• Archived Part A

    • Introduction

      • UG UG Users' Guide

        • UG-A UG-A Introduction

          • UG-A.1 UG-A.1 Purpose

            • UG-A.1.1

              The Bahrain Monetary Agency ("BMA"), in its capacity as the regulatory and supervisory authority for all financial institutions in Bahrain, issues regulations that licensees are legally obliged to comply with. These regulations are contained in the BMA Rulebook.

            • UG-A.1.2

              The Rulebook is divided into 5 Volumes, covering different areas of financial services activity. Volume 2 (Islamic Banks) covers all Islamic banks licensed by the Agency. Conventional banks are covered in Volume 1, and representative offices of banks are covered in Volume 5, which will be issued in 2007.

            • UG-A.1.3

              This Users' Guide provides guidance on:

              (a) the status and application of the Rulebook, with specific reference to Volume 2 (Islamic Banks);
              (b) the structure and design of the Rulebook; and
              (c) its maintenance and version control.

          • UG-A.2 UG-A.2 Regulation history

            • UG-A.2.1

              This User's Guide — Module UG — was first issued in January 2005 together with the rest of Volume 2 (Islamic Banks). All subsequent changes to this Module are dated with the month and year at the base of the relevant page and in the Table of Contents: Chapter UG-3 of this Module provides further details on Rulebook maintenance and version control.

            • UG-A.2.2

              A list of recent changes made to this Module are detailed in the table below:

              Module Ref. Change Date Description of Changes
              UG-2.3 & UG-3.1 4/2006 Explanation of revised dating and numbering system
                   
                   
                   
                   

        • UG-1 UG-1 Rulebook status and application

          • UG-1.1 UG-1.1 Legal basis

            • UG-1.1.1

              Volume 2 (Islamic Banks) of the BMA Rulebook is issued by BMA pursuant to Amiri Decree Law No. 23 of 1973 (the "BMA Law").

          • UG-1.2 UG-1.2 Status of provisions

            • UG-1.2.1

              The contents of the Rulebook have the formal status either of Rules or Guidance.

            • UG-1.2.2

              Rules have a binding effect. If a licensee breaches a Rule to which it is subject, it is liable to enforcement action by BMA and, in certain cases, criminal proceedings by the Office of the Public Prosecutor.

            • UG-1.2.3

              Guidance is not binding. It is material that helps inform a particular Rule or set of Rules, or provides other general information. Where relevant, compliance with Guidance will generally lead the BMA to assess that the business has complied with the rule(s) to which the Guidance relates. Conversely, failure to comply with Guidance will generally be viewed by the BMA as tending to suggest breach of a Rule.

            • UG-1.2.4

              The status of each paragraph within the Rulebook can be identified by its text format, as follows:

              (a) Rules are in bold, font size 12. The paragraph reference number is also highlighted in a coloured box.
              (b) Guidance is in normal type, font size 11.

            • UG-1.2.5

              The Agency's interpretation of all Rules and Guidance in this Volume is final.

          • UG-1.3 UG-1.3 Application

            • UG-1.3.1

              Rules and Guidance contained in Volume 2 of the BMA Rulebook apply to all Islamic licensed banks subject to the provisions of the BMA Law, except for representative offices of banks which are subject to the relevant requirements contained in Volume 5 (Specialised Firms) and conventional banks which are covered in Volume 1.

            • UG-1.3.2

              Where relevant, individual sections of Volume 2 may identify which specific Rules and Guidance apply to particular types of banking licensee.

          • UG-1.4 UG-1.4 Effective date

            • UG-1.4.1

              Version 1 of Volume 2 (Islamic Banks) of the BMA Rulebook was first issued in January 2005. It replaces all regulations previously issued with respect to Islamic banks.

            • UG-1.4.2

              For reference, these superseded regulations are listed in the Rulebook, under the 'Regulation history' section of the appropriate Module in each Volume. The list includes the reference number of the previously superseded circular or regulation, its date and subject heading.

        • UG-2 UG-2 Rulebook structure and format

          • UG-2.1 UG-2.1 Rulebook structure

            • Rulebook Volumes

              • UG-2.1.1

                The Rulebook is divided into 5 Volumes, covering different areas of financial services activity, as follows:

                Volume 1 Conventional Banks
                Volume 2 Islamic Banks
                Volume 3 Insurance
                Volume 4 Investment Business
                Volume 5 Specialised Activities

              • UG-2.1.2

                Volume 5 (Specialised Activities), covers money changers; leasing firms; factoring firms; representative offices; and providers of ancillary services to the financial sector.

            • Rulebook contents (overview)

              • UG-2.1.3

                Except for Volume 5, the basic structure of each Rulebook is the same. Each Volume starts with a contents page and User's Guide. Subsequent material is organised underneath the following headings:

                (a) High Level Standards
                (b) Business Standards
                (c) Regulatory Reporting and
                (d) Enforcement and Redress

              • UG-2.1.4

                Volume 5 is organised by the category of specialised firm concerned.

              • UG-2.1.5

                The material in Volumes 1–4 is contained in Modules, each covering a specific area of requirements (e.g. High-level Controls). In turn, each Module is divided into Chapters, Sections and Paragraphs, as detailed below.

              • UG-2.1.6

                Each Volume has its own appendix Volume containing relevant reporting forms and a glossary.

          • UG-2.2 UG-2.2 Volume structure

            • Modules

              • UG-2.2.1

                Rulebook Volumes are subdivided into Modules, arranged in groups according to their subject matter, underneath the headings listed in paragraph UG-2.1.3 above.

              • UG-2.2.2

                Each Module in a Volume is referenced using a two-letter code which is usually a contraction or abbreviation of its title. These codes are used for cross-referencing within the text.

            • Chapters

              • UG-2.2.3

                Each Module consists of chapters, categorised into two types:

                (a) A standard introductory chapter (referenced with a letter: e.g. UG-A); and
                (b) Chapters containing the substantive content of the Module (referenced with a number: e.g. CA-1, CA-2, etc.)

              • UG-2.2.4

                The introductory chapter summarises the purpose of the Module, its history (in terms of changes made to its contents) and, where applicable, lists previously issued circulars and regulations that were replaced by the Rulebook Module.

            • Sections and paragraphs

              • UG-2.2.5

                Chapters are further sub-divided into Sections (numbered consecutively after the Chapter number: e.g. FC-1.1, FC-1.2, FC-1.3 etc). In turn, Sections are sub-divided into Paragraphs (numbered consecutively after the Chapter and Section numbers: e.g. FC-1.1.1, FC-1.1.2, FC-1.1.3 etc.). Where appropriate, sub-section headings may be used, to guide the reader through a Section: sub-section headings are italicised and unnumbered, and act purely as an indicator (without limitation as to the status of the paragraphs that follow.

            • Table of contents

              • UG-2.2.6

                Each Volume's contents page lists all the Modules contained within it (Part A), and the information contained in the relevant appendix Volume (Part B).

              • UG-2.2.7

                The contents page of each Module lists the chapters, section and, in some Modules, sub-sections it contains, and the latest version number of each section in issue.

          • UG-2.3 UG-2.3 Format and page layout

            • Headers

              • UG-2.3.1

                The top of each page in the Rulebook identifies the Volume, Module and Chapter in question. Each Module is a separate document. New Chapters start on a fresh page.

            • Footers

              • UG-2.3.2

                The bottom of each page in the Rulebook (on the left hand side) identifies the Module in question, its section and page number. Page numbering starts afresh for each Section: the total number of pages in each respective Section is shown as well as the individual page number. The bottom right hand side shows an issue date. The Contents Page for each Module is given its own separate version number. In addition, the Contents page lists the latest issue date for each Section in that Module. The Contents page thus acts as a summary checklist of the current version in force for each section. Further explanation is provided in Section UG-3.1 below.

            • Defined terms

              • UG-2.3.3

                Defined terms used in the Rulebook are underlined. Each Volume has its own glossary listing defined terms and giving their meaning. Definitions of terms used apply only to the Volume in question. It is possible for the same term to be used in a different Volume with a different meaning.

            • Cross-references

              • UG-2.3.4

                Cross-references are highlighted in yellow. Two active cross-references are shown in Paragraph UG-2.3.5 below. Any cross-references given in a text state the Module code, followed by the numbering convention for the chapter and section being referred to. For example, the cross-reference FC-1.2.3 refers to the third Paragraph in the second Section of the first Chapter of the Financial Crimes Module. Many references will be quite general, referring to a Module or Chapter rather than a specific Paragraph.

            • Text format

              • UG-2.3.5

                Each paragraph is assigned a complete reference to the Module, Chapter, and Section, as well as its own paragraph number, as explained in UG-2.3.4 above. The format of the paragraph reference and paragraph text indicates their status as either a Rule or Guidance, as explained in UG-1.2.4 above.

        • UG-3 UG-3 Rulebook maintenance and availability

          • UG-3.1 UG-3.1 Maintenance

            • Quarterly Updates

              • UG-3.1.1

                Changes to the Rulebook are made quarterly. After the end of each calendar quarter, the BMA automatically reissues the contents page of each Module. Users can thus determine whether they have access to the latest version of these pages, by checking that they have those marked with the most recent date.

              • UG-3.1.2

                The contents page of each Module lists the current version number of each Section. The Module contents pages thus act as a checklist for users to verify that they have the current requirements.

              • UG-3.1.3

                Where changes to the regulations are required, then the affected pages are re-issued, alongside the contents pages for each Module. Where possible, only the relevant Section or Chapter is re-issued, rather than the whole Module.

              • UG-3.1.4

                A summary of any changes made to a Module is included in the 'Regulation history' section of each Module. The table summarises the nature of the change made, the date of the change and the Module components affected.

              • UG-3.1.5

                The updates are posted to the BMA website, together with a summary of changes for that quarter. Licensees are in addition e-mailed the summary of each quarter's changes. Hard-copy users are required to print off the updated pages from the website to incorporate in their Rulebook in order to keep it current. The website version of the Rulebook acts at all times as the definitive version of the Rulebook.

          • UG-3.2 UG-3.2 Rulebook availability and ordering details

            • UG-3.2.1

              The Rulebook is available on the BMA website, on CD-ROM and in hard copy.

            • Ordering details

              • UG-3.2.2

                Order forms for CD-ROMs and hard copies are included in an annexure to the Users' Guide (please refer to the end of this module).

              • UG-3.2.3

                Please complete all relevant boxes on the order form, taking particular care to provide full contact and address details. The completed form should be sent (accompanied with the appropriate payment) to:

                Rulebook Section
                Rulebook Section — Licensing & Policy Directorate
                Bahrain Monetary Agency
                PO Box 27
                Manama
                Kingdom of Bahrain

                Tel: + 973 - 17 54 7413
                Fax: + 973 - 17 53 0228
                E-mail: rulebook@bma.gov.bh.
                Web: www.bma.gov.bh

        • BMA Rulebook Order Form

          INSTRUCTIONS
          Please complete all relevant boxes, taking particular care to provide full contact and address details. The completed form should be sent (accompanied with the appropriate payment) to:

          Bahrain Monetary Agency
          (Rulebook Section, Licensing & Policy Directorate)
          PO Box 27
          Manama
          Kingdom of Bahrain

          For enquiries, please contact:
          Phone:   +973 - 17 547 413
          E-mail:   rulebook@bma.gov.bh
          ORDER REQUIREMENT
          Rulebook Volume Number Hard-Copy1:
          number required (at BD 110 each)
          CD-ROM2:
          number required (at BD 5 each)
          Cost:
          1 — Parts A & B Conventional Banks      
          2 — Parts A & B Islamic Banks    
          3 — Parts A & B Insurance Licensees
          (Due Oct 2004)
             
          4 — Parts A & B Investment Business Licensees (Due 2006)    
          5 — Parts A & B Specialised Licensees (Due 2006)    
          POSTAGE The above prices include postage for delivery within the Kingdom of Bahrain. Postage for international orders will be charged at cost: please contact BMA (see above) for details of rates and delivery options.  
          1: Hard copy subscribers are provided the latest version of the Rulebook Volume(s) ordered, which they can keep up to date by printing off new or amended pages from the BMA website (www.bma.gov.bh).
          2: CD-ROM subscribers are sent the latest available version of the complete Rulebook (i.e. the CDROM contains all Volumes that have been issued).
          Total Cost:

          ADDRESS / PAYMENT DETAILS
          Name  
          Institution (if applicable)  
          Full Postal Address  
           
           
           
          Contact e-mail / telephone / fax E-mail:
          Telephone:
          Fax:
          Please remember to enclose your payment with the order Payment should be by cheque drawn on a Bahraini-licensed bank, payable in Bahraini Dinars. Cheques should be made out to "Bahrain Monetary Agency". Persons ordering from outside Bahrain should contact the BMA (see above) for postage rates and payment options.

    • High Level Standards

      • LR LR Licensing Requirements

        • LR-A LR-A Introduction

          • LR-A.1 LR-A.1 Purpose

            • LR-A.1.1

              The Licensing Requirements Module sets out the BMA's approach to licensing Islamic bank licensees.

            • LR-A.1.2

              The Module builds on the legal requirements contained in Decree Law No. (23) of 1973 (the BMA Law 1973). The Module is issued under legal powers granted to the BMA under the BMA Law 1973, notably Articles 56 to 69.

            • Licensing Requirement

              • LR-A.1.3

                Persons wishing to undertake regulated Islamic banking services are required to be licensed by BMA as an Islamic bank licensee. Regulated Islamic banking services consist of three determinant activities — the acceptance of Shari'a money placements/deposits, the managing of Shari'a profit sharing investment accounts, and the offering of Shari'a financing contracts. In addition, various supplementary activities may also be undertaken. All these activities are defined in Rule LR-1.3.1. Islamic bank licensees must operate all their operations in compliance with Shari'a economic principles; and only Islamic bank licensees may hold themselves out to be a fully Shari'a compliant institution.

              • LR-A.1.4

                In other words, to be licensed as an Islamic bank licensee, a person must undertake the activity of accepting Shari'a money placements/deposits, and/or managing Shari'a profit sharing investment accounts. In addition, the activity of offering Shari'a financing contracts must also be undertaken. In addition, they may undertake any of the other activities falling within the definition of regulated Islamic banking services, providing these are in conformity with Shari'a economic principles.

            • License Categories

              • LR-A.1.5

                Islamic bank licensees are divided into two sub-categories: Islamic retail bank licensees and Islamic wholesale bank licensees. Certain specific regulatory requirements may differ between these two sub-categories, where appropriate to address their different risk profiles.

              • LR-A.1.6

                Islamic retail bank licensees may undertake transactions in any currency, with both Bahraini residents and non-residents. To qualify as an Islamic retail bank licensee, the activity of offering Shari'a financing contracts must account for a significant portion of the institution's business (defined, broadly, as accounting for over 20% of an institution's assets).

              • LR-A.1.7

                Islamic wholesale bank licensees may also undertake transactions without restriction, when dealing with the Government of Bahrain and its agencies; BMA bank licensees; and non-residents. However, they may only undertake transactions denominated in Bahraini Dinar and/or with a resident of the Kingdom of Bahrain, if these are wholesale in nature. Wholesale transactions are defined in terms of transaction size (in summary, BD 7 million or more for the activities of taking Shari'a money placements/deposits, and offering Shari'a financing contracts, and US$ 250,000 or more for any of the other activities falling within the definition of regulated Islamic banking services).

              • LR-A.1.8

                Collectively, licensed providers of regulated Islamic banking services are called Islamic bank licensees. Bahrain-incorporated Islamic bank licensees are called Bahraini Islamic bank licensees. Islamic bank licensees that are incorporated in an overseas jurisdiction and operate via a branch presence in the Kingdom of Bahrain are called overseas Islamic bank licensees. The same naming convention applies to the two sub-categories of Islamic bank license: thus, Bahraini Islamic retail bank licensees and Bahraini Islamic wholesale bank licensees are those incorporated in Bahrain, whilst overseas Islamic retail bank licensees and overseas Islamic wholesale bank licensees are those incorporated in an overseas jurisdiction and operating in Bahrain via a branch presence.

            • Licensing Conditions

              • LR-A.1.9

                Islamic bank licensees are subject to 8 licensing conditions, mostly specified at a high level in Module LR, and further expanded in underlying subject Modules (such as Module CA). These licensing conditions are broadly equivalent to the standards applied in other Volumes of the BMA Rulebook, to other license categories, and are consistent with international good practice, such as relevant Basel Committee and IFSB (Islamic Financial Services Board) standards.

            • Retaining Licensed Status

              • LR-A.1.10

                The requirements contained in Chapter LR-2 represent the minimum conditions that have to be met in each case, both at the point of licensing and on an on-going basis thereafter, in order for licensed status to be retained.

            • Information Requirements and Processes

              • LR-A.1.11

                Chapter LR-3 specifies the processes and information requirements that have to be followed for applicants seeking an Islamic bank license, as well as existing licensees seeking to vary the scope of their license, by adding new regulated activities. It also covers the voluntary surrender of a license, or its cancellation by BMA.

            • Representative Offices and Ancillary Services Providers

              • LR-A.1.12

                Representative offices of overseas Islamic bank licensees are not covered in Volume 2 (Islamic Banks) of the Rulebook. Requirements covering Representative Offices (for all financial services firms) will instead be included in Volume 5, to be issued in 2007.

              • LR-A.1.13

                Until such time as Volume 5 (Specialised Activities) of the BMA Rulebook is issued, representative offices of overseas Islamic bank licensees remain subject to the requirements contained in the BMA's "Standard Conditions and Licensing Criteria" applicable to representative offices of foreign banks, and relevant existing Circulars.

              • LR-A.1.14

                Providers of ancillary services to the financial sector are not covered in Volume 2 (Islamic Banks) of the Rulebook. Requirements covering ancillary services providers will instead be included in Volume 5, to be issued in 2007.

              • LR-A.1.15

                Until such time as Volume 5 (Specialised Activities) of the BMA Rulebook is issued, ancillary services providers remain subject to the requirements contained in the BMA's "Standard Conditions and Licensing Criteria" applicable to providers of ancillary services to the financial sector, and relevant existing Circulars.

            • Updating the BMA Rulebook

              • LR-A.1.16

                Unless the context suggests otherwise, references elsewhere in Volume 2 to Full Commercial Bank should be taken as referring to Islamic retail bank licensees, and references to Offshore Banking Units and Investment Bank Licensees should be taken as referring to Islamic wholesale bank licensees. References to the previous bank license categories that applied prior to 1 July 2006 will be gradually updated over time, across the rest of Volume 2.

          • LR-A.2 LR-A.2 Module History

            • Evolution of Module

              • LR-A.2.1

                This Module (Module LR — "Licensing and Authorisation Requirements") was first issued in January 2005, as part of the initial release of Volume 2 of the BMA Rulebook. It was subsequently reissued in full in July 2006 (and renamed "Licensing Requirements").

              • LR-A.2.2

                The reissued Module was one of several Modules modified to reflect the introduction of the BMA's new integrated license framework. Module LR was amended to reflect the new Islamic bank licenses introduced by the framework, and to more closely align its presentation with that found in other BMA Rulebook volumes.

              • LR-A.2.3

                The reissued Module is dated July 2006. All subsequent changes were dated with the month and year when the change was made, at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

              • LR-A.2.4

                A list of recent changes made to this Module is provided below:

                Module Reference Change Date Description of Changes
                Whole Module 07/2006 Whole Module reissued to reflect integrated license framework: new license categories and updated licensing conditions introduced.
                     

            • Superseded Requirements

              • LR-A.2.5

                The initial January 2005 version of this Module superseded various circulars and other requirements relating to licensing. Some of these circulars were combined in 1997 into a licensing folder ("Part 1: Licensing", which formed part of the three volume information pack, "The Establishment, regulations and supervision of banks and other financial institutions in Bahrain"). The requirements contained in these circulars were transposed into the initial January 2005 version of this Module unchanged, as follows:

                Circular Reference Date of Issue Module Ref.
                (July 2004 version)
                Circular Subject
                5/77 08/03/77 LR-B.1.1, LR-3.3 Permitted Business Transactions with residents
                OG/16/90 10/01/90 LR-2.3, LR-3.3 Dealing with Residents
                OG/192/98 16/06/98 LR-4 Financial Trust Regulation
                No reference 04/81 LR-5 Precious Metals and Commodities
                BS/07/04 06/05/04 LR-6 Record Keeping Requirements

        • LR-B LR-B Scope of Application

          • LR-B.1 LR-B.1 General Prohibitions

            • LR-B.1.1

              The licensing requirements in Chapter LR-1 have general applicability, in that they prevent any person from providing (or seeking to provide) regulated banking services within or from the Kingdom of Bahrain, unless they have been licensed as a Islamic bank licensee by the BMA (see Rule LR-1.1.1).

            • LR-B.1.2

              In addition, no one may use the term 'bank' in their trading or corporate name, or otherwise hold themselves out to be a bank in Bahrain, unless they hold the appropriate license from BMA (see Rule LR-1.1.2).

            • LR-B.1.3

              The Rules referred to above are supported by statutory restrictions contained in the BMA Law 1973 (cf. Articles 60 and 61).

          • LR-B.2 LR-B.2 Licensed Persons

            • LR-B.2.1

              The remaining requirements in Chapters LR-1 to LR-3 (besides those mentioned in Section LR-B.1 above) apply to all those licensed by BMA as an Islamic bank licensee, or which are in the process of seeking such a license. They apply regardless of whether the person concerned is incorporated in the Kingdom of Bahrain, or in an overseas jurisdiction, unless otherwise specified.

            • LR-B.2.2

              These remaining requirements prescribe the types of license offered; their associated operating conditions; the licensing conditions that have to be satisfied in order to secure and retain a license; and the processes to be followed when applying or varying a license, or when a license is withdrawn.

        • LR-1 LR-1 Requirement to Hold a License

          • LR-1.1 LR-1.1 Islamic Bank Licensees

            • General Prohibitions

              • LR-1.1.1

                No person may:

                (a) undertake (or hold themselves out to undertake) regulated Islamic banking services within or from the Kingdom of Bahrain unless duly licensed by the BMA; or
                (b) hold themselves out to be licensed by the BMA unless they have as a matter of fact been so licensed.

              • LR-1.1.2

                Only persons licensed to undertake regulated Islamic banking services (or regulated banking services), may use the term 'bank' in their corporate or trading names, or otherwise hold themselves out to be a bank.

              • LR-1.1.3

                Licensees are not obliged to include the word 'bank' in their corporate or trading names; however, they may be required to make clear their regulatory status in their letter heads, customer communications, website and so on.

              • LR-1.1.4

                For the purposes of Rule LR-1.1.2, persons will be considered in breach of this requirement if they attempt to operate as, or incorporate a bank in Bahrain with a name containing the word "bank" (or the equivalents in any language), without holding the appropriate BMA license or obtaining the prior approval of the BMA.

            • Licensing

              • LR-1.1.5

                Persons wishing to be licensed to undertake regulated Islamic banking services within or from the Kingdom of Bahrain must apply in writing to the BMA.

              • LR-1.1.6

                An application for a license must be in the form prescribed by the BMA and must contain:

                (a) a business plan specifying the type of business to be conducted;
                (b) application forms for all controllers; and
                (c) application forms for all controlled functions.

              • LR-1.1.7

                The BMA will review the application and duly advise the applicant in writing when it has:

                (a) granted the application without conditions;
                (b) granted the application subject to conditions specified by the BMA; or
                (c) refused the application, stating the grounds on which the application has been refused and the process for appealing against that decision.

              • LR-1.1.8

                Detailed rules and guidance regarding information requirements and processes for license applications can be found in Section LR-3.1. As specified in Paragraph LR-3.1.14, BMA will provide a formal decision on a Phase 1 license application within 60 calendar days of all required documentation having been submitted in a form acceptable to BMA.

              • LR-1.1.9

                In granting new licenses, BMA will specify the specific types of regulated Islamic banking service for which a license has been granted, and on what basis (i.e. Islamic retail bank licensee or Islamic wholesale bank licensee).

              • LR-1.1.10

                All applicants for an Islamic bank license must satisfy the BMA that they meet, by the date of their license, the minimum conditions for licensing, as specified in Chapter LR-2. Once licensed, Islamic bank licensees must maintain these criteria on an ongoing basis.

              • LR-1.1.11

                Islamic bank licensees must not carry on any commercial business in the Kingdom of Bahrain or elsewhere other than banking business and activities directly arising from or incidental to that business.

              • LR-1.1.12

                Rule LR-1.1.11 is intended to restrict bank licensees from undertaking any material non-financial business activities. The Rule does not prevent a bank undertaking commercial activities if these directly arise from their financial business: for instance, in the context of Islamic contracts, such as murabaha, ijara and musharaka, where the bank may hold the physical assets being financed or leased. Nor does it restrict a bank from undertaking commercial activities if, in the judgment of the BMA, they are incidental and do not detract from the financial nature of the bank's operations: for example, a bank may rent out spare office space in its own office building, and provide services associated with the rental (e.g. office security or cleaning).

              • LR-1.1.13

                Rule LR-1.1.11 applies to the legal entity holding the bank license. A bank may thus own subsidiaries that undertake non-financial activities, although the BMA generally does not support the development of significant commercial activities within a banking group. Capital invested in such subsidiaries by a bank would be deducted from the bank's capital base under the BMA's capital rules (see Module CA). In addition, the BMA may impose restrictions — such as dealings between the bank and its commercial subsidiaries — if it was felt necessary to limit the bank's exposure to non-financial risks.

          • LR-1.2 LR-1.2 License Sub-Categories

            • Retail vs. Wholesale

              • LR-1.2.1

                Depending on the nature of activities undertaken, Islamic bank licensees must be licensed either as an Islamic retail bank licensee or as an Islamic wholesale bank licensee. The same legal entity may not hold both types of license.

              • LR-1.2.2

                The nature of activities allowed under each license sub-category is specified below (cf. Rule LR-1.2.4ff). The Islamic retail bank licensee category replaces the Full Commercial Bank (Islamic principles) category that existed prior to July 2006; the Islamic wholesale bank licensee category replaces the Offshore Banking Unit and Investment Bank License (Islamic principles) categories.

              • LR-1.2.3

                Banks licensed prior to the introduction of these new license categories in July 2006 are not required to reapply for their license. Rather, their new license category is to be confirmed by an exchange of letters with BMA, and the issuance of a new license certificate. Where (prior to July 2006), the same legal entity holds multiple licenses, BMA will agree transitional measures aimed at rationalizing the number of licenses held.

            • Islamic Retail Bank Licensees

              • LR-1.2.4

                Islamic retail bank licensees are allowed to transact with both residents and non-residents of the Kingdom of Bahrain, and in both Bahraini Dinar and foreign currencies.

              • LR-1.2.5

                To qualify as an Islamic retail bank licensee, the person concerned must undertake (as a minimum), the activity of accepting Shari'a money placements/deposits, and/or managing Shari'a profit sharing investment accounts, as well as the activity of offering Shari'a financing contracts (as defined in Rules LR-1.3.16, LR-1.3.17 and LR-1.3.18). The activity of offering Shari'a financing contracts must be a significant part of the bank's business, relative to other activities.

              • LR-1.2.6

                When assessing the significance of Shari'a financing contracts, in the context of Rule LR-1.2.5, the BMA would normally expect to see such contracts constitute at least 20% of the total assets of the institution. Other activities and criteria may also be taken into account, if the BMA believes they are of a financing-related nature, and that such activities constitute a significant share of the bank's overall business.

              • LR-1.2.7

                In the case of new applicants, the above assessment is made based on the financial projections and business plan provided as part of the license application. Where existing licensees cease to satisfy the condition contained in Rule LR-1.2.5, the BMA will initiate discussion with the licensee as to the appropriateness of their license category; this may result in the licensee being required to change its license category.

              • LR-1.2.8

                The purpose of Rule LR-1.2.5 is to ensure that, besides the activity of accepting Shari'a money placements/deposits, and managing Shari'a profit sharing investment accounts, that the core banking activity of providing finance also forms part of the definition of Islamic retail bank licensees, and accounts for a significant share of their business, in keeping with their intermediation function.

            • Islamic Wholesale Bank Licensees

              • LR-1.2.9

                Islamic wholesale bank licensees are allowed to transact with residents of the Kingdom of Bahrain (irrespective of currency), and in Bahraini Dinar (irrespective of the location of the counterparty), subject to the conditions and exemptions specified in Rules LR-1.2.13, LR-1.2.15, LR-1.2.17 and LR-1.2.19. Foreign currency transactions with non-residents are not subject to these conditions.

              • LR-1.2.10

                The effect of Rule LR-1.2.9 is to limit the on-shore/Bahraini Dinar customer business of Islamic wholesale bank licensees to larger transactions. By definition, their on-shore client base is therefore wholesale in nature (i.e. other banks, large corporates and high net-worth individuals).

              • LR-1.2.11

                To qualify as an Islamic wholesale bank licensee, the person concerned must undertake (as a minimum), the activity of accepting Shari'a money placements/deposits and/or managing Shari'a profit sharing investment accounts (as defined in Rules LR-1.3.16 and LR-1.3.17), together with the activity of offering Shari'a financing contracts (as defined in Rule LR-1.3.18).

              • LR-1.2.12

                The purpose of Rule LR-1.2.11 is to ensure that the core Islamic banking activities of accepting Shari'a money placements/deposits, and managing Shari'a profit sharing investment accounts, form part of the definition of Islamic wholesale bank licensees. However, unlike Islamic retail bank licensees, there is no requirement that the activity of providing Shari'a financing contracts must be a significant part of the bank's business, relative to other activities. This is to allow Islamic wholesale bank licensees greater flexibility as to the nature of their activities; it also recognises that, because of the wholesale nature of their client base, there is less need to limit the scale of non-credit related risks to which their depositors and profit sharing investors may be exposed. Rule LR-1.2.11 does not in any way prevent Islamic wholesale bank licensees from providing Shari'a-compliant finance as a major activity, should they wish to.

              • LR-1.2.13

                Islamic wholesale bank licensees may transact with residents of Bahrain and/or in Bahrain Dinar, with respect to the activities (a) and (b) listed in Rule LR-1.3.1, only where the individual transaction is BD 7 million or above (or its foreign currency equivalent).

              • LR-1.2.14

                To comply with Rule LR-1.2.13, the initial amount taken as a placement/deposit must be BD 7 million or above (or its equivalent in foreign currency); however, subsequent additions and withdrawals from the account may be for any amount. The initial amount taken as deposit may be split between different types of accounts (e.g. call, 3-month and 6-month accounts) — providing at least BD 7 million is taken from the customer on the same day and the bank's records can demonstrate this. Where subsequent withdrawals lead to a zero balance on an account (or the aggregate of accounts where more than one was originally opened), then a further BD 7 million must be deposited to re-start the 'wholesale' relationship, before additional deposits for smaller amounts may be made.

              • LR-1.2.15

                Similarly, with respect to Shari'a-compliant financing transactions, the initial facility amount advised must be BD 7 million or above (or its equivalent); but drawdowns (and repayments) under the facility may be for any amount, as may any subsequent changes to the facility amount. If the facility is fully repaid, then a further BD 7 million transaction must be agreed in order to re-start the 'wholesale' relationship.

              • LR-1.2.16

                Islamic wholesale bank licensees may transact with residents of Bahrain and/or in Bahrain Dinar, with respect to the activities (c) to (j) listed in Rule LR-1.3.1, only where the initial transaction is US$ 250,000 or above (or its foreign currency equivalent), and where the financial instruments concerned are Shari'a compliant.

              • LR-1.2.17

                With respect to activity (c) (managing Shari'a profit sharing investment accounts), the threshold refers to the initial amount placed as an investment. With respect to activities (d) and (e) (dealing in financial instruments as principal / agent), the threshold refers to the individual transaction size. With respect to activities (f) and (g) (managing / safeguarding financial instruments), the threshold refers to the initial investment amount. With respect to activity (h), (operating a Collective Investment Undertaking), the threshold refers to the minimum investment required for participation in the scheme. With respect to activities (i) and (j) (arranging / advising on deals in financial instruments) the threshold refers to the size of the deal arranged or of the investment on which advice is being given.

              • LR-1.2.18

                Note that the threshold with respect to activities (c), (d) and (e) applies to the initial investment amount: where a subsequent distribution to a client, or a reduction in the mark to market value of the investment, reduces the initial investment amount below US$ 250,000, it is still considered a wholesale transaction. The threshold in Rule LR-1.2.16 applies to a client even if the same client satisfies the BD 7m threshold in Rule LR-1.2.13, with respect to money placement /financing activities. Finally, the initial amount taken as an investment may be split between two or more investment products — providing at least US$ 250,000 is taken from the customer on the same day and the bank's records can demonstrate this.

              • LR-1.2.19

                Islamic wholesale bank licensees may only undertake activities (k) and (l) listed in Rule LR-1.3.1, on behalf of residents of Bahrain and/or in Bahrain Dinar, where the customer concerned meets either of the thresholds specified in LR-1.2.13 or LR-1.2.16 (in which case, activities (k) and (l) may be undertaken for any amount).

              • LR-1.2.20

                Notwithstanding Rules LR-1.2.13, LR-1.2.16 and LR-1.2.19, Islamic wholesale bank licensees are allowed to transact in Bahraini Dinar (or any other currency) for any amount with the Government of Bahrain, Bahrain public sector entities (as defined in the guidelines for completion of the PIRI Form), and BMA bank licensees. Islamic wholesale bank licensees may also transact in Bahraini Dinar for any amount, where required to fund their normal operating expenses; when investing for their own account in securities listed on the Bahrain Stock Exchange.

              • LR-1.2.21

                Any transactions entered into prior to 1 July 2006, which may be in breach of the conditions specified in Rules LR-1.2.13, LR-1.2.16 and LR-1.2.19, must be notified to the BMA. These transactions will be allowed to mature.

              • LR-1.2.22

                Since the Islamic wholesale bank licensee regime represents an easing of the restrictions on on-shore business that previously applied to offshore bank licensees (i.e. OBUs and IBLs), there should be few transactions of the type specified in Rule LR-1.2.21 — they are likely to exist only where individual ad-hoc exemptions may have been previously granted by BMA, and these exemptions went further than those now being applied across the board to all Islamic wholesale bank licensees.

              • LR-1.2.23

                Islamic wholesale bank licensees wishing to undertake transactions of the type specified in Rules LR-1.2.13, LR-1.2.16 or LR-1.2.19 must seek prior written BMA approval.

              • LR-1.2.24

                The approval requirement in Rule LR-1.2.23 only has to be made once, prior to the licensee starting to undertake such transactions. Its purpose is to allow BMA to monitor the initiation of such business by Islamic wholesale bank licensees, and to check that adequate systems and controls have been in place, so that such transactions are likely to be well managed. In addition, it is to allow, where relevant, for the necessary arrangements to be made to ensure that Islamic wholesale bank licensees comply with the BMA's reserve requirements (which apply to deposit liabilities denominated in Bahraini Dinars — see LR-2.5.10).

              • LR-1.2.25

                Islamic wholesale bank licensees unclear about the interpretation of the conditions specified in Rules LR-1.2.13, LR-1.2.16 and LR-1.2.19 must consult the BMA, prior to undertaking the transaction concerned.

              • LR-1.2.26

                BMA may publish additional interpretative guidance on the above conditions, in response to licensees' queries. The minimum thresholds specified under Rules LR-1.2.13 and LR-1.2.16 will be kept under review by BMA and may be amended in response to market developments.

          • LR-1.3 LR-1.3 Definition of Regulated Islamic Banking Services

            • LR-1.3.1

              Regulated Islamic banking services are any of the following activities, carried on by way of business:

              (a) Accepting Shari'a money placements/deposits
              (b) Offering Shari'a Financing Contracts
              (c) Managing Shari'a profit sharing investment accounts
              (d) Dealing in Shari'a compliant financial instruments as principal
              (e) Dealing in Shari'a compliant financial instruments as agent
              (f) Managing Shari'a compliant financial instruments
              (g) Safeguarding Shari'a compliant financial instruments
              (h) Operating a Shari'a compliant Collective Investment Undertaking
              (i) Arranging deals in Shari'a compliant financial instruments
              (j) Advising on Shari'a compliant financial instruments
              (k) Providing money exchange/remittance services
              (l) Issuing/ administering means of payment.

            • LR-1.3.2

              Upon application, the BMA may exclude specific transactions from the definition of regulated Islamic banking services.

            • LR-1.3.3

              The BMA will normally only consider granting such an exemption when a Bahrain resident is unable to obtain a specific product in Bahrain and it would be unreasonable to require the overseas provider of that product to be licensed for that specific transaction, and the provider has no intention of regularly soliciting such business in Bahrain.

            • LR-1.3.4

              For the purposes of Rule LR-1.3.1, carrying on a regulated Islamic banking service by way of business means:

              (a) undertaking for commercial gain, at a minimum, either or both of the activities of accepting Shari'a money placements/deposits and managing Shari'a profit sharing investment accounts, together with the activity of offering Shari'a financing contracts; in addition, any of the remaining activities specified in Rule LR-1.3.1 may also be undertaken;
              (b) holding oneself out as willing and able to engage in such activities; or
              (c) regularly soliciting other persons to engage in transactions constituting such activities.

            • LR-1.3.5

              Licensees should note that they may still undertake activities falling outside the definition of regulated Islamic banking services, such as investing in physical commodities — subject to Rule LR-1.1.11. The fact that an activity is not included in the definition of regulated Islamic banking services does not mean that it is prohibited. In transitioning to the new licensing framework, BMA will be closely liaising with licensees to ensure that no disruption occurs to their legitimate business activities.

            • LR-1.3.6

              Licensees should note that the same legal entity cannot combine regulated Islamic banking services with other regulated services, such as regulated insurance services. However, different legal entities within the same group may of course each hold a different license (e.g. banking and insurance).

            • General exclusions

              • LR-1.3.7

                A person does not carry on an activity constituting a regulated Islamic banking service if the activity:

                (a) is carried on in the course of a business which does not ordinarily constitute the carrying on of financial services;
                (b) may reasonably be regarded as a necessary part of any other services provided in the course of that business; and
                (c) is not remunerated separately from the other services.

              • LR-1.3.8

                For example, the holding of money as a rent-guarantee in connection with the rental of a property would not be considered a regulated Islamic banking service, since it satisfies the exemptions in Rule LR-1.3.7.

              • LR-1.3.9

                A person does not carry on an activity constituting a regulated Islamic banking service if the person is a body corporate and carries on that activity solely with or for other bodies corporate that are members of the same group.

              • LR-1.3.10

                A person does not carry on an activity constituting a regulated Islamic banking service if such person carries on an activity with or for another person, and they are both members of the same family.

              • LR-1.3.11

                A person does not carry on an activity constituting a regulated Islamic banking service if the sole or main purpose for which the person enters into the transaction is to limit any identifiable risks arising in the conduct of his business, providing the business conducted does not itself constitute a regulated activity.

              • LR-1.3.12

                For example, commercial companies entering into bay salam or istisna transactions in order to protect themselves against future fluctuations in the price of their products, would not be considered to be dealing in financial instruments as principal, and would not therefore require to be licensed as an Islamic bank licensee.

              • LR-1.3.13

                A person does not carry on an activity constituting a regulated Islamic banking service if that person enters into that transaction solely as a nominee for another person, and acts under instruction from that other person.

              • LR-1.3.14

                A person does not carry on an activity constituting a regulated Islamic banking service if that person is a government body charged with the management of financial instruments on behalf of a government or public body.

              • LR-1.3.15

                A person does not carry on an activity constituting a regulated Islamic banking service if that person is an exempt person, as specified by Royal decree.

            • Accepting Shari'a money placements/deposits

              • LR-1.3.16

                Accepting Shari'a money placements is defined as the acceptance of sums of money for safe-keeping ('al-wadia', 'q'ard') in a Shari'a compliant framework, under which it will be repaid, either on demand or in circumstances agreed by the parties involved, and which is not referable to the giving of security.

            • Managing Shari'a profit sharing investment accounts

              • LR-1.3.17

                Managing a Shari'a profit sharing investment account is defined as managing an account, portfolio or fund, whereby a sum of money is placed with the service provider on terms that a return will be made according to an agreed Shari'a compliant profit-sharing arrangement, such as a mudaraba or musharaka partnership.

            • Offering Shari'a Financing Contracts

              • LR-1.3.18

                Offering Shari'a financing contracts is defined as entering into, or making arrangement for another person to enter into, a contract to provide finance in accordance with Shari'a principles, such as murabaha, bay muajjal, bay salam, ijara wa iktina and istisna'a contracts.

            • Dealing in Shari'a compliant financial instruments as principal

              • LR-1.3.19

                Dealing in Shari'a compliant financial instruments as principal means buying, selling, subscribing for or underwriting any Shari'a compliant financial instrument on own account.

              • LR-1.3.20

                Rule LR-1.3.22 includes the underwriting of equity and other financial instruments. It also includes the temporary sale of a financial instrument through a repo transaction.

              • LR-1.3.21

                A person does not carry on an activity specified in Rule LR-1.3.19 if the activity relates to the person issuing his own financial instrument.

            • Dealing in Shari'a compliant financial instruments as agent

              • LR-1.3.22

                Dealing in Shari'a compliant financial instruments as agent means buying, selling, subscribing for or underwriting Shari'a compliant financial instruments on behalf of a client.

              • LR-1.3.23

                A licensee that carries on an activity of the kind specified by Rule LR-1.3.22 does not determine the terms of the transaction and does not use its own financial resources for the purpose of funding the transaction. Such a licensee may however receive or hold assets in connection with the transaction, in its capacity as agent of its client.

            • Managing Shari'a Compliant Financial Instruments

              • LR-1.3.24

                Managing Shari'a compliant financial instruments means managing on a discretionary basis Shari'a compliant financial instruments on behalf of another person.

              • LR-1.3.25

                The activities included under the definition of Rule LR-1.3.24 include activities such as asset management.

            • Safeguarding Shari'a Compliant Financial Instruments (i.e. Custodian)

              • LR-1.3.26

                Safeguarding Shari'a compliant financial instruments means the safeguarding of Shari'a compliant financial instruments for the account of clients.

              • LR-1.3.27

                A person does not carry on an activity specified in Rule LR-1.3.26 if the person receives documents relating to a financial instrument for the purpose of onward transmission to, from or at the direction of the person to whom the financial instrument belongs; or else is simply providing a physical safekeeping service such as a deed box.

              • LR-1.3.28

                A person does not carry on an activity specified in Rule LR-1.3.26 if a third person, namely a qualifying custodian, accepts responsibility with regard to the financial instrument.

              • LR-1.3.29

                A "qualifying custodian" means a person who is:

                (a) a licensee who has permission to carry on an activity of the kind specified in Rule LR-1.3.26; or
                (b) an exempt person in relation to activities of that kind.

              • LR-1.3.30

                A person does not carry on an activity specified in Rule LR-1.3.26 if they are managing a central depository, which is part of an exchange recognised by BMA.

              • LR-1.3.31

                The following are examples of activities, when taken in isolation, are unlikely to be regarded an activity of the kind specified under Rule LR-1.3.26:

                (a) providing information as to the number of units or the value of any assets safeguarded; and
                (b) converting currency.

              • LR-1.3.32

                A person undertaking an activity of the kind specified under Rule LR-1.3.26 may also be engaged in the administration of the financial instruments, including related services such as cash/ collateral management.

            • Operating a collective investment undertaking

              • LR-1.3.33

                Operating a collective investment undertaking means operating, establishing or winding up a collective investment undertaking.

              • LR-1.3.34

                For the purposes of LR-1.3.33, a collective investment undertaking means any arrangements, authorised by or registered with the BMA, with respect to property of any description, including money, the purpose or effect of which is to enable persons taking part in the arrangements to participate in or receive profits or income arising from the acquisition, holding or disposal of the property or sums paid out of such profits or income.

              • LR-1.3.35

                A person does not carry on an activity specified in Rule LR-1.3.33 if the activity relates to the person establishing or winding up a collective investment undertaking, and that activity may be reasonably regarded as necessary in the course of providing legal services or providing accounting services.

              • LR-1.3.36

                Collective investment undertakings of the kind specified in Rule LR-1.3.33 may be open-ended (i.e. with shares continuously issued and redeemed to meet investor demand) or closed-ended (where there is a single issue of shares and investors can only realise their investments on the winding-up of the fund).

            • Arranging deals in Shari'a compliant financial instruments

              • LR-1.3.37

                Arranging deals in Shari'a compliant financial instruments means making arrangements with a view to another person, whether as principal or agent, buying, selling, subscribing for or underwriting deals in Shari'a compliant financial instruments.

              • LR-1.3.38

                A person does not carry on an activity specified in Rule LR-1.3.37 if the arrangement does not bring about the transaction to which the arrangement relates.

              • LR-1.3.39

                A person does not carry on an activity specified in Rule LR-1.3.37 if a person's activities are limited solely to introducing clients to licensees.

              • LR-1.3.40

                The exclusion in Rule LR-1.3.39 does not apply if the agent receives from any person, other than the client, any pecuniary reward or other advantage, for which he does not account to the client, arising out of his entering into the transaction. Thus, if A receives a commission from B for arranging credit or deals in investment for C, the exclusion in Rule LR-1.3.42 does not apply.

              • LR-1.3.41

                A person does not carry on an activity specified in Rule LR-1.3.37 merely by providing the means of communication between two parties to a transaction.

              • LR-1.3.42

                A person does not carry on an activity specified in Rule LR-1.3.37 if they operate an exchange, duly recognised and authorised by the BMA.

              • LR-1.3.43

                Negotiating terms for an investment on behalf of a client is an example of an activity which maybe regarded as activities of the kind specified in Rule LR-1.3.37.

              • LR-1.3.44

                The following are examples of activities, when taken in isolation, are unlikely to be regarded as an activity of the kind specified in Rule LR-1.3.37:

                (a) appointing professional advisers;
                (b) preparing a prospectus/business plan;
                (c) identifying potential sources of funding;
                (d) assisting investors/subscribers/borrowers to complete and submit application forms; or
                (e) receiving application forms for processing/checking and/or onward transmission.

            • Advising on deals in Shari'a compliant financial instruments

              • LR-1.3.45

                Advising on Shari'a compliant financial instruments means giving advice to an investor or potential investor (or a person in his capacity as an agent for an investor or potential investor) on the merits of buying, selling, subscribing for or underwriting a particular Shari'a compliant financial instrument or exercising any right conferred by such a financial instrument.

              • LR-1.3.46

                The following are examples of activities, which may be regarded as an activity as defined by Rule LR-1.3.45:

                (a) a person may offer to tell a client when shares reach a certain value on the basis that when the price reaches that value it would be a good time to buy or sell them;
                (b) recommendation on the size or timing of transactions; and
                (c) advice on the suitability of the financial instrument, or on the characteristics or performance of the financial instrument or credit facility concerned.

              • LR-1.3.47

                A person does not carry on an activity specified in Rule LR-1.3.45 by giving advice in any newspaper, journal, magazine, broadcast services or similar service in any medium if the principal purpose of the publication or service, taken as a whole, is neither:

                (a) that of giving advice of the kind mentioned in Rule LR-1.3.45; nor
                (b) that of leading or enabling persons to buy, sell, subscribe for or underwrite a financial instrument.

              • LR-1.3.48

                The following are examples of activities, when taken in isolation, are unlikely to be regarded as an activity as defined by Rule LR-1.3.45:

                (a) explaining the structure, or the terms and conditions of a financial instrument or credit facility;
                (b) valuing financial instruments for which there is no ready market;
                (c) circulating company news or announcements;
                (d) comparing the benefits and risks of one financial instrument to another; and
                (e) advising on the likely meaning of uncertain provisions in an agreement relating to, or the terms of, a financial instrument or on the effect of contractual terms and their commercial consequences or on terms that are commonly accepted in the market.

            • Providing money exchange / remittance services

              • LR-1.3.49

                Means providing exchange facilities between currencies, and the provision of wire transfer or other remittance services.

            • Issuing / administering means of payment

              • LR-1.3.50

                Means the selling or issuing of payment instruments, or the selling or issuing of stored value (e.g. credit cards, travellers' cheques, electronic purses).

        • LR-2 LR-2 Licensing Conditions

          • LR-2.1 LR-2.1 Condition 1: Legal Status

            • LR-2.1.1

              The legal status of an Islamic bank licensee must be:

              (i) a Bahraini joint stock company (BSC); or
              (ii) a branch resident in Bahrain of an Islamic bank incorporated under the laws of its territory of incorporation and authorized as a bank in that territory.

            • LR-2.1.2

              Where the Islamic bank licensee is a branch of an overseas bank, in deciding whether to grant a license, the BMA will pay close regard to its activities elsewhere and how these activities are regulated. If the Islamic bank licensee is not regulated elsewhere or in a jurisdiction not substantially compliant with Basel Core Principles or FATF standards, then an application for licensing can only be considered after exhaustive enquiries into the bank's shareholders, management structure and financial position.

          • LR-2.2 LR-2.2 Condition 2: Mind and Management

            • LR-2.2.1

              Islamic bank licensees with their Registered Office in the Kingdom of Bahrain must maintain their Head Office in the Kingdom. Overseas Islamic bank licensees must maintain a local management presence and premises in the Kingdom appropriate to the nature and scale of their activities.

            • LR-2.2.2

              In assessing the location of an Islamic bank licensee's Head Office, the BMA will take into account the residency of its Directors and senior management. The BMA requires the majority of key decision makers in executive management — including the Chief Executive — to be resident in Bahrain. In the case of overseas Islamic bank licensees, the BMA requires the branch of a foreign company to have a substantive presence, demonstrated by a level of staff and other resources sufficient to ensure adequate local scrutiny and control over business booked in the Bahrain branch, as well as the General Manager of the branch to be resident in Bahrain.

          • LR-2.3 LR-2.3 Condition 3: Controllers

            • LR-2.3.1

              Islamic bank licensees must satisfy the BMA that their controllers are suitable and pose no undue risks to the licensee. Islamic bank licensees must also satisfy the BMA that their group structures do not prevent the effective supervision of the Islamic bank licensee by the BMA and otherwise pose no undue risks to the licensee.

            • LR-2.3.2

              Chapter GR-5 contains the BMA's requirements and definitions regarding controllers.

            • LR-2.3.3

              In summary, controllers are persons who directly or indirectly are significant shareholders in an Islamic bank licensee, or who are otherwise able to exert significant influence on the Islamic bank licensee. The BMA seeks to ensure that controllers pose no significant risks to the licensee. In general terms, controllers are assessed in terms of their financial standing, their judicial and regulatory record, and standards of business and (where relevant) personal probity.

            • LR-2.3.4

              As regards group structures, the BMA seeks to ensure that these do not prevent adequate consolidated supervision being applied to financial entities within the group, and that other group entities do not pose any material financial, reputational or other risks to the licensee.

            • LR-2.3.5

              In all cases, when judging applications from existing groups, the BMA will have regard to the reputation and financial standing of the group as a whole. Where relevant, the BMA will also take into account the extent and quality of supervision applied to overseas members of the group and take into account any information provided by other supervisors in relation to any member of the group.

          • LR-2.4 LR-2.4 Condition 4: Board and Employees

            • LR-2.4.1

              Those nominated to carry out controlled functions must satisfy BMA's approved persons requirements.

            • LR-2.4.2

              The definition of controlled functions is contained in HC-2.1, whilst HC-2.2 sets out BMA's approved persons requirements.

            • LR-2.4.3

              The Islamic bank licensee's staff, taken together, must collectively provide a sufficient range of skills and experience to manage the affairs of the licensee in a sound and prudent manner. Islamic bank licensees must ensure their employees meet any training and competency requirements specified by the BMA.

          • LR-2.5 LR-2.5 Condition 5: Financial Resources

            • Capital Adequacy

              • LR-2.5.1

                Islamic bank licensees must maintain a level of financial resources, as agreed with the BMA, adequate for the level of business proposed. The level of financial resources held must at all times meet the minimum risk-based requirements contained in Module CA (Capital Adequacy), as specified for the category of banking license held.

              • LR-2.5.2

                Islamic bank licensees must maintain a minimum level of paid-up capital of BD 20,000,000 (or its equivalent in foreign currency, where legally permitted and agreed with BMA).

              • LR-2.5.3

                Persons seeking a license as an Islamic bank licensee must submit a 3-year business plan, with financial projections. Their proposed level of paid-up capital must be sufficient to cover expected regulatory capital requirements over that period, based on projected activities.

              • LR-2.5.4

                In practice, applicants seeking an Islamic bank license are likely to be required to hold significantly more capital than the minimum paid-up capital specified in Rule LR-2.5.2.

              • LR-2.5.5

                Overseas banking applicants are required to provide written confirmation from their head office that the head office will provide financial support to the branch sufficient to enable it to meet its obligations as and when they fall due. Overseas banking applicants must also demonstrate that the bank as a whole is adequately resourced for the amount of risks underwritten, and that it and its group meet capital adequacy standards applied by its home supervisor.

              • LR-2.5.6

                For Bahraini Islamic bank licensees, funds placed with the bank by way of call and/or unrestricted investment accounts (or similar) must not exceed 20 times their capital and reserves. For overseas Islamic wholesale bank licensees, endowment capital may be required.

              • LR-2.5.7

                Factors taken into account in setting endowment capital for branches includes the financial strength of the parent company, the quality of its risk management, and the nature and scale of the Bahrain operations of the branch.

            • Liquidity

              • LR-2.5.8

                Islamic bank licensees must maintain sufficient liquid assets to meet their obligations as they fall due in the normal course of their business. Islamic bank licensees must agree a liquidity management policy with the BMA.

              • LR-2.5.9

                The BMA would normally expect the mark-to-market value of assets that could be readily realized at short-notice, to exceed 25% of deposit liabilities at all times. Liquidity arrangements may vary, however, particularly for overseas conventional banks, as agreed with BMA and documented in the liquidity management policy.

            • Reserve Requirements

              • LR-2.5.10

                Islamic bank licensees must maintain a minimum daily cash reserve balance with the BMA, equivalent to 5% of its total non-bank Bahraini Dinar funds, whether placed by way of call or unrestricted investment accounts (or similar), as well as taken through the issuance of Bahraini Dinar denominated Islamic investment certificates.

          • LR-2.6 LR-2.6 Condition 6: Systems and Controls

            • LR-2.6.1

              Islamic bank licensees must maintain systems and controls that are, in the opinion of the BMA, adequate for the scale and complexity of their activities. These systems and controls must meet the minimum requirements contained in Modules HC and OM.

            • LR-2.6.2

              Islamic bank licensees must maintain systems and controls that are, in the opinion of the BMA, adequate to address the risks of financial crime occurring in the licensee. These systems and controls must meet the minimum requirements contained in Module FC, as specified for the category of license held.

            • LR-2.6.3

              Applicants will be required to demonstrate in their business plan (together with any supporting documentation) what risks their business would be subject to and how they would manage those risks. Applicants may be asked to provide an independent assessment of the appropriateness of their systems and controls to the BMA, as part of the license approval process.

          • LR-2.7 LR-2.7 Condition 7: External Auditors

            • LR-2.7.1

              Islamic bank licensees must appoint external auditors, subject to BMA's prior approval. The minimum requirements regarding auditors contained in Module AU (Auditors and Accounting Standards) must be met.

            • LR-2.7.2

              Applicants must submit details of their proposed external auditors to the BMA as part of their license application.

          • LR-2.8 LR-2.8 Condition 8: Other Requirements

            • Books and Records

              • LR-2.8.1

                Islamic bank licensees must maintain comprehensive books of accounts and other records, and satisfy the minimum record keeping requirements contained in Module GR. Books of accounts must comply with the Financial Accounting Standards issued by the accounting and Auditing Organisation for Islamic Financial Institutions (AAOIFI), or with International Financial Reporting Standards (IFRS) / International Accounting Standards (IAS), where no relevant AAOIFI standard exists. Audited accounts must be submitted to the BMA within 3 months of the licensee's financial year-end.

            • Provision of Information

              • LR-2.8.2

                Islamic bank licensees must act in an open and cooperative manner with the BMA. Islamic bank licensees must meet the regulatory reporting and public disclosure requirements contained in Modules BR and PD respectively.

            • General Conduct

              • LR-2.8.3

                Islamic bank licensees must conduct their activities in a professional and orderly manner, in keeping with good market practice. Islamic bank licensees must comply with the general standards of business conduct contained in Module PB, as well as the standards relating to treatment of customers contained in Modules BC and CM.

            • License fees

              • LR-2.8.4

                Islamic bank licensees must comply with any license fee requirements applied by the BMA.

              • LR-2.8.5

                The BMA's license fees are set out in Chapter GR-8.

            • Additional Conditions

              • LR-2.8.6

                Islamic bank licensees must comply with any other specific requirements or restrictions imposed by the BMA on the scope of their license.

              • LR-2.8.7

                Bank licensees are subject to the provisions of the BMA Law 1973. These include the right of the BMA to impose such terms and conditions, as it may deem necessary when issuing a license. Thus, when granting a license, the BMA specifies the regulated banking services that the licensee may undertake. Licensees must respect the scope of their license. LR-3.2 sets out the process for varying the scope of an authorisation, should a licensee wish to undertake new activities.

              • LR-2.8.8

                In addition, the BMA may impose additional restrictions or requirements, beyond those already specified in Volume 2, to address specific risks. For instance, a license may be granted subject to strict limitations on intra-group transactions.

              • LR-2.8.9

                Islamic retail bank licensees are subject to the deposit protection scheme of eligible deposits held with the Bahrain offices of the licensee, with respect to certain of their liabilities (see Chapter CP-2).

        • LR-3 LR-3 Information Requirements and Processes

          • LR-3.1 LR-3.1 Licensing

            • LR-3.1.1

              The application process for an Islamic bank license consists of two parts: Phase 1 and Phase 2. For Phase 1, applicants for a license must submit a duly completed Form 1 (Phase 1) (Application for a License), under cover of a letter signed by an authorized signatory of the applicant marked for the attention of the Director, Licensing and Policy Directorate. The application must be accompanied by the documents listed in Paragraph LR-3.1.5, unless otherwise directed by the BMA.

            • LR-3.1.2

              If, after submission of a duly completed Form 1 (Phase 1) and associated documents, an applicant is granted a conditional (in principle) approval for a license, the applicant must submit Form 1 (Phase 2), together with the documents referred to in Paragraph LR-3.1.10.

            • LR-3.1.3

              When referring to the applicant, reference is made to the proposed licensee seeking an Islamic bank license. The applicant may choose to have an authorized representative, acting on its behalf. In instances where the applicant uses an authorized representative, the application form should provide all details regarding the authorized representative and is to be signed by both the applicant and authorized representative.

            • LR-3.1.4

              Islamic bank licensees, who were licensed prior to the publication of the new LR Module of Volume 2, do not need to resubmit an application for a license. Their license category, and the scope of their authorization, will be confirmed in an exchange of letters, and by re-issuing their license certificate.

            • LR-3.1.5

              Unless otherwise directed by the BMA, the following documents must be provided as Part of Phase 1 in support of a license application:

              (a) a duly completed Form 2 (Application for Authorisation of Controller) for each controller of the proposed licensee;
              (b) a duly completed Form 3 (Application for Approved Person status), for each proposed Director of the proposed licensee;
              (c) a comprehensive business plan for the application, addressing the matters described in LR-3.1.6;
              (d) for overseas banks, a copy of the bank's current commercial registration or equivalent documentation;
              (e) where the applicant is a registered institution, a copy of the applicant's commercial registration;
              (f) where the applicant is a corporate body, a certified copy of a Board resolution of the applicant, confirming its decision to seek a BMA Islamic bank license;
              (g) in the case of applicants that are part of a regulated group, a letter of non-objection to the proposed license application from the applicant's home supervisor, together with confirmation that the group is in good regulatory standing and is in compliance with applicable supervisory requirements, including those relating to capital adequacy and solvency requirements;
              (h) in the case of overseas branch applicants, a letter of non-objection to the proposed license application from the applicant's home supervisor, together with confirmation that the applicant is in good regulatory standing and is in compliance with applicable supervisory requirements, including those relating to capital adequacy requirements;
              (i) in the case of branch applicants, copies of the audited financial statements of the applicant (head office) for the three years immediately prior to the date of application; and
              (j) in the case of other applicants, copies of the audited financial statements of the applicant's major shareholder and/or group (as directed by the BMA), for the three years immediately prior to the date of application.

            • LR-3.1.6

              The business plan submitted in support of an application should explain:

              (a) an outline of the history of the applicant and its shareholders;
              (b) the reasons for applying for a license, including the applicant's strategy and market objectives;
              (c) the proposed type of activities to be carried on by the applicant in/from the Kingdom of Bahrain;
              (d) the proposed Board and senior management of the applicant and the proposed organisational structure of the applicant;
              (e) an assessment of the risks that may be faced by the applicant, together with the proposed systems and controls framework to be put in place for addressing those risks and to be used for the main business functions; and
              (f) an opening balance sheet for the applicant, together with a three-year financial projection, with all assumptions clearly outlined, demonstrating that the applicant will be able to meet applicable capital adequacy and liquidity requirements.

            • LR-3.1.7

              The applicant's memorandum and articles of association must explicitly provide for it to undertake the activities proposed in the licensed application, and must preclude the applicant from undertaking other commercial activities, unless these arise out of its banking activities or are incidental to those.

            • LR-3.1.8

              In the case of a new bank's capital being financed by a private placement, the Private Placement Memorandum must also be submitted to BMA for its approval as part of the Phase 2 documentation.

            • LR-3.1.9

              The purpose of Rule LR-3.1.8 is to allow BMA to verify that the contents of the Private Placement Memorandum are consistent with other information supplied to BMA, notably in the business plan, and otherwise meets any applicable regulatory requirements with respect to PPM documents. The BMA's review of the PPM does not in any way constitute an approval or endorsement as to any claims it may contain as to the future value of the proposed bank.

            • LR-3.1.10

              As part of Phase 2 of the licensing application process, unless otherwise directed by the BMA, the following documents and information must be provided:

              (a) a duly completed Form 3 (Application for Approved Person status), for each individual, (other than for Directors, submitted as part of Phase 1) applying to undertake controlled functions in the applicant;
              (b) a draft copy of the applicant's memorandum and articles of association, addressing the matters described in LR-3.1.7;
              (c) a letter of guarantee from the applicant's major shareholder, confirming its willingness to support the proposed licensee in case of need; and
              (d) in the case of overseas branch applicants, a letter of guarantee from the applicant's head office, confirming responsibility for all of the liabilities of the proposed branch, together with evidence of the power to give such a guarantee.

            • LR-3.1.11

              All documentation provided to the BMA as part of an application for a license must be in either the Arabic or English languages. Any documentation in a language other than English or Arabic must be accompanied by a certified English or Arabic translation thereof.

            • LR-3.1.12

              Any material changes or proposed changes to the information provided to the BMA in support of an authorisation application that occurs prior to authorisation must be reported to the BMA.

            • LR-3.1.13

              Failure to inform BMA of the changes specified in LR-3.1.12 is likely to be viewed as a failure to provide full and open disclosure of information, and thus a failure to meet licensing condition LR-2.8.2.

            • LR-3.1.14

              As part of the Phase 1 review of application process, the BMA will provide a formal decision on a license application within 60 calendar days of all required documentation having been submitted in a form acceptable to the BMA. Once an "in principal" approval has been granted for Phase 1, the applicant must submit within 6 months of the "in principal" approval, all requirements for Phase 2 as outlined in Paragraph LR-3.1.10. The BMA will provide a final decision within 30 calendar days of all Phase 2 documentation having been submitted in a form acceptable to the BMA. Applicants are encouraged to approach the BMA to discuss their application at an early stage, so that any specific questions can be dealt with prior to the finalisation of the application.

            • LR-3.1.15

              Within 6 months of the license being issued, the new licensee must provide to the BMA:

              (a) a detailed action plan for establishing the operations and supporting infrastructure of the bank, such as the completion of written policies and procedures, and recruitment of remaining employees (having regard to the time limit set by Article 66 of the BMA Law 1973);
              (b) the registered office address and details of premises to be used to carry out the business of the proposed licensee;
              (c) the address in the Kingdom of Bahrain where full business records will be kept;
              (d) the licensee's contact details including telephone and fax number, e-mail address and website;
              (e) a description of the business continuity plan;
              (f) a description of the IT system that will be used, including details of how IT systems and other records will be backed up;
              (g) a copy of the auditor's acceptance to act as auditor for the applicant;
              (h) a copy of the Ministry of Industry & Commerce commercial registration certificate; and
              (i) other information as may be specified by the BMA.

            • LR-3.1.16

              Applicants issued new licenses by the BMA must start operations within 6 months of the license being issued, as per Article 66 of the BMA Law 1973.

            • LR-3.1.17

              Applicants who are refused a license have a right of appeal under the provisions contained in Article 68 of the BMA Law 1973.

          • LR-3.2 LR-3.2 Variations to a License

            • LR-3.2.1

              Islamic bank licensees must seek prior BMA approval before undertaking new regulated Islamic banking services.

            • LR-3.2.2

              Failure to secure BMA approval prior to undertaking a new regulated activity may lead to enforcement action being taken against the licensee concerned.

            • LR-3.2.3

              In addition to any other information requested by the BMA, and unless otherwise directed by the BMA, an Islamic bank licensee requesting BMA approval to undertake a new regulated Islamic banking service must provide the following information:

              (a) a summary of the rationale for undertaking the proposed new activities;
              (b) a description of how the new business will be managed and controlled;
              (c) an analysis of the financial impact of the new activities; and
              (d) a summary of the due diligence undertaken by the Board and management of the Islamic bank licensee on the proposed new activities.

          • LR-3.3 LR-3.3 Withdrawal of a License

            • Voluntary Surrender

              • LR-3.3.1

                All requests for the voluntary surrender of a license are subject to BMA approval. Such requests must be made in writing to the Executive Director of Banking Supervision, setting out in full the reasons for the request and how the voluntary surrender is to be carried out.

              • LR-3.3.2

                Islamic bank licensees must satisfy BMA that their customers' interests are to be safeguarded during and after the proposed voluntary surrender.

              • LR-3.3.3

                The BMA will only approve a voluntary surrender where it has no outstanding regulatory concerns and any relevant customers' interests would not be prejudiced. A voluntary surrender will not be accepted where it is aimed at pre-empting supervisory actions by the BMA. Also, a voluntary surrender will only take effect once the licensee, in the opinion of the BMA, has discharged all its regulatory responsibilities to customers.

            • Cancellation

              • LR-3.3.4

                Cancellation of a license requires BMA to issue a formal notice of cancellation to the person concerned. The notice of cancellation must describe the BMA's rationale for the proposed cancellation.

              • LR-3.3.5

                Failure to meet the relevant conditions contained in Chapter LR-2 can lead to cancellation of a license. The BMA generally views cancellation of a license as appropriate only in the most serious of circumstances, and generally tries to address supervisory concerns through other means beforehand. Further guidance is contained in Module EN (Enforcement), regarding BMA's approach to enforcement and on the process for issuing a notice of cancellation and the recipient's right to appeal the notice.

              • LR-3.3.6

                Normally, where cancellation of a license has been confirmed by BMA, BMA will only effect the cancellation once a licensee has discharged all its regulatory responsibilities to customers. Until such time, BMA will retain all its regulatory powers with regards to the licensee, and will direct the licensee such that no new regulated banking activity may be undertaken whilst the licensee discharges its obligations to customers.

      • PB PB Principles of Business

        • PB-A PB-A Introduction

          • PB-A.1 PB-A.1 Purpose

            • PB-A.1.1

              The principles are a general statement of the fundamental obligations of all banks.

            • PB-A.1.2

              This module requires banks to establish an adequate system and procedures to ensure:

              (a) compliance with the guidance set forth in this module, and
              (b) that the personnel responsible for maintaining such systems and controls are adequately qualified and competent in discharging their duties.

            • PB-A.1.3

              This module provides support to all regulations provided in this Rulebook.

          • PB-A.2 PB-A.2 Module history

            • PB-A.2.1

              This module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

            • PB-A.2.2

              A list of most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
                   
                   
                   
                   
                   

        • PB-B PB-B Non-compliance with the principles

          • PB-B.1 PB-B.1 Non-compliance

            • PB-B.1.1

              A breach of the principles outlined in this module may call into question whether the Board and management of a licensee with a BMA license are still fit and proper, and whether the licensee may continue to be licensed.

            • PB-B.1.2

              Breaching a principle makes a licensee liable to disciplinary sanctions. In determining whether a principle has been breached it is necessary to look to the standard of conduct required by the principle in question. The BMA will determine, after collating all the relevant information required (through its regulatory reporting authority), whether a licensee is in breach of these principles.

        • PB-1 PB-1 Principles

          • PB-1.1 PB-1.1 Integrity

            • PB-1.1.1

              All relevant persons should be straightforward and honest in their services and conduct. Integrity is not just limited to honesty but also includes fair dealing and full disclosure of all relevant information. Banks' management must safeguard not only the interests of shareholders of the bank, but also those of the Profit Sharing Investment Account (PSIA) holders.

          • PB-1.2 PB-1.2 Objectivity

            • PB-1.2.1

              All relevant persons should be fair and should not allow prejudice, bias, conflict of interest or influence to override their objectivity. Again the bank's management must bear in mind the interests of shareholders and PSIA holders.

          • PB-1.3 PB-1.3 Competence, skill care and due diligence

            • PB-1.3.1

              All relevant persons should perform services with competence, due care and diligence and have a continuing duty to maintain professional knowledge and skill at a level required to ensure that a client or employer receives the advantage of competent professional services based on up-to-date developments in practice, legislation and techniques.

          • PB-1.4 PB-1.4 Confidentiality

            • PB-1.4.1

              All relevant persons should treat client information with the strictest of confidentiality unless disclosure is warranted under specific authority or there is a legal or professional duty to disclose.

          • PB-1.5 PB-1.5 Management and control

            • PB-1.5.1

              The Board of Directors and Shari'a Board (where applicable) and management must take reasonable care to organise and control the affairs of the licensee responsibly and effectively with adequate risk management systems. The organisational structure should be clearly delineated and reporting lines completely transparent to promote full disclosure.

          • PB-1.6 PB-1.6 Market conduct

            • PB-1.6.1

              All relevant persons should observe proper standards of market conduct. In particular, the Agency requires that banks comply with all AAOIFI issued accounting standards as well as the Shari'a pronouncements issued by the Shari'a Board of AAOIFI.

          • PB-1.7 PB-1.7 Communications with client

            • PB-1.7.1

              All relevant persons must pay due regard to the information needs of their clients and communicate information to them in a manner which is clear, fair and not misleading.

          • PB-1.8 PB-1.8 Relationship of trust

            • PB-1.8.1

              All relevant persons must take reasonable care to ensure the suitability of their advice and discretionary decisions for any customer who is entitled to rely upon their judgment.

      • HC HC High Level Controls

        • HC-A HC-A Introduction

          • HC-A.1 HC-A.1 Purpose

            • HC-A.1.1

              This Module presents requirements that have to be met by Islamic bank licensees with respect to:

              (a) the role and composition of their Boards and Board Committees; and
              (b) related high-level controls and policies.

            • HC-A.1.2

              In addition, this Module contains requirements for the notification and pre-approval of individuals, undertaking certain designated functions with respect to Islamic bank licensees. These functions (called "controlled functions"), include Directors and members of senior management. The controlled functions regime supplements the BMA's corporate governance requirements by ensuring that key persons involved in the running of Islamic bank licensees are fit and proper. Those approved by the BMA to undertake controlled functions are called approved persons.

            • HC-A.1.3

              Finally, this Module contains certain notification and approval requirements regarding the use of Special Purpose Vehicles ("SPVs"; see Section HC-1.5).

            • HC-A.1.4

              This Module supplements various provisions relating to corporate governance contained in Legislative Decree No. 21 of 2001, with respect to promulgating the Commercial Companies Law ("Commercial Companies Law 2001"). In case of conflict, the Commercial Companies Law shall prevail. The Module also supplements (for companies listed on the Bahrain Stock Exchange), Stock Exchange regulations that are relevant to corporate governance and high-level controls. Compliance with this Module does not guarantee compliance with either the Commercial Companies Law 2001 or the BSE regulations.

          • HC-A.2 HC-A.2 Key requirements

            • Corporate governance

              • HC-A.2.1

                The Chairman of the Board must be non-executive and independent. The role of Chairman and Chief Executive may not be exercised by the same person. (See Rule HC-1.3.9.)

              • HC-A.2.2

                The Board must approve a code of conduct for itself, senior management and employees, and define the responsibilities of itself and senior management. This should include procedures for dealing with conflicts of interest, and a prohibition on insider trading. (See Paragraphs HC-1.2.9 to HC-1.2.13.)

              • HC-A.2.3

                The Board must meet at least four times per year (see Rule HC-1.3.3).

              • HC-A.2.4

                Boards must have an adequate number of members that are "independent" and "non-executive" to serve the interests of minority shareholders and other stakeholders. (See Paragraphs HC-1.3.5 and HC-1.3.6.)

              • HC-A.2.5

                The Board should consider the setting up of committees to assist it in fulfilling its responsibilities. The setting up of an Audit Committee and a Shari'a Committee is mandatory. (See Paragraphs HC-1.3.10 to HC-1.3.13.)

              • HC-A.2.6

                All licensees must submit their organisational structure as approved by the Board of Directors. All licensees must establish independent functions for Internal Audit and Risk Management.

              • HC-A.2.7

                Islamic bank licensees are required to notify the BMA, in writing, of all major changes (regardless of type and/or effect) proposed to the strategy and/or corporate plan of the bank prior to implementation, as well as of any Special Purpose Vehicle they intend to establish as a subsidiary, or with respect to which they intend to act as sponsor or manager (see Section HC-1.5).

            • Approved Persons

              • HC-A.2.8

                Islamic bank licensees are required to secure prior BMA approval for those persons wishing to undertake a controlled function. Such persons are assessed against BMA's "fit and proper" requirements. Islamic bank licensees must also notify the BMA of any changes in their approved persons. (See Chapter HC-2)

            • Compliance officer/manager

              • HC-A.2.9

                Islamic bank licensees must appoint a senior member of staff with responsibility for compliance. The Compliance Officer is a controlled function. (See Chapter HC-3.1.)

          • HC-A.3 HC-A.3 Module history

            • Evolution of the Module

              • HC-A.3.1

                This Module was first issued in January 2005, as part of the initial release of Volume 2 of the BMA Rulebook. It was dated January 2005. All subsequent changes to this Module are shown with the month and year in which the change was made, at the base of the relevant page and in the Table of Contents. Chapter UG-3 provides further details on Rulebook maintenance and version control.

              • HC-A.3.2

                A list of recent changes made to this Module is shown below:

                Module Ref. Change Date Description of Changes
                HC-1.5 01/07/05 Transparency requirements formalised
                HC-1.6 01/07/05 Notification concerning senior positions/controllers
                HC-1.1, HC-1.2 & HC-1.4 01/10/05 High level controls
                HC-1.5 01/10/05 New SPV requirements
                HC-3.1HC-3.2 01/10/05 Revised compliance function requirements
                HC-1.5.3, HC-1.5.5, & HC-4.1 01/01/06 Revised notification requirements for SPVs and dealing staff
                HC-2, HC-3 and HC-4 01/07/06 Requirements relating to controllers moved to Module GR; Remaining requirements relating to 'fit and proper' re-drafted to ensure consistent terminology and procedures with other Rulebook Volumes (without changing the substance of the previous 'fit and proper' requirements); Requirements relating to dealers incorporated into the 'fit and proper' requirements.

            • Superseded Requirements

              • HC-A.3.3

                Prior to the development of this Rulebook, the BMA issued various circulars covering different aspects of corporate governance. These circulars were consolidated into the first version of this Module as shown below:

                Circular Ref. Date of Issue Module Ref.
                (July 2004 version)
                Circular Subject
                BC/23/99 8 Nov 1999 HC-1 'Enhancing Corporate Governance in Banking Organisations'
                BC/904/95 24 Jul 1995 HC-1.6 Notification to, and approval from the Agency for certain matters
                ODG/329/03 10 Sep 2003 HC-1.6 Corporate Governance Reporting
                BC/11/98 27 Jul 1998 HC-2 Terms and Definitions Applying to the Management of Banks and Financial Institutions
                BC/8/00 24 May 2000 HC-2 Controllers of, and holdings and transfers of significant ownership or controlling interests in, Agency licensees
                BC/13/99 15 Jun 1999 HC-3 Compliance, Risk Management and Internal Controls
                BMA/1287/94 6 Nov 1994 HC-4 Foreign Exchange, Securities and Other Dealers

              • HC-A.3.4

                The contents in this Module are effective from the dates depicted in HC-A.3.2 and HC-A.3.3, from which the requirements are compiled. Section HC-1.3 is effective from January 2007.

        • HC-B HC-B General guidance and best practice

          • HC-B.1 HC-B.1 Guidance provided by other international bodies

            • Basel Committee: Enhancing Corporate Governance in Banking Organisations and High Level Controls for Banks

              • HC-B.1.1

                These papers (see www.bis.org/publ/bcbs56.pdf) issued in September 1998 and September 1999 provide guidance on corporate governance and high-level controls in banks. These papers form part of an ongoing effort by the Committee to strengthen procedures for risk management and disclosure in banks.

              • HC-B.1.2

                The papers draw on supervisory experience with corporate governance problems at banking organisations and suggest the types of practices that could help to avoid such problems. They identify a number of practices as critical elements of any financial institution's corporate governance process.

              • HC-B.1.3

                The Agency draws banks' attention to the Basel papers as benchmarks of best practice for corporate governance standards and high-level controls to be followed by banks operating in the Kingdom of Bahrain.

          • HC-B.2 HC-B.2 Enforceability

            • HC-B.2.1

              The requirements of Chapter 1, Sections HC-1.1HC-1.4 are binding requirements which banks and their Boards should follow on an "apply or explain" basis. If a Board or a bank elects not to follow these requirements, they must explain why to the Agency and document the reasons for not applying the concerned requirements in the Minutes of the Board. The remaining chapters are binding requirements except where shown as guidance.

            • HC-B.2.2

              This Module and Chapter 1 in particular supplements various provisions relating to Corporate Governance contained in Legislative Decree No. 21 of 2001 with respect to promulgating the Commercial Companies Law. In any cases of potential conflict, the Commercial Companies Law shall prevail. Compliance with this Module does not guarantee compliance with the Commercial Companies Law.

        • HC-1 HC-1 Corporate governance

          • HC-1.1 HC-1.1 Scope

            • HC-1.1.1

              The contents of this Chapter are applicable to locally incorporated banks. Bahrain branches of foreign banks must satisfy the Agency that equivalent arrangements are in place at the parent level and that these arrangements provide for effective high-level controls over activities conducted under the Bahrain license.

            • HC-1.1.2

              This Chapter covers the high-level controls aspects of corporate governance of banks, and therefore focuses on the functions of the constituent parts of high-level controls, starting with the respective roles and responsibilities of the Board and senior management.

            • HC-1.1.3

              This Chapter therefore does not cover matters of corporate governance relating to the Commercial Companies Law (e.g. General Meetings, the role of shareholders and other administrative matters) or Listing Requirements.

            • HC-1.1.4

              The BMA has historically pursued a "best practice" guidance approach to high-level controls and corporate governance, rather than a prescriptive rules-based approach. The Agency has chosen to notify licensees of international best practice standards, and allowed banks to interpret these, according to the scope of operations of the concerned bank. This Chapter blends a best practice-based approach with minimum requirements.

            • HC-1.1.5

              Banks must satisfy the BMA that financial services activities conducted in subsidiaries and other group members including foreign branches are subject to the same or equivalent arrangements for ensuring effective high-level controls over their activities. In instances where local jurisdictional requirements are more stringent than those applicable in this Module, the local requirements are to be applied.

            • HC-1.1.6

              Where a bank is unable to satisfy the BMA that its subsidiaries and other group members or foreign branches are subject to the same or equivalent arrangements, the BMA will assess the potential impact of risks — both financial and reputational — to the bank arising from inadequate high-level controls in the rest of the group of which it is a member. In such instances, the BMA may impose restrictions on dealings between the bank and other group members. Where weaknesses in controls are assessed by the BMA to pose a major threat to the stability of the bank, then its authorisation may be called into question.

          • HC-1.2 HC-1.2 The Board of Directors — Its Functions and Responsibilities

            • Strategy

              • HC-1.2.1

                In most banks, shareholders, creditors, employees, depositors and investment account holders ("stakeholders") are unable to closely monitor management, its strategies and the bank's performance due to a lack of information and resources. A key responsibility of the Board is to fill the gap between uninformed stakeholders to whom it owes a duty of care, and the more fully informed executive management by monitoring management closely on behalf of stakeholders.

              • HC-1.2.2

                The Board is ultimately accountable and responsible for the affairs and performance of the bank. The Board must establish the objectives of the bank and develop the strategies that direct the ongoing activities of the bank to achieve these objectives. The strategies should be communicated throughout the bank, and be disclosed publicly (e.g. via the website or in the annual report in an abbreviated form as applicable). In its strategy document, the Board must demonstrate that it is able to proactively identify and understand the significant risks that the bank faces in achieving its business objectives through its business strategies and plans.

              • HC-1.2.3

                The precise functions reserved for the Board, and those delegated to management and committees will vary, dependent upon the business of the institution, its size and ownership structure. However, at a minimum, the Board must establish and maintain a statement of its responsibilities for:

                (a) The adoption and annual review of strategy;
                (b) The adoption and review of management structure and responsibilities;
                (c) The adoption and review of the systems and controls framework; and
                (d) Monitoring the implementation of strategy by management.

              • HC-1.2.4

                In its strategy review process, the Board should:

                (a) Review the bank's business plans and the inherent level of risk in these plans;
                (b) Assess the adequacy of capital to support the business risks of the bank.
                (c) Set performance objectives;
                (d) Review the performance of executive management; and
                (e) Oversee major capital expenditures, divestitures and acquisitions.

              • HC-1.2.5

                The BMA expects the Board to have effective policies and processes in place for:

                (a) Ensuring a formal and transparent Board nomination process;
                (b) Appointing senior managers, and ensuring that they have the necessary integrity, technical and managerial competence, and experience;
                (c) Overseeing succession planning and replacing key executives when necessary, and ensuring appropriate resources are available, and minimising reliance on key individuals;
                (d) Reviewing the remuneration and incentive packages of the executive management and members of the Board of Directors and ensuring that such packages are consistent with the corporate values and strategy of the bank;
                (e) Effectively monitoring and making formal (annual) evaluations of senior management's performance in implementing agreed strategy and business plans;
                (f) Approving budgets and reviewing performance against those budgets and key performance indicators; and
                (g) The management of the bank's compliance risk.

            • Risk Recognition and Assessment

              • HC-1.2.6

                The Board is responsible for ensuring that the systems and controls framework, including the Board structure and organisational structure of the bank is appropriate for the bank's business and associated risks (see HC-1.2.3 (c)). The Board must ensure that collectively it has sufficient expertise to identify, understand and measure the significant risks to which the bank is exposed in its business activities.

                In assessing the systems and controls framework, the BMA expects the Board to demonstrate that the bank's operations, individually and collectively:

                (a) Are measured, monitored and controlled by appropriate, effective and prudent risk management systems commensurate with the scope of the bank's activities. The Board should ensure that senior management have put in place appropriate systems of control for the business of the bank and the information needs of the Board; in particular, there should be appropriate systems and functions for identifying as well as for monitoring risk, the financial position of the bank, and compliance with applicable laws, regulations and best practice standards. The systems should produce information on a timely basis; and
                (b) Are supported by an appropriate control environment. The compliance, risk management and financial reporting functions must be adequately resourced, independent of business lines and must be run by individuals not involved with the day-to-day running of the various business areas. The Board must additionally ensure that management develops, implements and oversees the effectiveness of comprehensive know your customer standards, as well as ongoing monitoring of accounts and transactions, in keeping with the requirements of relevant law, regulations and best practice (with particular regard to anti-money laundering measures). The control environment should maintain necessary client confidentiality and ensure that the privacy of the bank is not violated, and ensure that clients rights and assets are properly safeguarded.

              • HC-1.2.7

                In its review of the systems and controls framework, the Board should:

                (a) Effectively make use of the work of internal and external auditors. The Board should ensure the integrity of the bank's accounting and financial reporting systems through regular independent review (by internal and external audit). Audit findings should be used as an independent check on the information received from management about the bank's operations and performance and the effectiveness of internal controls; and
                (b) Identify any significant issues related to the bank's adopted governance framework, processes and practices and ensure that appropriate and timely action is taken to address identified adverse deviations from the requirements of this Module.

                The determinations under HC-1.2.6 and this paragraph might be made through the use of self-assessments, stress/scenario tests, and/or independent judgments made by external advisors. The Board may appoint supporting committees, and engage senior management to assist it in the oversight of risk management, but the Board may not delegate its ultimate responsibility to ensure that an adequate, effective, comprehensive and transparent corporate governance process is in place.

            • Corporate Ethics, Conflicts of Interest and Code of Conduct

              • HC-1.2.8

                Banks are subject to a wide variety of laws, regulations and codes of best practice that directly affect the conduct of business. Such laws involve the Bahraini Stock Exchange Law, the Labour Law, the Commercial Companies Law, occupational health and safety, even environment and pollution laws, as well as codes of conduct and regulations of the Agency. The Board sets the "tone at the top" of a bank, and has a responsibility to oversee compliance with these various requirements. The Board should ensure that the staff conduct their affairs with a high degree of integrity, taking note of applicable laws, codes and regulations.

              • HC-1.2.9

                The Board should establish corporate standards for itself, senior management, and employees. This requirement should be met by way of a documented and published code of conduct or similar document. These values should be communicated throughout the bank, so that the Board and senior management and staff understand the importance of conducting business based on good corporate governance values and understand their accountabilities to the various stakeholders of the licensee. Banks' Boards, senior management and staff must be informed of and be required to fulfil their fiduciary responsibilities to the bank's stakeholders.

              • HC-1.2.10

                An internal code of conduct is separate from the business strategy of a bank. A code of conduct should outline the practices that Directors, senior management and staff should follow in performing their duties. Banks may wish to use procedures and policies to complement their codes of conduct. The suggested contents of a code of conduct are covered below:

                (a) Commitment by the Board and management to the code. The code of conduct should be linked to the objectives of the bank, and its responsibilities and undertakings to customers, shareholders, staff and the wider community (see HC-1.2.8 and HC-1.2.9). The code should give examples or expectations of honesty, integrity, leadership and professionalism;
                (b) Commitment to the law and best practice standards. This commitment would include commitments to following accounting standards, industry best practice (such as ensuring that information to clients is clear, fair, and not misleading), transparency, and rules concerning potential conflicts of interest (see HC-1.2.11);
                (c) Employment practices. This would include rules concerning health and safety of employees, training, policies on the acceptance and giving of business courtesies, prohibition on the offering and acceptance of bribes, and potential misuse of company assets;
                (d) How the company deals with disputes and complaints from clients and monitors compliance with the code; and
                (e) Confidentiality. Disclosure of client or bank information should be prohibited, except where disclosure is required by law (see HC-1.2.6 (b)).

              • HC-1.2.11

                The Board must establish and disseminate to its members and management, policies and procedures for the identification, reporting, disclosure, prevention, or strict limitation of potential conflicts of interest. It is senior management's responsibility to implement these policies. Rules concerning connected party transactions and potential conflicts of interest may be dealt with in the Code of Conduct (see HC-1.2.9). In particular, the Agency requires that any decisions to enter into transactions, under which Board members or any member of management would have conflicts of interest that are material, should be formally and unanimously approved by the full Board. Best practice would dictate that a Board member or member of senior management should:

                (a) Not enter into competition with the bank;
                (b) Not demand or accept substantial gifts from the bank for himself or his associates;
                (c) Not misuse the banks' assets;
                (d) Not use company privileged information or take advantage of business opportunities to which the company is entitled for himself or his associates;
                (e) Report to the Board any (potential) conflict of interest in their activities with, and commitments to other organisations. In any case, all Board members and members of senior management must declare in writing all of their other interests in other enterprises or activities (whether as a shareholder of above 5% of the voting capital of a company, a manager, or other form of significant participation) to the Board (or the Nominations or Audit Committees) on an annual basis; and
                (f) Absent themselves from any discussions or decision-making that involves a subject where they are incapable of providing objective advice, or which involves a subject or (proposed) transaction where a conflict of interest exists.

              • HC-1.2.12

                The Agency expects that the Board and its members individually and collectively:

                (a) Act with honesty, integrity and in good faith, with due diligence and care, with a view to the best interest of the bank and its shareholders and other stakeholders (see paragraphs HC-1.2.8 to HC-1.2.11);
                (b) Act within the scope of their responsibilities (which should be clearly defined — see HC-1.3.7 and HC-1.3.8 below) and not participate in the day-to-day management of the bank;
                (c) Have a proper understanding of, and competence to deal with the affairs and products of the bank and devote sufficient time to their responsibilities;
                (d) To independently assess and question the policies, processes and procedures of the bank, with the intent to identify and initiate management action on issues requiring improvement. (i.e. to act as checks and balances on management).

              • HC-1.2.13

                All Directors whether non-executive or executive should exercise independence in their decision-making. To facilitate independence, the Board should agree procedures whereby the Board or its individual members (or committees) may take independent professional advice at the bank's expense.

          • HC-1.3 HC-1.3 Board Composition and the Role of Committees

            • Board Composition & Frequency of Meetings

              • HC-1.3.1

                To fulfil its responsibility for the review of the systems and controls framework (HC-1.2.3 (c)), the Board must periodically assess its composition and size and, where appropriate, reconstitute itself and its committees by selecting new Directors to replace long-standing members or those members whose contribution to the bank or its committees (such as the audit committee) is not adequate.

              • HC-1.3.2

                No Board member may have more than one directorship of a Full Commercial Bank and an Offshore Banking Unit or Investment Bank. This would mean an effective cap of a maximum of two directorships of financial institutions inside Bahrain. Two directorships of licensees within the same category (e.g. "OBU") would not be permitted. Banks may approach the Agency for exemption from this limit where the directorships concern banks or financial institutions within the same group.

              • HC-1.3.3

                The Board must meet sufficiently often to enable it to discharge its responsibilities effectively, taking into account the bank's scale and complexity. The full Board should meet preferably no less than four times per year. The Agency recommends that meetings should take place once every quarter to address the Board's responsibilities for management oversight and performance monitoring.

              • HC-1.3.4

                Board rules should require members to step down if they are not actively participating in Board meetings.

            • Independent and Non-Executive Directors

              • HC-1.3.5

                Where there is the potential for conflict of interest, or there is a need for impartiality, the Board must assign a sufficient number of independent non-executive Board members capable of exercising independent judgment. The Board should outline its criteria and materiality thresholds in the annual report for the definition of "independence". The Directors should be identified in the annual report as executive, non-executive, and independent non-executive, as follows:

                (a) Executive Director (or "Managing Director" under the Commercial Companies Law "CCL") — A person who is involved in the day-to-day management and/or is in full-time employment of the bank and/or any of its affiliates or subsidiaries or parent companies. An executive Director may not occupy the post of "Chairman";
                (b) Non-Executive Director — A person not involved in the day-to-day management and/or is not a full-time salaried employee of the bank and/or any of its affiliates, or subsidiaries or parent companies; and
                (c) Independent Non-Executive Director — A non-executive Director (as defined above), who also:
                •  Is not a "controller" of the bank (see Section HC-2.1).
                •  Is not an Associate (see paragraph HC-2.1.4(g)) of a Director or a member of senior management of the bank.
                •  Is not a professional advisor to the bank or group (A partner or member of senior management of an accountancy or law firm that provides services to the bank would not be perceived by the Agency as an independent non-executive Director).
                •  Is not a large depositor with, or large borrower from the bank (i.e. whose deposits or credit facilities exceed 10% of the capital base of the bank).
                •  Has no significant contractual, or business relationship with the bank or group which could be seen to materially interfere with the person's capacity to act in an independent manner.

              • HC-1.3.6

                Independent non-executive Directors should be permitted to meet periodically (for example at separate meetings from the main Board) without executive management present.

            • Checks and Balances

              • HC-1.3.7

                To ensure a clear segregation of duties, the Board should clearly define, document and enforce its own responsibilities, including those of its Chairman, as well as the delegated authorities, responsibilities and accountabilities of the Board and management committees, the bank's Chief Executive and senior management to the stakeholders of the bank.

              • HC-1.3.8

                In particular, the Board should issue formal letters of appointment both to senior management and Board members, outlining their specific responsibilities and accountabilities. Wherever possible, these documents or a summary of responsibilities should be disclosed publicly, for example in the annual report. Letters of appointment facilitate better understanding of the respective accountabilities of the Board and management.

            • Responsibilities of the Chairman

              • HC-1.3.9

                The Chairman is responsible for the leadership of the Board, and for the efficient functioning of the Board. The Chairman is responsible for ensuring that Board members are adequately briefed in sufficient time for issues arising at Board meetings; therefore it is vital that the Chairman commit sufficient time to perform his role effectively, taking into account the points below:

                (a) First, the Chairman of the Board preferably should be non-executive and independent (see HC-1.3.6 for the definitions of "non-executive" and "independent");
                (b) Also, the role of Chairman and Chief Executive may not be exercised by the same person; and
                (c) Furthermore, there needs to be a clear division of responsibility between these two positions (see also HC-1.3.8 in this regard).

            • The benefits and functions of committees

              • HC-1.3.10

                In order to perform its duties more efficiently, the Board may set up committees where it feels appropriate with specific responsibilities, which must be documented. Where committees are set up, they should keep full minutes of their activities and meet regularly to fulfil their mandates. In particular, there are three areas where there is a need for checks and balances within the Board itself:

                (a) The nomination of Directors;
                (b) The remuneration of Directors; and
                (c) The audit of the bank's financial performance.

                In these areas, executive Directors have clear potential conflicts of interest. Nomination is all about the continuation of their own jobs and the jobs of their colleagues and potential new colleagues. Remuneration is all about the rewards that executive Directors and/or senior management receive for their services to the bank. Audit concerns the probity of the financial and non-financial reporting of the performance of the company by the very same persons who are responsible for its performance.

