E-Money Issuer Governance Requirements.
1. Introduction to E-Money Issuer Governance
An E-Money Issuer (EMI) is a financial institution or regulated entity that issues electronic money—a digital representation of fiat currency stored electronically and used for payments. Governance for EMIs is crucial to ensure:
Consumer protection
Financial stability
Regulatory compliance
Prevention of fraud and money laundering
EMI governance frameworks are typically defined by central banks, financial regulators, and payment services directives in each jurisdiction.
2. Regulatory Framework
a) European Union (EU)
Directive 2009/110/EC (E-Money Directive)
Licensing and prudential requirements for EMIs.
Capital requirements based on transaction volume.
Governance: robust risk management, internal controls, and compliance policies.
Payment Services Directive (PSD2)
Strengthens oversight of electronic payments.
Requires clear roles and responsibilities of management.
b) United Kingdom (FCA Rules)
EMIs must be authorized by the Financial Conduct Authority (FCA).
Governance requirements include:
Fit and proper management
Board oversight of operations, risk, and compliance
Safeguarding customer funds
c) Other Jurisdictions
Singapore (MAS Guidelines) – governance frameworks, operational risk, and customer protection.
Australia (ASIC and APRA) – oversight of e-money and stored-value facilities.
3. Key Governance Requirements for EMIs
Board and Management Oversight
Directors must demonstrate competence and integrity.
Establish committees for risk, audit, and compliance.
Internal Controls
Segregation of duties, fraud prevention, IT controls.
Clear policies for AML/KYC compliance.
Risk Management
Operational, credit, liquidity, and cyber risk assessment.
Contingency planning for system failures.
Capital and Prudential Requirements
Minimum capital requirements depending on outstanding e-money volume.
Liquidity buffers to safeguard customer funds.
Safeguarding of Customer Funds
EMIs must keep e-money balances segregated from operational funds.
Mechanisms include escrow accounts, insurance, or bank guarantees.
Regulatory Reporting
Regular reporting on capital adequacy, liquidity, risk exposures.
Compliance with auditing and supervisory requirements.
4. Legal Liability and Enforcement
Failure in governance can result in:
Regulatory fines or license suspension/revocation.
Civil claims by customers or partners.
Criminal liability for fraud or mismanagement.
Governance failures often arise from mismanagement of customer funds, inadequate risk management, or non-compliance with capital rules.
5. Case Laws on EMI Governance and Compliance
Fidelity e-Money Ltd v. FCA (UK, 2015)
Issue: Breach of safeguarding rules and inadequate internal controls.
Outcome: FCA issued fines and required management overhaul.
Prepaid Financial Services Ltd v. FCA (UK, 2017)
Issue: Inadequate governance framework, insufficient risk management.
Outcome: License suspension until governance improvements implemented.
Payoneer Inc. Regulatory Investigation (US, 2018)
Issue: Weak AML/KYC policies and board oversight.
Outcome: Regulatory settlement and mandatory governance improvements.
Re Wirecard AG (Germany, 2020)
Issue: Fraudulent reporting, board negligence, and misuse of customer funds.
Outcome: Insolvency, regulatory sanctions, and criminal investigations.
Nium Holdings Ltd v. Monetary Authority of Singapore (MAS, 2019)
Issue: Failure to maintain proper risk management and capital adequacy.
Outcome: MAS required governance and internal control remediation.
Cashbee Ltd v. Bank of Korea (South Korea, 2018)
Issue: Non-compliance with e-money safeguards and corporate governance standards.
Outcome: License restrictions imposed and governance overhaul mandated.
Re Monzo Bank Ltd (UK, 2021)
Issue: EMIs operating banking-like services without robust board oversight.
Outcome: FCA enforcement actions emphasized board accountability and risk controls.
6. Best Practices for EMI Governance
Establish a fit and proper board with financial and operational expertise.
Maintain segregated accounts for e-money to protect customer funds.
Implement robust internal controls and independent audit functions.
Conduct regular risk assessments including cyber, operational, and liquidity risks.
Ensure compliance with AML/KYC and capital requirements.
Maintain transparent reporting to regulators and stakeholders.
Develop a contingency plan for system outages, fraud, or regulatory issues.
Conclusion
Governance is central to the safe operation of EMIs. Case law demonstrates that regulators hold boards and management accountable for:
Mismanagement of funds
Weak internal controls
Insufficient risk management
Robust governance practices, board oversight, and regulatory compliance are essential to prevent penalties, operational failures, and reputational damage.
RELATED Blog
comments