareholder of a bridge institution; or (iv) shareholder of an asset management vehicle.4

E. Public Safety Net

31. The NBR has over the years strengthened its liquidity provision framework. The overarching criteria for liquidity provision are based on objectives of preservation of economic stability and the support to solvent but illiquid entities. However, the existing arrangement has not been tested in recent years under economic stress of systemic nature, and a formal operational framework for emergency liquidity assistance is still under construction. Authorities are using the legal framework of the European Central Bank (ECB) 2017 agreement in this area as the base for their formulation.

32. In December 2015, Romania adopted new legislation (Law 311/2015) which transposed EU Directive 2014/49 on deposit guarantee schemes. The deposit insurance fund has a high level of coverage (99.5 percent of accounts), and at 3.4 percent of the amount of eligible deposits has nearly reached its target. Contingent financing continues to remain work in progress. While the law allows the FGDB to count on the MOPF within specific time limits (five days), the specific arrangements for the financing to take place are yet to be finalized.

33. Romania undertook a crisis simulation exercise in 2013. While many of its lessons have been internalized by the BRRD transposition and other regulatory and supervisory enhancements since then, a new simulation exercise would be useful to test preparedness domestically and in coordination with regional counterparties. Ultimately, authorities should consider preparing a program of continuous tests and simulations that keep the crisis management framework up to speed.

F. Effective Market Discipline

34. Financial reporting, auditing and disclosure requirements in Romania are largely harmonized with those applicable across the European Union and in line with international standards. The Romanian banking system has been required to report financial information based on the International Financial Reporting Standards (IFRS) at a consolidated level since 2006 and at individual level since January 2012. Banks representing close to three quarters of banking assets are subsidiaries of EU banking groups, which are generally listed and subject to effective market discipline at group level. A 2017 law created a new public oversight body for external auditors in Romania. A 2016 analysis of the corporate governance framework conducted by the European Bank for Reconstruction and Development assessed corporate governance along five dimensions and rated the structure and functioning of the Board, internal control and stakeholders and Institutions as fair, transparency and disclosure as fair/moderately strong and the rights of shareholders as moderately strong. Areas where corporate governance was considered weak included board effectiveness (incl. lack of requirement for the Board to approve the company’s budget and set the risk profile/appetite, uncommon practice on board evaluation and limited numbers of their audit committee meetings), gender diversity at the Board, and the functioning and independence of the Audit Committee (incl. minority of independent members, lack of proper qualification of members, insufficient disclosure on number of meetings).

35. With respect to rules on corporate governance, according to the Romanian Banking Law5, each credit institution must have robust governance arrangements, which include a clear organizational structure with well-defined, transparent and consistent lines of responsibility, effective processes to identify, manage, monitor and report the risks it is or might be exposed to, adequate internal control mechanisms, including sound administration and accounting procedures, and remuneration policies and practices that are consistent with and promote sound and effective risk management. In this respect, the governance arrangements of a credit institution, the processes to identify, manage, monitor and report the risks, the internal control mechanisms as well as the remuneration policies and practices must be established by its Articles of Association and internal regulations, according to the Companies Law and in compliance with the provisions of national and European legal framework in banking area.

Main Findings

A. Responsibilities, Objectives, Powers, Independence, and Accountabilities (CPs 1–2)

36. The NBR has clear responsibilities as a supervisor, adequate resources and independence, even if the framework protecting the latter should be strengthened. Banking supervision in Romania falls exclusively within the responsibility of the central bank. As Romania is a member of the EU, banking supervision is also significantly harmonized and integrated across member states. Laws and regulations are regularly updated. The NBR, as a supervisory authority, possesses stable governance arrangements and effective operational independence. However, the MOPF could participate in NBR Board meetings and the reasons for the dismissal of a Board member do not have to be disclosed. The decision to approve sanctions/orders is the sole responsibility of the first deputy governor; there is no internal guidance or formal independent function available to assist the first deputy governor in determining adequate decisions. The NBR dedicates large resources to supervision, in terms of staff, equipment and other variable costs. The NBR adopted detailed arrangements to prevent and manage conflicts of interests at all levels. However, there is no post-employment or cooling-off framework covering situations where a staff or Board member intends to take (or takes) a position in a bank supervised by the NBR (or that it has directly supervised). Although the NBR board members and staff are adequately protected against lawsuits for actions taken and/or omissions made while discharging their duties in good faith, this protection does not apply to the institution.