                For larger banks that deal with the general public, committees can be a more efficient mechanism to assist the main Board in its monitoring and control of the activities of the bank. The establishment of committees should not mean that the role of the Board is diminished, or that the Board becomes fragmented. Each Committee must have a clear written mandate outlining its purpose, objectives and responsibilities, including composition, frequency of meetings and reporting relationships.

            • Audit Committee

              • HC-1.3.11

                The Agency requires all banks to establish an Audit Committee. The committee members must have sufficient technical expertise to enable the committee to perform its functions effectively. Preferably, there should be at least one qualified and appropriately experienced accountant in the committee. All members of the committee must be financially literate. The CEO may not be a member of this committee.

              • HC-1.3.12

                Responsibilities of the Audit Committee are as follows:

                (a) To review the integrity of the bank's financial reporting (particularly with reference to information passed to the Board — see HC-1.2.6 (a). This review should include the choice of accounting policies. The information needs of the Board to perform its monitoring responsibilities must be defined in writing, and regularly monitored by the Audit Committee;

                To oversee the selection and compensation of the external auditor for appointment and approval at the shareholders' meeting. The audit committee should oversee relations with the external auditors, including ensuring the external auditor's independence (in particular, making sure that the external audit firm and its partners have no other financial or business relationship without the Board's knowledge), the terms and conditions of the auditor's appointment and remuneration arrangements. The committee should monitor rotation arrangements for audit engagement partners. The audit committee should monitor the performance of the external auditor and the non-audit services provided by the external auditor. The committee should meet with the external auditor at least twice per year, and at least once per year in the absence of any members of executive management;
                (b) To regularly review the activities and performance of the internal audit function;
                (c) To review whether the bank complies with all relevant laws, regulations, codes and business practices, and ensure that the bank communicates with shareholders and relevant stakeholders (internal and external) openly and promptly, and with substance of compliance prevailing over form; and
                (d) To review and supervise the implementation of, enforcement of and adherence to the bank's code of conduct.

              • HC-1.3.13

                Below the Audit Committee, the bank must set up an internal audit function, which reports directly to the Audit Committee (with a parallel reporting line to senior management for day-to-day matters as appropriate).

            • Shari'a Supervision Committee

              • HC-1.3.14

                The Agency requires all banks to establish an independent Shari'a Supervision Committee complying with AAOIFI's governance standards for Islamic Financial Institutions No. 1 and No. 2.

              • HC-1.3.15

                All banks must comply with all AAOIFI issued accounting standards as well as the Shari'a pronouncement issued by the Shari'a Board of AAOIFI. The bank must have a separate function of Shari'a review to verify compliance with the above. This internal Shari'a review must be carried out in accordance with AAOIFI's governance standard No. 3. The Shari'a review function may be located in the Internal Audit function of the bank.

          • HC-1.4 HC-1.4 Transparency of Structure and Strategy

            • Board's Responsibility for Disclosure

              • HC-1.4.1

                The Board should oversee the process of disclosure and communications with internal and external stakeholders. The Board should ensure that disclosures made by the bank are fair, transparent, comprehensive and timely and reflect the character of the bank and the nature, complexity and risks inherent in the bank's business activities. Disclosure policies must be reviewed for compliance with the Agency's disclosure requirements (see Rulebook Chapter PD-1).

              • HC-1.4.2

                To promote sound corporate governance, the bank must submit its organizational structure approved by the Board of Directors, which notes the designations and responsibilities of its key management personnel, highlighting their qualifications and relevant industry experience. The organizational structure should be clearly delineated and reporting lines completely transparent to promote full disclosure. It is the General Manager's responsibility to ensure that this occurs.

              • HC-1.4.3

                The bank must submit a statement of its strategy and objectives to the Agency at the time of licensing. This statement should cover a minimum period of three years. The Agency may request a formal review by the Board of the bank's statement from time to time.

          • HC-1.5 HC-1.5 Notification, reporting, and approval requirements for changes to activities, personnel and ownership, strategy, board meetings and special purpose vehicles ("SPVs")

            • HC-1.5.1

              Banks must notify the Agency in writing of all major proposed changes to the strategy and/or corporate plan of the bank prior to implementation.

            • HC-1.5.2

              Banks must notify the Agency in writing of any proposed changes to senior positions or ownership changes mentioned in sections HC-2.1, HC-3.2 and HC-4.1 (whether in terms of structure or identity of personnel) prior to the change. The communication should include the reason for the departure of the personnel and the Curriculum Vitae of any new persons taking up the relevant positions in the bank. See also section BR-5.1 for notification requirements concerning contact details of senior staff.

            • HC-1.5.3

              All locally incorporated banks, in addition to the requirements in paragraphs HC-1.5.1 and HC-1.5.2, should obtain the Agency's prior specific written approval before establishing any subsidiaries (including SPVs where the bank exercises a majority shareholding or has majority voting control by virtue of direct ownership or by proxy/nominee arrangements), branches and/or representative offices, either inside or outside of Bahrain. In order to avoid any delays and/or disruption in implementation of banks' plans in this context, the Agency should be approached as soon as possible, even at a very preliminary stage.

            • HC-1.5.4

              All locally incorporated banks are required to submit, on an annual basis, as an attachment to the year-end quarterly PIR, a report recording the meetings during the year by their Board of Directors. For a sample report, refer to Appendix BR-10.

            • HC-1.5.5

              All locally incorporated banks must notify the Agency if they intend to act as sponsor or manager of a special purpose vehicle ("SPV"), or if they intend to participate in the creation of an SPV, or if they intend to acquire shares in an SPV. All locally incorporated banks must notify the Agency if they are appointed as nominee shareholders of SPVs or hold votes by proxy arrangement in SPVs on behalf of other investors. In all cases listed above, the concerned bank must notify the Agency quarterly of any new commitments to, or engagements in business arrangements with SPVs. These reporting and notification arrangements apply in addition to arrangements under HC-1.5.3 where the SPV is a subsidiary.

            • HC-1.5.6

              The Agency requires any locally incorporated bank associated with an SPV to give the background to the following points in any notification under HC-1.5.5 above:

              (a) the purpose of the SPV;
              (b) the nature of the relationship between the bank and the SPV (i.e. sponsor, manager, investor, controller etc.);
              (c) the external auditor's proposed consolidation/accounting treatment of the SPV;
              (d) the availability of financial and other information relevant to the SPV and access to its business premises and records;
              (e) whether the bank is providing any guarantees, warranties or financial/liquidity support of any kind to the SPV.

            • HC-1.5.7

              Where the SPV is consolidated into the accounts of a locally incorporated bank, the bank must provide separate accounting information on the SPV to the Agency on a quarterly basis. Furthermore, the annual audited financial statements of all consolidated SPVs must be submitted to the Agency within 3 months of the year end of the concerned SPV.

            • HC-1.5.8

              Where a locally incorporated bank has a controller or majority ownership relationship with an SPV, or acts as sponsor, the bank must obtain the prior approval of the Agency for any changes to the capital, ownership, management or control of the SPV. All locally incorporated banks must also notify the Agency of any significant events in relation to the SPV. If necessary, the Agency may require that formal information exchange arrangements are put in place (e.g. a memorandum of understanding) if the SPV is located in a foreign jurisdiction and its activities are not supervised locally.

        • HC-2 HC-2 Approved Persons

          • HC-2.1 HC-2.1 BMA Notification and Approval

            • General Requirement

              • HC-2.1.1

                All persons wishing to undertake a controlled function in an Islamic bank licensee must be notified to the BMA prior to their appointment and, where required, approved by the BMA (see Rule HC-2.1.3).


              • HC-2.1.2

                Controlled functions are those of:

                (a) Director;
                (b) Member of Shari'a Supervisory Board
                (c) Chief Executive or General Manager;
                (d) Senior Manager;
                (e) Compliance officer;
                (f) Money Laundering Reporting Officer; and
                (g) Financial Instruments Trader.

              • HC-2.1.3

                Prior approval is required for controlled functions (a), (b), (c), (d), (e) and (f). Controlled functions (e) and (f) may be combined, however. Controlled function (g) does not require prior approval: instead, notification only is required, once the person concerned has accepted to undertake that function.

            • Basis for Approval

              • HC-2.1.4

                Approval under Rule HC-2.1.1 is only granted by the BMA, if it is satisfied that the person is fit and proper to hold the particular position in the licensee concerned. "Fit and proper" is determined by the BMA on a case-by-case basis. The definition of "fit and proper" and associated guidance is provided in Sections HC-2.2 and HC-2.3 respectively.


            • Definitions

              • HC-2.1.5

                Director is any person who occupies the position of a Director, as defined in Article 173 of the Commercial Companies Law (Legislative Decree No. 21 of 2001).

              • HC-2.1.6

                The fact that a person may have "Director" in their job title does not of itself make them a Director within the meaning of the definition noted in Rule HC-2.1.5. For example, a 'Director of Marketing', is not necessarily a member of the Board of Directors and therefore may not fall under the definition of Rule HC-2.1.5.

              • HC-2.1.7

                The Chief Executive or General Manager means a person who is responsible for the conduct of the licensee (regardless of actual title). The Chief Executive or General Manager must be resident in Bahrain. This person is responsible, alone or jointly, for the conduct of the whole of the firm, or, in the case of an overseas Islamic bank licensee, for all of the activities of the branch (in which case, he may hold the title of "Branch Manager").

              • HC-2.1.8

                Senior Manager means a person who, under the immediate authority of a Director or the Chief Executive/General Manager, exercises major managerial responsibilities, is responsible for a significant business or operating unit, or has major managerial responsibility for maintaining accounts or other records of the licensee.

              • HC-2.1.9

                Whether a person is a Senior Manager will depend on the facts in each case and is not determined by the presence or absence of the word in their job title. Examples of Senior Managers might include, depending on the scale, nature and complexity of the business, a deputy Chief Executive; and heads of departments such as Risk Management, or Internal Audit; or the Chief Financial Officer.

              • HC-2.1.10

                Financial Instruments Trader means a person who is engaged in buying or selling financial instruments.

              • HC-2.1.11

                Where a firm is in doubt as to whether a function should be considered a controlled function it must discuss the case with the BMA.

            • Notification Requirements and Process

              • HC-2.1.12

                Islamic bank licensees must obtain BMA approval before a person is formally appointed to a controlled function; the request for BMA approval must be made by submitting to BMA a duly completed Form 3 (Application for Approved Person status). In the case of a financial instruments trader, notification only is required (see Rule HC-2.1.3): this notification must also be made by submitting a Form 3.

              • HC-2.1.13

                In the case of license applications, the Form 3 must be marked for the attention of the Director, Licensing and Policy Directorate. When made by an Islamic bank licensee, the Form 3 must be marked for the attention of the Director, Islamic Financial Institutions.

              • HC-2.1.14

                Licensees should give the BMA a reasonable amount of notice in order for an application for approval to be reviewed. The BMA aims to respond within 2 weeks of receipt of an application, although in some cases, where referral to an overseas supervisor is required, the response time is likely to be longer.

              • HC-2.1.15

                Licensees seeking to appoint Board Directors should seek BMA approval for all the candidates to be put forward for election at a shareholder meeting, in advance of the agenda being issued to shareholders. BMA approval of the candidates does not in any way limit shareholders' rights to refuse those put forward for election.

              • HC-2.1.16

                All refusals by the BMA to grant a person approved person status have to be reviewed and approved by an Executive Director of the BMA. A notice of intent is issued to the person concerned, setting out the basis for the decision. The person has 30 calendar days from the date of the notice in which to appeal the decision. The BMA then has 30 calendar days from the date of the representation in which to make a final determination. See also Chapter EN-5.

              • HC-2.1.17

                Islamic bank licensees must immediately notify BMA when an approved person ceases to hold the controlled function, for which they have been approved, and for whatever reason.

              • HC-2.1.18

                Thus, licensees are required to notify BMA should an approved person transfer to another function within the licensee, or to another group entity; or else resign, be suspended or dismissed. BMA may require further clarification as to the reasons for the person's transfer or departure. BMA will automatically withdraw the individual's approved person status: should the person wish to undertake another controlled function, whether within the same licensee or in another licensee, then a new application should be resubmitted.

              • HC-2.1.19

                Islamic bank licensees must immediately notify BMA should they become aware of information that could reasonably be viewed as calling into question an approved person's compliance with BMA's "fit and proper" requirement (see HC-2.2).

          • HC-2.2 HC-2.2 "Fit and proper" requirement

            • HC-2.2.1

              Licensees seeking an approved person authorisation for an individual, must satisfy the BMA that the individual concerned is "fit and proper" to undertake the controlled function in question.

            • HC-2.2.2

              To be considered "fit and proper", those nominated must demonstrate:

              (a) personal integrity, honesty and good reputation;
              (b) professional competence, experience and expertise, sufficient for the controlled function for which authorisation is being applied for, and given the scale, complexity and nature of the Islamic bank licensee concerned; and
              (c) financial soundness.

            • HC-2.2.3

              In assessing the conditions prescribed in Rule HC-2.2.2, the BMA will take into account the criteria contained in Section HC-2.3. The BMA reviews each application on a case-by-case basis, taking into account all relevant circumstances. A person may be considered "fit and proper" to undertake one type of controlled function but not another, depending on the function's job size and required levels of experience and expertise. Similarly, a person approved to undertake a controlled function in one Islamic bank licensee may not be considered to have sufficient expertise and experience to undertake nominally the same controlled function but in a much bigger licensee.

            • HC-2.2.4

              Approved persons undertaking a controlled function must act prudently, and with honesty, integrity, care, skill and due diligence in the performance of their duties. They must avoid conflicts of interest arising whilst undertaking a controlled function.

            • HC-2.2.5

              In determining whether a conflict of interest may arise, factors that may be considered include whether:

              (a) a person has breached any fiduciary obligations to the company or terms of employment;
              (b) a person has undertaken actions that would be difficult to defend, when looked at objectively, as being in the interest of the licensee; and
              (c) a person has failed to declare a personal interest that has a material impact in terms of the person's relationship with the licensee.

          • HC-2.3 HC-2.3 Interpretative Guidance on "Fit and Proper" Requirement

            • HC-2.3.1

              In assessing a person's fitness and propriety, the BMA will consider previous professional and personal conduct (in Bahrain or elsewhere) including, but not limited to, the following:

              (a) the propriety of a person's conduct, whether or not such conduct resulted in a criminal offence being committed, the contravention of a law or regulation, or the institution of legal or disciplinary proceedings;
              (b) a conviction or finding of guilt in respect of any offence, other than a minor traffic offence, by any court or competent jurisdiction;
              (c) any adverse finding in a civil action by any court or competent jurisdiction, relating to fraud, misfeasance or other misconduct in connection with the formation or management of a corporation or partnership;
              (d) whether the person has been the subject of any disciplinary proceeding by any government authority, regulatory agency or professional body or association;
              (e) the contravention of any financial services legislation or regulation;
              (f) whether the person has ever been refused a license, authorisation, registration or other authority;
              (g) dismissal or a request to resign from any office or employment;
              (h) disqualification by a court, regulator or other competent body, as a Director or as a manager of a corporation;
              (i) whether the person has been a Director, partner or manager of a corporation or partnership which has gone into liquidation or administration or where one or more partners have been declared bankrupt whilst the person was connected with that partnership;
              (j) the extent to which the person has been truthful and open with supervisors;
              (k) the extent to which the person has appropriate professional and other qualifications for the controlled function in question;
              (l) the extent to which the person has sufficient experience, or is otherwise able to perform the functions of the controlled function in question;
              (m) whether the person has ever been adjudged bankrupt, entered into any arrangement with creditors in relation to the inability to pay due debts, or failed to satisfy a judgment debt under a court order.

            • HC-2.3.2

              With respect to HC-2.3.1(b), (c), (d) and (e), the BMA will take into account the length of time since any such event occurred, as well as the seriousness of the matter in question.

            • HC-2.3.3

              Further guidance on the process for assessing a person's "fit and proper" status is given in Module EN (Enforcement): see Chapter EN-8.

          • HC-2.4 [deleted]

            [This Section was deleted in 07/2006: it has been left blank.]

        • HC-3 HC-3 Compliance officer/manager

          • HC-3.1 HC-3.1 Introduction

            • HC-3.1.1

              In order to promote best practice with respect to banks' internal systems and controls and international banking supervision, the Agency, in this chapter, outlines its requirements for the compliance function of banks. The expression "Compliance Function" in this Chapter is used to describe staff carrying out compliance duties.

            • HC-3.1.2

              The expression 'Compliance Risk', in this chapter refers to the risk of legal or regulatory sanctions, material or financial loss, or loss to reputation a bank may suffer as a result of its failure to comply with laws, regulations, rules, reporting requirements, standards and codes of conduct applicable to its activities, rather than purely compliance with a bank's internal limits or procedures.

            • HC-3.1.3

              For further information and guidance on compliance risk and the compliance function, the Agency recommends that banks refer to the Basel Committee publication, "Compliance and the compliance function in banks" (see www.bis.org/publ published April 2005). The Agency expects banks to carry out a review of their compliance with the principles in this paper on a regular basis (either by way of a self-assessment or by way of a review by the internal or external audit function).

          • HC-3.2 HC-3.2 Requirement for and approval of a compliance officer/manager

            • HC-3.2.1

              All banks must appoint a senior member of staff with responsibility for the management of compliance risk as their Compliance Officer/Manager.

            • HC-3.2.2

              The compliance function must be independent (i.e. it must not be placed in a position where its other duties or responsibilities may cause a conflict of interest with its compliance risk management responsibilities). Therefore the compliance function must be separate from the internal audit function. The compliance officer or manager may perform other limited related compliance roles (e.g. MLRO or legal advisor), subject to the Agency's prior approval.

            • HC-3.2.3

              The compliance officer/manager must be appropriately qualified and experienced and the compliance function must have adequate resources to carry out its functions effectively.

            • HC-3.2.4

              The appointment of a compliance manager/officer requires the Agency's prior approval and the submission of the appointee's Personal Questionnaire (Appendix LR 2) and Curriculum Vitae to the Agency. The bank must also outline how the compliance function fits into the bank's senior management reporting structure, and must give details of relevant reporting lines within the bank.

            • HC-3.2.5

              In the case of locally incorporated banks, the compliance officer/manager must have access to the Board of Directors in addition to the senior management.

        • HC-4 [deleted]

          [This chapter deleted 07/2006 — left blank.]

      • HC HC High-level Controls[versions up to October 2010]

        • HC-A HC-A Introduction[versions up to October 2010]

          • HC-A.1 HC-A.1 Purpose[versions up to October 2010]

            • HC-A.1.1 [versions up to October 2010]

              This Module presents requirements that have to be met by Islamic bank licensees with respect to:

              a) the role and composition of their Boards and Board Committees; and
              b) related high-level controls and policies.
              October 07

            • HC-A.1.2 [versions up to October 2010]

              In addition, this Module contains requirements for the notification and pre-approval of individuals, undertaking certain designated functions with respect to Islamic bank licensees. These functions (called 'controlled functions'), include Directors and members of senior management. The controlled functions regime supplements the CBB's corporate governance requirements by ensuring that key persons involved in the running of Islamic bank licensees are fit and proper. Those approved by the CBB to undertake controlled functions are called approved persons.

              October 07

            • HC-A.1.3 [versions up to October 2010]

              Finally, this Module contains certain notification and approval requirements regarding the use of Special Purpose Vehicles ('SPVs'; see Section HC-1.5).

              October 07

            • HC-A.1.4 [versions up to October 2010]

              This Module supplements various provisions relating to corporate governance contained in Legislative Decree No. 21 of 2001, with respect to promulgating the Commercial Companies Law ('Commercial Companies Law 2001'). In case of conflict, the Commercial Companies Law shall prevail. The Module also supplements (for companies listed on the Bahrain Stock Exchange), Stock Exchange regulations that are relevant to corporate governance and high-level controls. Compliance with this Module does not guarantee compliance with either the Commercial Companies Law 2001 or the BSE regulations.

              October 07

            • Legal Basis[versions up to October 2010]

              • HC-A.1.5 [versions up to October 2010]

                This Module contains the CBB's Directive relating to the credit risk management of Islamic bank licensees, and is issued under the powers available to the CBB under Article 38 of the CBB Law. The Directive in this Module is applicable to all Islamic bank licensees.

                October 07

              • HC-A.1.6 [versions up to October 2010]

                For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1.

                October 07

          • HC-A.2 HC-A.2 Key requirements[versions up to October 2010]

            • Corporate governance[versions up to October 2010]

              • HC-A.2.1 [versions up to October 2010]

                The Chairman of the Board should preferably be non-executive and independent. The role of Chairman and Chief Executive may not be exercised by the same person. (See Rule HC-1.3.9.)

                Amended: October 2009
                October 2007

              • HC-A.2.2 [versions up to October 2010]

                The Board must approve a code of conduct for itself, senior management and employees, and define the responsibilities of itself and senior management. This should include procedures for dealing with conflicts of interest, and a prohibition on insider trading. (See Paragraphs HC-1.2.9 to HC-1.2.11.)

                October 07

              • HC-A.2.3 [versions up to October 2010]

                The Board should meet at least four times per year (see Rule HC-1.3.3).

                Amended: October 2009
                October 2007

              • HC-A.2.4 [versions up to October 2010]

                Boards must have an adequate number of members that are 'independent' and 'non-executive' to serve the interests of minority shareholders and other stakeholders. (See Paragraphs HC-1.3.5 and HC-1.3.6.)

                October 07

              • HC-A.2.5 [versions up to October 2010]

                The Board should consider the setting up of committees to assist it in fulfilling its responsibilities. The setting up of an Audit Committee and a Shari'a Committee is mandatory. (See Paragraphs HC-1.3.11 to HC-1.3.16.)

                October 07

              • HC-A.2.6 [versions up to October 2010]

                All licensees must submit their organisational structure as approved by the Board of Directors. All licensees must establish independent functions for Internal Audit and Risk Management.

                October 07

              • HC-A.2.7 [versions up to October 2010]

                Islamic bank licensees are required to notify the CBB, in writing, of all major changes (regardless of type and/or effect) proposed to the strategy and/or corporate plan of the bank prior to implementation, as well as of any Special Purpose Vehicle they intend to establish as a subsidiary, or with respect to which they intend to act as sponsor or manager (see Section HC-1.5).

                October 07

            • Approved Persons[versions up to October 2010]

              • HC-A.2.8 [versions up to October 2010]

                Islamic bank licensees are required to secure prior CBB approval for those persons wishing to undertake a controlled function. Such persons are assessed against CBB's 'fit and proper' requirements. Islamic bank licensees must also notify the CBB of any changes in their approved persons. (See Chapter HC-2)

                October 07

            • Compliance officer/manager[versions up to October 2010]

              • HC-A.2.9 [versions up to October 2010]

                Islamic bank licensees must appoint a senior member of staff with responsibility for compliance. The Compliance Officer is a controlled function. (See Chapter HC-3.1.)

                October 07

          • HC-A.3 HC-A.3 Module History[versions up to October 2010]

            • Evolution of the Module[versions up to October 2010]

              • HC-A.3.1 [versions up to October 2010]

                This Module was first issued in January 2005, as part of the initial release of Volume 2 of the CBB Rulebook. It was dated January 2005. Any material changes that have subsequently been made to this Module are annotated with the calendar quarter date in which the change was made: Chapter UG 3 provides further details on Rulebook maintenance and version control.

                October 07

              • HC-A.3.2 [versions up to October 2010]

                When the CBB replaced the BMA in September 2006, the provisions of this Module remained in force. Volume 2 was updated in October 2007 to reflect the switch to the CBB; however, new calendar quarter dates were only issued where the update necessitated changes to actual requirements.

                October 07

              • HC-A.3.3 [versions up to October 2010]

                A list of recent changes made to this Module is shown below:

                Module Ref. Change Date Description of Changes
                HC-1.5 01/07/05 Transparency requirements formalised
                HC-1.6 01/07/05 Notification requirements formalised
                HC-1.1, 1.2 & 1.4 01/10/05 High-level controls
                HC-1.5 01/10/05 New SPV requirements
                HC-3.1 – HC-3.2 01/10/05 Revised compliance function requirements
                HC-1.5.3, 1.5.5 & 4.1 01/01/06 Revised notification requirements for SPVs and dealing staff
                HC-2, HC-3 and HC-4 01/07/06 Requirements relating to controllers moved to Module GR; Remaining requirements relating to 'fit and proper' re-drafted to ensure consistency with other Rulebook Volumes (without changing the substance of the previous 'fit and proper' requirements); Requirements relating to dealers incorporated into the 'fit and proper' requirements.
                HC-1.2 & HC-1.3 01/10/07 Reordering of Paragraphs to separate Rules and Guidance
                HC-A.1 10/2007 New Rule HC-A.1.5 introduced, categorising this Module as a Directive.
                HC-1.3.5 04/2008 Mandatory requirement for at least one independent non-executive director
                HC-2.1.16 01/2009 Amendment to notification process for "approved person" status
                HC-1.5.3 01/2009 Requirement to appoint a permanent replacement within 120 days when a controlled function falls vacant.
                HC-2.1.2 10/2009 CBB prior approval requirement for appointment of Deputy MLRO.

              • HC-A.3.4 [versions up to October 2010]

                The contents in this Module are effective from July 2004 and the dates depicted in HC-A.3.3. Section HC-1.3 is effective from October 2007.

                October 07

        • HC-B HC-B General guidance and best practice[versions up to October 2010]

          • HC-B.1 HC-B.1 Guidance provided by other international bodies[versions up to October 2010]

            • Basel Committee: Enhancing Corporate Governance in Banking Organisations and High-level Controls for Banks[versions up to October 2010]

              • HC-B.1.1 [versions up to October 2010]

                These papers (see www.bis.org/publ/bcbs56.pdf) issued in September 1998 and September 1999 provide guidance on corporate governance and high-level controls in banks. These papers form part of an on-going effort by the Committee to strengthen procedures for risk management and disclosure in banks.

                October 07

              • HC-B.1.2 [versions up to October 2010]

                The papers draw on supervisory experience with corporate governance problems at banking organisations and suggest the types of practices that could help to avoid such problems. They identify a number of practices as critical elements of any financial institution's corporate governance process.

                October 07

              • HC-B.1.3 [versions up to October 2010]

                The CBB draws banks' attention to the Basel papers as benchmarks of best practice for corporate governance standards and high-level controls to be followed by banks operating in the Kingdom of Bahrain.

                October 07

          • HC-B.2 HC-B.2 Enforceability[versions up to October 2010]

            • HC-B.2.1 [versions up to October 2010]

              The requirements of Chapter 1, Sections HC-1.1HC-1.4 are binding requirements, which banks and their Boards should follow on an 'apply or explain' basis. If a Board or a bank elects not to follow these requirements, they must explain why to the Central Bank and document the reasons for not applying the concerned requirements in the Minutes of the Board. The remaining Chapters are binding requirements except where shown as guidance.

              October 07

        • HC-1 HC-1 Corporate Governance[versions up to October 2010]

          • HC-1.1 HC-1.1 Scope[versions up to October 2010]

            • HC-1.1.1 [versions up to October 2010]

              The contents of this Chapter are applicable to locally incorporated banks. Bahrain branches of foreign banks must satisfy the Central Bank that equivalent arrangements are in place at the parent level and that these arrangements provide for effective high-level controls over activities conducted under the Bahrain license.

              October 07

            • HC-1.1.2 [versions up to October 2010]

              This Chapter covers the high-level controls aspects of corporate governance of banks, and therefore focuses on the functions of the constituent parts of high-level controls, starting with the respective roles and responsibilities of the Board and senior management.

              October 07

            • HC-1.1.3 [versions up to October 2010]

              This Chapter therefore does not cover matters of corporate governance relating to the Commercial Companies Law (e.g. General Meetings, the role of shareholders and other administrative matters) or Listing Requirements.

              October 07

            • HC-1.1.4 [versions up to October 2010]

              The CBB has historically pursued a 'best practice' guidance approach to high-level controls and corporate governance, rather than a prescriptive rules-based approach. The Central Bank has chosen to notify licensees of international best practice standards, and allowed banks to interpret these, according to the scope of operations of the concerned bank. This Chapter blends a best practice-based approach with minimum requirements.

              October 07

            • HC-1.1.5 [versions up to October 2010]

              Banks must satisfy the CBB that financial services activities conducted in subsidiaries and other group members including foreign branches are subject to the same or equivalent arrangements for ensuring effective high-level controls over their activities. In instances where local jurisdictional requirements are more stringent than those applicable in this Module, the local requirements are to be applied.

              October 07

            • HC-1.1.6 [versions up to October 2010]

              Where a bank is unable to satisfy the CBB that its subsidiaries and other group members or foreign branches are subject to the same or equivalent arrangements, the CBB will assess the potential impact of risks – both financial and reputational – to the bank arising from inadequate high-level controls in the rest of the group of which it is a member. In such instances, the CBB may impose restrictions on dealings between the bank and other group members. Where weaknesses in controls are assessed by the CBB to pose a major threat to the stability of the bank, then its authorisation may be called into question.

              October 07

          • HC-1.2 HC-1.2 The Board of Directors – Its Functions and Responsibilities[versions up to October 2010]

            • Strategy[versions up to October 2010]

              • HC-1.2.1 [versions up to October 2010]

                In most banks, shareholders, creditors, employees, depositors and investment account holders ('stakeholders') are unable to closely monitor management, its strategies and the bank's performance due to a lack of information and resources. A key responsibility of the Board is to fill the gap between uninformed stakeholders to whom it owes a duty of care, and the more fully informed executive management by monitoring management closely on behalf of stakeholders.

                October 07

              • HC-1.2.2 [versions up to October 2010]

                The Board is ultimately accountable and responsible for the affairs and performance of the bank. The Board must establish the objectives of the bank and develop the strategies that direct the on-going activities of the bank to achieve these objectives. The strategies must be communicated throughout the bank, and be disclosed publicly (e.g. via the website or in the annual report in an abbreviated form as applicable). In its strategy document, the Board must demonstrate that it is able to proactively identify and understand the significant risks that the bank faces in achieving its business objectives through its business strategies and plans.

                October 07

              • HC-1.2.3 [versions up to October 2010]

                The precise functions reserved for the Board, and those delegated to management and committees will vary, dependent upon the business of the institution, its size and ownership structure. However, as a minimum, the Board must establish and maintain a statement of its responsibilities for:

                a) The adoption and annual review of strategy;
                b) The adoption and review of management structure and responsibilities;
                c) The adoption and review of the systems and controls framework; and
                d) Monitoring the implementation of strategy by management.

                The Board may not delegate its ultimate responsibility to ensure that an adequate, effective, comprehensive and transparent corporate governance process is in place.

                October 07

              • HC-1.2.4 [versions up to October 2010]

                In its strategy review process under Paragraphs HC-1.2.3 a) and d), the Board must:

                a) Review the bank's business plans and the inherent level of risk in these plans;
                b) Assess the adequacy of capital to support the business risks of the bank.
                c) Set performance objectives;
                d) Review the performance of executive management; and
                e) Oversee major capital expenditures, divestitures and acquisitions.
                October 07

              • HC-1.2.5 [versions up to October 2010]

                The CBB expects the Board to have effective policies and processes in place for:

                a) Ensuring a formal and transparent Board nomination process;
                b) Appointing senior managers, and ensuring that they have the necessary integrity, technical and managerial competence, and experience;
                c) Overseeing succession planning and replacing key executives when necessary, and ensuring appropriate resources are available, and minimising reliance on key individuals;
                d) Reviewing the remuneration and incentive packages of the executive management and members of the Board of Directors and ensuring that such packages are consistent with the corporate values and strategy of the bank;
                e) Effectively monitoring and making formal (annual) evaluations of senior management's performance in implementing agreed strategy and business plans;
                f) Approving budgets and reviewing performance against those budgets and key performance indicators; and
                g) The management of the bank's compliance risk.
                October 07

            • Risk Recognition and Assessment[versions up to October 2010]

              • HC-1.2.6 [versions up to October 2010]

                The Board is responsible for ensuring that the systems and controls framework, including the Board structure and organisational structure of the bank, is appropriate for the bank's business and associated risks (see HC-1.2.3 c)). The Board must ensure that collectively it has sufficient expertise to identify, understand and measure the significant risks to which the bank is exposed in its business activities.

                The Board must regularly assess the systems and controls framework of the bank. In its assessments, the Board must demonstrate to the CBB that:

                a) The bank's operations, individually and collectively are measured, monitored and controlled by appropriate, effective and prudent risk management systems commensurate with the scope of the bank's activities; and
                b) The bank's operations are supported by an appropriate control environment. The compliance, risk management and financial reporting functions must be adequately resourced, independent of business lines and must be run by individuals not involved with the day-to-day running of the various business areas. The Board must additionally ensure that management develops, implements and oversees the effectiveness of comprehensive know your customer standards, as well as on-going monitoring of accounts and transactions, in keeping with the requirements of relevant law, regulations and best practice (with particular regard to anti-money laundering measures). The control environment should maintain necessary client confidentiality and ensure that the privacy of the bank is not violated, and ensure that clients rights and assets are properly safeguarded.
                c) Where the Board has identified any significant issues related to the bank's adopted governance framework, appropriate and timely action is taken to address any identified adverse deviations from the requirements of this Module.
                October 07

              • HC-1.2.7 [versions up to October 2010]

                In its review of the systems and controls framework in Paragraph HC-1.2.6, the Board must:

                a) Make effective use of the work of external and internal auditors. The Board must ensure the integrity of the bank's accounting and financial reporting systems through regular independent review (by internal and external audit). Audit findings must be used as an independent check on the information received from management about the bank's operations and performance and the effectiveness of internal controls; and
                b) Make use of self-assessments, stress/scenario tests, and/or independent judgments made by external advisors. The Board may appoint supporting committees, and engage senior management to assist it in the oversight of risk management; and
                c) Ensure that senior management have put in place appropriate systems of control for the business of the bank and the information needs of the Board; in particular, there must be appropriate systems and functions for identifying as well as for monitoring risk, the financial position of the bank, and compliance with applicable laws, regulations and best practice standards. The systems must produce information on a timely basis.
                October 07

            • Corporate Ethics, Conflicts of Interest and Code of Conduct[versions up to October 2010]

              • HC-1.2.8 [versions up to October 2010]

                Banks are subject to a wide variety of laws, regulations and codes of best practice that directly affect the conduct of business. Such laws involve the Bahraini Stock Exchange Law, the Labour Law, the Commercial Companies Law, occupational health and safety, even environment and pollution laws, as well as codes of conduct and regulations of the Central Bank. The Board sets the 'tone at the top' of a bank, and has a responsibility to oversee compliance with these various requirements. The Board should ensure that the staff conduct their affairs with a high degree of integrity, taking note of applicable laws, codes and regulations.

                October 07

              • HC-1.2.9 [versions up to October 2010]

                The Board must establish corporate standards for itself, senior management, and employees. This requirement should be met by way of a documented and published code of conduct or similar document. These values must be communicated throughout the bank, so that the Board and senior management and staff understand the importance of conducting business based on good corporate governance values and understand their accountabilities to the various stakeholders of the licensee. Banks' Boards, senior management and staff must be informed of and be required to fulfill their fiduciary responsibilities to the bank's stakeholders.

                October 07

              • HC-1.2.10 [versions up to October 2010]

                An internal code of conduct is separate from the business strategy of a bank. A code of conduct should outline the practices that Directors, senior management and staff should follow in performing their duties. Banks may wish to use procedures and policies to complement their codes of conduct. The suggested contents of a code of conduct are covered below:

                a) Commitment by the Board and management to the code. The code of conduct should be linked to the objectives of the bank, and its responsibilities and undertakings to customers, shareholders, staff and the wider community (see HC-1.2.8 and HC-1.2.9). The code should give examples or expectations of honesty, integrity, leadership and professionalism;
                b) Commitment to the law and best practice standards. This commitment would include commitments to following accounting standards, industry best practice (such as ensuring that information to clients is clear, fair, and not misleading), transparency, and rules concerning potential conflicts of interest (see HC-1.2.11);
                c) Employment practices. This would include rules concerning health and safety of employees, training, policies on the acceptance and giving of business courtesies, prohibition on the offering and acceptance of bribes, and potential misuse of company assets;
                d) How the company deals with disputes and complaints from clients and monitors compliance with the code; and
                e) Confidentiality. Disclosure of client or bank information should be prohibited, except where disclosure is required by law (see HC-1.2.6 b).
                October 07

              • HC-1.2.11 [versions up to October 2010]

                The Board must establish and disseminate to its members and management, policies and procedures for the identification, reporting, disclosure, prevention, or strict limitation of potential conflicts of interest. It is senior management's responsibility to implement these policies. Rules concerning connected party transactions and potential conflicts of interest may be dealt with in the Code of Conduct (see HC-1.2.9). In particular, the Central Bank requires that any decisions to enter into transactions, under which Board members or any member of management would have conflicts of interest that are material, should be formally and unanimously approved by the full Board. Best practice would dictate that a Board member or member of senior management must:

                a) Not enter into competition with the bank;
                b) Not demand or accept substantial gifts from the bank for himself or his associates;
                c) Not misuse the banks' assets;
                d) Not use company privileged information or take advantage of business opportunities to which the company is entitled for himself or his associates;
                e) Report to the Board any (potential) conflict of interest in their activities with, and commitments to other organisations. In any case, all Board members and members of senior management must declare in writing all of their other interests in other enterprises or activities (whether as a shareholder of above 5% of the voting capital of a company, a manager, or other form of significant participation) to the Board (or the Nominations or Audit Committees) on an annual basis; and
                f) Absent themselves from any discussions or decision-making that involves a subject where they are incapable of providing objective advice, or which involves a subject or (proposed) transaction where a conflict of interest exists.
                October 07

              • HC-1.2.12 [versions up to October 2010]

                The Central Bank expects that the Board and its members individually and collectively:

                a) Act with honesty, integrity and in good faith, with due diligence and care, with a view to the best interest of the bank and its shareholders and other stakeholders (see Paragraphs HC-2.8 to HC-1.2.11);
                b) Act within the scope of their responsibilities (which should be clearly defined – see HC-1.3.7 and HC-1.3.8 below) and not participate in the day-to-day management of the bank;
                c) Have a proper understanding of, and competence to deal with the affairs and products of the bank and devote sufficient time to their responsibilities;
                d) To independently assess and question the policies, processes and procedures of the bank, with the intent to identify and initiate management action on issues requiring improvement. (i.e. to act as checks and balances on management).
                October 07

              • HC-1.2.13 [versions up to October 2010]

                All Directors whether non-executive or executive should exercise independence in their decision-making. To facilitate independence, the Board should agree procedures whereby the Board or its individual members (or committees) may take independent professional advice at the bank's expense.

                October 07

          • HC-1.3 HC-1.3 Board Composition and the Role of Committee[versions up to October 2010]

            • Board Composition & Frequency of Meetings[versions up to October 2010]

              • HC-1.3.1 [versions up to October 2010]

                To fulfil its responsibility for the review of the systems and controls framework (HC-1.2.3 c), the Board must periodically assess its composition and size and, where appropriate, reconstitute itself and its committees by selecting new Directors to replace long-standing members or those members whose contribution to the bank or its committees (such as the audit committee) is not adequate.

                October 07

              • HC-1.3.2 [versions up to October 2010]

                No Board member may have more than one Directorship of a Retail Bank and a Wholesale Bank. This would mean an effective cap of a maximum of two Directorships of licensees inside Bahrain. Two Directorships of licensees within the same Category (e.g. 'Retail Bank') would not be permitted. Banks may approach the Central Bank for exemption from this limit where the Directorships concern banks or financial institutions within the same group.

                Amended January 2009
                October 07

              • HC-1.3.3 [versions up to October 2010]

                The Board must meet sufficiently often to enable it to discharge its responsibilities effectively, taking into account the bank's scale and complexity.

                October 07

              • HC-1.3.4 [versions up to October 2010]

                To meet its obligations under Rule HC-1.3.3 above, the full Board should meet preferably no less than four times per year. The Central Bank recommends that meetings should take place once every quarter to address the Board's responsibilities for management oversight and performance monitoring. Furthermore, Board rules should require members to step down if they are not actively participating in Board meetings.

                October 07

            • Independent and Non-Executive Directors[versions up to October 2010]

              • HC-1.3.5 [versions up to October 2010]

                Where there is the potential for conflict of interest, or there is a need for impartiality, the Board must assign a sufficient number of independent non-executive Board members capable of exercising independent judgment. At a minimum, all locally incorporated banks must appoint one independent non-executive director. The Board must outline its criteria and materiality thresholds in the annual report for the definition of 'independence'. The Directors must be identified in the annual report as executive, non-executive, and independent non-executive, as follows:

                a) Executive Director (or 'Managing Director' under the Commercial Companies Law 'CCL') - A person who is involved in the day-to-day management and/or is in full-time employment of the bank and/or any of its affiliates or subsidiaries or parent companies. An executive Director may not occupy the post of 'Chairman';
                b) Non-Executive Director - A person not involved in the day-to-day management and/or is not a full-time salaried employee of the bank and/or any of its affiliates, or subsidiaries or parent companies; and
                c) Independent Non-Executive Director - A non-executive Director (as defined above), who also:
                •   Is not a 'controller' of the bank (see Section GR-5.2).
                •   Is not an Associate (see Section GR-5.2) of a Director or a member of senior management of the bank.
                •   Is not a professional advisor to the bank or group (A partner or member of senior management of an accountancy or law firm that provides services to the bank would not be perceived by the Central Bank as an independent non-executive Director).
                •   Is not a large depositor with, or large borrower from the bank (i.e. whose deposits or credit facilities exceed 10% of the capital base of the bank).
                •   Has no significant contractual, or business relationship with the bank or group which could be seen to materially interfere with the person's capacity to act in an independent manner.
                October 07
                Amended: April 2008

              • HC-1.3.6 [versions up to October 2010]

                Independent non-executive Directors should be permitted to meet periodically (e.g. at separate meetings from the main Board) without executive management present.

                October 07

            • Checks and Balances[versions up to October 2010]

              • HC-1.3.7 [versions up to October 2010]

                To ensure a clear segregation of duties, the Board must clearly define, document and enforce its own responsibilities, including those of its Chairman, as well as the delegated authorities, responsibilities and accountabilities of the Board and management committees, the bank's Chief Executive and senior management to the stakeholders of the bank.

                October 07

              • HC-1.3.8 [versions up to October 2010]

                In particular, the Board must issue formal letters of appointment both to senior management and Board members, outlining their specific responsibilities and accountabilities. Wherever possible, these documents or a summary of responsibilities should be disclosed publicly, for example in the annual report. Letters of appointment facilitate better understanding of the respective accountabilities of the Board and management.

                October 07

            • Responsibilities of the Chairman[versions up to October 2010]

              • HC-1.3.9 [versions up to October 2010]

                The Chairman is responsible for the leadership of the Board, and for the efficient functioning of the Board. The Chairman is responsible for ensuring that Board members are adequately briefed in sufficient time for issues arising at Board meetings; therefore it is vital that the Chairman commit sufficient time to perform his role effectively, taking into account the points below:

                a) The role of Chairman and Chief Executive may not be exercised by the same person; and
                b) Furthermore, there needs to be a clear division of responsibility between these two positions (see also HC-1.3.8 in this regard).
                October 07

              • HC-1.3.10 [versions up to October 2010]

                The Chairman of the Board should preferably be non-executive and independent (see HC-1.3.5 for the definitions of 'non-executive' and 'independent').

                October 07

            • The benefits and functions of committees[versions up to October 2010]

              • HC-1.3.11 [versions up to October 2010]

                In order to perform its duties more efficiently, the Board may set up committees where it feels appropriate with specific responsibilities, which must be documented. Where committees are set up, they should keep full minutes of their activities and meet regularly to fulfil their mandates. In particular, there are three areas where there is a need for checks and balances within the Board itself:

                a) The nomination of Directors;
                b) The remuneration of Directors; and
                c) The audit of the bank's financial performance.

                In these areas, executive Directors have clear potential conflicts of interest. Nomination is all about the continuation of their own jobs and the jobs of their colleagues and potential new colleagues. Remuneration is all about the rewards that executive Directors and/or senior management receive for their services to the bank. Audit concerns the probity of the financial and non-financial reporting of the performance of the company by the very same persons who are responsible for its performance.

                For larger banks that deal with the general public, committees can be a more efficient mechanism to assist the main Board in its monitoring and control of the activities of the bank. The establishment of committees should not mean that the role of the Board is diminished, or that the Board becomes fragmented. Each Committee must have a clear written mandate outlining its purpose, objectives and responsibilities, including composition, frequency of meetings and reporting relationships.

                October 07

            • Audit Committee[versions up to October 2010]

              • HC-1.3.12 [versions up to October 2010]

                The Central Bank requires all banks to establish an Audit Committee. The committee members must have sufficient technical expertise to enable the committee to perform its functions effectively. There must be at least one qualified and appropriately experienced accountant in the committee. All members of the committee must be financially literate. The Audit Committee must be composed of non-executive Directors only. The CEO may not be a member of this committee.

                October 07

              • HC-1.3.13 [versions up to October 2010]

                Responsibilities of the Audit Committee are as follows:

                a) To review the integrity of the bank's financial reporting (particularly with reference to information passed to the Board - see HC-1.2.6 a). This review must include the choice of accounting policies. The information needs of the Board to perform its monitoring responsibilities must be defined in writing, and regularly monitored by the Audit Committee;
                b) To oversee the selection and compensation of the external auditor for appointment and approval at the shareholders' meeting. The audit committee must oversee relations with the external auditors, including ensuring the external auditor's independence (in particular, making sure that the external audit firm and its partners have no other financial or business relationship without the Board's knowledge), the terms and conditions of the auditor's appointment and remuneration arrangements. The committee must monitor rotation arrangements for audit engagement partners. The audit committee must monitor the performance of the external auditor and the non-audit services provided by the external auditor. The committee must meet with the external auditor at least twice per year, and at least once per year in the absence of any members of executive management.
                c) To regularly review the activities and performance of the internal audit function;
                d) To review whether the bank complies with all relevant laws, regulations, codes and business practices, and ensure that the bank communicates with shareholders and relevant stakeholders (internal and external) openly and promptly, and with substance of compliance prevailing over form; and
                e) To review and supervise the implementation of, enforcement of and adherence to the bank's code of conduct.
                October 07

              • HC-1.3.14 [versions up to October 2010]

                Below the Audit Committee, the bank must set up an internal audit function, which reports directly to the Audit Committee (with a parallel reporting line to senior management for day-to-day matters as appropriate).

                October 07

            • Sharia Supervision Committee[versions up to October 2010]

              • HC-1.3.15 [versions up to October 2010]

                The Central Bank requires all banks to establish an independent Shari'a Supervision Committee complying with AAOIFI's governance standards for Islamic Financial Institutions No. 1 and No.2

                October 07

              • HC-1.3.16 [versions up to October 2010]

                All banks must comply with all AAOIFI issued accounting standards as well as the Shari'a pronouncement issued by the Shari'a Board of AAOIFI. The bank must have a separate function of Shari'a review to verify compliance with the above. This internal Shari'a review must be carried out in accordance with AAOIFI's governance standards No. 3. The Shari'a review function may be located in the Internal Audit function of the bank.

                October 07

          • HC-1.4 HC-1.4 Transparency and Disclosure[versions up to October 2010]

            Board's Responsibility for Disclosure

            October 07

            • HC-1.4.1 [versions up to October 2010]

              The Board should oversee the process of disclosure and communications with internal and external stakeholders. The Board should ensure that disclosures made by the bank are fair, transparent, comprehensive and timely and reflect the character of the bank and the nature, complexity and risks inherent in the bank's business activities. Disclosure policies must be reviewed for compliance with the Central Bank's disclosure requirements (see Rulebook Chapter PD-1).

              October 07

            • HC-1.4.2 [versions up to October 2010]

              To promote sound corporate governance, the bank must submit its organisational structure approved by the Board of Directors, which notes the designations and responsibilities of its key management personnel, highlighting their qualifications and relevant industry experience. The organisational structure should be clearly delineated and reporting lines completely transparent to promote full disclosure. It is the General Manager's responsibility to ensure that this occurs.

              October 07

            • HC-1.4.3 [versions up to October 2010]

              The bank must submit a statement of its strategy and objectives to the Central Bank at the time of licensing. This statement should cover a minimum period of three years. The Central Bank may request a formal review by the Board of the bank's statement from time to time.

              October 07

          • HC-1.5 HC-1.5 Notification, reporting, and approval requirements for changes to activities, personnel and ownership, strategy, Board meetings and special purpose vehicles ('SPVs')[versions up to October 2010]

            • HC-1.5.1 [versions up to October 2010]

              Banks must notify the Central Bank in writing of all major proposed changes to the strategy and/or corporate plan of the bank prior to implementation.

              October 07

            • HC-1.5.2 [versions up to October 2010]

              Banks must notify the Central Bank in writing of any proposed changes to senior positions or ownership changes mentioned in Sections HC-2.1 and HC-3.2 (whether in terms of structure or identity of personnel) prior to the change. The communication should include the reason for the departure of the personnel and the Curriculum Vitae of any new persons taking up the relevant positions in the bank (see also HC-2.1.17). See also Section BR-5.1 for notification requirements concerning contact details of senior staff.

              Amended: October 2009
              Amended: January 2009
              October 2007

            • HC-1.5.3 [versions up to October 2010]

              If a controlled function falls vacant, all banks must appoint a permanent replacement (after obtaining CBB approval), within 120 calendar days of the vacancy occurring. Pending the appointment of a permanent replacement, the bank must make immediate interim arrangements to ensure continuity of the duties and responsibilities of the controlled function affected. These interim arrangements must be approved by the CBB.

              Added January 2009

            • HC-1.5.4 [versions up to October 2010]

              All locally incorporated banks, in addition to the requirements in Paragraphs HC-1.5.1 and HC-1.5.2, should obtain the Central Bank's prior specific written approval before establishing any subsidiaries (including SPVs where the bank exercises a majority shareholding or has majority voting control by virtue of direct ownership or by proxy/nominee arrangements), branches and/or representative offices, either inside or outside of Bahrain. In order to avoid any delays and/or disruption in implementation of banks' plans in this context, the Central Bank should be approached as soon as possible, even at a very preliminary stage.

              Renumbered January 2009
              October 07

            • HC-1.5.5 [versions up to October 2010]

              All locally incorporated banks are required to submit, on an annual basis, as an attachment to the year-end quarterly PIR, a report recording the meetings during the year by their Board of Directors. For a sample report, refer to Appendix BR-10.

              Renumbered January 2009
              October 07

            • HC-1.5.6 [versions up to October 2010]

              All locally incorporated banks must notify the Central Bank if they intend to act as sponsor or manager of a special purpose vehicle ('SPV'), or if they intend to participate in the creation of an SPV, or if they intend to acquire shares in an SPV. All locally incorporated banks must notify the Central Bank if they are appointed as nominee shareholders of SPVs or hold votes by proxy arrangement in SPVs on behalf of other investors. In all cases listed above, the concerned bank must notify the Central Bank quarterly of any new commitments to, or engagements in business arrangements with SPVs. These reporting and notification arrangements apply in addition to arrangements under HC-1.5.4 where the SPV is a subsidiary.

              Renumbered January 2009
              October 07

            • HC-1.5.7 [versions up to October 2010]

              The Central Bank requires any locally incorporated bank associated with an SPV to give the background to the following points in any notification under HC-1.5.6 above:

              a) the purpose of the SPV;
              b) the nature of the relationship between the bank and the SPV (i.e. sponsor, manager, investor, controller etc.);
              c) the external auditor's proposed consolidation/accounting treatment of the SPV;
              d) the availability of financial and other information relevant to the SPV and access to its business premises and records;
              e) whether the bank is providing any guarantees, warranties or financial/liquidity support of any kind to the SPV.
              Renumbered January 2009
              October 07

            • HC-1.5.8 [versions up to October 2010]

              Where the SPV is consolidated into the accounts of a locally incorporated bank, the bank must provide separate accounting information on the SPV to the Central Bank on a quarterly basis. Furthermore, the annual audited financial statements of all consolidated SPVs must be submitted to the Central Bank within 3 months of the year end of the concerned SPV.

              Renumbered January 2009
              October 07

            • HC-1.5.9 [versions up to October 2010]

              Where a locally incorporated bank has a controller or majority ownership relationship with an SPV, or acts as sponsor, the bank must obtain the prior approval of the Central Bank for any changes to the capital, ownership, management or control of the SPV. All locally incorporated banks must also notify the Central Bank of any significant events in relation to the SPV. If necessary, the Central Bank may require that formal information exchange arrangements are put in place (e.g. a memorandum of understanding) if the SPV is located in a foreign jurisdiction and its activities are not supervised locally.

              Renumbered January 2009
              October 07

        • HC-2 HC-2 Approved Persons[versions up to October 2010]

          • HC-2.1 HC-2.1 CBB Notification and Approval[versions up to October 2010]

            • General Requirement[versions up to October 2010]

              • HC-2.1.1 [versions up to October 2010]

                All persons wishing to undertake a controlled function in an Islamic bank licensee must be notified to the CBB prior to their appointment and, where required, approved by the CBB (see Rule HC-2.1.3).

                October 07

              • HC-2.1.2 [versions up to October 2010]

                Controlled functions are those of:

                (a) Director;
                (b) Member of Shari'a Supervisory Board
                (c) Chief Executive or General Manager;
                (d) Senior Manager;
                (e) Compliance officer;
                (f) Money Laundering Reporting Officer;
                (g) Deputy Money Laundering Reporting Officer; and
                (h) Financial Instruments Trader.
                Amended: October 2009
                October 2007

              • HC-2.1.3 [versions up to October 2010]

                Prior approval is required for controlled functions (a), (b), (c), (d), (e), (f) and (g). Controlled functions (e) and (f) may be combined, however (see also FC-4.1, regarding the MLRO function). Controlled function (h) does not require prior approval: instead, notification only is required, once the person concerned has accepted to undertake that function.

                Amended: October 2009
                October 2007

            • Basis for Approval[versions up to October 2010]

              • HC-2.1.4 [versions up to October 2010]

                Approval under Rule HC-2.1.1 is only granted by the CBB, if it is satisfied that the person is fit and proper to hold the particular position in the licensee concerned. 'Fit and proper' is determined by the CBB on a case-by-case basis. The definition of 'fit and proper' and associated guidance is provided in Sections HC-2.2 and HC-2.3 respectively.

                October 07

            • Definitions[versions up to October 2010]

              • HC-2.1.5 [versions up to October 2010]

                Director is any person who occupies the position of a Director, as defined in Article 173 of the Commercial Companies Law (Legislative Decree No. 21 of 2001).

                October 07

              • HC-2.1.6 [versions up to October 2010]

                The fact that a person may have 'Director' in their job title does not of itself make them a Director within the meaning of the definition noted in Rule HC-2.1.5. For example, a 'Director of Marketing', is not necessarily a member of the Board of Directors and therefore may not fall under the definition of Rule HC-2.1.5.

                October 07

              • HC-2.1.7 [versions up to October 2010]

                The Chief Executive or General Manager means a person who is responsible for the conduct of the licensee (regardless of actual title). The Chief Executive or General Manager must be resident in Bahrain. This person is responsible, alone or jointly, for the conduct of the whole of the firm, or, in the case of an overseas Islamic bank licensee, for all of the activities of the branch (in which case, he may hold the title of 'Branch Manager').

                October 07

              • HC-2.1.8 [versions up to October 2010]

                Senior Manager means a person who, under the immediate authority of a Director or the Chief Executive/General Manager, exercises major managerial responsibilities, is responsible for a significant business or operating unit, or has major managerial responsibility for maintaining accounts or other records of the licensee.

                October 07

              • HC-2.1.9 [versions up to October 2010]

                Whether a person is a Senior Manager will depend on the facts in each case and is not determined by the presence or absence of the word in their job title. Examples of Senior Managers might include, depending on the scale, nature and complexity of the business, a deputy Chief Executive; and heads of departments such as Risk Management, or Internal Audit; or the Chief Financial Officer.

                October 07

              • HC-2.1.10 [versions up to October 2010]

                Financial Instruments Trader means a person who is engaged in buying or selling financial instruments.

                October 07

              • HC-2.1.11 [versions up to October 2010]

                Where a firm is in doubt as to whether a function should be considered a controlled function it must discuss the case with the CBB.

                October 07

            • Notification Requirements and Process[versions up to October 2010]

              • HC-2.1.12 [versions up to October 2010]

                Islamic bank licensees must obtain CBB approval before a person is formally appointed to a controlled function; the request for CBB approval must be made by submitting to CBB a duly completed Form 3 (Application for Approved Person status). In the case of a financial instruments trader, notification only is required (see Rule HC-2.1.3): this notification must also be made by submitting a Form 3.

                October 07

              • HC-2.1.13 [versions up to October 2010]

                In the case of license applications, the Form 3 must be marked for the attention of the Director, Licensing and Policy Directorate. When made by an Islamic bank licensee, the Form 3 must be marked for the attention of the Director, Islamic Financial Institutions.

                October 07

              • HC-2.1.14 [versions up to October 2010]

                Licensees should give the CBB a reasonable amount of notice in order for an application for approval to be reviewed. The CBB aims to respond within 2 weeks of receipt of an application, although in some cases, where referral to an overseas supervisor is required, the response time is likely to be longer.

                October 07

              • HC-2.1.15 [versions up to October 2010]

                Licensees seeking to appoint Board Directors should seek CBB approval for all the candidates to be put forward for election at a shareholder meeting, in advance of the agenda being issued to shareholders. CBB approval of the candidates does not in any way limit shareholders' rights to refuse those put forward for election.

                October 07

              • HC-2.1.16 [versions up to October 2010]

                All refusals by the CBB to grant a person approved person status have to be reviewed and approved by an Executive Director of the CBB. A notice of intent is issued to the licensee concerned, setting out the basis for the decision. The licensee has 30 calendar days from the date of the notice in which to appeal the decision. The CBB then has 30 calendar days from the date of the representation in which to make a final determination. See also Chapter EN-5.

                Amended January 2009
                Added October 2007

              • HC-2.1.17 [versions up to October 2010]

                Islamic bank licensees must immediately notify CBB when an approved person ceases to hold the controlled function, for which they have been approved, and for whatever reason (see also HC-1.5.2).

                Amended January 2009
                October 07

              • HC-2.1.18 [versions up to October 2010]

                Thus, licensees are required to notify CBB should an approved person transfer to another function within the licensee, or to another group entity; or else resign, be suspended or dismissed. CBB may require further clarification as to the reasons for the person's transfer or departure. CBB will automatically withdraw the individual's approved person status: should the person wish to undertake another controlled function, whether within the same licensee or in another licensee, then a new application should be resubmitted.

                October 07

              • HC-2.1.19 [versions up to October 2010]

                Islamic bank licensees must immediately notify CBB should they become aware of information that could reasonably be viewed as calling into question an approved person's compliance with CBB's 'fit and proper' requirement (see HC-2.2).

                October 07

          • HC-2.2 HC-2.2 "Fit and proper" requirement[versions up to October 2010]

            • HC-2.2.1 [versions up to October 2010]

              Licensees seeking an approved person authorisation for an individual, must satisfy the CBB that the individual concerned is 'fit and proper' to undertake the controlled function in question.

              October 07

            • HC-2.2.2 [versions up to October 2010]

              To be considered 'fit and proper', those nominated must demonstrate:

              (a) personal integrity, honesty and good reputation;
              (b) professional competence, experience and expertise, sufficient for the controlled function for which authorisation is being applied for, and given the scale, complexity and nature of the Islamic bank licensee concerned; and
              (c) financial soundness.
              October 07

            • HC-2.2.3 [versions up to October 2010]

              In assessing the conditions prescribed in Rule HC-2.2.2, the CBB will take into account the criteria contained in Section HC-2.3. The CBB reviews each application on a case-by-case basis, taking into account all relevant circumstances. A person may be considered 'fit and proper' to undertake one type of controlled function but not another, depending on the function's job size and required levels of experience and expertise. Similarly, a person approved to undertake a controlled function in one Islamic bank licensee may not be considered to have sufficient expertise and experience to undertake nominally the same controlled function but in a much bigger licensee.

              October 07

            • HC-2.2.4 [versions up to October 2010]

              Approved persons undertaking a controlled function must act prudently, and with honesty, integrity, care, skill and due diligence in the performance of their duties. They must avoid conflicts of interest arising whilst undertaking a controlled function.

              October 07

            • HC-2.2.5 [versions up to October 2010]

              In determining whether a conflict of interest may arise, factors that may be considered include whether:

              (a) a person has breached any fiduciary obligations to the company or terms of employment;
              (b) a person has undertaken actions that would be difficult to defend, when looked at objectively, as being in the interest of the licensee; and
              (c) a person has failed to declare a personal interest that has a material impact in terms of the person's relationship with the licensee.
              October 07

          • HC-2.3 HC-2.3 Interpretative Guidance on 'Fit and Proper' Requirement[versions up to October 2010]

            • HC-2.3.1 [versions up to October 2010]

              In assessing a person's fitness and propriety, the CBB will consider previous professional and personal conduct (in Bahrain or elsewhere) including, but not limited to, the following:

              (a) the propriety of a person's conduct, whether or not such conduct resulted in a criminal offence being committed, the contravention of a law or regulation, or the institution of legal or disciplinary proceedings;
              (b) a conviction or finding of guilt in respect of any offence, other than a minor traffic offence, by any court or competent jurisdiction;
              (c) any adverse finding in a civil action by any court or competent jurisdiction, relating to fraud, misfeasance or other misconduct in connection with the formation or management of a corporation or partnership;
              (d) whether the person has been the subject of any disciplinary proceeding by any government authority, regulatory agency or professional body or association;
              (e) the contravention of any financial services legislation or regulation;
              (f) whether the person has ever been refused a license, authorisation, registration or other authority;
              (g) dismissal or a request to resign from any office or employment;
              (h) disqualification by a court, regulator or other competent body, as a Director or as a manager of a corporation;
              (i) whether the person has been a Director, partner or manager of a corporation or partnership which has gone into liquidation or administration or where one or more partners have been declared bankrupt whilst the person was connected with that partnership;
              (j) the extent to which the person has been truthful and open with supervisors;
              (k) the extent to which the person has appropriate professional and other qualifications for the controlled function in question;
              (l) the extent to which the person has sufficient experience, or is otherwise able to perform the functions of the controlled function in question;
              (m) whether the person has ever been adjudged bankrupt, entered into any arrangement with creditors in relation to the inability to pay due debts, or failed to satisfy a judgement debt under a court order.
              October 07

            • HC-2.3.2 [versions up to October 2010]

              With respect to HC-2.3.1.(b), (c), (d) and (e), the CBB will take into account the length of time since any such event occurred, as well as the seriousness of the matter in question.

              October 07

            • HC-2.3.3 [versions up to October 2010]

              Further guidance on the process for assessing a person's 'fit and proper' status is given in Module EN (Enforcement): see Chapter EN-8.

              October 07

          • HC-2.4 [This Section was deleted in 07/2006: it has been left blank.][versions up to October 2010]

        • HC-3 HC-3 Compliance officer/manager[versions up to October 2010]

          • HC-3.1 HC-3.1 Introduction[versions up to October 2010]

            • HC-3.1.1 [versions up to October 2010]

              In order to promote best practice with respect to banks' internal systems and controls and international banking supervision, the Central Bank, in this Chapter, outlines its requirements for the compliance function of banks. The expression 'Compliance Function' in this Chapter is used to describe staff carrying out compliance duties.

              October 07

            • HC-3.1.2 [versions up to October 2010]

              The expression 'Compliance Risk', in this Chapter refers to the risk of legal or regulatory sanctions, material or financial loss, or loss to reputation a bank may suffer as a result of its failure to comply with laws, regulations, rules, reporting requirements, standards and codes of conduct applicable to its activities, rather than compliance with a bank's internal limits or procedures.

              October 07

            • HC-3.1.3 [versions up to October 2010]

              For further information and guidance on compliance risk and the compliance function, banks should refer to the Basel Committee publication, 'Compliance and the compliance function in banks' (www.bis.org/publ April 2005). The Central Bank expects banks to carry out a review of their compliance with the principles in this paper on a regular basis (either by way of a self-assessment or by way of a review by the internal or external audit function).

              October 07

          • HC-3.2 HC-3.2 Requirement for and approval of a compliance officer/manager[versions up to October 2010]

            • HC-3.2.1 [versions up to October 2010]

              All banks must appoint a senior member of staff with responsibility for the management of compliance risk as their Compliance Officer/Manager.

              October 07

            • HC-3.2.2 [versions up to October 2010]

              The compliance function must be independent (i.e. it must not be placed in a position where its other duties or responsibilities may cause a conflict of interest with its compliance risk management responsibilities). Therefore the compliance function must be separate from the internal audit function. The compliance officer or manager may however, perform other limited related compliance roles (e.g. the MLRO or legal advisor), subject to the Central Bank's prior approval.

              October 07

            • HC-3.2.3 [versions up to October 2010]

              The compliance officer/manager must be appropriately qualified and experienced and the compliance function must have adequate resources to carry out its functions effectively.

              October 07

            • HC-3.2.4 [versions up to October 2010]

              The appointment of a compliance manager/officer requires the Central Bank's prior approval and the submission of the appointee's Personal Questionnaire (Appendix LR 2) and Curriculum Vitae to the Central Bank. The bank must also outline how the compliance function fits into the bank's senior management reporting structure, and must give details of relevant reporting lines within the bank.

              October 07

            • HC-3.2.5 [versions up to October 2010]

              In the case of locally incorporated banks, the compliance officer/manager must have access to the Board of Directors in addition to the senior management.

              October 07

        • HC-4 [This Chapter deleted 07/2006 – left blank.][versions up to October 2010]

      • HC HC High-Level Controls [Versions Up To April 2023]

        • HC-A HC-A Introduction

          • HC-A.1 HC-A.1 Purpose

            • Executive Summary

              • HC-A.1.1

                This Module presents requirements that have to be met by Islamic bank licensees with respect to:

                (a) Corporate governance principles issued by the Ministry of Industry and Commerce as "The Corporate Governance Code"; and
                (b) International best practice corporate governance standards set by bodies such as the Basel Committee for Banking Supervision; and
                (c) Related high-level controls and policies.
                Amended: April 2011
                October 2010

              • HC-A.1.2

                The Principles referred to in this Module are in line with the Principles relating to the Corporate Governance Code issued by the Ministry of Industry and Commerce.

                October 2010

              • HC-A.1.3

                The purpose of the Module is to establish best practice corporate principles in Bahrain, and to provide protection for investors and other Islamic bank licensee's stakeholders through compliance with those principles.

                October 2010

              • HC-A.1.4

                Whilst the Module follows best practice, it is nevertheless considered as the minimum standard to be applied. This Module also includes additional rules and guidance issued by the CBB prior to the publication of the Code and previously contained in Module HC.

                October 2010

            • Structure of this Module

              • HC-A.1.5

                This Module follows the structure of the Corporate Governance Code and each Chapter deals with one of the nine Principles of corporate governance. The numbered directives included in the Code are Rules for purposes of this Module. Recommendations under the Code have been included as guidance. However, where the previous version of Module HC had a similar recommendation as a Rule, the Module retains this Paragraph as a Rule.

                October 2010

              • HC-A.1.6

                The Module also incorporates other high-level controls and policies that apply in particular to Islamic bank licensees.

                October 2010

              • HC-A.1.7

                All references in this Module to 'he' or 'his' shall, unless the context otherwise requires, be construed as also being references to 'she' and 'her'.

                October 2010

            • The Comply or Explain Principle

              • HC-A.1.8

                This Module is issued as a Directive (as amended from time to time) in accordance with Article 38 of the Central Bank of Bahrain and Financial Institutions Law 2006 ('CBB Law'). In common with other Rulebook Modules, this Module contains a mixture of Rules and Guidance (See Module UG-1.2 for detailed explanation of Rules and Guidance). All Rulebook content that is categorised as a Rule must be complied with by those to whom the content is addressed. Other parts of this Module are Guidance; nonetheless every Islamic bank licensee to whom Module HC applies, is expected to comply with recommendations made as Guidance in Module HC or explain its noncompliance in the Annual Report in accordance with Subparagraph PD-1.3.10(x) and to the CBB (see Chapter HC-8).

                Amended: April 2012
                Amended: January 2011
                October 2010

            • Monitoring and Enforcement of Module HC

              • HC-A.1.9

                Disclosure and transparency are underlying principles of Module HC. Disclosure is crucial to allow outside monitoring to function effectively. This Module looks to a combined monitoring system relying on the Board, the Islamic bank licensee's shareholders and the CBB.

                October 2010

              • HC-A.1.10

                It is the Board's responsibility to see to the accuracy and completeness of the Islamic bank licensee's corporate governance guidelines and compliance with Module HC. Failure to comply with this Module is subject to enforcement measures as outlined in Module EN (Enforcement).

                October 2010

            • Legal Basis

              • HC-A.1.11

                This Module contains the CBB's Directive (as amended from time to time) relating to high-level controls and is issued under the powers available to the CBB under Article 38 of the Central Bank of Bahrain and Financial Institutions Law 2006 ('CBB Law'). The Directive in this Module is applicable to Islamic bank licensees (including their approved persons).

                Amended: January 2011
                October 2010

              • HC-A.1.12

                For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1.

                October 2010

            • Effective Date

              • HC-A.1.13

                The previous version of Module HC is applicable until 31st December 2010. This updated Module issued in October 2010, is effective on 1st January 2011. All Islamic bank licensees to which Module HC applies should be in full compliance by the financial year end 2011. At every Islamic bank licensee's annual shareholder meeting held after 1st January 2011, corporate governance should be an item on the agenda for information and any questions from shareholders regarding the Islamic bank licensee's governance. Where possible, the Islamic bank licensee should also have corporate governance guidelines in place at that time and should have a "comply or explain" report as described in Paragraph HC-A.1.8.

                October 2010

          • HC-A.2 HC-A.2 Module History

            • HC-A.2.1

              This Module was first issued in June 2004 by the BMA and updated in October 2007 to reflect the switch to the CBB. Following the issuance of the Corporate Governance Code by the Ministry of Industry and Commerce in March 2010, the Module was amended in October 2010 to be in line with the new Corporate Governance Code and to include previous requirements that were in place in the originally issued Module HC. Any material changes that have subsequently been made to this Module are annotated with the calendar quarter date in which the change was made: Chapter UG-3 provides further details on Rulebook maintenance and version control.

              October 2010

            • HC-A.2.2

              A list of recent changes made to this Module is detailed in the table below:

              Module Ref. Change Date Description of Changes
              HC-1 to HC-8 10/2010 Amendments due to introduction of new MOIC Corporate Governance Code.
              HC-1.3 10/2010 Prohibition of proxies and requirement to attend 75% of Board meetings in a financial year.
              HC-A.1.8 and HC-A.1.11 01/2011 Clarified legal basis.
              HC-1.3.8 01/2011 Corrected cross reference.
              HC-2.2.4, 2.2.5 and 3.2.1 01/2011 Corrected cross references.
              HC-2.3.2 01/2011 Corrected cross reference; reference changed to connected persons.
              Appendix C 01/2011 Corrected cross reference.
              Appendix A 04/2011 Clarified membership of audit committee to be in line with Rule HC-3.2.1.
              HC-6.2.1 10/2011 Clarified management structure.
              HC-B.2.2 01/2012 Clarified language related to corporate governance.
              HC-1.2.8 and HC-1.5.3 01/2012 Clarified that the Chairman of the Board may delegate specific duties dealt with in these Paragraphs.
              HC-1.3.12 01/2012 Amended Rule on Directorships.
              HC-1.9.1 01/2012 Deleted last sentence to be in line with other Volumes of the CBB Rulebook.
              HC-3.2.1(a) and HC-5.6.6 01/2012 Amended to be in line with other Volumes of the CBB Rulebook.
              HC-6.3.1 01/2012 Clarified Rule by following corporate governance code wording.
              Appendix A 01/2012 Amended criteria for audit committee member.
              HC-A.1.8 04/2012 Clarified the reporting of noncompliance with Module HC in the Annual Report.
              HC-7.2.5 04/2012 Clarified Guidance on election of board members.
              Appendices A, B and C 04/2012 Amended requirement for written report on performance evaluation for various Board committees.
              Appendix A 04/2012 Included reference to compliance under Committee Duties and Responsibilities.
              HC-2.2.6A and HC-2.2.6B 07/2012 Added Rule and guidance dealing with benefits received from approved persons from projects and investments.
              Appendices A, B and C 07/2012 Clarified requirement for written report on performance evaluation for various Board committees.
              HC-1.3.7A 10/2012 Added requirement on minimum number of Board meetings to take place in the Kingdom of Bahrain to be consistent with other Volumes of the CBB Rulebook.
              HC-2.2.6A 10/2012 Clarified Rule dealing with benefits received from approved persons from projects and investments.
              Appendix A 10/2012 Corrected minor typo.
              HC-2.2.2 and HC-2.4.1 01/2013 Clarified scope of application for Rules.
              HC-2.2.6A, HC-5 and Appendix C 01/2014 Amendments due to new rules on sound remuneration practices.
              HC-1.2.6 04/2014 Clarified CBB's requirements for proposed changes to strategy and/or corporate plans.
              HC-5.2, HC-5.4 and HC-5.5 07/2014 Updated Rules on remuneration.
              HC-1.2.11 10/2014 Corrected cross reference.
              HC-1.3.10 10/2014 Corrected typo.
              HC-6.4.3 10/2014 Clarified self assessment of compliance function.
              HC-5.4.2 01/2015 Clarified application of remuneration rules for Bahrain operations.
              HC-5.4.5 01/2015 Paragraph deleted.
              HC-5.5.2 04/2015 Clarified cap on board of directors' remuneration as per Article 188 of the Company Law.
              HC-5.4.3A 07/2015 Amended to allow for CBB-approved consultancy firm to prepare report on the bank's compliance with the remuneration Rules outlined in Chapter HC-5.
              HC-2.3.3 04/2016 Added a requirement for the Islamic bank licensee to have in place a board approved policy on the employment of relatives of approved persons.
              HC-2.4.1A 04/2016 Added the requirement to disclose to the board on annual basis relatives of any approved persons occupying controlled functions.
              HC-7.2 04/2016 Added requirements dealing with shareholders' meetings.
              HC-2.3 and HC-2.4 07/2016 Clarified application of rules to overseas conventional bank licensees
              HC-5.4.30(a) and HC-5.4.30A 10/2016 Amended Standard for all Remuneration
              HC-5.2.1 01/2017 Amendment in sub-paragraph (b)
              HC-7.2.4 04/2017 Amended paragraph on website requirement.
              HC-8.2.1 04/2017 Amended sub-paragraph (b) on website requirement.
              HC-7.2.3A 07/2017 Amended paragraph to be in line with Article (199) of the Commercial Companies Law.
              HC-6.5 04/2018 Added new Section on Internal Audit
              HC-1.8.1 07/2018 Amended paragraph to be consistent with HC-6.6.
              HC-6.6 07/2018 Added new Section on Risk Management
              HC-6.4 01/2019 Amended Section and added new requirements on compliance.
              HC-B.1.2 04/2019 Amended Paragraph.
              HC-2.3.4 04/2019 Amended Paragraph.
              HC-2.4.1B 04/2019 Amended Paragraph.
              HC-5.4.4 04/2019 Amended Paragraph.
              HC-6.6.2A 10/2019 Added a new Paragraph on branches of foreign bank licensees.
              HC-6.6.6 10/2019 Deleted Paragraph.
              HC-6.6.7 10/2019 Amended Paragraph on branches of foreign bank licensees.
              HC-1.4.11 01/2020 Added a new Paragraph on independent directors.
              HC-1.4.12 01/2020 Added a new Paragraph on termination of Board membership of a retired, terminated CEO.
              HC-6.4.7 & HC-6.4.10 01/2020 Amended Paragraphs on policy and procedures approval.
              HC-5.4.9A  04/2020  Added a new Paragraph on KPIs compliance with AML/CFT requirements.
              HC-6.2.1  04/2020  Amended Paragraph on reporting line.
              HC-5.4.4 01/2021 Amended reference in Paragraph.
              HC-6.6.33 01/2022 Amended Paragraph.
              HC-6.6.34 01/2022 Amended Paragraph.
              HC-6.6.35 01/2022 Added a new Paragraph on the independent third-party review.
              HC-6.6.36 01/2022 Added a new Paragraph on the independent review reports.

        • HC-B HC-B Scope of Application

          • HC-B.1 HC-B.1 Scope of Application

            • HC-B.1.1

              The contents of this Module — unless otherwise stated — apply to all Islamic bank licensees, incorporated under the Legislative Decree No. 21 of 2001, with respect to promulgating the Commercial Companies Law ('Company Law').

              October 2010

            • HC-B.1.2

              Branches of foreign bank licensees must satisfy the CBB that equivalent arrangements are in place at the parent entity level, and that these arrangements provide for effective high-level controls over activities conducted under the Bahrain license.

              Amended: April 2019
              October 2010

          • HC-B.2 HC-B.2 Subsidiaries and Foreign Branches

            • HC-B.2.1

              Bahraini Islamic bank licensees must ensure that, as a minimum, the same or equivalent provisions of this Module apply to their foreign branches, located outside the Kingdom of Bahrain, such that these are also subject to effective high-level controls. In instances where local jurisdictional requirements are more stringent than those applicable in this Module, the local requirements are to be applied.

              October 2010

            • HC-B.2.2

              Bahraini Islamic bank licensees must satisfy the CBB that financial services activities conducted in subsidiaries and other group members are subject to the same or equivalent arrangements for ensuring effective corporate governance over their activities.

              Amended: January 2012
              October 2010

            • HC-B.2.3

              Where an Islamic bank licensee is unable to satisfy the CBB that its subsidiaries and other group members are subject to the same or equivalent arrangements, the CBB will assess the potential impact of risks — both financial and reputational — to the licensee arising from inadequate high-level controls in the rest of the group of which it is a member. In such instances, the CBB may impose restrictions on dealings between the licensee and other group members. Where weaknesses in controls are assessed by the CBB to pose a major threat to the stability of the licensee, then its authorisation may be called into question.

              October 2010

        • HC-1 HC-1 The Board

          • HC-1.1 HC-1.1 Principle

            • HC-1.1.1

              All Bahraini Islamic bank licensees must be headed by an effective, collegial and informed Board of Directors ('the Board').

              October 2010

          • HC-1.2 HC-1.2 Role and Responsibilities

            • HC-1.2.1

              All directors must understand the Board's role and responsibilities under the Commercial Companies Law and any other laws or regulations that may govern their responsibilities from time to time. In particular:

              (a) The Board's role as distinct from the role of the shareholders (who elect the Board and whose interests the Board serves) and the role of officers (whom the Board appoints and oversees); and
              (b) The Board's fiduciary duties of care and loyalty to the Islamic bank licensee and the shareholders (see HC-2.1).
              October 2010

            • HC-1.2.2

              The Board's role and responsibilities include but are not limited to:

              (a) The overall business performance and strategy for the Islamic bank licensee;
              (b) Causing financial statements to be prepared which accurately disclose the Islamic bank licensee's financial position;
              (c) Monitoring management performance;
              (d) Convening and preparing the agenda for shareholder meetings;
              (e) Monitoring conflicts of interest and preventing abusive related party transactions;
              (f) Assuring equitable treatment of shareholders including minority shareholders; and
              (g) Establishing the objectives of the bank.
              October 2010

            • HC-1.2.3

              The precise functions reserved for the Board, and those delegated to management and committees will vary, dependent upon the business of the institution, its size and ownership structure. However, as a minimum, the Board must establish and maintain a statement of its responsibilities for:

              (a) The adoption and annual review of strategy;
              (b) The adoption and review of management structure and responsibilities;
              (c) The adoption and review of the systems and controls framework; and
              (d) Monitoring the implementation of strategy by management.
              Amended: April 2011
              October 2010

            • HC-1.2.4

              The directors are responsible both individually and collectively for performing the responsibilities outlined in HC-1.2.1 to HC-1.2.3. Although the Board may delegate certain functions to committees or management, it may not delegate its ultimate responsibility to ensure that an adequate, effective, comprehensive and transparent corporate governance framework is in place.

              October 2010

            • HC-1.2.5

              In its strategy review process under Paragraphs HC-1.2.3 a) and d), the Board must:

              (a) Review the bank's business plans and the inherent level of risk in these plans;
              (b) Assess the adequacy of capital to support the business risks of the bank;
              (c) Set performance objectives; and
              (d) Oversee major capital expenditures, divestitures and acquisitions.
              Amended: April 2011
              October 2010

            • HC-1.2.6

              Bahraini Islamic bank licensees must obtain the CBB's prior written approval for all major proposed changes to the strategy and/or corporate plan of the Bahraini Islamic bank licensee prior to implementation (see also Paragraph BR-5.2.8).

              Amended: April 2014
              October 2010

            • HC-1.2.7

              The Board is expected to have effective policies and processes in place for:

              (a) Approving budgets and reviewing performance against those budgets and key performance indicators; and
              (b) The management of the bank's compliance risk.
              Amended: April 2011
              October 2010

            • HC-1.2.8

              When a new director is inducted, the chairman of the Board, or the Islamic bank licensee's legal counsel or compliance officer, or other individual delegated by the chairman of the board, should review the Board's role and duties with that person, particularly covering legal and regulatory requirements and Module HC (see also HC-4.5.1).

              Amended: January 2012
              October 2010

            • HC-1.2.9

              The Islamic bank licensee must have a written appointment agreement with each director which recites the directors' powers, duties, responsibilities and accountabilities and other matters relating to his appointment including his term, the time commitment envisaged, the committee assignment if any, his remuneration and expense reimbursement entitlement, and his access to independent professional advice when that is needed.

              October 2010

            • Risk Recognition and Assessment

              • HC-1.2.10

                The Board is responsible for ensuring that the systems and controls framework, including the Board structure and organisational structure of the bank, is appropriate for the bank's business and associated risks (see HC-1.2.3 c). The Board must ensure that collectively it has sufficient expertise to identify, understand and measure the significant risks to which the bank is exposed in its business activities.

                The Board must regularly assess the systems and controls framework of the bank. In its assessments, the Board must demonstrate to the CBB that:

                a) The bank's operations, individually and collectively are measured, monitored and controlled by appropriate, effective and prudent risk management systems commensurate with the scope of the bank's activities;
                b) The bank's operations are supported by an appropriate control environment. The compliance, risk management and financial reporting functions must be adequately resourced, independent of business lines and must be run by individuals not involved with the day-to-day running of the various business areas. The Board must additionally ensure that management develops, implements and oversees the effectiveness of comprehensive know your customer standards, as well as on-going monitoring of accounts and transactions, in keeping with the requirements of relevant law, regulations and best practice (with particular regard to anti-money laundering measures). The control environment must maintain necessary client confidentiality and ensure that the privacy of the bank is not violated, and ensure that clients' rights and assets are properly safeguarded; and
                c) Where the Board has identified any significant issues related to the bank's adopted governance framework, appropriate and timely action is taken to address any identified adverse deviations from the requirements of this Module.
                October 2010

              • HC-1.2.11

                The Board must adopt a formal Board charter or other statement specifying matters which are reserved to it, which should include but need not be limited to the specific requirements and responsibilities of directors. This charter must cover the points in HC-1.2.1 to HC-1.2.10. Wherever possible, the documents referred to in HC-1.2.3 to HC-1.2.10 or a summary of responsibilities should be disclosed publicly, for example in the annual report, which must be submitted to the CBB in line with the requirements of Module BR.

                Amended: October 2014
                October 2010

          • HC-1.3 HC-1.3 Decision Making Process

            • HC-1.3.1

              The Board must be collegial and deliberative, to gain the benefit of each individual director's judgment and experience.

              October 2010

            • HC-1.3.2

              The chairman must take an active lead in promoting mutual trust, open discussion, constructive dissent and support for decisions after they have been made.

              October 2010

            • HC-1.3.3

              The Board must meet frequently to enable it to discharge its responsibilities effectively but in no event less than four times a year. All directors must attend the meetings whenever possible and the directors must maintain informal communication between meetings.

              October 2010

            • HC-1.3.4

              Individual Board members must attend at least 75% of all Board meetings in a given financial year to enable the Board to discharge its responsibilities effectively (see table below). Voting and attendance proxies for Board meetings are prohibited at all times.

              Meetings per year 75% Attendance requirement
              4 3
              5 4
              6 5
              7 5
              8 6
              9 7
              10 8
              October 2010

            • HC-1.3.5

              The absence of Board members at Board and committee meetings must be noted in the meeting minutes. In addition, Board attendance percentage must be reported during any general assembly meeting when Board members stand for re-election (e.g. Board member XYZ attended 95% of scheduled meetings this year).

              October 2010

            • HC-1.3.6

              In the event that a Board member has not attended at least 75% of Board meetings in any given financial year, the bank must immediately notify the CBB indicating which member has failed to satisfy this requirement, his level of attendance and any mitigating circumstances affecting his non-attendance. The CBB shall then consider the matter and determine whether disciplinary action, including disqualification of that Board member pursuant to Article 65 of the CBB Law, is appropriate. Unless there are exceptional circumstances, it is likely that the CBB will take disciplinary action.

              October 2010

            • HC-1.3.7

              To meet its obligations under Rule HC-1.3.3 above, the full Board should meet once every quarter to address the Board's responsibilities for management oversight and performance monitoring. Furthermore, Board rules should require members to step down if they are not actively participating in Board meetings. Board members are reminded that non attendance at Board meetings does not absolve them of their responsibilities as directors. It is important that each individual director should allocate adequate time and effort to discharge his responsibilities. All Directors are expected to contribute actively to the work of the Board in order to discharge their responsibilities and should make every effort to attend Board meetings where major issues are to be discussed. Banks are encouraged to amend their Articles of Association to provide for telephonic and videoconference meetings. Participation in Board meetings by means of video or telephone conferencing is regarded as attendance and may be recorded as such.

              October 2010

            • HC-1.3.7A

              At least half the Board meetings of Bahraini Islamic bank licensees in any twelve-month period must be held in the Kingdom of Bahrain.

              Added: October 2012

            • HC-1.3.8

              All locally incorporated banks are required to submit, on an annual basis, as an attachment to the year-end quarterly PIR, a report recording the meetings during the year by their Board of Directors. For a sample report, refer to Appendix BR-6, under Part B/CBB Reporting Forms of Volume 2.

              Amended: January 2011
              October 2010

            • HC-1.3.9

              The Chairman is responsible for the leadership of the Board, and for the efficient functioning of the Board. The chairman must ensure that all directors receive an agenda, minutes of prior meetings, and adequate background information in writing before each Board meeting and when necessary between meetings. Therefore it is vital that the Chairman commit sufficient time to perform his role effectively. All directors must receive the same Board information. At the same time, directors have a legal duty to inform themselves and they must ensure that they receive adequate and timely information and must study it carefully (See also HC-7 for other duties of the Chairman).

              October 2010

            • HC-1.3.10

              The Board should have no more than 15 members, and should regularly review its size and composition to ensure that it is small enough for efficient decision making yet large enough to have members who can contribute from different specialties and viewpoints. The Board should recommend changes in Board size to the shareholders when a needed change requires amendment of the Islamic bank licensee's Memorandum of Association.

              Amended: October 2014
              October 2010

            • HC-1.3.11

              Potential non-executive directors should be made aware of their duties before their nomination, particularly as to the time commitment required. The Nominating Committee should regularly review the time commitment required from each non-executive director and should require each non-executive director to inform the Committee before he accepts any Board appointments to another company.

              October 2010

            • HC-1.3.12

              No Board member may have more than one Directorship of a Retail Bank or a Wholesale Bank. This means an effective cap of a maximum of two Directorships of banks inside Bahrain. Two Directorships of licensees within the same Category (e.g. 'Retail Bank') are not permitted. Banks may approach the CBB for exemption from this limit where the Directorships concern banks or financial institutions within the same group.

              Amended: January 2012
              October 2010

            • HC-1.3.13

              One person should not hold more than three directorships in public companies in Bahrain with the provision that no conflict of interest may exist, and the Board should not propose the election or reelection of any director who does.

              October 2010

          • HC-1.4 HC-1.4 Independence of Judgment

            • HC-1.4.1

              Every director must bring independent judgment to bear in decision-making. No individual or group of directors must dominate the Board's decision-making and no one individual should have unfettered powers of decision.

              October 2010

            • HC-1.4.2

              Executive directors must provide the Board with all relevant business and financial information within their cognizance, and must recognise that their role as a director is different from their role as a member of management (see HC-2.3.2).

              October 2010

            • HC-1.4.3

              Non-executive directors must be fully independent of management and must constructively scrutinise and challenge management including the management performance of executive directors.

              October 2010

            • HC-1.4.4

              Where there is the potential for conflict of interest, or there is a need for impartiality, the Board must assign a sufficient number of independent Board members capable of exercising independent judgement. At a minimum, all locally incorporated banks must appoint one independent director.

              October 2010

            • HC-1.4.5

              At least half of an Islamic bank licensee's Board should be non-executive directors and at least three of those persons should be independent directors. (Note the exception for controlled companies in Paragraph HC-1.5.2.)

              October 2010

            • HC-1.4.6

              The chairman of the Board should be an independent director, so that there will be an appropriate balance of power and greater capacity of the Board for independent decision making.

              October 2010

            • HC-1.4.7

              The Chairman and/or Deputy Chairman must not be the same person as the Chief Executive Officer.

              October 2010

            • HC-1.4.8

              The Chairman must not be an Executive Director.

              October 2010

            • HC-1.4.9

              The Board should review the independence of each director at least annually in light of interests disclosed by them, and their conduct. Each independent director shall provide the Board with all necessary and updated information for this purpose.

              October 2010

            • HC-1.4.10

              To facilitate free and open communication among independent directors, each Board meeting should be preceded or followed with a session at which only independent directors are present, except as may otherwise be determined by the independent directors themselves.

              October 2010

            • HC-1.4.11

              Where an independent director has served three consecutive terms on the board, such director will lose his/her independence status and must not be classified as an independent director if reappointed.

              Added: January 2020

            • HC-1.4.12

              Where a Chief Executive Officer of a Bank, who is also a Board member, no longer occupies the CEO position, whether due to resignation, retirement or termination, his/her Board Membership must also be immediately terminated.

              Added: January 2020

          • HC-1.5 HC-1.5 Representation of all Shareholders

            • HC-1.5.1

              Each director must consider himself as representing all shareholders and must act accordingly. The Board must avoid having representatives of specific groups or interests within its membership and must not allow itself to become a battleground of vested interests. If the Islamic bank licensee has controllers (as defined by Module GR-5.2) (or a group of controllers acting in concert), the latter must recognise its or their specific responsibility to the other shareholders, which is direct and is separate from that of the Board of directors.

              October 2010

            • HC-1.5.2

              In Islamic bank licensees with a controller, at least one-third of the Board must be independent directors. Minority shareholders must generally look to independent directors' diligent regard for their interests, in preference to seeking specific representation on the Board.

              October 2010

            • HC-1.5.3

              In Islamic bank licensees with controllers, both controllers and other shareholders should be aware of controllers' specific responsibilities regarding their duty of loyalty to the Islamic bank licensee and conflicts of interest (see Chapter HC-2) and also of rights that minority shareholders may have to elect specific directors under the Company Law or if the Islamic bank licensee has adopted cumulative voting for directors. The chairman of the board or other individual delegated by the chairman of the board should take the lead in explaining this with the help of the Islamic bank licensee's lawyers.

              Amended: January 2012
              October 2010

          • HC-1.6 HC-1.6 Directors' Access to Independent Advice

            • HC-1.6.1

              The Board must ensure by way of formal procedures that individual directors have access to independent legal or other professional advice at the Islamic bank licensee's expense whenever they judge this necessary to discharge their responsibilities as directors and this must be in accordance with the Islamic bank licensee's policy approved by the Board.

              October 2010

            • HC-1.6.2

              Individual directors must also have access to the Islamic bank licensee's corporate secretary, who must have responsibility for reporting to the Board on Board procedures. Both the appointment and removal of the corporate secretary must be a matter for the Board as a whole, not for the CEO or any other officer.

              October 2010

            • HC-1.6.3

              Whenever a director has serious concerns which cannot be resolved concerning the running of the Islamic bank licensee or a proposed action, he should consider seeking independent advice and should ensure that the concerns are recorded in the Board minutes and that any dissent from a Board action is noted or delivered in writing.

              October 2010

            • HC-1.6.4

              Upon resignation, a non-executive director should provide a written statement to the chairman, for circulation to the Board, if he has any concerns such as those in Paragraph HC-1.6.3.

              October 2010

          • HC-1.7 HC-1.7 Directors' Communication with Management

            • HC-1.7.1

              The Board must encourage participation by management regarding matters the Board is considering, and also by management members who by reason of responsibilities or succession, the CEO believes should have exposure to the directors.

              October 2010

            • HC-1.7.2

              Non-executive directors should have free access to the Islamic bank licensee's management beyond that provided in Board meetings. Such access should be through the Chairman of the Audit Committee or CEO. The Board should make this policy known to management to alleviate any management concerns about a director's authority in this regard.

              October 2010

          • HC-1.8 HC-1.8 Committees of the Board

            • HC-1.8.1

              The Board must establish Audit, Remuneration, Nominating and Risk Committees described elsewhere in this Module.

              Amended: July 2018
              October 2010

            • HC-1.8.2

              The Board should establish a corporate governance committee of at least three independent members which should be responsible for developing and recommending changes from time to time in the Islamic bank licensee's corporate governance policy framework.

              Amended: January 2012
              October 2010

            • HC-1.8.3

              The Board or a committee may invite non-directors to participate in, but not vote at, a committee's meetings so that the committee may gain the benefit of their advice and expertise in financial or other areas.

              October 2010

            • HC-1.8.4

              Committees must act only within their mandates and therefore the Board must not allow any committee to dominate or effectively replace the whole Board in its decision-making responsibility.

              October 2010

            • HC-1.8.5

              Committees may be combined provided that no conflict of interest might arise between the duties of such committees, subject to CBB prior approval.

              October 2010

            • HC-1.8.6

              Every committee must have a formal written charter similar in form to the model charters which are set forth in Appendices A, B and C of this Module for the Audit, Nominating and Remuneration Committees.

              October 2010

            • HC-1.8.7

              Where committees are set up, they should keep full minutes of their activities and meet regularly to fulfil their mandates. For larger banks that deal with the general public, committees can be a more efficient mechanism to assist the main Board in its monitoring and control of the activities of the bank. The establishment of committees should not mean that the role of the Board is diminished, or that the Board becomes fragmented.

              October 2010

          • HC-1.9 HC-1.9 Evaluation of the Board and Each Committee

            • HC-1.9.1

              At least annually the Board must conduct an evaluation of its performance and the performance of each committee and each individual director.

              Amended: January 2012
              October 2010

            • HC-1.9.2

              The evaluation process must include:

              (a) Assessing how the Board operates, especially in light of Chapter HC-1;
              (b) Evaluating the performance of each committee in light of its specific purposes and responsibilities, which shall include review of the self-evaluations undertaken by each committee;
              (c) Reviewing each director's work, his attendance at Board and committee meetings, and his constructive involvement in discussions and decision making;
              (d) Reviewing the Board's current composition against its desired composition with a view toward maintaining an appropriate balance of skills and experience and a view toward planned and progressive refreshing of the Board; and
              (e) Recommendations for new Directors to replace long-standing members or those members whose contribution to the bank or its committees (such as the audit committee) is not adequate.
              October 2010

            • HC-1.9.3

              While the evaluation is a responsibility of the entire Board, it should be organised and assisted by an internal Board committee and, when appropriate, with the help of external experts.

              October 2010

            • HC-1.9.4

              The Board should report to the shareholders, at each annual shareholder meeting, that evaluations have been done and report its findings.

              October 2010

        • HC-2 HC-2 Approved Persons Loyalty

          • HC-2.1 HC-2.1 Principle

            • HC-2.1.1

              The approved persons must have full loyalty to the Islamic bank licensee.

              October 2010

          • HC-2.2 HC-2.2 Personal Accountability

            • HC-2.2.1

              Banks are subject to a wide variety of laws, regulations and codes of best practice that directly affect the conduct of business. Such laws involve the Bahraini Stock Exchange Law, the Labour Law, the Commercial Companies Law, occupational health and safety, even environment and pollution laws, as well as the Law, codes of conduct and regulations of the Central Bank. The Board sets the 'tone at the top' of a bank, and has a responsibility to oversee compliance with these various requirements. The Board should ensure that the staff conduct their affairs with a high degree of integrity, taking note of applicable laws, codes and regulations.

              October 2010

            • Corporate Ethics, Conflicts of Interest and Code of Conduct

              • HC-2.2.2

                Each member of the board must understand that under the Company Law he is personally accountable to the Islamic bank licensee and the shareholders if he violates his legal duty of loyalty to the Islamic bank licensee, and that he can be personally sued by the Islamic bank licensee or the shareholders for such violations.

                Amended: January 2013
                October 2010

              • HC-2.2.3

                The Board must establish corporate standards for approved persons and employees. This requirement should be met by way of a documented and published code of conduct or similar document. These standards must be communicated throughout the bank, so that the approved persons and staff understand the importance of conducting business based on good corporate governance values and understand their accountabilities to the various stakeholders of the licensee. Banks' approved persons and staff must be informed of and be required to fulfil their fiduciary responsibilities to the bank's stakeholders.

                October 2010

              • HC-2.2.4

                An internal code of conduct is separate from the business strategy of a bank. A code of conduct should outline the practices that approved persons and staff should follow in performing their duties. Banks may wish to use procedures and policies to complement their codes of conduct. The suggested contents of a code of conduct are covered below:

                (a) Commitment by the Board and management to the code. The code of conduct should be linked to the objectives of the bank, and its responsibilities and undertakings to customers, shareholders, staff and the wider community (see HC-2.2.3 and HC-2.2.4). The code should give examples or expectations of honesty, integrity, leadership and professionalism;
                (b) Commitment to the law and best practice standards. This commitment would include commitments to following accounting standards, industry best practice (such as ensuring that information to clients is clear, fair, and not misleading), transparency, and rules concerning potential conflicts of interest (see HC-2.3);
                (c) Employment practices. This would include rules concerning health and safety of employees, training, policies on the acceptance and giving of business courtesies, prohibition on the offering and acceptance of bribes, and potential misuse of Islamic bank licensee's assets;
                (d) How the Islamic bank licensee deals with disputes and complaints from clients and monitors compliance with the code; and
                (e) Confidentiality. Disclosure of client or bank information should be prohibited, except where disclosure is required by law (see HC-1.2.10 b).
                Amended: April 2011
                Amended: January 2011
                October 2010

              • HC-2.2.5

                The Central Bank expects that the Board and its members individually and collectively:

                (a) Act with honesty, integrity and in good faith, with due diligence and care, with a view to the best interest of the bank and its shareholders and other stakeholders (see Paragraphs HC-2.2.2 to HC-2.2.4);
                (b) Act within the scope of their responsibilities (which should be clearly defined — see HC-1.2.9 and HC-1.2.11 and not participate in the day-to-day management of the bank;
                (c) Have a proper understanding of, and competence to deal with the affairs and products of the bank and devote sufficient time to their responsibilities; and
                (d) To independently assess and question the policies, processes and procedures of the bank, with the intent to identify and initiate management action on issues requiring improvement. (i.e. to act as checks and balances on management).
                Amended: April 2011
                Amended: January 2011
                October 2010

              • HC-2.2.6

                The duty of loyalty (mentioned in Paragraph HC-2.2.2 above) includes a duty not to use property of the Islamic bank licensee for his personal needs as though it was his own property, not to disclose confidential information of the Islamic bank licensee or use it for his personal profit, not to take business opportunities of the Islamic bank licensee for himself, not to compete in business with the Islamic bank licensee, and to serve the Islamic bank licensee's interest in any transactions with a company in which he has a personal interest.

                October 2010

              • HC-2.2.6A

                [This Paragraph was moved to Paragraph HC-5.4.39].

                Amended: January 2014
                Amended: October 2012
                Added: July 2012

              • HC-2.2.6B

                [This Paragraph was moved to Paragraph HC-5.4.40].

                Amended: January 2014
                Added: July 2012

              • HC-2.2.7

                For purposes of Paragraph HC-2.2.6, an approved person should be considered to have a "personal interest" in a transaction with a company if:

                (a) He himself; or
                (b) A member of his family (i.e. spouse, father, mother, sons, daughters, brothers or sisters); or
                (c) Another company of which he is a director or controller,

                is a party to the transaction or has a material financial interest in the transaction. (Transactions and interests which are de minimis in value should not be included.)

                October 2010

          • HC-2.3 HC-2.3 Avoidance of Conflicts of Interest

            • HC-2.3.1

              Each approved person must make every practicable effort to arrange his personal and business affairs to avoid a conflict of interest with the Islamic bank licensee.

              October 2010

            • HC-2.3.2

              The Board must establish and disseminate to its members and management, policies and procedures for the identification, reporting, disclosure, prevention, or strict limitation of potential conflicts of interest. It is senior management's responsibility to implement these policies. Rules concerning connected party transactions and potential conflicts of interest may be dealt with in the Code of Conduct (see HC-2.2.4). In particular, the CBB requires that any decisions to enter into transactions, under which approved persons would have conflicts of interest that are material, should be formally and unanimously approved by the full Board. Best practice would dictate that an approved person must:

              (a) Not enter into competition with the bank;
              (b) Not demand or accept substantial gifts from the bank for himself or connected persons;
              (c) Not misuse the bank's' assets;
              (d) Not use the Islamic bank licensee's privileged information or take advantage of business opportunities to which the Islamic bank licensee is entitled, for himself or his associates; and
              (e) Absent themselves from any discussions or decision-making that involves a subject where they are incapable of providing objective advice, or which involves a subject or (proposed) transaction where a conflict of interest exists.
              Amended: April 2011
              Amended: January 2011
              October 2010

            • HC-2.3.3

              Bahraini Islamic bank licensees must have in place a board approved policy on the employment of relatives of approved persons and a summary of such policy must be disclosed in the annual report of the Bahraini Islamic bank licensee.

              Amended: July 2016
              Added: April 2016

            • HC-2.3.4

              Branches of foreign bank licensees must have in place a policy on the employment of relatives of approved persons pertaining to their Bahrain operations.

              Amended: April 2019
              Added: July 2016

          • HC-2.4 HC-2.4 Disclosure of Conflicts of Interest

            • HC-2.4.1

              Each approved person must inform the entire Board of (potential) conflicts of interest in their activities with, and commitments to other organisations as they arise. Board members must abstain from voting on the matter in accordance with the relevant provisions of the Company Law. This disclosure must include all material facts in the case of a contract or transaction involving the approved person. The approved persons must understand that any approval of a conflicted transaction is effective only if all material facts are known to the authorising persons and the conflicted person did not participate in the decision. In any case, all approved persons must declare in writing all of their other interests in other enterprises or activities (whether as a shareholder of above 5% of the voting capital of a company, a manager, or other form of significant participation) to the Board (or the Nominations or Audit Committees) on an annual basis.

              Amended: January 2013
              Amended: January 2011
              October 2010

            • HC-2.4.1A

              The chief executive/general manager of the Bahraini Islamic bank licensees must disclose to the board of directors on an annual basis those individuals who are occupying controlled functions and who are relatives of any approved persons within the Bahraini Islamic bank licensee.

              Amended: July 2016
              Added: April 2016

            • HC-2.4.1B

              The chief executive/general manager of the branch of foreign bank licensee must disclose to a designated officer at its head office or regional manager on an annual basis those individuals who are occupying controlled functions and who are relatives of any approved persons within the branch of foreign bank licensee.

              Amended: April 2019
              Added: July 2016

            • HC-2.4.2

              The Board of a Bahraini Islamic bank licensee should establish formal procedures for:

              (a) Periodic disclosure and updating of information by each approved person on his actual and potential conflicts of interest; and
              (b) Advance approval by directors or shareholders who do not have an interest in the transactions in which an Islamic bank licensee's approved person has a personal interest. The Board should require such advance approval in every case.
              Amended: July 2016
              October 2010

          • HC-2.5 HC-2.5 Disclosure of Conflicts of Interest to Shareholders

            • HC-2.5.1

              The Islamic bank licensee must disclose to its shareholders in the Annual Report any abstention from voting motivated by a conflict of interest and must disclose to its shareholders any authorisation of a conflict of interest contract or transaction in accordance with the Company Law.

              October 2010

        • HC-3 HC-3 Audit Committee and Financial Statements Certification

          • HC-3.1 HC-3.1 Principle

            • HC-3.1.1

              The Board must have rigorous controls for financial audit and reporting, internal control, and compliance with law.

              October 2010

          • HC-3.2 HC-3.2 Audit Committee

            • HC-3.2.1

              The Board must establish an audit committee of at least three directors of which the majority must be independent including the Chairman. The committee must:

              (a) Review the Islamic bank licensee's accounting and financial practices;
              (b) Review the integrity of the Islamic bank licensee's financial and internal controls and financial statements (particularly with reference to information passed to the Board — see HC-1.2.10). The information needs of the Board to perform its monitoring responsibilities must be defined in writing, and regularly monitored by the Audit Committee;
              (c) Review the Islamic bank licensee's compliance with legal requirements;
              (d) Recommend the appointment, compensation and oversight of the Islamic bank licensee's external auditor; and
              (e) Recommend the appointment of the internal auditor.
              Amended: January 2012
              Amended: January 2011
              October 2010

            • HC-3.2.2

              In its review of the systems and controls framework in Paragraph HC-3.2.1, the audit committee must:

              (a) Make effective use of the work of external and internal auditors. The audit committee must ensure the integrity of the bank's accounting and financial reporting systems through regular independent review (by internal and external audit). Audit findings must be used as an independent check on the information received from management about the bank's operations and performance and the effectiveness of internal controls; and
              (b) Make use of self-assessments, stress/scenario tests, and/or independent judgements made by external advisors. The Board should appoint supporting committees, and engage senior management to assist the audit committee in the oversight of risk management; and
              (c) Ensure that senior management have put in place appropriate systems of control for the business of the bank and the information needs of the Board; in particular, there must be appropriate systems and functions for identifying as well as for monitoring risk, the financial position of the bank, and compliance with applicable laws, regulations and best practice standards. The systems must produce information on a timely basis.
              October 2010

            • HC-3.2.3

              The Islamic bank licensee must set up an internal audit function, which reports directly to the Audit Committee and administratively to the CEO.

              October 2010

            • HC-3.2.4

              The CEO must not be a member of the audit committee.

              October 2010

          • HC-3.3 HC-3.3 Audit Committee Charter

            • HC-3.3.1

              The audit committee must adopt a written charter which shall, at a minimum, state the duties outlined in Paragraph HC-3.2.1 and the other matters included in Appendix A to this Module.

              October 2010

            • HC-3.3.2

              A majority of the audit committee must have the financial literacy qualifications stated in Appendix A.

              October 2010

            • HC-3.3.3

              The Board should adopt a "whistleblower" program under which employees can confidentially raise concerns about possible improprieties in financial or legal matters. Under the program, concerns may be communicated directly to any audit committee member or, alternatively, to an identified officer or employee who will report directly to the Audit Committee on this point.

              October 2010

          • HC-3.4 HC-3.4 CEO and CFO Certification of Financial Statements

            • HC-3.4.1

              To encourage management accountability for the financial statements required by the directors, the Islamic bank licensee's CEO and chief financial officer must state in writing to the audit committee and the Board as a whole that the Islamic bank licensee's interim and annual financial statements present a true and fair view, in all material respects, of the Islamic bank licensee's financial condition and results of operations in accordance with applicable accounting standards.

              October 2010

        • HC-4 HC-4 Appointment, Training and Evaluation of the Board

          • HC-4.1 HC-4.1 Principle

            • HC-4.1.1

              The Islamic bank licensee must have rigorous and transparent procedures for appointment, training and evaluation of the Board.

              October 2010

          • HC-4.2 HC-4.2 Nominating Committee

            • HC-4.2.1

              The Board must establish a Nominating Committee of at least three directors which must:

              (a) Identify persons qualified to become members of the Board of directors or Chief Executive Officer, Chief Financial Officer, Corporate Secretary and any other officers of the Islamic bank licensee considered appropriate by the Board, with the exception of the appointment of the internal auditor which shall be the responsibility of the Audit Committee in accordance with Paragraph HC-3.2.1 above; and
              (b) Make recommendations to the whole Board of directors including recommendations of candidates for Board membership to be included by the Board of directors on the agenda for the next annual shareholder meeting.
              October 2010

            • HC-4.2.2

              The committee must include only independent directors or, alternatively, only non-executive directors of whom a majority must be independent directors and the chairman must be an independent director. This is consistent with international best practice and it recognises that the Nominating Committee must exercise judgment free from personal career conflicts of interest.

              October 2010

          • HC-4.3 HC-4.3 Nominating Committee Charter

            • HC-4.3.1

              The Nominating Committee must adopt a formal written charter which must, at a minimum, state the duties outlined in Paragraph HC-4.2.1 and the other matters included in Appendix B to this Module.

              October 2010

          • HC-4.4 HC-4.4 Board Nominations to Shareholders

            • HC-4.4.1

              Each proposal by the Board to the shareholders for election or reelection of a director must be accompanied by a recommendation from the Board, a summary of the advice of the Nominating Committee, and the following specific information:

              (a) The term to be served, which may not exceed three years (but there need not be a limit on reelection for further terms);
              (b) Biographical details and professional qualifications;
              (c) In the case of an independent director, a statement that the Board has determined that the criteria of independent director have been met;
              (d) Any other directorships held;
              (e) Particulars of other positions which involve significant time commitments, and
              (f) Details of relationships between:
              (i) The candidate and the Islamic bank licensee, and
              (ii) The candidate and other directors of the Islamic bank licensee.
              October 2010

            • HC-4.4.2

              The chairman of the Board should confirm to shareholders when proposing re-election of a director that, following a formal performance evaluation, the person's performance continues to be effective and continues to demonstrate commitment to the role. Any term beyond six years (e.g. two three-year terms) for a director should be subject to particularly rigorous review, and should take into account the need for progressive refreshing of the Board. Serving more than six years is relevant to the determination of a non-executive director's independence.

              October 2010

          • HC-4.5 HC-4.5 Induction and Training of Directors

            • HC-4.5.1

              The chairman of the Board must ensure that each new director receives a formal and tailored induction to ensure his contribution to the Board from the beginning of his term. The induction must include meetings with senior management, visits to the Islamic bank licensee's facilities, presentations regarding strategic plans, significant financial, accounting and risk management issues, compliance programs, its internal and external auditors and legal counsel.

              October 2010

            • HC-4.5.2

              All continuing directors must be invited to attend orientation meetings and all directors must continually educate themselves as to the Islamic bank licensee's business and corporate governance.

              October 2010

            • HC-4.5.3

              Management, in consultation with the chairman of the Board, should hold programs and presentations to directors respecting the Islamic bank licensee's business and industry, which may include periodic attendance at conferences and management meetings. The Nominating Committee shall oversee directors' corporate governance educational activities.

              October 2010

        • HC-5 HC-5 Remuneration of Approved Persons and Material Risk-Takers

          • HC-5.1 HC-5.1 Principle

            • HC-5.1.1

              The Islamic bank licensee must remunerate approved persons and material risk-takers fairly and responsibly.

              Amended: January 2014
              October 2010

          • HC-5.2 HC-5.2 Role of the Board of Directors and Remuneration Committee

            • HC-5.2.1AA

              The board of directors must actively oversee the remuneration system s design and operation for approved persons as well as for material risk-takers. The CEO and senior management must not primarily control the remuneration system.

              Added: January 2014

            • HC-5.2.1

              The Board must establish a remuneration committee of at least three directors which must:

              (a) Review the Islamic bank licensee's remuneration policies for the approved persons and material risk-takers, which must be approved by the shareholders and be consistent with the corporate values and strategy of the bank;
              (b) Approve the remuneration package and amounts for each approved person and material risk-taker, as well as the total variable remuneration to be distributed, taking account of total remuneration including salaries, fees, expenses, bonuses and other employee benefits;
              (c) Approve, monitor and review the remuneration system to ensure the system operates as intended; and
              (d) Recommend Board member remuneration based on their attendance and performance and in compliance with Article 188 of the Company Law.
              Amended: January 2017
              Amended: July 2014
              Amended: January 2014
              October 2010

            • HC-5.2.1A

              In reviewing the remuneration system (see Subparagraph HC-5.2.1(c)), the remuneration committee should ensure that the system includes effective controls, including back testing and stress testing of the remuneration policy. The practical operation of the system should be regularly reviewed for compliance with regulations, internal policies and bank procedures. In addition, remuneration outcomes, risk measurements, and risk outcomes should be regularly reviewed by the Board for consistency with Board's approved risk appetite.

              Added: January 2014

            • HC-5.2.1B

              Stress testing or stressed measures might be used by banks to help ex-ante risk adjustments take into account severe but plausible scenarios, based on possible expected loss on loans, as an example. Due to the uncertainty of payoffs, there will always be a need for ex-post adjustments so as to back-test actual performance against risk assumptions.

              Added: January 2014

            • HC-5.2.1C

              As part of the duties noted under Paragraph HC-5.2.1, the remuneration committee must carefully evaluate practices by which remuneration is paid for potential future revenues whose timing and likelihood remain uncertain. It must demonstrate that its decisions are consistent with an assessment of the bank's financial condition and future prospects.

              Added: January 2014

            • HC-5.2.2

              The committee may be merged with the nominating committee.

              October 2010

          • HC-5.3 HC-5.3 Remuneration Committee Charter

            • HC-5.3.1

              The committee must adopt a written charter which must, at a minimum, state the duties in Paragraph HC-5.2.1 and other matters in Appendix C of this Module.

              October 2010

            • HC-5.3.1A

              Members of the remuneration committee must have independence of any risk taking function or committees.

              Added: January 2014

            • HC-5.3.2

              The committee should include only independent directors or, alternatively, only non-executive directors of whom a majority are independent directors and the chairman is an independent director. This is consistent with international best practice and it recognises that the remuneration committee must exercise judgment free from personal career conflicts of interest.

              October 2010

          • HC-5.4 HC-5.4 Standard for all Remuneration

            • HC-5.4.1

              Remuneration of approved persons and material risk-takers must be sufficient enough to attract, retain and motivate persons of the quality needed to run the Islamic bank licensee successfully, but the Islamic bank licensee must avoid paying more than is necessary for that purpose.

              Amended: January 2014
              October 2010

            • HC-5.4.2

              While this Section applies to all approved persons and material risk-takers for the Bahrain operations, the rules on the proportion of fixed and variable remuneration (Paragraph HC-5.4.30) as well as those rules related to the deferral of variable remuneration (Paragraphs HC-5.4.31 and HC-5.4.32) and the obligation to have part of the variable remuneration in shares (Paragraphs HC-5.4.33 and HC-5.4.34) apply only to:

              (a) Approved persons; or
              (b) Material risk-takers

              whose total annual remuneration (including all benefits) is in excess of BD100,000, unless the board of directors requires the application of these Rules to all staff.

              Amended: January 2015
              Amended: July 2014
              Added: January 2014

            • HC-5.4.3

              All policies for performance-based incentives should be approved by the shareholders, but the approval should be only of the plan itself and not of the grant to specific individuals of benefits under the plan.

              Added: January 2014

            • HC-5.4.3A

              As noted in Sections AU-3.7 and BR-4A.3, the external auditor or a CBB approved consultancy firm must undertake an annual review of the bank's compliance with the remuneration Rules outlined in this Chapter. The results of this review are to be submitted to the CBB within 3 months from the financial year end.

              Amended: July 2015
              Moved from HC-5.4.6 to HC-5.4.3A: January 2015
              Amended: October 2014
              Added: January 2014

            • Application to Branches of Foreign Banks

              • HC-5.4.4

                Banks operating as branches of foreign bank licensee in Bahrain must apply the most stringent set of remuneration rules to which they may be subject to. Such rules are:

                (a) The requirements imposed in Bahrain with respect to remuneration as outlined in Volume 2 CBB Rulebook; and
                (b) The requirements imposed by their home supervisor and head office.
                Amended: January 2021
                Amended: April 2019
                Added: January 2014

            • HC-5.4.5

              [This Paragraph was deleted in January 2015.]

              Deleted: January 2015
              Added: January 2014

            • HC-5.4.6

              [Moved to Paragraph HC-5.4.3A in January 2015.]

              Amended: January 2015
              Amended: October 2014
              Added: January 2014

            • Approved Persons in Risk Management, Internal Audit, Operations, Financial Controls, Internal Shari'a Review/Audit, AML and Compliance Functions

              • HC-5.4.7

                The bank's approved persons engaged in risk management, internal audit, operations, financial controls, internal Shari'a review/audit, AML and compliance functions must be independent, have appropriate authority, and be remunerated in a manner that is independent of the business areas they oversee and commensurate with their key role in the bank. Effective independence and appropriate authority of such staff are necessary to preserve the integrity of financial risk and management's influence on incentive remuneration.

                Amended: July 2014
                Added: January 2014

              • HC-5.4.8

                The performance measures of approved persons referred to in Paragraph HC-5.4.7 must be based principally on the achievement of the objectives and targets of their functions.

                Added: January 2014

              • HC-5.4.9

                The mix of fixed and variable remuneration for risk management, internal audit, operations, financial controls, internal Shari'a review/audit, AML and compliance functions personnel must be weighted in favour of fixed remuneration.

                Amended: July 2014
                Added: January 2014

            • Effective Alignment of Remuneration with Prudent Risk-Taking

              • Alignment of All Staff Remuneration with Compliance with AML/CFT Requirements

                • HC-5.4.9A

                  The performance evaluation and remuneration of senior management and staff of the Islamic bank licensee must be based on the achievement of the Key Performance Indicators (KPIs) relevant to ensuring compliance with AML/CFT requirements as specified in Paragraphs FC-2.1.3 and FC-2.1.4.

                  Added: April 2020

                • HC-5.4.10

                  Remuneration must be adjusted for all types of risks.

                  Added: January 2014

                • HC-5.4.11

                  In relation to Paragraph HC-5.4.10, two employees who generate the same short-run profit but take different amounts of risk on behalf of their bank should not be treated the same by the remuneration system.

                  Added: January 2014

                • HC-5.4.12

                  Both quantitative measures and human judgement must play a role in determining risk adjustments.

                  Added: January 2014

                • HC-5.4.13

                  Risk adjustments must account for all types of risk, including intangible and other risks such as reputation risk, liquidity risk and the cost of capital.

                  Added: January 2014

                • HC-5.4.14

                  Banks' remuneration policies and practices must be designed to reduce employees' incentives to take excessive and undue risk.

                  Added: January 2014

                • HC-5.4.15

                  Remuneration outcomes must be symmetric with risk outcomes.

                  Added: January 2014

                • HC-5.4.16

                  The mix of cash, equity and other forms of remuneration must be consistent with risk alignment. The mix will vary depending on the employee's position and role and the bank must be able to explain the rationale for its mix to the CBB.

                  Added: January 2014

                • HC-5.4.17

                  Existing contractual payments related to a termination of employment must be re-examined, and kept in place only if there is a clear basis for concluding that they are aligned with long-term value creation and prudent risk-taking. Prospectively, any such payments must be related to performance achieved over time and designed in a way that does not reward failure.

                  Added: January 2014

                • HC-5.4.18

                  Banks must ensure that their employees commit themselves not to use personal hedging strategies or remuneration- and liability-related insurance to undermine the risk alignment effects embedded in their remuneration arrangements. Banks must ensure that appropriate compliance mechanisms are in place to monitor their employees commitment in this regard such as signed adherence by staff to the bank's code of ethics which should include the conditions outlined in this Paragraph.

                  Added: January 2014

              • Variable Remuneration

                • HC-5.4.19

                  Remuneration systems must link the size of the bonus pool to the overall performance of the bank.

                  Added: January 2014

                • HC-5.4.20

                  Employees' incentive payments must be linked to the contribution of the individual and business to such performance.

                  Added: January 2014

                • HC-5.4.21

                  As profits and losses of different activities of a bank are realised over different periods of time, remuneration payout schedules must be sensitive to the time horizon of risks and variable remuneration must therefore be deferred accordingly. Variable remuneration must not be finalised over short periods where risks are realised over long periods.

                  Added: January 2014

                • HC-5.4.22

                  The remuneration committee of the bank must question payouts for income that cannot be realised or whose likelihood of realisation remains uncertain at the time of payout.

                  Amended: July 2014
                  Added: January 2014

                • HC-5.4.23

                  Banks must ensure that total variable remuneration does not limit their ability to strengthen their capital base. The extent to which capital needs to be built up must be a function of a bank's current capital position and its ICAAP.

                  Added: January 2014

                • HC-5.4.24

                  The size of the variable remuneration pool and its allocation within the bank must take into account the full range of current and potential risks, including:

                  (a) The cost and quantity of capital required to support the risks taken;
                  (b) The cost and quantity of the liquidity risk assumed in the conduct of business; and
                  (c) Consistency with the timing and likelihood of potential future revenues incorporated into current earnings.
                  Amended: July 2014
                  Added: January 2014

                • HC-5.4.25

                  Paragraph HC-5.4.24 focuses on the overall size of the variable remuneration, at the overall bank level, in order to ensure that the recognition and accrual of variable remuneration will not compromise the financial soundness of the bank.

                  Added: January 2014

                • HC-5.4.26

                  Bonuses must diminish or be deferred in the event of poor bank, divisional or business unit performance.

                  Added: January 2014

                • HC-5.4.27

                  Subdued or negative financial performance of the bank should generally lead to a considerable contraction of the bank's total variable remuneration, taking into account both current remuneration and reductions in payouts of amounts previously earned, including through malus and clawback arrangements. Recognition of staff who have achieved their targets or better, may take place by way of deferred compensation, which may be paid once the bank's performance improves.

                  Added: January 2014

                • HC-5.4.28

                  If the bank and/or relevant line of business is incurring losses in any year during the vesting period, any unvested portions must be subject to malus.

                  Amended: July 2014
                  Added: January 2014

                • HC-5.4.29

                  Accrual and deferral of variable remuneration does not oblige the bank to pay the variable remuneration, particularly when the anticipated outcome has not materialised or the bank's financial position does not support such payments.

                  Added: January 2014

                • HC-5.4.30

                  For approved persons and material risk-takers, other than those covered under Paragraphs HC-5.4.9 and Section HC-5.5, as their actions have a material impact on the risk exposure of the bank:

                  (a) An appropriate ratio between the fixed and variable components of total remuneration must be set to ensure that fixed and variable components of total remuneration are appropriately balanced and paid on the basis of individual, business-unit and bank-wide measures that adequately measure performance; and
                  (b) The variable proportion of remuneration must increase significantly along with the level of seniority and/or responsibility.
                  Amended: October 2016
                  Amended: July 2014
                  Added: January 2014

                • HC-5.4.30A

                  The level of the fixed component referred to in Subparagraph HC-5.4.30(a) should represent a sufficiently high proportion of the total remuneration to allow the operation of a fully flexible policy on variable remuneration components, including the possibility to pay no variable component.

                  Amended: October 2016
                  Added: July 2014

                • HC-5.4.31

                  For purposes of Paragraph HC-5.4.30:

                  (a) At least 40% of the variable remuneration must be payable under deferral arrangements over a period of at least 3 years; and
                  (b) For the CEO, his deputies and the other 5 most highly paid business line employees, at least 60% of the variable remuneration must be payable under deferral arrangements over a period of at least 3 years.
                  Amended: July 2014
                  Added: January 2014

                • HC-5.4.32

                  The deferral period referred to under Subparagraph HC-5.4.31(a) must be aligned with the nature of the business, its risks and the activities of the employee in question. Remuneration payable under deferral arrangements should generally vest no faster than on a pro rata basis.

                  Added: January 2014

                • HC-5.4.33

                  As a minimum, 50% of variable remuneration (including both the deferred and undeferred portions of the variable remuneration) must be awarded in shares or share-linked instruments or where appropriate, other non-cash instruments.

                  Added: January 2014

                • HC-5.4.34

                  The remaining portion (other than that mentioned under Paragraph HC-5.4.33) of the deferred remuneration can be paid as cash remuneration vested over a minimum 3-year period.

                  Added: January 2014

                • HC-5.4.34A

                  The only instance where deferred remuneration can be paid out before the end of the vesting period is in the case of the death of the employee where the beneficiaries would receive any unpaid deferred remuneration.

                  Added: July 2014

                • HC-5.4.35

                  Banks must not provide any form of guaranteed variable remuneration as part of the overall remuneration package. Exceptional minimum variable remuneration must only occur in the context of hiring new staff and limited to the first year.

                  Amended: July 2014
                  Added: January 2014

              • Remuneration in the Form of Shares or Share-Linked Instruments

                • HC-5.4.36

                  Awards in shares or share-linked instruments must be subject to a minimum share retention policy of 6 months from the time the shares are awarded, unless the bank's policy requires a longer period.

                  Amended: July 2014
                  Added: January 2014

                • HC-5.4.37

                  For Bahraini Islamic bank licensees, where fixed or variable remuneration include common shares, banks must limit the shares awarded to an annual aggregate limit of 10% of the total issued shares outstanding of the bank, at all times.

                  Amended: July 2014
                  Added: January 2014

                • HC-5.4.38

                  For Bahraini Islamic bank licensees, all share incentive plans must be approved by the shareholders.

                  Amended: July 2014
                  Added: January 2014

              • Remuneration from Projects and Investments

                • HC-5.4.39

                  In reference to Paragraph HC-2.2.6, for greater certainty, approved persons are not allowed to take any benefits from any projects or investments which are managed by the Islamic bank licensee or promoted to its customers or potential customers except for board related remuneration (declared as per Paragraph HC-2.4.1) linked to their fiduciary duties to the investors of the project/investment. This Rule applies to all approved persons including those appointed as members of the board of special purpose vehicles or other operating companies set up by the Islamic bank licensee for projects or investments.

                  Added: January 2014

                • HC-5.4.40

                  The reference to benefits in Paragraph HC-5.4.39 includes commission, fees, shares, consideration in kind, or other remuneration or incentives in respect of the performance of the project or investment

                  Added: January 2014

          • HC-5.5 HC-5.5 Board of Directors' Remuneration

            • HC-5.5.1

              Remuneration of non-executive directors must not include performance-related elements such as grants of shares, share options or other deferred stock-related incentive schemes, bonuses, or pension benefits.

              October 2010

            • HC-5.5.2

              The Board of Directors' remuneration must be capped so that total remuneration is in line with Article 188 of the Company Law, in any financial year and has been approved by the shareholders.

              Amended: April 2015
              Amended: July 2014
              Added: January 2014

            • HC-5.5.3

              If a senior manager is also a director, his remuneration as a senior manager must take into account compensation received in his capacity as a director.

              Added: January 2014

            • HC-5.5.4

              In the years where the bank has not generated any profits it must comply with the approval requirements of Article 188 of the Company Law.

              Added: January 2014

            • HC-5.5.5

              In addition to the requirements of Article 188 of the Company Law, the articles of association regarding remuneration of the board of directors must be in line with the Rules outlined in this Chapter.

              Added: January 2014

          • HC-5.6 HC-5.6 [This Section was deleted and is replaced with requirements contained under Section HC-5.4]

            Deleted: January 2014

            • HC-5.6.1

              [This paragraph was deleted and is replaced with requirements contained under Section HC-5.4]

              Deleted: January 2014
              October 2010

            • HC-5.6.2

              [This paragraph was deleted and is replaced with requirements contained under Section HC-5.4]

              Deleted: January 2014
              October 2010

            • HC-5.6.3

              [This paragraph was deleted and is replaced with requirements contained under Section HC-5.4]

              Deleted: January 2014
              October 2010

            • HC-5.6.4

              [This paragraph was deleted and is replaced with requirements contained under Section HC-5.4]

              Deleted: January 2014
              October 2010

            • HC-5.6.5

              [This paragraph was deleted and is replaced with requirements contained under Section HC-5.4]

              Deleted: January 2014
              October 2010

            • HC-5.6.6

              [This paragraph was deleted and is replaced with requirements contained under Section HC-5.4]

              Deleted: January 2014
              Amended: January 2012
              October 2010

        • HC-6 HC-6 Management Structure

          • HC-6.1 HC-6.1 Principle

            • HC-6.1.1

              The Board must establish a clear and efficient management structure.

              October 2010

          • HC-6.2 HC-6.2 Establishment of Management Structure

            • HC-6.2.1

              The Board must appoint senior management whose authority must include management and operation of current activities of the Islamic bank licensee under the direction and oversight of the Board. The senior management must include at a minimum:

              (a) A CEO;
              (b) A chief financial officer;
              (c) A corporate secretary; and
              (d) An internal auditor,

              and must also include such other approved persons as the Board considers appropriate.

              Amended: April 2020
              Amended: October 2011
              Added: October 2010

          • HC-6.3 HC-6.3 Titles, Authorities, Duties and Reporting Responsibilities

            • HC-6.3.1

              The Board must adopt by-laws prescribing each senior manager's title, authorities, duties, accountabilities and internal reporting responsibilities. This must be done with the advice of the Nominating Committee and in consultation with the CEO, to whom the other senior managers should normally report.

              Amended: January 2012
              October 2010

            • HC-6.3.2

              These provisions must include but should not be limited to the following:

              (a) The CEO must have authority to act generally in the Islamic bank licensee's name, representing the Islamic bank licensee's interests in concluding transactions on the Islamic bank licensee's behalf and giving instructions to other senior managers and Islamic bank licensee employees;
              (b) The chief financial officer must be responsible and accountable for:
              (i) The complete, timely, reliable and accurate preparation of the Islamic bank licensee's financial statements, in accordance with the accounting standards and policies of the Islamic bank licensee (see also HC-3.4.1); and
              (ii) Presenting the Board with a balanced and understandable assessment of the Islamic bank licensee's financial situation;
              (c) The corporate secretary's duties must include arranging, recording and following up on the actions, decisions and meetings of the Board and of the shareholders (both at annual and extraordinary meetings) in books to be kept for that purpose; and
              (d) The internal auditor's duties must include providing an independent and objective review of the efficiency of the Islamic bank licensee's operations. This would include a review of the accuracy and reliability of the Islamic bank licensee's accounting records and financial reports as well as a review of the adequacy and effectiveness of the Islamic bank licensee's risk management, control, and governance processes.
              October 2010

            • HC-6.3.3

              The Board should also specify any limits which it wishes to set on the authority of the CEO or other senior managers, such as monetary maximums for transactions which they may authorise without separate Board approval.

              October 2010

            • HC-6.3.4

              The corporate secretary should be given general responsibility for reviewing the Islamic bank licensee's procedures and advising the Board directly on such matters (see Rule HC-6.3.2(c)). Whenever practical, the corporate secretary should be a person with legal or similar professional experience and training

              October 2010

            • HC-6.3.5

              At least annually the Board shall review and concur in a succession plan addressing the policies and principles for selecting a successor to the CEO, both in emergencies and in the normal course of business. The succession plan should include an assessment of the experience, performance, skills and planned career paths for possible successors to the CEO.

              October 2010

          • HC-6.4 HC-6.4 Compliance

            • HC-6.4.1

              Compliance starts at the top. It will be most effective in a corporate culture that emphasises standards of honesty and integrity and in which the board of directors and senior management lead by example. It concerns everyone within the bank and should be viewed as an integral part of the bank's business activities. A bank should hold itself to high standards when carrying on business, and at all times strive to observe the spirit as well as the letter of the law. Failure to consider the impact of its actions on its shareholders, customers, employees and the markets may result in significant adverse publicity and reputational damage, even if no law has been broken.

              Amended: January 2019
              October 2010

            • HC-6.4.2

              Islamic bank licensees must establish an effective compliance framework, which is appropriate for the size and complexity of their operations, for managing their compliance risks.

              Amended: January 2019
              October 2010

            • HC-6.4.3

              The term "Compliance risk" refers to the risk of legal or regulatory sanctions, material financial loss, or loss to reputation a bank may suffer as a result of its failure to comply with laws, regulations, directives, directions, reporting requirements and codes of conduct, including internal code of conduct.

              Amended: January 2019
              Amended: October 2014
              October 2010

            • HC-6.4.4

              Compliance laws, rules and standards generally cover matters such as observing proper prudential standards, standards of market conduct, managing conflicts of interest, treating customers fairly and ensuring suitability of customer advice, as well as matters specified in HC-6.4.3 above. They typically include specific areas such as the prevention of money laundering and terrorist financing, and may extend to tax laws that are relevant to the structuring of banking products or customer advice.

              Added: January 2019

            • HC-6.4.5

              It is important that banks do not consider compliance function as a cost center rather it is an activity that enhances the reputation of the bank and promotes the right environment for better financial performance.

              Added: January 2019

            • HC-6.4.6

              The relationship between a bank's business units, the support functions and the compliance function can be explained using the three lines of defence model.

              a) The business units are the first line of defence. They undertake the management of risks within assigned limits of risk exposure and are responsible and accountable for identifying, assessing and controlling the risks of their business.
              b) The second line of defence includes the support functions, such as risk management, compliance, legal, human resources, finance, operations, and technology. Each of these functions, in close relationship with the business units, ensures that risks in the business units have been appropriately identified and managed. The business support functions work closely to help define strategy, implement bank policies and procedures, and collect information to create a bank-wide view of risks.
              c) The third line of defence is the internal audit function that independently assesses the effectiveness of the controls over the processes created in the first and second lines of defence and provides assurance on these processes. The responsibility for internal control does not transfer from one line of defence to the next line.
              Added: January 2019

            • Responsibilities of the Board of Directors

              • HC-6.4.7

                The board of directors of an Islamic bank licensee is responsible for overseeing the management of the bank's compliance risk. The board must establish a permanent and effective compliance function and approve the bank's compliance policies for identifying, assessing, monitoring, reporting and advising on compliance risk. At least once a year, the board or a designated board committee must assess the extent to which the bank is managing its compliance risk effectively. The board must also ensure that the agenda for the meetings of the board or the designated board committee include compliance as a topic at least every quarter.

                Amended: January 2020
                Added: January 2019

              • HC-6.4.8

                The board designated committee referred to in HC-6.4.7 may be the audit committee, the governance committee, the risk committee, or other committee which does not have a role in the business or executive roles, such as those relevant to executive committees and investment committees. For branches of foreign bank licensees, all references in this Section to the Board/the designated board committee should be interpreted as the Group Compliance Officer or a sufficiently senior level Regional Compliance Committee or Officer.

                Added: January 2019

            • Responsibilities of the Senior Management

              • HC-6.4.9

                Senior management is responsible for effective management of bank's compliance risk.

                Added: January 2019

              • HC-6.4.10

                Senior management is responsible for establishing the operating framework and the processes to support a permanent and an effective compliance function. It is responsible for establishing and communicating a written compliance policy through all levels of the organisation for ensuring that it is adhered to in practice. It is responsible also for approving the bank's compliance procedures for identifying, assessing, monitoring, reporting and advising on compliance risk.

                Amended: January 2020
                Added: January 2019

              • HC-6.4.11

                The compliance policy must be approved by the Board/the designated board committee and must address the following:

                (a) The role and responsibilities of the compliance function;
                (b) Measures to ensure its independence;
                (c) Its relationship with other risk management functions within the bank and with the internal audit function;
                (d) In cases where compliance responsibilities are carried out by staff in different departments, how these responsibilities are to be allocated among the departments;
                (e) Its right to obtain access to information necessary to carry out its responsibilities, and the corresponding duty of bank staff to cooperate in supplying this information;
                (f) Its right to conduct investigations of possible breaches of the relevant laws and regulations and the compliance policy and to appoint outside experts to perform this task if appropriate; and
                (g) Its right to be able freely to express and disclose its findings to the board of directors or to the designated board committee, e.g. the audit committee or the governance committee of the board.
                (h) The basic principles to be followed by management and staff describing the main processes by which compliance risks are to be identified and managed through all levels of the organization.
                Added: January 2019

              • HC-6.4.12

                The Board and the designated Board committee must ensure that all compliance findings and recommendations are resolved within six months for high risk/critical issues and 9 months for any other issues from the issue date of the subject compliance report unless otherwise agreed with the CBB taking into consideration time required for specific issues that may require substantive changes to technology, systems and/or processes.

                Added: January 2019

              • HC-6.4.13

                Senior management must assess the training needs of staff taking into account the existing skills and competencies, the nature of changes to laws and regulations in developing a training plan for compliance across all levels throughout the organisation. Training must be provided by competent and skilled personnel, whether available internally or externally. Training that is provided must reflect the seniority, role and responsibilities of the individuals for whom it is intended.

                Added: January 2019

            • Compliance Function

              • HC-6.4.14

                Islamic bank licensees must organise their compliance function and set priorities for the management of their compliance risk in a way that is consistent with their own risk management strategy and structures.

                Added: January 2019

              • HC-6.4.15

                The compliance function must be independent and effective. It must be headed by an executive or senior staff member with overall responsibility for co-ordinating the identification and management of the bank's compliance risk and for supervising the activities of other compliance function staff.

                Added: January 2019

              • HC-6.4.16

                The Head of Compliance, with the assistance of senior management must:

                (a) report to the board of directors or the designated committee of the board on a quarterly basis, even if there are no issues to highlight,
                (b) report to the board or the designated committee of the board on the bank's management of its compliance risk, in such a manner as to assist board members to make an informed judgment on whether the bank is managing its compliance risk effectively;
                (c) report promptly to the board or the designated committee of the board on any material compliance failures as they arise (e.g. failures that may attract a significant risk of legal or regulatory sanctions, material financial loss, or loss to reputation); and
                (d) ensure that senior management develop remedial action plans to address compliance breaches.
                Added: January 2019

              • HC-6.4.17

                The role of head of compliance may be combined with those of the head of risk if the size and nature of the bank justifies a single function for both roles. Banks which carry out limited operations or are small branches of foreign banks would qualify for such a practice.

                Added: January 2019

              • HC-6.4.18

                The compliance function should assist senior management, the board and the designated committee of the board in their compliance obligations and help promote the right culture within the bank. While the board and management are accountable for the bank's compliance, the compliance function has an important role in supporting corporate values, policies and processes that help ensure that the bank acts responsibly and fulfils all applicable obligations.

                Added: January 2019

              • HC-6.4.19

                The independence and effectiveness of the function must be based on the following related elements:

                (a) The compliance function must have a formal status with sufficient authority within the bank;
                (b) There must be a group compliance officer or head of compliance with overall responsibility for co-ordinating the management of the bank's compliance risk;
                (c) Compliance function staff, and in particular, the head of compliance, must not be placed in a position where there is a possible conflict of interest between their compliance responsibilities and any other responsibilities they have;
                (d) Compliance function staff must have access to the information and personnel necessary to carry out their responsibilities; and
                (e) The compliance function must directly report to the board or a designated board committee in the case of Bahraini Islamic bank licensees) and administratively to the CEO; and
                (f) In the case of branches of foreign bank licensees, the reporting must be to the Group Compliance Officer or Regional Compliance Officer and may report administratively to the CEO/GM.
                Added: January 2019

              • HC-6.4.20

                The concept of independence does not mean that the compliance function cannot work closely with management and staff in the various business units. Indeed, a co-operative working relationship between compliance function and business units should help to identify and manage compliance risks at an early stage. Rather, the various elements described above should be viewed as safeguards to help ensure the effectiveness of the compliance function, notwithstanding the close working relationship between the compliance function and the business units. The way in which the safeguards are implemented will depend to some extent on the specific responsibilities of individual compliance function staff.

                Added: January 2019

              • HC-6.4.21

                The compliance function should be free to highlight to senior management on any irregularities or possible breaches disclosed by its investigations, without fear of retaliation or disfavour from management or other staff members.

                Added: January 2019

              • HC-6.4.22

                Appointment, dismissal and other changes to the head of compliance must be approved by the board or the designated board committee. Appointments of head of compliance must be approved by the CBB in accordance with paragraph LR-1A.1.17. If the head of compliance is removed from his or her position for any reason, this must be notified to the CBB, describing fully the reasons as required under paragraph LR-1A.1.22.

                Added: January 2019

              • HC-6.4.23

                Islamic bank licensees must ensure that the compliance risk management framework is subject to an independent review by a third party consultant, other than the external auditor, every three years and when there are material changes to the business. The results of the independent review and action must be provided to the CBB by 30th September of the relevant year.

                Added: January 2019

              • HC-6.4.24

                The responsibilities of the compliance function must be carried out under a compliance programme that sets out its planned activities, such as the implementation and review of specific policies and procedures, compliance risk assessment, compliance testing, and educating staff on compliance matters. The compliance programme must be risk based and subject to oversight by the head of compliance to ensure appropriate coverage across businesses and co-ordination among risk management functions.

                Added: January 2019

              • HC-6.4.25

                The Compliance function must on a pro-active basis, identify, measure, document and assess the compliance risks associated with the bank's business activities including the development of new products and business practices; the proposed establishment of new types of business or customer relationships, or material changes in the nature of such relationships. If the bank has a new products committee, the compliance function staff should be represented on the committee.

                Added: January 2019

              • HC-6.4.26

                While the Compliance function is responsible for oversight and compliance checks across the full spectrum of compliance risk areas, it is recognised that many areas of compliance require specialist skills which can be found in different parts of the organisation, example, the skill sets for compliance with ICAAP can be found either with financial control or with risk management, for compliance with labour laws, the specialist skills are with human resources departments etc. In such cases, the compliance function ensures that the right levels of checks and balances and compliance reporting are available to get comfort that the licensee has adhered to the relevant requirements. In certain instances, it may use external experts with the approval of the relevant authority within the bank.

                Added: January 2019

              • HC-6.4.27

                The compliance function should consider ways to measure compliance risk (e.g. by using performance indicators) and use such measurements to enhance compliance risk assessment.

                Added: January 2019

              • HC-6.4.28

                In case of new regulations, the compliance function must assess the appropriateness of the bank's compliance procedures and guidelines, promptly follow up any identified deficiencies, and, where necessary, formulate proposals for amendments.

                Added: January 2019

            • Monitoring, testing and reporting

              • HC-6.4.29

                The compliance function must monitor and test compliance by performing sufficient and representative compliance testing. The results of the compliance testing must be reported to the board or designated committee of the board.

                Added: January 2019

              • HC-6.4.30

                The compliance function must advise senior management and the designated committee of the board on all relevant laws, rules and standards, in all jurisdictions in which the bank conducts its business, and inform them on developments in the subject.

                Added: January 2019

            • Guidance and education

              • HC-6.4.31

                The compliance function must assist senior management in:

                a) Educating staff on compliance issues, and acting as a contact point within the bank for compliance queries from staff members; and
                b) Establishing written guidance to staff on the appropriate implementation of laws, rules and standards through policies and procedures and other documents such as manuals, internal codes of conduct and practice guidelines.
                Added: January 2019

            • Statutory responsibilities and liaison

              • HC-6.4.32

                The compliance function must have specific statutory responsibilities (e.g. fulfilling the role of anti-money laundering officer). It may also liaise with relevant external bodies, including regulators, standard setters and external experts.

                Added: January 2019

            • Right of access

              • HC-6.4.33

                The compliance function must have access across the entire organisation to carry out its responsibilities on its own initiative where compliance risk exists. It must, additionally, have the right to communicate with any staff member and to obtain access to any records or files necessary to conduct its responsibilities and to conduct investigations of possible breaches of the compliance policy and to request assistance from specialists within the bank (e.g. legal or internal audit) or engage outside specialists' subject to appropriate internal approval to perform this task if appropriate.

                Added: January 2019

            • Competent Resources

              • HC-6.4.34

                The compliance function must have adequate resources to carry out its functions effectively commensurate with the size and complexity of the organisation. The resources to be provided for the compliance function must be both sufficient and appropriate to ensure that compliance risk within the bank is managed effectively.

                Added: January 2019

              • HC-6.4.35

                The compliance function staff must have the necessary qualifications, experience and professional and personal qualities to enable them to carry out their specific duties. Compliance function staff must have a sound understanding of laws, rules and standards and their practical impact on the bank's operations.

                Added: January 2019

              • HC-6.4.36

                The professional skills of compliance function staff, especially with respect to keeping up-to-date with developments in compliance laws, rules and standards, must be maintained through regular and systematic education and training.

                Added: January 2019

            • Relationship with Internal Audit

              • HC-6.4.37

                The scope and breadth of the activities of the compliance function must be subject to periodic review by the internal audit function.

                Added: January 2019

              • HC-6.4.38

                Compliance risk must be included in the risk assessment methodology of the internal audit function, and an audit programme that covers the adequacy and effectiveness of the bank's compliance function should be established, including testing of controls commensurate with the perceived level of risk.

                Added: January 2019

              • HC-6.4.39

                The compliance function and the internal audit function must be separate, to ensure that the activities of the compliance function are subject to independent review. It is important, therefore, that there is a clear understanding within the bank as to how risk assessment and testing activities are divided between the two functions, and that this is documented (e.g. in the bank's compliance policy or in a related document such as a protocol). The internal audit function must, of course, keep the head of compliance informed of any audit findings relating to compliance.

                Added: January 2019

            • Cross-border Issues

              • HC-6.4.40

                Islamic bank licensees that conduct business through a branch or subsidiary in other jurisdictions must through the Group Compliance Function:

                (a) comply with local laws and regulations;
                (b) have Group Compliance policy and procedures; and
                (c) conduct annual compliance testing on overseas operations whose total revenue represents 20% or more of the Group's total revenue and on every two years' basis for other overseas operations.
                Added: January 2019

              • HC-6.4.41

                Islamic bank licensees must have procedures in place to identify and assess the possible increased reputational risk to the bank if it offers products or carries out activities in certain jurisdictions.

                Added: January 2019

              • HC-6.4.42

                Islamic bank licensees with overseas operations must establish a Group Compliance Function which must oversee the compliance activities on a group-wide basis. The Group Compliance Officer must ensure that compliance reviews and checks are carried out at branches and subsidiaries. As legal and regulatory requirements may differ from jurisdiction to jurisdiction, compliance issues specific to each jurisdiction must be coordinated within the structure of the bank's group-wide compliance policy.

                Added: January 2019

              • HC-6.4.43

                The senior management with assistance of Group Compliance Officer must ensure that adequate resources, commensurate with the scale and complexity of the operations, are assigned for compliance activities at, the head office, branches and subsidiaries.

                Added: January 2019

              • HC-6.4.44

                The Group Compliance Officer must ensure that adequate reports and information is received from overseas branches and subsidiaries on compliance related issues.

                Added: January 2019

            • Outsourcing

              • HC-6.4.45

                Compliance function or its activities must not be outsourced.

                Added: January 2019

            • Other requirements

              • HC-6.4.46

                Every application/request for approval to the CBB must be accompanied by a compliance assessment report confirming that all related requirements pertaining to the request have been thoroughly checked by the compliance function including the impact of such a request on the licensee's financial position and compliance status. In addition, reference must be made to any previously approved arrangements by the CBB.

                Added: January 2019

              • HC-6.4.47

                In cases where the requests have a potential financial impact on the licensee a report from the financial control function in consultation with external auditors must also be submitted as part of the compliance assessment report, whereas in case of any legal implication of such a request a legal opinion on the matter must be submitted.

                Added: January 2019

              • HC-6.4.48

                Where breaches or deficiencies have occurred due to failures by approved persons, the CBB may consider re-assessing the fitness and propriety of such persons.

                Added: January 2019

          • HC-6.5 HC-6.5 Internal Audit

            • Introduction

              Added: April 2018

              • HC-6.5.1

                Islamic bank licensee's must establish and implement an effective internal audit function which provides an independent and objective assurance to the board of directors and senior management on the quality and effectiveness of a bank's internal control, risk management and governance systems and processes, to protect the bank and its reputation.

                Added: April 2018

              • HC-6.5.2

                The internal audit function must develop an independent and informed view of the risks faced by the bank based on its access to all bank records and data, its enquiries, and its professional competence. The internal audit function must discuss its views, findings and conclusions directly with the audit committee and, if necessary with the board of directors at their routine quarterly meetings, thereby helping the board to oversee senior management.

                Added: April 2018

              • HC-6.5.3

                In this Section, all references to the board of directors may also be taken as referring to the bank's audit committee where the audit committee is mandated to carry out such functions on the board's behalf.

                Added: April 2018

              • HC-6.5.4

                For branches of foreign bank licensee's, and where no local board of directors exists, all references in this Module to the board of directors should be interpreted as the Head Office/ Regional Office.

                Added: April 2018

              • HC-6.5.5

                This Section applies in its entirety to all locally incorporated banks, including those within a banking group, and to holding companies whose subsidiaries are predominantly banks. While Module LR requires that all banks including branches must have an internal auditor as a controlled function in the Kingdom, only Paragraphs HC-6.5.7 to HC-6.5.23, HC-6.5.28 to HC-6.5.42 and HC-6.5.69 to HC-6.5.70 would be directly applicable to branches of foreign bank licensee's in Bahrain in terms of the internal audit function located here. Branches should ensure that equivalent arrangements are in place at the parent level for other requirements in this Section and these arrangements provide for an effective internal audit function over activities conducted under the Bahrain license.

                Added: April 2018

              • HC-6.5.6

                The extent of application of this Section must be commensurate with the significance, complexity and international presence of the bank (principle of proportionality).

                Added: April 2018

              • HC-6.5.7

                The key features for the effective operation of an internal audit function are:

                (a) Independence and objectivity;
                (b) Professional competence and due professional care; and
                (c) Professional ethics
                Added: April 2018

            • Independence and Objectivity

              • HC-6.5.8

                Islamic bank licensees internal audit function must be independent of the audited activities. This means that the internal audit is independent of all functions including compliance, risk management and financial control functions. The internal audit function must also have sufficient standing and authority within the bank and must operate according to sound principles.

                Added: April 2018

              • HC-6.5.9

                The internal audit function must report directly to the audit committee and administratively to the CEO, thereby providing a framework for internal auditors to carry out their assignments with objectivity.

                Added: April 2018

              • HC-6.5.10

                The internal audit function must be able to perform its assignments on its own initiative in all areas and functions of the bank based on the audit plan established by the head of the internal audit function and approved by the board of directors or audit committee. It must be free to report its findings and assessments internally through clear reporting lines. The head of internal audit must demonstrate appropriate leadership and have the necessary personal characteristics and professional skills to fulfill his or her responsibility for maintaining the function's independence and objectivity.

                Added: April 2018

              • HC-6.5.11

                The internal audit function must not be involved in designing, selecting, implementing or operating specific internal control measures. However, the independence of the internal audit function must not prevent senior management from requesting input from internal audit on matters related to risk and internal controls. Nevertheless, the development and implementation of internal controls must remain the responsibility of management.

                Added: April 2018

              • HC-6.5.12

                Islamic bank licensees should, whenever practicable and without jeopardising competence and expertise, periodically rotate internal audit staff within the internal audit function.

                Added: April 2018

            • Professional Competence and Due Professional Care

              • HC-6.5.13

                The head of internal audit must have the responsibility for acquiring human resources with sufficient qualifications and skills to effectively deliver on the mandate for professional competence and to audit to the required level. He/she must continually assess and monitor the skills necessary to do so. The skills required for senior internal auditors must include the abilities to judge outcomes and make an impact at the highest level of the organisation.

                Added: April 2018

              • HC-6.5.14

                For purposes of Paragraph HC-6.5.13, professional competence depends on the auditor's capacity to collect and understand information, to examine and evaluate audit evidence and to communicate with the stakeholders of the internal audit function.

                Added: April 2018

              • HC-6.5.15

                The head of internal audit must ensure that internal audit staff acquire appropriate ongoing training in order to meet the growing technical complexity of the Islamic Bank licensee's activities and the increasing diversity of tasks that need to be undertaken as a result of the introduction of new products and processes within the Islamic Bank licensee and other developments in the financial sector.

                Added: April 2018

              • HC-6.5.16

                The internal audit function collectively must be competent to examine all areas in which the bank operates. When internal audit is outsourced, the head of internal audit/coordinator must ensure that the use of those experts does not compromise the independence and objectivity of the internal audit function.

                Added: April 2018

              • HC-6.5.17

                For purposes of Paragraph HC-6.5.16, the coordinator must be an approved person within the Islamic Bank licensee.

                Added: April 2018

              • HC-6.5.18

                The head of internal audit/coordinator should ensure that, whenever practical, the relevant knowledge input from an expert is assimilated into the organisation. This may be possible by having one or more members of the bank's internal audit staff participate in the external expert's work.

                Added: April 2018

              • HC-6.5.19

                Internal auditors must apply the care and skills expected of a reasonably prudent and competent professional. Due professional care does not imply infallibility; however, internal auditors having limited competence and experience in a particular area must be appropriately supervised by more experienced internal auditors.

                Added: April 2018

            • Professional Ethics

              • HC-6.5.20

                Internal auditors must act with integrity. Integrity includes, being straightforward, honest and truthful.

                Added: April 2018

              • HC-6.5.21

                Internal auditors must respect the confidentiality of information acquired in the course of their duties. They must not use that information (particularly 'confidential information' as defined in Article 116 of the CBB Law) for personal gain or malicious action and must be diligent in the protection of information acquired.

                Added: April 2018

              • HC-6.5.22

                The head of the internal audit function and all internal auditors must avoid conflicts of interest (see Section HC-2.3). Internally recruited internal auditors must not engage in auditing activities for which they have had previous responsibility before a one year "cooling off" period has elapsed.

                Added: April 2018

              • HC-6.5.23

                Internal auditors must adhere to the code of ethics of both the bank and The Institute of Internal Auditors (see Section HC-2.2).

                Added: April 2018

            • Internal Audit Charter

              • HC-6.5.24

                All Bahraini Islamic bank licensee's must have an internal audit charter that articulates the purpose, standing and authority of the internal audit function within the bank in a manner that promotes an effective internal audit function as described in Paragraph HC-6.5.1.

                Added: April 2018

              • HC-6.5.25

                The charter must be drawn up and reviewed annually by the head of internal audit and approved by the board of directors or audit committee. It must be available to all internal stakeholders and, in certain circumstances, such as listed entities, to external stakeholders.

                Added: April 2018

              • HC-6.5.26

                At a minimum, the internal audit charter must establish:

                (a) The internal audit function's standing within the bank, its authority, its responsibilities and its relations with other control functions in a manner that promotes the effectiveness of the function as described in Paragraphs HC-6.5.1 and HC-6.5.2;
                (b) The purpose and scope of the internal audit function;
                (c) The key features of the internal audit function described in Paragraphs HC-6.5.8 to HC-6.5.23;
                (d) The obligation of the internal auditors to communicate the results of their engagements and a description of how and to whom this must be done (reporting line);
                (e) The criteria for when and how the internal audit function may outsource some of its engagements to external experts;
                (f) The terms and conditions according to which the internal audit function can be called upon to provide consulting or advisory services or to carry out other special tasks;
                (g) The responsibility and accountability of the head of internal audit;
                (h) A requirement to comply with sound internal auditing standards; and
                (i) Procedures for the coordination of the internal audit function with the external auditor.
                Added: April 2018

              • HC-6.5.27

                The charter must empower the internal audit function, whenever relevant to the performance of its assignments and discharge of its duties, to initiate direct communication with any member of staff, to examine any activity or entity of the bank, and to have full and unconditional access to any records, files, data and physical properties of the bank. This includes access to management information systems and records and the minutes of board and sub-board committee meetings and all consultative and decision-making committees.

                Added: April 2018

            • Scope of Activity

              • HC-6.5.28

                The scope of internal audit activities must include the examination and evaluation of the effectiveness of the internal control, risk management and governance systems and processes of the entire bank, including the bank's outsourced activities and its subsidiaries (including SPVs) and branches.

                Added: April 2018

              • HC-6.5.29

                The internal audit function must independently evaluate the:

                (a) Effectiveness and efficiency of internal control, risk management and governance systems and processes created by the business units and support functions in the context of both current and potential or actual emerging risks and provide assurance on these systems and processes;
                (b) Reliability, effectiveness and integrity of management information systems and processes (including relevance, accuracy, completeness, availability, confidentiality and comprehensiveness of data);
                (c) Monitoring of compliance with laws and regulations, including any requirements from the CBB; and
                (d) Safeguarding of assets.
                Added: April 2018

              • HC-6.5.30

                The head of internal audit must establish, prior to year-end an annual internal audit plan. It must be based on a robust risk assessment (including direct or indirect input from senior management and the board).

                Added: April 2018

              • HC-6.5.31

                The audit committee's approval of the audit plan also requires that an appropriate budget will be available to support the internal audit function's activities.

                Added: April 2018

              • HC-6.5.32

                The scope of the internal audit function's activities must ensure adequate coverage of matters of regulatory interest within the audit plan.

                Added: April 2018

            • Risk Management

              • HC-6.5.33

                Internal audit must include in its scope the following aspects of risk management:

                (a) The organisation and mandates of the risk management function including market, credit, liquidity, interest rate and operational risks;
                (b) Evaluation of risk appetite, escalation and reporting of issues and decisions taken by the risk management function;
                (c) The adequacy of risk management systems and processes for identifying, measuring, assessing, controlling, responding to, and reporting on all the risks resulting from the bank's activities;
                (d) The integrity of the risk management information systems, including the accuracy, reliability and completeness of the data used;
                (e) The approval and maintenance of risk models including verification of the consistency, timeliness, independence and reliability of data sources used in such models;
                (f) Information technology and information security;
                (g) The bank's system for identifying and measuring its regulatory capital and assessing the adequacy of its capital resources in relation to the bank's risk exposures and established minimum ratios; and
                (h) The review of management's process for stress testing its capital levels, taking into account the frequency of such exercises, their purpose (e.g., internal monitoring vs. regulator imposed), the reasonableness of scenarios and the underlying assumptions employed, and the reliability of the processes used.
                Added: April 2018

              • HC-6.5.34

                When the risk management function has not informed the board of directors about the existence of a significant divergence of views between senior management and the risk management function regarding the level of risk faced by the bank, the head of internal audit must inform the audit committee about this divergence.

                Added: April 2018

            • Capital Adequacy and Liquidity

              • HC-6.5.35

                The internal audit must review the bank's system for identifying and measuring its regulatory capital and assessing the adequacy of its capital resources in relation to the bank's risk exposures and established minimum ratios.

                Added: April 2018

              • HC-6.5.36

                Internal audit must review management's process for stress testing its capital levels.

                Added: April 2018

              • HC-6.5.37

                Internal audit must review the effectiveness of the bank's systems and processes for measuring and monitoring its liquidity positions in relation to its risk profile, external environment, and minimum regulatory requirements including the requirement set out in Paragraph CA-1.3.4.

                Added: April 2018

            • Regulatory and Internal Reporting

              • HC-6.5.38

                The internal audit function must regularly evaluate the effectiveness of the process by which the risk and reporting functions interact to produce timely, accurate, reliable and relevant reports for both internal management and the CBB. Such reports include, but not limited to, the PIR and public disclosure requirements included in the CBB Rulebook, Module PD.

                Added: April 2018

            • Compliance

              • HC-6.5.39

                The internal audit function must periodically review the scope of the activities of the compliance function using the risk-based approach. The audit of the compliance function must include an assessment of how effectively it fulfils its responsibilities.

                Added: April 2018

            • Finance

              • HC-6.5.40

                The internal audit function must periodically review the controls over the bank's finance function using the risk-based approach.

                Added: April 2018

              • HC-6.5.41

                The internal audit function must devote sufficient resources to evaluate the valuation control environment, availability and reliability of information or evidence used in the valuation process and the reliability of estimated fair values. This is achieved through reviewing the independent price verification processes and testing valuations of significant transactions.

                Added: April 2018

              • HC-6.5.42

                The internal audit function must, as a minimum, also include the following aspects in its scope:

                (a) The organisation and mandate of the finance function;
                (b) The adequacy and integrity of underlying financial data and finance systems and processes for completely identifying, capturing, measuring and reporting key data such as profit or loss, valuations of financial instruments and impairment allowances;
                (c) The approval and maintenance of pricing models including verification of the consistency, timeliness, independence and reliability of data sources used in such models;
                (d) Controls in place to prevent and detect trading irregularities; and
                (e) Balance sheet controls including key reconciliations performed and actions taken (e.g. adjustments).
                Added: April 2018

            • Permanency of the Internal Audit Function

              • HC-6.5.43

                The internal audit function must be structured consistent with Paragraphs HC-6.5.61 to HC-6.5.65. Senior management and the board must ensure that the internal audit function is permanent and commensurate with the size, the nature and complexity of the bank's operations.

                Added: April 2018

              • HC-6.5.44

                Where the head of internal audit function ceases to act in this capacity, the CBB will meet with him/her to discuss the reasons.

                Added: April 2018

            • Responsibilities of the Board of Directors and Senior Management

              • HC-6.5.45

                Islamic bank licensees board of directors must ensure that senior management establishes and maintains an adequate, effective and efficient internal control system (see HC-1.2.3(c)) and accordingly, the board must support the internal audit function in discharging its duties effectively.

                Added: April 2018

              • HC-6.5.46

                The board of directors must review at least annually, the effectiveness and efficiency of the internal control system based, in part, on information provided by the internal audit function (see HC-1.2.10).

                Added: April 2018

              • HC-6.5.47

                The board of directors, its audit committee and senior management must promote a strong internal control environment supported and assessed by a sound internal audit function.

                Added: April 2018

              • HC-6.5.48

                As part of their oversight responsibilities, the audit committee must review the performance of the internal audit function.

                Added: April 2018

              • HC-6.5.49

                Every five years, the audit committee must commission an independent external quality assurance review of the internal audit function.

                Added: April 2018

              • HC-6.5.50

                Senior management must inform the internal audit function of new developments, initiatives, projects, products and operational changes.

                Added: April 2018

              • HC-6.5.51

                Senior management must ensure that all internal audit findings and recommendations are resolved within six months for high risk/critical issues and 12 months for any other issues from the issue date of the subject internal audit report.

                Added: April 2018

              • HC-6.5.52

                Senior management must ensure that the head of internal audit has the necessary resources, financial and otherwise, available to carry out his or her duties commensurate with the annual internal audit plan, scope and budget approved by the audit committee.

                Added: April 2018

            • Responsibilities of the Audit Committee in relation to the Internal Audit Function

              • HC-6.5.53

                The audit committee must oversee the bank's internal audit function (see also Paragraph HC-3.2.3).

                Added: April 2018

              • HC-6.5.54

                The bank's audit committee and the internal audit function must develop and maintain their own tools to assess the quality of the internal audit function.

                Added: April 2018

              • HC-6.5.55

                The audit committee must ensure that the internal audit function is able to discharge its responsibilities in an independent manner, consistent with Paragraph HC-6.5.8. It must review and approve the audit plan, its scope, and the budget of the internal audit function. It must also review audit reports and ensure that senior management is taking necessary and timely corrective actions to address control weaknesses, compliance issues with policies, laws and regulations, and other concerns identified and reported by the internal audit function.

                Added: April 2018

            • Management of the Internal Audit Function

              • HC-6.5.56

                The head of the internal audit function must ensure that the function complies with The Institute of Internal Auditors' International Standards for the Professional Practice of Internal Auditing.

                Added: April 2018

              • HC-6.5.57

                The audit committee must ensure that the head of the internal audit function is a person of integrity. This means that he or she will be able to perform his or her work with honesty, diligence and responsibility. It also implies that this person observes the law and has not been a party to any illegal activity. The head of internal audit must also ensure that the members of internal audit staff are persons of integrity.

                Added: April 2018

            • Reporting Lines of the Internal Audit Function

              • HC-6.5.58

                The internal audit function must be accountable to the audit committee, on all matters related to the performance of its mandate as described in the internal audit charter. It must also promptly inform the CEO and other related Heads of Functions about its findings.

                Added: April 2018

              • HC-6.5.59

                The internal audit function must inform senior management of all significant findings so that timely corrective actions can be taken. Subsequently, the internal audit function must follow up with senior management on the outcome of these corrective measures. The head of the internal audit function must quarterly report to the audit committee, the status of pending findings.

                Added: April 2018

            • The Relationship between the Internal Audit, Compliance and Risk Management Functions

              • HC-6.5.60

                The relationship between a bank's business units, the support functions and the internal audit function can be explained using the three lines of defence model. The business units are the first line of defence. They undertake the management of risks within assigned limits of risk exposure and are responsible and accountable for identifying, assessing and controlling the risks of their business. The second line of defence includes the support functions, such as risk management, compliance, legal, human resources, finance, operations, and technology. Each of these functions, in close relationship with the business units, ensures that risks in the business units have been appropriately identified and managed. The business support functions work closely to help define strategy, implement bank policies and procedures, and collect information to create a bank-wide view of risks. The third line of defence is the internal audit function that independently assesses the effectiveness of the controls over the processes created in the first and second lines of defence and provides assurance on these processes. The responsibility for internal control does not transfer from one line of defence to the next line.

                Added: April 2018

            • Internal Audit within a Group or Holding Company Structure

              • HC-6.5.61

                The internal auditors who perform the internal audit work at the bank must report to the bank's audit committee, or its equivalent, and to the group or holding company's head of internal audit.

                Added: April 2018

              • HC-6.5.62

                To facilitate a consistent approach to internal audit across all the banks within a banking organisation, the board of directors of each bank within a banking group or holding company structure should ensure that either:

                (a) The bank has its own internal audit function, which should be accountable to the bank's board and should report to the banking group or holding company's head of internal audit; or
                (b) The banking group or holding company's internal audit function performs internal audit activities of sufficient scope at the bank to enable the board to satisfy its fiduciary and legal responsibilities.
                Added: April 2018

              • HC-6.5.63

                The board of directors and senior management of the parent bank in a banking group must ensure that an adequate and effective internal audit function is established across the banking organisation and must ensure that internal audit policies and practices are appropriate to the structure, business activities and risks of all of the components of the group or holding company.

                Added: April 2018

              • HC-6.5.64

                The head of internal audit at the level of the parent bank must define the group or holding company's internal audit strategy, determine the organisation of the internal audit function both at the parent and subsidiary bank levels (in consultation with these entities' respective audit committees and in accordance with local laws) and formulate the internal audit principles, which include the audit methodology and quality assurance measures.

                Added: April 2018

              • HC-6.5.65

                The group or holding company's internal audit function must determine the audit scope for the banking organisation. In doing so, it must comply with local legal and regulatory provisions and incorporate local knowledge and experience.

                Added: April 2018

            • Outsourcing of Internal Audit Activities

              • HC-6.5.66

                Regardless of whether internal audit activities are outsourced, the board of directors remains ultimately responsible for the internal audit function.

                Added: April 2018

              • HC-6.5.67

                The head of internal audit/coordinator must maintain adequate oversight and ensure that any outsourcing providers comply with the principles of the bank's internal audit charter.

                Added: April 2018

              • HC-6.5.68

                To preserve independence, the head of internal audit/coordinator must ensure that the outsourcing provider has not been previously engaged in a consulting engagement in the same area within the bank unless a one year "cooling-off" period has elapsed. Subsequently, those experts who participated in an internal audit engagement must not provide consulting services to a function of the bank they have audited within the previous 12 months. Additionally, banks must not outsource internal audit activities to their own external audit firm (see OM-3).

                Added: April 2018

            • Communication between the CBB and the Internal Audit Function

              • HC-6.5.69

                The bank's internal auditor must have formal regular communication with the CBB to (i) discuss the risk areas identified, (ii) understand the risk mitigation measures taken by the bank, and (iii) monitor the bank's response to weaknesses identified.

                Added: April 2018

              • HC-6.5.70

                At least two weeks prior to the prudential meeting date, all internal audit reports issued since the last prudential meeting must be submitted to the CBB supervisory point of contact.

                Added: April 2018

          • HC-6.6 HC-6.6 Risk Management

            • Bank-wide Risk Management Framework

              • HC-6.6.1

                Islamic bank licensees must establish a sound risk management framework commensurate with the bank's size, complexity and risk profile. A risk management framework must have the following key features:

                (a) active Board and senior management oversight;
                (b) independent risk management function;
                (c) a Board driven sound risk management culture that is established throughout the bank;
                (d) appropriate policy, procedures and limits;
                (e) comprehensive and timely identification, measurement, mitigation, controlling, monitoring and reporting of risks;
                (f) appropriate management information systems ('MIS') at a business and bank-wide level; and
                (g) comprehensive internal controls.
                Added: July 2018

              • HC-6.6.2AA

                Further to the requirement in Paragraph HC-B.1.2, branches of foreign bank licensees must demonstrate that the activities of the Bahrain branch are subject to appropriate risk management oversight commensurate with the size, complexity, nature and the risk profile of the branch.

                Added: October 2019

              • HC-6.6.2

                More specifically, the risk management framework generally encompasses the process of:

                (a) developing and implementing the enterprise-wide risk governance framework, Subject to the review and approval of the board, which includes the bank's risk culture, risk appetite and risk limits;
                (b) identifying key risks to the bank including material individual, aggregate and emerging risks;
                (c) assessing the key risks and measuring the bank's exposures to them;
                (d) ongoing monitoring and assessing of the risk taking activities, decisions and risk exposures in line with the board-approved risk strategy, risk appetite, risk limits and determining the corresponding capital or liquidity needs (i.e. capital planning) on an ongoing basis;
                (e) reporting to senior management, and the board or risk committee as appropriate, on all the items noted in this Paragraph including but not limited to proposing appropriate risk-mitigating actions;
                (f) establishing an early warning or trigger system for breaches of the bank's risk appetite or limits; and
                (g) influencing and, when necessary, challenging decisions that give rise to material risk.
                Added: July 2018

              • HC-6.6.3

                Senior management must establish a risk management process that is not limited to credit, market, rate of return risk in the banking book (RRRBB), liquidity and operational risks, but which incorporates all material risks. This includes reputational and strategic risks, as well as risks that do not appear to be significant in isolation, but when combined with other risks, could lead to material losses.

                Added: July 2018

            • Independent Risk Management Function and Chief Risk Officer

              • HC-6.6.4

                All Islamic bank licensees must establish an independent Risk Management function and appoint a head of risk management function, referred to as Chief Risk Officer ('CRO') or any equivalent title. The function must be independent of the individual business lines and report directly to the Board of Directors or its Audit or Risk Committees and administratively to the Chief Executive Officer ('CEO'). The role of the CRO must be independent and distinct from other executive functions and business line responsibilities, and there must be no 'dual hatting' (i.e. the chief operating officer, CFO, chief auditor or other senior management personnel must not also serve as the CRO).

                Added: July 2018

              • HC-6.6.5

                For branches of foreign bank licensees, and where no local board of directors exists, all references in this Module to the board of directors should be interpreted as the Head Office/ Regional Office.

                Added: July 2018

              • HC-6.6.6

                [This Paragraph was deleted in October 2019].

                Deleted: October 2019
                Added: July 2018

              • HC-6.6.7

                Branches of foreign bank licensees operating in Bahrain have the choice of having an in-house risk management function in Bahrain or to outsource such role to their regional or Head offices.

                Amended: October 2019
                Added: July 2018

              • HC-6.6.8

                The CRO should have the ability to interpret and articulate risk in a clear and understandable manner and to effectively engage the board and management in constructive dialogue on key risk issues. The CRO should also not have any management or financial responsibility in respect of any operational business lines or revenue-generating functions. Interaction between the CRO and the board should occur regularly and be documented adequately. Non-executive board members should have the right to meet regularly — in the absence of senior management — with the CRO.

                Added: July 2018

              • HC-6.6.9

                The CRO has primary responsibility for overseeing the development and implementation of the bank's risk management framework. This includes the ongoing strengthening of risk management staff skills and enhancements to risk management systems, policies, processes, quantitative models and reports as necessary to ensure that the bank's risk management capabilities are sufficiently robust and effective to fully support its strategic objectives and all of its risk-taking activities. The CRO is responsible for supporting the board and the Risk Committee, as appropriate, in its engagement with and oversight of the development of the bank's risk strategy, risk appetite statement ('RAS') and for translating the risk appetite into a risk limits structure.

                Added: July 2018

              • HC-6.6.10

                The risk management function must have access to all business lines that have the potential to generate material risk to the Islamic bank licensee as well as to relevant risk-bearing subsidiaries.

                Added: July 2018

              • HC-6.6.11

                The CRO, together with management, must be actively engaged in monitoring performance relative to risk-taking and risk limit adherence. The CRO's responsibilities also include participating in key decision-making processes (e.g. strategic planning, capital and liquidity planning, new products and services development and compensation design and operation).

                Added: July 2018

              • HC-6.6.12

                The CRO must have sufficient organisational stature, authority, seniority within the organisation and necessary skills to oversee the bank's risk management activities.

                Added: July 2018

              • HC-6.6.13

                Appointment, dismissal and other changes to the CRO position must be approved by the board or its Risk/ Audit Committee. If the CRO is removed from his or her position for any reason, this must be disclosed publicly. The bank must also discuss the reasons for such removal with the CBB. The CRO's performance, compensation and budget must be reviewed and approved by the board Remuneration Committee.

                Added: July 2018

            • Board Risk Committee

              • HC-6.6.14

                Further to HC-1.8.1, all Bahraini Islamic bank licensees must establish a board risk committee composed of at least three independent directors. Such board risk committee must be responsible for supporting the board in its oversight and decisions related to the bank's risk management framework.

                Added: July 2018

              • HC-6.6.15

                The risk committee must meet the following requirements:

                (a) must be chaired by an independent director;
                (b) include a majority of members who are independent of day to day risk taking activities;
                (c) include members who have experience in risk management issues and practices;
                (d) develop a committee charter which among other matters include its role in the discussions of risk strategies, both at an aggregated basis and by type of risk and make recommendations to the board thereon, and on the risk appetite and risk limits;
                (e) review and revise as may be required, the bank's policies from a risk management perspective, at least every three years, unless there are material changes in the relevant Rulebook requirements or to the business conducted by the bank and / or its risk profile;
                (f) review and recommend the appointment or removal of Chief Risk Officer; and
                (g) oversee that the bank has in place processes to promote the bank's adherence to the approved risk policies.
                Added: July 2018

            • Role of Board and Senior Management

              • HC-6.6.16

                The Board must define the Islamic bank licensee's risk appetite and ensure that the bank's risk management framework is aligned with the bank's strategic, capital strategies and financial plans and compensation practices and includes detailed policy that sets specific bank-wide prudential limits on the bank's activities. The bank's risk appetite must be clearly conveyed through an RAS that can be easily understood by all relevant parties, the board itself, senior management and bank employees.

                Added: July 2018

              • HC-6.6.17

                The Islamic bank licensee's RAS must:

                (a) include both quantitative and qualitative considerations;
                (b) establish the individual and aggregate level and types of risk that the bank is willing to assume in advance of and in order to achieve its business activities within its risk capacity;
                (c) define the boundaries and business considerations in accordance with which the bank is expected to operate when pursuing the business strategy; and
                (d) be communicated effectively throughout the bank, linking it to daily operational decision-making and establishing the means to raise risk issues and strategic concerns across the bank.
                Added: July 2018

              • HC-6.6.18

                Developing and conveying the bank's risk appetite is essential to reinforcing a strong risk culture. The risk governance framework should outline actions to be taken when stated risk limits are breached, including disciplinary actions for excessive risk-taking, escalation procedures and board of director notification.

                Added: July 2018

              • HC-6.6.19

                The development of an effective RAS should be driven by both top-down board leadership and bottom-up management involvement. While the definition of risk appetite may be initiated by senior management, successful implementation depends upon effective interactions between the board, senior management, risk management and operating businesses, including the chief financial officer (CFO).

                Added: July 2018

              • HC-6.6.20

                The Board must ensure that:

                (a) a sound risk management culture is established throughout the bank;
                (b) appropriate limits are established that are consistent with the bank's risk appetite, risk profile and capital strength, and that are understood by, and regularly communicated to, relevant staff;
                (c) policy and processes are developed for risk-taking, that are consistent with the Risk Management Strategy and the established risk appetite;
                (d) uncertainties attached to risk measurement are recognised; and
                (e) senior management is taking all necessary steps to monitor and control all material risks consistent with the approved strategies and risk appetite.
                Added: July 2018

              • HC-6.6.21

                The Board of Directors and senior management must possess sufficient knowledge of all major business lines to ensure that appropriate policy, controls and risk monitoring systems are implemented effectively. They must have the necessary expertise to understand the activities in which the bank is involved — such as securitisation and off-balance sheet activities — and the associated risks. The Board and senior management must remain informed, on an on-going basis, about these risks as financial markets, risk management practices and the bank's activities evolve. In addition, the Board and senior management must ensure that accountability and lines of authority are clearly delineated.

                Added: July 2018

              • HC-6.6.22

                Before embarking on new lines of business or activities, the Board and senior management must identify and review the changes in risk profile arising from these potential new activities and ensure that the infrastructure and the internal controls necessary to manage any related risks, are in place.

                Added: July 2018

              • HC-6.6.23

                Before embarking on new or complex products, senior management must identify and review the changes in risk profile arising from these potential new products and ensure that the infrastructure and internal controls necessary to manage any related risks, are in place.

                Added: July 2018

              • HC-6.6.24

                For purposes of paragraphs HC-6.6.22 and HC-6.6.23, senior management must understand the underlying assumptions regarding accounting treatment, business models, valuation and risk management practices. In addition, senior management must evaluate the potential risk exposure if those assumptions fail.

                Added: July 2018

              • HC-6.6.25

                As part of the Board members annual training program, Islamic bank licensees must include training to enable Board members to better analyse risk and question strategic decisions, policy and transactions. Banks must also provide adequate training for all staff across the business units on risk management related matters.

                Added: July 2018

            • Policy, Procedures, Limits and Controls

              • HC-6.6.26

                An Islamic bank licensee's policy and procedures must provide specific guidance for the implementation of broad risk management strategies and must establish, where appropriate, internal limits for the various types of risk to which the bank may be exposed. These limits must consider the bank's role in the financial system and be defined in relation to the bank's capital, total assets, earnings or where adequate measures exist, its overall risk level.

                Added: July 2018

              • HC-6.6.27

                An Islamic bank licensee's policy, procedures and limits must:

                (a) Provide for adequate and timely identification, measurement, monitoring, control and mitigation of all risks, including the risks posed by its lending, investing, trading, securitisation, off-balance sheet, fiduciary and other significant activities at the business line and bank-wide levels;
                (b) Ensure that the economic substance of a bank's risk exposures, including reputational risk and valuation uncertainty, are fully recognised and incorporated into the bank's risk management processes;
                (c) Be consistent with the bank's stated goals and objectives, as well as its overall financial strength;
                (d) Clearly delineate accountability and lines of authority across the bank's various business activities, and ensure there is a clear separation between business lines and the Risk Management function;
                (e) Escalate and address breaches of internal position limits;
                (f) Provide for the review of new businesses and products by bringing together all relevant risk management, control and business lines, to ensure that the bank is able to manage and control the activity, prior to it being initiated; and
                (g) Include a schedule and process for reviewing the policy, procedures and limits, and for updating them as appropriate.
                Added: July 2018

            • Monitoring and Reporting of Risk

              • HC-6.6.28

                An Islamic bank licensee's MIS must provide the Board and senior management with timely and relevant information concerning their risk profile, in a clear and concise manner. This information must include all risk exposures, including those that are off-balance sheet. Senior management must understand the assumptions behind, and limitations inherent in, specific risk measures

                Added: July 2018

              • HC-6.6.29

                Islamic bank licensees must establish appropriate risk management methodologies, tools and models and systems commensurate with the nature and complexity of their business.

                Added: July 2018

              • HC-6.6.30

                Where Islamic bank licensees use models to measure components of risk, they must establish model governance frameworks including regulatory validation and testing.

                Added: July 2018

              • HC-6.6.31

                Islamic bank licensees must have information systems that are adequate (both under normal circumstances and in periods of stress) for measuring, assessing and reporting on the size, composition and quality of exposures on a bank-wide basis across all risk types, products, countries, region, etc. and counterparties. These reports must reflect the bank's risk profile, capital and liquidity needs, and are provided on a timely basis to the bank's Board and senior management. A bank's MIS must be capable of capturing limit breaches, and there must be procedures in place to promptly report such breaches to senior management, as well as to ensure that the appropriate follow-up actions are taken.

                Added: July 2018

              • HC-6.6.32

                The CRO must consistently remind staff, through a regular process under the sponsorship of the CEO, of the risk management requirements and enhance a common understanding of these requirements across the bank in order to create a culture of risk awareness.

                Added: July 2018

            • Independent Review

              • HC-6.6.33

                Islamic bank licensees must ensure that their risk management frameworks are subject to a comprehensive independent review by a third-party consultant, other than their external auditors:

                (a) Upon first implementation of a new or revised module on specific risk management requirements;
                (b) When there are material changes to certain Rulebook requirements and the CBB requires such a review;
                (c) When there are material changes to the business conducted by the bank or its risk profile and the CBB requires such a review; or
                (d) In case of a major failure of controls or major adverse changes in relevant business environment and the CBB requires such a review.
                Amended: January 2022
                Added: July 2018

              • HC-6.6.34

                With regards to HC-6.6.33(a), the relevant modules are the following:

                (a) Module IC;
                (b) Module CA;
                (c) Module DS;
                (d) Module CM;
                (e) Module OM;
                (f) Module ST;
                (g) Module LM; and
                (h) Module RR.
                Amended: January 2022
                Added: July 2018

              • HC-6.6.35

                Resources involved in the independent third-party review must be competent and appropriately trained. The independent third party must not have been previously involved in the development, implementation and operation of the bank’s risk management framework.

                Added: January 2022

              • HC-6.6.36

                The independent review reports must be presented to the Board or a designated committee of the Board. The agreed action planning steps to remedy any material weaknesses must be documented. The independent report together with the action plan must be provided to the CBB within one month of the date of the report.

                Added: January 2022

        • HC-7 HC-7 Communication between Board and Shareholders

          • HC-7.1 HC-7.1 Principle

            • HC-7.1.1

              The Islamic bank licensee must communicate with shareholders, encourage their participation, and respect their rights.

              October 2010

          • HC-7.2 HC-7.2 Conduct of Shareholders' Meetings

            • HC-7.2.1

              The Board must observe both the letter and the intent of the Company Law's requirements for shareholder meetings. Among other things:

              (a) Notices of meetings must be honest, accurate and not misleading. They must clearly state and, where necessary, explain the nature of the business of the meeting;
              (b) Meetings must be held during normal business hours and at a place convenient for the greatest number of shareholders to attend;
              (c) Notices of meetings must encourage shareholders to attend shareholder meetings and, if not possible, to participate by proxy and must refer to procedures for appointing a proxy and for directing the proxy how to vote on a particular resolution. The proxy agreement must list the agenda items and must specify the vote (such as "yes," "no" or "abstain");
              (d) Notices must ensure that all material information and documentation is provided to shareholders on each agenda item for any shareholder meeting, including but not limited to any recommendations or dissents of directors;
              (e) The Board must propose a separate resolution at any meeting on each substantially separate issue, so that unrelated issues are not "bundled" together;
              (f) In meetings where directors are to be elected or removed the Board must ensure that each person is voted on separately, so that the shareholders can evaluate each person individually;
              (g) The chairman of the meeting must encourage questions from shareholders, including questions regarding the Islamic bank licensee's corporate governance guidelines;
              (h) The minutes of the meeting must be made available to shareholders upon their request as soon as possible but not later than 30 days after the meeting; and
              (i) Disclosure of all material facts must be made to the shareholders by the Chairman prior to any vote by the shareholders.
              Amended: April 2011
              October 2010

            • HC-7.2.2

              The Bahraini Islamic bank licensee should require all directors to attend and be available to answer questions from shareholders at any shareholder meeting and, in particular, ensure that the chairs of the audit, remuneration and nominating committees are ready to answer appropriate questions regarding matters within their committee's responsibility (it being understood that confidential and proprietary business information may be kept confidential).

              Amended: April 2016
              October 2010

            • HC-7.2.3

              The Bahraini Islamic bank licensee should require its external auditor to attend the annual shareholders' meeting and be available to answer shareholders' questions concerning the conduct and conclusions of the audit.

              Amended: April 2016
              October 2010

            • HC-7.2.3A

              Bahraini Islamic bank licensees must provide to the CBB, for its review and comment, at least 5 business days prior to communicating with the shareholders or publishing in the press, the draft agenda for any shareholders' meetings referred to in Paragraph HC-7.2.3C.

              Amended: July 2017
              April 2016

            • HC-7.2.3B

              Bahraini Islamic bank licensees must ensure that any agenda items to be discussed or presented during the course of meetings which require the CBB's prior approval, have received the necessary approval, prior to the meeting taking place.

              Added: April 2016

            • HC-7.2.3C

              The Bahraini Islamic bank licensee must invite a representative of the CBB to attend any shareholders' meetings (i.e. ordinary and extraordinary general assembly) taking place. The invitation must be provided to the CBB at least 5 business days prior to the meeting taking place.

              Added: April 2016

            • HC-7.2.3D

              Within a maximum of 15 calendar days of any shareholders' meetings referred to in Paragraph HC-7.2.3C, the Bahraini Islamic bank licensee must provide to the CBB a copy of the minutes of the meeting.

              Added: April 2016

            • HC-7.2.4

              The Islamic bank licensee should maintain a website. The Islamic bank licensee should dedicate a specific section of its website to describing shareholders' rights to participate and vote at each shareholders' meeting, and should post significant documents relating to meetings including the full text of notices and minutes. The Islamic bank licensee may also consider establishing an electronic means for shareholders' communications including appointment of proxies. For confidential information, the Islamic bank licensee should grant a controlled access to such information to its shareholders.

              Amended: April 2017
              October 2010

            • HC-7.2.5

              In notices of meetings at which directors are to be elected or removed the Islamic bank licensee should ensure that:

              (a) Where the number of candidates exceeds the number of available seats, the notice of the meeting should explain the voting method by which the successful candidates will be selected and the method to be used for counting of votes; and
              (b) The notice of the meeting should present a factual and objective view of the candidates so that shareholders may make an informed decision on any appointment to the board.
              Amended: April 2012
              October 2010

          • HC-7.3 HC-7.3 Direct Shareholder Communication

            • HC-7.3.1

              The chairman of the Board (and other directors as appropriate) must maintain continuing personal contact with controllers to solicit their views and understand their concerns. The chairman must ensure that the views of shareholders are communicated to the Board as a whole. The chairman must discuss governance and strategy with controllers. Given the importance of market monitoring to enforce the "comply or explain" approach of this Module, the Board should encourage investors, particularly institutional investors, to help in evaluating the Islamic bank licensee's corporate governance (see also HC-1.2 and 1.3 for other duties of the Chairman).

              October 2010

          • HC-7.4 HC-7.4 Controllers

            • HC-7.4.1

              In Islamic bank licensees with one or more controllers, the chairman and other directors must actively encourage the controllers to make a considered use of their position and to fully respect the rights of minority shareholders (see also HC-1.2 and 1.3 for other duties of the Chairman).

              October 2010

        • HC-8 HC-8 Corporate Governance Disclosure

          • HC-8.1 HC-8.1 Principle

            • HC-8.1.1

              The Islamic bank licensee must disclose its corporate governance.

              October 2010

          • HC-8.2 HC-8.2 Disclosure Under the Company Law and CBB Requirements

            • HC-8.2.1

              In each Islamic bank licensee:

              (a) The Board must adopt written corporate governance guidelines covering the matters stated in this Module and Module PD and other corporate governance matters deemed appropriate by the Board. Such guidelines must include or refer to the principles and rules of Module HC;
              (b) The Islamic bank licensee must publish the guidelines on its website;
              (c) At each annual shareholders' meeting the Board must report on the Islamic bank licensee's compliance with its guidelines and Module HC, and explain the extent if any to which it has varied them or believes that any variance or noncompliance was justified; and
              (d) At each annual shareholders' meeting the Board must also report on further items listed in Module PD. Such information should be maintained on the Islamic bank licensee's website or held at the Islamic bank licensee's premises on behalf of the shareholders.
              Amended: April 2017
              October 2010

            • HC-8.2.2

              The CBB may issue a template as a guide for an Islamic bank licensee's annual meeting corporate governance discussion.