B. Ownership, Licensing, and Structure (CPs 4–7)

37. The NBR implements a well-designed regime for licensing, transfer of significant ownership and major acquisitions. Only licensed credit institutions can provide banking services. NBR has exclusive competence for granting and withdrawing the license of banks incorporated in Romania and branches of banks located outside the EU. The NBR last licensed a bank in 2009. The licensing framework includes clear and detailed criteria. The ownership structure of locally incorporated banks and branches of EU banks is transparent. The NBR implements a rigorous definition of transfer of significant ownership, in line with the provisions of CRD IV, as well as requirements on the transparency of bank ownership. This largely, but may not fully, cover the transfer of beneficial ownership. The NBR has a detailed framework to review major acquisitions. As part of the consolidation of the Romanian banking system, The NBR reviewed and approved four requests for acquisitions in the past five years (all related to mergers between banks licensed in Romania). Romanian banks only have small activities outside Romania.

C. Ongoing Supervision (CPs 8–10, 12)

38. The supervisory approach of the NBR has changed towards a more risk based approach since the previous BCP assessment. As of January 1, 2016, the NBR Board approved the adoption of the EBA SREP Guidelines (EBA/GL/2014/13) into national supervisory practices. The Romanian regulatory framework has implemented the provisions of CRR, CRD IV and BRRD (resolvability assessment). The SREP is a core supervisory tool of banking supervision in Romania and deploys a good mix of onsite and offsite supervisory tools and techniques. The NBR has broad information collecting power by legislation; in particular, the Central Credit Register allows supervisors to access high-granularity data.

39. Nevertheless, the new EBA SREP methodology is still in the early stages of implementation. During SREP, there is no structured/independent review to ensure consistency and accuracy of scoring, findings, and measures of the supervisory report. Considering the recent adoption of the EBA SREP methodology in Romania, the quality assurance procedure is critical. Authorities should consider a way to ensure consistency and objectivity of SREP scores, findings, and supervisory measures. For instance, the authorities could establish an independent review process, develop on-site and off-site supervisory assessment handbooks, and improve the electronic platform to more effectively manage findings, measures, and follow-ups.

40. With regard to off-site supervision, a significant part of this off-site function includes the approval/rejection of requests concerning amendments in a bank’s situation.6 This responsibility of the offsite function could limit to a certain extent, the ability of the NBR to maintain a thorough and deeper analysis of the risks that banks and banking groups are facing. Regulatory cost and benefit exercises may be warranted in respect of optimum allocation of supervisory resources. Authorities could review the off-site activities regarding various approval processes for supervisors so they may focus more on qualitative risk analysis.

41. More risk-focused, banking industry-wide thematic analyses and examinations across systems, triggered by recent trends or events, appear to be limited. The Financial Stability Department (FSD) publishes financial stability reports on a half yearly basis and performs top-down stress testing, and shares the results with banking supervisors. However, the results of the FSD have limited applicability and are not directly communicated to individual banks for supervisory purposes. During 2016 and 2017, there were no thematic inspections carried out at the banking system level. The NBR is not differentiating the frequency of full-scope examinations based on the outcome of the risk profile analysis of banks; instead, the asset size and the overall SREP score of the previous year are the main factors in determining the scope and intensity of examinations. Authorities should consider a more risk-focused approach such as conducting thematic analysis and/or examinations across the banking system with a mix of off- and on-site activities for a specific type of risk.