              October 2010

            • Board's Responsibility for Disclosure

              • HC-8.2.3

                The Board must oversee the process of disclosure and communications with internal and external stakeholders. The Board must ensure that disclosures made by the bank are fair, transparent, comprehensive and timely and reflect the character of the bank and the nature, complexity and risks inherent in the bank's business activities. Disclosure policies must be reviewed for compliance with the Central Bank's disclosure requirements (see Chapter PD-1).

                October 2010

        • HC-9 HC-9 The Principles of Islamic Shari'a

          • HC-9.1 HC-9.1 Principle

            • HC-9.1.1

              Banks which refer to themselves as "Islamic" must follow the principles of Islamic Shari'a.

              October 2010

          • HC-9.2 HC-9.2 Governance and Disclosure Per Shari'a Principles

            • HC-9.2.1

              Islamic bank licensees which are guided by the principles of Islamic Shari'a have additional responsibilities to their stakeholders. Islamic bank licensees which refer to themselves as "Islamic" are subject to additional governance requirements and disclosures to provide assurance to stakeholders that they are following Shari'a Principles. In ensuring compliance with Shari'a principles, each Islamic bank licensee must establish an independent Shari'a Supervisory Board consisting of at least three Shari'a scholars and complying with AAOIFI's Governance Standards for Islamic Financial Institutions No.1 and No.2.

              October 2010

            • HC-9.2.2

              The Board shall set up a Corporate Governance Committee (see also Chapter HC-8). In this case, the Committee shall comprise at least three members to co-ordinate and integrate the implementation of the governance policy framework.

              October 2010

            • HC-9.2.3

              In addition to its duties outlined in Chapter HC-3 and Appendix A, the Audit Committee shall communicate and co-ordinate with the Islamic bank licensee's Corporate Governance Committee and the Shari'a Supervisory Board ("SSB") (where applicable) to ensure that information on compliance with Islamic Shari'a rules and principles is reported in a timely manner.

              October 2010

            • HC-9.2.4

              The Corporate Governance Committee established under Chapter HC-9 shall comprise at a minimum of:

              (a) An independent director to chair the Corporate Governance Committee. The Chairman of the Corporate Governance Committee should not only possess the relevant skills, such as the ability to read and understand financial statements, but should also be able to coordinate and link the complementary roles and functions of the Corporate Governance Committee and the Audit Committee;
              (b) A Shari'a scholar who is an SSB member for the purpose of leading the Corporate Governance Committee on Shari'a-related governance issues (if any), and also to coordinate and link the complementary roles and functions of the Corporate Governance Committee and the SSB; and
              (c) An independent director who can offer different skills to the committee, such as legal expertise and business proficiency, which are considered particularly relevant by the Board of directors for cultivating a good corporate governance culture, and deemed "fit and proper" by the CBB.
              October 2010

            • HC-9.2.5

              The Corporate Governance Committee shall be empowered to:

              (a) Oversee and monitor the implementation of the governance policy framework by working together with the management, the Audit Committee and the SSB; and
              (b) Provide the Board of directors with reports and recommendations based on its findings in the exercise of its functions.
              October 2010

            • HC-9.2.6

              All Islamic Bank Licensees must comply with all AAOIFI issued accounting standards as well as applicable Shari'a pronouncements issued by the Shari'a Board of AAOIFI. The Islamic Bank Licensee must have a separate function of Shari'a review to verify compliance with the above. The internal Shari'a review must be carried out in accordance with AAOIFI governance standard No.3. The Shari'a review function may be located in the Internal audit function of the Islamic Bank Licensee.

              October 2010

        • Appendix A Appendix A Audit Committee

          • Committee Duties

            The Committee's duties shall include those stated in Paragraph HC-3.2.1.

            October 2010

          • Committee Membership and Qualifications

            The Committee shall have at least three members. Such members must have no conflict of interest with any other duties they have for the Islamic bank licensee.

            A majority of the members of the committee including the Chairman shall be independent directors.

            The CEO must not be a member of this committee.

            The committee members must have sufficient technical expertise to enable the committee to perform its functions effectively. Technical expertise means that members must have recent and relevant financial ability and experience, which includes:

            (a) An ability to read and understand corporate financial statements including an Islamic bank licensee's balance sheet, income statement and cash flow statement and changes in shareholders' equity;
            (b) An understanding of the accounting principles which are applicable to the Islamic bank licensee's financial statements;
            (c) Experience in evaluating financial statements that have a level of accounting complexity comparable to that which can be expected in the Islamic bank licensee's business;
            (d) An understanding of internal controls and procedures for financial reporting; and
            (e) An understanding of the audit committee's controls and procedures for financial reporting.
            Amended: January 2012
            Amended: April 2011
            October 2010

          • Committee Duties and Responsibilities

            In serving those duties, the Committee shall:

            (a) Be responsible for the selection, appointment, remuneration, oversight and termination where appropriate of the external auditor, subject to ratification by the Islamic bank licensee's Board and shareholders. The external auditor shall report directly to the committee;
            (b) Make a determination at least once each year of the external auditor's independence, including:
            (i) Determining whether its performance of any non-audit services compromised its independence (the committee may establish a formal policy specifying the types of non-audit services which are permissible) and;
            (ii) Obtaining from the external auditor a written report listing any relationships between the external auditor and the Islamic bank licensee or with any other person or entity that may compromise the auditor's independence;
            (c) Review and discuss with the external auditor the scope and results of its audit, any difficulties the auditor encountered including any restrictions on its access to requested information and any disagreements or difficulties encountered with management;
            (d) Review and discuss with management and the external auditor each annual and each quarterly financial statements of the Islamic bank licensee including judgments made in connection with the financial statements;
            (e) Review and discuss and make recommendations regarding the selection, appointment and termination where appropriate of the head of internal audit and head of compliance and the budget allocated to the internal audit and compliance function, and monitor the responsiveness of management to the committee's recommendations and findings;
            (f) Review and discuss the activities, performance and adequacy of the Islamic bank licensee's internal auditing and compliance personnel and procedures and its internal controls and compliance procedures, risk management systems, and any changes in those;
            (g) Oversee the Islamic bank licensee's compliance with legal and regulatory requirements, codes and business practices, and ensure that the bank communicates with shareholders and relevant stakeholders (internal and external) openly and promptly, and with substance of compliance prevailing over form; and
            (h) Review and discuss possible improprieties in financial reporting or other matters, and ensure that arrangements are in place for independent investigation and follow-up regarding such matters;
            (i) The committee must monitor rotation arrangements for audit engagement partners. The audit committee must monitor the performance of the external auditor and the non-audit services provided by the external auditor; and
            (j) The review and supervision of the implementation of, enforcement of and adherence to the bank's code of conduct.
            Amended: October 2012
            Amended: April 2012
            Amended: April 2011
            October 2010

          • Committee Structure and Operations

            The committee shall elect one member as its chair.

            The committee shall meet at least four times a year. Its meetings may be scheduled in conjunction with regularly-scheduled meetings of the entire Board.

            The committee may meet without any other director or any officer of the Islamic bank licensee present. Only the committee may decide if a non-member of the committee should attend a particular meeting or a particular agenda item. Non-members who are not directors of the Islamic bank licensee may attend to provide their expertise, but may not vote. It is expected that the external auditor's lead representative will be invited to attend regularly but that this shall always be subject to the committee's decision.

            The committee must meet with the external auditor at least twice per year, and at least once per year in the absence of any members of executive management.

            The committee shall report regularly to the full Board on its activities.

            October 2010

          • Committee Resources and Authority

            The committee shall have the resources and authority necessary for its duties and responsibilities, including the authority to select, retain, terminate and approve the fees of outside legal, accounting or other advisors as it deems necessary or appropriate, without seeking the approval of the Board or management. The Islamic bank licensee shall provide appropriate funding for the compensation of any such persons.

            October 2010

          • Committee Performance Evaluation

            The committee shall prepare and review with the Board an annual performance evaluation of the committee, which shall compare the committee's performance with the above requirements and shall recommend to the Board any improvements deemed necessary or desirable to the committee's charter. The report must be in the form of a written report provided at any regularly scheduled Board meeting.

            Amended: July 2012
            Amended: April 2012
            October 2010

        • Appendix B Appendix B Nominating Committee

          • Committee Duties

            The committee's duties shall include those stated in Paragraph HC-4.2.1.

            October 2010

          • Committee Duties and Responsibilities

            In serving those duties with respect to Board membership:

            (a) The committee shall make recommendations to the Board from time to time as to changes the committee believes to be desirable to the size of the Board or any committee of the Board;
            (b) Whenever a vacancy arises (including a vacancy resulting from an increase in Board size), the committee shall recommend to the Board a person to fill the vacancy either through appointment by the Board or through shareholder election;
            (c) In performing the above responsibilities, the committee shall consider any criteria approved by the Board and such other factors as it deems appropriate. These may include judgment, specific skills, experience with other comparable businesses, the relation of a candidate's experience with that of other Board members, and other factors;
            (d) The committee shall also consider all candidates for Board membership recommended by the shareholders and any candidates proposed by management;
            (e) The committee shall identify Board members qualified to fill vacancies on any committee of the Board and recommend to the Board that such person appoint the identified person(s) to such committee; and
            (f) Assuring that plans are in place for orderly succession of senior management.

            In serving those purposes with respect to officers the committee shall:

            (a) Make recommendations to the Board from time to time as to changes the committee believes to be desirable in the structure and job descriptions of the officers including the CEO, and prepare terms of reference for each vacancy stating the job responsibilities, qualifications needed and other relevant matters including integrity, technical and managerial competence, and experience;
            (b) Overseeing succession planning and replacing key executives when necessary, and ensuring appropriate resources are available, and minimising reliance on key individuals;
            (c) Design a plan for succession and replacement of officers including replacement in the event of an emergency or other unforeseeable vacancy; and
            (d) If charged with responsibility with respect to Islamic bank licensee's corporate governance guidelines, the committee shall develop and recommend to the Board corporate governance guidelines, and review those guidelines at least once a year.
            Amended: April 2011
            October 2010

          • Committee Structure and Operations

            The committee shall elect one member as its chair.

            The committee shall meet at least twice a year. Its meetings may be scheduled in conjunction with regularly-scheduled meetings of the entire Board.

            October 2010

          • Committee Resources and Authority

            The committee shall have the resources and authority necessary for its duties and responsibilities, including the authority to select, retain, terminate and approve the fees of outside legal, consulting or search firms used to identify candidates, without seeking the approval of the Board or management. The Islamic bank licensee shall provide appropriate funding for the compensation of any such persons.

            October 2010

          • Performance Evaluation

            The committee shall preview and review with the Board an annual performance evaluation of the committee, which shall compare the committee's performance with the above requirements and shall recommend to the Board any improvements deemed necessary or desirable to the committee's charter. The report must be in the form of a written report provided at any regularly scheduled Board meeting.

            Amended: July 2012
            Amended: April 2012
            October 2010

        • Appendix C Appendix C Remuneration Committee

          • Committee Duties

            The committee's duties shall include those stated in Paragraph HC-5.2.1.

            Amended: January 2011
            October 2010

          • Committee Duties and Responsibilities

            In serving those duties the committee shall consider, and make specific recommendations to the Board on, both remuneration policy and individual remuneration packages for the approved persons and other material risk-takers as well as the total variable remuneration to be distributed. This remuneration policy should cover at least:

            (a) The following components:
            (i) Salary;
            (ii) The specific terms of performance-related plans including any stock compensation, stock options, or other deferred-benefit compensation;
            (iii) Pension plans;
            (iv) Fringe benefits such as non-salary perks; and
            (v) Termination policies including any severance payment policies; and
            (b) Policy guidelines to be used for determining remuneration in individual cases, including on:
            (i) The relative importance of each component noted in a) above;
            (ii) Specific criteria to be used in evaluating a senior manager's performance.

            The committee shall evaluate the approved persons and material risk-takers' performance in light of the bank's corporate goals, agreed strategy, objectives and business plans and may consider the Islamic bank licensee's performance and shareholder return relative to comparable Islamic bank licensees, the value of awards to CEOs at comparable Islamic bank licensees, and awards to the CEO in past years.

            The committee should also be responsible for retaining and overseeing outside consultants or firms for the purpose of determining approved persons and material risk-takers' remuneration, administering remuneration plans, or related matters.

            Amended: January 2014
            Amended: April 2011
            October 2010

          • Committee Structure and Operations

            The committee shall elect one member as its chair.

            The committee shall meet at least twice a year. Its meetings may be scheduled in conjunction with regularly-scheduled meetings of the entire Board.

            October 2010

          • Committee Resources and Authority

            The committee shall have the resources and authority necessary for its duties and responsibilities, including the authority to select, retain, terminate and approve the fees of outside legal, consulting or compensation firms used to evaluate the compensation of directors, the CEO or other approved persons, without seeking the approval of the Board or management. The Islamic bank licensee shall provide appropriate funding for the compensation of any such persons.

            October 2010

          • Performance Evaluation

            The committee shall preview and review with the Board an annual performance evaluation of the committee, which shall compare the committee's performance with the above requirements and shall recommend to the Board any improvements deemed necessary or desirable to the committee's charter. The report must be in the form of a written report provided at any regularly scheduled Board meeting.

            Amended: July 2012
            Amended: April 2012
            October 2010

      • AU AU Auditors and Accounting Standards

        • AU-A AU-A Introduction

          • AU-A.1 AU-A.1 Purpose

            • AU-A.1.1

              This Module presents requirements that have to be met by Islamic bank licensees with respect to the appointment of external auditors. This Module also sets out certain obligations that external auditors have to comply with, as a condition of their appointment by Islamic bank licensees.

            • AU-A.1.2

              This Module is issued under the powers given the BMA under Article 41 of the BMA Law 1973. It supplements Article 79 of the BMA Law, which requires licensees to appoint an external auditor acceptable to the BMA.

          • AU-A.2 AU-A.2 Module History

            • Evolution of Module

              • AU-A.2.1

                This Module was first issued as Module AU (Audit Firms) in January 2005, as part of the first release of Volume 2 (Islamic banks) of the BMA Rulebook. It was subsequently reissued in full in July 2006 (and renamed "Auditors and Accounting Standards").

              • AU-A.2.2

                The reissued Module was one of several Modules modified to reflect the introduction of the BMA's new integrated license framework. Although the new framework did not change the substance of the requirements contained in this Module, the Module was re-issued in order to simplify its drafting and layout and align it with equivalent Modules in other Volumes of the BMA Rulebook.

              • AU-A.2.3

                This Module is dated July 2006. Pages that are subsequently changed in this Module are updated with the end-calendar quarter date in which the change was made: Chapter UG-3 provides further details on Rulebook maintenance and version control.

              • AU-A.2.4

                A list of changes made to this Module is provided below:

                Module Reference Change Date Description of Changes
                Whole module July 2006 Module renamed as Module AU (Auditors and Accounting Standards). Text redrafted but substance of requirements left unchanged.

            • Superseded Requirements

              • AU-A.2.5

                Circular Ref Date of Issue Module Ref.
                (July 2004 version)
                Circular Subject
                BC/5/82 5 Aug 1982 AU 1.1 Approval of Appointment of Auditors
                ODG/59/99 15 Jul 1999 AU 1.1–AU 1.2 Audit Partners of External Auditors and Reporting Accountants of Locally Incorporated Banks
                PIRI Pack - - - - - AU 1.4, AU 3.7 Prudential Information Returns for Islamic Financial Institutions
                ODG/162/03 (partial) 21 May 2003 AU 1.4–AU 1.4, AU 2.2 Outsourcing
                BS/9/03 (partial) 14 Sep 2003 AU 1.5 Operational Risk Management
                BC/1/97 12 Feb 1997 AU 1.6 Request for Approval for Dividend Distribution
                BC/4/99 (partial) 17 Mar 1999 AU 1.6, AU 3.7 Annual Accounts for the Year Ending 31 December 1999
                14/86 19 Jun 1986 AU 2.1 Auditors' Relationship with Supervisors
                BMA/751/93 (partial) 8 Jul 1993 AU 3.2 Directors' Interest in the Shares of, and the Unaudited Quarterly Financial Statements of, Locally Incorporated Banks Quoted on the Bahrain Stock Exchange.
                BC/1/99 22 Feb 1999 AU 3.3 Enhancing Bank Transparency
                EDBC/6/01 (partial) 14 Oct 2001 AU 3.4 Money laundering Regulation
                BC/6/97 21 Apr 1997 AU 4 Reporting Accountants

        • AU-B AU-B Scope of Application

          • AU-B.1 AU-B.1 Islamic bank Licensees

            • AU-B.1.1

              The contents of this Module — unless otherwise stated — apply to all Islamic bank licensees.

            • AU-B.1.2

              The contents of Chapters AU-1 to AU-4 apply to both Bahraini Islamic bank licensees and overseas Islamic bank licensees.

          • AU-B.2 AU-B.2 Auditors

            • AU-B.2.1

              Certain requirements in this Module extend to auditors, by virtue of their appointment by Islamic bank licensees. Auditors appointed by Islamic bank licensees must be independent (cf. Sections AU-1.4 and AU-1.5). Auditors who resign or are otherwise removed from office must inform the BMA in writing of the reasons for the termination of their appointment (cf. Section AU-1.2). Other requirements are contained in Sections AU-1.3 (Audit partner rotation) and AU-3 (Auditor reports).

        • AU-1 AU-1 Auditor Requirements

          • AU-1.1 AU-1.1 Appointment of Auditors

            • AU-1.1.1

              Islamic bank licensees must obtain prior written approval from the BMA before appointing or re-appointing their auditors.

            • AU-1.1.2

              As the appointment of auditors normally takes place during the course of the firm's annual general meeting, Islamic bank licensees should notify the BMA of the proposed agenda for the annual general meeting in advance of it being circulated to shareholders. The BMA's approval of the proposed auditors does not limit in any way shareholders' rights to subsequently reject the Board's choice.

            • AU-1.1.3

              The BMA, in considering the proposed (re-)appointment of an auditor, takes into account the expertise, resources and reputation of the audit firm, relative to the size and complexity of the licensee. The BMA will also take into account the track record of the audit firm in auditing Islamic bank licensees within Bahrain; the degree to which it has generally demonstrated independence from management in its audits; and the extent to which it has identified and alerted relevant persons of significant matters. Finally, the BMA will also consider the audit firm's compliance with applicable laws and regulations (including legislative Decree No. 26 of 1996; the Ministry of Industry and Commerce's Ministerial Resolution No. 6 of 1998; and relevant Bahrain Stock Exchange regulations).

            • AU-1.1.4

              In the case of overseas Islamic bank licensees, the BMA will also take into account who act as the auditors of the parent firm. As a general rule, the BMA does not favour different parts of a banking firm or group having different auditors.

          • AU-1.2 AU-1.2 Removal or Resignation of Auditors

            • AU-1.2.1

              Islamic bank licensees must notify the BMA as soon as they intend to remove their auditors, with an explanation of their decision, or as soon as their auditors resign.

            • AU-1.2.2

              Islamic bank licensees must ensure that a replacement auditor is appointed (subject to BMA approval as per Section AU-1.1), as soon as reasonably practicable after a vacancy occurs, but no later than three months.

            • AU-1.2.3

              An auditor who resigns or is otherwise removed from the office of auditor must, within 30 days of the resignation or removal, write to the BMA setting out the reasons for the resignation or removal.

          • AU-1.3 AU-1.3 Audit Partner Rotation

            • AU-1.3.1

              Unless otherwise exempted by the BMA, Islamic bank licensees must ensure that the audit partner responsible for their audit does not undertake that function more than five years in succession.

            • AU-1.3.2

              Islamic bank licensees must notify the BMA of any change in audit partner.

          • AU-1.4 AU-1.4 Auditor Independence

            • AU-1.4.1

              Before an Islamic bank licensee appoints an auditor, it must take reasonable steps to ensure that the auditor has the required skill, resources and experience to carry out the audit properly, and is independent of the licensee.

            • AU-1.4.2

              For an auditor to be considered independent, it must, among things, comply with the restrictions in Section AU-1.5.

            • AU-1.4.3

              If an Islamic bank licensee becomes aware at any time that its auditor is not independent, it must take reasonable steps to remedy the matter and notify the BMA of the fact.

            • AU-1.4.4

              If in the opinion of the BMA, independence has not been achieved within a reasonable timeframe, then the BMA may require the appointment of a new auditor.

          • AU-1.5 AU-1.5 Licensee/Auditor Restrictions

            • Financial Transactions with Auditors

              • AU-1.5.1

                Islamic bank licensees must not lend to their auditors, nor enter into any contracts of professional indemnity insurance with their auditors.

            • Outsourcing to Auditors

              • AU-1.5.2

                Section OM-2.7 generally prohibits Islamic bank licensees from outsourcing their internal audit function to the same firm that acts as their external auditors. However, the BMA may allow short-term outsourcing of internal audit operations to an Islamic bank licensee's external auditor, to meet unexpected urgent or short-term needs (for instance, on account of staff resignation or illness). Any such arrangement will normally be limited to a maximum period of one year and is subject to BMA prior approval.

            • Other Relationships

              • AU-1.5.3

                Islamic bank licensees and their auditors must comply with the restrictions contained in Article 217 (c) of the Commercial Companies Law (Legislative Decree No. (21) of 2001).

              • AU-1.5.4

                Article 217(c) prohibits an auditor from (i) being the chairman or a member of the Board of Directors of the company he/she audits; (ii) holding any managerial position in the company he/she audits; and (iii) acquiring any shares in the company he/she audits, or selling any such shares he/she may already own, during the period of his audit. Furthermore, the auditor must not be a relative (up to the second degree) of a person assuming management or accounting duties in the company.

              • AU-1.5.5

                The restriction in Paragraph AU-1.5.3 applies to overseas Islamic bank licensees as well as Bahraini Islamic bank licensees.

              • AU-1.5.6

                A partner, Director or manager on the engagement team of auditing an Islamic bank licensee may not serve on the Board or in a controlled function of the licensee, for two years following the end of their involvement in the audit, without prior authorisation of the BMA.

              • AU-1.5.7

                Chapter HC-2 sets out the BMA's "controlled functions" requirements.

            • Definition of "Auditor"

              • AU-1.5.8

                For the purposes of Section AU-1.5, "auditor" means the partners, Directors and managers on the engagement team responsible for the audit of the Islamic bank licensee.

        • AU-2 AU-2 Access

          • AU-2.1 AU-2.1 BMA Access to Auditors

            • AU-2.1.1

              Islamic bank licensees must waive any duty of confidentiality on the part of their auditors, such that their auditors may report to the BMA any concerns held regarding material failures by the Islamic bank licensee to comply with BMA requirements.

            • AU-2.1.2

              The BMA may, as part of its on-going supervision of Islamic bank licensees, request meetings with a licensee's auditors. If necessary, BMA may direct that the meeting be held without the presence of the licensee's management or Directors.

          • AU-2.2 AU-2.2 Auditor Access to Outsourcing Providers

            • AU-2.2.1

              Rule OM-2.5.1 (c) on outsourcing agreements between Islamic bank licensees and outsourcing providers requires licensees to ensure that their internal and external auditors have timely access to any relevant information they may require to fulfil their responsibilities. Such access must allow them to conduct on-site examinations of the outsourcing provider, if required.

        • AU-3 AU-3 Auditor Reports

          • AU-3.1 AU-3.1 Review of Financial Disclosures

            • AU-3.1.1

              Islamic bank licensees that are required to publish financial disclosures in accordance with Chapters PD-2 and PD-3 must arrange for their external auditors to review these prior to their publication, unless otherwise exempted in writing by BMA.

            • AU-3.1.2

              Chapter PD-2 requires overseas Islamic bank licensees operating as retail banks to publish on semi-annual basis summary information on their balance sheet and profit and loss account, in the same format as their annual audited accounts. Chapter PD-3 requires all locally incorporated Islamic bank licensees to publish quarterly financial statements, in accordance with Financial Accounting Standards (FAS) issued by the Accounting and Auditing Organisation for Islamic Financial Institutions (AAOIFI). For products and activities not covered by AAOIFI, International Accounting Standards (IAS) should be followed.

          • AU-3.2 AU-3.2 Report on Compliance with Financial Crime Rules

            • AU-3.2.1

              Islamic bank licensees must arrange for their external auditors to report on the licensee's compliance with the requirements contained in Module FC (Financial Crime), at least once a year.

            • AU-3.2.2

              The report specified in Rule AU-3.2.1 must be in the form agreed by BMA, and must be submitted to the BMA within four months of the licensee's financial year-end.

            • AU-3.2.3

              The context to the above requirement can be found in Section FC-4.3.

          • AU-3.3 AU-3.3 Review of Compliance with relevant laws

            • AU-3.3.1

              Islamic bank licensees must arrange for their external auditors to review the bank's compliance with applicable laws and declare, in the auditors report, that no material violations of the following laws and regulations have taken place:

              (a) The Bahrain Commercial Companies Law of 2001;
              (b) The BMA Law 1973; and
              (c) The BMA's licensing conditions, and other rules contained in Volume 2 of the BMA Rulebook.

            • AU-3.3.2

              For the purposes of Rule AU-3.3.1, material violations are violations that have any material impact on the financial statements of the bank.

          • AU-3.4 AU-3.4 Report on material differences

            • AU-3.4.1

              Islamic bank licensees must arrange for their external auditors to provide to the BMA explanations for any material differences in data reported in the bank's audited accounts and in the following reports provided to the BMA:

              (a) Prudential Information Returns for Islamic Banks (PIRI); and
              (b) Monthly Statements of Assets and Liabilities.

          • AU-3.5 AU-3.5 Report on behavioural adjustments

            • AU-3.5.1

              Islamic bank licensees that have been given BMA approval to apply behavioural adjustments to the liquidity data provided in Section E of the PIRI Form, must arrange for their external auditors to verify the supporting data used to support the behavioural adjustments made.

            • AU-3.5.2

              Please refer to Module LM and to Section BR-5.2. Banks that have at least 2 years' worth of supporting data may seek BMA approval to apply behavioural adjustments to certain of their reported liquidity data, instead of reporting contractual maturities.

        • AU-4 AU-4 Accounting Standards

          • AU-4.1 AU-4.1 General Requirements

            • AU-4.1.1

              Islamic bank licensees must comply with Financial Accounting Standards (FAS) issued by the Accounting and Auditing Organisation for Islamic Financial Institutions (AAOIFI). For products and activities not covered by AAOIFI, International Financial Reporting Standards (IFRS) / International Accounting Standards (IAS) must be followed.

      • GR GR General Requirements

        • GR-A GR-A Introduction

          • GR-A.1 GR-A.1 Purpose

            • GR-A.1.1

              The General Requirements Module presents a variety of different requirements that are not extensive enough to warrant their own stand-alone Module, but for the most part are generally applicable. These include general requirements on books and records; on the use of corporate and trade names; and on controllers. Each set of requirements is contained in its own Chapter: a table listing these and their application to licensees is given in Chapter GR-B.

          • GR-A.2 GR-A.2 Module History

            • Evolution of Module

              • GR-A.2.1

                This Module was first issued in July 2006, with immediate effect, as a new Module aimed at aligning the structure and contents of Volume 2 with other Volumes of the BMA Rulebook. It is dated July 2006. All subsequent changes to this Module are annotated with the end-calendar quarter date in which the change was made: Chapter UG-3 provides further details on Rulebook maintenance and version control.

              • GR-A.2.2

                The July 2006 version of Module GR does not introduce new requirements. Rather, it incorporates the record keeping requirements previously contained in Chapter LR-6 of the Licensing and Authorisation Requirement Module (reissued, in July 2006, as the Licensing Module). It also incorporates the requirements relating to controllers, previously contained in Chapter HC-2 of the High-Level Controls Module. Finally, Module GR expands on certain requirements that were previously contained only in the BMA Law 1973, such as the requirement to seek BMA approval for use of a corporate or trading name.

              • GR-A.2.3

                A list of recent changes made to this Module is detailed in the table below:

                Module Ref. Change Date Description of Changes
                     
                     
                     
                     

            • Superseded Requirements

              • GR-A.2.4

                This Module supersedes:

                Circular / other reference Provision Subject
                Module LR (April 2006 version) LR-6: Record Keeping Record keeping requirements were moved to GR-1, and edited down to simplify and avoid duplication of record keeping requirements contained in Module FC.
                Module HC (April 2006 version) HC-2: 'Fit and Proper Requirement' Requirements relating to controllers were moved to GR-5. Remaining 'fit and proper' elements regarding Directors and key employees of licensees were retained in HC-2, in a re-drafted form.
                     

        • GR-B GR-B Scope of Application

          • GR-B.1 GR-B.1 Islamic Bank Licensees

            • License categories

              • GR-B.1.1

                The requirements in Module GR (General Requirements) apply to both retail and wholesale Islamic bank licensees.

            • Bahraini and overseas Islamic bank licensees

              • GR-B.1.2

                The scope of application of Module GR (General Requirements) is as follows:

                Chapter Bahraini Islamic bank licensees Overseas bank licensees
                GR-1 GR-1.1 and GR-1.3 apply to the whole bank; GR-1.2 applies to business booked in Bahrain only. Applies to the Bahrain branch only.
                GR-2 Applies to the whole bank. Applies to the Bahrain branch only.
                GR-3 Applies to the whole bank. Doesn't apply.
                GR-4 Applies to the whole bank. Applies to the Bahrain branch only.
                GR-5 Applies to the whole bank. Applies to the whole bank.
                GR-6 [This chapter has been left blank.] [This chapter has been left blank.]
                GR-7 Applies to the whole bank. Applies to the Bahrain branch only.

              • GR-B.1.3

                In the case of Bahraini Islamic bank licensees, certain requirements apply to the whole bank, irrespective of the location of its business; other requirements apply only in respect to business booked in Bahrain. In the case of overseas Islamic bank licensees, the requirements of Module GR mostly only apply to business booked in the Bahrain branch.

        • GR-1 GR-1 Books and Records

          • GR-1.1 GR-1.1 General Requirements

            • GR-1.1.1

              The requirements in Section GR-1.1 apply to Bahraini Islamic bank licensees, with respect to the business activities of the whole bank (whether booked in Bahrain or in a foreign branch). The requirements in Section GR-1.1 also apply to overseas Islamic bank licensees, but only with respect to the business booked in their branch in Bahrain.

            • GR-1.1.2

              All Islamic bank licensees must maintain books and records (whether in electronic or hard copy form) sufficient to produce financial statements and show a complete record of the business undertaken by a licensee. These records must be retained for at least the minimum period specified under Bahrain law.

            • GR-1.1.3

              GR-1.1.2 includes accounts, books, files and other records (e.g. trial balance, general ledger, nostro/vostro statements, reconciliations and lists of counterparties). It also includes records that substantiate the value of the assets, liabilities and off balance sheet activities of the licensee (e.g. client activity files and valuation documentation). Finally, it includes any email records that are directly related to transactions (such as payment instructions from customers or other third parties).

            • GR-1.1.4

              Bahrain law currently requires corporate records to be retained for at least 5 years (see Ministerial Order No. 23 of 2002, made pursuant to the Amiri Decree Law No. 4 of 2001).

            • GR-1.1.5

              Unless otherwise agreed with the BMA in writing, records must be kept in either English or Arabic; or else accompanied by a certified English or Arabic translation. Records must be kept current. The records must be sufficient to allow an audit of the licensee's business or an on-site examination of the licensee by the BMA.

            • GR-1.1.6

              If a licensee wishes to retain certain records in a language other than English or Arabic without translation, the licensee should write to the BMA, explaining which types of records it wishes to keep in a foreign language, and why systematically translating these may be unreasonable. Generally, only financing contracts or similar original transaction documents may be kept without translation. Where exemptions are granted by BMA, the licensee is nonetheless asked to confirm that it will make available certified translations of such documents, if requested by BMA for an inspection or other supervisory purpose.

            • GR-1.1.7

              Translations produced in compliance with Rule GR-1.1.5 may be undertaken in-house, by an employee or contractor of the licensee, providing they are certified by an appropriate officer of the licensee.

            • GR-1.1.8

              Records must be accessible at any time from within the Kingdom of Bahrain, or as otherwise agreed with the BMA in writing.

            • GR-1.1.9

              Where older records have been archived, or in the case of records relating to overseas branches of Bahraini Islamic bank licensees, the BMA may accept that records be accessible within a reasonably short time frame (e.g. within 5 business days), instead of immediately. The BMA may also agree similar arrangements for overseas Islamic bank licensees, as well as Bahraini Islamic bank licensees, where elements of record retention and management have been centralised in another group company, whether inside or outside of Bahrain.

            • GR-1.1.10

              All original account opening documentation, due diligence and transaction documentation should normally be kept in Bahrain, if the business is booked in Bahrain. However, where a licensee books a transaction in Bahrain, but the transaction documentation is handled entirely by another (overseas) branch or affiliate of the licensee, the relevant transaction documentation may be held in the foreign office, provided electronic or hard copies are retained in Bahrain; the foreign office is located in a FATF member state; and the foreign office undertakes to provide the original documents should they be required.

            • GR-1.1.11

              Licensees should also note that to perform effective consolidated supervision of a group (or sub-group), the BMA needs to have access to financial information from foreign operations of a licensee, in order to gain a full picture of the financial condition of the group: see Module BR (BMA Reporting), regarding the submission of consolidated financial data. If a licensee is not able to provide to the BMA full financial information on the activities of its branches and subsidiaries, it should notify the BMA of the fact, to agree alternative arrangements: these may include requiring the group to restructure or limit its operations in the jurisdiction concerned.

            • GR-1.1.12

              In the case of Bahraini Islamic bank licensees with branch operations overseas, where local record keeping requirements are different, the higher of the local requirements or those contained in this Chapter must be followed.

          • GR-1.2 GR-1.2 Transaction Records

            • GR-1.2.1

              Islamic bank licensees must keep completed transaction records for as long as they are relevant for the purposes for which they were made (with a minimum period in all cases of five years from the date when the transaction was completed). Records of completed transactions must be kept in their original form (whether in hard copy and / or electronic format), for at least five years from the date of the transaction.

            • GR-1.2.2

              For example, if the original documents are paper, they must be kept in their original form. Electronic payments and receipts may be kept electronically without the need for hard copies. The record format selected must be capable of producing complete and accurate financial, management and regulatory reports, and allow monitoring and review of all transactions.

            • GR-1.2.3

              Rule GR-1.2.1 applies to all transactions entered into by a Bahraini Islamic bank licensee, whether booked in Bahrain or in an overseas branch. With respect to overseas Islamic bank licensees, it applies only to transactions booked in the Bahrain branch.

            • GR-1.2.4

              In the case of overseas Islamic bank licensees, Rule GR-1.2.1 therefore only applies to business booked in the Bahrain branch, not in the rest of the company.

          • GR-1.3 GR-1.3 Other Records

            • Corporate Records

              • GR-1.3.1

                Islamic bank licensees must maintain the following records in original form or in hard copy at their premises in Bahrain:

                (a) internal policies, procedures and operating manuals;
                (b) corporate records, including minutes of shareholders', Directors' and management meetings, and Shari'a board meetings;
                (c) correspondence with the BMA and records relevant to monitoring compliance with BMA requirements;
                (d) reports prepared by the Islamic bank licensee's internal and external auditors; and
                (e) employee training manuals and records.

              • GR-1.3.2

                In the case of Bahraini Islamic bank licensees, these requirements apply to the licensee as a whole, including any overseas branches. In the case of overseas Islamic bank licensees, all the requirements of Chapter GR-1 are limited to the business booked in their branch in Bahrain and the records of that branch (see Rule GR-1.1.1). They are thus not required to hold copies of shareholders' and Directors' meetings, and Shari'a board meetings, except where relevant to the branch's operations.

            • Customer Records

              • GR-1.3.3

                Record keeping requirements with respect to customer records, including customer identification and due diligence records, are contained in Module FC (Financial Crime). These requirements address specific requirements under the Amiri Decree Law No. 4 of 2001, the standards promulgated by the Financial Action Task Force, as well as to the best practice requirements of the Basel Committee Core Principles methodology, and its paper on "Customer due diligence for banks".

        • GR-2 GR-2 Corporate and Trade Names

          • GR-2.1 GR-2.1 Vetting of Names

            • GR-2.1.1

              Islamic bank licensees must seek prior written approval from the BMA for their corporate name and any trade names, and those of their subsidiaries located in Bahrain.

            • GR-2.1.2

              GR-2.1.1 applies to overseas Islamic bank licensees only with respect to their Bahrain branch.

            • GR-2.1.3

              Rules GR-2.1.1 and GR-2.1.2 implement the requirements contained in Article 62 of the BMA Law 1973.

            • GR-2.1.4

              In approving a corporate or trade name, the BMA seeks to ensure that it is sufficiently distinct as to reduce possible confusion with other unconnected businesses, particularly those operating in the financial services sector. The BMA also seeks to ensure that names used by unregulated subsidiaries do not suggest those subsidiaries are in fact regulated.

        • GR-3 GR-3 Dividends

          • GR-3.1 GR-3.1 BMA Non-Objection

            • GR-3.1.1

              Bahraini Islamic bank licensees must obtain a letter of no-objection from the BMA to any dividend proposed, before submitting a proposal for a distribution of profits to a shareholder vote.

            • GR-3.1.2

              The BMA will grant a no-objection letter where it is satisfied that the level of dividend proposed is unlikely to leave the licensee vulnerable — for the foreseeable future — to breaching the BMA's capital requirements, taking into account (as appropriate) trends in the licensee's business volumes, expenses, overall performance and the adequacy of provisions against impaired loans or other assets.

            • GR-3.1.3

              To facilitate the prior approval required under Paragraph GR-3.1.1, Islamic bank licensees subject to GR-3.1.1 should provide the BMA with a copy of the proposed agenda for the annual general meeting or other special meeting, noting the licensee's intended declared dividends for the coming year.

            • GR-3.1.4

              Islamic bank licensees must also comply with the provisions contained in Articles 72 to 75 of the BMA Law 1973.

        • GR-4 GR-4 Asset / Liability Transfers

          • GR-4.1 GR-4.1 BMA Approval

            • GR-4.1.1

              Islamic bank licensees must seek prior written approval from the BMA before transferring assets or liabilities of a material nature to a third party, except where such transfers are effected within the normal scope of the bank's operations.

            • GR-4.1.2

              Rule GR-4.1.1 is intended to apply to circumstances where a bank wishes to sell part of its business or a portfolio to a third party, or is undertaking winding up proceedings. It implements the provisions contained in Article 65(A)(2) of the BMA Law 1973.

            • GR-4.1.3

              For the purposes of Rule GR-4.1.1, assets or liabilities of a material nature would be assets or liabilities that comprise 5% or more of the total assets or liabilities of the bank concerned, and any amounts placed with the banks through investment accounts and safe-keeping accounts.

            • GR-4.1.4

              In the case of a Bahraini Islamic bank licensee, Chapter GR-4 applies to its assets and liabilities booked in Bahrain and in the bank's overseas branches. In the case of an overseas Islamic bank licensee, Chapter GR-4 applies only to assets and liabilities booked in the bank's Bahrain branch.

            • GR-4.1.5

              Islamic banks intending to apply to transfer assets or liabilities are advised to contact the BMA at the earliest possible opportunity, in order that the BMA may determine the nature and level of any documentation to be provided and the need for an auditor or other expert opinion to be provided. The BMA will grant its permission where the transfer will have no negative impact on the financial soundness of the bank, and does not otherwise compromise the interests of the bank's investment accounts holders, depositors and creditors. In all cases, the BMA will only grant its permission where the institution acquiring the assets or investment account/deposit liabilities holds the appropriate regulatory approvals and is in good regulatory standing.

        • GR-5 GR-5 Controllers

          • GR-5.1 GR-5.1 Key Provisions

            • GR-5.1.1

              Condition 3 of BMA's licensing conditions specifies, amongst other things, that Islamic bank licensees must satisfy the BMA that their controllers are suitable and pose no undue risks to the licensee. (See Paragraph LR-2.3.1.)

            • GR-5.1.2

              Applicants for an Islamic bank license must provide details of their controllers, by submitting a duly completed Form 2 (Application for authorisation of controller). (See sub-paragraph LR-3.1.5(a).)

            • GR-5.1.3

              Islamic bank licensees must obtain prior approval from the BMA for any of the following changes to its controllers (as defined in Section GR-5.2):

              (a) a new controller;
              (b) an existing controller increasing its holding from below 20% to above 20%;
              (c) an existing controller increasing its holding from below 33% to above 33%;
              (d) an existing controller increasing its holding from below 50% to above 50%; and
              (e) an existing controller increasing its holding from below 75% to above 75%.

            • GR-5.1.4

              For approval under Paragraph GR-5.1.3 to be granted, the BMA must be satisfied that the proposed increase in control poses no undue risks to the licensee. A duly completed Form 2 (Controllers) must be submitted as part of the request for a change in controllers.

            • GR-5.1.5

              If, as a result of circumstances outside the Islamic bank licensee's knowledge and/or control, one of the changes specified in Paragraph GR-5.1.3 is triggered prior to BMA approval being sought or obtained, the Islamic bank licensee must notify the BMA as soon as it becomes aware of the fact and no later than 7 days.

            • GR-5.1.6

              Islamic bank licensees are encouraged to notify the BMA as soon as they become aware of events that are likely to lead to changes in their controllers. The criteria by which the BMA assesses the suitability of controllers are set out in Section GR-5.3. The BMA aims to respond to requests for approval within 30 calendar days. The BMA may contact references and supervisory bodies in connection with any information provided to support an application for controller. The BMA may also ask for further information, in addition to that provided in Form 2, if required to satisfy itself as to the suitability of the applicant.

            • GR-5.1.7

              Islamic bank licensees must submit, within 3 months of their financial year-end, a report on their controllers. This report must identify all controllers of the licensee, as defined in Section GR-5.2.

          • GR-5.2 GR-5.2 Definition of Controller

            • GR-5.2.1

              A controller of an Islamic bank licensee is a natural or legal person who:

              (a) holds 10% or more of the shares in the licensee ("L"), or is able to exercise (or control the exercise) of more than 10% of the voting power in L; or
              (b) holds 10% or more of the shares in a parent undertaking ("P") of L, or is able to exercise (or control the exercise) of more than 10% of the voting power in P; or
              (c) is able to exercise significant influence over the management of L or P.

            • GR-5.2.2

              For the purposes of Paragraph GR-5.2.1, "person" means the person ("H") or any of the person's associates, where associate includes:

              (a) the spouse, child or stepchild of H;
              (b) an undertaking of which H is a Director;
              (c) a person who is an employee or partner of H;
              (d) if H is a corporate entity, a Director of H, a subsidiary of H, or a Director of any subsidiary undertaking of H.

            • GR-5.2.3

              Associate also includes any other person or undertaking with which the person H has entered into an agreement or arrangement as to the acquisition, holding or disposal of shares or other interests in the Islamic bank licensee, or under which they undertake to act together in exercising their voting power in relation to the Islamic bank licensee.

          • GR-5.3 GR-5.3 Suitability of Controllers

            • GR-5.3.1

              A controller of an Islamic bank licensee must satisfy the BMA of his suitability.

            • GR-5.3.2

              In assessing the suitability of controllers who are natural persons, BMA has regard to their professional and personal conduct, including, but not limited to, the following:

              (a) the propriety of a person's conduct, whether or not such conduct resulted in conviction for a criminal offence, the contravention of a law or regulation, or the institution of legal or disciplinary proceedings;
              (b) a conviction or finding of guilt in respect of any offence, other than a minor traffic offence, by any court or competent jurisdiction;
              (c) any adverse finding in a civil action by any court or competent jurisdiction, relating to fraud, misfeasance or other misconduct in connection with the formation or management of a corporation or partnership;
              (d) whether the person has been the subject of any disciplinary proceeding by any government authority, regulatory agency or professional body or association;
              (e) the contravention of any financial services legislation or regulation;
              (f) whether the person has ever been refused a license, authorisation, registration or other authority;
              (g) dismissal or a request to resign from any office or employment;
              (h) disqualification by a court, regulator or other competent body, as a Director or as a manager of a corporation;
              (i) whether the person has been a Director, partner or manager of a corporation or partnership which has gone into liquidation or administration or where one or more partners have been declared bankrupt whilst the person was connected with that partnership;
              (j) the extent to which the person has been truthful and open with regulators; and
              (k) whether the person has ever been adjudged bankrupt, entered into any arrangement with creditors in relation to the inability to pay due debts, or failed to satisfy a judgement debt under a court order.

            • GR-5.3.3

              In addition, the following criteria are also taken into consideration:

              (a) the financial resources of the person and the likely stability of their shareholding;
              (b) existing directorships or ownership of more than 20% of the capital or voting rights of any financial institution in the Kingdom of Bahrain or elsewhere, and the potential for conflicts of interest that such directorships or ownership may imply;
              (c) the interests of depositors, creditors and shareholders of the licensee; and
              (d) the interests of Bahrain's banking and financial sector.

            • GR-5.3.4

              In assessing the suitability of corporate controllers, BMA has regard to their financial standing, judicial and regulatory record, and standards of business practice and reputation, including, but not limited to, the following:

              (a) the financial strength of the controller, its parent(s) and other members of its group, its implications for the Islamic bank licensee and the likely stability of the controller's shareholding;
              (b) whether the controller or members of its group have ever entered into any arrangement with creditors in relation to the inability to pay due debts;
              (c) the controller's jurisdiction of incorporation, location of Head Office, group structure and close links, and the implications for the Islamic bank licensee as regards effective supervision of the Islamic bank licensee and potential conflicts of interest;
              (d) the controller's (and other group members') propriety and general standards of business conduct, including the contravention of any laws or regulations, or the institution of disciplinary proceedings by a government authority, regulatory agency or professional body;
              (e) any adverse finding in a civil action by any court or competent jurisdiction, relating to fraud, misfeasance or other misconduct;
              (f) any criminal actions instigated against the controller or other members of its group, whether or not this resulted in an adverse finding; and
              (g) the extent to which the controller or other members of its group have been truthful and open with regulators and supervisors.

            • GR-5.3.5

              In addition, the following criteria are also taken into consideration:

              (a) the interests of investment account holders, depositors, creditors and shareholders of the licensee; and
              (b) the interests of Bahrain's banking and financial sector.

          • GR-5.4 GR-5.4 Approval Process

            • GR-5.4.1

              Following receipt of an approval request under Paragraph GR-5.1.3, the BMA will issue a written notice of objection if it is not satisfied that the person concerned is suitable to become a controller of the Islamic bank licensee. The notice of objection will specify the reasons for the objection and specify the applicant's right of appeal.

            • GR-5.4.2

              Notices of objection have to be approved by an Executive Director of the BMA. The applicant has 30 calendar days from the date of the notice in which to make written representations. The BMA then has 30 calendar days from the date of the representation in which to consider any mitigating evidence submitted and make a final determination. See Module EN (Enforcement).

            • GR-5.4.3

              Where a person has become a controller by virtue of his shareholding in contravention of Paragraph GR-5.1.3, or a notice of objection has been served to him under Paragraph GR-5.4.1 and the period of appeal has expired, the BMA may, by notice in writing served on the person concerned, direct that his shareholding shall, until further notice, be subject to all or any of the following restrictions:

              (a) no voting right shall be exercisable in respect of those shares; and
              (b) except in a liquidation, no payment shall be made of any sum due on the shares from the Islamic bank licensee, whether in respect of capital, dividend or otherwise.

        • GR-6 [This Chapter has been left blank.]

          [This page has been left blank.]

        • GR-7 GR-7 Suspension of Business

          • GR-7.1 GR-7.1 BMA Approval

            • GR-7.1.1

              An Islamic bank licensee wishing to suspend its operations and liquidate its business must notify the BMA in writing at least six months in advance of its intended suspension, setting out how it proposes to do so and, in particular, how it will treat any Shari'a money placements/deposits, and investment accounts, that it holds.

            • GR-7.1.2

              The notice period under Rule GR-7.1.1 is a statutory requirement, specified in Article 91 of the BMA Law 1973. Article 91, however, also provides for the notice period to be reduced, by prior agreement with the BMA, if in the BMA's view the rights of depositors are safeguarded.

            • GR-7.1.3

              If the Islamic bank licensee wishes to transfer assets or liabilities to a third party, it must comply with the requirements contained in Chapter GR-4.

            • GR-7.1.4

              If the Islamic bank licensee wishes to liquidate its business, the BMA will revise its license to restrict the firm from entering into new business. The licensee must continue to comply with all applicable BMA requirements until such time as it is formally notified by the BMA that its obligations have been discharged and that it may surrender its license.

            • GR-7.1.5

              An Islamic bank licensee in liquidation must continue to meet its contractual and regulatory obligations to depositors, other clients and creditors.

            • GR-7.1.6

              Once the Islamic bank licensee believes that it has discharged all its remaining contractual obligations to investment account holders, depositors, clients and creditors, it must publish a notice in two national newspapers in Bahrain approved by the BMA (one being in English and one in Arabic), stating that is has settled all its dues and wishes to leave the market.

            • GR-7.1.7

              The notice referred to in Paragraph GR-7.1.6 must include a statement that written representations concerning the liquidation may be sent to the BMA before a specified day, which shall not be earlier than sixty days after the day of the first publication of the notice. The BMA will not decide on the application until after considering any representations made to the BMA before the specified day.

            • GR-7.1.8

              If no objections to the liquidation are upheld by the BMA, then the BMA may issue a written notice of approval for the surrender of the license.

        • GR-8 GR-8 BMA Fees

          • GR-8.1 GR-8.1 Annual License Fees

            • GR-8.1.1

              Islamic bank licensees must pay the relevant annual license fee to the BMA, upon the issuance of their license and thereafter on 1 January each year. The annual license fee charged upon issuance of a license is charged on a pro-rata basis, proportionate to the period remaining between the issuance of the license and the end of the calendar year in question (subject to a minimum charge of BD 1,000).

    • Business Standards

      • BC BC Business and Market Conduct

        • BC-A BC-A Introduction

          • BC-A.1 BC-A.1 Purpose

            • BC-A.1.1

              The purpose of this module is to lay down rules and guidelines that lay down the regulations and provide guidance on best practices that the banks should adhere to in relation to business and market conduct.

            • BC-A.1.2

              This module provides support for certain other parts of the Rulebook, mainly:

              (a) Principles of Business;
              (b) Audit Firms;
              (c) Public Disclosure;
              (d) High Level Controls;
              (e) Enforcement; and
              (f) BMA Reporting Requirements.

            • BC-A.1.3

              This module also provides support for certain aspects relating to business and market conduct in the Bahrain Commercial Companies Law of 2001 (as amended).

          • BC-A.2 BC-A.2 Key requirements

            • Promotion of financial products and services

              • BC-A.2.1

                The Agency should be sent copies of documentation relating to promotional schemes at least ten days prior to their launch for information purposes.

              • BC-A.2.2

                All documentation concerning promotional schemes should be in Arabic and English and, if relevant, any other language necessary for customers to fully understand and appreciate their terms and conditions. Such terms and conditions, including any related advertising, need to be clear, concise, truthful, unambiguous and complete so as to enable customers to make a fully informed decision.

            • Code of conduct for bank dealers and foreign exchange and money brokers in the interbank market

              • BC-A.2.3

                Management of banks and money brokers are responsible for ensuring that their institutions are in full compliance with the Code.

              • BC-A.2.4

                Brokers should pass details verbally, and principals be prepared to receive them, normally within a few minutes after deals have been concluded.

            • Disclosure of information about individual accounts

              • BC-A.2.5

                Banks should not publish or release information to third parties concerning the accounts or activities of their individual customers, unless:

                (a) such information is requested by an authorised official from the BMA or by an order from the Courts; or
                (b) the release of such information is approved be the customer concerned.

            • Minimum balance and charges on saving investment accounts

              • BC-A.2.6

                Banks may impose no more than a monthly charge of BD 1 when the monthly weighted average balance for saving investment accounts for individuals falls below BD 20 (or equivalent in other currencies).

              • BC-A.2.7

                Orphans, widows, pensioners, individuals receiving social subsidies from the Ministry of Labour & Social Affairs, students and Bahraini nationals with a monthly salary below BD 250 should be exempted from maintaining the above minimum balance requirement for saving investment accounts.

            • Disclosure of charges

              • BC-A.2.8

                Banks should also ensure that each customer is in receipt of its current list of charges. The list should specify standard charges and commissions that will be applied by the bank to individual services and transactions and to specific areas of business.

            • Accounts held for clubs and societies in Bahrain

              • BC-A.2.9

                The FCB is requested to notify GOYS when any club or society registered with GOYS requests the opening of an account with the bank.

            • Current accounts

              • BC-A.2.10

                FCBs levying fees on their low-balance customer current accounts, are required by the Agency to apply such fees to average balances when these fall below a prescribed level during a specified period.

            • Notification to the Agency on introduction of new or expanded customer products and facilities

              • BC-A.2.11

                All full commercial banks are required to consult the Agency before the introduction of any new or expanded customer products and facilities.

            • Penalty system for dishonoured cheques

              • BC-A.2.12

                On the first working day of each calendar month, each FCB will provide to the Agency a list of the names, supported with I.D. numbers (CPR or CR numbers (as applicable) for Bahrain residents, Passport or CR-equivalent numbers (as applicable) for non-Bahrain residents) of those customers to whom one (or more) written warning(s) has been sent in accordance with section BC-5.1 during the immediately preceding calendar month.

              • BC-A.2.13

                Concerned FCB(s) will be required not to provide current account facilities to the abuser of cheques for the twelve calendar month period immediately following the date of issue of the relevant list (as mentioned in section BC-5.1) by the Agency. All other FCBs should, within a maximum period of one month after the issue of the relevant list, also withdraw current account facilities from that abuser of cheques for the same twelve calendar month period.

            • General guidance on administration of dishonoured cheques

              • BC-A.2.14

                FCBs which wish to issue cheque guarantee cards for an amount not exceeding BD 200 may do so – subject to informing the Director of Banking Services at the Agency of their intention and the arrangements governing the issue of such cards.

            • Penalty charges on dishonoured cheques

              • BC-A.2.15

                The Agency will impose penalty charges of BD 5 (five Bahraini Dinars) on each returned cheque for the reasons of 'Refer to Drawer', 'Not Arranged For', 'Re-present', and 'Account Closed'.

              • BC-A.2.16

                FCBs will be entitled to charge customers no more than BD 10 (ten Bahraini Dinars) in respect of each dishonoured cheque.

            • Installation of an off-site ATM in Bahrain

              • BC-A.2.17

                FCBs wishing to install an off-site ATM must submit an application (in writing) for the BMA's (Executive Director of Financial Institutions Supervision) approval. This application must be accompanied by a copy of a feasibility study for that particular ATM, as well as such other information as the BMA may request. In particular, a copy of the written permission (for installation of that off-site ATM) of the legal owner of the proposed location must be provided to the Agency, as well as a copy of the written permission of any other relevant authorities in this context (e.g. the Traffic & Licensing and Civil Defence & Fire Service Directorates of the Ministry of Interior).

            • GCC ATM network charges

              • BC-A.2.18

                The Agency requires that the charges on such customer withdrawals and other ATM services should not exceed BD 1 (one Bahraini Dinar) per transaction.

            • Minimum terms and conditions

              • BC-A.2.19

                All Mudaraba contracts entered into by a bank (whether new or renewed contracts) should meet the standards referred to under paragraph BC-7.1.1.

              • BC-A.2.20

                Banks must have a policy statement as to the policies and procedures in place to safeguard the interest of the PSIA holders. The banks must agree the Policy Statement with the Agency before 20 January 2002.

            • Margin Trading System

              • BC-A.2.21

                FCBs may write to the Agency to obtain approval to provide margin trading facilities to their customers. FCBs must follow the rules and guidance in Chapter BC-8.

          • BC-A.3 BC-A.3 Regulation history

            • BC-A.3.1

              This module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

            • BC-A.3.2

              The most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              BC-4.6 01/10/05 Streamlined requirements for new products
              BC-8 01/04/06 Margin trading rules and guidance
                   
                   
                   

            • Effective date and evolution of the Module

              • BC-A.3.3

                Prior to the Rulebook, the Agency had issued various circulars covering different aspects of Business and Market Conduct. These circulars have now been consolidated into this module. The contents of this module are effective from the date depicted in the original circulars listed below or from the dates indicated in paragraph BC-A.3.2 above:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                EDBC/73/96 1 May 1996 BC-1.1 Explanatory note on the promotion of Banking and Financial Products offered in/from Bahrain by Means of Incentives etc.
                BS.C7/91/442 10 Sep 1991 BC-1.1 Promotion of Banking Services
                85/25 2 May 1985 BC-2 Code of Conduct for Foreign Exchange Dealers and Brokers
                83/5 10 Apr 1983 BC-3 Disclosure of Information about Individual Accounts
                BS.C7/90/34 31 Jan 1990 BC-4.2 Dinar Certificates of Deposits
                EDBO/51/02 2 Apr 2002 BC-4.2 Charges to Customers
                BC/5/00 8 Mar 2000 BC-4.3 Accounts held for Clubs and Societies in Bahrain
                BSD(111)/94/1507 24 Sep 1994 BC-4.4 Fees on Current Accounts
                BC/2/01 3 Mar 2001 BC-4.5 Brokerage Fees in Bahrain
                ODG/145/92 18 Aug 1992 BC-4.6 New or expanded products and facilities in the Retail Banking Field
                EDBO/46/03 8 Apr 2003 BC-4.7 Inheritance — Financial Procedures
                EDBO/27/96 25 Sep 1996 BC-5.1 Regulation Relating to a Penalty System for "Dishonoured Cheques"
                OG/399/94 28 Nov 1994 BC-5.2 Returned Cheques
                EDBO/49/01 6 May 2001 BC-5.3 Penalty Charges on Returned Cheques
                BC/8/98 24 May 1998 BC-6.1 Off-site ATMs
                EDBO/45/02 13 Mar 2002 BC-6.2 GCC ATM Network Charges
                EDBC/105/96 26 June 1996 BC-7 Mudaraba Contracts — Minimum Terms and Conditions
                BS/11/2004 10 August 2004 BC-4 Bank Charges on Savings Accounts



        • BC-1 BC-1 Promotion of financial products and services

          • BC-1.1 BC-1.1 Promotion of financial products and services offered in/from Bahrain by mean of incentives etc.

            • Introduction

              • BC-1.1.1

                The purpose of the content of this section is to set out regulations pertaining to the promotion of banking/financial products offered in/from Bahrain by means of incentives etc. (herein referred to as 'promotional schemes').

              • BC-1.1.2

                The Agency has no objection to the use of promotional schemes in general and, unless it otherwise specifically directs in any particular case, the Agency does not expect to be actively consulted/have its approval sought about the idea and/or substance of any promotional schemes. The Agency should, however, be sent copies of documentation relating to promotional schemes at least ten days prior to their launch for information purposes.

              • BC-1.1.3

                The Agency will monitor promotional schemes and, if thought appropriate in the interests of a bank or other financial institution (together herein referred to as 'institutions') and its customers in particular and/or the financial sector in general, may issue specific guidance in certain cases. Institutions should feel free to consult the Agency at any time regarding any matters referred to in the explanatory note set out in this section.

            • General requirements

              • BC-1.1.4

                Institutions should take care to ensure that promotional schemes do not involve a breach of Bahrain law or any other relevant applicable law, regulation or international practice. In addition, promotional schemes should not in any way be detrimental to the public good or public morals.

              • BC-1.1.5

                While there is to be no formal restriction on the types of incentive which may be used by institutions, care should be taken to ensure that promotional schemes do not negatively affect the integrity, reputation, good image and standing of Bahrain and/or its financial sector, and do not detrimentally affect Bahrain's economy.

              • BC-1.1.6

                Bearing in mind the reputation of, and the requirement to develop, the financial sector in Bahrain, as well as the need to act at all times in the best interests of the customer, institutions need to take adequate care to ensure that promotional schemes do not unreasonably divert the attention of the public from other important considerations in choosing an institution or a banking/financial product.

              • BC-1.1.7

                All documentation concerning promotional schemes should be in Arabic and English and, if relevant, any other language necessary for customers to fully understand and appreciate their terms and conditions. Such terms and conditions, including any related advertising, need to be clear, concise, truthful, unambiguous and complete so as to enable customers to make a fully informed decision.

              • BC-1.1.8

                Customers to whom promotional schemes are directed should enjoy equal opportunity in terms of access to, and treatment within, such schemes.

              • BC-1.1.9

                No costs (including funding costs), charges or levies associated with promotional schemes should be concealed from prospective customers.

              • BC-1.1.10

                Full and complete records should be maintained for promotional schemes, particularly where raffles/lotteries etc. are concerned.

              • BC-1.1.11

                Any raffles/lotteries etc. held as part of promotional schemes should be independently monitored (e.g. by the institution's external auditor) and adequate systems put in place to ensure fair play and impartiality.

              • BC-1.1.12

                An appropriate system should also exist for informing participants of the results of a raffle/lottery without delay. Institutions should note that raffles/lotteries etc. may be subject to rules and requirements (including prior authorisation/approval) laid down by the Ministry of Commerce.

              • BC-1.1.13

                Institutions may use small 'gifts' as an inducement to members of the public to use banks' services, provided such gifts are offered on a general basis and have a low monetary value.

              • BC-1.1.14

                Finally, due note should be taken of the overriding provisions of Bahrain (and any other relevant) law in relation to institutions' duties to customers to the extent (if any) that promotional schemes might impact on such duties.

        • BC-2 BC-2 Code of conduct for bank dealers and foreign exchange and money brokers in the interbank market

          • BC-2.1 BC-2.1 Introduction

            • BC-2.1.1

              The Code of Conduct which is prepared in cooperation with the Bankers' Society of Bahrain and the foreign exchange brokers, provide rules in respect of certain kinds of practice which experience has shown may cause difficulty and may jeopardise the good standing of the Bahrain market. Management of banks and money brokers are responsible for ensuring that their institutions are in full compliance with the Code.

            • BC-2.1.2

              Every broker and dealer shall at all times comply with the criteria in respect to market practice, integrity and conduct. Failure to comply with such criteria will be regarded as a serious offence by the BMA, which reserves the right to investigate any complaints brought to its attention. All participants should adhere to the spirit as well as to the letter of the Code.

            • BC-2.1.3

              The code is shown in full, although many paragraphs are not strictly relevant for Islamic banks. Treasury staff should refer to the relevant paragraphs as appropriate.

          • BC-2.2 BC-2.2 Market terminology and definitions

            • BC-2.2.1

              The use of generally accepted precise terminology should reduce misunderstandings and frustration, and to this end Appendix BC 5 sets out, without claiming to be exhaustive, accepted market terminology and definitions.

            • BC-2.2.2

              For the purpose of this chapter, the following definitions apply:

              (a) 'Broker' means a money and foreign exchange broker who is authorised by the BMA to operate in Bahrain.
              (b) 'Principal' means a party undertaking a transaction through a broker.
              (c) 'Bank' means any institution, holding a banking license.

          • BC-2.3 BC-2.3 Confidentiality and market practice

            • BC-2.3.1

              Confidentiality is vital for the preservation of a reputable and efficient market. Accordingly, the exchange of confidential information in respect of third parties is forbidden.

            • BC-2.3.2

              The rules which follow are not intended to define exhaustively the obligations of dealers and brokers but set down specific ways in which confidentiality should be safeguarded and operations should be conducted.

              (a) Use of phrases and terms likely to identify the name of the principal should be avoided at all times.
              (b) In foreign exchange transactions brokers should not disclose the name of the principal until the deal is being closed.

              A broker asking for a specific support price should be prepared to qualify the principal in terms of geographical location, by country or by region when the broker genuinely believes it will enable business to be concluded satisfactorily to the benefit of both broker and principal.
              (c) In deposit transactions, brokers should not disclose the name of the borrower until the broker is satisfied that the potential lender seriously intends to do business. Once a lender has asked for the identity of the borrower ('Who pays?'), the lender is committed to do business at the rate quoted with an acceptable name, until the lending bank takes the broker 'off' or puts himself under reference. In the event of the first disclosed name being unacceptable to the lender, the lender will be prepared to check other acceptable names provided that such names are shown to the lender by the broker within a reasonable amount of time, which should be stipulated if necessary.
              (d) In the deposit market, banks should whenever possible give brokers prior indication of those categories of principals and of any centers and areas with which they would be unwilling to do business, in order that the smooth operation of markets be facilitated and frustration be minimized. Lenders should indicate the amounts they are prepared to place with particular categories of borrower. Brokers should classify bids with an indication of the type and quality of names they are in a position to pass.
              (e) Practices whereby banks reject a succession of names in order to assess the market and brokers offer banks deals which have no chance of being concluded, merely in order to establish their interest, are totally unacceptable.
              (f) A principal is urged whenever possible to specify to a broker the rate, the amount, the currency, and the period of his requirements. The principal shall be willing to deal in a marketable amount with acceptable names and shall remain bound so to deal at the quoted rate unless either the broker is:
              (i) informed otherwise at the time of acceptance, or
              (ii) a time limit was placed (for example, 'Firm for one minute only').
              A broker who quotes a firm rate without qualification shall be prepared to deal at the rate, in a marketable amount. A broker, if quoting only the basis of one or two names shall qualify his quotation, e.g., 'one small offeror — only two names paying'. The broker should indicate whether prices are firm or simply for guidance and, if requested by the principal, should be willing to indicate the amount involved. Further he should confirm with banks at reasonable intervals that their interest is still firm.

              It is the responsibility of the principal to ensure the broker is made aware of any circumstances which materially affect the validity of the order placed with the broker.
              (g) A principal, by selecting to 'put a broker on' is deemed to have a serious intention of completing business, and should allow the broker sufficient time to quote the principal's interest to a potential counterparty with a view to doing business. In quantifying a 'sufficient time' factors such as the currency, market conditions and communication systems employed, should be taken into account.
              (h) A broker is held responsible for advising a principal on every occasion that his deposit rates are being checked by a potential counterparty. This action should help minimise the occasional difficulties that arise when a principal 'takes a broker off' simultaneously to having his prices checked.

              Whenever possible and subject to market conditions, a bank in the deposit market should, before he 'takes a broker off' either a single order or several orders, check whether the broker is already committed to deal on his behalf.
              (i) 'Under reference' orders placed by banks with brokers without having first being placed as 'firm', are to be discouraged. Firm orders which are later qualified by a request to 'put me under reference' indicate a principal's weakening desire to conclude business with that broker. 'Under reference' orders should not be left with a broker for more than a few minutes. A principal must ensure that the broker has the opportunity frequently to check the validity of an 'under reference' order.
              (j) No person may visit the dealing room of any broker or any bank except with the consent of a Manager or Director of that institution. A broker shall not in any circumstances permit any visitors from a bank to deal for his bank in the dealing room of that broker.
              (k) Management of banks should issue clear directions to staff on the monitoring, control and recording of 'after hours' dealing from premises other than bank dealing rooms. All deals of this kind must be properly authorised and confirmed.
              (l) A bank dealer shall not apply unfair pressure upon a broker to pass information which it would be improper for the broker to pass. Unfair pressure would for example include a statement made in any form that a failure to co-operate would lead to reduction in the business given by the principal or by other principals to the broker.
              (m) A principal should not place an order with a broker solely with the intention of finding out the name of a counterparty, who can be contacted directly with a view to concluding further deals.
              (n) Management of banks and brokers should lay down clear directions to staff on the extent to which dealing in foreign exchange or deposit for personal account is permitted. Any such dealing must be strictly controlled.
              (o) Care should be taken over the positioning of 2-way loudspeakers in dealing rooms.
              (p) Brokers and dealers should inform each other if conversations are being recorded. The use of such equipment is encouraged as a sensible means of enabling any subsequent disputes and differences to be settled.

          • BC-2.4 BC-2.4 Passing of details

            • BC-2.4.1

              The passing and recording of details form an essential part of the transaction and the possibility of errors and misunderstanding is increased by delay and by the passing of details in batches. Brokers should pass details verbally, and principals be prepared to receive them, normally within a few minutes after deals have been concluded.

            • BC-2.4.2

              When arranging and passing details on forward contracts in foreign exchange, banks and brokers must ensure that the rate applied to the spot end of the transaction bears a close relationship to the spot rate at the time the deal was concluded.

          • BC-2.5 BC-2.5 Confirmations

            • BC-2.5.1

              Written confirmation by a broker is the final check on the details of the transaction. The handling of confirmations must take account of the desire of brokers to have a realistic time-limit placed on their liability for differences. There is an obligation on recipients to check such confirmations. Initial confirmations should be sent out by telex without delay, and at the latest by close of business on the same working day. They should be followed up by written confirmation, normally hand-delivered and receipted before close of business on the following working day.

            • BC-2.5.2

              Banks must check all confirmations carefully upon receipt so that discrepancies shall be quickly revealed and differences minimised. Principals shall also make enquiries of brokers about particular confirmations which have not been received within an appropriate time (as above) or about any changes in contract terms.

            • BC-2.5.3

              In the case of deals where a bank pays against telex confirmation, the broker remains liable for differences until receipt of written confirmation is provided by the bank.

          • BC-2.6 BC-2.6 Differences and disputes

            • BC-2.6.1

              The majority of differences payable by brokers arise from errors occurring in payment or repayment instructions. They also arise from a broker, having in good faith indicated a firm rate, being unable to substantiate his quotation.

            • BC-2.6.2

              Any differences deemed payable by a broker to a bank (or by a bank to a broker) should be settled as soon as possible. The parties should provide each other with documents, setting out the exact details of and circumstances surrounding the deal.

            • BC-2.6.3

              It is acknowledged that differences are sometimes paid by 'points'. The management of broking firms should always ensure that this practice is strictly controlled and monitored.

            • BC-2.6.4

              All differences settled by direct payment should be advised in writing by the broker to the Director of Reserve Management, BMA, (copied to the Bank) indicating the amount paid and the other party's name. The BMA reserves the right to ask for further information at its discretion.

          • BC-2.7 BC-2.7 Conduct

            • BC-2.7.1

              The BMA will regard any breaches of the rules stated below regarding gifts, favours, betting and entertainment unacceptable.

            • Gifts and favours

              • BC-2.7.2

                No broker, including management, employees and other persons acting on their behalf, shall offer or give inducements to dealing room personnel of a bank. No gifts or favours whatsoever shall be so given unless the broker is satisfied that the person responsible for dealing operations in the bank concerned has been informed of the nature of the gift or favour.

              • BC-2.7.3

                Employees of banks shall not solicit inducements from brokers, nor shall they receive unsolicited gifts or favours from brokers without informing the person responsible for dealing operations in the bank concerned of the nature of such gifts or favours.

            • Bets

              • BC-2.7.4

                The making or arranging of bets between brokers and banks dealers is totally unacceptable.

            • Entertaining

              • BC-2.7.5

                It shall be the responsibility of management in both banks and brokers to ensure that entertainment offered in the course of business does not exceed reasonable limits and does not infringe standards of propriety and decency.

          • BC-2.8 BC-2.8 Responsibility

            • BC-2.8.1

              Brokers shall be responsible for ensuring that:

              (a) their principals understand fully the limitations of the brokers' responsibilities for business and market conducted;
              (b) all their principals understand that they are required to conform, where appropriate, to the Code of Conduct;
              (c) their staff carrying out transactions on behalf of principals are adequately trained both in the practices of the market-place and in the firm's responsibilities to principals; and
              (d) the BMA is notified of any changes in broking staff, in accordance with BMA requirements.

            • BC-2.8.2

              Bankers shall be responsible for ensuring that:

              (a) their dealing staff are adequately trained and supervised in the practices of the market (the requirement of this Code of Conduct should be fully understood by all staff involved in foreign exchange and currency deposit operations);
              (b) the BMA is notified of any changes in dealing staff, in accordance with BMA requirements;
              (c) their staff understand that the ultimate responsibility for assessing the creditworthiness of a borrower or lender lies with the bank and not the broker;
              (d) brokerage is normally payable at the end of the month in which the money passes, or otherwise by special arrangement; and
              (e) there is no pressure on brokers to reduce charges below the approved minimum rates.

          • BC-2.9 BC-2.9 Market regulations — Foreign exchange

            • Currencies

              • BC-2.9.1

                A broker will, in response to an enquiry from any bank, make known the currencies which it elects to quote and to make a service in.

              • BC-2.9.2

                Each broker shall provide, on request by a bank taking a service, general market information on all currencies handled (whether for the time being active or not) by that broker.

            • Brokerage

              • BC-2.9.3

                Brokers shall comply with the minimum scales of brokerage charges (see section BC-4.6) agreed in consultation with the Bankers' Society Council from time to time, or laid down by the BMA.

                In cases where there is no established minimum scale of brokerage charges, no deals shall be transacted until a rate has been agreed. Rates of brokerage in these cases should be agreed in advance, and only by Directors or senior managers on each side, and in no event by the dealers themselves.

              • BC-2.9.4

                Put-through deals may be net of brokerage.

              • BC-2.9.5

                Brokerage should be expressed in US dollars.

          • BC-2.10 BC-2.10 Market regulations — Currency deposits

            • Brokerage

              • BC-2.10.1

                Brokers shall comply with the minimum scales of brokerage charges (see section BC-4.6) agreed in consultation with the Bankers' Society Council from time to time, or laid down by the BMA. In cases where there is no established minimum scale of brokerage charges, no deals shall be transacted until a rate has been agreed. Rates of brokerage in these cases should be agreed in advance, and only by Directors or senior managers on each side, and in no event by the dealers themselves.

              • BC-2.10.2

                Calculation of brokerage on all currency deposits shall be worked out on a 360-day year, or a 365-day year, according to normally accepted market practice. For example, Sterling and Kuwaiti Dinars are on a 365-day year basis, and US dollars and Saudi Riyals are on a 360-day year basis.

                Brokers' confirmations and statements should express brokerage in US dollars.

              • BC-2.10.3

                In a forward-forward deposit (e.g. one month against six months) the brokerage to be charged shall be on the actual intervening period (i.e. in the above example — five months).

              • BC-2.10.4

                Put-through deals may be net of brokerage.

          • BC-2.11 BC-2.11 Market discipline

            • BC-2.11.1

              As part of its responsibility for supervising the conduct of brokers and dealers in the foreign exchange and currency markets, the Agency may, at its discretion:

              (a) investigate any complains concerning the conduct of brokers and dealers;
              (b) investigate possible breaches of this Code by brokers and banks; and/or
              (c) take such further action as it considers appropriate, in the light of all the relevant facts.

          • BC-2.12 BC-2.12 Adjustment of value dates in case of unexpected banking closing dates

            • BC-2.12.1

              Spot transactions and outrights:

              (a) Original agreed upon value date for identical currency sold and purchased: extension of value date to next possible value date for both currencies.
              (b) Original agreed upon value date for non-identical currency sold and purchased (for instance, Friday for US Dollars and Saturday for Gulf Currencies): as unexpected banking closing days for non-Middle Eastern currencies are unlikely — value of non-Gulf currencies unchanged and value of Gulf currency on the next working day, adjusting spot or outright rate taking into account interest rate difference between the two currencies.

              For pure outrights it would be advisable to adapt the same system as for swaps; however, implied swap difference is not visible or identical for both parties.

              It can be assumed that, if the above rule would cause substantial losses for one party, dealers will re-negotiate a new rate, on a case-by case basis; if no agreement can be reached, the BMA, — as final Arbitrator — will fix the interest rates, prevailing at that time, which will be used to calculate the points difference, with which the outright rate will be adjusted.

              It is possible that payment instructions for counter-currency are already sent out and cannot be cancelled; in that case the paying party should be entitled to the proceeds of the unexpected use of funds by the receiving party.

            • BC-2.12.2

              Deposits:

              (a) Maturing on unexpected closing day(s): Extending deposit to next possible value date; interest to be calculated in the extended period at original agreed upon interest rate.
              (b) Starting on unexpected closing day(s) and maturing after unexpected closing day(s): Starting date will be extended to next possible value date without altering maturing date; interest to be calculated on the shortened period at the originally agreed upon interest rate.
              (c) Starting on unexpected closing day(s) and maturing before or on next possible value date: Cancellation of deal.
              1. If payment instructions are already sent out by lender and can only be executed on next possible value date, and cannot be cancelled, borrower ensures repayment will be done on the same next possible value date. If in that case borrower cannot repay-because of deadline of receiving instructions by correspondent on same next possible value day, parties negotiate a new deal starting at value date of payment by lender and maturing according to new deal.
              2. If payment instructions are already sent out by lender for capital and by borrower for capital and interest both payments will be executed at same next possible value date, lender should refund to borrower unearned interest.

            • BC-2.12.3

              Swaps:

              (a) Maturing on unexpected closing day(s): Extending swap to next possible value date for both currencies, adjusting swap difference according to formula — swap difference divided by original number of days and multiplied by new number of days.
              (b) Starting on unexpected closing day(s) and maturing after unexpected closing day(s): Starting date for both currencies would be extended to next possible value date for both currencies without altering maturing date, adjusting swap difference according to Formula under paragraph BC-2.12.3(a).
              (c) Starting on unexpected closing day(s) and maturing before or on next possible value date: Deals are cancelled.

              If starting or maturing date of original swap under paragraph BC-2.12.1 or paragraph BC-2.12.2 are substantially different, per currency swap difference has to be recalculated in mutual agreement between the dealers;

              — It is possible that payment instructions for counter currency are already sent out and cannot be cancelled — in that case paying party should be entitled to the proceeds of the unexpected use of funds by the receiving party;
              — It is possible that payment instructions for Gulf currencies are already sent out and cannot be cancelled — in these cases rules according to paragraph BC-2.12.2(c)-1 and paragraph BC-2.12.2(c)-2 should be applied.

        • BC-3 BC-3 Client confidentiality

          • BC-3.1 BC-3.1 Disclosure of information about individual accounts

            • BC-3.3.1

              Banks should not publish or release information to third parties concerning the accounts or activities of their individual customers, unless:

              (a) such information is requested by an authorised official from the BMA or by an order from the Courts; or
              (b) the release of such information is approved by the customer concerned.

        • BC-4 BC-4 Customer account services and charges

          • BC-4.1 BC-4.1 Minimum balance and charges on accounts

            • BC-4.1.1

              Banks may impose no more than a monthly charge of BD 1 when the monthly weighted average balance for saving investment accounts for individuals falls below BD 20 (or equivalent in other currencies).

            • BC-4.1.2

              Orphans, widows, pensioners, individuals receiving social subsidies from the Ministry of Labour & Social Affairs, students and Bahraini nationals with a monthly salary below BD 250 should be exempted from maintaining the above minimum balance requirement for saving investment accounts.

              Banks should establish criteria for determining the eligibility of a person for exemption from the above charges and should notify their concerned customers accordingly.

          • BC-4.2 BC-4.2 Disclosure of Charges

            • BC-4.2.1

              In order to improve customer awareness and enhance transparency of bank charging structures, retail banks should display in Arabic and in English, by notice in their banking halls (both head offices and branches), a list of all current charges.

              Amended April 2011
              October 2007

            • BC-4.2.2

              Banks should also ensure that each customer is in receipt of its current list of charges. The list should specify standard charges and commissions that will be applied by the bank to individual services and transactions and to specific areas of business.

              October 07

            • BC-4.2.3

              [This Paragraph was deleted in July 2012].

              Deleted: July 2012

          • BC-4.2 BC-4.2 Disclosure of charges

            • BC-4.2.1

              In order to improve customer awareness and enhance transparency of bank charging structures, full commercial banks should display, by notice in their banking halls (both head offices and branches), a list of current charges.

            • BC-4.2.2

              Banks should also ensure that each customer is in receipt of its current list of charges. The list should specify standard charges and commissions that will be applied by the bank to individual services and transactions and to specific areas of business.

          • BC-4.3 BC-4.3 Accounts held for clubs and societies in Bahrain

            • BC-4.3.1

              All clubs and societies registered with the General Organisation for Youth and Sports (GOYS), are permitted under GOYS rule to only have one account with FCBs in Bahrain.

            • BC-4.3.2

              The FCB is requested to notify GOYS when any club or society registered with GOYS requests the opening of an account with the bank. The purpose of the notification is to obtain clarification whether or not the account in question can be opened in accordance with the rules of GOYS.

            • BC-4.3.3

              For accounts already held with the FCBs for clubs and societies registered with GOYS (i.e. before the application of the regulation in this section), the bank is requested to provide details of such accounts to GOYS (by reference to account name, relevant society, date opened and type of account) as soon as possible. If appropriate, GOYS will contact the relevant club or society in writing (with a copy to the bank) with instructions (e.g. to close the account) regarding such account.

          • BC-4.4 BC-4.4 Current accounts

            • BC-4.4.1

              FCBs levying fees on their low-balance customer current accounts, are required by the Agency to apply such fees to average balances when these fall below a prescribed level during a specified period.

            • BC-4.4.2

              In order to prevent incidences of returned cheques due to maintenance of low-balance current accounts, the banks may convert some low-balance and/or inactive current accounts to savings accounts.

          • BC-4.5 BC-4.5 Brokerage fee

            • BC-4.5.1

              The purpose of the contents of this section is to set out the new scale of brokerage fees effective for all banks in Bahrain.

            • BC-4.5.2

              The new scale of fees is the result of discussion and consultation between The Bankers' Society and the Bahrain Money Brokers.

          • BC-4.6 BC-4.6 Notification to the Agency on introduction of new or expanded customer products and facilities

            • BC-4.6.1

              The content of this section is applicable only to full commercial banks licensed by the Agency.

            • BC-4.6.2

              All institutions referred to under paragraph BC-4.6.1 are required to consult the Agency before the introduction of any new or expanded customer products and facilities. The Agency will respond to the concerned bank within one week of receipt of the notification if it has any observations on the new product.

            • BC-4.6.3

              Further, institutions should also advise the Agency, on a six-monthly basis, on the status of new or expanded products and facilities. The advise should cover the following aspects:

              (a) response to,
              (b) success of, and
              (c) difficulties in,

              the introduction of new or expanded products and facilities. The institution should also advise the Agency on any variances which are introduced to the terms and conditions applying to these products and facilities.

          • BC-4.7 BC-4.7 Procedures for inheritance of financial assets

            • BC-4.7.1

              The content of this section is applicable to all full commercial banks licensed by the Agency in the Kingdom of Bahrain.

            • BC-4.7.2

              The Agency requires all commercial banks to follow the undermentioned procedures regarding the distribution of the financial assets of a deceased customer.

              (a) Legal ownership of financial assets should only pass after sight of, and in accordance with, the relevant documentation issued by the Ministry of Justice (known as the "statutory portion").
              (b) Distribution of assets should be made to the order of an individual named in, and in accordance with, a mandate, duly certified by the Ministry of Justice, that reflects the permission of all inheritors that the named individual may act on their collective behalf.
              (c) Where minors are inheritors, the Ministry of Justice documentation must specifically refer to their inheritance and the instruction followed absolutely.

          • BC-4.17 BC-4.17 Blocking Customer Accounts

            • BC-4.17.1

              Islamic retail bank licensees must not block the accounts of a customer (who has a financing arrangement with it) due to customer’s termination from his or her employment or retirement regardless of the bank’s contractual rights to take such action. Banks instead must agree on other arrangements with the customer for the repayment of the financing.

              Added: April 2020

        • BC-5 BC-5 Dishonoured cheques

          • BC-5.1 BC-5.1 Penalty system for dishonoured cheques

            • BC-5.1.1

              The purpose of the contents of this section is to set out regulations relating to the system of penalising any person, whether natural or corporate in form, (referred to as a 'customer' in this chapter) whose cheque is

              (a) presented for payment, but is returned due to insufficient funds being available on his current account, where,
              (b) in the opinion of the FCB on whom the cheque is drawn, such cheque has been issued by the customer in bad faith.

              Cheques falling within this system are referred to as 'dishonoured cheques'. Due regard must be given by FCBs to the general provisions of Bahrain Law regarding joint accounts, partnership accounts and accounts in the name of corporate entities, as well as to the customer mandate in each case, to determine how such accounts may be dealt with for purposes of the Regulation in this chapter.

            • Procedures to be followed

              • BC-5.1.2

                On each occasion that an FCB becomes aware of a dishonoured cheque of one of its customers, that FCB will send a written warning to the relevant customer informing him/her of the existence of the dishonoured cheque, requesting him/her to immediately make good the insufficiency in his current account in order to clear the cheque. This written warning will also inform the customer of the provisions of this system with regard to dishonoured cheques and abusers of cheques.

              • BC-5.1.3

                On the first working day of each calendar month, each FCB should provide to the Agency a list of the names, supported with I.D. numbers (CPR or CR numbers (as applicable) for Bahrain residents, Passport or CR-equivalent numbers (as applicable) for non-Bahrain residents) of those customers to whom one (or more) written warning(s) has been sent in accordance with paragraph BC-5.1.2 above during the immediately preceding calendar month. This list should specify the number of written warnings relating to dishonoured cheques for each customer of the relevant FCB for the month in question and shall be in the form set out in Appendix BC 1. FCBs will be responsible for ensuring the accuracy of all details on their respective lists.

              • BC-5.1.4

                Using the lists referred to in paragraph BC-5.1.3 above, the Agency will prepare a further list (the 'Control List') of those customers to whom two or more written warnings were sent by any one or more FCB at any time within a maximum period of three consecutive calendar months. The Control List, which will be in the form set out in Appendix BC 2, will specify the name and I.D. numbers of each such customer, the total number of dishonoured cheques for that customer included in the lists referred to in paragraph BC-5.1.3 above, the name of the relevant FCB(s) on whose list(s) the customer's name has been included, and other relevant details for FCBs' information and checking in accordance with paragraph BC-5.1.5 below. Any customer to whom more than two written warnings relating to dishonoured cheques were sent by any one or more FCB at any time within a maximum period of three consecutive calendar months will be automatically deemed an abuser of cheques for the purposes of paragraph BC-5.1.7 below.

              • BC-5.1.5

                On the second working day of each calendar month, the Agency will circulate a draft copy of the Control List to FCBs. FCBs will be requested to check the accuracy of the Control List by reference to the information they have sent to the Agency in accordance with paragraph BC-5.1.3 above, and to notify the Agency within a maximum period of one week of receiving the list of any inaccuracies on the Control List. The Control List, as amended if appropriate, will be circulated to FCBs by the Agency on the second working day after it receives all responses from FCBs. FCBs will be required to monitor the customers on this Control List to establish whether any one or more of them issued another dishonoured cheque in the instant calendar month. Any FCB becoming aware of a dishonoured cheque of one or more of its customers on the Control List during this month should notify the Agency of this fact, using the relevant section in Appendix BC 1, on the first working day of each calendar month.

              • BC-5.1.6

                If the Agency does not receive any notification as contemplated in paragraph BC-5.1.5 above for a particular customer on the Control List, that customer's name shall be withdrawn from the next issue of the Control List. However, the Agency will monitor the names of customers appearing on the Control List during the three consecutive calendar months falling immediately after the calendar month in which a customer's name is taken off the Control List. If any such customer's name is again reported to the Agency pursuant to paragraph BC-5.1.3 above at any time during this three month period,

                (a) his name will be returned to the Control List on the date of its next issue if there is only one dishonoured cheque reported in this context, or
                (b) he will be automatically deemed an abuser of cheques for the purposes of paragraph BC-5.1.7 below if there is more than one dishonoured cheque reported in this context.

                If, however, his name is not reported to the Agency in this regard, the Agency will cease its monitoring thereof.

              • BC-5.1.7

                If the Agency does receive notification as contemplated in paragraph BC-5.1.5 above for a particular customer on the Control List, or if a customer is deemed to be an abuser of cheques within paragraph BC-5.1.4 or paragraph BC-5.1.6 above, such customer (herein referred to as an 'abuser of cheques') will be penalised as follows. Using Appendix BC 3, on the second working day of the calendar month following the receipt of the information referred to above, the Agency will circulate a draft list to FCBs. FCBs will be requested to check the accuracy of this list by reference to the information they have sent to the Agency in accordance with paragraph BC-5.1.5 above, and to notify the Agency within a maximum period of one week of receiving the list of any inaccuracies on that list. The list, as amended if appropriate, will be circulated to FCBs by the Agency on the second working day after it receives all responses from FCBs, and will direct the FCB(s) which has/have reported an abuser of cheques to withdraw all cheque books held by that abuser of cheques, and to close such person's current account(s) by transferring any balances therein to saving and/or any other accounts held with that/those FCB(s). Furthermore, those FCB(s) will be required not to provide current account facilities to that abuser of cheques for the twelve calendar month period immediately following the date of issue of the relevant list. All other FCBs should, within a maximum period of one month after the issue of the relevant list, also withdraw current account facilities from that abuser of cheques for the same twelve calendar month period. FCBs will be entitled to recover any amounts due to them from abusers of cheques as a result of compliance with this system by availing of their set-off rights under Bahrain Law.

              • BC-5.1.8

                On Appendix BC 4, the Agency will notify FCBs of those abusers of cheques in respect of whom the twelve calendar month period referred to in paragraph BC-5.1.7 above has ended, and to whom FCBs may reinstate/offer current account facilities at their discretion.

              • BC-5.1.9

                Nothing in this Regulation shall prejudice the rights of banks against customers otherwise existing under Bahrain Law and/or under any particular bank/customer agreement. Furthermore, FCBs will be entitled to the same immunity from prosecution as the Agency for any harm suffered, or alleged to be suffered, by customers as a result of FCBs complying with the Regulation in this chapter.

              • BC-5.1.10

                The Regulation in this chapter may be amended, in whole or in part, from time to time by the Agency. In addition, the Agency may, at its discretion and as it so deems appropriate, issue specific directions to all or any FCBs regarding abusers of cheques or any particular abuser of cheques.

          • BC-5.2 BC-5.2 General guidance on administration of dishonoured cheques

            • BC-5.2.1

              FCBs which wish to issue cheque guarantee cards for an amount not exceeding BD 200 may do so — subject to informing the Director of Banking Services at the Agency of their intention and the arrangements governing the issue of such cards.

            • BC-5.2.2

              FCBs, generally, should take steps to extend their administrative supervision and control over current account customers (in particular those who are in repeated breach of normally-accepted behaviour), and to stress to account holders the need for an appropriate level of discipline in the usage of cheques.

            • BC-5.2.3

              FCBs should exercise greater vigilance over borrowers, especially in the area of consumer finance, where such borrowers maintain their current accounts at a bank or banks other than at the lending bank.

            • BC-5.2.4

              The Agency will monitor the incidence of returned cheques on a monthly basis (as stipulated in section BC-5.1) in order to determine the extent to which such incidence is being reduced or otherwise.

          • BC-5.3 BC-5.3 Penalty charges on dishonoured cheques

            • BC-5.3.1

              The Agency will impose penalty charges of BD 5 (five Bahraini Dinars) on each returned cheque for the reasons of 'Refer to Drawer', 'Not Arranged For', 'Re-present', and 'Account Closed'. Individual banks will continue to be informed daily of any charges accruing to their accounts. The respective accounts will be debited on the same day.

            • BC-5.3.2

              FCBs will be entitled to charge customers no more than BD 10 (ten Bahraini Dinars) in respect of each dishonoured cheque.

        • BC-6 BC-6 Automated Teller Machine (ATM)

          • BC-6.1 BC-6.1 Installation of an off-site ATM in Bahrain

            • BC-6.1.1

              The purpose of the content of this section is to set out the criteria to be followed by banks for the installation and usage of off-site ATMs in the Kingdom of Bahrain.

            • BC-6.1.2

              Applications for the installation of off-site ATMs should be sent in writing, and in accordance with the requirements set out in paragraphs BC-6.1.3 to paragraphs BC-6.1.10, to the Executive Director of Banking Supervision at the Agency.

            • General criteria

              • BC-6.1.3

                Subject to the prior written approval of the Agency, off-site ATMs may be owned individually or jointly by licensed FCBs which are members of the BENEFIT Switch. Each relevant owning FCB must already have linked its bank's ATM capability to the BENEFIT Switch prior to requesting the BMA's permission to install an off-site ATM and, furthermore, must conform to the general standards set by the Benefit company.

              • BC-6.1.4

                Subject to the prior written approval of the Agency, off-site ATMs may, at each relevant owning FCB's discretion, be fully functioning or operate as cash dispensers only. In addition, off-site ATMs may, at each relevant owning FCB's discretion (and subject to the prior written approval of the Agency), be 'walk-up' or 'drive-in' machines.

              • BC-6.1.5

                Owning FCBs will bear full legal responsibility for their respective off-site ATMs, as well as all costs associated with such ATMs (including, but not limited to, cash replenishment, installation, security etc.).

              • BC-6.1.6

                FCBs wishing to install an off-site ATM must submit an application (in writing) for the BMA's approval. This application must be accompanied by a copy of a feasibility study for that particular ATM, as well as such other information as the BMA may request. In particular, a copy of the written permission (for installation of that off-site ATM) of the legal owner of the proposed location must be provided to the Agency, as well as a copy of the written permission of any other relevant authorities in this context (e.g. the Traffic & Licensing and Civil Defence & Fire Service Directorates of the Ministry of Interior).

              • BC-6.1.7

                Applications will generally be considered on a 'first come, first served' basis for a particular location. If more than one application is received to install an off-site ATM in the same location, the number of such applications which are approved will depend upon whether the location appears to the Agency to be capable of sustaining multiple off-site ATMs (subject, in addition, to the exact details of each individual application regarding security etc. being acceptable to the Agency).

              • BC-6.1.8

                Each application will be assessed on its individual merits, and at the Agency's discretion, taking into account factors which the Agency considers relevant including, but not limited to:

                (a) the suitability of the location in question,
                (b) the level of overall activities of the applicant in the market as well as the size and make-up of its customer base, and
                (c) the type and range of facilities which the applicant proposes offering through the off-site ATM at the location in question.

              • BC-6.1.9

                In addition to the information required by the Agency under paragraph BC-6.1.6, the Agency may require further information/clarification to be provided to it before it takes a decision regarding the application. The Agency's decision in this regard will be notified to each relevant applicant FCB in writing and will be final.

              • BC-6.1.10

                The Agency may, at its discretion, require an off-site ATM to be closed at any time. In addition, an owning FCB may request the Agency in writing for permission to close any of its off-site ATMs.