42. Other improvements should be sought, including cooperation with other domestic supervisors, bottom-up stress tests, monitoring of intra-group exposures, and more frequent off-site monitoring on a consolidated basis. While the NBR and ASF share relevant data and supervisory findings, there are no regular meetings between the NBR and ASF, and there is no systematic process to prepare on-site examinations of banking groups, develop a joint view on risks in relation to a particular banking group, align supervisory approaches, and discuss potential concerns on the banking group or subsidiaries. In addition, the main quarterly monitoring tools of the NBR do not seem to have embedded a forward-looking view of a bank’s risk profile (e.g., no bottom up stress testing tools) and quarterly KRIs are monitored on a solo basis.7 The NBR should consider developing a bottom-up stress testing methodology as a complementary supervisory tool, and enhance the intra-group exposures monitoring and consolidated supervision, in coordination with the ASF where relevant.

D. Corrective and Sanctioning Powers (CP 11)

43. The NBR has sanctioning powers and tools in almost all respects, however, the sanctioning/order issuance process needs to be enhanced. Regarding the internal process for determining measures and sanctions, the NBR currently conducts insufficient analysis to ensure consistency, accuracy and justification of inspection outcomes and sanctions across the banking system. More specifically, there is no consistent internal independent review process to ascertain that the applied measures or corrective actions are adequate and consistent. Therefore, the NBR should consider establishing an independent review process and/or introducing relevant guidance in this regard. In addition, the NBR, as a competent authority of credit institutions, cannot impose any measures regarding the merger process or acquisition by a third party per Banking Law8.9

44. Post examination processes should be improved to guarantee more effective implementation of corrective actions. Regarding the supervisory follow-up, the time frame described in the internal rules of the NBR is not always adhered to. Assessors note that the issuance of supervisory reports and written orders is often delayed.10 Assessors were informed that formal wrap-up meetings after on-site inspections do not always take place. This practice would hinder banks from implementing supervisory measures in a prompt manner.

E. Cooperation and Cross-Border Banking Supervision (CPs 3, 13)

45. Cooperation among EU supervisors is intense, reflecting increasing integration of the EU banking market and the dominance of EU banking groups in Romania. Arrangements are in place to facilitate and ensure cooperation with relevant domestic and foreign authorities. Cooperation among domestic authorities is organized, but meetings with the ASF are too infrequent to allow for effective coordination. International cooperation is in place for EU banking groups, that control three quarters of banking assets in Romania, and where the NBR is the host supervisor. The NBR is a member of 15 EU colleges of supervisors, which allow for effective information sharing and unified supervisory actions. Close coordination is also in place for crisis management and resolution, at the domestic level with the resolution arm of the NBR and, for large banks active in Romania, within EU supervisory and resolution colleges. All Romanian banks prepared recovery plans starting in 2016; resolution plans were also prepared for almost all of these institutions (and their groups where applicable)

F. Corporate Governance, Risk Management, Internal Control and Audit (CPs 14, 15, 26)

46. An increased emphasis on the role of independent directors and direct and regular exchanges between the NBR and non-executive Board members are essential to ensure effective corporate governance. Corporate governance requirements were strengthened at the EU level and transposed in Romania starting in 2013, clearly laying out the responsibilities of the management body in ensuring banks operate in a safe and sound manner. The NBR conducts a thorough review process, including challenging interviews, before approving members of the management body, and during the on-site full-scope examinations. However, the NBR only requires subsidiaries to have an “adequate” number of independent members in the management body. Banks usually only have 1 or 2 independent member(s), which is insufficient to encourage challenging other executive and nonexecutive members and, where appropriate, lead specialized committees. Moreover, although the NBR places a lot of responsibilities on the management body, it does not yet meet on a regular basis with its nonexecutive and independent members (nor sends them letters detailing serious shortcomings or transmitting on-site reports).

47. Regulations set detailed and demanding requirements for control functions. Discussions with the NBR confirmed the importance placed on risk management, internal control and audit during on-site inspections. However, the NBR has not yet developed detailed internal methodologies to facilitate a comprehensive and consistent review of these issues. Reviews of practices at industry level in these areas could also usefully inform the supervisory process.