          • BC-6.2 BC-6.2 GCC ATM network charges

            • BC-6.2.1

              The purpose of this section is to set a limit on ATM service charges imposed by full commercial banks in the Kingdom of Bahrain for customer withdrawals and other ATM services transactions relating to other banks in the GCC (i.e. linking to GCC ATM networks).

            • BC-6.2.2

              The limits in this section do not apply to ATM service charges on local ATM networks.

            • BC-6.2.3

              The Agency requires that the charges on such customer withdrawals and other ATM services should not exceed BD 1 (one Bahraini Dinar) per transaction.

        • BC-7 BC-7 Mudaraba contracts

          • BC-7.1 BC-7.1 Minimum terms and conditions

            • BC-7.1.1

              As part of its ongoing supervision of Islamic banks, the Agency has set out in Appendix BC 7 details of the type of terms and conditions which it believes Islamic banks should include, as a minimum, in such Mudaraba contracts.

            • BC-7.1.2

              All such Mudaraba contracts entered into by a bank (whether new or renewed contracts) should meet the standards referred to under paragraph BC-7.1.1.

            • BC-7.1.3

              Banks must have a policy statement as to the policies and procedures in place to safeguard the interest of the PSIA holders. The statement must, as a minimum, cover the following areas:

              (a) Basis for allocation of profit or loss to the PSIA;
              (b) Policy for making provisions and reserves against assets and equity for PSIA (refer to FAS 11, issued by AAOIFI, for recognition and measurement of provisions and reserves) and to whom these provisions and reserves revert to in case of write-back or recovery;
              (c) Policy on the priority for investment of own funds and those of unrestricted investment account holders; and
              (d) Basis for allocating expenses to the PSIA.

              Banks must agree their Policy Statements with the Agency.

        • BC-8 BC-8 Margin Trading System

          • BC-8.1 BC-8.1 Introduction

            • BC-8.1.1

              This Chapter applies to all full commercial banks in Bahrain.

            • BC-8.1.2

              Investors purchasing securities (as defined from time to time by the Bahrain Stock Exchange ("BSE") listed on the BSE may pay for them under the Margin Trading System ("The System") by borrowing a portion of the purchase price from a participating bank. The System is subject to relevant provisions of the BMA Law, the BSE Law, any rules and regulations issued pursuant to such Laws and this Module. The System applies to equities in companies listed on the BSE. Unless restrictions apply under Bahrain law in this regard, the System shall be available to Bahraini or non-Bahraini investors, whether resident or non-resident in Bahrain.

            • BC-8.1.3

              The main objective of introducing the System is to enhance the overall activity on the BSE, allowing investors to leverage their investments, in a controlled manner.

            • General criteria

              • BC-8.1.4

                Only Full Commercial Banks will be permitted as participating banks for the System. Participating banks must each receive the prior general written approval of the BMA in order to take part in the System. The BMA will notify the BSE of the identity of participating banks. The BMA's approval may be withdrawn at its discretion.

              • BC-8.1.5

                BSE Brokers will not be permitted to act as lenders for the System.

          • BC-8.2 BC-8.2 Limits and Trading Rules

            • BC-8.2.1

              An investor may, through his relationship with any one individual participating bank under the System, invest a maximum of BD200,000 in securities (i.e. BD200,000 per investor/per individual participating bank, made up of BD100,000 by way of the investor's own initial margin and BD100,000 by way of financing from the relevant participating bank to that investor).

            • BC-8.2.2

              An investor may, through approaching more than one bank under the System, invest a maximum of BD500,000 in securities (i.e. BD500,000 per investor/from all participating banks, made up of BD250,000 by way of the investor's own initial margin with all participating banks and BD250,000 by way of total financing from all participating banks to that investor.

            • BC-8.2.3

              The amount of the margin facility made to an investor under the System shall be included as an exposure to that customer, and contribute towards the large exposures limit and the consumer finance limit for that person.

            • BC-8.2.4

              The total amount of financing granted by an individual participating bank to all investors under the System shall not, at any time exceed 15% of that participating bank's capital base, such percentage to be reviewed by the BMA at its discretion from time to time.

            • BC-8.2.5

              In relation to the aggregate limit under paragraph BC-8.2.2 above, the Agency will require participating banks to inform the Credit Risk Bureau of all facility limits approved to investors under the System from time to time. Participating banks must check with the CRB on the amount of facility limits outstanding under the System at any time to a particular investor.

            • Brokers

              • BC-8.2.6

                Only those brokers approved by the BSE will be permitted to act as brokers for the System. Generally, brokers will only be approved if they (a) hold a "Class A" license from the BSE, and (b) meet the requirements set for the System from time to time by the BSE and the BMA.

            • Documentation

              • BC-8.2.7

                Only standard-form documents (application forms and agreements) will be used for the System. Standard-form agreements, drafted and approved in advance by the BSE, will be entered into between the participating bank and the investor (in respect of financing), and between the participating bank and the investor and the broker (in respect of trading) and, as relevant, these agreements shall (amongst other things) confirm that:

                a. The investor is borrowing or financing a stated amount from the participating bank for the purpose of taking part in the System;
                b. The investor will repay such stated amount, together with any interest or charges thereon, when due and in accordance with the agreement;
                c. The investor understands the risks involved in margin trading as well as the implications of the undertakings given by him;
                d. The participating bank can sell the securities bought through the System if the relevant margin is called and not met, without further formalities being required;
                e. The broker is liable for marking the securities to market on a daily (or more frequent) basis and for keeping the participating bank updated as to the participating bank's exposure to the investor;
                f. The investor can place orders with the broker for the purchase of securities up to the limit permitted by the agreement;
                g. Each party to the agreement in question shall abide by the duty of confidentiality imposed on him in relation to the matters set out in the agreement; and
                h. There is an overriding obligation on the parties thereto to comply with Bahrain law in general and, in particular, with the share-ownership restrictions applying to certain types of securities.

            • Owner of the Securities bought using the System

              • BC-8.2.8

                For ease of transfer and sale of the securities in the event that a margin is called by the participating bank but not met by the investor, the securities will be registered in the participating bank's name (for the account of the investor) and held by a custodian.

              • BC-8.2.9

                Under paragraph BC-8.2.8 above; (a) the securities should not be considered as part of the bank's own assets for the purposes of determining ownership/control under Bahrain law, and (b) if the investor has discharged his obligations to the participating bank under the System and the securities have not been sold, the securities shall be transferred into the legal ownership of the investor.

            • Margin Percentage

              • BC-8.2.10

                For equities listed on the BSE, an investor shall have the right to borrow a loan the value of which shall not exceed 50% of the total value of the funds being invested (i.e. 1:1). The BMA and the BSE shall coordinate in making any change to the margin percentages set for the System.

            • Margin Call Top-up

              • BC-8.2.11

                The margin call top-up shall be 30% of the total value of the funds invested by an investor through a margin account with a participating bank. An investor shall settle a margin call on the settlement date (as determined by the BSE) by making a cash payment of such amount to the participating bank. Such cash payment may, at the investor's discretion and in whole or part, come from the sale of the securities bought through the System, or otherwise. Failure to meet such margin call will, however, give the participating bank the right to sell the securities bought through the System.

            • Margin Charges

              • BC-8.2.12

                The participating bank shall impose charges on the financing amount granted to the investor at a rate or on a basis to be determined by the participating bank. In the event that investor's margin account is in credit in excess of the margin applicable thereto, profit shall be paid on the excess at a rate to be determined by the participating bank.

      • CA CA Capital Adequacy

        • CA-A CA-A Introduction

          • CA-A.1 CA-A.1 Application

            • CA-A.1.1

              Regulations in this module are applicable to locally incorporated banks on both a stand-alone, including their foreign branches, and on a consolidated group basis.

            • CA-A.1.2

              In addition to licensees mentioned in paragraph CA-A.1.1, certain of these regulations (in particular gearing requirements) are also applicable to full commercial branches of foreign banks in the Kingdom.

          • CA-A.2 CA-A.2 Purpose

            • CA-A.2.1

              The purpose of this module is to set out the Agency's capital adequacy regulations and provide guidance on the risk measurement for the calculation of capital requirements by banks referred to under CA-A.1.1.

            • CA-A.2.2

              The module also sets out the minimum gearing requirements which relevant banks (referred to in section CA-A.1) must meet as a condition of their licensing.

            • CA-A.2.3

              The Agency requires in particular that the relevant banks maintain adequate capital, in accordance with the Regulation in this module, against their risks as capital provides banks with a cushion to absorb losses without endangering customer accounts. Due to this, the Agency also requires the relevant banks to maintain adequate liquidity and identify and control their large credit exposures that might otherwise be a source of loss to a licensee on a scale that might threaten its solvency.

            • CA-A.2.4

              The regulations contained in this section are consistent in all substantial respects with the approach recommended by the Basel Committee on Banking Supervision and the Statement on the Purpose and Calculation of the Capital Adequacy Ratio for Islamic Banks issued by Accounting and Auditing Organisation for Islamic Financial Institutions (AAOIFI).

            • CA-A.2.5

              The Agency recognises that the Basel Committee guidelines may not address specific characteristics of the various products and services offered by Islamic banks. Therefore, the Agency has adopted a risk-based approach and has tailored the regulations to address the specific risk characteristics for Islamic banks.

            • CA-A.2.6

              This module provides support for certain other parts of the Rulebook, mainly:

              (a) Licensing and Authorisation Requirements;
              (b) BMA Reporting Requirements;
              (c) Credit Risk Management;
              (d) Market Risk Management;
              (e) Operational Risk Management;
              (f) Liquidity Risk Management;
              (g) High Level Controls:
              (h) Relationship with Audit Firms;
              (i) Enforcement; and
              (j) Penalties and Fines.

          • CA-A.3 CA-A.3 Key requirements

            • CA-A.3.1

              All locally incorporated banks are required to measure and apply capital charges in respect of their credit and market risk capital requirements.

            • The capital requirement

              • CA-A.3.2

                Banks are allowed two classes of capital instruments (see section CA-2.2) to meet their capital requirements for credit risk and market risk, as set out below:

                Tier 1: Core capital — Supports the calculation of credit risk weighted assets and at least 28.57% of market risk.
                Tier 2: Supplementary capital — Supports credit risk and market risk subject to limitations.

            • Measuring credit risks

              • CA-A.3.3

                In measuring credit risk for the purpose of capital adequacy, banks are required to apply a simple risk-weighted approach through which claims of different categories of counterparties are assigned risk weights according to broad categories of relative riskiness.

            • Measuring market risks

              • CA-A.3.4

                The minimum capital requirement for equities is expressed in terms of two separately calculated charges, one relating to the "specific risk" of holding a long position in an individual equity, and the other to the "general market risk" of holding a long position in the market as a whole.

            • Measuring foreign exchange risk

              • CA-A.3.5

                The measurement of the foreign exchange risk involves, as a first step, the calculation of the net open position in each individual currency including gold and as a second step, the measurement of the risks inherent in the bank's mix of assets and liabilities positions in different currencies.

            • Measuring commodities risk

              • CA-A.3.6

                Banks should adopt either the simplified approach to calculate their commodities risk and the resultant capital charges or the maturity ladder approach. Where banks have Salam and Parallel Salam contracts, the maturity ladder approach must be used.

            • Minimum capital ratio requirement

              • CA-A.3.7

                On a consolidated basis, the Agency has set a minimum Risk Asset Ratio ("RAR") of 12.0% for all locally incorporated banks. Furthermore, on a solo basis, the parent bank is required to maintain a minimum RAR of 8.0% (i.e. unconsolidated).

            • Maintaining minimum RAR

              • CA-A.3.8

                All locally incorporated banks must give the Agency immediate written notification of any actual breach by such banks of either or both of the above RARs. Where such notification is given, the bank must also provide the Agency; no later than one calendar week after the notification, with a written action plan setting out how the bank proposes to restore the relevant RAR(s) and report on a weekly basis thereafter on the bank's relevant RAR(s) until such RAR(s) have reached the required target level(s).

              • CA-A.3.9

                The Agency considers it a matter of basic prudential practice that, in order to ensure that these RARs are constantly met, banks set up internal "targets" of 12.5% (on a consolidated basis) and 8.5% (on a solo basis) to warn them of a potential fall by the bank below the Agency's required minimum RARs. Where a bank's capital ratio falls below its target ratio, the General Manager should notify the Agency immediately, however, no formal action plan will be necessary. The General Manager should explain what measures are being implemented to ensure that the bank will remain above its minimum RAR(s).

              • CA-A.3.10

                The bank will be required to submit the PIRI forms to the Agency on a monthly basis, until the RAR(s) exceeds its target ratio(s).

            • Gearing requirements

              • CA-A.3.11

                For Full Commercial Bank and Offshore Banking Unit licensees, deposit liabilities should not exceed 20 times the respective bank's capital and reserves.

              • CA-A.3.12

                For Investment Bank licensees, deposit liabilities should not exceed 10 times the respective bank's capital and reserves.

          • CA-A.4 CA-A.4 Regulation history

            • CA-A.4.1

              This module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

            • CA-A.4.2

              A list of most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
                   
                   
                   
                   
                   

            • Evolution of the Module

              • CA-A.4.3

                Prior to the development of Rulebook, the Agency had issued various circulars representing regulations relating to capital adequacy requirements. These circulars have now been consolidated into this module covering the capital adequacy regulation. These circulars and their evolution into this module are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                PIRI
                BC/09/01
                26 Nov 2001 CA Prudential Information Returns for Islamic Financial Institutions
                OG/78/01 20 Feb 2001 CA-2.5 Monitoring of Capital Adequacy
                BC/01/98 10 Jan 1998 CA-2.5 Risk Asset Ratio

            • Effective date

              • CA-A.4.4

                The contents in this module are effective from the date depicted in the original circulars (see paragraph CA-A.4.3) from which the requirements are compiled.

        • CA-B CA-B General guidance and best practice

          • CA-B.1 CA-B.1 Introduction

            • CA-B.1.1

              This chapter provides general guidance on Capital adequacy requirements, unless otherwise stated.

            • CA-B.1.2

              It sets best practice standards and should generally be applied by all licensees to their activities.

          • CA-B.2 CA-B.2 Guidance provided by other international bodies

            • Basel Committee: The management of banks' off balance sheet exposures — a supervisory perspective

              • CA-B.2.1

                In March 1986, the Basel Committee on Banking Supervision issued a paper titled "The management of banks' off-balance-sheet exposures — a supervisory perspective" (see www.bis.org/publ/bcbsc134.pdf).

              • CA-B.2.2

                This paper examines off balance sheet risks from three angles — market/position risk, credit risk and operational/control risk. Part III of this paper examines credit risk (including control of large exposures, settlement risk and country risk), with particular emphasis given to the assessment of the relative risks of the different types of off balance sheet activity.

          • CA-B.3 CA-B.3 Enforceability

            • CA-B.3.1

              These guidance should not be taken as legally binding requirements, unless otherwise embodied in Bahrain law or by regulation.

            • CA-B.3.2

              It should be noted that the provisions in this chapter are to be taken as guidance, unless otherwise stated, supplementing the Regulations set out in this module.

        • CA-1 CA-1 Scope and coverage of capital charges

          • CA-1.1 CA-1.1 Introduction

            • CA-1.1.1

              All locally incorporated banks are required to measure and apply capital charges in respect of their fiduciary and displacement risk, credit and market risk capital requirements.

            • CA-1.1.2

              Fiduciary and displacement risk is defined as [ref IFSB].

            • CA-1.1.3

              Credit risk is defined as the potential that a bank's counterparty will fail to meet its obligations in accordance with agreed terms. Credit risk exists throughout the activities of a bank in the banking book and in the trading book including both on and off balance sheet exposures.

            • CA-1.1.4

              Market risk is defined as the risk of losses in on or off balance sheet positions arising from movements in market prices. The risks subject to the capital requirement of this module are:

              (a) the risks pertaining to equities in the trading book;
              (b) foreign exchange risk throughout the bank; and
              (c) commodity risk throughout the bank.

          • CA-1.2 CA-1.2 Measuring fiduciary and displacement risks

            • CA-1.2.1

              Islamic banks mobilise funds on a profit and loss sharing basis (PLS). However, certain risks are associated with such PLS accounts. These risks are referred to as fiduciary and displaced commercial risk.

            • CA-1.2.2

              To cater for these risks the Agency has accepted the recommendations contained in the AAOIFI's statements and requires the inclusion of 50% of the risk weighted assets of the Profit Sharing Investment Accounts (PSIA) in the denominator of the capital adequacy ratio.

          • CA-1.3 CA-1.3 Measuring credit risks

            • CA-1.3.1

              In measuring credit risk for the purpose of capital adequacy, banks are required to apply a simple risk-weighted approach through which claims of different categories of counterparties are assigned risk weights according to broad categories of relative riskiness.

            • CA-1.3.2

              The Agency has adopted the risk weightings recommended by the Basel Committee on Banking Supervision, where applicable. However, the Basel Committee does not define the risk weightings for some of the specific Islamic contracts.

            • CA-1.3.3

              In Islamic banking, the legal form is as important as the substance of the transaction otherwise the transaction would not be permissible under Shari'a. Therefore, when assigning risk weights to the various Islamic contracts, banks should consider the legal form of the transactions as well as the substance.

            • CA-1.3.4

              The framework of weights consists of four weights — 0%, 20%, 50% and 100% for on and off balance sheet items, which based on a broad-brush judgment, are applied to the different types of assets and off balance sheet exposures within the banking book.

            • CA-1.3.5

              The resultant different weighted assets and off balance sheet exposures are then added together to calculate the total credit-risk-weighted assets of the bank.

            • CA-1.3.6

              The Agency has addressed the issue of the risk weightings for some of the commonly used Islamic contracts. If banks are involved in contracts not covered below they should contact the Agency and agree on an appropriate risk-weighting category.

            • Murabaha and Murabaha to the purchase orderer

              • CA-1.3.7

                The Agency as a policy requires that all Murabaha contracts be based on binding promises. The Murabaha receivables should be assigned a risk weight based on the credit standing of the obligor as recommended by the Basel Committee.

            • Mudaraba contracts

              • CA-1.3.8

                Mudaraba contracts should be assigned a risk weighting according to the underlying investments. Where Mudaraba funds are invested in securities listed on recognised exchanges and the price volatility is based on market movements, these should be removed from credit risk weightings and subject to market risk regulations. Examples would be equity Mudarabas where banks may have direct exposure in the value of the underlying equities or commodity Mudarabas.

              • CA-1.3.9

                Investments in other Mudarabas such as real estate or leasing should be assigned risk weightings according to the standing of the underlying investment as per the Basel Capital Accord.

              • CA-1.3.10

                Where a Mudaraba fund invests in another Mudaraba contract, which in turn makes investments at its own discretion, the risk weight would be based on the credit standing of the counterparty (investee Mudarib) as recommended by the Basel Committee. Investments in particular asset classes made at the discretion of the (investor) Mudaraba fund should be assigned risk weighting according to the underlying investments, where possible.

            • Musharaka contracts

              • CA-1.3.11

                Musharaka contracts refer to partnerships in specific transactions or projects. These exclude participation in the share capital (equity) of other enterprises. Risk weights should be assigned in accordance with the standings of the underlying investment as per the guidelines of the Basel Committee. Musharaka in real estate, plant and machinery or other similar assets attract a 100% risk weighting.

              • CA-1.3.12

                Musharakas in trading transactions will attract risk weighting as per the standing of the underlying investment, which in all cases would attract a 100% risk weighting. Where the transaction involves trading in commodities which may be traded in secondary markets, these should be removed from credit risk weighting and subjected to market risk regulations.

              • CA-1.3.13

                In cases where it is difficult to ascertain the composition of the underlying asset, risk weight would be assigned based on the credit standing of the counterparty.

            • Ijarah / Ijarah Muntahia Bittamleek assets

              • CA-1.3.14

                Under Shari'a, substantial risks and rewards of ownership of assets may not be transferred to lessees. Therefore, assets acquired for the purpose of leasing under Ijarah or Ijarah Muntahia Bittamleek contracts should be carried on the balance sheet of the lessor and assigned a risk weighting of 100%.

              • CA-1.3.15

                However, where these are residential properties, leased under Ijarah Muntahia Bittamleek with the lessee's option to buy at the end of the lease term and to use the properties for residential purposes, a 50% risk weighting is assigned, where the lessor has a first enforceable charge on the assets.

            • Istisna'a and parallel Istisna'a contracts

              • CA-1.3.16

                The accounting for these contracts should be in accordance with Financial Accounting Standard (FAS) No. 10: Istisna'a and Parallel Istisna'a, issued by AAOIFI.

              • CA-1.3.17

                Istisna'a and parallel Istisna'a contracts would attract risk weighting as per the credit standing of the respective counterparties in accordance with the Basel Committee.

            • Salam and parallel Salam

              • CA-1.3.18

                Amounts paid in respect of Salam contracts (for which there exists a parallel Salam contract) should normally be assigned a risk weight as per the credit standing of the customer in accordance with the Basel Committee.

              • CA-1.3.19

                Salam and parallel Salam contracts would attract risk weighting as per the credit standing of the respective counterparties in accordance with the Basel Committee.

            • Participations and equity investments

              • CA-1.3.20

                The supervision of banks for capital adequacy purposes is carried out on a consolidated basis, taking into account all holdings of the capital of other entities by the concerned bank. For subsidiaries, the preferred mode of consolidation is to add the assets and liabilities into the accounts of the parent on a line-by-line basis. For associate companies (i.e. where the parent bank owns 20% or more of the voting stock, and/or has voting control of the concerned company), the assets and liabilities should also be consolidated on a line-by-line basis. If banks do not wish to consolidate subsidiaries or associates (that meet the above criteria), they must contact the Agency to agree on the accounting treatment to be used. Participations and investments which amount to below 20% of the voting capital of the concerned company should be accounted for at fair value and weighted at 100%.

              • CA-1.3.21

                Banks which have subsidiary and associate companies must also be supervised for capital adequacy on a solo basis (i.e. after deducting all holdings of the share capital of all subsidiaries and associates (that meet the criteria in paragraph CA-1.3.20 above) and excluding all their assets and liabilities from the accounts of the parent bank). Holdings of other participations and equity investments need not be deducted on a solo basis, but should be accounted for at fair value and weighted at 100%. Banks should note paragraph CA-2.2.6 in respect of the treatment described in this paragraph and in paragraph CA-1.3.20.

            • Intra fund balances

              • CA-1.3.22

                Transactions between the corporate book (i.e. self-financed and financed by unrestricted investment accounts) and restricted investment accounts are not allowed, unless approved by the Agency on a temporary basis.

              • CA-1.3.23

                If permitted by the Agency, on a temporary basis, the following weightings will be applied:

                (a) Corporate or unrestricted investment funds invested in Restricted Investment Accounts.

                Risk weighting would be assigned on the underlying asset as per the Basel Committee Guidelines and in accordance with the guidance set out under chapters CA-1 to CA-6.
                (b) Restricted investment account funds invested in corporate books.
                (i) In the corporate books, the assets financed by restricted investment accounts would be included as part of the corporate assets and risk weighting assigned in accordance with the guidelines.
                (ii) 0% risk weighting should be assigned to the funds invested by the restricted investment accounts in the corporate books in order to avoid double counting as the resultant assets are already risk weighted in the Bank's books.
                (iii) Banks must agree with the Agency on the treatment of investments by restricted investment accounts in the corporate book. The Agency will consider each case on its merit.

          • CA-1.4 CA-1.4 Measuring market risks

            • Trading book

              • CA-1.4.1

                The trading book means the bank's positions in financial instruments (including off balance sheet instruments that are intentionally held for short-term resale and/or which are taken on by the bank with the intention of benefiting in the short-term from actual and/or expected differences between their buying and selling prices, or from other price variations, and positions in financial instruments arising from matched principal brokering and market making). Treatment of risks associated with any option transactions should be agreed in advance with the Agency, who will consider the issue on a case by case basis.

              • CA-1.4.2

                Each bank should agree to a written policy statement with the Agency as to which activities are normally considered trading and constitute part of the trading book. Trading book's definition should be consistently applied by the bank from year to year.

              • CA-1.4.3

                It is expected that the trading activities will be managed and monitored by a separate unit and that such activities should be identifiable because of their intent, as defined in paragraph CA-1.4.1 above.

            • Equity risk

              • CA-1.4.4

                The capital charges for equities will apply based on the current market values of items in a bank's trading book.

            • Foreign exchange and commodities risk

              • CA-1.4.5

                The capital charges for foreign exchange risk and for commodity risk will apply to a bank's total currency and commodity positions, with the exception of structural foreign exchange positions in accordance with section CA-5.3 of these regulations.

            • Exemptions

              • CA-1.4.6

                Banks will be allowed certain de minimis exemptions from the capital requirements for foreign exchange risk, as described in section CA-5.2 of these regulations. For the time being, there shall be no exemptions from the trading requirements, or from the capital requirements for commodity risk.

            • Bank's own fund and Profit and Loss Sharing Investment Accounts (PSIA)

              • CA-1.4.7

                Banks must compute capital charges for own funds subject to market risk, as well as those of the PSIA. For the purpose of computing the capital adequacy ratio, 50% of the bank's market risk weighted assets relating to the PSIA (restricted and unrestricted) must be included in accordance with AAOIFI's Statement on Purpose and Calculation of the Capital Adequacy Ratio for Islamic Banks.

            • Consolidation

              • CA-1.4.8

                As with the credit risk capital requirements, the market risk capital requirements apply on a worldwide consolidated basis. Only a bank, which is running a global consolidated book, may apply the offsetting rules contained in the remainder of these regulations, on a consolidated basis with the prior written agreement of the Agency. However, where it would not be prudent to offset or net positions within the group, for example where there are obstacles to the quick repatriation of profits from a foreign subsidiary or where there are legal and procedural difficulties in carrying out the timely management of risks on a consolidated basis, the Agency will require the bank to take individual positions into account without any offsetting.

              • CA-1.4.9

                Notwithstanding that the market risk capital requirements apply on a worldwide consolidated basis, the Agency also monitors the market risks of banks on a non-consolidated basis to ensure that significant imbalances within a group do not escape supervision. The Agency is particularly vigilant to ensure that banks do not pass positions on reporting dates in such a way as to escape measurement.

            • Approach to measurement

              • CA-1.4.10

                For the measurement of their market risks, banks will measure the risks in a standardised manner, using the measurement framework described in chapters CA-4 to CA-6.

              • CA-1.4.11

                The standardised methodology uses a "building block" in which the capital charge for each risk category is determined separately. For equity positions risk, separate capital charge for specific risk and the general market risk arising from these positions are calculated. The specific market risk is defined as the risk of loss caused by an adverse price movement of a security/ units due principally to factors related to the issuer. The general market risk is defined as the risk of loss arising from adverse changes in aggregate market prices. For commodities and foreign exchange, there is only one general market risk capital requirement.

              • CA-1.4.12

                All transactions, including forward sales and purchases, shall be included in the calculation of capital requirements as from the date on which they were entered into.

            • Monitoring

              • CA-1.4.13

                Formal reporting, to the Agency, of the market risk exposure and capital adequacy shall take place as at the end of each calendar quarter. The returns relating to any quarter should be submitted to the Agency by the 20th day of the first month of the following quarter. Furthermore, banks are expected to manage their market risk in such a way that the capital requirements for market risk are being met on a continuous basis (i.e. at the close of each business day and not merely at the end of each calendar quarter). Banks are also expected to maintain strict risk management systems to ensure that their intra-day exposures are not excessive.

              • CA-1.4.14

                Banks' daily compliance with the capital requirements for market risk will be verified by the independent risk management department and the internal auditor. It is expected that the external auditors will perform appropriate tests of the bank's daily compliance with the capital requirements for market risk. Where a bank fails to meet the minimum capital requirements for market risk on any business day, the Agency must be informed in writing. The Agency will then seek to ensure that the bank takes immediate measures to rectify the situation.

              • CA-1.4.15

                Besides what is stated in paragraph CA-1.4.14 above, the Agency will consider a number of other appropriate and effective measures to ensure that banks do not "window dress" by showing significantly lower market risk positions on reporting dates.

          • CA-1.5 CA-1.5 Reporting

            • CA-1.5.1

              Formal reporting, to the Agency, of capital adequacy shall be made in accordance with the requirements set out under section BR-3.1.

          • CA-1.6 CA-1.6 Summary of overall capital adequacy requirements

            • CA-1.6.1

              Each bank is expected to monitor and report the level of risk against which a capital requirement is to be applied, in accordance with section CA-1.4. The bank's overall minimum capital requirement will be:

              (a) the credit risk requirements laid down in these regulations; PLUS
              (b) the capital charges for market risks calculated according to the measurement frameworks described in chapters CA-4 to CA-6, summed arithmetically.

        • CA-2 CA-2 The capital requirement

          • CA-2.1 CA-2.1 Introduction

            • CA-2.1.1

              Islamic banks are allowed two types of own funds to meet their capital requirements for credit risk and market risk, as set out below:

              — Tier 1: Supports the calculation of credit risk weighted assets and at least 28.57% of market risk.
              — Tier 2: Supports credit risk and market risk subject to limitations.

            • CA-2.1.2

              For the purpose of calculating its Capital Adequacy Ratio (CAR), the risk-weighted assets of an Islamic bank consist of the sum of the risk-weighted assets financed by the Islamic bank's own capital and liabilities, plus 50% of the risk-weighted assets financed by the Islamic bank's PSIA. This applies to both unrestricted PSIA that are accounted for on the Islamic bank's balance sheet and restricted PSIA that are accounted for off the balance sheet.

          • CA-2.2 CA-2.2 Definition of capital

            • Tier capital

              • CA-2.2.1

                Tier Capital forms the numerator of the Capital Adequacy Ratio. It is defined as the cornerstone of a bank's strength.

              • CA-2.2.2

                The essential characteristics of capital are that it should:

                (a) Represent a permanent and unrestricted commitment of funds;
                (b) Be freely available to absorb losses and thereby enable a bank to keep operating whilst any problems are resolved;
                (c) Not impose any unavoidable charge on the earnings of the bank.

              • CA-2.2.3

                For the purpose of defining Tier capital, the Agency has broadly adopted the recommendations contained in AAOIFI's Statement on the Purpose and Calculation of Capital Adequacy for Islamic Banks. However, some restrictions have been placed on the inclusion of profit equalisation and investment risk reserve as Tier 2 capital. For components of Tier 1 and Tier 2 capital refer to paragraphs CA-2.2.4 to CA-2.2.5.

            • Tier 1: Core capital

              • CA-2.2.4

                Tier 1 capital shall consist of the sum of items (a) to (b) below, less the sum of items (c) to (d) below:

                (a) Bank's permanent share capital and disclosed reserves in the form of legal, general and other reserves created by appropriations of retained earnings, share premium, capital redemption reserves and other surplus (as shown in its balance sheet), but excluding revaluation reserves and prudential reserves (profit equalisation reserves and investment risk reserve as defined in the AAOIFI's Financial Accounting Standard No: 11 Provisions and Reserves).

                In case of an Islamic fund having participation and / or "B" class shares (not carrying voting rights), their treatment as capital or unrestricted investment accounts (for the purpose these regulations) must be agreed with the Agency. The Agency will consider each case on its merit.
                (b) Minority interests, arising on consolidation, in the equity of subsidiaries that are less than wholly owned.

                LESS:

                (c) Goodwill
                (d) Current year's cumulative net losses which have been reviewed as per the International Standards on Auditing (ISA) by the external auditors.

            • Tier 2: Supplementary capital

              • CA-2.2.5

                Tier 2 capital shall consist of the following items:

                (a) Interim retained profits that have been reviewed as per the ISA by the external auditors.
                (b) Asset revaluation reserves, which arise in two ways. Firstly, these reserves can arise from the revaluation of fixed assets from time to time in line with the change in market values, and are reflected on the face of the balance sheet as a revaluation reserve. Secondly, hidden values or "latent" revaluation reserves may be present as a result of long-term holdings of equity securities valued in the balance sheet at the historical cost of acquisition. Both types of revaluation reserve may be included in Tier 2 capital, with the concurrence of the external auditors, provided that the assets are prudently valued, fully reflecting the possibility of price and forced sale. In the case of "latent" revaluation reserves, a discount of 55% will be applied to the difference between the historical cost book value and the market value to reflect the potential volatility of this form of unrealised capital.
                (c) General provisions held against the future, presently unidentified, losses are freely available to meet losses that subsequently materialise and therefore, qualify for inclusion within supplementary elements of capital, subject to a maximum of 1.25% of total risk-weighted assets (both credit and market risk weighted). Prescriptions ascribed to impairment of particular assets or known liabilities should be excluded.
                (d) Profit equalisation reserve and investment risk reserve as defined in FAS No. 11: Provisions and Reserves, issued by AAOIFI, up to a maximum amount equal to the capital charge pertaining to the 50% the risk weighted assets financed by unrestricted and restricted investment account holders.
                (e) 45% of unrealised gains on equity securities held as available-for-sale (on an aggregate net-basis).

            • Deductions from Tier 1 and Tier 2 capital

              • CA-2.2.6

                For the calculation of capital adequacy on a solo basis, the following item shall be deducted from the sum of Tier 1 and Tier 2 capital (goodwill will have been already deducted from Tier 1 capital):

                (a) Investments in and financing of a capital nature to unconsolidated subsidiaries and associates. The assets representing the investments in subsidiary companies whose capital is deducted from that of the parent would not be included in total assets for the purpose of computing the capital adequacy ratio.
                (b) Holdings of own shares and any financing facility provided to the parent company to finance the shares of the subsidiary.

          • CA-2.3 CA-2.3 Limits on the use of different forms of capital

            • CA-2.3.1

              The following constraints apply to the CAR calculations:

              Constraint 1: Tier 2 capital allocated to credit risk (see section A20.7 of guidelines in Appendix BR 3)

              should be less than or equal to

              50% of the Tier 1 capital allocated to credit risk (see section A20.6 of guidelines in Appendix BR 3)
              Constraint 2: Tier 2 capital allocated to market risk (see section A20.13 of guidelines in Appendix BR 3) plus Tier 2 capital allocated to credit risk (see section A20.7 of guidelines in Appendix BR 3)

              should be less than or equal to

              Total Tier 1 capital available (see section A20.1 of guidelines in Appendix BR 3)

          • CA-2.4 CA-2.4 Calculation of the CAR for Islamic banks

            • CA-2.4.1

              Firstly, the banks should calculate minimum capital required (section A20.4 or A9.14 of guidelines in Appendix BR 3) by reference to credit risk in accordance with these regulations, excluding equity securities in the trading book and all positions in commodities. This figure will constitute minimum capital required to cover credit risk (section A20.5 of guidelines in Appendix BR 3).

            • CA-2.4.2

              Secondly, the banks should calculate minimum capital required (section A20.9 or A17.14 of guidelines in Appendix BR 3) by reference to the measure of market risk (i.e. specific risk plus general market risk) in accordance with the regulations contained in section CA-1.4. This figure will constitute minimum capital required to cover market risk (section A21.10 of guidelines in Appendix BR 3).

            • CA-2.4.3

              Thirdly, the amount resulting from the above requirement (section A20.10 of guidelines in Appendix BR 3) should be multiplied by 28.57%. This is the minimum capital charge which should be supported by Tier 1 capital allocated to market risk weighted exposures (section A20.12 of guidelines in Appendix BR 3); therefore, the balance amount in Tier 1 capital should be the amount allocated to support credit risk weighted assets (section A20.6 of guidelines in Appendix BR 3).

            • CA-2.4.4

              The balance of the credit risk weighted assets may be supported by Tier 2 capital amount in section A20.7 of guidelines in Appendix BR 3 (subject to constraint stated in section CA-2.3).

            • CA-2.4.5

              Further, the residual amount in Tier 2 capital (section A20.13 of guidelines in Appendix BR 3) may be used to support the balance subject to the condition stated in paragraph CA-2.4.3.

          • CA-2.5 CA-2.5 Minimum capital ratio requirement

            • CA-2.5.1

              The Agency has established that the minimum capital ratio required for all Islamic banks incorporated in Bahrain is 12%. Furthermore, on a solo basis, the parent bank of a group is required to maintain a minimum RAR of 8.0% (i.e. unconsolidated).

            • Maintaining minimum RAR

              • CA-2.5.2

                All locally incorporated banks must give the Agency immediate written notification of any actual breach by such banks of either or both of the above RARs. Where such notification is given, the bank must also provide the Agency:

                (a) no later than one calendar week after the notification, with a written action plan setting out how the bank proposes to restore the relevant RAR(s) to the required minimum level(s) set out above and, further, describing how the bank will ensure that a breach of such RAR(s) will not occur again in the future; and
                (b) with a weekly report thereafter on the bank's relevant RAR(s) until such RAR(s) have reached the required target level(s) set out below.

              • CA-2.5.3

                In addition, the Agency considers it a matter of best practice that, in order to ensure that these RARs are constantly met, that banks set up internal "targets" of 12.5% (on a consolidated basis) and 8.5% (on a solo basis) to warn them of a potential fall by the bank below the Agency's required minimum RARs as set out above.

              • CA-2.5.4

                Where a bank's capital ratio falls below its target ratio, the General Manager should notify the Director of Banking Supervision at the Agency immediately. No formal action plan will be necessary, however the General Manager should explain what measures are being implemented to ensure that the bank will remain above its minimum RAR(s).

              • CA-2.5.5

                The bank will be required to submit the PIRI forms to the Agency on a monthly basis, until the RAR(s) exceeds its target ratio(s).

              • CA-2.5.6

                The Agency will notify banks in writing of any action required of them with regard to the corrective and preventive action (as appropriate) proposed by the bank pursuant to the above, as well as of any other requirement of the Agency in any particular case.

              • CA-2.5.7

                Banks should note that the Agency considers the breach of RARs to be a very serious matter. Consequently, the Agency may (at its discretion) subject a bank which breaches its RAR(s) to a formal licensing reappraisal. Such reappraisal may be effected either through the Agency's own inspection function or through the use of Reporting Accountants, as appropriate. Following such appraisal, the Agency will notify the bank concerned in writing of its conclusions with regard to the continued licensing of the bank.

              • CA-2.5.8

                The Agency recommends that the bank's compliance officer supports and cooperates with the Agency in the monitoring and reporting of the capital ratios and other regulatory reporting matters. Compliance officers should ensure that their banks have adequate internal systems and controls to comply with these regulations.

        • CA-3 CA-3 Credit risk

          • CA-3.1 CA-3.1 Introduction

            • CA-3.1.1

              This chapter describes the standardised approach for the measurement of the credit risk exposure in the bank's banking book.

            • CA-3.1.2

              As illustrated in sections CA-3.2 and CA-3.3, banks are required to apply a simple risk-weighted approach through which claims of different categories of counterparties are assigned risk weights according to broad categories of relative risk.

          • CA-3.2 CA-3.2 Risk weighting — On balance sheet asset category

            • CA-3.2.1

              Risk weights by category of on balance sheet asset are illustrated in the table below:

              Risk weights Category of on balance sheet assets/claims
              0%
              (a) Cash;

              (b) Holdings of Gold bullion and coins;

              (c) The government of Bahrain & Bahrain public sector entities;

              (d) Government-owned GCC companies incorporated in Bahrain;

              (e) Central governments and central banks of GCC and OECD countries; and

              (f) Central governments and central banks of classified countries where denominated and funded in local currency.
              20%
              (a) Cash items in process of collection;

              (b) Multilateral development banks;

              (c) Banks and securities firms incorporated in Bahrain, other GCC and OECD countries;

              (d) Banks incorporated in classified countries with a residual maturity less than 1 year;

              (e) Public sector entities in GCC and OECD countries; and

              (f) Government-owned GCC companies incorporated outside Bahrain.
              50% Mortgages backed by residential property
              100%
              (a) Related parties

              (b) Holdings of other banks' and securities firms' capital instruments

              (c) Banks incorporated in classified countries with a residual maturity of over 1 year

              (d) Central governments and central banks of classified countries (not included above)

              (e) Public sector entities of classified countries

              (f) Government-owned companies in non-GCC countries

              (g) Private sector persons and entities in and outside Bahrain

              (h) Istisna'a assets*

              (i) Ijarah / Ijarah Muntahia Bittamleek assets

              (j) Real estate investments

              (k) Other assets not reported elsewhere**

              * This represents balance in Work in Progress/ cost account less billings. However, Istisna'a receivables should be reported against the risk weighting category of the counterparty.

              ** Salam Contracts are subject to market risk and should not be included here.

          • CA-3.3 CA-3.3 Risk weighting — Off balance sheet items

            • CA-3.3.1

              The framework takes account of the credit risk on off balance sheet exposures by applying credit conversion factors to the different types of off balance sheet instruments or transactions.

            • CA-3.3.2

              The conversion factors are derived from the estimated size and likely occurrence of the credit exposure, as well as the relative degree of credit risk as identified in the Basel Committee's paper on "The management of banks' off-balance-sheet exposures: a supervisory perspective" (see www.bis.org/publ/bcbsc134.pdf) issued in March 1986.

            • CA-3.3.3

              The credit conversion factors applicable to the off balance sheet items are set out in the table below:

              Credit Conversion factors Off balance sheet items
              100% Direct credit substitutes
              50% Transaction-related contingent
              20% Trade-related contingencies
              100% Sale and repurchase agreements
              100% Forward asset purchases
              50% Underwriting commitments
              50% Commitments with an original maturity of over 1 year, not unconditionally cancellable at anytime
              0% Commitments with an original maturity of less than 1 year, unconditionally cancellable at anytime

            • CA-3.3.4

              The applicable credit conversion factors should be multiplied by the weights applicable to the category of the counterparty as set out below:

              Risk weights Counterparty
              0% Type (a)
              — The Government of Bahrain.
              — Bahrain public sector entities.
              — Government-owned (non-banking) GCC companies incorporated in Bahrain.
              — Central government and central banks of GCC and OECD member countries.
              20% Type (b)
              — Banks incorporated in Bahrain or GCC and OECD countries and securities firms.
              — Banks incorporated in classified countries (if the commitment has a residual life of 1 year or less).
              — Public sector entities in GCC and OECD countries.
              — Government-owned (non-banking) GCC companies incorporated outside Bahrain.
              100% Type (c)
              — Banks incorporated in classified countries (if the commitment has a residual life of more than 1 year).
              — Central governments, central banks and public sector entities in classified countries.
              — Government-owned companies incorporated in non-GCC countries.
              — Private sector persons and entities in Bahrain and abroad.

        • CA-4 CA-4 Equity risk

          • CA-4.1 CA-4.1 Introduction

            • CA-4.1.1

              This chapter sets out the minimum capital requirements to cover the risk of holding or taking positions in equities in the bank's trading book.

            • CA-4.1.2

              The minimum capital requirement for equities is expressed in terms of two separately calculated charges, one relating to the "specific risk" of holding a long position in an individual equity, and the other to the "general market risk" of holding a long position in the market as a whole.

            • CA-4.1.3

              Where the bank has invested in shares/units of equity funds on Mudaraba financing and the bank has direct exposures in the equities which are traded in a recognised stock exchange, the shares/units are considered to be subject to equity risk. The equity position would be considered to be the net asset value as at the reporting date.

          • CA-4.2 CA-4.2 Specific risk calculation

            • CA-4.2.1

              Specific risk is defined as the bank's gross equity positions (i.e. the sum of all equity positions and is calculated for each country or equity market).

            • CA-4.2.2

              The capital charge for specific risk is 8%, unless the portfolio is both liquid and well-diversified, in which case the capital charge will be 4%. To qualify for the reduced 4% capital charge, the following requirements need to be met:

              (a) The portfolio should be listed on a recognised stock exchange;
              (b) No individual equity position shall comprise more than 10% of the gross value of the country portfolio; and
              (c) The total value of the equity positions which individually comprise between 5% and 10% of the gross value of the country portfolio, shall not exceed 50% of the gross value of the country portfolio.

            • CA-4.2.3

              To qualify for reduced 4% capital charge on equity funds, the bank should acquire prior written approval from the Agency.

          • CA-4.3 CA-4.3 General risk calculation

            • CA-4.3.1

              The general market risk is the difference between the sum of the long positions and the sum of the short positions (i.e. the overall net position) in each national equity market. In other words, to calculate the general market risk, the bank should sum the market value of its individual net positions for each national market, taking into account whether the positions are long or short.

            • CA-4.3.2

              The general market equity risk measure is 8% of the overall net position in each national market.

        • CA-5 CA-5 Foreign exchange risk

          • CA-5.1 CA-5.1 Introduction

            • CA-5.1.1

              This section describes the standardised method for calculation of the bank's foreign exchange risk, and the capital required against that risk.

            • CA-5.1.2

              The measurement of the foreign exchange risk involves, as a first step, the calculation of the net open position in each individual currency including gold1 and as a second step, the measurement of the risks inherent in the bank's mix of assets and liabilities positions in different currencies.


              1 Positions in gold should be treated as if they were foreign currency positions, rather than commodity positions, because the volatility of gold is more in line with that of foreign currencies and most banks manage it in a similar manner.

            • CA-5.1.3

              A bank that holds net open positions (whether assets or liabilities) in foreign currencies is exposed to the risk that exchange rates may move against it. The open positions may be either trading positions or, simply, exposures caused by the bank's overall assets and liabilities. Where the bank is involved in option transactions, these should be agreed in advance with the Agency. The Agency will consider the appropriate treatment on a case by case basis.

            • CA-5.1.4

              The open positions and the capital requirements are calculated with reference to the entire business (i.e. the banking and trading books).

            • CA-5.1.5

              The open positions are calculated with reference to the bank's base currency, which will be either Bahraini Dinars (BD) or United States dollars (USD).

            • CA-5.1.6

              In addition to foreign exchange risk, positions in foreign currencies may be subject to credit risk which should be treated separately.

          • CA-5.2 CA-5.2 De Minimis exemptions

            • CA-5.2.1

              A bank doing negligible business in foreign currencies and which does not take foreign exchange positions for its own account may, at the discretion of the Agency and as evidenced by the Agency's prior written approval, be exempted from calculating the capital requirements on these positions. The Agency is likely to be guided by the following criteria in deciding to grant exemption to any bank:

              (a) The bank's holdings or taking of positions in foreign currencies, including gold, defined as the greater of the sum of the gross asset positions and the sum of the gross liability position in all foreign positions and gold, does not exceed 100% of its eligible capital; and
              (b) The bank's overall net open position, as defined in section CA-5.3, does not exceed 2% of its eligible capital.

            • CA-5.2.2

              The criteria listed in paragraph CA-5.2.1 above are only intended to be guidelines, and a bank will not automatically qualify for exemptions upon meeting them. Banks doing negligible foreign currency business, which do not take foreign exchange positions for the bank's own account, and wish to seek exemption from foreign exchange risk capital requirements, should submit an application to the Agency, in writing. The Agency will have the discretion to grant such exemptions. The Agency may also, at its discretion, fix a minimum capital requirement for a bank that is exempted from calculating its foreign exchange risk capital requirement, to cover the risks inherent in its foreign currency business.

            • CA-5.2.3

              The Agency may, at a future date, revoke an exemption granted to a bank, if the Agency is convinced that the conditions on which the exemption was granted no longer exist.

          • CA-5.3 CA-5.3 Calculation of net open positions

            • CA-5.3.1

              A bank's exposure to foreign exchange risk in any currency is its net open position in that currency, which is calculated by summing the following items:

              (a) The net spot position in the currency (i.e. all asset items less all liability items, including accrued profit, other income and expenses, denominated in the currency in question; assets are included gross of provisions for bad and doubtful debts, except in cases where the provisions are maintained in the same currency as the underlying assets);
              (b) The net forward position in the currency (i.e. all amounts to be received less all amounts to be paid under forward foreign exchange contracts, in the concerned currency);
              (c) Guarantees and similar off balance sheet contingent items that are certain to be called and are likely to be irrecoverable where the provisions, if any, are not maintained in the same currency;
              (d) Profits (i.e. the net value of income and expense accounts) held in the currency in question; and
              (e) Specific provisions held in the currency in question where the underlying asset is in a different currency, net of assets held in the currency in question where a specific provision is held in a different currency.

            • CA-5.3.2

              For calculating the net open position in gold, the bank will first express the net position (spot plus forward) in terms of the standard unit of measurement (i.e. ounces or grams) and then convert it at the current spot rate into the base currency.

            • CA-5.3.3

              Where gold is part of a forward contract (i.e. quantity of gold to be received or to be delivered), any foreign currency exposure from the other leg of the contract should be reported.

            • Structural positions

              • CA-5.3.4

                Positions of a structural nature (i.e. non-dealing), may be excluded from the calculation of the net open currency positions, these include positions related to items that are deducted from the bank's capital when calculating its capital base in accordance with the rules and guidelines issued by the Agency, such as investments denominated in foreign currencies in non-consolidated subsidiaries.

              • CA-5.3.5

                The Agency will consider approving the exclusion of the above positions for the purpose of calculating the capital requirement, only if each of the following conditions is met:

                (a) The concerned bank provides adequate documentary evidence to the Agency which establishes the fact that the positions proposed to be excluded are, indeed, of a structural nature (i.e. non-dealing) and are merely intended to protect the bank's capital adequacy ratio. For this purpose, the Agency may ask written representations from the bank's management or Directors.
                (b) Any exclusion of a position is consistently applied, with the treatment of the structural positions remaining the same for the life of the associated assets or other items.

            • Calculation of the overall net open position

              • CA-5.3.6

                The net position in each currency is converted at the spot rate, into the reporting currency. The overall net open position is measured by aggregating the following:

                (a) The sum of the net liabilities positions or the sum of the net asset positions whichever is greater
                (b) The net position (liabilities and assets) in gold, regardless of sign

              • CA-5.3.7

                Where the bank is assessing its foreign exchange on a consolidated basis, it may be technically impractical in the case of some marginal operations to include the currency positions of a foreign branch or subsidiary of the bank. In such cases, the internal limit for that branch/subsidiary, in each currency, may be used as a proxy for the positions. The branch/subsidiary limits should be added, without regard to sign, to the net open position in each currency involved. When this simplified approach to the treatment of currencies with marginal operations is adopted, the bank should adequately monitor the actual positions of the branch/subsidiary against the limits, and revise the limits, if necessary, based on the results of the ex-post monitoring.

          • CA-5.4 CA-5.4 Calculation of the capital charge

            • CA-5.4.1

              The capital charge is 8% of the overall net open foreign currency position.

            • CA-5.4.2

              The table below illustrates the calculation of the overall net open foreign currency position and the capital charge:

              Example of the calculation of the foreign exchange overall net open position and the capital charge

              GBP DEM SAR US$ JPY GOLD
              +200 +100 +70 −190 −40 −50
                         
              +370
              −230
              50

              The capital charge is 8% of the higher of either the sum of the net long currency positions or the sum of the net short positions (i.e. 370) and of the net position in gold (i.e. 50) = 420 @ 8% = 33.6

            • CA-5.4.3

              For illustration and calculation of the overall net open position and the capital charge for unrestricted / restricted investment account and corporate book, refer to section CA-5.3.

        • CA-6 CA-6 Commodities risk

          • CA-6.1 CA-6.1 Introduction

            • CA-6.1.1

              This section sets out the minimum capital requirements to cover the risk of holding or taking positions in commodities, including precious metals, but excluding gold (which is treated as a foreign currency according to the methodology explained in chapter CA-5).

            • CA-6.1.2

              The commodities position risk and the capital charges are calculated with reference to the entire business of a bank (i.e. the banking and trading books combined).

            • CA-6.1.3

              The price risk in commodities is often more complex and volatile than that associated with currencies. Banks need to guard against the risk that arises when a liability (i.e. in a Parallel Salam transaction) position falls due before the asset position (i.e. a failure associated with or delay in the Salam contract). Owing to a shortage of liquidity in some markets, it might be difficult to close the Parallel Salam position and the bank might be "squeezed by the market". All these commodity market characteristics can result in price transparency and the effective management of risk.

            • CA-6.1.4

              All contracts (Salam, Musharaka or Mudaraba) involving commodities as defined in section CA-1.3 are subject to commodities risk and a capital charge as per the provisions outlined in sections CA-6.2 to CA-6.4 should be computed.

            • CA-6.1.5

              Banks should adopt either the simplified approach to calculate their commodities risk and the resultant capital charges or the maturity ladder approach. Where banks have Salam and Parallel Salam contracts, the maturity ladder approach must be used.

          • CA-6.2 CA-6.2 Calculation of commodities positions

            • CA-6.2.1

              Banks will first express each commodity position (i.e. Salam and Parallel Salam) in terms of the standard unit of measurement (i.e. barrels, kilograms, grams, etc). Asset and liability positions in a commodity are reported on a net basis for the purpose of calculating the net open position in that commodity. For markets which have daily delivery dates, any contracts maturing within ten days of one another may be offset. The net position in each commodity is then converted, at spot rates, into the bank's reporting currency.

            • CA-6.2.2

              Positions in different commodities cannot be offset for the purpose of calculating the open-positions as described in paragraph CA-6.2.1 above. However, where one or more sub-categories2 of the same category is in effect and are directly deliverable against each other, netting between those sub-categories is permitted. Furthermore, if two or more sub-categories of the same category is considered as close substitutes for each other, and minimum correlation of 0.9 between their price movements is clearly established over a minimum period of one year, the bank may, with the prior written approval of the Agency, net positions in those sub-categories.


              2 Commodities can be grouped into clan, families, sub-groups and individual commodities. For example, a clan might be Energy Commodities, within which Hydro-Carbons is a family with Crude Oil being a sub-group and West Texas Intermediate, Arabian Light and Brent being individual commodities.

            • CA-6.2.3

              Banks, which wish to net positions based on correlation (in the manner discussed in paragraph CA-6.2.2 above), will need to satisfy the Agency of the accuracy of the method which it proposes to adopt.

          • CA-6.3 CA-6.3 Maturity Ladder Approach

            • CA-6.3.1

              A worked example of the maturity ladder approach is set out in Appendix CA 1 and the table below illustrates the maturity time-bands of the maturity ladder for each commodity. As stated in section CA-6.1, banks having Salam and Parallel Salam transactions must use the maturity ladder approach.

            • CA-6.3.2

              The steps in the calculation of the commodities risk by the maturity ladder approach are:

              (a) The net positions in individual commodities, expressed in terms of the standard unit of measurement, are first slotted into the maturity ladder. Physical stocks are allocated to the first-time band. A separate maturity ladder is used for each commodity as defined in section CA-6.2. The net positions in commodities are calculated as explained in section CA-6.2.
              (b) Asset and liability positions in the same time-band are matched. The sum of the matched asset and liability positions is multiplied first by the spot price of the commodity, and then by a spread of 1.5% for each time-band as set out in the table below. This represents the capital charge in order to capture all risks within a time-band (which, together, are sometimes referred to as curvature risk).

              Time band3
              0–1 months
              1–3 months
              3–6 months
              6–12 months
              1–2 years
              2–3 years
              over 3 years
              (c) The residual (unmatched) net positions from nearer time-bands are then carried forward to offset opposite positions (i.e. asset against liability and vice versa) in time bands that are further out. However, a surcharge of 0.6% of the net position carried forward is added in respect of each time-band that the net position is carried forward, to recognise that such management of positions between different time-bands is imprecise. The surcharge is in addition to the capital charge for each matched amount created by carrying net positions forward, and is calculated as explained in step (b) above.
              (d) At the end of step (c), there will be either asset or liability positions, to which a capital charge of 15% will apply. The Agency recognises that there are differences in volatility between different commodities, but has, nevertheless, decided that one uniform capital charge for open positions in all commodities shall apply in the interest of simplicity of the measurement, and given the fact that banks normally run rather small open positions in commodities. Banks will be required to submit in writing, details of their commodities business in order to capture the market risk on this business and to enable the Agency to evaluate whether the models approach should be adopted by the bank.

              3 Instruments, where the maturity is on the boundary of two maturity time-bands, should be placed into the earlier maturity band. For example, instruments with a maturity of exactly one-year are placed into the 6 to 12 months time-band.

          • CA-6.4 CA-6.4 Simplified Approach

            • CA-6.4.1

              Banks who do not enter into Salam and Parallel Salam transactions and do not have any short positions in commodities may use the simplified approach to compute the capital charge. In the simplified approach, the capital charge is computed at 15% of the net position. Net positions in commodities are calculated as explained in section CA-6.2. For the time being the Agency is not requiring additional 3% capital charge for basis risk.

        • CA-7 CA-7 Gearing requirements

          • CA-7.1 CA-7.1 Gearing

            • CA-7.1.1

              The content of this chapter is applicable to locally incorporated banks and FCB branches (licensed by the Agency) of foreign banks.

            • Measurement

              • CA-7.1.2

                The Gearing ratio is measured with reference to the ratio of deposit liabilities against the bank's capital and reserves as reported in its PIRI.

            • Gearing limit

              • CA-7.1.3

                For Full Commercial Bank and Offshore Banking Unit licensees, deposit liabilities should not exceed 20 times the respective bank's capital and reserves.

              • CA-7.1.4

                For Investment Bank licensees, deposit liabilities should not exceed 10 times the respective bank's capital and reserves.

      • CA CA Capital Adequacy (October 2007)

        • CA-A CA-A Introduction

          • CA-A.1 CA-A.1 Application

            • CA-A.1.1

              Regulations in this Module are applicable to locally incorporated banks on both a stand-alone basis (i.e. including their foreign branches), and on a consolidated group basis (i.e. including their subsidiaries and any other investments which are included or consolidated into the group accounts or are required to be consolidated for regulatory purposes by the CBB).

              October 07

            • CA-A.1.2

              In addition to licensees mentioned in Paragraph CA-A.1.1, certain of these regulations (in particular gearing and market risk requirements) are also applicable to Bahrain branches of foreign retail bank licensees.

              October 07

          • CA-A.2 CA-A.2 Purpose

            • CA-A.2.1

              The purpose of this Module is to set out the Central Bank's capital adequacy regulations and provide guidance on the risk measurement for the calculation of capital requirements by banks referred to under CA-A.1.1. This requirement is supported by Article 44(c) of the Central Bank of Bahrain and Financial Institutions Law (Decree No. 64 of 2006).

              October 07

            • CA-A.2.2

              The Module also sets out the minimum gearing requirements which relevant banks (referred to in Section CA-A.1) must meet as a condition of their licensing.

              October 07

            • CA-A.2.3

              The Central Bank requires in particular that the relevant banks maintain adequate capital, in accordance with the Regulation in this Module, against their risks.

              October 07

            • CA-A.2.4

              Principle 9 of the Principles of Business requires that conventional bank licensees maintain adequate human, financial and other resources, sufficient to run their business in an orderly manner (see Section PB-1.9). In addition, Condition 5 of CBB's Licensing Conditions (Section LR-2.5) requires conventional bank licensees to maintain financial resources in excess of the minimum requirements specified in Module CA (Capital Adequacy).

              October 07

            • CA-A.2.5

              The requirements specified in this Module vary according to the Category of Islamic bank licensee concerned, their inherent risk profile, and the volume and type of business undertaken. The purpose of such requirements is to ensure that Islamic bank licensees hold sufficient capital to provide some protection against unexpected losses, and otherwise allow conventional banks to effect an orderly wind-down of their operations, without loss to their depositors. The minimum capital requirements specified here may not be sufficient to absorb all unexpected losses.

              October 07

            • Legal Basis

              • CA-A.2.6

                This Module contains the CBB's Directive relating to the capital adequacy of Islamic bank licensees, and is issued under the powers available to the CBB under Article 38 of the CBB Law. The Directive in this Module is applicable to all Islamic bank licensees.

                October 07

              • CA-A.2.7

                For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1.

                October 07

          • CA-A.3 CA-A.3 Module History

            • CA-A.3.1

              This Module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date . Any material changes that have subsequently been made to this Module are annotated with the calendar quarter date in which the change was made: Chapter UG 3 provides further details on Rulebook maintenance and version control.

              October 07

            • CA-A.3.2

              A list of most recent changes made to this Module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              CA-A.1 10/2007 New Rule CA-A.1.4 introduced, categorising this Module as a Directive.
              CA-1.1 10/2007 Minor change to notification period in Rule CA-1.1.4.
              October 07

            • Evolution of the Module

              • CA-A.3.3

                Prior to the development of Rulebook, the Central Bank had issued various circulars relating to capital adequacy requirements. These circulars were consolidated into this Module. These circulars are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                PIRI BC/09/01 26 Nov 2001 CA Prudential Information Returns for Islamic Financial Institutions
                OG/78/01 20 Feb 2001 CA 2.5 Monitoring of Capital Adequacy
                BC/01/98 10 Jan 1998 CA 2.5 Risk Asset Ratio
                October 07

            • Effective date

              • CA-A.3.4

                The contents in this Module are effective from the date depicted in the original circulars (see Paragraph CA-A.3.3) or from the dates mentioned in the Summary of Changes.

                October 07

        • CA-B CA-B General guidance and best practice

          • CA-B.1 CA-B.1 Guidance provided by other international bodies

            Basel Committee: The management of banks' off-balance-sheet exposures – a supervisory perspective

            October 07

            • CA-B.1.1

              In March 1986, the Basel Committee on Banking Supervision issued a paper titled 'The management of banks' off-balance-sheet exposures – a supervisory perspective' (see www.bis.org/publ/bcbsc134.pdf).

              October 07

            • CA-B.1.2

              This paper examines off-balance-sheet risks from three angles - market/position risk, credit risk and operational/control risk. Part III of this paper examines credit risk (including control of large exposures, settlement risk and country risk), with particular emphasis given to the assessment of the relative risks of the different types of off-balance-sheet activity.

              October 07

        • CA-1 CA-1 Scope and coverage of capital charges

          • CA-1.1 CA-1.1 Introduction

            • CA-1.1.1

              All locally incorporated banks are required to measure and apply capital charges in respect of their fiduciary and displaced commercial risk, credit and market risk capital requirements.

              October 07

            • CA-1.1.2

              Fiduciary Risk is outlined in the IFSB Guiding Principles on Corporate Governance (Principle 2.1, Paragraphs 22 onward). Displaced Commercial Risk is defined in the IFSB Exposure Draft No4 (Paragraphs 83 onward). Both papers are available at the IFSB website (www.ifsb.org).

              October 07

            • CA-1.1.3

              Credit risk is defined as the potential that a bank's counterparty will fail to meet its obligations in accordance with agreed terms. Credit risk exists throughout the activities of a bank in the banking book and in the trading book including both on- and off-balance-sheet exposures.

              October 07

            • CA-1.1.4

              Market risk is defined as the risk of losses in on- or off-balance-sheet positions arising from movements in market prices. The risks subject to the capital requirement of this Module are:

              (a) The risks pertaining to equities in the trading book;
              (b) Foreign exchange risk throughout the bank; and
              (c) Commodity risk throughout the bank.
              October 07

          • CA-1.2 CA-1.2 Measuring fiduciary and displacement risks

            • CA-1.2.1

              Islamic banks mobilise funds on a profit and loss sharing basis (PLS). However, certain risks are associated with such PLS accounts. These risks are referred to as fiduciary and displaced commercial risk.

              October 07

            • CA-1.2.2

              To cater for these risks the Central Bank has accepted the recommendations contained in the AAOIFI's statements and requires the inclusion of 50% of the risk weighted assets of the Profit Sharing Investment Accounts (PSIA) in the denominator of the capital adequacy ratio.

              October 07

          • CA-1.3 CA-1.3 Measuring credit risks

            • CA-1.3.1

              In measuring credit risk for the purpose of capital adequacy, banks are required to apply a simple risk-weighted approach through which claims of different categories of counterparties are assigned risk weights according to broad categories of relative riskiness.

              October 07

            • CA-1.3.2

              The Central Bank has adopted the risk weightings recommended by the Basel Committee on Banking Supervision, where applicable. However, the Basel Committee does not define the risk weightings for some of the specific Islamic contracts.

              October 07

            • CA-1.3.3

              In Islamic banking, the legal form is as important as the substance of the transaction otherwise the transaction would not be permissible under Shari'a. Therefore, when assigning risk weights to the various Islamic contracts, banks should consider the legal form of the transactions as well as the substance.

              October 07

            • CA-1.3.4

              The framework of weights consists of four weights – 0%, 20%, 50% and 100% for on- and off-balance-sheet items, which based on a broad-brush judgement, are applied to the different types of assets and off-balance-sheet exposures within the banking book.

              October 07

            • CA-1.3.5

              The resultant different weighted assets and off-balance-sheet exposures are then added together to calculate the total credit-risk-weighted assets of the bank.

              October 07

            • CA-1.3.6

              The Central Bank has addressed the issue of the risk weightings for some of the commonly used Islamic contracts. If banks are involved in contracts not covered below they should contact the Central Bank and agree on an appropriate risk-weighting Category.

              October 07

            • Murabaha and Murabaha to the purchase orderer

              • CA-1.3.7

                The Central Bank as a policy requires that all Murabaha contracts be based on binding promises. The Murabaha receivables should be assigned a risk weight based on the credit standing of the obligor as recommended by the Basel Committee.

                October 07

            • Mudaraba contracts

              • CA-1.3.8

                Mudaraba contracts should be assigned a risk weighting according to the underlying investments. Where Mudaraba funds are invested in securities listed on recognised exchanges and the price volatility is based on market movements, these should be removed from credit risk weightings and subject to market risk regulations. Examples would be equity Mudarabas where banks may have direct exposure in the value of the underlying equities or commodity Mudarabas.

                October 07

              • CA-1.3.9

                Investments in other Mudarabas such as real estate or leasing should be assigned risk weightings according to the standing of the underlying investment as per the Basel Capital Accord.

                October 07

              • CA-1.3.10

                Where a Mudaraba fund invests in another Mudaraba contract, which in turn makes investments at its own discretion, the risk weight would be based on the credit standing of the counterparty (investee Mudarib) as recommended by the Basel Committee. Investments in particular asset classes made at the discretion of the (investor) Mudaraba fund should be assigned risk weighting according to the underlying investments, where possible.

                October 07

            • Musharaka contracts

              • CA-1.3.11

                Musharaka contracts refer to partnerships in specific transactions or projects. These exclude participation in the share capital (equity) of other enterprises. Risk weights should be assigned in accordance with the standings of the underlying investment as per the guidelines of the Basel Committee. Musharaka in real estate, plant and machinery or other similar assets attract a 100% risk weighting.

                October 07

              • CA-1.3.12

                Musharakas in trading transactions will attract risk weighting as per the standing of the underlying investment, which in all cases would attract a 100% risk weighting. Where the transaction involves trading in commodities which may be traded in secondary markets, these should be removed from credit risk weighting and subjected to market risk regulations.

                October 07

              • CA-1.3.13

                In cases where it is difficult to ascertain the composition of the underlying asset, risk weight would be assigned based on the credit standing of the counterparty.

                October 07

            • Ijarah / Ijarah Muntahia Bittamleek assets

              • CA-1.3.14

                Under Shari'a, substantial risks and rewards of ownership of assets may not be transferred to lessees. Therefore, assets acquired for the purpose of leasing under Ijarah or Ijarah Muntahia Bittamleek contracts should be carried on the balance sheet of the lessor and assigned a risk weighting of 100%.

                October 07

              • CA-1.3.15

                However, where these are residential properties, leased under Ijarah Muntahia Bittamleek with the lessee's option to buy at the end of the lease term and to use the properties for residential purposes, a 50% risk weighting is assigned, where the lessor has a first enforceable charge on the assets.

                October 07

            • Istisna'a and parallel Istisna'a contracts

              • CA-1.3.16

                The accounting for these contracts should be in accordance with Financial Accounting Standard (FAS) No. 10: Istisna'a and Parallel Istisna'a, issued by AAOIFI.

                October 07

              • CA-1.3.17

                Istisna'a and parallel Istisna'a contracts would attract risk weighting as per the credit standing of the respective counterparties in accordance with the Basel Committee.

                October 07

            • Salam and parallel Salam

              • CA-1.3.18

                Amounts paid in respect of Salam contracts (for which there exists a parallel Salam contract) should normally be assigned a risk weight as per the credit standing of the customer in accordance with the Basel Committee.

                October 07

              • CA-1.3.19

                Salam and parallel Salam contracts would attract risk weighting as per the credit standing of the respective counterparties in accordance with the Basel Committee.

                October 07

            • Participations and equity investments

              • CA-1.3.20

                The supervision of banks for capital adequacy purposes is carried out on a consolidated basis, taking into account all holdings of the capital of other entities by the concerned bank. For subsidiaries, the preferred mode of consolidation is to add the assets and liabilities into the accounts of the parent on a line-by-line basis. For associate companies (i.e. where the parent bank owns 20% or more of the voting stock, and/or has voting control of the concerned company), the assets and liabilities should also be consolidated on a line-by-line basis. If banks do not wish to consolidate subsidiaries or associates (that meet the above criteria), they must contact the Central Bank to agree on the accounting treatment to be used. Participations and investments which amount to below 20% of the voting capital of the concerned company should be accounted for at fair value and weighted at 100%.

                October 07

              • CA-1.3.21

                Banks which have subsidiary and associate companies must also be supervised for capital adequacy on a solo basis (i.e. after deducting all holdings of the share capital of all subsidiaries and associates (that meet the criteria in Paragraph CA-1.3.20 above) and excluding all their assets and liabilities from the accounts of the parent bank). Holdings of other participations and equity investments need not be deducted on a solo basis, but should be accounted for at fair value and weighted at 100%. Banks should note Paragraph CA-2.2.6 in respect of the treatment described in this Paragraph and in Paragraph CA-1.3.20.

                October 07

            • Intra fund balances

              • CA-1.3.22

                Transactions between the corporate book (i.e. self-financed and financed by unrestricted investment accounts) and restricted investment accounts are not allowed, unless approved by the Central Bank on a temporary basis.

                October 07

              • CA-1.3.23

                If permitted by the Central Bank, on a temporary basis, the following weightings will be applied:

                (a) Corporate or unrestricted investment funds invested in Restricted Investment Accounts.

                Risk weighting would be assigned on the underlying asset as per the Basel Committee Guidelines and in accordance with the guidance set out under Chapters CA-1 to CA-6.
                (b) Restricted investment account funds invested in corporate books.
                (i) In the corporate books, the assets financed by restricted investment accounts would be included as part of the corporate assets and risk weighting assigned in accordance with the guidelines.
                (ii) 0% risk weighting should be assigned to the funds invested by the restricted investment accounts in the corporate books in order to avoid double counting as the resultant assets are already risk weighted in the Bank's books.
                (iii) Banks must agree with the Central Bank on the treatment of investments by restricted investment accounts in the corporate book. The Central Bank will consider each case on its merit.
                October 07

          • CA-1.4 CA-1.4 Measuring market risks

            • Trading book

              • CA-1.4.1

                The trading book means the bank's positions in financial instruments (including off-balance sheet instruments that are intentionally held for short-term resale and/or which are taken on by the bank with the intention of benefiting in the short-term from actual and/or expected differences between their buying and selling prices, or from other price variations, and positions in financial instruments arising from matched principal brokering and market making). Treatment of risks associated with any option transactions should be agreed in advance with the Central Bank, who will consider the issue on a case by case basis.

                October 07

              • CA-1.4.2

                Each bank should agree to a written policy statement with the Central Bank as to which activities are normally considered trading and constitute part of the trading book. Trading book's definition should be consistently applied by the bank from year to year.

                October 07

              • CA-1.4.3

                It is expected that the trading activities will be managed and monitored by a separate unit and that such activities should be identifiable because of their intent, as defined in Paragraph CA-1.4.1 above.

                October 07

            • Equity risk

              • CA-1.4.4

                The capital charges for equities will apply based on the current market values of items in a bank's trading book.

                October 07

            • Foreign exchange and commodities risk

              • CA-1.4.5

                The capital charges for foreign exchange risk and for commodity risk will apply to a bank's total currency and commodity positions, with the exception of structural foreign exchange positions in accordance with Section CA-5.3 of these regulations.

                October 07

            • Exemptions

              • CA-1.4.6

                Banks will be allowed certain de minimis exemptions from the capital requirements for foreign exchange risk, as described in Section CA-5.2 of these regulations. For the time being, there shall be no exemptions from the trading requirements, or from the capital requirements for commodity risk.

                October 07

            • Bank's own fund and Profit and Loss Sharing Investment Accounts (PSIA)

              • CA-1.4.7

                Banks must compute capital charges for own funds subject to market risk, as well as those of the PSIA. For the purpose of computing the capital adequacy ratio, 50% of the bank's market risk weighted assets relating to the PSIA (restricted and unrestricted) must be included in accordance with AAOIFI's Statement on Purpose and Calculation of the Capital Adequacy Ratio for Islamic Banks.

                October 07

            • Consolidation

              • CA-1.4.8

                As with the credit risk capital requirements, the market risk capital requirements apply on a worldwide consolidated basis. Only a bank, which is running a global consolidated book, may apply the offsetting rules contained in the remainder of these regulations, on a consolidated basis with the prior written agreement of the Central Bank. However, where it would not be prudent to offset or net positions within the group, for example where there are obstacles to the quick repatriation of profits from a foreign subsidiary or where there are legal and procedural difficulties in carrying out the timely management of risks on a consolidated basis, the Central Bank will require the bank to take individual positions into account without any offsetting.

                October 07

              • CA-1.4.9

                Notwithstanding that the market risk capital requirements apply on a worldwide consolidated basis, the Central Bank also monitors the market risks of banks on a non-consolidated basis to ensure that significant imbalances within a group do not escape supervision. The Central Bank is particularly vigilant to ensure that banks do not pass positions on reporting dates in such a way as to escape measurement.

                October 07

            • Approach to measurement

              • CA-1.4.10

                For the measurement of their market risks, banks will measure the risks in a standardised manner, using the measurement framework described in Chapters CA-4 to CA-6.

                October 07

              • CA-1.4.11

                The standardised methodology uses a 'building block' in which the capital charge for each risk Category is determined separately. For equity positions risk, separate capital charge for specific risk and the general market risk arising from these positions are calculated. The specific market risk is defined as the risk of loss caused by an adverse price movement of a security/ units due principally to factors related to the issuer. The general market risk is defined as the risk of loss arising from adverse changes in aggregate market prices. For commodities and foreign exchange, there is only one general market risk capital requirement.

                October 07

              • CA-1.4.12

                All transactions, including forward sales and purchases, shall be included in the calculation of capital requirements as from the date on which they were entered into.

                October 07

            • Monitoring

              • CA-1.4.13

                Formal reporting, to the Central Bank, of the market risk exposure and capital adequacy shall take place as at the end of each calendar quarter. The returns relating to any quarter should be submitted to the Central Bank by the 20th day of the first month of the following quarter. Furthermore, banks are expected to manage their market risk in such a way that the capital requirements for market risk are being met on a continuous basis (i.e. at the close of each business day and not merely at the end of each calendar quarter). Banks are also expected to maintain strict risk management systems to ensure that their intra-day exposures are not excessive.

                October 07

              • CA-1.4.14

                Banks' daily compliance with the capital requirements for market risk will be verified by the independent risk management department and the internal auditor. It is expected that the external auditors will perform appropriate tests of the bank's daily compliance with the capital requirements for market risk. Where a bank fails to meet the minimum capital requirements for market risk on any business day, the Central Bank must be informed in writing. The Central Bank will then seek to ensure that the bank takes immediate measures to rectify the situation.

                October 07

              • CA-1.4.15

                Besides what is stated in Paragraph CA-1.4.14 above, the Central Bank will consider a number of other appropriate and effective measures to ensure that banks do not 'window dress' by showing significantly lower market risk positions on reporting dates.

                October 07

          • CA-1.5 CA-1.5 Reporting

            • CA-1.5.1

              Formal reporting, to the Central Bank, of capital adequacy shall be made in accordance with the requirements set out under Section BR-3.1.

              October 07

          • CA-1.6 CA-1.6 Summary of overall capital adequacy requirements

            • CA-1.6.1

              Each bank is expected to monitor and report the level of risk against which a capital requirement is to be applied, in accordance with Section CA-1.4. The bank's overall minimum capital requirement will be:

              (a) The credit risk requirements laid down in these regulations; PLUS
              (b) The capital charges for market risks calculated according to the measurement frameworks described in Chapters CA-4 to CA-6, summed arithmetically.
              October 07

        • CA-2 CA-2 The capital requirement

          • CA-2.1 CA-2.1 Introduction

            • CA-2.1.1

              Regulatory Capital is the sum of the following components (as defined in Rules CA-2.2.1 to CA-2.2.6), subject to the restrictions set out in Section CA-2.3:

              •   Tier 1: Supports the calculation of credit risk weighted assets and at least 28.57% of market risk.
              •   Tier 2: Supports credit risk and market risk subject to limitations.
              October 07

            • CA-2.1.2

              For the purpose of calculating its Capital Adequacy Ratio (CAR), the risk-weighted assets of an Islamic bank consist of the sum of the risk-weighted assets financed by the Islamic bank's own capital and liabilities, plus 50% of the risk-weighted assets financed by the Islamic bank's PSIA. This applies to both unrestricted PSIA that are accounted for on the Islamic bank's balance sheet and restricted PSIA that are accounted for off the balance sheet.

              October 07

          • CA-2.2 CA-2.2 Definition of capital

            • Tier 1 capital

              • CA-2.2.1

                Tier Capital forms the numerator of the Capital Adequacy Ratio. It is defined as the cornerstone of a bank's strength.

                October 07

              • CA-2.2.2

                The essential characteristics of capital are that it should:

                (a) Represent a permanent and unrestricted commitment of funds;
                (b) Be freely available to absorb losses and thereby enable a bank to keep operating whilst any problems are resolved;
                (c) Not impose any unavoidable charge on the earnings of the bank.
                October 07

              • CA-2.2.3

                For the purpose of defining Tier capital, the Central Bank has broadly adopted the recommendations contained in AAOIFI's Statement on the Purpose and Calculation of Capital Adequacy for Islamic Banks. However, some restrictions have been placed on the inclusion of profit equalisation and investment risk reserve as Tier 2 capital. For components of Tier 1 and Tier 2 capital refer to Paragraphs CA-2.2.1 to CA-2.2.6.

                October 07

            • Tier 1: Core capital

              • CA-2.2.4

                Tier 1 capital shall consist of the sum of items (a) to (b) below, less the sum of items (c) to (d) below:

                (a) Bank's permanent share capital and disclosed reserves in the form of legal, general and other reserves created by appropriations of retained earnings, share premium, capital redemption reserves and other surplus (as shown in its balance sheet), but excluding revaluation reserves and prudential reserves (profit equalisation reserves and investment risk reserve as defined in the AAOIFI's Financial Accounting Standard No: 11 Provisions and Reserves).

                In case of an Islamic fund having participation and / or 'B' class shares (not carrying voting rights), their treatment as capital or unrestricted investment accounts (for the purpose these regulations) must be agreed with the Central Bank. The Central Bank will consider each case on its merit.
                (b) Minority interests, arising on consolidation, in the equity of subsidiaries that are less than wholly owned.

                LESS:
                (c) Goodwill
                (d) Current year's cumulative net losses which have been reviewed as per the International Standards on Auditing (ISA) by the external auditors.
                October 07

            • Tier 2: Supplementary capital

              • CA-2.2.5

                Tier 2 capital shall consist of the following items:

                (a) Interim retained profits that have been reviewed as per the ISA by the external auditors.
                (b) Asset revaluation reserves, which arise in two ways. Firstly, these reserves can arise from the revaluation of fixed assets from time to time in line with the change in market values, and are reflected on the face of the balance sheet as a revaluation reserve. Secondly, hidden values or 'latent' revaluation reserves may be present as a result of long-term holdings of equity securities valued in the balance sheet at the historical cost of acquisition. Both types of revaluation reserve may be included in Tier 2 capital, with the concurrence of the external auditors, provided that the assets are prudently valued, fully reflecting the possibility of price and forced sale. In the case of 'latent' revaluation reserves, a discount of 55% will be applied to the difference between the historical cost book value and the market value to reflect the potential volatility of this form of unrealised capital.
                (c) General provisions held against the future, presently unidentified, losses are freely available to meet losses that subsequently materialise and therefore, qualify for inclusion within supplementary elements of capital, subject to a maximum of 1.25% of total risk-weighted assets (both credit and market risk weighted). Prescriptions ascribed to impairment of particular assets or known liabilities should be excluded.
                (d) Profit equalisation reserve and investment risk reserve as defined in FAS No. 11: Provisions and Reserves, issued by AAOIFI, up to a maximum amount equal to the capital charge pertaining to the 50% the risk weighted assets financed by unrestricted and restricted investment account holders.
                (e) 45% of unrealised gains on equity securities held as available-for-sale (on an aggregate net-basis).
                October 07

            • Deductions from Tier 1 and Tier 2 capital

              • CA-2.2.6

                For the calculation of capital adequacy on a solo basis, the following item shall be deducted from the sum of Tier 1 and Tier 2 capital (goodwill will have been already deducted from Tier 1 capital):

                (a) Investments in and financing of a capital nature to unconsolidated subsidiaries and associates. The assets representing the investments in subsidiary companies whose capital is deducted from that of the parent would not be included in total assets for the purpose of computing the capital adequacy ratio.
                (b) Holdings of own shares and any financing facility provided to the parent company to finance the shares of the subsidiary.
                October 07

          • CA-2.3 CA-2.3 Limits on the use of different forms of capital

            • CA-2.3.1

              The following constraints apply to the CAR calculations:

              Constraint 1: Tier 2 capital allocated to credit risk (see Section A20.7 of guidelines in Appendix BR-3)

              should be less than or equal to


              50% of the Tier 1 capital allocated to credit risk (see Section A20.6 of guidelines in Appendix BR-3)
              Constraint 2: Tier 2 capital allocated to market risk (see Section A20.13 of guidelines in Appendix BR-3) plus Tier 2 capital allocated to credit risk (see Section A20.7 of guidelines in Appendix BR-3)

              should be less than or equal to

              Total Tier 1 capital available (see Section A20.1 of guidelines in Appendix BR-3)
              October 07

          • CA-2.4 CA-2.4 Calculation of the CAR for Islamic banks

            • CA-2.4.1

              Firstly, the banks should calculate minimum capital required (Section A20.4 or A9.14 of guidelines in Appendix BR-3) by reference to credit risk in accordance with these regulations, excluding equity securities in the trading book and all positions in commodities. This figure will constitute minimum capital required to cover credit risk (Section A20.5 of guidelines in Appendix BR-3).

              October 07

            • CA-2.4.2

              Secondly, the banks should calculate minimum capital required (Section A20.9 or A17.14 of guidelines in Appendix BR-3) by reference to the measure of market risk (i.e. specific risk plus general market risk) in accordance with the regulations contained in Section CA-1.4. This figure will constitute minimum capital required to cover market risk (Section A21.10 of guidelines in Appendix BR-3).

              October 07

            • CA-2.4.3

              Thirdly, the amount resulting from the above requirement (Section A20.10 of guidelines in Appendix BR-3) should be multiplied by 28.57%. This is the minimum capital charge which should be supported by Tier 1 capital allocated to market risk weighted exposures (Section A20.12 of guidelines in Appendix BR-3); therefore, the balance amount in Tier 1 capital should be the amount allocated to support credit risk weighted assets (Section A20.6 of guidelines in Appendix BR-3).

              October 07

            • CA-2.4.4

              The balance of the credit risk weighted assets may be supported by Tier 2 capital amount in Section A-20.7 of guidelines in Appendix BR-3 (subject to constraint stated in Section CA-2.3).

              October 07

            • CA-2.4.5

              Further, the residual amount in Tier 2 capital (Section A-20.13 of guidelines in Appendix BR-3) may be used to support the balance subject to the condition stated in Paragraph CA-2.4.3.

              October 07

          • CA-2.5 CA-2.5 Minimum capital ratio requirement

            • CA-2.5.1

              The Central Bank has established that the minimum capital ratio required for all Islamic banks incorporated in Bahrain is 12%. Furthermore, on a solo basis, the parent bank of a group is required to maintain a minimum RAR of 8.0% (i.e. unconsolidated).

              October 07

            • Maintaining minimum RAR

              • CA-2.5.2

                All locally incorporated banks must give the Central Bank immediate written notification of any actual breach by such banks of either or both of the above RARs. Where such notification is given, the bank must also provide the Central Bank:

                (a) No later than one calendar week after the notification, with a written action plan setting out how the bank proposes to restore the relevant RAR(s) to the required minimum level(s) set out above and, further, describing how the bank will ensure that a breach of such RAR(s) will not occur again in the future; and
                (b) With a weekly report thereafter on the bank's relevant RAR(s) until such RAR(s) have reached the required target level(s) set out below.
                October 07

              • CA-2.5.3

                In addition, the Central Bank considers it a matter of best practice that, in order to ensure that these RARs are constantly met, that banks set up internal 'targets' of 12.5% (on a consolidated basis) and 8.5% (on a solo basis) to warn them of a potential fall by the bank below the Central Bank's required minimum RARs as set out above.

                October 07

              • CA-2.5.4

                Where a bank's capital ratio falls below its target ratio, the General Manager should notify the Director of Banking Supervision at the Central Bank immediately. No formal action plan will be necessary, however the General Manager should explain what measures are being implemented to ensure that the bank will remain above its minimum RAR(s).

                October 07

              • CA-2.5.5

                The bank will be required to submit the PIRI forms to the Central Bank on a monthly basis, until the RAR(s) exceeds its target ratio(s).

                October 07

              • CA-2.5.6

                The Central Bank will notify banks in writing of any action required of them with regard to the corrective and preventive action (as appropriate) proposed by the bank pursuant to the above, as well as of any other requirement of the Central Bank in any particular case.

                October 07

              • CA-2.5.7

                Banks should note that the Central Bank considers the breach of RARs to be a very serious matter. Consequently, the Central Bank may (at its discretion) subject a bank which breaches its RAR(s) to a formal licensing reappraisal. Such reappraisal may be effected either through the Central Bank's own inspection function or through the use of Reporting Accountants, as appropriate. Following such appraisal, the Central Bank will notify the bank concerned in writing of its conclusions with regard to the continued licensing of the bank.

                October 07

              • CA-2.5.8

                The Central Bank recommends that the bank's compliance officer supports and cooperates with the Central Bank in the monitoring and reporting of the capital ratios and other regulatory reporting matters. Compliance officers should ensure that their banks have adequate internal systems and controls to comply with these regulations.

                October 07

        • CA-3 CA-3 Credit risk

          • CA-3.1 CA-3.1 Introduction

            • CA-3.1.1

              This Chapter describes the standardised approach for the measurement of the credit risk exposure in the bank's banking book.

              October 07

            • CA-3.1.2

              As illustrated in Sections CA-3.2 and CA-3.3, banks are required to apply a simple risk-weighted approach through which claims of different categories of counterparties are assigned risk weights according to broad categories of relative risk.

              October 07

          • CA-3.2 CA-3.2 Risk weighting – On-balance-sheet asset Category

            • CA-3.2.1

              Risk weights by Category of on-balance-sheet asset are illustrated in the table below:

              Risk weights Category of on-balance-sheet assets/claims
              0%
              (a) Cash;
              (b) Holdings of Gold bullion and coins;
              (c) The government of Bahrain & Bahrain public sector entities;
              (d) Government-owned GCC companies incorporated in Bahrain;
              (e) Central governments and central banks of GCC and OECD countries; and
              (f) Central governments and central banks of classified countries where denominated and funded in local currency.
              20%
              (a) Cash items in process of collection;
              (b) Multilateral development banks;
              (c) Banks and securities firms incorporated in Bahrain, other GCC and OECD countries;
              (d) Banks incorporated in classified countries with a residual maturity less than 1 year;
              (e) Public sector entities in GCC and OECD countries; and
              (f) Government-owned GCC companies incorporated outside Bahrain.
              50% Mortgages backed by residential property
              100%
              (a) Related parties
              (b) Holdings of other banks' and securities firms' capital instruments
              (c) Banks incorporated in classified countries with a residual maturity of over 1 year
              (d) Central governments and central banks of classified countries (not included above)
              (e) Public sector entities of classified countries
              (f) Government-owned companies in non-GCC countries
              (g) Private sector persons and entities in and outside Bahrain
              (h) Istisna'a assets*
              (i) Ijarah / Ijarah Muntahia Bittamleek assets
              (j) Real estate investments
              (k) Other assets not reported elsewhere**

              * This represents balance in Work in Progress/ cost account less billings. However, Istisna'a receivables should be reported against the risk weighting Category of the counterparty.

              ** Salam Contracts are subject to market risk and should not be included here.

              October 07

          • CA-3.3 CA-3.3 Risk weighting – Off-balance-sheet items

            • CA-3.3.1

              The framework takes account of the credit risk on off-balance-sheet exposures by applying credit conversion factors to the different types of off-balance-sheet instruments or transactions.

              October 07

            • CA-3.3.2

              The conversion factors are derived from the estimated size and likely occurrence of the credit exposure, as well as the relative degree of credit risk as identified in the Basel Committee's paper on 'The management of banks' off-balance-sheet exposures: a supervisory perspective' (see www.bis.org/publ/bcbsc134.pdf) issued in March 1986.

              October 07

            • CA-3.3.3

              The credit conversion factors applicable to the off-balance-sheet items are set out in the table below:

              Credit Conversion factors Off-balance-sheet items
              100% Direct credit substitutes
              50% Transaction-related contingent
              20% Trade-related contingencies
              100% Sale and repurchase agreements
              100% Forward asset purchases
              50% Underwriting commitments
              50% Commitments with an original maturity of over 1 year, not unconditionally cancellable at anytime
              0% Commitments with an original maturity of less than 1 year, unconditionally cancellable at anytime
              October 07

            • CA-3.3.4

              The applicable credit conversion factors should be multiplied by the weights applicable to the Category of the counterparty as set out below:

              Risk weights Counterparty
              0% Type (a)
               
              •  The Government of Bahrain.
              •  Bahrain public sector entities.
              •  Government-owned (non-banking) GCC companies incorporated in Bahrain.
              •  Central government and central banks of GCC and OECD member countries.
              20% Type (b)
               
              •  Banks incorporated in Bahrain or GCC and OECD countries and securities firms.
              •  Banks incorporated in classified countries (if the commitment has a residual life of 1 year or less).
              •  Public sector entities in GCC and OECD countries.
              •  Government-owned (non-banking) GCC companies incorporated outside Bahrain.
              100% Type (c)
               
              •  Banks incorporated in classified countries (if the commitment has a residual life of more than 1 year).
              •  Central governments, central banks and public sector entities in classified countries.
              •  Government-owned companies incorporated in non-GCC countries.
              •  Private sector persons and entities in Bahrain and abroad.
              October 07

        • CA-4 CA-4 Equity risk

          • CA-4.1 CA-4.1 Introduction

            • CA-4.1.1

              This Chapter sets out the minimum capital requirements to cover the risk of holding or taking positions in equities in the bank's trading book.

              October 07

            • CA-4.1.2

              The minimum capital requirement for equities is expressed in terms of two separately calculated charges, one relating to the 'specific risk' of holding a long position in an individual equity, and the other to the 'general market risk' of holding a long position in the market as a whole.

              October 07

            • CA-4.1.3

              Where the bank has invested in shares/units of equity funds on Mudaraba financing and the bank has direct exposures in the equities which are traded in a recognised stock exchange, the shares/units are considered to be subject to equity risk. The equity position would be considered to be the net asset value as at the reporting date.

              October 07

          • CA-4.2 CA-4.2 Specific risk calculation

            • CA-4.2.1

              Specific risk is defined as the bank's gross equity positions (i.e. the sum of all equity positions and is calculated for each country or equity market).

              October 07

            • CA-4.2.2

              The capital charge for specific risk is 8%, unless the portfolio is both liquid and well-diversified, in which case the capital charge will be 4%. To qualify for the reduced 4% capital charge, the following requirements need to be met:

              (a) The portfolio should be listed on a recognised stock exchange;
              (b) No individual equity position shall comprise more than 10% of the gross value of the country portfolio; and
              (c) The total value of the equity positions which individually comprise between 5% and 10% of the gross value of the country portfolio, shall not exceed 50% of the gross value of the country portfolio.
              October 07

            • CA-4.2.3

              To qualify for reduced 4% capital charge on equity funds, the bank should acquire prior written approval from the Central Bank.

              October 07

          • CA-4.3 CA-4.3 General risk calculation

            • CA-4.3.1

              The general market risk is the difference between the sum of the long positions and the sum of the short positions (i.e. the overall net position) in each national equity market. In other words, to calculate the general market risk, the bank should sum the market value of its individual net positions for each national market, taking into account whether the positions are long or short.

              October 07

            • CA-4.3.2

              The general market equity risk measure is 8% of the overall net position in each national market.

              October 07

        • CA-5 CA-5 Foreign exchange risk

          • CA-5.1 CA-5.1 Introduction

            • CA-5.1.1

              This Section describes the standardised method for calculation of the bank's foreign exchange risk, and the capital required against that risk.

              October 07

            • CA-5.1.2

              The measurement of the foreign exchange risk involves, as a first step, the calculation of the net open position in each individual currency including gold1 and as a second step, the measurement of the risks inherent in the bank's mix of assets and liabilities positions in different currencies.


              1 Positions in gold should be treated as if they were foreign currency positions, rather than commodity positions, because the volatility of gold is more in line with that of foreign currencies and most banks manage it in a similar manner.

              October 07

            • CA-5.1.3

              A bank that holds net open positions (whether assets or liabilities) in foreign currencies is exposed to the risk that exchange rates may move against it. The open positions may be either trading positions or, simply, exposures caused by the bank's overall assets and liabilities. Where the bank is involved in option transactions, these should be agreed in advance with the Central Bank. The Central Bank will consider the appropriate treatment on a case by case basis.

              October 07

            • CA-5.1.4

              The open positions and the capital requirements are calculated with reference to the entire business (i.e. the banking and trading books).

              October 07

            • CA-5.1.5

              The open positions are calculated with reference to the bank's base currency, which will be either Bahrain Dinars (BD) or United States dollars (USD).

              October 07

            • CA-5.1.6

              In addition to foreign exchange risk, positions in foreign currencies may be subject to credit risk which should be treated separately.