G. Capital Adequacy and Liquidity Risk (CPs 16, 24)

48. It is noteworthy that the Regulatory Consistency Assessment Program (RCAP) of the BCBS reviewed the EU-wide capital and liquidity framework and concluded that certain features deviated from Basel standards.11 The RCAP concluded that the EU requirements follow the Basel standards set by the BCBS broadly, but with a number of divergences, where the EU is less conservative than the BCBS, which positively impacts ratios. In terms of the capital framework, the most significant divergences between the Basel III framework and the EU capital regulation do not seem to be material for Romanian banks. A deviation concerns the treatment of credit exposures for small and medium-sized enterprises (SMEs) under the Standardized Approach, where less stringent capital requirements do seem to be applied.

49. There is no dedicated team or unit within the NBR’s supervisory department (SD) responsible for evaluating, approving, reviewing and overseeing banks’ internal models. Two banks have been approved to use the advanced approach to calculate regulatory capital for credit risks and three banks for operational risks. Although the number of banks applying the advanced approach is small, the banks that apply it are large in Romania. The FSD has a quantitative assessment division that assists the SD whenever supervisors need to approve the advanced approach in a certain bank or validate internal models, but they are not involved in supervision and examination on an ongoing basis. There would be an increasing need to devote more supervisory attention to banks’ risk models used for their own risk management purposes and in regulatory capital calculations. NBR examiners should focus more on periodic validations and independent testing of different models, even when the banks are not generating inputs for the regulatory capital calculations.

H. Credit Risk, and Problem Assets (CPs 17–18)

50. Following the sharp deterioration in credit quality after the global financial crisis, the NBR led efforts to clean up banks’ balance sheet and ensure their soundness. The framework for credit risk management was significantly strengthened and close monitoring, including through annual examinations, is still conducted. Nonperforming exposures (NPE) increased rapidly and dramatically after 2007 and peaked at 22 percent in 2013 before declining to 6.4 percent in December 2017. The NBR was instrumental in promoting this rapid reduction through multiple initiatives designed to ensure the timely recognition and realistic provisioning of NPEs (e.g., interim June audits, independent collateral revaluations, full provisioning of high risk exposures, write-offs etc.). The NBR continues to closely monitor NPEs, thanks to detailed and regular reportings, and ensures proactive implementation of requirements on problem loans.

I. Related Parties Transactions, Concentration, and Country risks (CPs 19– 21)

51. The current regulation on the transactions with related parties (RP) has deficiencies against the CP. The current definition of affiliated parties is not as broad as the requirements in this CP. For example, the current definition fails to capture any person in a key position or a major individual shareholder of other group entities within a banking group, including the parent bank/company itself. In terms of RP identification, there is no explicit presumption power of the NBR in the regulation, although the NBR, in practice, may exercise discretion in applying the definition on a case by case basis. Moreover, there are no explicit provisions that require that the “write-off” of RP exposures exceeding specified amounts is subject to prior approval by the board. Information on RP transactions collected during off-site supervision is not sufficiently granular to capture the exact characteristics. Overall, RP regulation describes high level principles, but does not give clear guidance to banks. The NBR should review and amend the regulation on affiliated party transactions in a more prudent manner.

52. The NBR applies the EU-wide large exposure regime, and the banks’ concentration risk management is assessed in the context of SREP. However, there is no explicit requirement in the regulation that the bank’s policies and processes require all material concentrations to be regularly reviewed and reported to the bank’s Board, even though the practices are examined during on-site inspections. The explicit inclusion in regulation may be important in Romania considering the high level of sovereign debt concentration in banking industry. Even if the exposures comply with the large exposure or RP limits, assessors noted several examples where certain exposures should be examined further in the context of concentration risk or RP transaction management.12 The NBR should consider conducting a thematic review on concentration risks across banks (particularly focusing on banks where the large exposure limit is set at EUR 150 million or 100 percent of capital, and banks that have high concentration risks).13

53. The NBR regulation for country and transfer risk management is not sufficiently comprehensive. The NBR will check the country/transfer risk policies and processes implemented by banks if the country and transfer risks are significant for a bank or banking group. However, the regulation includes only high-level principles similar to the BCP text, and lacks sufficient substance. The NBR does not give any further/specific guidance to banks and supervisors through regulations, instructions, or the on-site handbook. It is difficult to ascertain what and how supervisors should examine during on-site inspections.14 There are no specific regulatory provisioning standards for country risk and transfer risk in Romania. Also, there are no specific regulatory requirements for banks to include appropriate scenarios into their stress testing programs to reflect country and transfer risk analysis. It is therefore not clear how supervisors perform a banking group-wide country risk analysis across each entity to form a comprehensive view of country risk.