              October 07

          • CA-5.2 CA-5.2 De Minimis exemptions

            • CA-5.2.1

              A bank doing negligible business in foreign currencies and which does not take foreign exchange positions for its own account may, at the discretion of the Central Bank and as evidenced by the Central Bank's prior written approval, be exempted from calculating the capital requirements on these positions. The Central Bank is likely to be guided by the following criteria in deciding to grant exemption to any bank:

              (a) The bank's holdings or taking of positions in foreign currencies, including gold, defined as the greater of the sum of the gross asset positions and the sum of the gross liability position in all foreign positions and gold, does not exceed 100% of its eligible capital; and
              (b) The bank's overall net open position, as defined in Section CA-5.3, does not exceed 2% of its eligible capital.
              October 07

            • CA-5.2.2

              The criteria listed in Paragraph CA-5.2.1 above are only intended to be guidelines, and a bank will not automatically qualify for exemptions upon meeting them. Banks doing negligible foreign currency business, which do not take foreign exchange positions for the bank's own account, and wish to seek exemption from foreign exchange risk capital requirements, should submit an application to the Central Bank, in writing. The Central Bank will have the discretion to grant such exemptions. The Central Bank may also, at its discretion, fix a minimum capital requirement for a bank that is exempted from calculating its foreign exchange risk capital requirement, to cover the risks inherent in its foreign currency business.

              October 07

            • CA-5.2.3

              The Central Bank may, at a future date, revoke an exemption granted to a bank, if the Central Bank is convinced that the conditions on which the exemption was granted no longer exist.

              October 07

          • CA-5.3 CA-5.3 Calculation of net open positions

            • CA-5.3.1

              A bank's exposure to foreign exchange risk in any currency is its net open position in that currency, which is calculated by summing the following items:

              (a) The net spot position in the currency (i.e. all asset items less all liability items, including accrued profit, other income and expenses, denominated in the currency in question; assets are included gross of provisions for bad and doubtful debts, except in cases where the provisions are maintained in the same currency as the underlying assets);
              (b) The net forward position in the currency (i.e. all amounts to be received less all amounts to be paid under forward foreign exchange contracts, in the concerned currency);
              (c) Guarantees and similar off-balance sheet contingent items that are certain to be called and are likely to be irrecoverable where the provisions, if any, are not maintained in the same currency;
              (d) Profits (i.e. the net value of income and expense accounts) held in the currency in question; and
              (e) Specific provisions held in the currency in question where the underlying asset is in a different currency, net of assets held in the currency in question where a specific provision is held in a different currency.
              October 07

            • CA-5.3.2

              For calculating the net open position in gold, the bank will first express the net position (spot plus forward) in terms of the standard unit of measurement (i.e. ounces or grams) and then convert it at the current spot rate into the base currency.

              October 07

            • CA-5.3.3

              Where gold is part of a forward contract (i.e. quantity of gold to be received or to be delivered), any foreign currency exposure from the other leg of the contract should be reported.

              October 07

            • Structural positions

              • CA-5.3.4

                Positions of a structural nature (i.e. non-dealing), may be excluded from the calculation of the net open currency positions, these include positions related to items that are deducted from the bank's capital when calculating its capital base in accordance with the rules and guidelines issued by the Central Bank, such as investments denominated in foreign currencies in non-consolidated subsidiaries.

                October 07

              • CA-5.3.5

                The Central Bank will consider approving the exclusion of the above positions for the purpose of calculating the capital requirement, only if each of the following conditions is met:

                (a) The concerned bank provides adequate documentary evidence to the Central Bank which establishes the fact that the positions proposed to be excluded are, indeed, of a structural nature (i.e. non-dealing) and are merely intended to protect the bank's capital adequacy ratio. For this purpose, the Central Bank may ask written representations from the bank's management or Directors.
                (b) Any exclusion of a position is consistently applied, with the treatment of the structural positions remaining the same for the life of the associated assets or other items.
                October 07

            • Calculation of the overall net open position

              • CA-5.3.6

                The net position in each currency is converted at the spot rate, into the reporting currency. The overall net open position is measured by aggregating the following:

                (a) The sum of the net liabilities positions or the sum of the net asset positions whichever is greater
                (b) The net position (liabilities and assets) in gold, regardless of sign
                October 07

              • CA-5.3.7

                Where the bank is assessing its foreign exchange on a consolidated basis, it may be technically impractical in the case of some marginal operations to include the currency positions of a foreign branch or subsidiary of the bank. In such cases, the internal limit for that branch/subsidiary, in each currency, may be used as a proxy for the positions. The branch/subsidiary limits should be added, without regard to sign, to the net open position in each currency involved. When this simplified approach to the treatment of currencies with marginal operations is adopted, the bank should adequately monitor the actual positions of the branch/subsidiary against the limits, and revise the limits, if necessary, based on the results of the ex-post monitoring.

                October 07

          • CA-5.4 CA-5.4 Calculation of the capital charge

            • CA-5.4.1

              The capital charge is 8% of the overall net open foreign currency position.

              October 07

            • CA-5.4.2

              The table below illustrates the calculation of the overall net open foreign currency position and the capital charge:

              October 07

            • Example of the calculation of the foreign exchange overall net open position and the capital charge

              GBP DEM SAR US$ JPY GOLD
              +200 +100 +70 -190 -40 -50
                         
              +370 -230 50

              The capital charge is 8% of the higher of either the sum of the net long currency positions or the sum of the net short positions (i.e. 370) and of the net position in gold (i.e. 50) = 420 @ 8% = 33.6

              October 07

              • CA-5.4.3

                For illustration and calculation of the overall net open position and the capital charge for unrestricted / restricted investment account and corporate book, refer to Section CA-5.3.

                October 07

        • CA-6 CA-6 Commodities risk

          • CA-6.1 CA-6.1 Introduction

            • CA-6.1.1

              This Section sets out the minimum capital requirements to cover the risk of holding or taking positions in commodities, including precious metals, but excluding gold (which is treated as a foreign currency according to the methodology explained in Chapter CA-5).

              October 07

            • CA-6.1.2

              The commodities position risk and the capital charges are calculated with reference to the entire business of a bank (i.e. the banking and trading books combined).

              October 07

            • CA-6.1.3

              The price risk in commodities is often more complex and volatile than that associated with currencies. Banks need to guard against the risk that arises when a liability (i.e. in a Parallel Salam transaction) position falls due before the asset position (i.e. a failure associated with or delay in the Salam contract). Owing to a shortage of liquidity in some markets, it might be difficult to close the Parallel Salam position and the bank might be 'squeezed by the market'. All these commodity market characteristics can result in price transparency and the effective management of risk.

              October 07

            • CA-6.1.4

              All contracts (salam, musharaka or mudaraba) involving commodities as defined in Section CA-1.3 are subject to commodities risk and a capital charge as per the provisions outlined in Sections CA-6.2 to CA-6.4 should be computed.

              October 07

            • CA-6.1.5

              Banks should adopt either the simplified approach to calculate their commodities risk and the resultant capital charges or the maturity ladder approach. Where banks have Salam and Parallel Salam contracts, the maturity ladder approach must be used.

              October 07

          • CA-6.2 CA-6.2 Calculation of commodities positions

            • CA-6.2.1

              Banks will first express each commodity position (i.e. Salam and Parallel Salam) in terms of the standard unit of measurement (i.e. barrels, kilograms, grams, etc). Asset and liability positions in a commodity are reported on a net basis for the purpose of calculating the net open position in that commodity. For markets which have daily delivery dates, any contracts maturing within ten days of one another may be offset. The net position in each commodity is then converted, at spot rates, into the bank's reporting currency.

              October 07

            • CA-6.2.2

              Positions in different commodities cannot be offset for the purpose of calculating the open-positions as described in Paragraph CA-6.2.1 above. However, where one or more sub-categories2 of the same Category are in effect and are directly deliverable against each other, netting between those sub-categories is permitted. Furthermore, if two or more sub-categories of the same Category are considered as close substitutes for each other, and minimum correlation of 0.9 between their price movements is clearly established over a minimum period of one year, the bank may, with the prior written approval of the Central Bank, net positions in those sub-categories.


              2 Commodities can be grouped into clan, families, sub-groups and individual commodities. For example, a clan might be Energy Commodities, within which Hydro-Carbons is a family with Crude Oil being a sub-group and West Texas Intermediate, Arabian Light and Brent being individual commodities.

              October 07

            • CA-6.2.3

              Banks, which wish to net positions based on correlation (in the manner discussed in Paragraph CA-6.2.2 above), will need to satisfy the Central Bank of the accuracy of the method which it proposes to adopt.

              October 07

          • CA-6.3 CA-6.3 Maturity Ladder Approach

            • CA-6.3.1

              A worked example of the maturity ladder approach is set out in Appendix CA-1 and the table below illustrates the maturity time-bands of the maturity ladder for each commodity. As stated in Section CA-6.1, banks having Salam and Parallel Salam transactions must use the maturity ladder approach.

              October 07

            • CA-6.3.2

              The steps in the calculation of the commodities risk by the maturity ladder approach are:

              (a) The net positions in individual commodities, expressed in terms of the standard unit of measurement, are first slotted into the maturity ladder. Physical stocks are allocated to the first-time band. A separate maturity ladder is used for each commodity as defined in Section CA-6.2. The net positions in commodities are calculated as explained in Section CA-6.2.
              (b) Asset and liability positions in the same time-band are matched. The sum of the matched asset and liability positions is multiplied first by the spot price of the commodity, and then by a spread of 1.5% for each time-band as set out in the table below. This represents the capital charge in order to capture all risks within a time-band (which, together, are sometimes referred to as curvature risk).
              Time band3
              0-1 months
              1-3 months
              3-6 months
              6-12 months
              1-2 years
              2-3 years
              over 3 years
              (c) The residual (unmatched) net positions from nearer time-bands are then carried forward to offset opposite positions (i.e. asset against liability and vice versa) in time bands that are further out. However, a surcharge of 0.6% of the net position carried forward is added in respect of each time-band that the net position is carried forward, to recognise that such management of positions between different time-bands is imprecise. The surcharge is in addition to the capital charge for each matched amount created by carrying net positions forward, and is calculated as explained in step (b) above.
              (d) At the end of step (c), there will be either asset or liability positions, to which a capital charge of 15% will apply. The Central Bank recognises that there are differences in volatility between different commodities, but has, nevertheless, decided that one uniform capital charge for open positions in all commodities shall apply in the interest of simplicity of the measurement, and given the fact that banks normally run rather small open positions in commodities. Banks will be required to submit in writing, details of their commodities business in order to capture the market risk on this business and to enable the Central Bank to evaluate whether the models approach should be adopted by the bank.

              3 Instruments, where the maturity is on the boundary of two maturity time-bands, should be placed into the earlier maturity band. For example, instruments with a maturity of exactly one-year are placed into the 6 to 12 months time-band.

              October 07

          • CA-6.4 CA-6.4 Simplified Approach

            • CA-6.4.1

              Banks who do not enter into Salam and Parallel Salam transactions and do not have any short positions in commodities may use the simplified approach to compute the capital charge. In the simplified approach, the capital charge is computed at 15% of the net position. Net positions in commodities are calculated as explained in Section CA-6.2. For the time being the Central Bank is not requiring additional 3% capital charge for basis risk.

              October 07

        • CA-7 CA-7 Gearing requirements

          • CA-7.1 CA-7.1 Gearing

            • CA-7.1.1

              The content of this Chapter is applicable to locally incorporated banks and Bahrain retail bank branches of foreign banks.

              October 07

            • Measurement

              • CA-7.1.2

                The Gearing ratio is measured with reference to the ratio of deposit liabilities against the bank's capital and reserves as reported in its PIRI.

                October 07

            • Gearing limit

              • CA-7.1.3

                For Retail Bank and Wholesale bank licensees, deposit liabilities should not exceed 20 times the respective bank's capital and reserves.

                October 07

      • CA CA Capital Adequacy (April 2008)

        • PART 1: PART 1: Definition of Capital

          • CA-A CA-A Introduction

            • CA-A.1 CA-A.1 Application

              • CA-A.1.1

                Rules in this Module are applicable to locally incorporated banks on both a stand-alone basis (i.e. including their foreign branches), and on a consolidated group basis (i.e. including their subsidiaries and any other investments which are included or consolidated into the group accounts or are required to be consolidated for regulatory purposes by the Central Bank of Bahrain ('CBB')).

                Amended: January 2011
                Apr 08

              • CA-A.1.2

                In addition to licensees mentioned in Paragraph CA-A.1.1, certain of these Rules (in particular gearing and market risk requirements) are also applicable to Bahrain branches of foreign retail bank licensees.

                Amended: January 2011
                Apr 08

              • CA-A.1.3

                Rules in this Module are applicable to locally incorporated Islamic banks (hereinafter referred to as "the banks") on both a stand-alone and consolidated group basis.

                Amended: January 2011
                Apr 08

              • CA-A.1.4

                If the banks have investments in other entities, the banks must also apply the Rules set out in the Prudential Consolidation and Deduction Requirements Module (Module PCD) for the calculation of their solo and consolidated Capital Adequacy Ratio (CAR).

                Amended: January 2011
                Apr 08

            • CA-A.2 CA-A.2 Purpose

              • Executive Summary

                • CA-A.2.1

                  The purpose of this Module is to set out the CBB's capital adequacy Rules and provide guidance on the risk measurement for the calculation of capital requirements by banks referred to under Paragraph CA-A.1.1. This requirement is supported by Article 44(c) of the Central Bank of Bahrain and Financial Institutions Law (Decree No. 64 of 2006).

                  Amended: January 2011
                  Apr 08

                • CA-A.2.2

                  The Module also sets out the minimum gearing requirements which relevant banks (referred to in Section CA-A.1) must meet as a condition of their licensing.

                  Apr 08

                • CA-A.2.3

                  Principle 9 of the Principles of Business requires that Islamic bank licensees maintain adequate human, financial and other resources, sufficient to run their business in an orderly manner (see Section PB-1.1.9). In addition, Condition 5 of CBB's Licensing Conditions (Section LR-2.5) requires Islamic bank licensees to maintain financial resources in excess of the minimum requirements specified in Module CA (Capital Adequacy).

                  Apr 08

                • CA-A.2.4

                  The requirements specified in this Module vary according to the Category of Islamic bank licensee concerned, their inherent risk profile, and the volume and type of business undertaken. The purpose of such requirements is to ensure that Islamic bank licensees hold sufficient capital to provide some protection against unexpected losses, and otherwise allow conventional banks to effect an orderly wind-down of their operations, without loss to their depositors. The minimum capital requirements specified here may not be sufficient to absorb all unexpected losses.

                  Apr 08

              • Legal Basis

                • CA-A.2.5

                  This Module contains the CBB's Directive (as amended from time to time) relating to the capital adequacy of Islamic bank licensees, and is issued under the powers available to the CBB under Article 38 of the CBB Law. The Directive in this Module is applicable to all Islamic bank licensees.

                  Amended: January 2011
                  Apr 08

                • CA-A.2.6

                  For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1.

                  Apr 08

                • CA-A.2.7

                  The CBB requires in particular that the banks maintain adequate capital, in accordance with the Rules in this Module, against their risks as capital provides banks with a cushion to absorb losses without endangering customer accounts. As such, the CBB also requires the relevant banks to maintain adequate liquidity and identify and control their large exposures which might otherwise be a source of loss to a licensee on a scale that might threaten its solvency.

                  Amended: January 2011
                  Apr 08

                • CA-A.2.8

                  These Rules are consistent in all substantial respects with the approach recommended by the Basel Committee on Banking Supervision and Islamic Financial Services Board (IFSB) for capital adequacy.

                  Amended: January 2011
                  Apr 08

                • CA-A.2.9

                  The CBB recognises that the Basel Committee guidelines may not address specific characteristics of the various products and services offered by Islamic banks. Therefore, the CBB has adopted a risk-based approach and has tailored the Rules to address the specific risk characteristics of Islamic banks. The structure of these Rules is explained on the next page.

                  Amended: January 2011
                  Apr 08

                • CA-A.2.10

                  This Module provides support for certain other parts of the Rulebook, mainly:

                  (a) Prudential Consolidation and Deduction Requirements;
                  (b) Licensing and Authorisation Requirements;
                  (c) CBB Reporting Requirements;
                  (d) Credit Risk Management;
                  (e) Market Risk Management;
                  (f) Operational Risk Management;
                  (g) Liquidity Risk Management;
                  (h) High Level Controls;
                  (i) Relationship with Audit Firms; and
                  (j) Penalties and Fines.

                  Amended: January 2011
                  Apr 08

            • CA-A.3 CA-A.3 Capital Adequacy Ratio

              • CA-A.3.1

                Historically, on a consolidated basis, the CBB has set a minimum Capital Adequacy Ratio ("CAR") of 12.0% for all locally incorporated banks. Furthermore, on a solo basis, the parent bank has been required to maintain a minimum CAR of 8.0% (i.e. unconsolidated). The arrangements outlined below will apply once banks have been subject to a Pillar 2 risk profile assessment by the CBB or an acceptable audit firm. Until such an assessment has been completed, the existing 12% and 8% minimum capital ratio requirements (as outlined in Module CA-2.5 October 2006 edition) will remain in place.

                Apr 08

              • CA-A.3.2

                CAR will be calculated by applying the regulatory capital to the numerator and risk-weighted assets (RWAs) to the denominator.

                Eligible Capital


                { Total Risk-weighted Assets (Creditb + Marketb Risks) Plus Operational Risks

                Less

                Risk-weighted Assets funded by Restricted PSIAc (Creditb + Marketb Risks)

                Less

                (1 - α) [Risk-weighted Assets funded by Unrestricted PSIAc (Creditb + Marketb Risks)]

                Less

                α [Risk-weighted Assets funded by PER and IRR of Unrestricted PSIAe (Creditb +

                Marketb Risks)]}

                (a) Total RWA include those financed by both restricted and unrestricted Profit Sharing Investment Accounts (PSIA);
                (b) Credit and market risks for on- and off-balance sheet exposures;
                (c) Where the funds are commingled, the RWA funded by PSIA are calculated based on their pro-rata share of the relevant assets. PSIA balances include PER and Investment risk reserve (IRR) or equivalent reserves;
                (d) — α refers to the proportion assets funded by unrestricted PSIA which, as determined by the CBB, is 30%; and
                (e) The relevant proportion of risk-weighted assets funded by the PSIA's share of PER and by IRR is deducted from the denominator. The PER has the effect of reducing the displaced commercial risk and the IRR has the effect of reducing any future losses on the investment financed by the PSIA.

                The above formula is applicable as the Islamic banks may smooth income to the Investment Account Holders (IAHs) as part of a mechanism to minimise withdrawal risk and is concerned with systemic risk.
                Amended: April 2011
                April 2008

              • CA-A.3.3

                All locally incorporated banks are required to maintain a capital ratio both on a solo (and a consolidated basis where applicable) above the minimum "trigger" CAR of 8%. Failure to remain above the trigger ratio will result in Enforcement and other measures as outlined in Section CA-1.4.

                Apr 08

              • CA-A.3.4

                All locally incorporated banks will be required to maintain capital ratios above individually set "target" CARs on a solo and on a consolidated basis. These target CARs will be set at an initial minimum of 8.5% and may in the case of high risk banks be set at levels above the 12.5% target ratio set prior to January 2008. Failure to remain above the target ratio will result in Enforcement and other measures as outlined in Section CA-1.4.

                Apr 08

              • Eligible Capital

                • CA-A.3.5

                  Banks are allowed two classes of capital (see section CA-2.2) to meet their capital requirements for credit risk, operational risk and market risk, as set out below:

                  Tier 1: Core capital — Supports the calculation of credit risk weighted assets, operational risk and market risk.

                  Tier 2: Supplementary capital — Supports credit risk, operational risk and market risk subject to limitations.

                  Apr 08

              • Risk-weighted Assets

                • CA-A.3.6

                  Total risk-weighted assets are determined by:

                  (i) Multiplying the capital requirements for market risk and operational risk by 12.5; and
                  (ii) Adding the resulting figures to the sum of risk-weighted assets for credit risk.
                  Amended: January 2011
                  Apr 08

                • CA-A.3.7

                  Islamic banks are not contractually obliged to make good losses arising from Islamic financing assets funded by the investment accounts, unless these losses arise from the negligence on the part of the Islamic bank as manager (Mudarib) or as agent (Wakeel). However to be prudent, the CBB requires Islamic banks to provide regulatory capital to cover minimum requirement arising from 30% of the risk weighted assets and contingencies financed by the unrestricted investment accounts. Therefore, for the purpose of calculating its Capital Adequacy Ratio (CAR), the risk-weighted assets of an Islamic bank consist of the sum of the risk-weighted assets financed by the Islamic bank's own capital and liabilities, plus 30% of the risk-weighted assets financed by the Islamic bank's unrestricted PSIAs.

                  Amended: January 2011
                  Apr 08

                • CA-A.3.8

                  In measuring credit risk for the purpose of capital adequacy, banks must apply the standardised approach through which claims of different categories of counterparties are assigned risk weights (RWs) according to broad categories of relative riskiness.

                  Apr 08

                • CA-A.3.9

                  For the measurement of their operational risks, banks have a choice, subject to the written approval of the CBB, between two broad methodologies:

                  (a) One alternative is to measure the risks using a basic indicator approach, applying the measurement framework described in Chapter CA-6 of this Module; and
                  (b) The second methodology (i.e. the standardised approach) is set out in detail in Chapter CA-6 including the procedure for obtaining the CBB's approval. This methodology is subject to the fulfillment of certain conditions. The use of this methodology is, therefore, conditional upon the explicit approval of the CBB.
                  Amended: January 2011
                  Apr 08

                • CA-A.3.10

                  In measuring market risk for the purpose of capital adequacy, banks must apply the approach set out in relevant sections.

                  Apr 08

                • CA-A.3.11

                  If an Islamic bank wants to adopt an advanced approach (IRB for credit risk and/or IMA for market risk), it will need to apply to the CBB for prior approval.

                  Apr 08

            • CA-A.4 CA-A.4 Module History

              • CA-A.4.1

                This Module was first issued in January 2005 as part of the Islamic principles volume. Any material changes that have subsequently been made to this Module are annotated with the calendar quarter date in which the change was made. Chapter UG-3 provides further details on Rulebook maintenance and version control.

                Apr 08

              • CA-A.4.2

                A list of most recent changes made to this Module are detailed in the table below:

                Summary of Changes

                Module Ref. Change Date Description of Changes
                CA-A.2 10/2007 New Rule CA-A.2.5 introduced, categorising this Module as a Directive.
                CA-1 to CA-6 01/2008 Basel II implementation.
                CA-1.5 01/2008 Review of PIR by external auditors
                CA-4.6 04/2008 Recognition of IIRA as ECAI and mapping of ratings
                CA-4.2.15–18 01/2009 New guidance and rules on SMEs
                CA-A 01/2011 Various minor amendments to ensure consistency in CBB Rulebook.
                CA-A.2.5 01/2011 Clarified legal basis.
                CA-5.1 & CA-5.3 01/2012 Changes in respect of July 2009 and February 2011 amendments to Basel II.
                CA-4.2.10 and CA-4.2.11A 04/2012 Amendment made for claims on banks dealing with self-liquidating letters of credit.
                CA-2.1.4(g) 10/2013 Added Rule to include limited general provision against unidentified future losses as part of Tier 2.
                CA-2.1.4(f), CA-2.1.4A to CA-2.1.4C and CA-2.2.1 10/2013 Added Rules to deal with subordinated issued for Tier 2 capital.
                CA-5.5.13 10/2013 Clarified Rules on structural positions for foreign exchange risk.

              • Evolution of the Module

                • CA-A.4.3

                  Prior to the development of this Rulebook, the CBB issued various circulars representing regulations relating to capital adequacy requirements. These circulars were consolidated into this Module and are listed below:

                  Circular Ref. Date of Issue Module Ref. Circular Subject
                  OG/78/01 20 Feb 2001 CA-A.3 and CA-1.4 Monitoring of Capital Adequacy
                  BC/01/98 10 Jan 1998 CA-A.3 and CA-1.4 Capital Adequacy Ratio
                  Apr 08

              • Effective Date

                • CA-A.4.4

                  The contents retained from the previous module (Capital Adequacy-Islamic banks) are effective from the date depicted in the above circulars from which the requirements are compiled. The updated module is effective from January 01, 2008.

                  Apr 08

          • CA-1 CA-1 Scope and Coverage of Capital Charges

            • CA-1.1 CA-1.1 Application

              • CA-1.1.1

                All locally incorporated banks are required to measure and apply capital charges with respect to their credit, operational, market risk fiduciary and displacement risk, capital requirements.

                Apr 08

              • CA-1.1.2

                Credit risk is defined as the potential that a bank's counterparty will fail to meet its obligations in accordance with agreed terms. Credit risk exists throughout the activities of a bank in the banking book and in the trading book including both on-and off-balance-sheet exposures.

                Apr 08

              • CA-1.1.3

                Operational risk is defined as the risk of losses resulting from inadequate or failed internal processes, people and systems or from external events, which includes but is not limited to, legal risk and Sharia compliance risk. This definition excludes strategic and reputational risks.

                Apr 08

              • CA-1.1.4

                Market risk is defined as the risk of losses in on- or off-balance-sheet positions arising from movements in market prices. The risks subject to the capital requirement of this module are:

                (a) The risks pertaining to equities in the trading book;
                (b) Foreign exchange risk throughout the bank; and
                (c) Commodity risk throughout the bank.
                Amended: April 2011
                April 2008

              • CA-1.1.5

                The CBB has adopted the IFSB definitions of fiduciary and displacement risk for the purpose of this volume.

                Apr 08

              • CA-1.1.6

                Banks must compute capital charges for own funds as well as those of the unrestricted PSIAs. For the purpose of computing the Capital Adequacy Ratio, 30% of the bank's risk weighted assets relating to the unrestricted PSIAs must be included in accordance with the IFSB guidelines.

                Apr 08

            • CA-1.2 CA-1.2 Monitoring of Risks

              • CA-1.2.1

                Banks are required to manage their risks, especially market risks, in such a way that the capital requirements are being met on a continuous basis i.e. at the close of each business day and not merely at the end of each calendar quarter. Banks are also required to maintain strict risk management systems to ensure that their intra-day exposures are not excessive.

                Apr 08

              • CA-1.2.2

                Banks' daily compliance with the capital requirements for credit and market risks must be verified by an independent risk management department and internal audit. It is expected that external auditors will perform appropriate tests of the bank's daily compliance with the capital requirements for credit and market risks. Where a bank fails to meet the minimum capital requirements for credit and market risk on any business day, the CBB must be informed in writing by no later than the following business day. The CBB will then seek to ensure that the bank takes immediate measures to rectify the situation.

                Apr 08

            • CA-1.3 CA-1.3 Investments in other Entities and Consolidation

              • CA-1.3.1

                The banks must also apply the rules set in the Prudential Consolidation and Deduction Requirements Module where the bank has investments in other entities.

                Apr 08

              • CA-1.3.2

                These capital adequacy regulations must be applied on a worldwide consolidated basis as well as on a solo basis. Guidance on consolidation and related matters is provided in the Prudential Consolidation and Deduction Requirements Module.

                Apr 08

            • CA-1.4 CA-1.4 Reporting

              • CA-1.4.1

                Formal reporting, to the CBB, of capital adequacy must be made in accordance with the requirements set out under section BR 3.1.

                Apr 08

              • CA-1.4.2

                Where a bank's CAR falls below its individual target ratio either on a solo basis (or on a consolidated basis), the General Manager of the bank must notify the CBB by the following business day, however no formal action plan will be necessary. The General Manager must explain what measures are being implemented to ensure that the bank will remain above its minimum target CAR(s).

                Apr 08

              • CA-1.4.3

                The bank will be required to submit form PIRI to the CBB on a monthly basis, until the concerned CAR exceeds its target ratio.

                Apr 08

              • CA-1.4.4

                The CBB will notify banks in writing of any action required of them with regard to the corrective and preventive action (as appropriate) proposed by the bank pursuant to the above, as well as of any other requirement of the CBB in any particular case.

                Apr 08

              • CA-1.4.5

                All locally incorporated banks must provide the CBB, with immediate written notification (i.e. by no later than the following business day) of any actual breach of the minimum trigger CAR of 8%. Where such notification is given, the bank must also provide the CBB:

                (a) No later than one calendar week after the notification, with a written action plan setting out how the bank proposes to restore the relevant CAR(s) to the required minimum level(s) set out above and, further, describing how the bank will ensure that a breach of such CAR(s) will not occur again in the future; and
                (b) Report on a weekly basis thereafter on the bank's relevant CAR(s) until such CAR(s) have reached the required target level(s) described above.
                Amended: April 2011
                April 2008

              • CA-1.4.6

                Banks must note that the CBB considers the breach of CARs to be a very serious matter. Consequently, the CBB may (at its discretion) subject a bank which breaches its CAR(s) to a formal licensing reappraisal. Such reappraisal may be effected either through the CBB's own inspection function or through the use of Reporting Accountants, as appropriate. Following such appraisal, the CBB will notify the bank concerned in writing of its conclusions with regard to the continued licensing of the bank.

                Apr 08

              • CA-1.4.7

                The CBB recommends that the bank's compliance officer support and cooperate with the CBB in the monitoring and reporting of the CARs and other regulatory reporting matters. Compliance officers should ensure that their banks have adequate internal systems and controls to comply with these regulations.

                Apr 08

            • CA-1.5 CA-1.5 Review of Prudential Information Returns by External Auditors

              • CA-1.5.1

                The CBB requires all relevant banks to request their external auditors to conduct a review of the prudential returns on a quarterly basis in accordance with the requirements set out under section BR . However, if a bank provides prudential returns without any reservation from auditors for two consecutive quarters, it can apply for exemption from such review for a period to be decided by CBB.

                Apr 08

          • CA-2 CA-2 Regulatory Capital

            • CA-2.1 CA-2.1 Regulatory Capital

              • CA-2.1.1

                Islamic banks are allowed two types of own funds to meet their capital requirements for credit risk, market risk and operational risk as set out below:

                Tier 1: Core capital — Supports the calculation of credit risk weighted assets, operational risk and market risk.

                Tier 2: Supplementary capital — Supports credit risk, operational risk and market risk subject to limitations.

                Apr 08

              • CA-2.1.2

                For the purpose of defining Tier capital, the CBB has broadly adopted the recommendations contained in IFSB's guidelines. However, some restrictions have been placed on the inclusion of profit equalisation and investment risk reserve as Tier 2 capital. For components of Tier 1 and Tier 2 capital refer to paragraphs CA-2.1.3 to CA-2.1.4.

                Apr 08

              • Tier 1: Core Capital

                • CA-2.1.3

                  Tier 1 capital shall consist of the sum of items (a) to (e) below, less the sum of items (f) through (j) below:

                  (a) Issued and fully paid ordinary shares;

                  For Islamic funds with participation and / or "B" class shares (not carrying voting rights), the treatment for the purpose of these regulations must be agreed with the CBB. The CBB will consider each case on its merit.
                  (b) Disclosed reserves
                  •  General reserves
                  •  Legal / statutory reserves
                  •  Share premium
                  •  Capital redemption reserves
                  •  Excluding fair value reserves1
                  (c) Retained profit brought forward;
                  (d) Unrealized net gains arising from fair valuing equities2; and
                  (e) Minority interests in subsidiaries Tier 1 equity, arising on consolidation, in the equity of subsidiaries that are less than wholly owned. Further guidance on minority interests is provided in the Prudential Consolidation and Deduction Requirements Module.

                  LESS:

                  (f) Goodwill;
                  (g) Current interim cumulative net losses;
                  (h) Unrealized gross losses arising from fair valuing equity securities3;
                  (i) Other deductions made on a pro-rata basis between Tier 1 and Tier 2;
                  (j) Reciprocal cross holdings of other banks' capital.

                  1 This refers to unrealised fair value gains reported directly in equity (such gross gains are included in Tier 2).

                  2This refers to unrealised net fair value gains taken through P&L (which have been audited). Please note that the unrealised net gains related to unlisted equities taken through P&L arising on or after January 1, 2008 will be subject to 55% discount as stated in CA-2.1.4(c)ii.

                  3 This refers to both 'net losses taken through P&L' and 'gross losses reported directly in equity'.

                  Apr 08

              • Tier 2: Supplementary Capital

                • CA-2.1.4

                  Tier 2 capital shall consist of the following items:

                  (a) Current interim retained profits that have been reviewed as per the ISA by the external auditors;
                  (b) Asset revaluation reserves, which arise from the revaluation of fixed assets and real estate from time to time in line with the change in market values, and are reflected on the face of the balance sheet as a revaluation reserve. Similarly, gains may also arise from revaluation of Investment Properties (real estate). These reserves (including the net gains on investment properties) may be included in Tier 2 capital, with the concurrence of the external auditors, provided that the assets are prudently valued, fully reflecting the possibility of price and forced sale. A discount of 55% will be applied to the difference between the historical cost book value and the market value to reflect the potential volatility of this form of unrealised capital;
                  (c) Unrealised gains arising from fair valuing equities:
                  (i) For unrealized gross gains reported directly in equity, a discount factor of 55% will be applied before inclusion in Tier 2 capital. Note for gross losses, the whole amount of such unrealised loss should be deducted from the Tier 1 capital;
                  (ii) For unrealized net gains reported in income, a discount factor of 55% will apply on any such unrealized net gains from unlisted equity instruments before inclusion in Tier 1 capital (for audited gains) or Tier 2 capital (for reviewed gains) as appropriate. This discount factor will be applied to the incremental net gains related to unlisted equities arising on or after January 1, 2008;
                  (d) Banks should note that the Central bank will discuss the applicability of the discount factor under paragraph (c) above with individual banks. This discount factor relating to CA-2.1.4(c)ii may be reassessed by the CBB if the bank arranges an independent review (which has been performed for the bank's systems and controls relating to FV gains on financial instruments) and meets all the requirements of the paper 'Supervisory guidance on the use of the fair value option for financial instruments by banks' issued by Basel Committee on Banking Supervision in June 2006;
                  (e) Profit equalisation reserve and investment risk reserve, up to a maximum amount equal to the capital charge pertaining to 30% of the risk weighted assets financed by unrestricted investment account holders;
                  (f) Subordinated term capital instruments, which comprise all unsecured term instruments subordinated (with respect to both profit and principal) to all other liabilities of the bank except the share capital. To be eligible for inclusion in Tier 2 capital, subordinated term capital instruments should have a minimum original fixed term to maturity of over five years. During the last five years to maturity, a cumulative discount (or amortisation) factor of 20% per year will be applied to reflect the diminishing value of these instruments as a continuing source of strength. These instruments are not normally available to participate in the losses of a bank which continues trading. For this reason, these instruments will be limited to a maximum of 50% of Tier 1 capital. Subordinated term capital instruments must also satisfy the conditions outlined in the paragraphs below; and
                  (g) Credit facilities loss provisions held against future, presently unidentified losses and are freely available to meet such losses which subsequently materialise. Such general provisions/general credit facilities-loss reserves eligible for inclusion in Tier 2 will be limited to a maximum of 1.25 percentage points of credit risk-weighted risk assets. Provisions ascribed to identified deterioration of particular assets or known liabilities, whether individual or grouped, must be excluded.
                  Amended: October 2013
                  Amended: April 2011
                  April 2008

                • CA-2.1.4A

                  Subordinated term capital instruments agreed to on a case by case basis by CBB, must meet the following conditions. They must be:

                  (a) Issued and fully paid;
                  (b) Neither be secured nor covered by a guarantee of the issuer or related entity or other arrangement that legally or economically enhances the seniority of the claim vis-à-vis bank creditors;
                  (c) The main features of such instruments must be easily understood and publicly disclosed;
                  (d) Proceeds must be immediately available without limitation to the issuing bank; and
                  (e) The bank must have discretion over the amount and timing of distributions, subject only to prior waiver of distributions on the bank's common stock, and banks must have full access to waived payments.
                  Added: October 2013

                • CA-2.1.4B

                  A bank may not exercise a call on a subordinated term capital instrument, partially or in full, prior to the end of its term, unless it has received the CBB's prior written approval, and there is a clear statement in support of the call in the original documentation.

                  Added: October 2013

                • CA-2.1.4C

                  Where Paragraph CA-2.1.4B applies, the CBB will take into consideration whether the bank has received confirmation from its external auditor that the bank will continue to satisfy the CBB's capital adequacy requirements after such early call and the bank has sufficient liquidity to repay the subordinated term capital instrument. This can be done by assessing the impact of such redemption on the capital adequacy ratio of the bank.

                  Added: October 2013

            • CA-2.2 CA-2.2 Limits on the use of Different Forms of Capital

              • CA-2.2.1

                Tier 1 capital should represent at least half of the total eligible capital, i.e., Tier 2 capital is limited to the 100% of Tier 1 capital. Subordinated term capital instruments are limited to a maximum of 50% of Tier 1 capital.

                Amended: October 2013
                Apr 08

              • CA-2.2.2

                The limit on Tier 2 capital is based on the amount of Tier 1 capital after all deductions of investments pursuant to Prudential Consolidation and Deduction Requirements Module (see Appendix PCD-2 of PCD module for an example of the deduction effects and the caps).

                Apr 08

        • PART 2: PART 2: Credit Risk

          • CA-3 CA-3 The Banking Book — Minimum Capital Requirements for Islamic Financing Assets

            • CA-3.1 CA-3.1 Background

              • CA-3.1.1

                Due to the nature of Islamic banking transactions, Islamic banks, as opposed to their conventional counterparts, are additionally exposed to price risk in their banking book. CBB recognizes that such risks need to be identified and measured for regulatory capital purposes.

                Apr 08

              • CA-3.1.2

                Sections CA-3.2 to CA-3.8 describe the minimum capital requirements for the treatment of exposures, taking into account both credit and market risks including price risk within the banking book for each of the seven classes of Islamic financing assets.

                Apr 08

            • CA-3.2 CA-3.2 Murabahah and Murabahah to the Purchase Orderer

              • Introduction

                • CA-3.2.1

                  This section sets out the minimum capital adequacy requirements to cover the transactions that are based on the Sharia rules and principles of Murabahah and Murabahah to the Purchase Orderer (MPO).

                  Apr 08

                • CA-3.2.2

                  In Murabahah and MPO, the capital adequacy requirement for credit risk refers to the risk of a counterparty not paying the agreed price of an asset to the bank. In the case of binding MPOs, the risks faced by the Islamic banks are different at the various stages of the contract.

                  Apr 08

                • CA-3.2.3

                  This section is broadly divided into (a) Murabahah and non-binding MPO and (b) binding MPO, as the types of risk faced by the bank are different at the various stages of the contract for the two categories.

                  Apr 08

                • CA-3.2.4

                  This classification and the distinctions between a non-binding MPO and a binding MPO are subject to the criteria and opinions set by the respective SSB of the bank or any other SSB as specified by the CBB.

                  Apr 08

                • CA-3.2.5

                  A Murabahah contract refers to an agreement whereby the bank sells to a customer at acquisition cost (purchase price plus other direct costs) plus an agreed profit margin, a specified kind of asset that is already in its possession. An MPO contract refers to an agreement whereby the bank sells to a customer at cost (as above) plus an agreed profit margin, a specified kind of asset that has been purchased and acquired by the bank based on a Promise to Purchase (PP) by the customer which can be a binding or non-binding PP.

                  Apr 08

                • Murabahah and Non-binding MPO

                  • CA-3.2.6

                    In a Murabahah transaction, the bank sells an asset that is already available in its possession, whereas in a MPO transaction the bank acquires an asset in anticipation that the asset will be purchased by the orderer/customer.

                    Apr 08

                  • CA-3.2.7

                    This price risk in Murabahah contracts ceases and is replaced by credit risk for the amount receivable from the customer following delivery of the asset. Likewise, in a non-binding MPO transaction, the bank is exposed to credit risk on the amount receivable from the customer when the latter accepts delivery and assumes ownership of the asset.

                    Apr 08

                • Binding MPO

                  • CA-3.2.8

                    In a binding MPO, the bank has no 'long' position in the asset that is the subject of the transaction, as there is a binding obligation on the customer to take delivery of the asset at a pre-determined price. The bank is exposed to counterparty risk in the event that the orderer in a binding MPO does not honour his/her obligations under the PP, resulting in the bank selling the asset to a third party at a selling price which may be lower than the cost to the bank. The risk of selling at a loss is mitigated by securing a Hamish Jiddiyyah (HJ) (a security deposit held as collateral upon entering into agreement to purchase or agreement to lease) upon executing the PP with the customer, as commonly practised in the case of binding MPO.

                    Apr 08

                • Collateralisation

                  • CA-3.2.9

                    As one of the CRM techniques, the bank can secure a pledge of the sold asset/underlying asset or another tangible asset ("collateralised Murabahah"). The collateralisation is not automatically provided in a Murabahah contract but must be explicitly stated or must be documented in a separate security agreement at or before the time of signing of the Murabahah contract. The bank may employ other techniques such as pledge of deposits or a third party financial guarantee. The RW of a financial guarantor can be substituted for the RW of the purchaser provided that the guarantor has a better credit rating than the purchaser and that the guarantee is legally enforceable.

                    Apr 08

                  • CA-3.2.10

                    In financing transactions that are collateralised, the pricing of the Murabahah assets and determination of the required amount of HJ would normally take into consideration the market value and forced-sale value of the assets; and the CRM would take into account of any 'haircut' applicable to the collateralised assets (if these assets are eligible collateral or acceptable to the Central Bank). Thus, fluctuations in the market value and forced sale value of the collateralised assets are dealt with under credit risk assessment. For full details of CRM techniques, and the eligibility of collateral, refer to Section CA-4.7.

                    Apr 08

              • Credit Risk

                • Murabahah and Non-binding MPO

                  • CA-3.2.11

                    The credit exposure must be measured based on accounts receivable in Murabahah (the term used herein includes MPO), which is recorded at their cash equivalent value i.e. amount due from the customers at the end of the reporting quarter less any provision for doubtful debts.

                    Apr 08

                  • CA-3.2.12

                    The accounts receivable (net of specific provisions) amount arising from the selling of a Murabahah asset must be assigned a RW based on the credit standing of the obligor (purchaser or guarantor) as rated by an ECAI that is approved by the CBB. In case the obligor is unrated, a RW of 100% shall apply. (See Section CA-4.2).

                    Apr 08

                • Binding MPO

                  • CA-3.2.13

                    In a binding MPO, the bank is exposed to default on the purchase orderer's obligation to pay fully for the asset at the agreed price. In the event of the orderer defaulting on its PP, the bank will dispose of the asset to a third party. The bank will have recourse to any HJ paid by the orderer, and (a) may have a right to recoup from the orderer any loss on disposing of the asset, after taking account of the HJ or (b) may have no such legal rights. In both cases, this risk is mitigated by the asset in possession as well as any HJ paid by the purchase orderer.

                    Apr 08

                  • CA-3.2.14

                    In case (a) the bank has the right to recoup any loss (as indicated in the previous paragraph) from the orderer, that right constitutes a claim receivable which is exposed to credit risk, and the exposure shall be measured as the amount of the asset's total acquisition cost to the bank, (less the market value of the asset as collateral subject to any haircut, and less the amount of any HJ, provided that the collateral is an eligible collateral or has been agreed as acceptable to the CBB). The applicable RW must be based on the standing of the obligor as rated by an ECAI that is approved by the CBB, and in the case the obligor is unrated, a RW of 100% shall apply. (See Section CA-4.2).

                    Apr 08

                  • CA-3.2.15

                    In case (b) the bank has no such right, and the cost of the asset to the bank constitutes a market risk (as in the case on a non-binding MPO), but this market risk exposure is reduced by the amount of any HJ that the bank has the right to retain.

                    Apr 08

                  • CA-3.2.16

                    In applying the treatment as set out in paragraph CA-3.2.14, the bank should ensure that the PP is properly documented and is legally enforceable.

                    Apr 08

                  • CA-3.2.17

                    Upon selling the asset, the accounts receivable (net of specific provisions) amount must be assigned a RW based on the credit standing of the obligor as rated by an ECAI that is approved by the CBB. In case the obligor is unrated, a RW of 100% shall apply. (See Section CA-4.2).

                    Apr 08

                • Exclusions

                  • CA-3.2.18

                    The capital requirement is to be calculated on the receivable amount, net of (i) specific provisions, (ii) any amount that is secured by eligible collateral (as defined in section CA-4.7) and/or (iii) any amount that is past due by more than 90 days. The portions that are collateralised and past due are subject to the treatment as set out in chapter CA-4.

                    Apr 08

                • Assignment of Risk Weights

                  • CA-3.2.19

                    Islamic financing assets are to be categorized as per the claim categories detailed in section CA-4.2, and risk weighted accordingly. Banks should ensure that the appropriate risk weight is used based on the claim category for each transaction.

                    Apr 08

              • Market Risk

                • Murabahah and Non-binding MPO

                  • CA-3.2.20

                    In the case of an asset in possession for a Murabahah transaction and an asset acquired specifically for resale to a customer in a non-binding MPO transaction, the asset would be treated as inventory of the bank and will be subject to price risk as per section CA-5.2. This capital charge is also applicable to assets held by a bank for incomplete non-binding MPO transactions at the end of a financial period.

                    Apr 08

                  • CA-3.2.21

                    Assets in possession on a 'sale or return' basis (with such an option included in the contract) are treated as accounts receivable from the vendor and as such would be offset against the related accounts payable to the vendor. If these accounts payable have been settled, the assets shall attract a RW based on rating of the vendor (100% in case of unrated), subject to (a) the availability of documentation evidencing such an arrangement with the vendor, and (b) the period for returning the assets to the vendor not having been exceeded. If the above conditions are not satisfied, capital charge will be provided as per paragraph CA-3.2.20.

                    Apr 08

                • Binding MPO

                  • CA-3.2.22

                    In a binding MPO the orderer has the obligation to purchase the asset at the agreed price, and the bank as the seller is only exposed to credit risk as indicated in paragraph CA-3.1.13 above.

                    Apr 08

                • Foreign Exchange Risk

                  • CA-3.2.23

                    If the funding of an asset purchase or the selling of an asset opens a bank to foreign exchange exposures, the relevant positions should be included in the measurement of foreign exchange risk described in section CA-5.5.

                    Apr 08

              • Summary of Capital Requirement at Various Stages of the Contract

                • CA-3.2.24

                  The following table sets out the applicable period of the contract that attracts capital charges:

                  (a) Murabahah and Non-binding MPO
                  Applicable Stage of the Contract Credit RW Market Risk Capital Charge
                  Asset available for sale (asset on balance sheet)* Not applicable Price risk (15% Capital charge)
                  Asset is sold and delivered to a customer and the selling price (accounts receivable) is due from the customer. Based on customer's rating or 100% RW for unrated customer (see paragraphs CA-3.2.11 and CA-3.2.12) NA
                  Upon full settlement of the purchase price. NA NA

                  * Also includes an asset which is in possession due to cancellation of PP by a non-binding MPO customer. Any HJ taken, if any, is not considered as eligible collateral and shall not be offset against the value of the asset.

                  (b) Binding MPO
                  Applicable Stage of the Contract Credit RW Market Risk Capital Charge
                  Asset available for sale (asset on balance sheet)* - If the bank has legal right to recoup from the customer any loss on disposing of the asset Asset acquisition cost less [market value of asset if eligible as collateral (net of any haircut**) plus any HJ] x applicable RW (see chapter CA-4) NA
                  Asset available for sale (asset on balance sheet)* - If the bank has no legal right to recoup from the customer any loss on disposing of the asset NA Price risk 15% Capital charge minus HJ(if the bank has legal right to the HJ)
                  Asset is sold and delivered to a customer and the selling price (accounts receivable) is due from the customer. Based on customer's rating or 100% RW for unrated customer (see section CA-4.2) NA
                  Upon full settlement of the purchase price. NA NA

                  * Also includes an asset which is in possession due to cancellation of PP by a customer.

                  ** Please refer to CRM section CA-4.7 for eligibility of collateral and application of haircuts.

                  Amended: April 2011
                  April 2008

            • CA-3.3 CA-3.3 Salam and Parallel Salam

              • Introduction

                • CA-3.3.1

                  This section sets out the minimum capital requirement to cover credit and market (price) risks arising from entering into contracts or transactions that are based on the Sharia rules and principles of Salam. The bank is exposed to the (a) credit (counterparty) risk of not receiving the purchased commodity after disbursing the purchase price to the seller, and (b) price risk that the bank incurs from the date of execution of a Salam contract, which is applicable throughout the period of the contract and beyond the maturity date of the contract as long as the commodity remains on the balance sheet of the bank.

                  Apr 08

                • CA-3.3.2

                  This section is applicable to (a) Salam contracts that are executed without any Parallel Salam contracts and (b) Salam contracts that are backed by independently executed Parallel Salam contracts.

                  Apr 08

                • CA-3.3.3

                  A Salam contract refers to an agreement to purchase, at a predetermined price, a specified kind of commodity4 which is to be delivered on a specified future date in a specified quantity and quality. The bank as the buyer makes full payment of the purchase price upon execution of a Salam contract or within a subsequent period not exceeding two or three days as deemed permissible by its Sharia Supervisory Board (SSB).


                  4 A commodity is defined as a physical product which is and can be traded on a secondary market, e.g. agricultural products, minerals (including oil) and precious metals. The commodity may or may not be traded on an organised exchange.

                  Apr 08

                • CA-3.3.4

                  In certain cases the bank may enter into a back-to-back contract (Parallel Salam) to sell a commodity with the same specification as the purchased commodity under a Salam contract to a party other than the original seller. The Parallel Salam allows the bank to sell the commodity for future delivery at a predetermined price (thus hedging the price risk on the original Salam contract) and protects the bank from having to take delivery of the commodity and warehousing it.

                  Apr 08

                • CA-3.3.5

                  The non-delivery of the commodity by a Salam seller (i.e. counterparty risk) does not discharge the bank's obligations to deliver the commodity under a Parallel Salam contract, and thus exposes the bank to potential loss in obtaining the supply elsewhere.

                  Apr 08

                • CA-3.3.6

                  The obligations of a bank under Salam and Parallel Salam are not inter-conditional or interdependent, which implies that there is no legal basis for offsetting credit exposures between the contracts.

                  Apr 08

                • CA-3.3.7

                  In the absence of a Parallel Salam contract, a bank may sell the subject-matter of the original Salam contract in the spot market upon receipt, or, alternatively, the bank may hold the commodity in anticipation of selling it at a higher price. In the latter case, the bank is exposed to price risk on its position in the commodity until the latter is sold.

                  Apr 08

              • Credit Risk

                • CA-3.3.8

                  The amount paid for the purchase of a commodity based on a Salam contract shall be assigned a RW based on the credit standing of the counterparties involved in the contracts as rated by an ECAI that is approved by the CBB. If a counterparty is unrated, a RW of 100% will apply. (See Section CA-4.2).

                  Apr 08

                • Exclusions

                  • CA-3.3.9

                    The capital requirement is to be calculated on the amount paid, net of (i) specific provisions, (ii) any amount that is secured by eligible collateral (as defined in section CA-4.7) and/or (iii) any amount which is past due by more than 90 days. The portions that are collateralised and past due are subject to the treatment as set out in chapter CA-4.

                    Apr 08

                • Applicable Period

                  • CA-3.3.10

                    The credit RW will be applied from the date of the contract made between both parties until the maturity of the Salam contract, which is upon receipt of the purchased commodity. However, between the date of contract and disbursement of funds to the customer the exposure is a commitment (off-balance sheet) and a credit conversion factor (CCF) of 20% will be applied before applying the relevant RW.

                    Apr 08

                • Offsetting Arrangement between Credit Exposures of Salam and Parallel Salam

                  • CA-3.3.11

                    The credit exposure amount of a Salam contract is not to be offset against the exposure amount of a Parallel Salam contract, as an obligation under one contract does not discharge an obligation to perform under the other contract.

                    Apr 08

              • Market Risk

                • CA-3.3.12

                  The price risk on the commodity exposure in Salam can be measured in two ways, either the maturity ladder approach in accordance with paragraphs CA-5.6.9 to CA-5.6.12 or price risk in accordance with paragraph CA-5.2.2.

                  Apr 08

                • CA-3.3.13

                  The long and short positions in a commodity, which are positions of Salam and Parallel Salam, may be offset under either approach for the purpose of calculating the net open positions provided that the positions are in the same group of commodities.

                  Apr 08

                • Foreign Exchange Risk

                  • CA-3.3.14

                    It the funding of a commodity purchase or selling of a commodity leaves a bank open to foreign exchange exposures, the relevant positions should be included in the measures of foreign exchange risk described in section CA-5.5.

                    Apr 08

              • Summary of Capital Requirement at Various Stages of the Contract

                • CA-3.3.15

                  The following table sets out the applicable period of the contract that attracts capital charges:

                  (a) Salam with Parallel Salam
                  Applicable Stage of Contract Credit RW Market Risk Capital Charge
                  Payment of purchase price by the bank of a Salam customer Based on customer's rating or 100% RW for unrated customer.

                  No Netting of Salam exposures against parallel Salam exposures.

                  (See section CA-4.2)
                  Two approaches are available.

                  Maturity Ladder Approach (see paragraphs CA-5.6.9 to CA-5.6.12 of chapter CA-5)

                  Price risk (see CA-5.2.2 of chapter CA-5)
                  Receipt of the purchased commodity by the bank. Asset available for delivery to the customer. If the bank has legal right to recoup from the customer any loss on disposing of the asset Based on customer's rating or 100% RW for unrated customer.

                  No Netting of Salam exposures against parallel Salam exposures.

                  (See section CA-4.2)
                  NA
                  Receipt of the purchased commodity by the bank. Asset available for delivery to the customer - If the bank has no legal right to recoup from the customer any loss on disposing of the asset NA Two approaches are available.

                  Maturity Ladder Approach (see paragraphs CA-5.6.9 to CA-5.6.12 of chapter CA-5)

                  Price risk (see paragraph CA-5.2.2 of chapter CA-5)
                  The purchased commodity is sold and delivered to the buyer and the amount is received. NA NA
                  (b) Salam without Parallel Salam
                  Applicable Stage of Contract Credit RW Market Risk Capital Charge
                  Payment of purchase price by the bank of a Salam customer. At this stage of the contract, only one of credit or market risk is possible at the same time. To be prudent, higher of the two should be provided (not both). The higher of the following (credit or market)
                  Based on customer's rating or 100% RW for unrated customer.

                  (See section CA-4.2)
                  Price risk but without additional 3 %. (see paragraph 5.2.2 of chapter CA-5)
                  Receipt of the purchased commodity by the bank NA Price risk but without additional 3 %. (see paragraph 5.2.2 of chapter CA-5)
                  The purchased commodity is sold and delivered to the buyer. NA NA
                  Amended: April 2011
                  April 2008

            • CA-3.4 CA-3.4 Istisna'a and Parallel Istisna'a

              • Introduction

                • CA-3.4.1

                  This section sets out the minimum capital adequacy requirement to cover credit and market (price) risks arising from entering into contracts or transactions that are based on the Sharia rules and principles of Istisna'a.

                  Apr 08

                • CA-3.4.2

                  Istisna'a and parallel Istisna'a contracts would attract a risk weighting as per the credit standing of the respective counterparties (See section CA-4.2).

                  Apr 08

                • CA-3.4.3

                  An Istisna'a contract refers to an agreement to sell to or buy from a customer, a non-existent asset which is to be manufactured or built according to the ultimate buyer's specifications and is to be delivered on a specified future date at a predetermined selling price.

                  Apr 08

                • CA-3.4.4

                  The bank, as the seller, has the option to manufacture or build the asset on its own or to engage the services of a party other than the Istisna'a ultimate buyer as supplier or subcontractor, by entering into a Parallel Istisna'a contract (please refer to paragraph CA-3.4.12).

                  Apr 08

                • CA-3.4.5

                  The exposures under Istisna'a involve credit and market risks, as described below. Credit exposures arise once the work is billed to the customer, while market (price) exposures arise on unbilled work-in-process (WIP).

                  Apr 08

                • CA-3.4.6

                  There is a capital requirement to cater for the credit (counterparty) risk of the bank not receiving the selling price of the asset from the customer or project sponsor either in pre-agreed stages of completion and/or upon full completion of the manufacturing or construction process.

                  Apr 08

                • CA-3.4.7

                  This section also sets out the capital adequacy requirement to cater for the market risk that a bank incurs from the date of manufacturing or construction, which is applicable throughout the period of the contract on unbilled WIP inventory.

                  Apr 08

                • CA-3.4.8

                  This section is applicable to both (a) Istisna'a contracts that are executed without a Parallel Istisna'a contract and (b) Istisna'a contracts that are backed by independently executed Parallel Istisna'a contracts.

                  Apr 08

                • CA-3.4.9

                  This section makes distinctions between the two main categories of Istisna'a:

                  (a) Full Recourse Istisna'a

                  The receipt of the selling price by the bank is dependent on the financial strength or payment capability of the customer for the subject matter of Istisna'a, where the source of payment is derived from the various other commercial activities of the customer and is not solely dependent on the cash flows from the underlying asset/project; and
                  (b) Limited and Non-recourse Istisna'a

                  The receipt of the selling price by the bank is dependent partially or primarily on the amount of revenue generated by the asset being manufactured or constructed by selling its output or services to contractual or potential third party buyers. This form of Istisna'a faces "revenue risk" arising from the asset's ability to generate cash flows, instead of the creditworthiness of the customer or project sponsor.
                  Apr 08

                • CA-3.4.10

                  In full, limited and non-recourse Istisna'a contracts, the bank assumes the completion risk that is associated with the failure to complete the project at all, delay in completion, cost overruns, occurrence of a force majeure event and unavailability of qualified personnel and reliable seller(s) or subcontractors in a Parallel Istisna'a.

                  Apr 08

                • CA-3.4.11

                  The selling price of an asset sold based on Istisna'a is agreed or determined on the contractual date and such a contract is binding. The price cannot be increased or decreased on account of an increase or decrease in commodity prices or labour cost. The price can be changed subject to the mutual consent of the contracting parties due to alteration or modifications to the contract or unforeseen contingencies, which is a matter for the commercial decision of the bank and can result in a lower profit margin.

                  Apr 08

                • CA-3.4.12

                  In cases where a bank enters into Parallel Istisna'a to procure an asset from a party other than the original Istisna'a customer (buyer), the price risk relating to input materials is mitigated. The bank remains exposed to the counterparty risk of the Parallel Istisna'a seller in delivering the asset on time and in accordance with the Istisna'a ultimate buyer's specifications. This is the risk of not being able to recover damages from the Parallel Istisna'a seller for the losses resulting from the breach of contract.

                  Apr 08

                • CA-3.4.13

                  The failure of the Parallel Istisna'a seller to deliver a completed asset which meets the buyer's specifications does not discharge the bank's obligations to deliver the asset ordered under an Istisna'a contract, and thus exposes the bank to potential loss in making good the shortcomings or obtaining the supply elsewhere. The obligations of a bank under Istisna'a and Parallel Istisna'a contracts are not inter-conditional or interdependent, which implies that there is no legal basis for offsetting credit exposures between the contracts.

                  Apr 08

              • Credit Risk

                • Full Recourse Istisna'a

                  • CA-3.4.14

                    The receivable amount generated from the selling of an asset based on an Istisna'a contract with full recourse to the customer (buyer) shall be assigned a RW based on the credit standing of the customer as rated by an ECAI that is approved by the CBB. In case the buyer is unrated, a RW of 100% shall apply. (See section CA-4.2).

                    Apr 08

                • Limited and Non-Recourse Istisna'a

                  • CA-3.4.15

                    When the project is rated by an ECAI, the RW based on the credit rating of the project is applied to calculate the capital adequacy requirement. Otherwise, the RW shall be based on the 'Supervisory Slotting Criteria' approach for Specialised Financing (Project Finance) as set out in section CA-4.3.

                    Apr 08

                  • CA-3.4.16

                    In cases where a group of contractors are engaged in a particular project, the risk rating or weightage will follow the obligations of various contractors. If the risk is undertaken by a main contractor, the risk rating of the main contractor is to be used.

                    Apr 08

                  • CA-3.4.17

                    The limited and non-recourse Istisna'a financing structure is required to meet the characteristics as set out below in order to qualify for the treatment mentioned in paragraph CA-3.4.15 above:

                    (a) The segregation of the project's liabilities from the balance sheet of the Istisna'a ultimate buyer (or project sponsor) from a commercial and accounting perspective which is generally achieved by having the Istisna'a contract made with a special purpose entity set up to acquire and operate the asset/project concerned;
                    (b) The ultimate buyer is dependent on the income received from the assets acquired/ projects to pay the purchase price;
                    (c) The contractual obligations give the manufacturer/constructor/bank a substantial degree of control over the asset and the income it generates, for example under BOT (built, operate and transfer) arrangement where the manufacturer builds a highway and collects tolls for a specified period as a consideration for the selling price; and
                    (d) The primary source of repayment is the income generated by the asset/project rather than relying on the capacity of the buyer.
                    Amended: April 2011
                    April 2008

                  • CA-3.4.18

                    Please Note: Insurance is normally part and parcel of the project risk financing. However, it is not regarded as a credit risk mitigating technique.

                    Apr 08

                • Exclusions

                  • CA-3.4.19

                    The capital requirement is to be calculated on the receivable amount, net of (i) specific provisions, (ii) any amount that is secured by eligible collateral (as defined in section CA-4.7) and/or (iii) any amount which is past due by more than 90 days. The portions that are collateralised and past due are subject to the treatment as set out in chapter CA-4.

                    Apr 08

                  • CA-3.4.20

                    Any portion of an Istisna'a contract that is covered by an advanced payment shall carry a RW of 0%, or the amount of the advanced payment shall be offset against the total amount receivable or amounts owing from progress billings.

                    Apr 08

                • Applicable Period

                  • CA-3.4.21

                    The credit RW is to be applied from the date when the manufacturing or construction process commences and until the selling price is fully settled by the bank, either in stages and/or on the maturity of the Istisna'a contract, which is upon delivery of the manufactured asset to the Istisna'a ultimate buyer.

                    Apr 08

                • Offsetting Arrangement between Credit Exposures of Istisna'a and Parallel Istisna'a

                  • CA-3.4.22

                    The credit exposure amount of an Istisna'a contract is not to be offset against the credit exposure amount of a Parallel Istisna'a contract because an obligation under one contract does not discharge an obligation to perform under the other contract.

                    Apr 08

              • Market Risk

                • Full Recourse Istisna'a

                  • (a)Istisna'a with Parallel Istisna'a

                    • CA-3.4.23

                      There is no capital charge for market risk to be applied in addition to provisions in paragraphs CA-3.4.14 to CA-3.4.22 above, subject to there being no provisions in the Parallel Istisna'a contract that allow the seller to increase or vary its selling price to the bank, under unusual circumstances. Any variations in a Parallel Istisna'a contract that are reflected in the corresponding Istisna'a contract which effectively transfers the whole of the price risk to an Istisna'a customer (buyer), is also eligible for this treatment.

                      Apr 08

                    • CA-3.4.24

                      However, if the seller is allowed to vary the selling price of the asset, then under the price risk will be calculated in accordance with paragraph CA-5.2.2 of chapter CA-5.

                      Apr 08

                  • (b)Istisna'a without Parallel Istisna'a

                    • CA-3.4.25

                      A capital charge of 1.6% (equivalent to a 20% RW) is to be applied to the balance of unbilled WIP inventory to cater for market risk, in addition to the credit RW stated in paragraphs CA-3.4.14 to CA-3.4.22 above.

                      Apr 08

                    • CA-3.4.26

                      This inventory is held subject to the binding order of the Istisna'a buyer and is exposed to the price risk as described in CA-3.4.11.

                      Apr 08

                • Foreign Exchange Risk

                  • CA-3.4.27

                    Any foreign exchange exposures arising from the purchasing of input materials, or from Parallel Istisna'a contracts made, or the selling of a completed asset in foreign currency should be included in the measures of foreign exchange risk described in section CA-5.5.

                    Apr 08

              • Summary of Capital Requirement at Various Stages of the Contract

                • CA-3.4.28

                  The following tables set out the applicable period of the contract that attracts capital charges for (a) Full Recourse Istisna'a (b) Limited and Non-Recourse Istisna'a.

                  (a) Full Recourse Istisna'a
                  (i) Istisna'a with Parallel Istisna'a
                  Applicable Stage of the Contract Credit RW Market Risk Capital Charge
                  Unbilled work-in-progress Based on ultimate buyer's rating or 100% RW for unrated buyer.

                  No netting of Istisna'a exposures against Parallel Istisna'a exposures.

                  (See paragraphs CA-3.4.14 to CA-3.4.22)

                  (See section CA-4.2)
                  Nil provided that there is no provision in the Parallel Istisna'a contract that allows the seller to increase or vary the selling price. See paragraph CA-3.4.23 If the seller is allowed to vary the selling price of the asset, then under the market risk treatment 15% capital charge on net long or short position plus 3% capital charge on gross positions.
                  Amount receivable after contract billings
                  Upon full settlement price by an Istisna'a buyer. NA NA
                  (ii) Istisna'a without Parallel Istisna'a
                  Applicable Stage of the Contract Credit RW Market Risk Capital Charge
                  Unbilled work-in-progress Based on ultimate buyer's rating or 100% RW for unrated buyer. 1.6% capital charge on work in progress inventory.

                  See relevant paragraphs under CA-3.4.25 to CA-3.4.26
                  Progress billing to customer. Based on ultimate buyer's rating or 100% RW for unrated buyer.

                  (See paragraphs CA-3.4.14 to CA-3.4.22) (See section CA-4.2)
                  NA
                  Upon full settlement price by and Istisna'a buyer. NA NA
                  (b) Limited and Non-Recourse Istisna'a

                  Istisna'a with Parallel Istisna'a (for project finance)
                  Applicable Stage of the Contract Credit RW Market Risk Capital Charge
                  Unbilled work-in-progress Based on project's ECAI rating if available or supervisory slotting criteria that ranges from 70% to 250% RW.

                  No netting of Istisna'a exposures against Parallel Istisna'a exposures.

                  (See sections CA-4.2 and CA -4.3)
                  NA
                  Amount receivable after contract billings NA
                  Upon full settlement price by and Istisna'a buyer. NA NA
                  Apr 08

            • CA-3.5 CA-3.5 Ijarah and Ijarah Muntahia Bittamleek

              • Introduction

                • CA-3.5.1

                  This section sets out the minimum capital requirement to cover counterparty risk and residual value risk of leased assets, arising from a bank entering into contracts or transactions that are based on the Sharia rules and principles of Ijarah and Ijarah Muntahia Bittamleek (IMB), also known as Ijarah wa Iqtinā. The section also covers the market (price) risk of assets acquired for Ijarah and IMB.

                  Apr 08

                • CA-3.5.2

                  In an Ijarah contract (either operating or IMB), the bank as the lessor maintains its ownership in the leased asset whilst transferring the right to use the asset, or usufruct, to an enterprise as the lessee, for an agreed period at an agreed consideration. All liabilities and risks pertaining to the leased asset are to be borne by the bank including obligations to restore any impairment and damage to the leased asset arising from wear and tear and natural causes which are not due to the lessee's misconduct or negligence.

                  Apr 08

                • CA-3.5.3

                  Thus, in both Ijarah and IMB, the risks and rewards remain with the lessor, except for the residual value risk at the term of an IMB which is borne by the lessee. The lessor is exposed to price risk on the asset while it is in the lessor's possession prior to the signature of the lease contract, except where the asset is acquired following a binding promise to lease as described in paragraph CA-3.5.5 below.

                  Apr 08

                • CA-3.5.4

                  In an IMB contract, the lessor promises to transfer its ownership of the leased asset to the lessee at the end of the contract as a gift or as a sale at a specified consideration, provided that (a) the promise is separately expressed and independent of the underlying Ijarah; or (b) a gift contract is entered into conditional upon fulfillment of all the Ijarah obligations, and thereby ownership shall be automatically transferred thereupon.

                  Apr 08

                • CA-3.5.5

                  In both operating Ijarah and IMB, the Bank either possesses the asset before entering into a leased contract or enters into the contract based on specific description of an asset to be leased and acquired in the future before it is delivered to the lessee. This agreement to lease may be considered as binding (binding Promise to Lease (PL)) or as non-binding (non-binding PL) depending on the applicable Sharia interpretations.

                  Apr 08

                • Operating Ijarah

                  • CA-3.5.6

                    This section sets out the minimum capital requirements to cater for the lessor's exposures to (a) the credit risk of the lessee as counterparty in servicing the lease rentals, and (b) the market (price) risk attaching to the residual value of the leased assets either at the end of the Ijarah contract or at the time of repossession upon default, i.e. the risk of losing money on the resale of the leased asset.

                    Apr 08

                • IMB

                  • CA-3.5.7

                    In IMB, once the lease contract is signed, the lessor is exposed to credit risk for the lease payments receivable from the lessee (a credit risk mitigated by the asset's value as collateral5 in most cases) and to a type of operational risk in respect of the need to compensate the lessee if the asset is permanently impaired through no fault of the latter. If the leased asset is permanently impaired and is uninsured, the bank suffers a loss equal to the carrying value of the leased asset, just as it would if any of its fixed assets were permanently impaired. In the event that the lessee exercises its right to cancel the lease, the lessor is exposed to the residual value of the leased asset being less than the refund of payments due to the lessee. In such case, the price risk, if any, is already reflected in a 'haircut' to be applied to the value of the leased asset as collateral. Therefore, the price risk, if any, is not applicable in the context of the IMB.


                    5 The collateral used in the context of IMB is of the usufruct or use value of the asset, as the bank is the owner of the asset.

                    Apr 08

                  • CA-3.5.8

                    This section sets out the minimum capital adequacy requirement to cater for the credit risk of the lessee as counterparty with respect to servicing the lease rentals. The credit risk exposure in respect of the lease rentals is mitigated by the collateral represented by the value of the leased asset on repossession, provided that the bank is able to repossess the asset, which may be subject to doubt, especially in the case of movable assets or residential real estate. Insofar as there is doubt as to the lessor's ability to repossess the asset, the residual fair value of the asset that was assumed in fixing the lease rentals is also exposed to credit risk.

                    Apr 08

                  • CA-3.5.9

                    The bank may be exposed to losses in case a lessee acquiring an asset under IMB decides not to continue with the contract. In such a case, the lessor is required to refund to the lessee the capital payments (instalments of the purchase price) that were included in the periodic lease rentals (subject to deduction of any amounts due for unpaid rentals). If the value of the repossessed asset is less than the amount to be refunded (before any such deduction), the difference constitutes a loss to the lessor. This exposes the bank as lessor to a form of market risk.

                    Apr 08

                  • CA-3.5.10

                    In theory, a situation could arise in which, when an IMB contract arrives at its term, the lessee decides not to exercise its option to complete the purchase by making the contractually agreed final payment (The option to purchase places no obligation on the lessee to do so.). The bank may thus be exposed to market risk, in respect of a potential loss from disposing of the asset for an amount lower than its net book value. Generally, however, the lessor's exposure in such a case would not be significant, as the option to purchase can be exercised by making a payment of a token amount and the lessee would have no reason to refrain from exercising it.

                    Apr 08

                  • CA-3.5.11

                    Moreover, the net book value of the asset at the term of the IMB (i.e. its residual fair value as assumed in fixing the lease rentals) would be zero or close to zero.

                    Apr 08

              • Credit Risk

                • CA-3.5.12

                  In a binding PL, when a bank is exposed to default on the lease orderer's obligation to execute the lease contract, the exposure shall be measured as the amount of the asset's total acquisition cost to the bank, less the market value of the asset as collateral subject to any haircut, and less the amount of any urbun received from the lease orderer. The applicable RW shall be based on the standing of the obligor as rated by an ECAI that is approved by the CBB, and in the case the obligor is unrated, a RW of 100% shall apply (refer to chapter CA-4). The bank may or may not have the right to recoup from the customer any loss on leasing or disposing of the asset after taking account of the HJ.

                  Apr 08

                • CA-3.5.13

                  In applying the treatment as set out in paragraph CA-3.5.12, the bank must ensure that the PL is properly documented and is legally enforceable. In the absence of proper documentation and legal enforceability, the asset is to be treated similarly to one in a non-binding PL which is exposed to market (price) risk, using the measurement approach as set out in paragraph CA-3.5.18(a).

                  Apr 08

                • Operating Ijarah

                  • CA-3.5.14

                    When the lessee gets the right to use the asset, the lessor is exposed to credit risk for the estimated value of the lease payments in respect of the remaining period of the Ijarah. This exposure is mitigated by the market value of the leased asset (subject to the applicable haircut) which may be repossessed (except in the case of residential real estate). The net credit risk exposure shall be assigned a RW based on the credit standing of the lessee/counterparty as rated by an ECAI that is approved by the CBB. In the case that the lessee is unrated, a RW of 100% shall apply.

                    Apr 08

                • IMB

                  • CA-3.5.15

                    When the lessee gets the right to use the asset, the capital requirement for IMB is based on the total estimated future ijarah receivable amount over the duration of the lease contract. This exposure is mitigated by the market value of the leased asset which may be repossessed (except in the case of residential real estate). The net credit risk exposure shall be assigned a RW based on the credit standing of the lessee/counterparty as rated by an ECAI that is approved by the CBB. In the case that the lessee is unrated, a RW of 100% shall apply. (See section CA-4.2).

                    Apr 08

                  • CA-3.5.16

                    The estimated future ijarah receivable amount as indicated in paragraph CA-3.5.15 (a) above, shall be risk-weighted based on the credit standing of the lessee as rated by an ECAI or at 100%, after deduction of the value of the leased asset as collateral (subject to any haircut). (See chapter CA-4).

                    Apr 08

                • Exclusions

                  • CA-3.5.17

                    The capital requirement is to be calculated on the receivable amount, net of (i) specific provisions, (ii) any amount that is secured by eligible collateral (as defined in section CA-4.7) and/or (iii) any amount which is past due by more than 90 days. The portions that are collateralised and past due are subject to the treatment as set out in chapter CA-4.

                    Apr 08

              • Market Risk

                • CA-3.5.18

                  In the case of an asset acquired and held for the purpose of either operating Ijarah or IMB, the capital charge to cater for market (price) risk in respect of the leased asset from its acquisition date until its disposal can be categorised into the following:

                  (a) Non-binding PL

                  The asset for leasing will be treated as inventory of the bank and capital charge will be provided for the price risk in accordance with section CA-5.2.
                  (b) Binding PL

                  In a binding PL, a bank is exposed to default on the lease orderer's obligation to lease the asset in its possession. In the event of the lease orderer defaulting on its PL, the bank will either lease or dispose of the asset to a third party. The bank will have recourse to any HJ paid by the customer6, and (i) may have a right to recoup from the customer any loss on leasing or disposing of the asset after taking account of the HJ, or (ii) may have no such right, depending on the legal situation. In both cases, this risk is mitigated by the asset in possession (if eligible) as well as any HJ paid by the lease orderer.

                  6 The amount can only be deducted for damages, i.e. difference between the asset acquisition cost and the total of lease rentals (when the asset is leased to a third party) or selling price (when the asset is sold to a third party), whichever is applicable.

                  Apr 08

                • CA-3.5.19

                  In case (i), the bank has the right to recoup any loss (as indicated in the previous paragraph) from the customer, that right constitutes a claim receivable which is exposed to credit risk, and the exposure shall be measured as the amount of the asset's total acquisition cost to the bank, less the market value of the asset as collateral subject to any haircut, and less the amount of any HJ. The applicable RW shall be based on the standing of the customer as rated by an ECAI that is approved by CBB, and in the case the obligor is unrated, a RW of 100% shall apply. (see section CA-4.2).

                  Apr 08

                • CA-3.5.20

                  In case (ii) the bank has no such right, and the cost of the asset to the bank constitutes a market risk (as in the case on a non-binding PL), but this market risk exposure is reduced by the amount of any HJ that the bank has the right to retain.

                  Apr 08

                • Operating Ijarah

                  • CA-3.5.21

                    The residual value of the asset will be subject to capital charge of 8%. Upon expiry of the lease contract, the carrying value of the leased asset shall carry a capital charge for price risk in accordance with section CA-5.2 until the asset is re-leased or disposed of.

                    Apr 08

                • IMB

                  • CA-3.5.22

                    In the event that the lessee exercises its right to cancel the lease, the lessor is exposed to the residual value of the leased asset being less than the refund of payments due to the lessee. In such a case, the price risk, if any, is already reflected in a 'haircut' to be applied to the value of the leased asset as collateral in credit risk. Therefore, the price risk, if any, is not applicable in the context of the IMB.

                    Apr 08

              • Summary of Capital Requirement at Various Stages of the Contract

                • CA-3.5.23

                  The following tables set out the applicable period of the contract that attracts capital charges:

                  Operating Ijarah

                  Applicable Stage of the Contract Credit RW Market Risk Capital Charge
                  Asset available for lease (prior to signing a lease contract) - If the bank has legal right to recoup from the customer any loss on disposing of the asset Binding PL Asset acquisition cost less (a) market value of asset fulfilling function of collateral (net of any haircuts) and (b) any 'hamish jiddiyyah' multiply with the customer's rating or 100% RW for unrated customer. (See section CA-4). Non-binding PL 15% capital charge until lessee takes possession.
                  Asset available for lease (prior to signing a lease contract) - If the bank has no legal right to recoup from the customer any loss on disposing of the asset NA 15% capital charge until lessee takes possession minus urbun (If the bank has legal right to it).
                  When the lessee gets the right to use the asset and the lease rental payments are due from the lessee Total contractual obligation of the lease rental receivable over the duration of the lease contract less the recovery value* (if eligible) of the leased asset shall be risk-weighted according to the lessee's rating. (100% RW for an unrated lessee.). (See chapter CA-4). The residual value will be subject to capital charge of 8%
                  Maturity of contract term and the leased asset is returned to the bank Not applicable 15% capital charge of the carrying value of the asset

                  * Recovery value should be based on the entire Ijarah asset value.

                  IMB

                  Applicable Stage of the Contract Credit RW Market Risk Capit Charge
                  Asset available for lease (prior to signing a lease contract) - If the bank has legal right to recoup from the customer any loss on disposing of the asset Binding PL Asset acquisition cost less (a) market value of asset fulfilling function of collateral (net of any haircuts) and (b) any 'hamish jiddiyyah' multiply with the customer's rating or 100% RW for unrated customer. (See chapter CA-4). Non-binding PL 15% capital charge until lessee takes possession
                  Asset available for lease (prior to signing a lease contract) - If the bank has no legal right to recoup from the customer any loss on disposing of the asset NA 15% capital charge until lessee takes possession minus urbun (If the bank has legal right to it).
                  When the lessee gets the right to use the asset and the lease rental payments are due from the lessee Total contractual obligation of the lease rental receivable over the duration of the lease contract less recovery value of the asset* (if eligible) shall be risk-weighted according to the lessee's rating (100% RW for an unrated lessee. (See chapter CA-4). Not applicable
                  Maturity of contract term and the leased asset is returned to the bank Not applicable Not applicable

                  * Recovery value should be based on the entire Ijarah asset value.

                  Apr 08

            • CA-3.6 CA-3.6 Musharakah and Diminishing Musharakah

              • Introduction

                • CA-3.6.1

                  This section sets out the minimum capital adequacy requirement to cover the risk of loss on invested capital arising from entering into contracts or transactions that are based on the Sharia rules and principles of Musharakah and Diminishing Musharakah where the bank and their customers/partner(s) contribute to the capital of the partnership and shares its profit or loss.

                  Apr 08

                • CA-3.6.2

                  This section is applicable to both (a) Musharakah in which all the partners' share remain constant throughout the contract period; and (b) Diminishing Musharakah in which the share of the bank shall be gradually reduced during the tenure of the contract until it is fully sold to the other partner(s).

                  Apr 08

                • CA-3.6.3

                  Musharakah contracts refer to partnerships in specific transactions or projects. These exclude participation in the share capital (equity) of other enterprises.

                  Apr 08

                • CA-3.6.4

                  A Musharakah is an agreement between the bank and a customer to contribute capital in various proportions to an enterprise, whether existing or new, or to ownership of a real estate or moveable asset, either on a permanent basis, or on a diminishing basis where the customer progressively buys out the share of the bank ("Diminishing Musharakah"). Profits generated by that enterprise or real estate/asset are shared in accordance with the terms of Musharakah agreement whilst losses are shared in proportion to the respective contributor's share of capital.

                  Apr 08

                • CA-3.6.5

                  A bank may enter into a Musharakah contract with a customer as a means of providing a financing to the latter on a profit sharing and loss bearing basis. In this case, the Musharakah is normally of the diminishing type, in which the customer gradually purchases the bank's partnership share over the life of the contract. This type of financing is one of the Sharia compliant alternatives to avoid a conventional term loan repayable by instalments, and as such it is exposed to credit risk for the customer's purchase payments as well as to the risk attached to the bank's share of the underlying assets.

                  Apr 08

                • Musharakah

                  • CA-3.6.6

                    This section sets out the minimum capital adequacy requirement to cater for "capital impairment risk", the risk of losing the amount contributed to an enterprise or ownership of an asset. The bank acts as a partner in a Musharakah contract and is exposed to the risk of losing its capital upon making payment of its share of capital in a Musharakah contract. A Musharakah can expose the bank either to capital impairment risk or to 'credit risk', depending on the structure and purpose of the Musharakah and the types of asset in which the funds are invested. The invested capital is redeemable either by liquidation of the Musharakah assets at the end of the contract which has a fixed tenure or as mutually agreed by the partners, or upon divestment of partnership in an on-going Musharakah subject to giving a notice to other partners. The amount of capital redemption is represented by the value of a share of capital, which is dependent on the quality of the underlying investments or assets, and ability to generate profits and cash flows from the Musharakah.

                    Apr 08

                  • CA-3.6.7

                    As a partner to a Musharakah contract, the bank is not entitled to a fixed rate of return and is thus exposed to variable profits generated by the partnership which are shared on a basis as agreed in the Musharakah contract, whereas losses are to be borne by the bank and its partners according to their respective ratio of invested capital. Therefore, the bank is exposed to entrepreneurial risk of an active partner that manages the partnership and business risks associated with the underlying activities and types of investments or assets of the partnership.

                    Apr 08

                • Diminishing Musharakah

                  • CA-3.6.8

                    This form of Musharakah is a means whereby a bank can provide term finance to a client on a profit and loss sharing basis. The bank enters into this type of Musharakah with the objective of transferring the ownership to the partner/customer, where the bank acts as a joint-owner of the asset with a promise by the partner to purchase the bank's share making a payment on one or more specified future dates. The bank's selling price is normally based on the fair value of the partnership share being transferred on the date of each purchase, which may expose the bank to the risk of selling its share of ownership below the acquisition price.

                    Apr 08

                  • CA-3.6.9

                    As a joint-owner, the bank is also entitled to its share of revenue generated from the assets of the Musharakah, such as Ijarah lease rentals in which the rental entitlements to the bank shall be adjusted periodically according to the bank's share of ownership in the asset.

                    Apr 08

                  • CA-3.6.10

                    The bank's position in a Diminishing Musharakah thus entails two kinds of exposure. The amounts due from the partner to purchase the agreed shares of the asset on the agreed dates are subject to credit risk in respect of the partner's ability and willingness to pay, with the shares of the partner in the asset providing credit risk mitigation as collateral. The capital invested by the bank is also subject to the risk that the amounts recoverable from the partner may be less than the amount invested because the value of the Musharakah assets has decreased (capital impairment risk).

                    Apr 08

              • Equity Position Risk - Musharakah

                • CA-3.6.11

                  Musharakah exposures, unless deducted for regulatory capital purposes according to the Prudential Consolidation and Deduction Requirements, will be treated as stated in paragraphs CA-3.6.12 to CA-3.6.14.

                  Apr 08

                • CA-3.6.12

                  Musharakah exposures in the nature of specialized financing will be risk-weighted as per the supervisory slotting criteria as detailed in section CA-4.3.

                  Apr 08

                • CA-3.6.13

                  Other Musharakah exposures will be risk-weighted using the risk weights applicable to equities as explained in section CA-4.2.

                  Apr 08

                • CA-3.6.14

                  If the bank demonstrates that a Musharakah exposure meets the definition of trading book given in chapter CA-5, capital charge will be calculated as per market risk rules detailed in chapter CA-5.

                  Apr 08

              • Equity Position Risk - Diminishing Musharakah

                • CA-3.6.15

                  The equity exposure in a Diminishing Musharakah contract, where the bank intends to transfer its full ownership in movable assets and working capital to the other partner over the life of the contract, is calculated based on the remaining balance of the amount invested (measured at historical cost including any share of undistributed profits) less any specific provision for impairment. The exposure shall be risk weighted according to the nature of the underlying assets as set out in paragraph CA-3.6.11 to CA-3.6.14 above. If a third party guarantee exists, to make good impairment losses, the RW of the guarantor shall be substituted for that of the assets (if lower) for the amount of any such guarantee.

                  Apr 08

              • Summary of Capital Requirement at Various Stages of the Contract

                • CA-3.6.16

                  The following table sets out the Musharakah categories that attract capital charges:

                  Musharakah Category Credit RW Market Risk Capital Charge
                  Specialized financing Supervisory slotting criteria should be applied.

                  Between 90-270% RW of the contributed amount* to the business venture based on the four categories.
                  NA
                  Other 150% RW** of the contributed amount to the business venture less any specific provisions (if there is a third party guarantee, the RW of the guarantor shall be substituted for that of the assets for the amount of any such guarantee, if lower). NA
                  Musharakah meeting the definition of trading book   As set out in the applicable market risk section (Chapter CA-5).

                  * In the case of Diminishing Musharakah, the contributed amount is based on the remaining balance of the invested amount.

                  ** 100% RW may be applied if the funds can be withdrawn by the bank at short notice of 5 working days.

                  Apr 08

            • CA-3.7 CA-3.7 Mudarabah

              • Introduction

                • CA-3.7.1

                  This section sets out the minimum capital adequacy requirement to cover the risk of losing invested capital arising from entering into contracts or transactions that are based on the Sharia rules and principles of Mudarabah where the bank assumes the role of capital provider. This section is applicable to both restricted and unrestricted Mudarabah financing.

                  Apr 08

                • CA-3.7.2

                  A Mudarabah is an agreement between the bank and a customer whereby the bank would contribute capital to an enterprise or activity which is to be managed by the customer as the (labour provider or) Mudarib.

                  Apr 08

                • CA-3.7.3

                  Profits generated by that enterprise or activity are shared in accordance with the terms of the Mudarabah agreement whilst losses are to be borne solely by the bank unless the losses are due to the Mudarib's misconduct, negligence or breach of contracted terms.

                  Apr 08

                • CA-3.7.4

                  A Mudarabah financing can be carried out on either:

                  (a) A restricted basis, where the capital provider allows the Mudarib to make investments subject to specified investment criteria or certain restrictions such as types of instrument, sector or country exposures; and
                  (b) An unrestricted basis, where the capital provider allows the Mudarib to invest funds freely based on the latter's skills and expertise.
                  Amended: April 2011
                  April 2008

                • CA-3.7.5

                  As the fund provider, the bank is exposed to the risk of losing its capital investment or 'capital impairment risk' upon making payment of the capital to the Mudarib. Any loss on the investment is to be borne solely by the capital provider, but is limited to the amount of his capital. Losses that are due to misconduct, negligence or breach of contractual terms, are to be borne by the Mudarib.

                  Apr 08

                • CA-3.7.6

                  However, while it is not permissible for a Mudarib to give a guarantee against such losses, such a guarantee may be given by a third party on the basis of tabarru (donation). In such a case, the amount of the Mudarabah capital so guaranteed may be considered as subject to credit risk with a risk weighting equal to that of the guarantor.

                  Apr 08

                • CA-3.7.7

                  In particular, such guarantees may be given when liquid funds are placed in an Islamic interbank market under a Mudarabah contract.

                  Apr 08

              • Equity Position Risk

                • CA-3.7.8

                  Mudarabah exposures, unless deducted for regulatory capital purposes according to the Prudential Consolidation and Deduction Requirements, will be treated as stated in paragraphs CA-3.7.9 to CA-3.7.11.

                  Apr 08

                • CA-3.7.9

                  Mudarabah exposures in the nature of specialized financing will be risk-weighted as per the supervisory slotting criteria as detailed in section CA-4.3.

                  Apr 08

                • CA-3.7.10

                  Other Mudarabah exposures will be risk-weighted using the risk weights applicable to equities as explained in section CA-4.2.

                  Apr 08

                • CA-3.7.11

                  If the bank demonstrates that a Mudarabah exposure meets the definition of trading book given in chapter CA-5, capital charge will be calculated as per market risk rules detailed in chapter CA-5.

                  Apr 08

              • Summary of Capital Requirements for Mudarabah Categories

                • CA-3.7.12

                  The following tables set out the Mudarabah categories that attract capital charges:

                  Mudarabah Category Credit RW Market Risk Capital Charge
                  Specialized financing Supervisory slotting method will be applied.

                  Between 90-270% RW of the contributed amount to the business venture based on the four categories.
                  NA
                  Other 150% RW* of the contributed amount to the business venture less any specific provisions (if there is a third party guarantee, the RW of the guarantor shall be substituted for that of the assets for the amount of any such guarantee). NA
                  Mudarabah meeting the definition of trading book   As set out in the applicable market risk section (See chapter CA-5).

                  * 100% RW may be applied if the funds can be withdrawn by the bank at short notice of 5 working days.

                  Apr 08

            • CA-3.8 CA-3.8 Sukuk

              • Introduction

                • CA-3.8.1

                  This section sets out the minimum capital adequacy requirement to cover the credit risk and market risk arising from the holding of Sukuk.

                  Apr 08

                • CA-3.8.2

                  This section is applicable only to Sukuk or certificates that represent the holder's proportionate ownership in an undivided part of an underlying asset where the holder assumes all rights and obligations to such asset. This section does not cover certificates that give the holders the entitlement to receive returns on an asset of which the ownership is not transferred to the Sukuk holders.

                  Apr 08

                • CA-3.8.3

                  Sukuk can be broadly categorised into:

                  (a) Asset-based Sukuk, where the underlying assets offer fairly predictable returns to the Sukuk holders, such as in the case of Salam, Istisna'a and Ijarah (Note: the assets in question may be held by a Musharakah or Mudarabah which is securitised. This is not the same as the Musharakah or Mudarabah Sukuk mentioned below).
                  (b) Equity-based Sukuk, where the returns are determined on a profit and loss sharing in the underlying investment which does not offer fairly predictable returns (e.g. Musharakah or Mudarabah for trading purposes).
                  Amended: April 2011
                  April 2008

                • CA-3.8.4

                  CBB has the discretion to specify measurement approaches as it thinks appropriate for other types of Sukuk which are not listed in this section, provided they are approved by a Sharia board.

                  Apr 08

                • Salam Sukuk

                  • CA-3.8.5

                    A Salam Sukuk represents fractional ownership of the capital of a Salam transaction, where the Salam capital is constituted by an advance payment to a counterparty as supplier of a commodity (the subject-matter) to be delivered at a future date. This type of Sukuk is non-tradable, since the subject-matter is considered to be a financial asset (a receivable). The gross return to the Sukuk holders consists of the margin or spread between the purchase price of the subject-matter and its selling price following delivery. In certain Sukuk issues, a third party gives an undertaking that the subject-matter will be sold at a price exceeding the purchase price by a specified margin. This may be achieved by means of a parallel Salam transaction in which a third party purchases the subject-matter for delivery on the same delivery date as in the original Salam contract.

                    Apr 08

                • Istisna'a Sukuk

                  • CA-3.8.6

                    An Istisna'a Sukuk represents a fractional share in the project financing of an undertaking to manufacture or construct an asset for a customer at a price to be paid in future instalments, the total of which equals the total face value of the Sukuk, in addition to mark-up. The Sukuk can be in the form of serial notes or certificates with different maturity dates that match the progress schedule of instalments as agreed between the buyer/customer of the asset and the manufacturer/bank. Istisna'a Sukuk are tradable as the subject-matter is considered to be a non-financial asset (work-in-process inventory).

                    Apr 08

                • Ijarah Sukuk

                  • CA-3.8.7

                    An Ijarah Sukuk represents the holder's proportionate ownership in a leased asset where the Sukuk holders will collectively assume the rights and obligations of the lessor. The Sukuk holder will enjoy a share of the lease rental in proportionate to the ownership share in the leased asset. An Ijarah Sukuk is tradable from the issuance date as the subject-matter is a non-financial asset owned by the Sukuk holders. As a part-owner, the Ijarah Sukuk holder assumes a proportionate share of any loss if the leased asset is destroyed or of the cost of meeting the obligation to provide an alternative asset, failing which, the lessee can terminate the lease without paying future rentals.

                    Apr 08

                • Musharakah Sukuk

                  • CA-3.8.8

                    A Musharakah Sukuk represents the direct pro-rata ownership of the holder in the assets of a private commercial enterprise or project where the subscription money is normally employed in purchasing non-liquid assets or such as real estate or moveable assets. A Musharakah Sukuk is a profit and loss sharing instrument where the exposure is of the nature of an equity position in the banking book, except in the case of investments (normally short-term) in assets for trading purposes. A Musharakah certificate can be tradable provided that non-cash and receivable assets are not less than 30% of market capitalisation.

                    Apr 08

                • Mudarabah (Muqaradah) Sukuk

                  • CA-3.8.9

                    Sukuk holders subscribe to the certificates issued by a Mudarib and share the profit and bear any losses arising from the Mudarabah operations. The returns to the holders are dependent on the revenue generated by the underlying investment. The rule regarding tradability of the certificates is the same as for Musharakah certificates.

                    Apr 08

              • Calculation of Capital Charge

                • CA-3.8.10

                  If the Sukuk has the characteristics of a claim (or debt) then the Sukuk should be risk weighted using its issue specific rating according to the nature of the issuer (i.e. sovereign, bank or corporate etc). If the Sukuk is unrated and has the characteristics of a claim or debt, the risk weight applicable will be based on the risk weight applicable to the issuer.

                  Apr 08

                • CA-3.8.11

                  If the Sukuk is equity in nature, such investment should be treated as an equity investment and risk weighted accordingly (i.e. 100 % for listed and 150 % for others).

                  Apr 08

                • CA-3.8.12

                  The bank can apply to CBB for using look-through approach for such investment if it can demonstrate that look-through approach is more appropriate to the circumstances of the bank.

                  Apr 08

                • CA-3.8.13

                  If there are no voting rights attached to investment in Sukuk, the investment will not be subjected to consolidation and deduction requirements (except large exposure limit).

                  Apr 08

                • CA-3.8.14

                  For the purpose of determining "large exposure limit" for investment in Sukuk, look-through approach should be used (despite the fact that look-through approach is not used to risk weight the investment).

                  Apr 08

                • CA-3.8.15

                  If the bank demonstrates that a Sukuk exposure meets the definition of trading book given in chapter CA-5, capital charge will be calculated as per market risk rules detailed in chapter CA-5.

                  Apr 08

              • Summary of Capital Requirements for Sukuk Exposures

                • CA-3.8.16

                  The following tables summarises the capital requirements for Sukuk exposures:

                  Sukuk Category Credit RW Market Risk Capital Charge
                  In nature of claim or debt Risk-weighted according to the external rating of the Sukuk (where rated) or according to the risk weight applicable to the issuer (where unrated) NA
                  In nature of equity -Listed 100% RW NA
                  In nature of equity- Not listed 150% RW* NA
                  If the bank gets approval to apply "look-through approach" RWs applicable to the underlying assets NA
                  Sukuk meeting the definition of trading book NA As set out in the applicable market risk section (See chapter CA-5).

                  * 100% RW may also be applied if the funds can be withdrawn by the bank at short notice of 5 working days.

                  Apr 08

          • CA-4 CA-4 Credit Risk — The Standardized Approach

            • CA-4.1 CA-4.1 Introduction

              • CA-4.1.1

                Credit risk exposures in Islamic financing arise in connection with accounts receivable in Murabaha contracts, counterparty risk in Salam contracts, accounts receivable and counterparty risk in Istisn'a contracts and lease payments receivable in Ijarah contracts, and Sukuk held to maturity in the banking book. Credit risk is measured according to the Standardised Approach as outlined in the Basel II guidelines, except for certain exposures arising from investments by means of Musharaka or Mudaraba contracts in assets in the banking book. The latter are to be treated as giving rise to credit risk (in the form of capital impairment risk), and are to be risk-weighted applying the supervisory slotting criteria for exposures in the nature of specialised financing and the risk weights applicable to equities for other equity exposures as detailed in the Musharaka and Mudaraba sections of this Rulebook.

                Apr 08

              • CA-4.1.2

                Broadly, the assignment of Risk Weights (RW) under the standardised approach takes into consideration the following:

                •   The credit risk rating of an obligor or other counterparty, or a security, based on external credit assessment institutions (ECAI) ratings7. In determining the risk weights in the standardised approach, Islamic banks must use assessments by only those external credit assessment institutions which are recognised as eligible for capital purposes by CBB in accordance with the criteria defined in section CA-4.6.
                •   Credit risk mitigation techniques adopted by the banks;
                •   Types of the underlying assets that are sold and collateralised or leased by the banks; and
                •   The amount of specific provisions made for the overdue portion of accounts receivable or lease payments receivable.

                7 The notations follow the methodology used by one institution, Standard & Poor's. The use of Standard & Poor's credit ratings is an example only; those of some other external credit assessment institutions could equally well be used. The ratings used throughout this document, therefore, do not express any preferences or determinations on external assessment institutions by CBB.

                Amended: April 2011
                April 2008

              • CA-4.1.3

                Where a discount is applied on fair value of an asset (as explained in CA-2.1.4), the value of the asset will be adjusted to exclude that discount part. Refer to appendix CA-7.

                Apr 08

            • CA-4.2 CA-4.2 Segregation of Claims

              • Claims on Sovereigns

                • CA-4.2.1

                  Claims on governments of GCC member states (hereinafter referred to as GCC) and their central banks can be risk weighted at 0%. Claims on other sovereigns and their central banks are given a preferential risk weighting of 0% where such claims are denominated and funded in the relevant domestic currency of that sovereign/central bank (e.g. if a Bahraini bank has a claim on government of Australia and the loan is denominated and funded in Australian dollar, it will be risk weighted at 0%). Such preferential risk weight for claims on GCC/other sovereigns and their central banks will be allowed only if the relevant supervisor also allows 0% risk weighting to claims on its sovereign and central bank.

                  Apr 08

                • CA-4.2.2

                  Claims on sovereigns other than those referred to in the previous paragraph must be assigned risk weights as follows:

                  Credit Assessment AAA to AA- A+ to A- BBB+ to BBB- BB+ to B- Below B- Unrated
                  Risk Weight 0% 20% 50% 100% 150% 100%
                  Apr 08

              • Claims on International Organizations

                • CA-4.2.3.

                  Claims on the Bank for International Settlements, the International Monetary Fund and the European Central Bank must receive a 0% risk weight.

                  Apr 08

              • Claims on Non-central Government Public Sectors Entities (PSEs)

                • CA-4.2.4

                  Claims on the Bahraini PSEs listed in Appendix CA-8 will be treated as claims on the government of Bahrain.

                  Apr 08

                • CA-4.2.5

                  Where other supervisors also treat claims on named PSEs as claims on their sovereigns, claims to those PSEs are treated as claims on the respective sovereigns as outlined in paragraphs CA-4.2.1 and CA-4.2.2 above. These PSE's must be shown on a list maintained by the concerned central bank or financial regulator. Where PSE's are not on such a list, they must be subject to the treatment outlined in paragraph CA-4.2.6 below.

                  Apr 08

                • CA-4.2.6

                  Claims on all other (foreign) PSEs (i.e. not having sovereign treatment) denominated and funded in the home currency of the sovereign must be risk weighted as allowed by their home country supervisors, provided the sovereign carries rating BBB- or above. Claims on PSEs with no explicit home country weighting or to PSEs in countries of BB+ sovereign rating and below are subject to ECAI ratings as per the following table:

                  Credit Assessment AAA to AA- A+ to A- BBB+ to BBB- BB+ to B- Below B- Unrated
                  Risk Weight 20% 50% 100% 100% 150% 100%
                  Apr 08

                • CA-4.2.7

                  Claims on commercial companies owned by governments must be risk weighted as normal commercial entities unless they are covered by a government guarantee that satisfies the conditions in CA-4.7 below in which case they may take the risk weight of the concerned government.

                  Apr 08

              • Claims on Multilateral Development Banks (MDB's)

                • CA-4.2.8

                  MDB's currently eligible for a 0% risk weight are: the World Bank Group comprised of the International Bank for Reconstruction and Development (IBRD) and the International Finance Corporation (IFC), the Asian Development Bank (ADB), the African Development Bank (AfDB), the European Bank for Reconstruction and Development (EBRD), the Inter-American Development Bank (IADB), the European Investment Bank (EIB), the European Investment Fund (EIF), the Nordic Investment Bank (NIB), the Caribbean Development Bank (CDB), the Islamic Development Bank (IDB), Arab Monetary Fund (AMF), the Council of Europe Development Bank (CEDB), the Arab Bank for Economic Development in Africa (ABEDA), Council of European Resettlement Fund (CERF) and the Kuwait Fund for Arab Economic Development (KFAED).

                  Apr 08

                • CA-4.2.9

                  The claims on MDB's, which do not qualify for the 0% risk weighting, should be assigned risk weights as follows:

                  Banks Credit Quality Grades AAA to AA- A+ to A- BBB+ to BBB- BB+ to B- Below B- Un-rated
                  Risk weights 20% 50% 50% 100% 150% 50%
                  Apr 08

              • Claims on Islamic Banks and Conventional Banks

                • CA-4.2.10

                  Claims on banks must be risk weighted as given in the following table. No claim on an unrated bank may receive a risk weight lower than that applied to claims on its sovereign of incorporation (see Guidance in Paragraph CA-4.2.11A for self-liquidating letters of credit).

                  Banks Credit Quality Grades AAA to AA- A+ to A- BBB+ to BBB- BB+ to B- Below B- Un-rated
                  Standard risk weights 20% 50% 50% 100% 150% 50%
                  Preferential risk weight 20% 20% 20% 50% 150% 20%
                  Amended: April 2012
                  Apr 08

                • CA-4.2.11

                  Short-term claims on locally incorporated banks may be assigned a risk weighting of 20% where such claims on the banks are of an original maturity of 3 months or less denominated and funded in either BD or US$. A preferential risk weight that is one category more favourable than the standard risk weighting may be assigned to claims on foreign banks licensed in Bahrain of an original maturity of 3 months or less denominated and funded in the relevant domestic currency (other than claims on banks that are rated below B-). Such preferential risk weight for short-term claims on banks licensed in other jurisdictions will be allowed only if the relevant supervisor also allows this preferential risk weighting to short-term claims on its banks.

                  Apr 08

                • CA-4.2.11A

                  Self-liquidating letters of credit issued or confirmed by an unrated bank will be allowed a risk weighting of 50% or 20% without reference to the risk weight of the sovereign of incorporation. All other claims will be subject to the 'sovereign floor' of the country of incorporation of the concerned issuing or confirming bank.

                  Added: April 2012

                • CA-4.2.12

                  Claims with an (contractual) original maturity under 3 months that are expected to be rolled over (i.e. where the effective maturity is longer than 3 months) will not qualify for a preferential treatment for capital adequacy purposes.

                  Apr 08

              • Claims on Investment Firms

                • CA-4.2.13

                  Claims on category one and category two investment firms which are subject to direct supervisory and regulatory provisions from the CBB may be treated as claims on banks for risk weighting purposes but without the use of preferential risk weight for short-term claims. Claims on category three investment firms must be treated as claims on corporates for risk weighting purposes. Claims on investment firms in other jurisdictions will be treated as claims on corporates for risk weighting purposes. However, if the bank can demonstrate that the concerned investment firm is subject to a Basel II equivalent capital adequacy regime and is treated as a bank for risk weighting purposes by its home regulator, then claims on such investment firms may be treated as claims on banks.

                  Apr 08

              • Claims on Corporates, including Insurance Companies

                • CA-4.2.14

                  Risk weighting for corporates including insurance companies is as follows:

                  Credit assessment AAA to AA- A+ to A- BBB+ to BB- Below BB- Unrated
                  Risk weight 20% 50% 100% 150% 100%
                  Apr 08

                • CA-4.2.15

                  Risk weighting for unrated (corporate) claims will be reviewed and where appropriate, may be increased by the CBB. Credit facilities to small/medium enterprises may be placed in the regulatory retail portfolio in limited cases below.

                  Amended January 2009
                  Apr 08

              • Claims included in the Regulatory Retail Portfolios

                • CA-4.2.16

                  No claim on any unrated corporate, where said corporate originates from a foreign jurisdiction, may be given a risk weight lower than that assigned to a corporate within its own jurisdiction, and in no case will it be below 100%.

                  Apr 08

                • CA-4.2.17

                  Retail claims that are included in the regulatory retail portfolio must be risk weighted at 75%, except as provided in CA-4.2.21 for the past due receivables.

                  Apr 08

                • CA-4.2.18

                  To be included in the regulatory retail portfolio, claims must meet the following criteria:

                  (a) Orientation — the exposure is to an individual person or persons or to a small business. A small business is a Bahrain-based business with annual turnover below BD 2mn.
                  (b) Product — The exposure takes the form of any of the following: revolving credits and lines of credit (including credit cards and running finance), personal term finance and leases (e.g. instalment finance, auto finance and leases, student and educational finance, personal finance) and small business facilities and commitments. Islamic products which involve securities (such as Musharakah, Mudarabah, Sukuks and equities), whether listed or not, are specifically excluded from this category. Mortgage finance will be excluded if they qualify for treatment as claims secured by residential property (see below). Finance for purchase of shares are also excluded from the regulatory retail portfolios.
                  (c) Granularity — The regulatory retail portfolio is sufficiently diversified to a degree that it reduces the risks in the portfolio, warranting a 75% risk weight. No aggregate exposure to one counterpart8 can exceed 0.2% of the overall regulatory retail portfolio.
                  (d) The maximum aggregated retail exposure to one counterpart must not exceed an absolute limit of BD 250,000.

                  8 Aggregated exposure means gross amount (i.e. not taking any credit risk mitigation into account) of all forms of debt exposures (e.g. finances or commitments) that individually satisfy the three other criteria. In addition, "to one counterpart" means one or several entities that may be considered as a single beneficiary (e.g. in the case of a small business that is affiliated to another small business, the limit would apply to the bank's aggregated exposure on both businesses).

                  Amended January 2009
                  Apr 08

              • Claims Secured by Residential Property

                • CA-4.2.19

                  Lending fully secured by first mortgages on residential property that is or will be occupied by the borrower, or that is leased, must carry a risk weighting of 75%. However, if the bank can justify foreclosure or repossession for a claim, a 35% risk weight will be allowed. To get this lower risk weight the bank must obtain a satisfactory legal opinion that foreclosure or repossession is possible without any impediment.

                  Apr 08

              • Claims Secured by Commercial Real Estate

                • CA-4.2.20

                  Claims secured by mortgages on commercial real estate are subject to a minimum of 100% risk weight. If the borrower is rated below BB-, the risk-weight corresponding to the rating must be applied.

                  Apr 08

              • Past Due Receivables

                • CA-4.2.21

                  In the event that accounts receivable or lease payments receivable become past due, the exposure shall be risk-weighted in accordance with the following table. The exposures should be risk weighted net of specific provisions (see CA-4.3.5 for exposures risk-weighted under Supervisory Slotting Criteria).

                  Type RW % of Specific Provisions for Past Due Receivables
                  Unsecured exposure (other than a qualifying residential mortgage loan) that is past due more than 90 days, net of specific provisions 150%


                  100%
                  Less than 20% of the outstanding receivables.

                  At least 20% of the outstanding receivables.
                  Exposure secured by RRE 100% For receivables that are past due for more than 90 days, net of specific provisions.
                  Apr 08

                • CA-4.2.22

                  For the purposes of defining the secured portion of a past due loan, eligible collateral and guarantees will be the same as for credit risk mitigation purposes.

                  Apr 08

                • CA-4.2.23

                  Past due retail loans are to be excluded from the overall regulatory retail portfolio when assessing the granularity criterion, for risk-weighting purposes.

                  Apr 08

              • Investments in Equities and Funds

                • CA-4.2.24

                  Investments in listed equities must be risk weighted at 100% while equities other than listed must be risk weighted at 150%. For risk-weighting of Sukuk, refer to Section CA-3.8.

                  Apr 08

                • CA-4.2.25

                  Investments in funds (e.g. mutual funds, Collective Investment Undertakings etc.) must be risk weighted as follows:

                  •   If the instrument (e.g. units) is rated, it should be risk-weighted according to its external rating (for risk-weighting, it must be treated as a "claim on corporate");
                  •   If not rated, such investment should be treated as an equity investment and risk weighted accordingly (i.e. 100% for listed and 150% for others);
                  •   The bank can apply to CBB for using the look-through approach for such investments if it can demonstrate that the look-through approach is more appropriate to the circumstances of the bank;
                  •   If there are no voting rights attached to investment in funds, the investment will not be subjected to consolidation and deduction requirements (except large exposure limits);
                  •   For the purpose of determining "large exposure limit" for investment in funds, the look-through approach should be used (even if the look-through approach is not used to risk weight the investment).
                  Apr 08

                • CA-4.2.26

                  CBB may enforce a bank to adopt the 'Simple Risk Weight Method' for equities (Section CA-4.4) if the CBB considers that bank's equity portfolio is significant.

                  Apr 08

              • Holdings of Real Estate

                • CA-4.2.27

                  All holdings of real estate by banks (i.e. owned directly or by way of investments in Real Estate Companies, subsidiaries or associate companies or other arrangements such as trusts, funds or REITs) must be risk-weighted at 200%. Premises occupied by the bank may be weighted at 100%. Investments in Real Estate Companies will be subject to the materiality thresholds for commercial companies described in Module PCD and therefore any holdings which amount to 15% or more of regulatory capital will be subject to deduction. The holdings below the 15% threshold will be weighted at 200%.

                  Apr 08

              • Other Assets

                • CA-4.2.28

                  Gold bullion held in own vaults or on an allocated basis to the extent backed by bullion liabilities may be treated as cash and therefore risk-weighted at 0%. In addition, cash items in the process of collection must be risk-weighted at 20%. The standard risk weight for all other assets will be 100%. Investments in regulatory capital instruments issued by banks or investment firms must be risk weighted at a minimum of 100%, unless they are deducted from the capital base according to the Prudential Consolidation and Deduction Requirements Module.

                  Apr 08

              • Underwriting of Non-trading Book items

                • CA-4.2.29

                  Where a bank has acquired assets on its balance sheet in the banking book which it is intending to place with third parties under a formal arrangement and is underwriting the placement, the following risk weightings apply during the underwriting period (which may not last for more than 90 days). Once the underwriting period has expired, the usual risk weights should apply.

                  1. For holdings of private equity, a risk weighting of 100% will apply instead of the usual 150% (see CA-4.2.24).
                  2. For holdings of Real Estate, a risk weight of 100% will apply instead of the usual 200% risk weight (see CA-4.2.27).
                  Apr 08

            • CA-4.3 CA-4.3 Supervisory Slotting Criteria

              • CA-4.3.1

                Equity exposures in the nature of specialized financing will be risk-weighted as per the supervisory slotting criteria as detailed below. Specialized lending is basically a typical kind of exposure in which some special underlying assets are both the source of repayment and security. This may include financing extended to:

                •   Power plants, chemical processing plants, mines, transportation infrastructure, environment, telecommunications infrastructure, ships, aircraft, satellites, railcars, fleets, crude oil, metals, crops, office buildings to let, retail space, multifamily residential buildings, industrial or warehouse space, hotels, High volatility real estate etc.
                •   Retail space;
                •   Multifamily residential buildings;
                •   Industrial or warehouse space;
                •   Hotels.
                Amended: April 2011
                April 2008

              • CA-4.3.2

                A bank is required to map its RW into four supervisory categories as set out in the Appendix CA-1 (specialised financing) for Limited and Non-Recourse Istisna'a exposures, Mudarabah exposures, Sukuk exposures and Musharakah in a business venture exposures, where the RW for each category is as follows:

                Supervisory Categories Strong Good Satisfactory Weak
                External Credit Assessments BBB- or better BB+ or BB BB- to B+ B to C-
                Risk Weights 70% 90% 115% 250%
                Apr 08

              • CA-4.3.3

                A bank with Diminishing Musharaka exposures in real estate are required to map its RW into the four supervisory categories as set out in Appendix CA-2 (Diminishing Musharaka in real estate) where the RW of each category is as follows:

                Supervisory Categories Strong Good Satisfactory Weak
                Risk Weights 90% 110% 135% 270%
                Apr 08

              • CA-4.3.4

                The above RW under the slotting criteria for specialised financing include an additional fixed factor, equal to a 20% RW, to cater for the potential decline in the Musharakah's net asset value.

                Apr 08

              • CA-4.3.5

                If any exposure which is to be risk-weighted under this sub-section becomes past due, it will be risk-weighted at the higher of risk-weight applicable under CA-4.2.21 or the risk-weight applicable under this sub-section e.g. if an exposure getting 90% risk-weight under CA-4.3.2 above becomes past due, it will be risk-weighted under CA-4.2.21 (at 100% or 150% whichever is applicable). However if an exposure getting 250% risk-weight under CA-4.3.2 above becomes past due, it will continue to be risk-weighted at 250%.

                Apr 08

            • CA-4.4 CA-4.4 Simple Risk-weight Method

              • CA-4.4.1

                As stated in CA-4.2.26, CBB may enforce a bank to adopt this treatment for equities if the CBB considers that bank's equity portfolio is significant.

                Apr 08

              • CA-4.4.2

                The RW under simple risk weight method for equity position risk in respect of an equity exposure shall be 300% for listed and 400% for others less any specific provisions for impairment. If there is a third party guarantee to make good impairment losses, the RW of the guarantor shall be substituted for that of the assets for the amount of any such guarantee.

                Apr 08

            • CA-4.5 CA-4.5 Risk Weighting - Off-balance-sheet Items

              • CA-4.5.1

                Off-balance-sheet items must be converted into credit exposure equivalents using credit conversion factors (CCFs).

                Apr 08

              • CA-4.5.2

                Commitments with an original maturity of up to one year and commitments with an original maturity of over one year will receive a CCF of 20% and 50%, respectively.

                Apr 08

              • CA-4.5.3

                Any commitments that are unconditionally cancellable at any time by the bank without prior notice, or that are subject to automatic cancellation due to deterioration in a borrowers' creditworthiness, will receive a 0% CCF.

                Apr 08

              • CA-4.5.4

                A CCF of 100% must be applied to the lending of banks' securities or the posting of securities as collateral by banks.

                Apr 08

              • CA-4.5.5

                For short-term self-liquidating trade letters of credit arising from the movement of goods a 20% CCF must be applied to both issuing and confirming banks.

                Apr 08

              • CA-4.5.6

                Where there is an undertaking to provide a commitment on an off-balance sheet item, banks are to apply the lower of the two applicable CCF's.

                Apr 08

              • CA-4.5.7

                Direct credit substitutes, e.g. general guarantees of indebtedness (including standby letters of credit serving as financial guarantees for finance and securities) and acceptances (including endorsements with the character of acceptances) must be applied a CCF of 100%.

                Apr 08

              • CA-4.5.8

                Sale and repurchase agreements and asset sales with recourse, where the credit risk remains with the bank, must be applied a CCF of 100%.

                Apr 08

              • CA-4.5.9

                Forward asset purchases, forward deposits and partly-paid shares and securities, which represent commitments with certain drawdown must be applied a CCF of 100%.

                Apr 08

              • CA-4.5.10

                Certain transaction-related contingent items (e.g. performance bonds, bid bonds, warranties and standby letters of credit related to particular transactions) must be applied a CCF of 50%.

                Apr 08

              • CA-4.5.11

                Note issuance facilities and revolving underwriting facilities must be applied a CCF of 50%.

                Apr 08

              • CA-4.5.12

                Banks must closely monitor securities, commodities, and foreign exchange transactions that have failed, starting the first day they fail. A capital charge to failed transactions must be calculated in accordance with CBB guidelines set forth in Appendix CA-5 - 'Capital treatment for failed trades and non DvP transactions'.

                Apr 08

              • CA-4.5.13

                With regard to unsettled securities, commodities, and foreign exchange transactions, banks are encouraged to develop, implement and improve systems for tracking and monitoring the credit risk exposure arising from unsettled transactions as appropriate for producing management information that facilitates action on a timely basis.

                Apr 08

              • CA-4.5.14

                Furthermore, when such transactions are not processed through a delivery-versus-payment (DvP) or payment-versus-payment (PvP) mechanism, banks must calculate a capital charge as set forth in Appendix CA-5.

                Please Note: An import or export financing, which is based on Murabahah where the underlying goods/shipment are collateralised and insured, shall attract a 20% credit conversion factor to the banks that issues or confirms the letter of credit. This treatment of collateral assumes there are no obstacles to the exercise of rights over it by the issuer or confirmer (see "Pledge of assets as collateral as detailed below under Credit Risk Mitigation).

                Apr 08

            • CA-4.6 CA-4.6 External Credit Assessments

              • The Recognition Process and Eligibility Criteria

                • CA-4.6.1

                  CBB will assess all External Credit Assessment Institutions (ECAI) according to the six criteria below. Any failings, in whole or in part, to satisfy these to the fullest extent will result in the respective ECAI's methodology and associated resultant rating not being accepted by the CBB:

                  (a) Objectivity: The methodology for assigning credit assessments must be rigorous, systematic, and subject to some form of validation based on historical experience. Moreover, assessments must be subject to ongoing review and responsive to changes in financial condition. Before being recognized by the CBB, an assessment methodology for each market segment, including rigorous back testing, must have been established for an absolute minimum of one year and with a preference of three years;
                  (b) Independence: An ECAI must show independence and should not be subject to political or economic pressures that may influence the rating. The assessment process should be as free as possible from any constraints that could arise in situations where the composition of the board of directors, political pressure, the shareholder structure of the assessment institution or any other aspect could be seen as creating a conflict of interest;
                  (c) International access/Transparency: The individual assessments should be available to both domestic and foreign institutions with legitimate interests and at equivalent terms. The general methodology used by the ECAI has to be publicly available;
                  (d) Disclosure: An ECAI is required to disclose the following information: its assessment methodologies, including the definition of default, the time horizon, and the meaning of each rating; the actual default rates experienced in each assessment category; and the transitions of the assessments, e.g. the likelihood of a slide in the ratings of an exposure from one class to another over time;
                  (e) Resources: An ECAI must have sufficient resources to carry out high quality credit assessments. These resources should allow for substantial ongoing contact with senior and operational levels within the entities assessed in order to add value to the credit assessments. Such assessments will be based on methodologies combining qualitative and quantitative approaches; and
                  (f) Credibility: Credibility, to a certain extent, can derive from the criteria above. In addition, the reliance on an ECAI's external credit assessments by independent parties (investors, insurers, trading partners) may be evidence of the credibility of the assessments of an ECAI. The credibility of an ECAI will also be based on the existence of internal procedures to prevent the misuse of confidential information. In order to be eligible for recognition, an ECAI does not have to assess firms in more than one country.
                  Amended: April 2011
                  April 2008

                • CA-4.6.2

                  The CBB recognizes Standard and Poor's, Moody's, Fitch IBCA, Capital Intelligence and the Islamic International Rating Agency as eligible ECAIs. With respect to the possible recognition of other rating agencies as eligible ECAIs, CBB will update this paragraph subject to the rating agencies satisfying the eligibility requirements. (See Appendix CA-6 for mapping of eligible ECAIs).

                  Apr 08

                • CA-4.6.3

                  Banks must use the chosen ECAIs and their ratings consistently for each type of claim, for both risk weighting and risk management purposes. Banks will not be allowed to "cherry-pick" the assessments provided by different eligible ECAIs.

                  Apr 08

                • CA-4.6.4

                  Banks must disclose ECAIs that they use for the risk weighting of their assets by type of claims, the risk weights associated with the particular rating grades as determined by CBB through the mapping process as well as the aggregated risk-weighted assets for each risk weight based on the assessments of each eligible ECAI.

                  Apr 08

              • Multiple Assessments

                • CA-4.6.5

                  If there are two assessments by eligible ECAIs chosen by a bank which map into different risk weights, the higher risk weight must be applied.

                  Apr 08

                • CA-4.6.6

                  If there are three or more assessments by eligible ECAIs chosen by a bank which map into different risk weights, the assessments corresponding to the two lowest risk weights should be referred to and the higher of those two risk weights must be applied.

                  Apr 08

              • Issuer Versus Issues Assessment

                • CA-4.6.7

                  Where a bank invests in a particular issue that has an issue-specific assessment, the risk weight of the claim will be based on this assessment. Where the bank's claim is not an investment in a specific assessed issue, the following general principles apply:

                  (a) In circumstances where the borrower has a specific assessment for an issued debt — but the bank's claim is not an investment in this particular debt — a high quality credit assessment (one which maps into a risk weight lower than that which applies to an unrated claim) on that specific debt may only be applied to the bank's un-assessed claim if this claim ranks pari passu or senior to the claim with an assessment in all respects. If not, the credit assessment cannot be used and the un-assessed claim will receive the risk weight for unrated claims; and
                  (b) In circumstances where the borrower has an issuer assessment, this assessment typically applies to senior unsecured claims on that issuer. Consequently, only senior claims on that issuer will benefit from a high quality issuer assessment. Other un-assessed claims of a highly assessed issuer will be treated as unrated. If either the issuer or a single issue has a low quality assessment (mapping into a risk weight equal to or higher than that which applies to unrated claims), an un-assessed claim on the same counterparty will be assigned the same risk weight as is applicable to the low quality assessment.
                  Amended: April 2011
                  April 2008

                • CA-4.6.8

                  Whether the bank intends to rely on an issuer- or an issue-specific assessment, the assessment must take into account and reflect the entire amount of credit risk exposure the bank has with regard to all payments owed to it.9


                  9 For example, if a bank is owed both principal and interest, the assessment must fully take into account and reflect the credit risk associated with repayment of both principal and interest.

                  Apr 08

                • CA-4.6.9

                  In order to avoid any double counting of credit enhancement factors, no recognition of credit risk mitigation techniques will be taken into account if the credit enhancement is already reflected in the issue specific rating (see paragraph CA-4.7.3).

                  Apr 08

              • Domestic Currency and Foreign Currency Assessments

                • CA-4.6.10

                  Where unrated exposures are risk weighted based on the rating of an equivalent exposure to that borrower, the general rule is that foreign currency ratings would be used for exposures in foreign currency. Domestic currency ratings, if separate, would only be used to risk weight claims denominated in the domestic currency.

                  Apr 08

                • CA-4.6.11

                  However, when an exposure arises through a bank's participation in a loan that has been extended, or has been guaranteed against convertibility and transfer risk, by certain MDBs, its convertibility and transfer risk can be considered by CBB, on a case by case basis, to be effectively mitigated. To qualify, MDBs must have preferred creditor status recognised in the market and be included in MDB's qualifying for 0% risk rate under CA-4.2.8. In such cases, for risk weighting purposes, the borrower's domestic currency rating may be used instead of its foreign currency rating. In the case of a guarantee against convertibility and transfer risk, the local currency rating can be used only for the portion that has been guaranteed. The portion of the loan not benefiting from such a guarantee will be risk-weighted based on the foreign currency rating.

                  Apr 08

              • Short-term/Long-term Assessments

                • CA-4.6.12

                  For risk-weighting purposes, short-term assessments are deemed to be issue-specific. They can only be used to derive risk weights for claims arising from the rated facility. They cannot be generalised to other short-term claims, except under the conditions of paragraph CA-4.6.14. In no event can a short-term rating be used to support a risk weight for an unrated long-term claim. Short-term assessments may only be used for short-term claims against banks and corporates. The table below provides a framework for banks' exposures to specific short-term facilities, such as a particular issuance of commercial paper: For any Sharia contract with an original maturity of up to three months that is not rolled over, the short-term RW as set out in the following table shall be applied.

                  Credit assessment A-1/P-110 A-2/P-2 A-3/P-3 Others11
                  Risk weight 20% 50% 100% 150%

                  10The notations follow the methodology used by Standard & Poor's and by Moody's Investors Service. The A-1 rating of Standard & Poor's includes both A-1+ and A-1-.

                  11This category includes all non-prime and B or C ratings.

                  Apr 08

                • CA-4.6.13

                  If a short-term rated facility attracts a 50% risk-weight, unrated short-term claims cannot attract a risk weight lower than 100%. If an issuer has a short-term facility with an assessment that warrants a risk weight of 150%, all unrated claims, whether long-term or short-term, should also receive a 150% risk weight, unless the bank uses recognised credit risk mitigation techniques for such claims.

                  Apr 08

                • CA-4.6.14

                  For short-tem claims on banks, the interaction with specific short-term assessments is expected to be the following:

                  (a) The general preferential treatment for short-term claims, as defined under paragraphs CA-4.2.11 and CA-4.2.12, applies to all claims on banks of up to three months original maturity when there is no specific short-term claim assessment.
                  (b) When there is a short-term assessment and such an assessment maps into a risk weight that is more favourable (i.e. lower) or identical to that derived from the general preferential treatment, the short-term assessment should be used for the specific claim only. Other short-term claims would benefit from the general preferential treatment.
                  (c) When a specific short-term assessment for a short term claim on a bank maps into a less favourable (higher) risk weight, the general short-term preferential treatment for inter-bank claims cannot be used. All unrated short-term claims should receive the same risk weighting as that implied by the specific short-term assessment.
                  Apr 08

                • CA-4.6.15

                  When a short-term assessment is to be used, the institution making the assessment needs to meet all of the eligibility criteria for recognising ECAIs as presented in paragraph CA-4.6.1 in terms of its short-term assessment.

                  Apr 08

              • Level of Application of the Assessment

                • CA-4.6.16

                  External assessments for one entity within a corporate group must not be used to risk weight other entities within the same group.

                  Apr 08

              • Unsolicited Ratings

                • CA-4.6.17

                  As a general rule, banks should use solicited ratings from eligible ECAIs but they are also allowed to use unsolicited ratings in the same way as solicited ratings. However, there may be the potential for ECAIs to use unsolicited ratings to put pressure on entities to obtain solicited ratings. If such behaviour is identified, CBB may disallow the use of unsolicited ratings.

                  Apr 08

            • CA-4.7 CA-4.7 Credit Risk Mitigation

              • CA-4.7.1

                The exposure in respect of an obligor or other, counterparty can be further adjusted or reduced by taking into account the credit risk mitigation (CRM) techniques employed by Islamic banks (off-balance sheet items will first be converted into on-balance sheet equivalents prior to the CRM being applied). Banks use a number of techniques to mitigate the credit risks to which they are exposed. For example, exposures may be collateralised by first priority claims, in whole or in part with cash or securities or an exposure may be guaranteed by a third party. Additionally banks may agree to net exposure amounts owed to them against deposits from the same counterparty.

                Apr 08

              • General Remarks

                • CA-4.7.2

                  No transaction in which CRM techniques are used should receive a higher capital requirement than an otherwise identical transaction where such techniques are not used.

                  Apr 08

                • CA-4.7.3

                  The effects of CRM will not be double counted. Therefore, no additional recognition of CRM for regulatory capital purposes will be applicable on claims for which an issue-specific rating is used that already reflects that CRM. As stated in paragraph CA-4.6.8 of the section on the standardised approach, principal-only ratings will also not be allowed within the framework of CRM.

                  Apr 08

                • CA-4.7.4

                  While the use of CRM techniques reduces or transfers credit risk, it simultaneously may increase other risks (residual risks). Residual risks include legal, operational, liquidity and market risks. Therefore, it is imperative that banks employ robust procedures and processes to control these risks, including strategy; consideration of the underlying credit; valuation; policies and procedures; systems; control of roll-off risks; and management of concentration risk arising from the bank's use of CRM techniques and its interaction with the bank's overall credit risk profile. Where these risks are not adequately controlled, the CBB may impose additional capital charges or take supervisory actions.

                  Apr 08

                • CA-4.7.5

                  Market Discipline requirements must also be observed for banks to obtain capital relief in respect of any CRM techniques.

                  Apr 08

              • Legal Certainty

                • CA-4.7.6

                  In order for banks to obtain capital relief for any use of CRM techniques, the following minimum standards for legal documentation must be met.

                  Apr 08

                • CA-4.7.7

                  All documentation used in collateralised transactions and for documenting on- balance sheet netting and guarantees must be binding on all parties and legally enforceable in all relevant jurisdictions. Banks must have conducted sufficient legal review to verify this and have a well founded legal basis to reach this conclusion, and undertake such further review as necessary to ensure continuing enforceability.

                  Apr 08

              • CRM Techniques

                The CRM techniques that are commonly employed by the bank are as follows:

                Amended: April 2011
                April 2008

                • Hamish Jiddiyyah (Security Deposit held as Collateral)

                  • CA-4.7.8

                    Hamish Jiddiyyah (HJ), a refundable security deposit taken by the bank prior to establishing a contract, carries a limited recourse to the extent of damages incurred by the bank when the purchase orderer fails to honour a binding promise to purchase (PP) or promise to lease (PL). The bank has recourse to the clients in the PP/PL if the HJ is insufficient to cover for the damages.

                    Apr 08

                  • CA-4.7.9

                    In the case of a non-binding PP/PL, the HJ shall be refunded in full to the clients, and hence is not considered as an eligible CRM.

                    Apr 08

                • Urbun (Earnest Money held after a Contract is Established as Collateral to Guarantee Contract Performance)

                  • CA-4.7.10

                    The urbun taken from a purchaser or lessee when a contract is established accrues to the benefit of the bank if the purchaser or lessee breaches the contract within the agreed upon term.

                    Apr 08

                • Guarantee from a Third Party (Recourse or Non-recourse Guarantee)

                  • CA-4.7.11

                    The guarantor may or may not have recourse to the debtor (i.e. purchaser or lessee) and the guarantee can be for a fixed period and for a limited amount, without any consideration being received by the guarantor. However, a claim should first be made against the debtor, and then against the guarantor, unless an option is provided to make the claim against either the debtor or the guarantor.

                    Apr 08

                  • CA-4.7.12

                    The guarantee can also be given in a 'blanket' form that covers an unknown amount or a future receivable. However, this type of guarantee (sometimes known as a "market/business guarantee" or "guarantee of contractual obligation") is revocable at any time prior to the existence of the future receivables and does not qualify as an eligible CRM.

                    Apr 08

                • Leased Assets used as Collateral

                  • CA-4.7.13

                    Assets leased under Ijarah or IMB contracts fulfill a function similar to that of collateral, in that they may normally be repossessed by the lessor in the event of default by the lessee (see residential real estate CA-4.2.19 and below).

                    Apr 08

                  • CA-4.7.14

                    The value of such assets may be offset against the exposure amount to the customer, subject to the regulatory haircuts under the Standard Supervisory Haircut 12 Approach (CA-4.7.32 onwards) for leased assets mentioned in the paragraph CA-4.7.39. Ijarah receivables which comprise Residential Real Estate do not generally satisfy the conditions laid out in Paragraph CA-4.7.23 and therefore such receivables will be weighted at 75% and the collateral will not be recognised for risk mitigation purposes. If the bank can show legal evidence that it may exercise foreclosure, a risk weighting of 35% may be applied to the lease receivable in the case of residential property occupied by the customer. Commercial real estate may be used as collateral for Ijarah transactions as long as it satisfies the criteria of paragraph CA-4.7.23 (and the supervisory haircut is then applied).


                    12 The term 'haircut' in this context refers to a discount on the depreciated value of an asset as collateral after taking into consideration some inherent risks that affect the volatility of the market price or value of the asset. It is commonly expressed in terms of a percentage by which an asset's value as collateral is reduced.

                    Apr 08

                  • CA-4.7.15

                    The leased asset to be used as collateral must be a Sharia compliant tangible asset of monetary value that can be lawfully owned, and is saleable, specifiable, deliverable and free of encumbrance.

                    Apr 08

                  • CA-4.7.16

                    The collateralisation under the concept of "rahn" or "kafālah" shall be properly documented in a security agreement or, in the body of a contract to the extent permissible by Sharia, and must be binding on all parties and legally enforceable in the relevant jurisdictions.

                    Apr 08

                  • CA-4.7.17

                    The banks must additionally document its procedures for the valuation of leased assets to be used as collateral as described above. This valuation would normally be the depreciated value of the asset as reported in the financial statement.

                    Apr 08

                • Guarantees

                  • CA-4.7.18

                    Capital relief for the use of a guarantee shall be given when the following conditions are satisfied:

                    (a) The guarantee represents the bank's direct claim on the guarantor;
                    (b) The guarantee is irrevocable and does not allow the guarantor to unilaterally cancel the guarantee after creation of the receivables;
                    (c) The guarantee is unconditional and provides no protection clause that prevents the guarantor from being obliged to pay out in a timely manner in the event that the original counterparty fails to make payments due;
                    (d) The bank has the right to pursue, in a timely manner, the guarantor for monies outstanding, rather than having to pursue the original counterparty to recover its exposure;
                    (e) The guarantee shall be an explicitly documented obligation assumed by the guarantor; and
                    (f) The guarantee shall cover all types of expected payments made under the contract in the event that the original counterparty defaults.
                    (g) Portions of claims guaranteed by the entities detailed in paragraph CA-4.2.1 above, where the guarantee is denominated in the domestic currency (and US$ in case of a guarantee provided by the Government of Bahrain and CBB) may get a 0% risk-weighting. A claim may be covered by a guarantee that is indirectly counter-guaranteed by such entities. Such a claim may be treated as covered by a sovereign guarantee provided that:
                    •   the sovereign counter-guarantee covers all credit risk elements of the claim;
                    •   both the original guarantee and the counter-guarantee meet all operational requirements for guarantees, except that the counter-guarantee need not be direct and explicit to the original claim; and
                    •   CBB is satisfied that the cover is robust and that no historical evidence suggests that the coverage of the counter-guarantee is less than effectively equivalent to that of a direct sovereign guarantee.

                    Please Note: Though insurance is normally part and parcel of the project risk financing, it is not regarded by CBB as a credit risk mitigation technique.
                    Amended: April 2011
                    April 2008

                • Collateralised Transactions

                  • CA-4.7.19

                    Where banks take eligible financial collateral as defined in paragraph CA.4.7.28, they are allowed to reduce their credit exposure to a counterparty when calculating their capital requirements to take account of the risk mitigating effect of the collateral (except residential real estate - see CA-4.7.14).

                    Apr 08

                • Overall Framework and Minimum Conditions

                  • CA-4.7.20

                    Banks may opt for either the simple approach, which substitutes the risk weighting of the collateral for the risk weighting of the counterparty for the collateralised portion of the exposure (generally subject to a 20% floor), or for the standard supervisory haircuts approach which allows fuller offset of collateral against exposures, by effectively reducing the exposure amount by the value ascribed to the collateral.

                    Apr 08

                  • CA-4.7.21

                    Banks may operate under either, but not both, approaches in the banking book, but only under the standard supervisory haircuts approach in the trading book. Partial collateralisation is recognised in both approaches. Mismatches in the maturity of the underlying exposure and the collateral will only be allowed under the standard supervisory haircuts approach.

                    Apr 08

                  • CA-4.7.22

                    However, before capital relief will be granted in respect of any form of collateral, the standards set out below in paragraphs CA-4.7.23 to CA-4.7.26 must be met under either approach.

                    Apr 08

                  • CA-4.7.23

                    In addition to the general requirements for legal certainty set out in paragraphs CA-4.7.6 and CA-4.7.7, the legal mechanism by which collateral is pledged or transferred must ensure that the bank has the right to liquidate or take legal possession of it, in a timely manner, in the event of the default, insolvency or bankruptcy (or one or more otherwise-defined credit events set out in the transaction documentation) of the counterparty (and, where applicable, of the custodian holding the collateral). Furthermore banks must take all steps necessary to fulfill those requirements under the law applicable to the bank's interest in the collateral for obtaining and maintaining an enforceable security interest, e.g. by registering it with a registrar, or for exercising a right to net or set off in relation to title transfer collateral.

                    Apr 08

                  • CA-4.7.24

                    In order for collateral to provide protection, the credit quality of the counterparty and the value of the collateral must not have a material positive correlation. For example, securities issued by the counterparty — or by any related group entity — would provide little protection and so would be ineligible.

                    Apr 08

                  • CA-4.7.25

                    Banks must have clear and robust procedures for the timely liquidation of collateral to ensure that any legal conditions required for declaring the default of the counterparty and liquidating the collateral are observed, and that collateral can be liquidated promptly.

                    Apr 08

                  • CA-4.7.26

                    Where the collateral is held by a custodian, banks must take reasonable steps to ensure that the custodian segregates the collateral from its own assets.

                    Apr 08

                • Types of Collateral

                  • CA-4.7.27

                    The types of collateral given in the next paragraph are eligible for relief in respect of the above CRM techniques.

                    Apr 08

                  • CA-4.7.28

                    (a) Hamish jiddiyyah (security deposit) only for agreements to purchase or lease preceded by a binding promise.
                    (b) Urbun
                    (c) Profit sharing investment account or cash on deposit13 with the bank which is incurring the exposure
                    (d) Sukuk rated by an external rating agency which is issued by:
                    (i) Sovereigns and PSEs (treated as sovereigns) with a minimum rating of BB-;or
                    (ii) Issuers other than the above, with a minimum rating of BBB- or A-3 / P-3.
                    (e) Sukuk that is unrated by an ECAI but fulfill each of the following criteria:
                    (i) Issued by an Islamic bank or a conventional bank or a sovereign;
                    (ii) Listed on a recognised exchange;
                    (iii) All other rated issues by the Islamic bank or conventional bank of the same seniority of at least BBB - or A-3/P-3 by a recognised ECAI, as determined by the CBB;
                    (iv) The Islamic bank which incurs the exposure or is holding the collateral has no information to suggest that the issue would justify a rating below BBB- or A-3/P-3; and
                    (v) The CBB is sufficiently confident about the market liquidity of the securities.
                    (f) Equities and units in collective investment schemes.
                    (g) Guarantees issued by third parties that fall within the following categories:
                    (i) Sovereigns and central banks;
                    (ii) PSEs;
                    (iii) MDBs;
                    (iv) International organisations/official entities with 0% RW
                    (v) Islamic banks or conventional banks; and
                    (vi) Corporate entities (including insurance and securities firms) either by the parent, subsidiary and affiliates, of a minimum rating of A-.
                    (h) Leased assets as stated under "Leased assets used as collateral" above.
                    (i) Collateral under "Murabaha" accepted by CBB (see paragraphs CA-3.2.10 and CA-3.2.14).

                    13 Must be supported by an agreement or documentation that gives bank the right of set-off against the amount of receivables due.

                    Amended: April 2011
                    April 2008

                  • CA-4.7.29

                    Any portion of the exposure which is not collateralised shall be assigned the RW of the counterparty.

                    Apr 08

                  • CA-4.7.30

                    As stated earlier, banks may opt for either of the two approaches listed below:

                    Apr 08

                • The Simple Approach

                  • CA-4.7.31

                    In the simple approach the risk weighting of the collateral instrument collateralising or partially collateralising the exposure is substituted for the risk weighting of the counterparty.

                    Apr 08

                • The Standard Supervisory Haircuts Approach

                  • CA-4.7.32

                    In this approach, when taking collateral, banks must calculate their adjusted exposure to a counterparty for capital adequacy purposes in order to take account of the effects of that collateral. Using haircuts, banks are required to adjust both the amount of the exposure to the counterparty and the value of any collateral received in support of that counterparty to take account of possible future fluctuations in the value of either14, occasioned by market movements. This will produce volatility adjusted amounts for both exposure and collateral. Unless either side of the transaction is cash, the volatility adjusted amount for the exposure will be higher than the exposure and for the collateral it will be lower.


                    14 Exposure amounts may vary where, for example, securities are being lent.

                    Apr 08

                  • CA-4.7.33

                    Additionally where the exposure and collateral are held in different currencies an additional downwards adjustment must be made to the volatility adjusted collateral amount to take account of possible future fluctuations in exchange rates.

                    Apr 08

                  • CA-4.7.34

                    Where the volatility-adjusted exposure amount is greater than the volatility-adjusted collateral amount (including any further adjustment for foreign exchange risk), banks shall calculate their risk-weighted assets as the difference between the two multiplied by the risk weight of the counterparty. The framework for performing these calculations is set out in paragraphs CA-4.7.36 to CA-4.7.38.

                    Apr 08

                  • CA-4.7.35

                    Banks must use standard supervisory haircuts given in paragraph CA-4.7.39.

                    Apr 08

                • Calculation of Capital Requirement Employing the Standard Supervisory Haircuts

                  • CA-4.7.36

                    For a collateralised transaction, the exposure amount after risk mitigation is calculated as follows:

                    E* = max {0, [E x (1 + He) - C x (1 - Hc - Hfx)]}

                    where:

                    E* = the exposure value after risk mitigation

                    E = current value of the exposure

                    He = haircut appropriate to the exposure

                    C = the current value of the collateral received

                    Hc = haircut appropriate to the collateral

                    Hfx = haircut appropriate for currency mismatch between the collateral and exposure

                    Apr 08

                  • CA-4.7.37

                    The exposure amount after risk mitigation will be multiplied by the risk weight of the counterparty to obtain the risk-weighted asset amount for the collateralised transaction. The treatment for transactions where there is a mismatch between the maturity of the counterparty exposure and the collateral is given in paragraphs CA-4.7.47 to CA-4.7.50.

                    Apr 08

                  • CA-4.7.38

                    Where the collateral is a basket of assets, the haircut on the basket will be H = Σi ai Hi, where ai is the weight of the asset (as measured by units of currency) in the i basket and Hi the haircut applicable to that asset.

                    Apr 08

                • The Standard Supervisory Haircuts

                  • CA-4.7.39

                    Both the amount of exposure to counterparty and the value of collateral received are adjusted by using standard supervisory haircuts as set out below:

                    Types of Collateral* Residual Maturity (yrs) Haircuts (%)
                    Sovereigns15 Others
                    Cash All 0 0
                    Sukuk
                    Long-term: AAA to AA- and
                    Short-term: A-1
                    ≤ 1
                    > 1 to ≤ 5
                    > 5
                    0.5
                    2
                    4
                    1
                    4
                    8
                    Sukuk
                    Long-term: A+ to BBB- and
                    Short-term: A-2 to A-3
                    ≤ 1
                    > 1 to ≤ 5
                    > 5
                    1
                    3
                    6
                    2
                    6
                    12
                    Sukuk
                    Long-term: BB+ to BB-
                    All 15 15
                    Sukuk (unrated) All 25 25
                    Equities (included in main index)
                    Equities (not included in main index but listed)
                    Units in collective investment schemes
                    All
                    All
                    All
                    15
                    25
                    Depending on the underlying assets as above
                    15
                    25
                    Depending on the underlying assets as above
                    Leased assets used as collateral (except residential real estate -see CA-4.2.19) and other assets All >=30 >=30

                    * Collateral denominated in different currency will also be subject to additional 8% haircut to cater for foreign exchange risk.


                    15 Includes PSEs and MDBs

                    Apr 08

                  • CA-4.7.40

                    The standard haircut for currency risk where exposure and collateral are denominated in different currencies is 8% (also based on a 10-business day holding period and daily mark-to-market). For transactions in which the bank lends non-eligible instruments (e.g. non- investment grade securities), the haircut to be applied on the exposure should be the same as the one for equity traded on a recognised exchange that is not part of a main index.

                    Apr 08

                • The Simple Approach

                  • The Minimum Conditions

                    • CA-4.7.41

                      For collateral to be recognised in the simple approach, the collateral must be pledged for at least the life of the exposure and it must be marked to market and revalued with a minimum frequency of six months. Those portions of claims collateralised by the market value of recognised collateral receive the risk weight applicable to the collateral instrument. The risk weight on the collateralised portion will be subject to a floor of 20% except under the conditions specified in paragraphs CA-4.7.42. The remainder of the claim should be assigned to the risk weight appropriate to the counterparty.

                      Apr 08

                  • Exceptions to the Risk Weight Floor

                    • CA-4.7.42

                      The 20% floor for the risk weight on a collateralised transaction will not be applied and a 0% risk weight can be applied where the exposure and the collateral are denominated in the same currency, and either:

                      (a) The collateral is cash on deposit; or
                      (b) The collateral is in the form of sovereign/PSE securities eligible for a 0% risk weight, and its market value has been discounted by 20%
                      Amended: April 2011
                      April 2008

                  • Treatment of Pools of CRM Techniques

                    • CA-4.7.43

                      In the case where a bank has multiple CRM techniques covering a single exposure (e.g. a bank has both collateral and guarantee partially covering an exposure), the bank will be required to subdivide the exposure into portions covered by each type of CRM technique (e.g. portion covered by collateral, portion covered by guarantee) and the risk-weighted assets of each portion must be calculated separately.

                      Apr 08

                  • Credit Risk Mitigation for Mudarabah Classified as Equity Exposures

                    • CA-4.7.44

                      A placement of funds made under a Mudarabah contract may be subject to a Sharia compliant guarantee from a third party. Such a guarantee relates only to the Mudarabah capital, not to the return. In such cases, the capital should be treated as subject to credit risk with a risk-weighting equal to that of the guarantor provided that the RW of that guarantor is lower than the RW of the Mudarib as a counterparty. Otherwise, the RW of the Mudarib shall apply.

                      Apr 08

                    • CA-4.7.45

                      In Mudarabah investment in project finance, collateralisation of the progress payments made by the ultimate customers can be used to mitigate the exposures of unsatisfactory performance by the Mudarib.

                      Apr 08

                    • CA-4.7.46

                      The bank may also place liquid funds with a central bank or another bank on a short-term Mudarabah basis in order to obtain a return on those funds. Such placements serve as an interbank market with maturities ranging from an overnight market up to three months, but the funds may be withdrawn on demand before the maturity date in which case the return is calculated proportionately on the basis of duration and amount. Although from a juristic point of view the amounts so placed do not constitute debts, since (in the absence of misconduct or negligence) Mudarabah capital does not constitute a liability for the institution that acts as Mudarib, in practice the operation of this interbank market requires that the Mudarib should effectively treat them as liabilities. Hence a bank placing funds on this basis may treat them as cash equivalents and, for risk weighting purposes, apply the risk weight applicable to the Mudarib as counterparty.

                      Apr 08

                  • Maturity Mismatches

                    • CA-4.7.47

                      For the purposes of calculating risk-weighted assets, a maturity mismatch occurs when the residual maturity of CRM is less than that of the underlying exposure.

                      Apr 08

                    • CA-4.7.48

                      The maturity of the underlying exposure and the maturity of the CRM should both be defined conservatively. The effective maturity of the underlying should be gauged as the longest possible remaining time before the counterparty is scheduled to fulfill its obligation, taking into account any applicable grace period.

                      Apr 08

                    • CA-4.7.49

                      CRM with maturity mismatches are only recognised when their original maturities are greater than or equal to one year. As a result, the maturity of CRM for exposures with original maturities of less than one year must be matched to be recognised. In all cases, CRM with maturity mismatches will no longer be recognised when they have a residual maturity of three months or less.

                      Apr 08

                    • CA-4.7.50

                      When there is a maturity mismatch with recognised credit risk mitigants, the following adjustment will be applied.

                      Pa = P x (t - 0.25) / (T - 0.25)

                      where:

                      Pa = value of the credit protection adjusted for maturity mismatch

                      P = credit protection (e.g. collateral amount, guarantee amount) adjusted for any haircuts

                      t = min (T, residual maturity of the credit protection arrangement) expressed in years

                      T = min (5, residual maturity of the exposure) expressed in years.

                      Apr 08

        • PART 3: PART 3: Other Risks

          • CA-5 CA-5 Market Risk

            • CA-5.1 CA-5.1 Trading Book

              • Definition of the Trading Book

                • CA-5.1.1

                  The following definition of the trading book replaces the previous definition.

                  Apr 08

                • CA-5.1.2

                  A trading book consists of positions in financial instruments and commodities held either with trading intent or in order to hedge other elements of the trading book. To be eligible for trading book capital treatment, financial instruments must either be free of any restrictive covenants on their tradability or able to be hedged completely. In addition, positions should be frequently and accurately valued, and the portfolio should be actively managed (at the present time, open equity stakes in hedge funds, private equity investments and real estate holdings do not meet the definition of the trading book, owing to significant constraints on the ability of banks to liquidate these positions and value them reliably on a daily basis. Such holdings must therefore be held in the bank's banking book and treated as equity holding in corporates, except real estate which should be treated as per Paragraph CA-4.2.27).

                  Amended: January 2012
                  Apr 08

                • CA-5.1.3

                  A financial instrument is any contract that gives rise to both a financial asset of one entity and a financial liability or equity instrument of another entity. Financial instruments include both primary financial instruments (or cash instruments) and forward financial instruments. A financial asset is any asset that is cash, the right to receive cash or another financial asset; or the contractual right to exchange financial assets on potentially favourable terms, or an equity instrument. A financial liability is the contractual obligation to deliver cash or another financial asset or to exchange financial liabilities under conditions that are potentially unfavourable.

                  Apr 08

                • CA-5.1.4

                  Positions held with trading intent are those held intentionally for short-term resale and/or with the intent of hedging proprietary or client positions.

                  Apr 08

                • CA-5.1.5

                  Banks must have clearly defined policies and procedures for determining which exposures to include in, and to exclude from, the trading book for purposes of calculating their regulatory capital, to ensure compliance with the criteria for trading book set forth in this section and taking into account the bank's risk management capabilities and practices. Compliance with these policies and procedures must be fully documented and subject to periodic internal audit.

                  Apr 08

                • CA-5.1.6

                  These policies and procedures should, at a minimum, address the following general considerations:

                  (a) The activities the bank considers to be trading and as constituting part of the trading book for regulatory capital purposes;
                  (b) The extent to which an exposure can be marked-to-market daily by reference to an active, liquid two-way market;
                  (c) For exposures that are marked-to-model, the extent to which the bank can:
                  •   Identify the material risks of the exposure;
                  •   Hedge (Sharia compliant hedging) the material risks of the exposure and the extent to which hedging instruments would have an active, liquid two-way market;
                  •   Derive reliable estimates for the key assumptions and parameters used in the model.
                  (d) The extent to which the bank can and is required to generate valuations for the exposure that can be validated externally in a consistent manner;
                  (e) The extent to which legal restrictions or other operational requirements would impede the bank's ability to effect an immediate liquidation of the exposure;
                  (f) The extent to which the bank is required to, and can, actively risk manage the exposure within its trading operations; and
                  (g) The extent to which the bank may transfer risk or exposures between the banking and the trading books and criteria for such transfers.
                  The list above is not intended to provide a series of tests that a product or group of related products must pass to be eligible for inclusion in the trading book. Rather, the list provides a minimum set of key points that must be addressed by the policies and procedures for overall management of a firm's trading book.
                  Apr 08

                • CA-5.1.7

                  The following will be the basic requirements for positions eligible to receive trading book capital treatment.

                  (a) Clearly documented trading strategy for the position/instrument or portfolios, approved by senior management (which would include expected holding horizon).
                  (b) Clearly defined policies and procedures for the active management of the position, which must include:
                  •   Positions are managed on a trading desk;
                  •   Position limits are set and monitored for appropriateness;
                  •   Dealers have the autonomy to enter into/manage the position within agreed limits and according to the agreed strategy;
                  •   Positions are marked to market at least daily and when marking to model the parameters must be assessed on a daily basis;
                  •   Positions are reported to senior management as an integral part of the institution's risk management process; and
                  •   Positions are actively monitored with reference to market information sources (assessment should be made of the market liquidity or the ability to hedge positions or the portfolio risk profiles). This would include assessing the quality and availability of market inputs to the valuation process, level of market turnover, sizes of positions traded in the market, etc.
                  (c) Clearly defined policy and procedures to monitor the positions against the bank's trading strategy including the monitoring of turnover and stale positions in the bank's trading book.
                  Apr 08

              • Prudent Valuation Guidance

                • CA-5.1.8

                  This section provides banks with guidance on prudent valuation for positions in the trading book. This guidance is especially important for less liquid positions which, although they will not be excluded from the trading book solely on grounds of lesser liquidity, raise CBB's concerns about prudent valuation.

                  Apr 08

                • CA-5.1.8.A

                  Positions in the bank's own eligible regulatory capital instruments are deducted from capital. Positions in other banks', securities firms', and other financial entities' eligible regulatory capital instruments, as well as intangible assets, are subject to the same treatment as that set down by the CBB for such assets held in the banking book (see Module PCD).

                  Added: January 2012

                • CA-5.1.9

                  This section provides banks with guidance on prudent valuation for positions that are accounted for at fair value, whether they are in the trading book or in the banking book. This guidance is especially important for positions without actual market prices or observable inputs to valuation, as well as less liquid positions which, although they will not be excluded from the trading book solely on grounds of lesser liquidity, raise supervisory concerns about prudent valuation. The valuation guidance set forth below is not intended to require banks to change valuation procedures for financial reporting purposes. The CBB will assess a bank's valuation procedures for consistency with this guidance. One factor in the CBB's assessment of whether a bank must take a valuation adjustment for regulatory purposes under Paragraphs CA-5.1.18.A to CA-5.1.20 is the degree of consistency between the bank's valuation procedures and these guidelines.

                  Added: January 2012

                • CA-5.1.9A

                  A framework for prudent valuation practices should at a minimum include the following:

                  Amended: January 2012
                  Apr 08

              • Systems and Controls

                • CA-5.1.10

                  Banks must establish and maintain adequate systems and controls sufficient to give management and CBB the confidence that their valuation estimates are prudent and reliable. These systems must be integrated with other risk management systems within the organisation (such as credit analysis). Such systems must include:

                  (a) Documented policies and procedures for the process of valuation. This includes clearly defined responsibilities of the various areas involved in the determination of the valuation, sources of market information and review of their appropriateness, guidelines for the use of unobservable inputs reflecting the bank's assumptions of what market participants would use in pricing position, frequency of independent valuation, timing of closing prices, procedures for adjusting valuations, end of the month and ad-hoc verification procedures; and
                  (b) Clear and independent (i.e. independent of front office) reporting lines for the department accountable for the valuation process. The reporting line should ultimately be to a main board executive director.
                  Amended: January 2012
                  Apr 08

              • Valuation Methodologies

                • Marking to Market

                  • CA-5.1.11

                    Marking-to-market is at least the daily valuation of positions at readily available close out prices that are sourced independently. Examples of readily available close out prices include exchange prices, screen prices, or quotes from several independent reputable brokers.

                    Apr 08

                  • CA-5.1.12

                    Banks must mark-to-market as much as possible. The more prudent side of bid/offer must be used unless the institution is a significant market maker in a particular position type and it can close out at mid-market. Banks should maximise the use of relevant observable inputs and minimise the use of unobservable inputs when estimating fair value using a valuation technique. However, observable inputs or transactions may not be relevant, such as in a forced liquidation or distressed sale, or transactions may not be observable, such as when markets are inactive. In such cases, the observable data should be considered, but may not be determinative.

                    Amended: January 2012
                    Apr 08

                • Marking to Model

                  • CA-5.1.13

                    Only where marking-to-market is not possible, should banks may mark-to-model, but this must be demonstrated to be prudent. Marking-to-model is defined as any valuation which has to be benchmarked, extrapolated or otherwise calculated from a market input.

                    Amended: January 2012
                    Apr 08

                  • CA-5.1.14

                    When marking to model, an extra degree of conservatism is appropriate. The CBB will consider the following in assessing whether a mark-to-model valuation is prudent:

                    (a) Senior management should be aware of the elements of the trading book or of other fair-valued positions which are subject to mark to model and should understand the materiality of the uncertainty this creates in the reporting of the risk/performance of the business;
                    (b) Market inputs should be sourced, to the extent possible, in line with market prices (as discussed above). The appropriateness of the market inputs for the particular position being valued should be reviewed regularly;
                    (c) Where available, generally accepted valuation methodologies for particular products should be used as far as possible;
                    (d) Where the model is developed by the institution itself, it should be based on appropriate assumptions, which have been assessed and challenged by suitably qualified parties independent of the development process. The model should be developed or approved independently of the front office. It should be independently tested. This includes validating the mathematics, the assumptions and the software implementation;
                    (e) There should be formal change control procedures in place and a secure copy of the model should be held and periodically used to check valuations;
                    (f) Risk management should be aware of the weaknesses of the models used and how best to reflect those in the valuation output;
                    (g) The model should be subject to periodic review to determine the accuracy of its performance (e.g. assessing continued appropriateness of the assumptions, analysis of P&L versus risk factors, comparison of actual close out values to model outputs); and
                    (h) Valuation adjustments should be made as appropriate, for example, to cover the uncertainty of the model valuation.
                    Amended: January 2012
                    Apr 08

                • Independent Price Verification

                  • CA-5.1.15

                    Independent price verification is distinct from daily mark-to-market. It is the process by which market prices or model inputs are regularly verified for accuracy. While daily marking-to-market may be performed by dealers, verification of market prices or model inputs should be performed by a unit independent of the dealing room, at least monthly (or, depending on the nature of the market/trading activity, more frequently). It need not be performed as frequently as daily mark-to-market, since the objective, i.e. independent, marking of positions, should reveal any error or bias in pricing, which should result in the elimination of inaccurate daily marks.

                    Apr 08

                  • CA-5.1.16

                    Independent price verification entails a higher standard of accuracy in that the market prices or model inputs are used to determine profit and loss figures, whereas daily marks are used primarily for management reporting in between reporting dates. For independent price verification, where pricing sources are more subjective, e.g. only one available broker quote, prudent measures such as valuation adjustments may be appropriate.

                    Apr 08

              • Valuation Adjustments

                • CA-5.1.17

                  As part of their procedures for marking to market, banks must establish and maintain procedures for considering valuation adjustments. The CBB expects banks using third-party valuations to consider whether valuation adjustments are necessary. Such considerations are also necessary when marking to model.

                  Amended: January 2012
                  Apr 08

                • CA-5.1.18

                  The CBB expects the following valuation adjustments/reserves to be formally considered at a minimum: unearned profit, close-out costs, operational risks, early termination, investing and funding costs, and future administrative costs and, where appropriate, model risk.

                  Apr 08

              • Adjustment to the Current Valuation of Less Liquid Positions for Regulatory Capital Purposes

                • CA-5.1.18.A

                  Banks must establish and maintain procedures for judging the necessity of and calculating an adjustment to the current valuation of less liquid positions for regulatory capital purposes. This adjustment may be in addition to any changes to the value of the position required for financial reporting purposes and should be designed to reflect the illiquidity of the position. The CBB expects banks to consider the need for an adjustment to a position's valuation to reflect current illiquidity whether the position is marked to market using market prices or observable inputs, third-party valuations or marked to model.

                  Added: January 2012

                • CA-5.1.19

                  Bearing in mind that the underlying 10-day assumptions made about liquidity in the market risk capital charge may not be consistent with the bank's ability to sell or hedge out less liquid positions, where appropriate, banks must take an adjustment to the current valuation of these positions, and review their continued appropriateness on an on-going basis. Reduced liquidity may have arisen from market events. Additionally, close-out prices for concentrated positions and/or stale positions should be considered in establishing the adjustment. Banks must consider all relevant factors when determining the appropriateness of the adjustments for less liquid positions. These factors may include, but are not limited to, the amount of time it would take to hedge out the position/risks within the position, the average volatility of bid/offer spreads, the availability of independent market quotes (number and identity of market makers), the average and volatility of trading volumes (including trading volumes during periods of market stress), market concentrations, the aging of positions, the extent to which valuation relies on marking-to-model, and the impact of other model risks not included in Paragraph CA-5.1.18.A.

                  Amended: January 2012
                  Apr 08

                • CA-5.1.20

                  [This Paragraph was deleted in January 2012]

                  Deleted: January 2012

            • CA-5.2 CA-5.2 Price Risk

              • CA-5.2.1

                The capital charge for price risk is 15% of the amount of the position (carrying value).

                Apr 08

              • CA-5.2.2

                For commodities exposure in Salam, the capital charge is computed at 15% of the net position in each commodity, plus an additional charge equivalent to 3% of the gross positions, long plus short, to cover basis risk and forward gap risk. The 3% capital charge is also intended to cater for potential losses in Parallel Salam when the seller in the original Salam contract fails to deliver and the bank has to purchase an appropriate commodity in the spot market to honour its obligation. Net positions in commodities are calculated as explained in section CA-5.6. In case of Istisna'a (see paragraph CA-3.4.24) 15% capital charge on net long or short position plus 3% capital charge on gross positions must apply.

                Apr 08

            • CA-5.3 CA-5.3 Equity Position Risk

              • Introduction

                • CA-5.3.1

                  The minimum capital requirement for equities is expressed in terms of two separately calculated charges, one relating to the "specific risk" of holding a long position in an individual equity, and the other to the "general market risk" of holding a long position in the market as a whole. Where the bank has invested in shares/units of equity funds on Mudaraba financing and the bank has direct exposures in the equities which are traded in a recognised stock exchange, the shares/units are considered to be subject to equity risk. The equity position would be considered to be the net asset value as at the reporting date.

                  Apr 08

              • Specific Risk Calculation

                • CA-5.3.2

                  Specific risk is defined as the bank's gross equity positions (i.e. the sum of all equity positions and is calculated for each country or equity market) and is calculated for each country or equity market. For each national market in which the bank holds equities, it should sum the market values of its individual net positions irrespective of whether they are long or short positions, to produce the overall gross equity position for that market.

                  Amended: January 2012
                  Apr 08

                • CA-5.3.3

                  The capital charge for specific risk is 8%.

                  Amended: January 2012
                  Apr 08

                • CA-5.3.4

                  [This Paragraph was deleted in January 2012]

                  Deleted: January 2012

              • General Risk Calculation

                • CA-5.3.5

                  The general market risk is calculated by first determining the difference between the sum of the long positions and the sum of the short positions (i.e. the overall net position) in each national equity market. In other words, to calculate the general market risk, the bank should sum the market value of its individual net positions for each national market, taking into account whether the positions are long or short.

                  Amended: January 2012
                  Apr 08

                • CA-5.3.6

                  The general market equity risk measure is 8% of the overall net position in each national market.

                  Amended: January 2012
                  Apr 08

            • CA-5.4 CA-5.4 Sukuk

              • Specific Risk for Sukuk

                • CA-5.4.1

                  In the case of Sukuk in the trading book, the specific risk charge must be provided on the RW of the issue and the term to maturity of the Sukuk, as follows:

                  Categories External credit assessment Specific risk capital charge
                  Government (including GCC governments)* AAA to AA- 0%
                  A+ to BBB- 0.25% (residual term to final maturity 6 months or less)

                  1.00% (residual term to final maturity greater than 6 and up to and including 24 months)

                  1.60% (residual term to final maturity exceeding 24 months)
                  BB+ to B- 8.00%
                  Below B- 12.00%
                  Unrated 8.00%
                  Qualifying   0.25% (residual term to final maturity 6 months or less)

                  1.00% (residual term to final maturity greater than 6 and up to and including 24 months)

                  1.60% (residual term to final maturity exceeding 24 months)
                  Other Similar to credit risk charges under the standardised approach, e.g.:
                  BB+ to BB- 8.00%
                  Below BB- 12.00%
                  Unrated 8.00%

                  * CBB has the discretion to apply a different specific risk weight to sukuk issued by certain foreign government.

                  Apr 08

              • General Market Risk for Sukuk

                • CA-5.4.2

                  The general market risk16 must be provided on the residual term to maturity or to the next repricing date, using a simplified form of the Maturity Method on the net positions in each time-band in accordance with the table below:

                  Residual term to maturity RW
                  1 month or less 0.00%
                  1-3 months 0.20%
                  3-6 months 0.40%
                  6-12 months 0.70%
                  1-2 years 1.25%
                  2-3 years 1.75%
                  3-4 years 2.25%
                  4-5 years 2.75%
                  5-7 years 3.25%
                  7-10 years 3.75%
                  10-15 years 4.50%

                  16 At the CBB's discretion, the bank may alternatively use the duration method as set out in the Market risk section of the Basel II Accord (June 2006).

                  Apr 08

                • CA-5.4.3

                  In the case of equity investments made by means of a Musharaka or a Mudaraba contract where the underlying assets are commodities, the market risk provisions for commodities, as described below, will be applicable.

                  Apr 08

            • CA-5.5 CA-5.5 Foreign Exchange Risk

              • Introduction

                • CA-5.5.1

                  This section describes the standardised method for calculation of the bank's foreign exchange risk, and the capital required against that risk.

                  Apr 08

                • CA-5.5.2

                  The measurement of the foreign exchange risk involves, as a first step, the calculation of the net open position in each individual currency including gold and/or silver and as a second step, the measurement of the risks inherent in the bank's mix of assets and liabilities positions in different currencies.

                  Apr 08

                • CA-5.5.3

                  A bank that holds net open positions (whether assets or liabilities) in foreign currencies is exposed to the risk that exchange rates may move against it. The open positions may be either trading positions or, simply, exposures caused by the bank's overall assets and liabilities. Where the bank is involved in option transactions, these must be agreed in advance with the CBB. The CBB will consider the appropriate treatment on a case by case basis.

                  Apr 08

                • CA-5.5.4

                  The open positions and the capital requirements are calculated with reference to the entire business (i.e. the banking and trading books).

                  Apr 08

                • CA-5.5.5

                  The open positions are calculated with reference to the bank's base currency, which will be either Bahraini Dinars (BD) or United States dollars (USD).

                  Apr 08

                • CA-5.5.6

                  In addition to foreign exchange risk, positions in foreign currencies may be subject to credit risk which should be treated separately. For the purposes of calculating "Foreign Exchange Risk" only, positions in those GCC currencies which are pegged to US$, will be treated as positions in US$.

                  Apr 08

              • De Minimis Exemptions

                • CA-5.5.7

                  A bank doing negligible business in foreign currencies and which does not take foreign exchange positions for its own account may, at the discretion of the CBB and as evidenced by the CBB's prior written approval, be exempted from calculating the capital requirements on these positions. The CBB is likely to be guided by the following criteria in deciding to grant exemption to any bank:

                  (a) The bank's holdings or taking of positions in foreign currencies, including gold and/or silver, defined as the greater of the sum of the gross asset positions and the sum of the gross liability position in all foreign positions and gold and/or silver, does not exceed 100% of its eligible capital; and
                  (b) The bank's overall net open position, as defined in CA-5.5.15 does not exceed 2% of its eligible capital.
                  Apr 08

                • CA-5.5.8

                  The criteria listed above are only intended to be guidelines, and a bank will not automatically qualify for exemptions upon meeting them. Banks doing negligible foreign currency business, which do not take foreign exchange positions for the bank's own account, and wish to seek exemption from foreign exchange risk capital requirements, should submit an application to the CBB, in writing. The CBB will have the discretion to grant such exemptions. The CBB may also, at its discretion, fix a minimum capital requirement for a bank that is exempted from calculating its foreign exchange risk capital requirement, to cover the risks inherent in its foreign currency business.

                  Apr 08

                • CA-5.5.9

                  The CBB may, at a future date, revoke an exemption granted to a bank, if the CBB is convinced that the conditions on which the exemption was granted no longer exist.

                  Apr 08

              • Calculation of Net Open Positions

                • CA-5.5.10

                  A bank's exposure to foreign exchange risk in any currency is its net open position in that currency, which is calculated by summing the following items:

                  (a) The net spot position in the currency (i.e. all assets items less all liability items, including accrued profit, other income and expenses, denominated in the currency in question; assets are included gross of provisions for bad and doubtful debts, except in cases where the provisions are maintained in the same currency as the underlying assets);
                  (b) The net forward position in the currency (i.e. all amounts to be received less all amounts to be paid under forward foreign exchange contracts, in the concerned currency);
                  (c) Guarantees and similar off-balance sheet contingent items that are certain to be called and are likely to be irrecoverable where the provisions, if any, are not maintained in the same currency;
                  (d) Profits (i.e. the net value of income and expense accounts) held in the currency in question; and
                  (e) Specific provisions held in the currency in question where the underlying asset is in a different currency, net of assets held in the currency in question where a specific provision is held in a different currency.
                  Apr 08

                • CA-5.5.11

                  For calculating the net open position in gold and/or silver, the bank must first express the net position (spot plus forward) in terms of the standard unit of measurement (i.e. ounces or grams) and then convert it at the current spot rate into the base currency.

                  Apr 08

                • CA-5.5.12

                  Where gold and/or silver are part of a forward contract (i.e. quantity of gold and/or silver to be received or to be delivered), any foreign currency exposure from the other leg of the contract should be reported.

                  Apr 08

              • Structural Positions

                • CA-5.5.13

                  Positions of a structural nature (i.e. non-dealing), may be excluded from the calculation of the net open currency positions. These may include:

                  (a) Positions taken deliberately in order to hedge, partially or totally, against the adverse effects of exchange rate movements on the bank's CAR;
                  (b) Positions related to items that are deducted from the bank's capital when calculating its capital base in accordance with the rules and guidelines in this Module, such as investments in non-consolidated subsidiaries; and
                  (c) Retained profits held for payout to parent, where the profits are held in the currency concerned.
                  Amended: October 2013
                  Apr 08

                • CA-5.5.14

                  The CBB will consider approving the exclusion of the above positions for the purpose of calculating the capital requirement, only if each of the following conditions is met:

                  (a) The concerned bank provides adequate documentary evidence to the CBB which establishes the fact that the positions proposed to be excluded are, indeed, of a structural nature (i.e. non-dealing) and are merely intended to protect the bank's CAR. For this purpose, the CBB may ask written representations from the bank's management or directors.
                  (b) Any exclusion of a position is consistently applied, with the treatment of the structural positions remaining the same for the life of the associated assets or other items.
                  Apr 08

              • Calculation of the Overall Net Open Position

                • CA-5.5.15

                  The net position in each currency is converted at the spot rate, into the reporting currency. The overall net open position must be measured by aggregating the following:

                  (a) The sum of the net liabilities positions or the sum of the net asset positions whichever is greater
                  (b) The net position (liabilities and assets) in gold and/or silver, regardless of sign.
                  Apr 08

                • CA-5.5.16

                  Where the bank is assessing its foreign exchange on a consolidated basis, it may be technically impractical in the case of some marginal operations to include the currency positions of a foreign branch or subsidiary of the bank. In such cases, the internal limit for that branch/subsidiary, in each currency, may be used as a proxy for the positions. The branch/subsidiary limits should be added, without regard to sign, to the net open position in each currency involved. When this simplified approach to the treatment of currencies with marginal operations is adopted, the bank should adequately monitor the actual positions of the branch/subsidiary against the limits, and revise the limits, if necessary, based on the results of the ex-post monitoring.

                  Apr 08

              • Calculation of the Capital Charge

                • CA-5.5.17

                  The capital charge is 8% of the overall net open foreign currency position.

                  Apr 08

                • CA-5.5.18

                  The table below illustrates the calculation of the overall net open foreign currency position and the capital charge:

                  Example of the calculation of the foreign exchange overall net open position and the capital charge

                  GBP DEM SAR US$ JPY GOLD and/or silver
                  +200 +100 +70 -190 -40 -50
                             
                  +370 -230 50

                  The capital charge is 8% of the higher of either the sum of the net long currency positions or the sum of the net short positions (i.e. 370) and of the net position in gold and/or silver (i.e. 50) = 420 @ 8% = 33.6

                  Apr 08

            • CA-5.6 CA-5.6 Commodities Risk

              • Introduction

                • CA-5.6.1

                  This section sets out the minimum capital requirements to cover the risk of holding or taking positions in commodities, including precious metals, but excluding gold and silver (which is treated as a foreign currency according to the methodology explained in section CA-5.5).

                  Apr 08

                • CA-5.6.2

                  The commodities position risk and the capital charges are calculated with reference to the entire business of a bank (i.e. the banking and trading books combined).

                  Apr 08

                • CA-5.6.3

                  The price risk in commodities is often more complex and volatile than that associated with currencies. Banks need to guard against the risk that arises when a liability (i.e. in a Parallel Salam transaction) position falls due before the asset position (i.e. a failure associated with or delay in the Salam contract). Owing to a shortage of liquidity in some markets, it might be difficult to close the Parallel Salam position and the bank might be "squeezed by the market". All these commodity market characteristics can result in price transparency and the effective management of risk.

                  Apr 08

                • CA-5.6.4

                  All contracts (Salam, Musharakah or Mudarabah) involving commodities as defined in chapters CA-3.3, CA-3.6 and CA-3.7 are subject to commodities risk and a capital charge as per the relevant provisions must be computed.

                  Apr 08

                • CA-5.6.5

                  Banks should adopt either the simplified approach to calculate their commodities risk and the resultant capital charges or the maturity ladder approach.

                  Apr 08

              • Calculation of Commodities Positions

                • CA-5.6.6

                  Banks must first express each commodity position (i.e. Salam and Parallel Salam) in terms of the standard unit of measurement (i.e. barrels, kilograms, grams, etc). Assets and liabilities positions in a commodity are reported on a net basis for the purpose of calculating the net open position in that commodity. For markets which have daily delivery dates, any contracts maturing within ten days of one another may be offset. The net position in each commodity is then converted, at spot rates, into the bank's reporting currency.

                  Apr 08

                • CA-5.6.7

                  Positions in different commodities cannot be offset for the purpose of calculating the open-positions as described above. However, where one or more sub-categories17 of the same category are in effect and are directly deliverable against each other, netting between those sub-categories is permitted. Furthermore, if two or more sub-categories of the same category is considered as close substitutes for each other, and minimum correlation of 0.9 between their price movements is clearly established over a minimum period of one year, the bank may, with the prior written approval of the CBB, net positions in those sub-categories.


                  17 Commodities can be grouped into clan, families, sub-groups and individual commodities. For example a clan might be Energy Commodities, within which Hydro-Carbons is a family with Crude Oil being a sub-group and West Texas Intermediate, Arabian light and Brent being individual commodities.

                  Apr 08

                • CA-5.6.8

                  Banks, which wish to net positions based on correlation (in the manner discussed above), must satisfy the CBB of the accuracy of the method which it proposes to adopt.

                  Apr 08

              • Maturity Ladder Approach

                • CA-5.6.9

                  A worked example of the maturity ladder approach is set out in Appendix CA-3 and the table below illustrates the maturity time-bands of the maturity ladder for each commodity.

                  Apr 08

                • CA-5.6.10

                  The steps in the calculation of the commodities risk by the maturity ladder approach are:

                  (a) The net positions in individual commodities, expressed in terms of the standard unit of measurement, are first slotted into the maturity ladder. Physical stocks are allocated to the first-time band. A separate maturity ladder is used for each commodity.
                  (b) Asset and liability positions in the same time-band are matched. The sum of the matched asset and liability positions is multiplied first by the spot price of the commodity, and then by a spread of 1.5% for each time-band as set out in the table below. This represents the capital charge in order to capture all risks within a time-band (which, together, are sometimes referred to as curvature risk).
                  Time band18
                  0-1 months
                  1-3 months
                  3-6 months
                  6-12 months
                  1-2 years
                  2-3 years
                  over 3 years

                  18 Instruments, where the maturity is on the boundary of two maturity time-bands, should be placed into the earlier maturity band. For example, instruments with a maturity of exactly one-year are placed into the 6 to 12 months time-band.

                  Apr 08

                • CA-5.6.11

                  The residual (unmatched) net positions from nearer time-bands are then carried forward to offset opposite positions (i.e. asset against liability and vice versa) in time bands that are further out. However, a surcharge of 0.6% of the net position carried forward is added in respect of each time-band that the net position is carried forward, to recognise that such management of positions between different time-bands is imprecise. The surcharge is in addition to the capital charge for each matched amount created by carrying net positions forward, and is calculated as explained in step (b) above.

                  Apr 08

                • CA-5.6.12

                  At the end of step (c), there will be either asset or liability positions, to which a capital charge of 15% will apply. The CBB recognises that there are differences in volatility between different commodities, but has, nevertheless, decided that one uniform capital charge for open positions in all commodities shall apply in the interest of simplicity of the measurement, and given the fact that banks normally run rather small open positions in commodities. Banks will be required to submit in writing, details of their commodities business in order to capture the market risk on this business and to enable the CBB to evaluate whether the models approach should be adopted by the bank.

                  Apr 08

          • CA-6 CA-6 Operational Risk

            • CA-6.1 CA-6.1 Definition of Operational Risk

              • CA-6.1.1

                Operational risk is defined as the risk of loss resulting from inadequate or failed internal processes, people and systems or from external events which includes but is not limited to, legal risk and Sharia compliance risk. This definition excludes strategic and reputational risk.

                Apr 08

              • CA-6.1.2

                Sharia compliance risk is an operational risk facing Islamic banks which can lead to non-recognition of income and resultant losses.

                Apr 08

            • CA-6.2 CA-6.2 The Measurement Methodologies

              • CA-6.2.1

                The framework outlined below presents two methods for calculating operational risk capital charges in a continuum of increasing sophistication and risk sensitivity:

                (a) The Basic Indicator Approach; and
                (b) The Standardised Approach.
                Amended: April 2011
                April 2008

              • CA-6.2.2

                A bank will not be allowed to choose to revert to basic indicator approach once it has been approved for standardised approach without CBB's approval. However, if CBB determines that a bank using the standardised approach no longer meets the qualifying criteria for the standardised approach, it may require the bank to revert to the basic indicator approach for some or all of its operations, until it meets the conditions specified by the CBB for returning to the standardised approach.

                Apr 08

              • Basic Indicator Approach

                • CA-6.2.3

                  Banks using the Basic Indicator Approach must hold capital for operational risk equal to the average over the previous three years of a fixed percentage (denoted alpha) of positive annual gross income. Figures for any year in which annual gross income is negative or zero should be excluded from both the numerator and denominator when calculating the average.19 The charge may be expressed as follows:

                  KBIA = [Σ (GI1..n α n)]/n

                  where:

                  KBIA = the capital charge under the Basic Indicator Approach

                  GI = annual gross income, where positive, over the previous three years (audited financial years)

                  N = number of the previous three years for which gross income is positive

                  α = 15%, relating the industry wide level of required capital to the industry wide level of the indicator.


                  19 If negative gross income distorts a bank's Pillar 1 capital charge, CBB will consider appropriate supervisory action.

                  Apr 08

                • CA-6.2.4

                  The extent of losses arising from non-compliance with Sharia rules and principles cannot be ascertained owing to the lack of data. Therefore, banks are not required to set aside any additional amount over and above the 15% of average annual gross income over the preceding three years for operational risk.

                  Apr 08

                • CA-6.2.5

                  Gross income is defined as:

                  (a) Net income from financing activities which is gross of any provisions, operating expenses, realised profits/losses from the sale of securities in the banking book, and depreciation of Ijarah assets;
                  (b) Net income from investment activities; and
                  (c) Fee income (e.g. commission and agency fee)

                  Less;
                  (d) Investment account holders' share of income
                  (e) Takaful income
                  In case of a bank with negative gross income for the previous three years, a newly licensed bank with less than 3 years of operations, or a merger, acquisition or material restructuring, the CBB shall discuss with the concerned licensed bank an alternative method for calculating the operational risk capital charge. For example, a newly licensed bank may be required to use the projected gross income in its 3-year business plan. Another approach that the CBB may consider is to require such licensed banks to observe a higher CAR.
                  Apr 08

                • CA-6.2.6

                  Gross income includes income attributable to restricted and unrestricted Profit Sharing Investment Accounts' funds, but excludes extraordinary or exceptional income. Net income from investment activities includes the bank's share of profit from Musharakah and Mudarabah financing activities.

                  Apr 08

                • CA-6.2.7

                  Banks applying this approach are encouraged to comply with the principles set in section OM-1.2 of Operational Risk Management Module.

                  Apr 08

              • The Standardised Approach

                • CA-6.2.8

                  In the Standardised Approach, banks' activities are divided into eight business lines: corporate finance, trading & sales, retail banking, commercial banking, payment & settlement, agency services, asset management, and retail brokerage. The business lines are defined in detail in Appendix CA-4. The bank must meet the requirements detailed in section OM-1.3 to qualify for the use of standardised approach.

                  Apr 08

                • CA-6.2.9

                  Within each business line, gross income is a broad indicator that serves as a proxy for the scale of business operations and thus the likely scale of operational risk exposure within each of these business lines. The capital charge for each business line is calculated by multiplying gross income by a factor (denoted beta) assigned to that business line. Beta serves as a proxy for the industry-wide relationship between the operational risk loss experience for a given business line and the aggregate level of gross income for that business line. It should be noted that in the Standardised Approach, gross income is measured for each business line, not the whole institution, i.e. in corporate finance, the indicator is the gross income generated in the corporate finance business line.

                  Apr 08

                • CA-6.2.10

                  The total capital charge is calculated as the three-year average of the simple summation of the regulatory capital charges across each of the business lines in each year. In any given year, negative capital charges (resulting from negative gross income) in any business line can not off-set positive capital charges in other business lines. Where the aggregate capital charge across all business lines within a given year is negative, then the input to the numerator for that year will be zero.20 The total capital charge may be expressed as:

                  K TSA=years 1-3 max[(GI1-81-8, 0] }/3

                  where:

                  KTSA = the capital charge under the Standardised Approach
                  GI 1-8 = annual gross income in a given year, as defined above in the Basic Indicator Approach, for each of the eight business lines
                  β1-8 = a fixed percentage, relating the level of required capital to the level of the gross income for each of the eight business lines.
                  The values of the betas are detailed below.

                  Business Lines Beta Factors (%)
                  Corporate Finance (β1) 18
                  Trading and Sales (β2) 18
                  Retail Banking (β3) 12
                  Commercial Banking (β4) 15
                  Payment and Settlement (β5) 18
                  Agency Services (β6) 15
                  Asset Management (β7) 12
                  Retail Brokerage (β8) 12

                  20 As under the Basic Indicator Approach, if negative gross income distorts a bank's Pillar 1 capital charge under the Standardised Approach, CBB will consider appropriate supervisory action.

                  Apr 08

          • CA-7 CA-7 Profit Sharing Investment Accounts

            • CA-7.1 CA-7.1 Profit Sharing Investment Accounts

              • CA-7.1.1

                This chapter deals with the capital adequacy requirement for assets financed by Profit Sharing Investment Accounts (PSIA), a pool of investment funds placed with an Islamic bank on the basis of Mudarabah.

                Apr 08

              • CA-7.1.2

                The PSIA (commonly referred to as "investment accounts" or "special investment accounts") can be further categorised into:

                (a)Unrestricted PSIA; and
                (b)Restricted PSIA.
                Apr 08

              • CA-7.1.3

                The bank has full discretionary powers in making investment decisions for unrestricted PSIAs. However, the placement of funds in restricted PSIA's by the bank is subject to investment criteria specified by the bank, or by the customer, in the Mudarabah contract, or agreed between the investment account holders (IAH) and the bank at the time of contracting.

                Apr 08

              • CA-7.1.4

                The bank assumes the role of an economic agent or Mudarib in placing such funds in income-producing assets or economic activities, and as such is entitled to a share (the Mudarib share) in the profits (but not losses) earned on funds managed by it on behalf of the IAH, according to a pre-agreed ratio specified in the Mudarabah contract.

                Apr 08

              • Reserves

                • CA-7.1.5

                  The bank can take precautionary steps by setting up prudential reserve accounts to minimise the adverse impact of income smoothing for PSIA on its shareholders' returns and to meet unexpected losses (UL) that would be borne by the IAH on investments financed by PSIA, namely:

                  •   Profit equalisation reserve (PER)

                  PER comprises of allocations from the gross income21 of the Mudarabah to be available for smoothing returns paid to the investment account holders and the shareholders, and consists of a PSIA portion and a shareholder's portion; and/or
                  •   Investment risk reserve (IRR)

                  IRR comprises amounts appropriated out of the income of investment account holders after deduction of the Mudarib share of income, to meet any potential future losses on the investments financed by the PSIA.

                  21 In some countries, the appropriation of income is to be made out of after tax income.

                  Apr 08

          • CA-8 CA-8 Gearing Requirements

            • CA-8.1 CA-8.1 Gearing

              • CA-8.1.1

                The content of this Chapter is applicable to locally incorporated banks and Bahrain retail bank branches of foreign banks.

                Apr 08

              • Measurement

                • CA-8.1.2

                  The Gearing ratio is measured with reference to the ratio of deposit liabilities against the bank's capital and reserves as reported in its PIRI.

                  Apr 08

              • Gearing Limit

                • CA-8.1.3

                  For Retail Bank and Wholesale bank licensees, deposit liabilities should not exceed 20 times the respective bank's capital and reserves.

                  Apr 08

      • CM CM Credit Risk Management

        • CM-A CM-A Introduction

          • CM-A.1 CM-A.1 Purpose

            • CM-A.1.1

              The purpose of this module is to provide a checklist of the key elements of a sound credit risk management system which supervisors can expect their banks to observe.

            • CM-A.1.2

              This module provides support for certain other parts of the Rulebook, mainly:

              (a) Principles of Business;
              (b) BMA Reporting Requirements;
              (c) Audit Firms;
              (d) Public Disclosure;
              (e) High Level Controls; and
              (f) Capital Adequacy.

          • CM-A.2 CM-A.2 Key requirements

            • CM-A.2.1

              Branches of foreign banks in Bahrain are expected to maintain provisions against potential credit losses on their books in Bahrain. Head offices of banks that do not wish to maintain provisions on books of their branch(es) in Bahrain should advise the Agency, on an annual basis and in writing, of the amount of provisions set aside for the bad debts of Bahrain branch(es).

            • CM-A.2.2

              The Agency requires all banks incorporated in Bahrain to set out their policy on large exposures, including limits for differing types of exposures to individual customers, banks, corporates, countries and economic and market sectors, in a policy statement which should be formally approved by the Board of Directors.

            • CM-A.2.3

              The aggregate of large exposures may not exceed 800% of the bank's (consolidated) capital base. A bank may not incur a combined exposure (funded by unrestricted investment accounts, the bank's own funds and restricted investment accounts) to an individual counterparty or group of closely related counterparties which exceeds 35% of the reporting bank's (consolidated) capital base.

            • CM-A.2.4

              The aggregate exposures to all connected counterparties when taken together, may not exceed 60% of (consolidated) capital base.

            • CM-A.2.5

              No Islamic financing provided by a bank to its own external auditors shall be permitted.

            • CM-A.2.6

              All banks incorporated in Bahrain are required to report (for the attention of the Director of Financial Institutions Supervision Directorate) all large exposures, (whether exempt or not) on a quarterly basis using the return provided in Appendix BR 3.

            • CM-A.2.7

              The Agency's prior written consent should be obtained for any credit facility to an employee where the amount of such facility, either singly or when added to an existing facility/existing facilities outstanding to that employee at that date, would be equal to or in excess of BD 100,000 (or its equivalent).

            • CM-A.2.8

              Licensees may only provide a new consumer facility (or renew, extend or otherwise modify an existing consumer facility) for an amount such that the counterparty's total monthly repayments on all his consumer finance commitments do not exceed 50% of his monthly gross income.

            • CM-A.2.9

              Licensees must make clear to potential counterparties, prior to entering into a consumer finance agreement, all relevant key terms of the agreement.

            • CM-A.2.10

              The Agency's prior written consent should be obtained before writing off any credit facility provided to senior employee/officer/Director of the reporting bank or other bank(s) who fails to discharge his/her repayment obligations to the reporting bank.

            • CM-A.2.11

              The bank should notify the Agency of any write-off of a credit facility, (i.e., Murabaha or any other credit facility) of an amount in excess of BD 100,000 (or its equivalent).