J. Market Risk, Interest Rate Risk in the Banking Book, and Operational Risk (CPs 22, 23, 25)

54. In the Romanian banking system, the level of market risk is low for most of the Romanian credit institutions that do not have complex instruments. As of June 2017, risk weighted assets (RWAs) for market risk were around three percent of total RWAs. None of the banks use the advanced approach for computing market risk capital charges. The CRR and EBA SREP guidelines are comprehensively stipulated and the NBR conducts on-site inspection on all credit institutions annually. However, there is no market risk specialist in the supervision department; one should be assigned to build up expertise in this area. In terms of interest rate risk in the banking book (IRRBB), the Basel Committee published a new guideline on standards for IRRBB in April 2016, but the NBR has not updated the IRRBB rules accordingly. Authorities mention that currently they are in the process of amending regulation regarding IRRBB.

55. With respect to operational risks, a guideline on cyber security and/or information communication technology (ICT) for banks has not been implemented yet. Regarding IT resources, the SD has one IT systems specialist but does not have a dedicated unit; this could be considered insufficient in times of increasing demand, since the SD does not use external IT experts. The authorities mentioned that they are planning to hire more IT risk experts and new EBA Guidelines on ICT Risk Assessment (2017) will be implemented starting January 2018.

K. Financial Reporting, Auditing and Disclosure (CPs 26–28)

56. Financial reporting, auditing and disclosure requirements are largely harmonized at the EU level. Banks are required to prepare financial statements in compliance with the IFRS and have them certified by an external auditor which complies with international audit standards. Banks’ external auditors belong to the network of the four biggest global auditing firms and a large French auditing firm (with the exception of the credit cooperative network). Rotation requirements are implemented since 2014, either for the firm or the signing partner. All banks adopted specific policies and most rotated the firm. Five small banks appointed their external auditor in 2001–08 and only rotated the signing partner. The NBR confirmed that the tenure of these signing partners did not exceed seven years. There is, however, no internal methodology defining criteria used by the NBR to assess the adequacy of banks’ policies on rotation (and set a maximum time limit to guide supervisory assessments). Financial and prudential disclosure requirements are detailed and largely unified at the EU level. The NBR confirmed that these fully apply to banks incorporated in Romania on annual basis. The NBR verifies individual disclosure requirements and published detailed and updated information on banking activities and risks. A review of disclosure practices across the entire industry could usefully be conducted.

L. Abuse of Financial Services (CP 29)

57. In recent years, the Anti Money Laundering and Combating the Financing of Terrorism (AML/CFT) supervision of the NBR was strengthened particularly to be in line with the changes imposed by the new European Directive. The new European regulatory framework Directive (EU) 2015/849 provides a number of requirements on risk-based supervision, and a newly enhanced AML/CFT law is to be submitted for the Parliament’s legislative procedure. The NBR is in the early stages of implementing a risk-based approach to AML/CFT supervision. The NBR has assessed the Money Laundering and Terrorism Financing (ML/TF) risks, ranked banks, and established a detailed methodology for a risk-based approach to its AML/CFT supervisory activities.

58. Nevertheless, several shortcomings remain. Under Romanian law, only correspondent banking relationships with banks outside the EU are subject to enhanced due diligence measures. Under the Financial Action Task Force (FATF) standard, however, enhanced due diligence should be implemented with respect to all correspondent banking relationships, and no exception is currently made for intra EU correspondent banking relationships. Simplified due diligence is imposed in specific circumstances without a sound assessment that would have established that these circumstances present low ML/TF risks.

Detailed Assessment

A. Supervisory Powers, Responsibilities, and Functions

article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image
article image