          • CM-A.3 CM-A.3 Regulation history

            • CM-A.3.1

              This module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

            • CM-A.3.2

              A list of most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              CM-2.2 1/10/05 Role of Internal audit becomes a rule
              CM-7.4 1/10/05 Clarification re non-compliant facilities
                   
                   
                   

            • Evolution of the Module

              • CM-A.3.3

                Prior to the development of this Rulebook, the Agency had issued various circulars representing regulations covering different aspects of credit risk management. These circulars have now been consolidated into one module covering the credit risk management regulation. These circulars and their evolution into this module are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                BC/3/98 21 Feb 1998 CM-B.2 Basel Committee on Banking Supervision Framework for the Evaluation of Internal Controls Systems
                BC/117/95
                (partial)
                1 Feb 1995 CM-1CM-3 Risk Management
                OG/127/01 18 Mar 2001 CM-2 Developing a Sound Credit Culture
                OGD/27/88 9 Feb 1988 CM-3.4 Provisions Against Country Debt
                PIRI Pack - - - - - CM-4 Prudential Information Returns for Islamic Financial Institutions
                EDBC/178/96 5 Oct 1996 CM-5 Islamic Facilities
                OG/45/88 13 Mar 1988 CM-6.1 Write-Off–Credit Facility
                OG/50/92
                (partial)
                4 Mar 1992 CM-7.1CM-7.2 Consumer Finance
                PIRI Pack - - - - - CM-8 Prudential Regulations for Islamic Financial Institutions
                EDBC/105/96 26 June 1996 CM-8.3 Mudaraba Contracts — Minimum Terms and Conditions
                BC/4/99 17 Mar 1999 CM-9.1 Annual Accounts for the Year Ending 31 December 1999

            • Effective date

              • CM-A.3.4

                The contents in this module are effective from the date depicted in the original circulars (see paragraph CM-A.3.3) from which the requirements are compiled.

        • CM-B CM-B General guidance and best practice

          • CM-B.1 CM-B.1 Introduction

            • CM-B.1.1

              This chapter provides general guidance on the subject matter of this Module. These guidance could be in the form of papers / reports or other source of information issued by international bodies.

            • CM-B.1.2

              These guidance promote best practice and could generally be applied by all licensees to their activities.

            • CM-B.1.3

              Where applicable, the sources provided in this chapter should be used as an aid to reading the contents of this module.

          • CM-B.2 CM-B.2 Guidance provided by other international bodies

            • Basel Committee: Principles for the Management of Credit Risk

              • CM-B.2.1

                The paper (see www.bis.org/publ/bcbs75.pdf) which contains 17 principles, encourages banking supervisors globally to promote sound practices for managing credit risks in banking activities.

              • CM-B.2.2

                Throughout the module, references have been made to this paper and it is recommended that the regulations in this module be followed in conjunction with the guidelines presented in this paper.

            • Counterparty Risk Management Policy Group (CRMPG): Improving Counterparty Risk Management

              • CM-B.2.3

                The objective of this report (see www.isda.org/educat/pdf/CRMPG-report6-99.pdf), which was developed by a committee of market practitioners in the wake of the 1998 market disruptions, discusses counterparty credit risk and market risk management practices and how they can be enhanced.

              • CM-B.2.4

                The report covers four subject areas: transparency and counterparty credit assessments; risk measurement, management, and reporting; market practices and conventions; and regulatory reporting.

              • CM-B.2.5

                Of particular interest to risk managers is guidance provided in two areas, one on liquidity risk and leverage, and the other on counterparty credit exposure estimation.

            • Basel Committee: Framework for Internal Controls Systems in Banking Organisations

              • CM-B.2.6

                The paper (see www.bis.org/publ/bcbs40.pdf) issued in September 1998 presents the first internationally accepted framework for supervisors to use in evaluating the effectiveness of the internal controls over all on and off balance sheet activities of banking organizations.

              • CM-B.2.7

                The paper describes elements that are essential to a sound internal control system, recommends principles that supervisors can apply in evaluating such systems, and discusses the role of bank supervisors and external auditors in this assessment process.

          • CM-B.3 CM-B.3 Enforceability

            • CM-B.3.1

              This guidance should not be taken as legally binding requirements, unless otherwise embodied in Bahrain law or by regulation.

            • CM-B.3.2

              It should be noted that the provisions in this chapter are to be taken as guidance by the licensees in order to promote sound credit risk management practices.

        • CM-1 CM-1 General procedures

          • CM-1.1 CM-1.1 Overview

            • CM-1.1.1

              Credit risk is the likelihood that counterparty of the bank will not meet its obligations in accordance with the agreed terms. The magnitude of the credit risk depends on the likelihood of default by the counterparty, and on the potential value of the bank's contracts with the customer at the time of default. Credit risk largely arises in assets shown on the balance sheet, but it can also show up off the balance sheet in a variety of contingent obligations.

            • CM-1.1.2

              Exposure to credit risk, notably in the form of traditional bank financing, has historically been the most frequent source of bank problems. The assessment of credit risk is a challenging task where bankers are often faced with making decisions based on outdated or partial information.

            • CM-1.1.3

              The lack of continuous credit supervision and effective internal controls, or the failure to identify abuse and fraud are also sources of risk. The overall lending policy of the bank should be monitored by a Credit Committee composed of officers with adequate seniority and experience.

          • CM-1.2 CM-1.2 Credit analysis

            • CM-1.2.1

              Proper credit risk management will help banks to discipline their lending activities and ensure that credit facilities are granted on a sound basis, and that bank funds are invested in a profitable manner. The process of managing credit risk starts at the origination of the credit facility. Standards for credit analysis should stress the borrower's ability to meet his future financial needs through analysis of his cash-flow generation capacity.

            • CM-1.2.2

              Measurement of credit risk is complicated by the fact that both credit exposures and the likelihood of default can vary over time and may be interdependent. The creditworthiness of customers shifts, as reflected in credit rating upgrades and downgrades. Customers that originally are highly rated are more likely to default later in a credit facilities' life than earlier.

            • CM-1.2.3

              Banks should properly assess the inherent risk factor of each credit facility; monitor the risks arising from any portfolio concentration; and ensure that appropriate precautions against losses have been taken in the form of collateral and/or provisioning as described in chapter CM-2.

          • CM-1.3 CM-1.3 Credit policy

            • CM-1.3.1

              A properly documented credit policy is an essential element of and prerequisite for the credit risk management process. Consistent with the Board's objectives, it assists bank management in the maintenance of proper credit standards and the avoidance of unnecessary risks.

            • CM-1.3.2

              It is prudent to review the credit policy regularly to ensure that once it is established, it remains flexible enough to be current and continues to accomplish its original purpose taking into consideration market developments.

            • CM-1.3.3

              Explicit guidelines in credit policy provide the basis for effective credit portfolio management. A sound credit policy should consider which types of credit products and borrowers the bank is looking for and the underwriting standards the bank will utilize.

            • CM-1.3.4

              A bank's credit policy should address all credit matters of significance including:

              (a) objectives of credit monitoring;
              (b) organisation and reporting structure of the credit department;
              (c) designated markets and products;
              (d) establishment of a credit limit framework;
              (e) guidelines for assessment of concentration;
              (f) authorisation procedures for the advancement of credit;
              (g) establishment of credit committees;
              (h) establishment of desirable pricing levels and criteria; and
              (i) problem credit identification and administration.

            • CM-1.3.5

              After the credit facility has been granted, its performance should be monitored at regular intervals. This includes an appropriate periodic review of financial statements, a reassessment of collateral and update of appraisals, and attentive monitoring of conditions in the borrower's industry. Credit supervision constitutes the first line of detection of difficulties and provides the bank with an opportunity to address problems before losses are sustained.

        • CM-2 CM-2 Developing a sound credit culture

          • CM-2.1 CM-2.1 Overview

            • CM-2.1.1

              Credit culture is defined as the sum total of a bank's approach to managing credit risk, including business strategy, credit policy, shared assumptions about credit, the effectiveness of communications, and the composition and quality of the resulting credit portfolio.

            • CM-2.1.2

              As a matter of best practice, all banks should periodically review their credit cultures in order to reduce future credit losses and also to minimise reputational risk and damage to their credit ratings.

            • CM-2.1.3

              The Agency draws all licensed banks' attention to the September 2000 document issued by the Basel Committee entitled "Principles for the Management of Credit Risk". This document contains 17 principles which all banks should ensure are covered in their credit culture (i.e. policies, procedures, systems and controls) (see www.bis.org/publ/bcbs75.pdf).

            • CM-2.1.4

              Effective from the date of the original circular (see section CM-A.3), the Agency has used the Basel document mentioned above as a guideline in its evaluation of the credit cultures of banks operating in Bahrain. Evaluation is conducted through prudential meetings, inspection and reporting accountants' reviews.

          • CM-2.2 CM-2.2 Elements of a strong credit culture

            • CM-2.2.1

              First, the regulation in this section is recommendatory in nature (except for the requirement in paragraph CM-2.2.2 (a) & (e) below), and the guidelines below under the five headings are indicative of best practice. Some of the guidelines may not be appropriate to all relevant licensees. However, if a bank is not following these guidelines, it should consider why it is not doing so.

            • CM-2.2.2

              Secondly, the regulation in this section is intended as a complement to the September 2000 Paper by the Basel Committee entitled "Principles for the Management of Credit Risk" (see section CM-B.2). This section does not summarise the Basel Paper, but is intended to be read in conjunction with the above Paper.

              (a) The Role of the Board of Directors

              The Board of Directors must approve all the operating policies of a bank (see principle 1 of Basel Committee paper "Framework for Internal Controls Systems in Banking Organisations" — section CM-B.2).


              Given that credit risk is still the major risk that banks are exposed to in their business, particular scrutiny must be paid to credit policies, in terms of various limits as well as in terms of risk strategy. An essential function of the Board is to review and reassess the credit policies of the bank (including collateral, provisioning policies and concentration policies) on a periodic basis. The Board should also regularly review overdue and large facilities both in terms of performance, and also in relation to the capital (base) of the bank. The Board should insist upon periodic review/evaluation of internal systems and control weaknesses identified by external/internal auditors and management. Principle 1 of the Basel Committee paper "Principles for the Management of Credit Risk" (see section CM-B.2) also gives greater detail on the role of the Board in developing a sound credit culture.
              (b) The Role of the senior management

              Senior Management should be involved in regular reviews of outstanding facilities and overdue accounts as well as reviewing changes in activity, turnover or balances in clients' accounts. The role of senior management is covered in depth in Principle 2 of Basel Committee paper "Principles for the Management of Credit Risk" — section CM-B.2 (see also Principle 3 of Basel Committee paper "Framework for Internal Controls Systems in Banking Organisations" — section CM-B.2). However, Senior Management should be involved in the credit review process of (larger) existing facilities, visiting clients, requesting up to date financial statements and verifying collateral. Too often, a lack of direct contact by senior management with a problem client has been an identified factor in significant credit losses by banks, whether by way of fraud, or corporate failure.
              (c) Role of an Independent Risk Management Function

              Perhaps the key point to emphasise in Risk Management is that the function must be independent of the senior management and operational functions which are related to business acquisition. The Risk Management function should report to the Board or to senior management related to control functions. The Risk Management function must not only monitor risk, but also control it (i.e. review limits, excesses etc). It must also ensure that risk monitoring systems accurately measure risk in the first place, and that all risks where they occur are, correctly identified (see also Principle 6 of Basel Committee paper "Framework for Internal Controls Systems in Banking Organisations" — section CM-B.2).
              (d) Effective Internal Systems and Controls

              Well implemented sound policies and procedures maintain credit standards, enable monitoring and control of credit risk, and identify problem credits in a timely manner (see Principle 2 of Basel Committee paper "Principles for the Management of Credit Risk" — section CM-B.2 for more detail). Sound policy and administrative requirements also apply equally strongly to existing facilities as well as new ones (see Principle 8 of Basel Committee paper "Principles for the Management of Credit Risk" — section CM-B.2). Policies and procedures should allow a thorough understanding of the counterparty, the purpose of the credit facility and the source of repayment (Principle 4 of Basel Committee paper "Principles for the Management of Credit Risk" — section CM-B.2) to be gained by the Risk Management function in its assessment of the counterparty for risk profiling purposes, (see also Principle 6 of Basel Committee paper "Framework for Internal Controls Systems in Banking Organisations" — section CM-B.2 and section E of the paper issued by the Counterparty Risk Management Policy Group — "Improving Counterparty Risk Management" — see section CM-B.2). Banks should seek to utilise internal rating systems to manage credit risk and to set adequate provisions on a timely basis (see Principle 10 of Basel Committee paper "Framework for Internal Controls Systems in Banking Organisations" — section CM-B.2).
              (e) The Role of Internal Audit

              Internal audit function should, on an on-going basis, monitor the system of internal controls because it provides an independent assessment of the adequacy of, and compliance with, the established policies and procedures. Internal audit function must report directly to the highest levels of the banking organisation, typically the Board of Directors or its audit committee, and to senior management. This allows for the proper functioning of corporate governance by giving the Board information that is not biased in any way by the levels of management that the reports cover.

          • CM-2.3 CM-2.3 Name-financing

            • CM-2.3.1

              Banks are exposed to credit risk when they provide large credit facilities on a "clean" basis (i.e. without collateral or security). This risk is amplified, specifically, when such clean name financing is made without adequate (up to date) financial information.

            • CM-2.3.2

              In many banks there is a tendency to indulge in "name-financing" without any credit analysis or understanding of the concerned counterparty's current outstanding facilities from other banks. The Agency strongly discourages the banks to engage in such activities in order to minimise their credit risk and reputation risk.

        • CM-3 CM-3 Assessment of credit quality

          • CM-3.1 CM-3.1 Overview

            • CM-3.1.1

              A realistic assessment of credit quality is an essential feature of effective credit risk management. The starting point for a systematic review of credit quality is a comprehensive review of the bank's written credit policies and practices. These include, but are not limited to:

              (a) credit approval procedures;
              (b) credit underwriting criteria; and
              (c) credit administration process.

            • CM-3.1.2

              Credit quality is a relative concept based on performance prospects and external variables. Trends in the economy, and changes in markets and prices of goods affect the evaluation of credit facility repayment value. Assessing credit risk is a dynamic concept which needs to take into account the business cycle and the economic environment.

            • CM-3.1.3

              The objectives of the credit assessment are to determine:

              (a) whether the applicant / customer will have sufficient future liquid resources to honour credit obligations according to the agreed terms;
              (b) whether the applicant's / customer's present and future prospects indicate that they will continue as a going concern in the foreseeable future;
              (c) is the applicant / customer of sufficient integrity; and
              (d) to what extent does any security offered affect the risk inherent in the facility.

            • CM-3.1.4

              To help improve prudential oversight of credit quality, the Agency, in this Module, seeks to establish a set of broad rules that are useful in identifying and containing the impact of impaired assets within banks.

          • CM-3.2 CM-3.2 Credit grading system

            • CM-3.2.1

              The banks should have in place appropriate credit grading systems (classification) to help assess asset quality and credit exposures including performing receivables.

            • CM-3.2.2

              Credit grading systems offer a number of benefits. Analysis of a bank's entire book can reveal important insights to bank's management in the functioning and ultimately the health of the bank. Credit grading systems provide the means for a more systematic assessment of asset quality. They are particularly useful in assisting in the early detection of asset quality problems within a bank by highlighting credit with above normal risks.

            • CM-3.2.3

              The Agency does not favour the imposition of a standard credit grading system for all banks. Instead, the Agency will rely, wherever possible, upon the credit grading system adopted by each bank. This preference reflects the fact that banks generally have devoted significant resources to developing grading systems that best fit their individual product mix.

            • CM-3.2.4

              Each bank is hence required to provide to the Agency a statement of its current policy in respect of its credit grading system (including definitions used to classify exposures). Banks that do not intend to implement a credit grading system should indicate to the Agency their reason for not doing so. The Agency expects to have the endorsement of the Board of the bank concerned.

            • CM-3.2.5

              Banks looking to implement a credit grading system, or to update their current system, should consider the following points:

              (a) The system should cover a broad range of the bank's asset portfolio, including unrestricted investment accounts, restricted investment accounts and other off balance sheet exposures;
              (b) The system should cover both performing and impaired assets — it is common for grading systems to have sufficient range of grades, covering exposures with the lowest risk to those where losses are expected;
              (c) Banks should detail credit grading system in a credit policy statement, and should develop procedures for the determination and regular review of the credit risk grades;
              (d) Banks should establish formal forums in the form of committees to review the compliance with the credit policy parameters and the concentration of exposure attributable to various economic and industrial sectors in accordance with the credit policy;
              (e) Particular attention should be given to those facilities which involve a higher normal risk, or which are impaired;
              (f) It is imperative that the policies relating to the provisioning for Islamic banks should be clearly laid down, fully identifying provisions relating to assets financed by own funds and those by the investment account holders; and
              (g) Facilities should, at minimum, include four categories along the following lines:
              (i) "Standard credits" are those, which are performing, as the contract requires. There is no reason to suspect that the creditor's financial condition or collateral adequacy has depreciated in any way. The bank is very likely to extend additional funds to this borrower if requested (subject to internal or legal credit restrictions);
              (ii) "Substandard credits" are inadequately protected by the paying capacity of the obligor or by the collateral pledged. They are characterized by the distinct possibility that the bank will sustain some loss if the deficiencies are not corrected. Loss potential, while existing in the aggregate amount of Substandard assets does not have to exist in individual assets classified Substandard;
              (iii) "Doubtful credits" have all the weaknesses inherent in a credit classified as Substandard with the added characteristic that the weaknesses make collection or liquidation in full, on the basis of currently existing facts, conditions, and values, highly questionable or improbable. The possibility of Loss is extremely high, but because of certain important and reasonably specific pending factors which may work to the advantage and strengthening of the asset, its rating as an estimated Loss is deferred until its more exact status may be determined;
              (iv) "Loss credits" are considered uncollectible and of such little value that their continuance as assets is not warranted. The rating does not mean that the asset has absolutely no recovery or salvage value, but rather that it is not practical or desirable to defer writing off this basically worthless asset even though partial recovery may be affected in the future.

          • CM-3.3 CM-3.3 Impairment of assets and provisioning

            • Impairment of assets

              • CM-3.3.1

                Banks are required to place on a non-accrual basis any facility where there is reasonable doubt about the collectability of the receivable irrespective of whether the customer concerned is currently in arrears or not. This acknowledges the reality that recognition of impaired assets will have a high degree of subjectivity attached to it.

              • CM-3.3.2

                Impaired assets should be classified into one of the following categories:

                (a) Non accrual items;
                (b) Restructured items; or
                (c) Other assets acquired through security enforcement, including "other real estate owned".

              • CM-3.3.3

                For the purpose of this Module, The following definition of non-accrual items applies:

                (a) Financing facilities and investments where there is reasonable doubt about the ultimate collectability of principal within a time frame established by the bank. Non-accruals would include all facilities against which a specific provision has been established, or a write-off taken even if the facility is not in breach of contractual requirements. Refer to AAOIFI's FAS 11 on recognition of provisions and reserves.
                (b) Financing facilities and investments, not included in (a), where contractual payments of the principal are 90 or more consecutive days in arrears, and where the "fair value" of security is insufficient to cover repayment. In line with the principles outlined above, a facility should be classified as non-accruing earlier than 90 days where it is evident that full, or partial repayment of the amount is unlikely even though the full extent of the loss cannot be clearly determined.

            • Provisioning

              • CM-3.3.4

                Banks must maintain an adequate level of provisioning against the impairment of assets and problem exposures if their earnings and capital adequacy are to be measured correctly.

              • CM-3.3.5

                As a general rule, where there is a doubt about the collectability of a receivable, and security exists, provisions should equal the carrying value of the receivable less the net current market value of security.

              • CM-3.3.6

                Provisions of either type (specific or general) are made in relation to receivables, financing and investment assets in cases where there is doubt regarding collectability or an impairment of value. Refer to AAOIFI's FAS 11: Provisions and Reserves.

              • CM-3.3.7

                Provisioning should be carried in the respective books including bank's own books, unrestricted investment account holders' books and restricted investment account holders' books.

              • CM-3.3.8

                A general provision is an amount set aside to reflect a potential loss that may occur as a result of currently unidentifiable risks in relation to receivables, financing or investment assets. The amount reflects estimated losses affecting these assets attributable to events that have already occurred at the date of the statement of financial position, and not estimated losses attributable to future events.

              • CM-3.3.9

                The policy for provisioning should clearly contain provisions for segregating provisions relating to assets financed by own funds and those financed by investment account holders. In devising the policy, reference should be made to the Mudaraba contract.

              • CM-3.3.10

                A specific provision is an amount set aside to reflect an estimated impairment of value of a specific type of asset. In the cases of investment assets, it is the amount needed to write the assets down to cash equivalent value if this is lower than cost. Refer to AAOIFI's FAS 11: Provisions and Reserves.

          • CM-3.4 CM-3.4 Provisions against sovereign credit

            • CM-3.4.1

              The Agency has consistently encouraged banks to maintain adequate provisions against credits to borrowers experiencing difficulties and against credits for countries with current or potential credit servicing difficulties.

            • CM-3.4.2

              In all cases the assessment of credits — and decisions regarding adequate provisions — are assisted by the categorization of credits as defined by the Agency in section CM-3.2. In addition, with regard to "sovereign credit" it is particularly important that the size of the provisions made should be based on the identification and objective assessment of the nature and extent of difficulties being experienced by particular countries and reflect as near as possible deterioration in the prospects for recovering credits. With these objectives in mind, the Sovereign Credit Provisioning Matrix (see Appendix CM 1) contains a list of measurements which have been designed to help identify those borrowers and countries with payment difficulties and to decide what would constitute adequate provisions.

            • CM-3.4.3

              It is emphasized that this section and the Sovereign Credit Provisioning Matrix (see Appendix CM 1) are merely a general framework for assessing degrees of provisions. They should not be regarded as an exhaustive or definitive framework. Nevertheless, the Agency does intend to include the results of banks' calculations in its discussions with them, and to establish that adequate provisions are being made.

            • Implications of International Accounting Standard (IAS) no. 39 on the provisions assessed through Sovereign Credit Provisioning Matrix

              • CM-3.4.4

                The banks should continue to apply the Sovereign Credit Provisioning Matrix (see Appendix CM 1) as a benchmark for estimating future recoverable cash receipts. However, if a lower provisioning amount is determined, i.e. lower than the amount identified through the matrix, and the bank intends to book the lower amount, then a meeting must be arranged with the Agency to discuss the issues before booking such provisions.

          • CM-3.5 CM-3.5 Collateral

            • CM-3.5.1

              The extension of credit is often supported by collateral provided by the customer or third parties. When the credit decision is based on collateral value, independent timely appraisals of the collateral should be obligatory, including provision for sufficient security margins.

            • CM-3.5.2

              In principle, collateral can improve the credit grading of a customer, but experience suggests that over-reliance on collateral is unsound because very often when a credit facility goes sour the collateral turns out to have less value than estimated or is, at worst, illusory.

            • CM-3.5.3

              Misjudgements about collectability are frequently the cause; collateral is often illiquid, difficult to value during periods of financial distress and costly to realise through foreclosure or other legal means. Particular concern may be appropriate in the case of collateral in the form of real estate, as it involves additional uncertainties and the costs of maintaining the property.

            • CM-3.5.4

              As a matter of principle, collateral should not replace a careful assessment of the borrower's ability to repay.

        • CM-4 CM-4 The monitoring and control of large exposures of banks licensed by the Agency

          • CM-4.1 CM-4.1 Overview

            • CM-4.1.1

              The Regulation on large exposures for banks in Bahrain is issued as part of the Agency's measures to encourage banks to mitigate risk concentrations.

            • CM-4.1.2

              The contents of this chapter apply in full to all locally incorporated Islamic banks in the Kingdom of Bahrain.

          • CM-4.2 CM-4.2 The measure of exposure

            • CM-4.2.1

              The measure of exposure reflects the maximum loss should a counterparty fail, or loss that may be experienced due to non-repayment of facilities granted. Consistent with this, an exposure encompasses the amount at risk arising from a bank's:

              (a) Claims on a counterparty including actual claims, and potential claims which would arise from the drawing down in full of undrawn advised facilities (whether revocable or irrevocable, conditional or unconditional) which the bank has committed itself to provide, and claims which the bank has committed itself to purchase or underwrite;
              (b) Contingent liabilities arising in the normal course of business, and those contingent liabilities which would arise from the drawing down in full of undrawn advised facilities (whether revocable or irrevocable, conditional or unconditional) which the bank has committed itself to provide; and
              (c) Other assets (whether on balance sheet or restricted investment accounts), which constitute a claim for the bank and its customers and which are not included in (a) or (b) above. In particular, exposures where the bank itself is not exposed, but is committing client funds such as restricted investment accounts are included here.

            • CM-4.2.2

              As a general rule, exposures should be reported on a gross basis (i.e. no offset). However, debit balances on accounts may be offset against credit balances where they relate to the same customer or to corporate customers in the same business group if:

              (a) a legally enforceable right of set off exists in all cases (as confirmed by an independent legal opinion addressed to the bank) in respect of the recognised amounts, and
              (b) the bank intends either to settle on a net basis, or to realise the debit balances and settle the credit balances simultaneously.

              For a group facility, a full cross guarantee structure must also exist (i.e. full multilateral guarantees must be in place between all the companies within the group).

            • CM-4.2.3

              Large exposures are calculated using the sum of the nominal amounts before the application of the risk weighting and credit conversion factors for:

              (a) on balance sheet claims;
              (b) guarantees and other contingent claims; and
              (c) potential claims in the case of undrawn facilities.

            • CM-4.2.4

              In case of syndicated facilities, the nominal amount would include only the bank's share of the syndication (financed by unrestricted investment accounts and bank's own funds) and any amounts for which binding commitments from other financial institutions are not available. Where a binding commitment is available, that amount would be excluded in calculation of the large exposures. See section CM-4.5 for exemptions.

            • CM-4.2.5

              For the purpose of large exposures, balance sheet claims involving assets acquired to be leased under Ijarah Muntahia Bittamleek should be reflected as an exposure against the lessee. Further, Murabaha contracts where assets are held for resale, under a binding promise, such exposure should be reflected as an exposure to the counterparty which has signed the binding promise. Potential claims in the case of Istisna'a contracts should include the total amount expected to be paid to al-Sani (the seller) and shown as an exposure to al-Mustasni (ultimate buyer).

            • CM-4.2.6

              A bank's exposure arising from securities' trading operations is calculated as its net long position in a particular security. A bank's "net position" in a security refers to its commitments to buy that security together with its current holding of the same security, less its commitments to sell such a security.

          • CM-4.3 CM-4.3 Identity of counterparty

            • CM-4.3.1

              For the purposes of measuring exposures, the counterparty will generally be the customer receiving the funds, the person guaranteed, and the issuer of a security in the case of a security held.

            • CM-4.3.2

              Where a third party has provided an explicit unconditional irrevocable guarantee, and subject to the guaranteed bank's policy statement not stating otherwise, the guaranteed bank may be permitted to report the exposure as being to the guarantor, rather than the person guaranteed.

          • CM-4.4 CM-4.4 Limits for large exposures

            • Aggregate limit on large exposures

              • CM-4.4.1

                A "large exposure" is any exposure whether direct, indirect or funded by restricted investment accounts to a counterparty or a group of closely related counterparties which is greater than, or equal to, 10% of the reporting bank's (consolidated) capital base.

              • CM-4.4.2

                "Capital base" is the adjusted capital base for the purpose of the risk asset ratio calculated in accordance with the PIRI return (see Module BR) (or owner's equity) using the most recent annual consolidated balance sheet, subject to any specific requirements by the Agency.

              • CM-4.4.3

                The aggregate of large exposures (from both on balance sheet and restricted investment accounts) may not exceed 1200% of the bank's (consolidated) capital base whether funded or not funded, i.e. contingent commitments.

              • CM-4.4.4

                However, the aggregate of large exposures from on balance sheet exposures should not exceed 800% of the bank's (consolidated) capital base whether funded or not funded.

            • Single exposure limit

              • CM-4.4.5

                The following single exposure limits apply:

                (a) Direct exposures (i.e. funded by a bank's own funds or unrestricted investment accounts): A bank may not incur an exposure to an individual counterparty or group of closely related counterparties which exceeds 15% of the reporting bank's (consolidated) capital base without the prior written approval of the Agency. For this purpose, companies/banks with variable capital should not include participation shares in calculating their capital base, since these are governed by Mudaraba contract (profit sharing).
                (b) Restricted investment accounts: A bank may not incur an exposure to an individual counterparty or group of closely related counterparties where the exposure is funded by restricted investment accounts, which exceeds 30% of the reporting bank's (consolidated) capital base.
                (c) The combined exposures: A combined exposure of (a) & (b) above (funded by unrestricted investment accounts, or a bank's own funds or restricted investment accounts) to an individual counterparty or group of closely related parties may not exceed 35% of the reporting bank's (consolidated) capital base.

            • Closely related counterparties

              • CM-4.4.6

                Closely related counterparties are two or more counterparties who constitute a single risk because one of them has, direct or indirect, "control" over the other(s) (see below) or counterparties connected in such a way that the financial soundness of any one of them may affect the financial soundness of the other(s), or the same factors may affect the financial soundness of both or all of them.

              • CM-4.4.7

                "Control" means either significant ownership (i.e. ownership of 20% or more of voting equity) or any other interests (including, but not limited to, the ability to exercise or control the exercising of voting power of issued share capital in the licensee) which enable the holder, or which would enable a proposed transferee, thereof to exercise significant influence over the management and business of the licensee.

            • Limit on exposures to connected counterparties

              • CM-4.4.8

                Exposures to connected counterparties may be justified only when undertaken for the clear commercial advantage of the bank, when negotiated and agreed on an arm's length basis, and when included in the policy statement agreed with the Agency.

              • CM-4.4.9

                No Islamic facilities provided by a bank to its own external auditors shall be permitted. In addition, unless provided for in the contract, off balance sheet restricted investment accounts will not be permitted to participate in on balance sheet corporate funding and vice versa and movement within restricted investment accounts is not permitted without the Agency's prior written approval.

              • CM-4.4.10

                For the purpose of this module, "Connected counterparties" includes companies or persons connected with the bank, including, in particular, subsidiaries and associated companies (whether such association is due to control or shareholding or otherwise), Directors and their associates (whether such association is due to control or family links or otherwise), members of the Shari'a Supervisory Board, management and other staff, and shareholders holding 10% or more of the voting power of the bank. In this context, family links means spouse, father, mother, sons, daughters, sisters and brothers.

              • CM-4.4.11

                The Agency will closely examine all exposures to companies or persons connected to a bank and will deduct them from the bank's (consolidated) capital base if they are, in the Agency's opinion, of the nature of a capital investment, or provision of long-term working capital, or are made on particularly concessionary terms.

              • CM-4.4.12

                The limits for exposure to connected counterparties have been set as follows:

                (a) Direct exposures: A bank may not incur an exposure (whether funded or not funded) to an individual connected counterparty (as defined above) which exceeds 15% of the reporting bank's (consolidated) capital base. The aggregate exposures to all counterparties within this category should not exceed 25% of the bank's consolidated capital base.
                (b) Restricted investment accounts: A bank may not incur an exposure (whether funded or not funded) to an individual connected counterparty where the exposure is funded by restricted investment accounts which exceeds 25% of the reporting bank's (consolidated) capital base. The aggregate exposures to all counterparties within this category should not exceed 35% of the bank's consolidated capital base.
                (c) The combined exposures: A combined exposure of (a) & (b) above (funded by unrestricted investment accounts and bank's own funds, and restricted investment accounts) whether funded or not funded, to an individual connected counterparty may not exceed 25% of the reporting bank's (consolidated) capital base.
                (d) The aggregate exposures to connected counterparties: (whether funded from on balance sheet or restricted investment accounts) may not exceed 60% of the bank's (consolidated) capital base, whether funded or not funded.

          • CM-4.5 CM-4.5 Exempt exposures

            • CM-4.5.1

              Certain types of exposure are exempt from the limits set out above, but notification of such exposures should be made to the Agency.

            • CM-4.5.2

              These exemptions fall into the following categories and are subject, in each case, to the policy statement as agreed with the Agency:

              (a) Islamic bonds/ Sukook issued or guaranteed by the Government of Bahrain or its Agencies;
              (b) Islamic bonds/ Sukook issued or guaranteed by the IDB;
              (c) Short term (one year or less) interbank exposures;
              (d) Exposures to GCC governments, their semi-government institutions and agencies that do not operate on commercial basis;
              (e) Exposures to OECD central governments;
              (f) Exposures secured on cash or GCC government securities/guarantees;
              (g) Exposures secured on OECD central government securities/guarantees;
              (h) Certain connected exposures, in particular those arising from a group treasury function;
              (i) Exposures which are covered by a guarantee from the bank's parent (see paragraph CM-4.5.8);
              (j) Exposures arising from underwriting activities, such exposures continuing for no more than 90 calendar days. Any residual holdings of securities for more than 90 days from the commitment date of underwriting would be subject to normal large exposure limits;
              (k) Exposures where the bank is acting as agent for an investor in a single purpose, non-discretionary capacity, and the bank has the full right to set-off losses and costs against any funds provided by the investor (examples might include real estate investments); and
              (l) Syndicated facilities being financed by restricted investment accounts where the investor is fully aware of the type of investment and the associated risks.

            • Exempt exposures to connected counterparties

              • CM-4.5.3

                In respect of exposures to other group companies, the Agency's policy allows a bank to take on a treasury role on behalf of the group as a whole (provided that the group is subject to consolidated supervision by its home supervisor). The Agency's policy regarding the taking on of a treasury role includes exposures arising from a central risk management function.

              • CM-4.5.4

                In certain exceptional cases, exposures of more than 15% of (consolidated) capital base to a bank which controls the financing bank may be permitted for utilisation of surplus liquid funds for a short period not exceeding 90 days even where the financing bank does not perform a treasury role. Any other form of connected financing outside the scope of the above will be dealt with by the Agency on a case-by-case basis.

            • Exposures undertaken by a subsidiary bank or by a branch outside Bahrain

              • CM-4.5.5

                In the case of banks, which are the Bahrain subsidiaries of overseas banks, the Agency will agree in writing with the supervisory authority of the parent bank, the size of exposures that can be undertaken by the subsidiary.

              • CM-4.5.6

                Exposures undertaken by a branch of a foreign bank on the books in Bahrain should be within the policy statement of the parent bank (company) as agreed by the parent's regulatory authority.

              • CM-4.5.7

                Overseas subsidiaries of Bahrain banks will be expected to comply with the regulatory requirements of the country in which they are located.

              • CM-4.5.8

                Where exposures undertaken by a subsidiary bank are guaranteed by its parent, the subsidiary bank may be deemed to have an exposure to the parent.

              • CM-4.5.9

                Under the terms of this Module, such indirect exposures to a parent bank may be exempt from the limits on large exposures if the Agency is satisfied that:

                (a) such exposures are entered into within the terms of a policy agreed by the parent bank, and
                (b) there are guarantees in place from the parent bank to protect the subsidiary should the exposure become non-performing or require to be written off.

              • CM-4.5.10

                In the case of a Bahrain incorporated bank's subsidiary inside Bahrain, in order for an exposure exceeding 15% of capital base to be acceptable for the subsidiary, the Bahrain parent must at all times have room to take over the exposure, without itself exceeding the limit of 15% of capital base. Also, the combined (on and off balance sheet) exposure of the banking group to the customer must be within 35% of the parent bank's consolidated capital base.

              • CM-4.5.11

                The Agency will need to be satisfied that adequate control systems are in place to ensure that credit risk taken in the group as a whole is properly monitored and controlled.

          • CM-4.6 CM-4.6 Reporting of exposures

            • CM-4.6.1

              Bahrain incorporated banks are required to report all large exposures on a quarterly basis using the PIRI return provided in Appendix BR 4.

            • CM-4.6.2

              Banks are required to adopt policies and set internal limits, which will not lead to the exposure limit(s) referred to above being exceeded as a matter of course.

            • CM-4.6.3

              For some banks, the Agency may determine it prudent to set a lower percentage(s) than the ones given herein.

            • CM-4.6.4

              Should any bank find that, for reasons outside its control or otherwise, it has an exposure to an individual counterparty (other than an exempt exposure) which results in it exceeding any of the limits set out above, this should be reported immediately to the Agency for its consideration, and action should be taken to immediately bring the exposure back within applicable limits as soon as possible.

          • CM-4.7 CM-4.7 Policy statements

            • CM-4.7.1

              The Agency requires each bank incorporated in Bahrain to set out its policy and internal limits on large exposures, including exposures to individual customers, banks, institutions, countries and economic sectors, in a policy statement which should be formally adopted by the Board of Directors. The policy statement should be part of the risk management policy of the bank. The Agency expects banks not to implement significant changes in these policies without prior discussion with the Agency.

            • CM-4.7.2

              Each bank should discuss their policy statement with the Agency. Each bank will be expected to justify to the Agency its policy on exposures to individual counterparties, including the maximum size of an exposure contemplated.

            • CM-4.7.3

              Exposures to counterparties connected with the bank will continue to be particularly closely examined.

            • CM-4.7.4

              The necessary control systems to give effect to a bank's policy on large exposures should be clearly specified and monitored by its Board.

          • CM-4.8 CM-4.8 Concentrations in economic and market sectors

            • CM-4.8.1

              The extent to which a bank may be prudently exposed to a particular economic sector will vary considerably depending upon the characteristics and strategy of the bank, and the sector concerned.

            • CM-4.8.2

              Concentrations should also be recognized in not just economic sectors, but also in markets (e.g. individual stock exchanges). The Agency will not apply common maximum percentages to banks' sectoral or market exposures but, instead, will continue to monitor such exposures on an individual and general basis.

            • CM-4.8.3

              Banks must specify in their policy statements how they define economic and market sectors, and what limits apply to differing sectors.

            • CM-4.8.4

              Exposures and limits for sectors should be reviewed at least quarterly by the Board of Directors.

            • CM-4.8.5

              Banks which have over 10% of their risk adjusted assets in market risk (i.e. the trading book) must also set market risk concentration limits.

        • CM-5 CM-5 Staff credit facilities

          • CM-5.1 CM-5.1 Reporting and compliance

            • CM-5.1.1

              The Agency's prior written consent should be obtained for any credit facilities provided to an employee where the amount of such facility, either singly or when added to an existing facility/existing facilities outstanding to that employee at that date, would be equal to or in excess of BD 100,000 (Bahraini Dinars One Hundred Thousand), or its equivalent in foreign currency. Banks must notify the Agency in writing of any senior employee who fails to discharge his repayment obligations.

            • CM-5.1.2

              Banks must ensure that the provisions of relevant laws (including, specifically, the Bahrain Labour Law) are observed at all times in this area.

        • CM-6 CM-6 Write-off — Credit facility

          • CM-6.1 CM-6.1 Write-offs

            • CM-6.1.1

              All locally incorporated banks, should notify the Agency of any write-off of a credit facility, (i.e., Murabaha or any other credit facility) of an amount in excess of BD 100,000 (Bahraini Dinars One Hundred Thousand), or its equivalent in foreign currency.

            • CM-6.1.2

              Such notification should be accompanied with documentary evidence showing, beyond reasonable doubt, that the customer does not possess the resources to fulfil the outstanding obligation.

            • CM-6.1.3

              Banks should also obtain the BMA's prior written approval before writing off any of their following claims:

              (a) claims on present or former Directors of the bank;
              (b) claims which are guaranteed by a Director of the bank;
              (c) claims on any business entity for which the bank or any of its Directors is an agent;
              (d) claims on any officer or employee of the bank, or any other person who receives remuneration from the bank;
              (e) claims on any business entity in which the bank (or any of its Directors, officers or other persons receiving remuneration from the bank) has an interest as a shareholder, Director, manager, agent or guarantor; and
              (f) claims on any person who is a Director, manager or officer of another bank licensed by the Agency.

        • CM-7 CM-7 Consumer finance

          • CM-7.1 CM-7.1 Overview

            • CM-7.1.1

              This chapter sets out various requirements regarding the provision of consumer finance within the Kingdom of Bahrain by BMA licensees. The aim of these requirements is to encourage:

              (a) prudent provision of credit facilities by licensees providing consumer finance; and
              (b) the transparent disclosure of the full costs and terms on which licensees offer consumer finance.

            • Application date

              • CM-7.1.2

                The contents of this chapter apply to all consumer finance facilities entered into or renewed after 1 January 2005.

          • CM-7.2 CM-7.2 The Agency's approach to consumer finance

            • CM-7.2.1

              The Agency favours an open, market-based approach to the operations of licensees, to the extent consistent with its regulatory objectives of ensuring a stable financial system and the fair treatment of licensees' customers.

            • CM-7.2.2

              Bank licensees are reminded of their obligation to implement a sound internal controls framework, including an effective credit culture (see, for instance, section CM-2.3). Bank licensees are also reminded of their obligations clearly to display and communicate charges and profit rates (see, for instance, section BC-4.3).

            • CM-7.2.3

              The Agency has noted the growth in consumer finance as a proportion of outstanding credit facilities over the past few years. The Agency is concerned that this growth should not be at the cost of declining credit quality. Furthermore, the Agency wishes to see further improvements in licensees' transparency in their dealings with their customers, as regards the costs and terms of their lending. Strong competition in this segment of the market increases the need for licensees to be vigilant and to resist pressures to relax standards.

            • CM-7.2.4

              The measures presented in this chapter should be viewed as minimum standards, rather than best practice. They are aimed to encouraging prudent extension of credit facilities and full, frank and fair disclosures, rather than dictate comprehensively how licensees should engage in consumer finance.

            • CM-7.2.5

              These measures will be kept under review in the light of market developments and adjusted accordingly. If the Agency assesses that credit quality and effective transparency are being significantly undermined, then additional prescriptive measures will be considered.

            • On-going effort by the Agency

              • CM-7.2.6

                These measures form part of a wider response by the Agency. The Agency recognizes that a key contributor to ensuring a sounder credit environment is the credit reference bureau.

              • CM-7.2.7

                The Agency supervisors and examiners will also focus more on consumer finance, in their on-going supervision of licensees, to monitor and encourage sound financing practices.

          • CM-7.3 CM-7.3 Definition of Consumer Finance

            • CM-7.3.1

              Consumer finance is the provision of any form of credit facility to an individual excluding:

              (a) any credit facility secured by a first charge on residential property to an individual, where the counterparty lives in, or intends to live in the property;
              (b) any credit facility secured by cash or investments, where the security provided more than covers the principal of the credit facility; and
              (c) the provision of any form of credit to an individual for business purposes where the facility is to be repaid from the business activities of the counterparty.

            • CM-7.3.2

              For the purposes of the Rulebook, "credit facility" includes personal overdraft facilities, credit cards, ijara or other financing facility.

          • CM-7.4 CM-7.4 Maximum limits

            • Total repayments ratio

              • CM-7.4.1

                Licensees may only provide a new consumer facility (or renew, extend or otherwise modify an existing consumer facility) for an amount such that the counterparty's total monthly repayments on all his consumer finance commitments do not exceed 50% of his monthly gross income. This limit may only be exceeded in the circumstances described in paragraph CM-7.4.6 and CM-7.4.10.

              • CM-7.4.2

                When reviewing an applicant for a consumer facility, licensees may only take into consideration regular income. A spouse's income may only be taken into consideration when the credit facility would be in joint names, such that the spouse would also be legally liable for the obligation incurred.

              • CM-7.4.3

                Notwithstanding the above limit, licensees must review in detail an applicant's personal financial standing and ability to service their obligations. Where a spouse's income is being taken into consideration, then their individual circumstances must also be similarly assessed. In many cases, these reviews may require consumer finance repayments to be kept significantly below 50% of monthly gross income.

              • CM-7.4.4

                Licensees must enquire as to applicants' sources of income, their past credit history, their regular outgoings and other financial commitments, including potential liabilities such as guarantees. Particular attention should be paid to housing costs (such as payments to the Housing Bank). A person's regular income, net of consumer finance repayments and other financial obligations, must remain sufficient for that person to support himself and any dependents. Licensees should also take into account likely future trends in income and outgoings, and the impact this may have on the 50% ratio.

              • CM-7.4.5

                When factoring in credit cards into the repayment limit in paragraph CM-7.4.1 above, licensees should include 5% of the total of credit limits available on these facilities. If the amounts outstanding (including profit) under such facilities exceed their limit, then this higher amount should be included in full in the repayments ratio calculation. Charge cards are not included under this definition.

              • CM-7.4.6

                In the case of high earners — defined for these purposes as persons earning more than BD 3,000 / month — the 50% limit may be relaxed, providing that the licensee has undertaken the review required in paragraph CM-7.4.4 above and is satisfied that the counterparty can comfortably support a higher facility service ratio.

              • CM-7.4.7

                The review undertaken to satisfy requirements in paragraph CM-7.4.4 above must be documented and made available to the Agency's examiners on request. The documentation must include all relevant information used to support the decision to extend credit facilities. In the case of high earners granted a facility in excess of the 50% limit, the documentation must also include a written statement, signed by an appropriate member of management, explaining the justification for relaxing the limit.

            • Maximum tenor limit

              • CM-7.4.8

                The maximum tenor for instalment consumer finance facilities is seven years. The tenor may not be extended more than twice during the period of the agreement.

              • CM-7.4.9

                The Agency does not believe it prudent for licensees to encourage the provision of credit facilities by offering long-term borrowing to fund short-term consumption. The Agency will review the development of market practices in this respect and will consider further measures if required.

            • Non-compliant facilities

              • CM-7.4.10

                Where a customer's monthly gross income falls (e.g. due to redundancy or disability or a similar event outside the control of the customer), the bank must identify such accounts as "technically non compliant". If a customer requests an extension to the tenor of the facility due to reduced income, then the bank may increase the term to assist the customer. The bank must take account of the 50% limit outlined in paragraph CM-7.4.1. Such facilities must also be identified as "technically non compliant". Banks must report all "technically non-compliant facilities" to the Director of Islamic Financial Institutions Supervision Directorate on a quarterly basis.

          • CM-7.5 CM-7.5 Disclosure requirements

            • Disclosure of key terms

              • CM-7.5.1

                Licensees must make clear to potential counterparties, prior to entering into a consumer finance agreement, all relevant key terms of the agreement.

              • CM-7.5.2

                These terms should be summarised in plain English and Arabic in a short "key terms disclosure" document; this document must be signed and dated by counterparties (in duplicate) as having been read and understood, prior to signing a consumer finance agreement. One copy should be retained by the counterparty and the other must be retained by the licensee in their customer file.

              • CM-7.5.3

                The "key terms disclosure" document must, amongst other things, make clear:

                (a) the amount being received or the credit limit being offered, its maturity and repayment schedules;
                (b) the nominal amount of the cost of credit to be provided to the customer;
                (c) whether this cost of credit is fixed or can go up and / or down, and under what circumstances;
                (d) the basis on which the cost of credit is calculated and when capital repayments are taken into account in the calculation, together with an illustration of the calculation method;
                (e) a breakdown of all other costs not included in (b), (c) and (d) above and associated with the credit, such as arrangement fees, documentation fees, late payment fees (if permitted by the Shari'a Board), and obligatory payment protection insurance costs;
                (f) the full costs associated with top-ups of installment facilities or early repayments of amounts due (in full or in part if permitted by the Shari'a Board), including the treatment of remaining profit and the payment of premium for insurance; and
                (g) the Profit Rate, as defined in paragraph CM-7.5.5 below.

              • CM-7.5.4

                Licensees are free to design the layout and wording to be used in their "key terms disclosure" document, as they see fit, providing they contain the information specified in paragraph CM-7.5.3 above. BMA will monitor compliance with the spirit as well as the letter of the requirements in this chapter. If necessary, BMA will consider prescribing a standard template to be used by all licensees engaged in consumer finance.

            • Annual Profit Rate "APR"

              • CM-7.5.5

                The APR is a standard measure that allows consumers to compare total charges for credit facilities to be compared on a like-for-like basis. The APR allows the consumer to compare the total charge for credit over differing periods (e.g. — two versus three years) with differing payment profiles and taking into account the payment of any other fees payable as a condition of the contract, such as documentation fees or insurance premium.

              • CM-7.5.6

                The APR should be shown clearly on the facility document and "key terms disclosure" document (as set out in paragraphs CM-7.5.1 to CM-7.5.4 above).

              • CM-7.5.7

                The APR methodology should also be utilised in advertisements for credit. Any deferral of profit or principal announced by the bank should also take account of the APR methodology, and the new APR should be given to the client or made public in advertisements.

              • CM-7.5.8

                The total charge for credit payable by a consumer includes the following items:

                (a) Effective rate of profit on the credit;
                (b) Documentation or administration fees;
                (c) In the case of ijara or deferred purchase contracts, any fees for purchasing the asset (e.g. an option to purchase fee payable at the end of the contract); and
                (d) Any fees or charges payable under any linked or mandatory contract entered into as a condition for the granting of the credit facility, such as payment protection insurance.

              • CM-7.5.9

                The APR must be calculated using the following methodology:

                K=m

                K=1
                Ak
                (1 + i) tk
                = K'=m'

                K'=1
                A'k'
                (1 + i) tk'

              • CM-7.5.10

                The meaning of letters and symbols used in the above formula are:

                K is the number identifying a particular advance of credit;
                K' is the number identifying a particular instalment;
                Ak is the amount of advance K;
                A'k' is the amount of instalment K;
                represents the sum of all the terms indicated;
                M is the number of advances of credit;
                M' is the total number of instalments;
                tk is the interval, expressed in years between the relevant date and the date of advance K;
                tk' is the interval expressed in years between the relevant date and the date of instalment K';
                I is the APR, expressed as a decimal.

              • CM-7.5.11

                For the purpose of this chapter, the "relevant date" is the earliest identifiable date on which the customer is able to acquire anything which is the subject of the agreement (e.g. delivery of goods), or otherwise the "relevant date" is the date on which the credit agreement is made.

              • CM-7.5.12

                In the case of instalment finance such as a credit facility, where there is no reimbursement of cost of credit in the event of early repayment, then the residual cost of credit in the old facility must be added to the cost of credit for the new facility, and the APR amended accordingly.

        • CM-8 CM-8 Islamic contracts

          • CM-8.1 CM-8.1 Overview

            • CM-8.1.1

              The Agency recognises the unique risk characteristics of Islamic contracts, which may have implication on the asset quality of a bank.

            • CM-8.1.2

              In order to monitor and identify any asset deterioration due to the Islamic contracts, the Agency requires additional disclosures (see Module BR) on the Islamic contracts undertaken by the bank during the period.

            • CM-8.1.3

              Definitions, disclosure requirements and method(s) of accounting treatments for some of the Islamic contracts are outlined in the following sections of this chapter.

          • CM-8.2 CM-8.2 Murabaha

            • CM-8.2.1

              Revenue for the purpose of Murabaha contracts must be recognised on an accrual basis.

            • CM-8.2.2

              For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 2: Murabaha and Murabaha to the Purchase Orderer.

          • CM-8.3 CM-8.3 Mudaraba

            • CM-8.3.1

              Revenue on Mudaraba contracts may only be recognised to the extent it is being distributed.

            • CM-8.3.2

              For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 3: Mudaraba Financing.

            • CM-8.3.3

              As part of its ongoing supervision of Islamic banks, the Agency has set out the type of terms and conditions (see Appendix BC 7) which it believes Islamic banks should include, as a minimum, in such contracts.

          • CM-8.4 CM-8.4 Musharaka

            • CM-8.4.1

              Under a Musharaka contract, losses are shared in proportion to the contributed capital. It is not permissible to stipulate otherwise.

            • CM-8.4.2

              For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 4: Musharaka Financing.

          • CM-8.5 CM-8.5 Salam

            • CM-8.5.1

              As a policy no Salam contracts should be entered into without covering the position through a Parallel Salam contract.

            • CM-8.5.2

              Where the bank is not able to enter into a Parallel Salam contract it must agree a statement policy with the Agency.

            • CM-8.5.3

              For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 7: Salam and Parallel Salam.

          • CM-8.6 CM-8.6 Istisna'a

            • CM-8.6.1

              As a policy no Istisna'a contracts should be entered without covering the position through a Parallel Istisna'a contract.

            • CM-8.6.2

              In accordance with provisions contained in FAS 10: Istisna'a and Parallel Istisna'a, revenue and profit on such contracts should be recognised on a percentage of completion method.

            • CM-8.6.3

              For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 10: Istisna'a and Parallel Istisna'a.

          • CM-8.7 CM-8.7 Ijarah and Ijarah Muntahia Bittamleek

            • CM-8.7.1

              For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 8: Ijarah and Ijarah Muntahia Bittamleek.

        • CM-9 CM-9 Qard Hassan

          • CM-9.1 CM-9.1 Facilities transferred to Qard Hassan

            • CM-9.1.1

              The Agency's approval should be obtained before any transfer of any exposures to Qard Hassan if the amount is more than BD 100,000 or its equivalent in foreign currency.

            • CM-9.1.2

              The requirement stated in paragraph CM-9.1.1 above applies to both on balance sheet and restricted investment account related exposures.

      • CM CM Credit Risk Management (June 2022)

        • CM-A CM-A Introduction

          • CM-A.1 CM-A.1 Purpose

            • CM-A.1.1

              The purpose of this Module is to provide a checklist of the key elements of a sound credit risk management system which supervisors can expect their banks to observe. This requirement is supported by Article 44(c) of the Central Bank of Bahrain and Financial Institutions Law (Decree No. 64 of 2006).

              October 07

            • CM-A.1.2

              This Module provides support for certain other parts of the Rulebook, mainly:

              (a) Principles of Business;
              (b) CBB Reporting Requirements;
              (c) Audit Firms;
              (d) Public Disclosure;
              (e) High-level Controls; and
              (f) Capital Adequacy.
              October 07

            • Legal Basis

              • CM-A.1.3

                This Module contains the Central Bank of Bahrain's (CBB's) Directive (as amended from time to time) relating to the credit risk management of Islamic bank licensees, and is issued under the powers available to the CBB under Article 38 of the CBB Law. The Directive in this Module is applicable to all Islamic bank licensees.

                Amended: January 2011
                October 2007

              • CM-A.1.4

                For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1.

                October 07

          • CM-A.2 CM-A.2 Key Requirements

            • CM-A.2.1

              Overseas Islamic bank licensees are expected to maintain provisions against potential credit losses on their books in Bahrain. Head offices of banks that do not wish to maintain provisions on books of their branch(es) in Bahrain must advise the CBB, on an annual basis and in writing, of the amount of provisions set aside for the bad debts of Bahrain branch(es).

              Amended: April 2014
              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-A.2.2

              The CBB requires all Bahraini Islamic bank licensees to set out their policy on large exposures, including limits for differing types of exposures to individual customers, banks, corporates, countries and economic and market sectors, in a policy statement which must be formally approved by the Board of Directors (see Section CM-4.7).

              Amended: April 2014
              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-A.2.2A

              The CBB requires that any large exposure, as defined in Paragraph CM-4.4.1, must be priorly approved by the bank's Board of Directors (see Paragraph CM-4.4.3A).

              Added: January 2017

            • CM-A.2.3

              The aggregate of large exposures may not exceed 800% of the bank's consolidated Total Capital (see Paragraph CM-4.4.4). A bank may not incur a combined exposure (funded by unrestricted investment accounts and the bank's own funds) to an individual counterparty or group of closely related counterparties which exceeds 15% of the reporting bank's consolidated Total Capital (see Paragraph CM-4.4.5).

              Amended: January 2015
              Amended: April 2014
              October 07

            • CM-A.2.4

              The aggregate exposures to all connected counterparties when taken together, may not exceed the limit as stated in Paragraph CM-4.4.13 of consolidated Total Capital.

              Amended: January 2015
              Amended: April 2011
              October 2007

            • CM-A.2.5

              No Islamic financing provided by a bank to its own external auditors shall be permitted.

              October 07

            • CM-A.2.6

              All Bahraini Islamic bank licensees are required to report (for the attention of the Director of Islamic Financial Institutions Supervision Directorate) all large exposures, (whether exempt or not) on a quarterly basis using the Form PIR provided in Appendix BR-5 (see Section CM-4.6).

              Amended: April 2014
              Amended: October 2009
              October 2007

            • CM-A.2.7

              The CBB's prior written consent must be obtained for any credit facility to an employee where the amount of such facility, either singly or when added to an existing facility/existing facilities outstanding to that employee at that date, would be equal to or in excess of BD 100,000 (or its equivalent) (see Section CM-5.1).

              Amended: April 2014
              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-A.2.8

              The CBB requires that banks only provide a new consumer facility (or renew, extend or otherwise modify an existing consumer facility) for an amount such that the counterparty's total monthly repayments on all his consumer finance commitments do not exceed 50% of his monthly gross income (see Section CM-7.4).

              Amended: April 2014
              Amended: July 2011
              October 2007

            • CM-A.2.9

              [This Paragraph was deleted in April 2014 as this requirement has been moved to Module BC.]

              Deleted: April 2014

            • CM-A.2.10

              The CBB's prior written consent must be obtained before writing off any credit facility provided to senior employee/officer/Director of the reporting bank or other bank(s) who fails to discharge his/her repayment obligations to the reporting bank (See Section CM-7.1 for details).

              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-A.2.11

              All Bahraini Islamic bank licensees must notify the CBB of any write-off of a credit facility, (i.e. Murabaha or any other credit facility) of an amount in excess of BD 100,000 (or its equivalent). Chapter CM-6 contains Rules relating to the write-off of credit facilities.

              Amended: April 2014
              Amended: January 2013
              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-A.2.12

              All banks which provide credit to residents of Bahrain must become members of the Credit Reference bureau and follow the CRB Code of Practice (see Paragraph CM-1.2.4).

              Amended: April 2014
              October 07

            • CM-A.2.13

              All banks are required to follow the CBB’s requirements concerning refund of insurance on financing prepayments and top-ups and early repayment fees/charges as outlined in Section CM-7.6.

              Added: April 2008

          • CM-A.3 CM-A.3 Module History

            • CM-A.3.1

              This Module was first issued on 1st January 2005 as part of the Islamic principles volume. Any material changes that have subsequently been made to this Module are annotated with the calendar quarter date in which the change was made: Chapter UG 3 provides further details on Rulebook maintenance and version control.

              October 07

            • CM-A.3.2

              A list of most recent changes made to this Module are detailed in the table below:

              Summary of Changes

              Module Ref. Change Date Description of Changes
              CM-2.2 1/10/05 Role of Internal audit becomes a rule
              CM-7.4 1/10/05 Clarification re non-compliant facilities
              CM-A.1 10/2007 New Rule CA-A.1.4 introduced, categorising this Module as a Directive.
              CM-7 10/2007 New Requirement to follow the "Code of best Practice on Consumer Credit and Charging
              CM-1.2 10/2007 Membership of CRB
              CM-4.2 10/2007 Clarification of definition of exposure
              CM-8 10/2007 Re-organised the Chapter.
              CM-4.4 & 6.1 04/2008 New Limits for significant shareholders and guidance on write-offs
              CM-7.6 04/2008 New Insurance Refund and prepayment requirements
              CM-4.6 10/2009 New reporting arrangements for exposures of connected counterparties.
              CM-A.1.3 01/2011 Clarified legal basis.
              CM-4 01/2011 Changes made to incorporate CP-5 and large exposures requirements.
              CM-A.2.4 04/2011 Corrected cross reference in line with new limits introduced in January 2011.
              CM-4.2.1(c), CM-4.5.1 04/2011 Corrected cross reference.
              CM 07/2011 Various minor amendments to clarify Rules and have consistent language.
              CM-4.4.10 07/2011 Amended the definition of connected counterparties.
              CM-7.5.3 10/2011 Clarified reference to APR.
              CM-7.5.9 and CM-7.5.10 10/2011 Corrected elements of APR formula.
              CM-7.5.12 10/2011 Deleted Paragraph as it does not reflect current practice on residual interest.
              CM-4.4.1E 01/2012 Amended definition of qualifying holdings
              CM-4.5 01/2012 Clarified and amended the Rules on temporary exposures.
              CM-4.9.3 01/2012 Clarified the Rule on future increases in qualifying holdings.
              CM-7.4.9 01/2012 Changed Rule to Guidance.
              CM-4.5.2E and CM-4.5.2F 04/2012 Clarified Rule on temporary exposures.
              CM-A.2.9 07/2012 Updated reference to Bahrain Association of Banks.
              CM-4.4.7 07/2012 Clarified the definition of 'controlling interest'.
              CM-4.4.8A 07/2012 CBB prior approval required for excess over limits to connected counterparties.
              CM-4.4.10 07/2012 Minor corrections.
              CM-4.9.3 07/2012 Amendment made to be in line with updated definition of qualifying holdings.
              CM-7.5.4 07/2012 Minor typo corrected.
              CM-7.5 10/2012 This Section was deleted and requirements are now included in Section BC-4.2.
              CM-A.2.11 01/2013 Clarified Rule related to the write-off of a credit facility.
              CM-4.4.13A 07/2013 Clarified Rule on the amount that must be deducted from the capital base where exposure exceeds the limit stipulated.
              CM-7.6.2 07/2013 Clarified the type of mortgages on which the CBB imposes a ceiling on early repayment fees and/or charges.
              CM-1.2.4 10/2013 Amended to reflect the expanded scope of activities of the Credit Reference Bureau and the membership requirements.
              CM-7.4.4 10/2013 Updated reference to Eskan Bank to reflect new name.
              CM-1.2.4 01/2014 Clarified Rule to apply to credit facilities to residents in Bahrain.
              CM-A.2, CM-4 and CM-8.1.19 04/2014 Added cross references and corrected terminology to link to Glossary items.
              CM-5.1.1A 04/2014 Clarified Rules on staff loans.
              CM-7.2.4 04/2014 Reference updated for the code of best practice on consumer credit and charging.
              CM-4.9.2A 07/2014 Added a guidance Paragraph to clarify the treatment of investments in commercial entities which are otherwise not connected to the bank.
              CM-A.2 and CM-4 01/2015 Corrected to be aligned with updated requirements under module CA.
              CM-4.4.2 01/2015 Added reference to transactions subject to the regulation on close-out netting under a market contract.
              CM-4.4.1B 01/2015 Corrected cross reference.
              CM-4.4.1E 04/2015 Deleted cross reference as not applicable.
              CM-4.4.13 04/2015 Clarified that RIAs are excluded.
              CM-4.4.5, CM-4.5.2B, CM-4.5.9 and CM-4.9.10 04/2015 Corrected reference to consolidated Total Capital to be in line with Module CA.
              CM-4.6.1 04/2015 Added reference to Appendix BR-19 for reporting the financial details of each large exposure.
              CM-4.9.3 04/2015 Clarified language on the treatment of significant investments over the thresholds outlined in Paragraph CA-2.4.25.
              CM-4.6.1, CM-4.6.1A and CM-4.6.1B 07/2015 Clarified the reporting requirements of exposures.
              CM-6.1 10/2015 Amended Rules on write-offs.
              CM-4.4.1E 10/2016 Amended definition of 'Major investments'.
              CM-4.9 10/2016 Amended 'Acquisitions' to be 'Investments'
              CM-4.9.3 10/2016 Amended Major Investments approval
              CM-4.9.4 10/2016 Changed 'major acquisition' to 'major investment'.
              CM-4.9.5 10/2016 Changed 'significant investment' to 'major investment'
              CM-4.9.6 10/2016 Moved to new section CM-4.10
              CM-4.9.7 10/2016 Moved to new section CM-4.10
              CM-4.9.8 10/2016 Moved to new section CM-4.10
              CM-4.9.10 10/2016 Changed 'acquisitions' to 'major investments'.
              CM-4.10 10/2016 New Section — 'Limits on Significant Investments'
              CM-6.1 10/2016 Amended the 'Write-offs' Section
              CM-7.4.5 10/2016 Amendments to clarify the Rule
              CM-A.2.2A
              CM-4.4.3A
              01/2017 Added a new requirement on Large Exposures.
              CM-4.4.6A
              CM-4.4.10B
              01/2017 Added Paragraphs on closely related counterparties and connected counterparties.
              CM-3.6 07/2017 Added new Section on 'Country and Transfer Risks'.
              CM-7.6.2 04/2018 Deleted Paragraph on "Early Repayment Fees/Charges".
              CM-7.4.10 10/2019 Amended Paragraph on non-compliant facilities.
              CM-4.5.2D 01/2020 Amended Paragraph on approval of the banks policies and procedures.
              CM-1.2.6 07/2020 Added a new Paragraph on CRB members requirements.
              CM-1.2.7 07/2020 Added a new Paragraph on compliance with CBB Law.
              CM-7.4.10 07/2021 Amended submission of technically non-compliant facilities report.
              CM-7.4.10 01/2022 Amended Paragraph on submission of technically non-compliant facilities report.

            • Evolution of the Module

              • CM-A.3.3

                Prior to the development of this Rulebook, the CBB had issued various circulars representing regulations covering different aspects of credit risk management. These circulars and their evolution into this Module are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                BC/3/98 21 Feb 1998 CM-B.2 Basel Committee on Banking Supervision Framework for the Evaluation of Internal Controls Systems
                BC/117/95 (partial) 1 Feb 1995 CM-1 - CM-3 Risk Management
                OG/127/01 18 Mar 2001 CM-2 Developing a Sound Credit Culture
                OGD/27/88 9 Feb 1988 CM-3.4 Provisions Against Country Debt
                PIRI Pack - - - - - CM-4 Prudential Information Returns for Islamic Financial Institutions
                EDBC/178/96 5 Oct 1996 CM-5 Islamic Facilities
                OG/45/88 13 Mar 1988 CM-6.1 Write-Off - Credit Facility
                OG/50/92 (partial) 4 Mar 1992 CM-07.1 - CM-7.2 Consumer Finance
                PIRI Pack - - - - - CM-8 Prudential Regulations for Islamic Financial Institutions
                EDBC/105/96 26 June 1996 CM-8.3 Mudaraba Contracts - Minimum Terms and Conditions
                BC/4/99 17 Mar 1999 CM-9.1 Annual Accounts for the Year Ending 31 December 1999
                Amended: January 2011
                October 2007

            • Effective Date

              • CM-A.3.4

                The contents in this Module are effective from the date depicted in the original circulars (see Paragraph CM-A-3.3) or the dates given in the summary of changes above.

                October 07

        • CM-B CM-B General Guidance and Best Practice

          • CM-B.1 CM-B.1 Guidance Provided by Other International Bodies

            • Basel Committee: Principles for the Management of Credit Risk

              • CM-B.1.1

                The paper (see www.bis.org/publ/bcbs75.pdf) which contains 17 principles, encourages banking supervisors globally to promote sound practices for managing credit risks in banking activities.

                October 07

              • CM-B.1.2

                Throughout the Module, references have been made to this paper and it is recommended that the regulations in this Module be followed in conjunction with the guidelines presented in this paper.

                October 07

            • Counterparty Risk Management Policy Group (CRMPG): Improving Counterparty Risk Management

              • CM-B.1.3

                The objective of this report (see www.isda.org/educat/pdf/CRMPG-report6-99.pdf), which was developed by a committee of market practitioners in the wake of the 1998 market disruptions, discusses counterparty credit risk and market risk management practices and how they can be enhanced.

                October 07

              • CM-B.1.4

                The report covers four subject areas: transparency and counterparty credit assessments; risk measurement, management, and reporting; market practices and conventions; and regulatory reporting.

                October 07

              • CM-B.1.5

                Of particular interest to risk managers is guidance provided in two areas, one on liquidity risk and leverage, and the other on counterparty credit exposure estimation.

                October 07

            • Basel Committee: Framework for Internal Controls Systems in Banking Organisations

              • CM-B.1.6

                The paper (see www.bis.org/publ/bcbs40.pdf) issued in September 1998 presents the first internationally accepted framework for supervisors to use in evaluating the effectiveness of the internal controls over all on- and off-balance-sheet activities of banking organisations.

                October 07

              • CM-B.1.7

                The paper describes elements that are essential to a sound internal control system, recommends principles that supervisors can apply in evaluating such systems, and discusses the role of bank supervisors and external auditors in this assessment process.

                October 07

        • CM-1 CM-1 General Procedures

          • CM-1.1 CM-1.1 Overview

            • CM-1.1.1

              Credit risk is the likelihood that counterparty of the bank will not meet its obligations in accordance with the agreed terms. The magnitude of the credit risk depends on the likelihood of default by the counterparty, and on the potential value of the bank's contracts with the customer at the time of default. Credit risk largely arises in assets shown on the balance sheet, but it can also show up off the balance sheet in a variety of contingent obligations.

              October 07

            • CM-1.1.2

              Exposure to credit risk, notably in the form of traditional bank financing, has historically been the most frequent source of bank problems. The assessment of credit risk is a challenging task where bankers are often faced with making decisions based on outdated or partial information.

              October 07

            • CM-1.1.3

              The lack of continuous credit supervision and effective internal controls, or the failure to identify abuse and fraud are also sources of risk. The overall lending policy of the bank should be monitored by a Credit Committee composed of officers with adequate seniority and experience.

              October 07

          • CM-1.2 CM-1.2 Credit Analysis

            • CM-1.2.1

              Proper credit risk management will help banks to discipline their lending activities and ensure that credit facilities are granted on a sound basis, and that bank funds are invested in a profitable manner. The process of managing credit risk starts at the origination of the credit facility. Standards for credit analysis should stress the borrower's ability to meet his future financial needs through analysis of his cash-flow generation capacity.

              October 07

            • CM-1.2.2

              Measurement of credit risk is complicated by the fact that both credit exposures and the likelihood of default can vary over time and may be interdependent. The creditworthiness of customers shifts, as reflected in credit rating upgrades and downgrades. Customers that originally are highly rated are more likely to default later in a credit facilities' life than earlier.

              October 07

            • CM-1.2.3

              Banks should properly assess the inherent risk factor of each credit facility; monitor the risks arising from any portfolio concentration; and ensure that appropriate precautions against losses have been taken in the form of collateral and/or provisioning as described in Chapter CM-2.

              October 07

            • CM-1.2.4

              Banks which provide credit facilities to residents in Bahrain must become members of the Credit Reference Bureau (CRB). All requests for new credit facilities in Bahrain must be submitted to the CRB.

              Amended: January 2014
              Amended: October 2013
              October 07

            • CM-1.2.5

              All CRB members must fully abide by the agreed Code of Practice of the CRB (see Appendix CM-3), in matters such as the protection of confidential customer data and payment of enquiry fees. Any such breaches will be viewed as calling into question the "fit and proper status" of persons involved, potentially making the licensee and the person liable to enforcement action by the CBB.

              October 07

            • CM-1.2.6

              All CRB members must meet the following requirements and incorporate them into their policies and procedures:

              a) Establish an electronic monitoring system to detect, monitor and maintain records and a log of all access to CRB data by the CRB member’s employees;
              b) Conduct a monthly internal audit on the access logs to identify unauthorised access to CRB data by any employee without securing customer consent and report to the CBB any observed violation of Article 68(bis(2)) of CBB Law;
              c) Require the sign off of a CRB member’s designated employee on their legal obligations concerning the confidentiality of CRB data and that any violation of Article 68(bis(2)) of CBB Law would subject them to an enforcement action in accordance with CBB Law; and
              d) Cover compliance with the above requirements in the performance appraisal of relevant employees.
              Added: July 2020

            • CM-1.2.7

              Failure to comply with Article 68(bis(2)) of the CBB Law and Paragraph CM-1.2.6 may result in an enforcement action taken against the CRB member, as well as the relevant employee in accordance with CBB Law.

              Added: July 2020

          • CM-1.3 CM-1.3 Credit Policy

            • CM-1.3.1

              A properly documented credit policy is an essential element of and prerequisite for the credit risk management process. Consistent with the Board's objectives, it assists bank management in the maintenance of proper credit standards and the avoidance of unnecessary risks.

              October 07

            • CM-1.3.2

              It is prudent to review the credit policy regularly to ensure that once it is established, it remains flexible enough to be current and continues to accomplish its original purpose taking into consideration market developments.

              October 07

            • CM-1.3.3

              Explicit guidelines in credit policy provide the basis for effective credit portfolio management. A sound credit policy should consider which types of credit products and borrowers the bank is looking for and the underwriting standards the bank will utilize.

              October 07

            • CM-1.3.4

              A bank's credit policy should address all credit matters of significance including:

              (a) Objectives of credit monitoring;
              (b) Organisation and reporting structure of the credit department;
              (c) Designated markets and products;
              (d) Establishment of a credit limit framework;
              (e) Guidelines for assessment of concentration;
              (f) Authorisation procedures for the advancement of credit;
              (g) Establishment of credit committees;
              (h) Establishment of desirable pricing levels and criteria; and
              (i) Problem credit identification and administration.
              Amended: January 2011
              October 2007

            • CM-1.3.5

              After the credit facility has been granted, its performance should be monitored at regular intervals. This includes an appropriate periodic review of financial statements, a reassessment of collateral and update of appraisals, and attentive monitoring of conditions in the borrower's industry. Credit supervision constitutes the first line of detection of difficulties and provides the bank with an opportunity to address problems before losses are sustained.

              October 07

        • CM-2 CM-2 Developing a Sound Credit Culture

          • CM-2.1 CM-2.1 Overview

            • CM-2.1.1

              Credit culture is defined as the sum total of a bank's approach to managing credit risk, including business strategy, credit policy, shared assumptions about credit, the effectiveness of communications, and the composition and quality of the resulting credit portfolio.

              October 07

            • CM-2.1.2

              As a matter of best practice, all banks should periodically review their credit cultures in order to reduce future credit losses and also to minimise reputational risk and damage to their credit ratings.

              October 07

            • CM-2.1.3

              The CBB draws all licensed banks' attention to the September 2000 document issued by the Basel Committee entitled 'Principles for the Management of Credit Risk'. This document contains 17 principles which all banks should ensure are covered in their credit culture (i.e. policies, procedures, systems and controls) (see www.bis.org/publ/bcbs75.pdf).

              Amended: January 2011
              October 2007

            • CM-2.1.4

              Effective from the date of the original circular (see Section CM-A-3), the CBB has used the Basel document mentioned above as a guideline in its evaluation of the credit cultures of banks operating in Bahrain. Evaluation is conducted through prudential meetings, inspection and reporting accountants' reviews.

              Amended: January 2011
              October 2007

          • CM-2.2 CM-2.2 Elements of a Strong Credit Culture

            • CM-2.2.1

              First, the regulation in this Section is recommendatory in nature (except for the requirements in Paragraph CM-2.2.2 (a)&(e) below), and the guidelines below under the five headings are indicative of best practice. Some of the guidelines may not be appropriate to all relevant licensees. However, if a bank is not following these guidelines, it should consider why it is not doing so.

              October 07

            • CM-2.2.2

              Secondly, the regulation in this Section is intended as a complement to the September 2000 Paper by the Basel Committee entitled 'Principles for the Management of Credit Risk' (see Section CM-B.2). This Section does not summarise the Basel Paper, but is intended to be read in conjunction with the above Paper.

              (a) The Role of the Board of Directors

              The Board of Directors must approve all the operating policies of a bank (see principle 1 of Basel Committee paper 'Framework for Internal Controls Systems in Banking Organisations' – Section CM-B.2).

              Given that credit risk is still the major risk that banks are exposed to in their business, particular scrutiny must be paid to credit policies, in terms of various limits as well as in terms of risk strategy. An essential function of the Board is to review and reassess the credit policies of the bank (including collateral, provisioning policies and concentration policies) on a periodic basis. The Board should also regularly review overdue and large facilities both in terms of performance, and also in relation to the capital (base) of the bank. The Board should insist upon periodic review/evaluation of internal systems and control weaknesses identified by external/internal auditors and management. Principle 1 of the Basel Committee paper 'Principles for the Management of Credit Risk' (see Section CM B-2) also gives greater detail on the role of the Board in developing a sound credit culture.
              (b) The Role of the senior management

              Senior Management should be involved in regular reviews of outstanding facilities and overdue accounts as well as reviewing changes in activity, turnover or balances in clients' accounts. The role of senior management is covered in depth in Principle 2 of Basel Committee paper 'Principles for the Management of Credit Risk' – Section CM-B.2 (see also Principle 3 of Basel Committee paper 'Framework for Internal Controls Systems in Banking Organisations' – Section CM-B.2). However, Senior Management should be involved in the credit review process of (larger) existing facilities, visiting clients, requesting up to date financial statements and verifying collateral. Too often, a lack of direct contact by senior management with a problem client has been an identified factor in significant credit losses by banks, whether by way of fraud, or corporate failure.
              (c) Role of an Independent Risk Management Function

              Perhaps the key point to emphasise in Risk Management is that the function must be independent of the senior management and operational functions which are related to business acquisition. The Risk Management function should report to the Board or to senior management related to control functions. The Risk Management function must not only monitor risk, but also control it (i.e. review limits, excesses etc). It must also ensure that risk monitoring systems accurately measure risk in the first place, and that all risks where they occur are, correctly identified (see also Principle 6 of Basel Committee paper 'Framework for Internal Controls Systems in Banking Organisations' – Section CM-B.2).
              (d) Effective Internal Systems and Controls

              Well implemented sound policies and procedures maintain credit standards, enable monitoring and control of credit risk, and identify problem credits in a timely manner (see Principle 2 of Basel Committee paper 'Principles for the Management of Credit Risk' – Section CM-B.2 for more detail). Sound policy and administrative requirements also apply equally strongly to existing facilities as well as new ones (see Principle 8 of Basel Committee paper 'Principles for the Management of Credit Risk' – Section CM-B.2). Policies and procedures should allow a thorough understanding of the counterparty, the purpose of the credit facility and the source of repayment (Principle 4 of Basel Committee paper 'Principles for the Management of Credit Risk' – Section CM-B.2) to be gained by the Risk Management function in its assessment of the counterparty for risk profiling purposes, (see also Principle 6 of Basel Committee paper 'Framework for Internal Controls Systems in Banking Organisations' – Section CM-B.2 and Section E of the paper issued by the Counterparty Risk Management Policy Group - 'Improving Counterparty Risk Management' – see Section CM-B.2). Banks should seek to utilise internal rating systems to manage credit risk and to set adequate provisions on a timely basis (see Principle 10 of Basel Committee paper 'Framework for Internal Controls Systems in Banking Organisations' – Section CM-B.2).
              (e) The Role of Internal Audit

              Internal audit function must, on an on-going basis, monitor the system of internal controls because it provides an independent assessment of the adequacy of, and compliance with, the established policies and procedures. Internal audit function must report directly to the highest levels of the banking organisation, typically the Board of Directors or its audit committee, and to senior management. This allows for the proper functioning of corporate governance by giving the Board information that is not biased in any way by the levels of management that the reports cover.
              Amended: October 2011
              October 2007

          • CM-2.3 CM-2.3 Name-financing

            • CM-2.3.1

              Banks are exposed to credit risk when they provide large credit facilities on a 'clean' basis (i.e. without collateral or security). This risk is amplified, specifically, when such clean name financing is made without adequate (up to date) financial information.

              October 07

            • CM-2.3.2

              In many banks there is a tendency to indulge in 'name-financing' without any credit analysis or understanding of the concerned counterparty's current outstanding facilities from other banks. The CBB strongly discourages the banks to engage in such activities in order to minimise their credit risk and reputation risk.

              Amended: January 2011
              October 2007

        • CM-3 CM-3 Assessment of Credit Quality

          • CM-3.1 CM-3.1 Overview

            • CM-3.1.1

              A realistic assessment of credit quality is an essential feature of effective credit risk management. The starting point for a systematic review of credit quality is a comprehensive review of the bank's written credit policies and practices. These include, but are not limited to:

              (a) Credit approval procedures;
              (b) Credit underwriting criteria; and
              (c) Credit administration process.
              Amended: January 2011
              October 2007

            • CM-3.1.2

              Credit quality is a relative concept based on performance prospects and external variables. Trends in the economy, and changes in markets and prices of goods affect the evaluation of credit facility repayment value. Assessing credit risk is a dynamic concept which needs to take into account the business cycle and the economic environment.

              October 07

            • CM-3.1.3

              The objectives of the credit assessment are to determine:

              (a) Whether the applicant / customer will have sufficient future liquid resources to honour credit obligations according to the agreed terms;
              (b) Whether the applicant's / customer's present and future prospects indicate that they will continue as a going concern in the foreseeable future;
              (c) Is the applicant / customer of sufficient integrity; and
              (d) To what extent does any security offered affect the risk inherent in the facility.
              Amended: January 2011
              October 2007

            • CM-3.1.4

              To help improve prudential oversight of credit quality, the CBB, in this Module, seeks to establish a set of broad rules that are useful in identifying and containing the impact of impaired assets within banks.

              Amended: January 2011
              October 2007

          • CM-3.2 CM-3.2 Credit Grading System

            • CM-3.2.1

              The banks should have in place appropriate credit grading systems (classification) to help assess asset quality and credit exposures including performing receivables.

              October 07

            • CM-3.2.2

              Credit grading systems offer a number of benefits. Analysis of a bank's entire book can reveal important insights to bank's management in the functioning and ultimately the health of the bank. Credit grading systems provide the means for a more systematic assessment of asset quality. They are particularly useful in assisting in the early detection of asset quality problems within a bank by highlighting credit with above normal risks.

              October 07

            • CM-3.2.3

              The CBB does not favour the imposition of a standard credit grading system for all banks. Instead, the CBB will rely, wherever possible, upon the credit grading system adopted by each bank. This preference reflects the fact that banks generally have devoted significant resources to developing grading systems that best fit their individual product mix.

              Amended: January 2011
              October 2007

            • CM-3.2.4

              Each bank is hence required to provide to the CBB a statement of its current policy in respect of its credit grading system (including definitions used to classify exposures). Banks that do not intend to implement a credit grading system should indicate to the CBB their reason for not doing so. The CBB expects to have the endorsement of the Board of the bank concerned.

              Amended: January 2011
              October 2007

            • CM-3.2.5

              Banks looking to implement a credit grading system, or to update their current system, should consider the following points:

              (a) The system should cover a broad range of the bank's asset portfolio, including unrestricted investment accounts, restricted investment accounts and other off-balance sheet exposures;
              (b) The system should cover both performing and impaired assets - it is common for grading systems to have sufficient range of grades, covering exposures with the lowest risk to those where losses are expected;
              (c) Banks should detail credit grading system in a credit policy statement, and should develop procedures for the determination and regular review of the credit risk grades;
              (d) Banks should establish formal forums in the form of committees to review the compliance with the credit policy parameters and the concentration of exposure attributable to various economic and industrial sectors in accordance with the credit policy;
              (e) Particular attention should be given to those facilities which involve a higher than normal risk, or which are impaired;
              (f) It is imperative that the policies relating to the provisioning for Islamic banks should be clearly laid down, fully identifying provisions relating to assets financed by own funds and those by the investment account holders; and
              (g) Facilities should, at minimum, include four categories along the following lines:
              (i) 'Standard credits' are those, which are performing, as the contract requires. There is no reason to suspect that the creditor's financial condition or collateral adequacy has depreciated in any way. The bank is very likely to extend additional funds to this borrower if requested (subject to internal or legal credit restrictions);
              (ii) 'Substandard credits' are inadequately protected by the paying capacity of the obligor or by the collateral pledged. They are characterized by the distinct possibility that the bank will sustain some loss if the deficiencies are not corrected. Loss potential, while existing in the aggregate amount of Substandard assets does not have to exist in individual assets classified Substandard;
              (iii) 'Doubtful credits' have all the weaknesses inherent in a credit classified as Substandard with the added characteristic that the weaknesses make collection or liquidation in full, on the basis of currently existing facts, conditions, and values, highly questionable or improbable. The possibility of Loss is extremely high, but because of certain important and reasonably specific pending factors which may work to the advantage and strengthening of the asset, its rating as an estimated Loss is deferred until its more exact status may be determined; and
              (iv) 'Loss credits' are considered uncollectible and of such little value that their continuance as assets is not warranted. The rating does not mean that the asset has absolutely no recovery or salvage value, but rather that it is not practical or desirable to defer writing off this basically worthless asset even though partial recovery may be affected in the future.
              Amended: April 2011
              October 2007

          • CM-3.3 CM-3.3 Impairment of Assets and Provisioning

            • Impairment of Assets

              • CM-3.3.1

                Banks are required to place on a non-accrual basis any facility where there is reasonable doubt about the collectability of the receivable irrespective of whether the customer concerned is currently in arrears or not. This acknowledges the reality that recognition of impaired assets will have a high degree of subjectivity attached to it.

                October 07

              • CM-3.3.2

                Impaired assets should be classified into one of the following categories:

                (a) Non accrual items;
                (b) Restructured items; or
                (c) Other assets acquired through security enforcement, including 'other real estate owned'.
                October 07

              • CM-3.3.3

                For the purpose of this Module, the following definition of non-accrual items applies:

                (a) Financing facilities and investments where there is reasonable doubt about the ultimate collectability of principal within a time frame established by the bank. Non-accruals would include all facilities against which a specific provision has been established, or a write-off taken even if the facility is not in breach of contractual requirements. Refer to AAOIFI's FAS 11 on recognition of provisions and reserves; and
                (b) Financing facilities and investments, not included in (a), where contractual payments of the principal are 90 or more consecutive days in arrears, and where the 'fair value' of security is insufficient to cover repayment. In line with the principles outlined above, a facility should be classified as non-accruing earlier than 90 days where it is evident that full, or partial repayment of the amount is unlikely even though the full extent of the loss cannot be clearly determined.
                Amended: April 2012
                October 07

            • Provisioning

              • CM-3.3.4

                Banks must maintain an adequate level of provisioning against the impairment of assets and problem exposures if their earnings and capital adequacy are to be measured correctly.

                October 07

              • CM-3.3.5

                As a general rule, where there is a doubt about the collectability of a receivable, and security exists, provisions should equal the carrying value of the receivable less the net current market value of security.

                October 07

              • CM-3.3.6

                Provisions of either type (specific or general) are made in relation to receivables, financing and investment assets in cases where there is doubt regarding collectability or an impairment of value. Refer to AAOIFI's FAS 11: Provisions and Reserves.

                October 07

              • CM-3.3.7

                Provisioning should be carried in the respective books including bank's own books, unrestricted investment account holders' books and restricted investment account holders' books.

                October 07

              • CM-3.3.8

                A general provision is an amount set aside to reflect a potential loss that may occur as a result of currently unidentifiable risks in relation to receivables, financing or investment assets. The amount reflects estimated losses affecting these assets attributable to events that have already occurred at the date of the statement of financial position, and not estimated losses attributable to future events.

                October 07

              • CM-3.3.9

                The policy for provisioning should clearly contain provisions for segregating provisions relating to assets financed by own funds and those financed by investment account holders. In devising the policy, reference should be made to the Mudaraba contract.

                October 07

              • CM-3.3.10

                A specific provision is an amount set aside to reflect an estimated impairment of value of a specific type of asset. In the cases of investment assets, it is the amount needed to write the assets down to cash equivalent value if this is lower than cost. Refer to AAOIFI's FAS 11: Provisions and Reserves.

                October 07

          • CM-3.4 CM-3.4 Provisions Against Sovereign Credit

            • CM-3.4.1

              The CBB has consistently encouraged banks to maintain adequate provisions against credits to borrowers experiencing difficulties and against credits for countries with current or potential credit servicing difficulties.

              Amended: January 2011
              October 2007

            • CM-3.4.2

              In all cases the assessment of credits - and decisions regarding adequate provisions - are assisted by the categorization of credits as defined by the CBB in Section CM-3.2. In addition, with regard to 'sovereign credit' it is particularly important that the size of the provisions made should be based on the identification and objective assessment of the nature and extent of difficulties being experienced by particular countries and reflect as near as possible deterioration in the prospects for recovering credits. With these objectives in mind, the Sovereign Credit Provisioning Matrix (see Appendix CM-1) contains a list of measurements which have been designed to help identify those borrowers and countries with payment difficulties and to decide what would constitute adequate provisions.

              Amended: January 2011
              October 2007

            • CM-3.4.3

              It is emphasized that this Section and the Sovereign Credit Provisioning Matrix (see Appendix CM-1) are merely a general framework for assessing degrees of provisions. They should not be regarded as an exhaustive or definitive framework. Nevertheless, the CBB does intend to include the results of banks' calculations in its discussions with them, and to establish that adequate provisions are being made.

              Amended: January 2011
              October 2007

            • Implications of International Accounting Standard (IAS) no. 39 on the Provisions Assessed through Sovereign Credit Provisioning Matrix

              • CM-3.4.4

                The banks must continue to apply the Sovereign Credit Provisioning Matrix (see Appendix CM-1) as a benchmark for estimating future recoverable cash receipts. However, if a lower provisioning amount is determined, i.e. lower than the amount identified through the matrix, and the bank intends to book the lower amount, then a meeting must be arranged with the CBB to discuss the issues before booking such provisions.

                Amended: July 2011
                Amended: January 2011
                October 2007

          • CM-3.5 CM-3.5 Collateral

            • CM-3.5.1

              The extension of credit is often supported by collateral provided by the customer or third parties. When the credit decision is based on collateral value, independent timely appraisals of the collateral should be obligatory, including provision for sufficient security margins.

              October 07

            • CM-3.5.2

              In principle, collateral can improve the credit grading of a customer, but experience suggests that over-reliance on collateral is unsound because very often when a credit facility goes sour the collateral turns out to have less value than estimated or is, at worst, illusory.

              October 07

            • CM-3.5.3

              Misjudgements about collectability are frequently the cause; collateral is often illiquid, difficult to value during periods of financial distress and costly to realise through foreclosure or other legal means. Particular concern may be appropriate in the case of collateral in the form of real estate, as it involves additional uncertainties and the costs of maintaining the property.

              October 07

            • CM-3.5.4

              As a matter of principle, collateral should not replace a careful assessment of the borrower's ability to repay.

              October 07

          • CM-3.6 CM-3.6 Country and Transfer Risks

            • CM-3.6.1

              The CBB requires all Islamic bank licensees to set out their policy on country and transfer risks, including the criteria on downgrading a country exposure from stage 1 to stages 2 or 3, and related provisioning requirements, in a policy statement which must be approved by the CBB.

              Added: July 2017

            • CM-3.6.2

              For the purpose of Paragraph CM-3.6.1, Islamic bank licensees , may consider the sovereign risk matrix factors, stipulated in Appendix CM-1 (Sovereign Debt Provision Matrix), and any other factors.

              Added: July 2017

            • CM-3.6.3

              Branches of foreign Islamic bank licensees must satisfy the CBB that equivalent arrangements are in place at the parent entity level, otherwise a policy statement is required in line with paragraph CM-3.6.1.

              Added: July 2017

            • CM-3.6.4

              The policy statement set in Paragraph CM-3.6.1 must be implemented with effect from 1st January 2018.

              Added: July 2017

        • CM-4 CM-4 The Monitoring and Control of Large Exposures of Banks Licensed by the CBB

          • CM-4.1 CM-4.1 Overview

            • CM-4.1.1

              The CBB's directives on large exposures for banks in Bahrain is issued as part of the CBB's measures to encourage banks to mitigate risk concentrations.

              Amended: January 2011
              October 2007

            • CM-4.1.2

              The contents of this Chapter apply in full to Bahraini Islamic bank licensees on a consolidated basis.

              Amended: January 2015
              Amended: April 2014
              Amended: January 2011
              October 2007

            • CM-4.1.3

              Islamic banks, through the PIR forms (see Module CA), must notify the CBB of the subsidiaries to be consolidated for reporting purposes.

              Amended: January 2015
              Added: January 2011

          • CM-4.2 CM-4.2 The Measure of Exposure

            • CM-4.2.1

              For large exposure(s) purposes, the measure of exposure reflects the maximum loss that will arise should a counterparty fail, or the loss that may arise due to the realisation of any financing assets, shareholdings or other exposures or off-balance sheet positions, or losses experienced due to non-repayment of facilities granted. In the case of undrawn L/C or similar facilities, the advised limit must be included in the measure of exposure. In particular for Islamic banks, the measure of exposure also includes facilities or transactions or purchases of assets where the bank itself is not exposed, but is committing client funds through arrangements such as a wakala. In certain cases (particularly off-balance sheet items or derivatives), the measure of a large exposure may be larger than that used in published financial statements. Consistent with this, an exposure encompasses the amount at risk arising from a bank's:

              (a) Claims on a counterparty including actual claims, and potential claims which would arise from the drawing down in full of undrawn advised facilities (whether revocable or irrevocable, conditional or unconditional) which the bank has committed itself to provide, and claims which the bank has committed itself to purchase or underwrite. Such claims would include but are not limited to:
              (i) Financing and other credit facilities whether or not drawn;
              (ii) Exposures arising through lease agreements;
              (iii) Margin held with exchanges or counterparties;
              (iv) Claims under Shari'a compliant derivative contracts such as swaps and similar contracts on profit rates, foreign currencies, equities, securities, or commodities;
              (v) Claims arising in the course of settlement of securities transactions;
              (vi) Receivables such as fees or commissions;
              (vii) Claims arising in the case of forward sales and purchases of financial instruments in the trading or banking books;
              (viii) Amounts outstanding under sale and repurchase agreements, forward asset purchase agreements, buyback agreements, secured financing or similar transactions;
              (ix) Sukuk, bills or other non-equity financial instruments; and
              (x) Underwriting exposures for sukuk, bills, or other non-equity financial instruments.
              (b) Contingent liabilities arising in the normal course of business, and those contingent liabilities which would arise from the drawing down in full of undrawn advised facilities (whether revocable or irrevocable, conditional or unconditional) which the bank has committed itself to provide. In the case of an undrawn L/C or similar facility, the advised limit must be included in the measure of exposure. Such liabilities may include:
              (i) Direct credit substitutes (including guarantees, standby letters of credit, bills accepted but not held by the reporting bank, and endorsements creating payable obligations);
              (ii) Claims sold with recourse (i.e. where the credit risk remains with the reporting bank);
              (iii) Transaction related contingents not having the character of direct credit substitutes (e.g. performance bonds, bid bonds, transaction-related L/Cs etc); and
              (iv) Undrawn documentary letters of credit issued or confirmed;
              (c) Any other assets or transactions whose value depends wholly or mainly on a counterparty performing his obligations, or whose value depends upon that counterparty's financial soundness but which do not represent a claim on the counterparty. Such assets or transactions include:
              (i) Equities and other capital instruments (including significant investments in commercial entities—see CM-4.4.1.E for definition);
              (ii) Convertible Murabahas or other similar instruments.
              (iii) Exposures arising from arrangements that have been entered into by the reporting bank for the purpose of providing credit protection;
              (iv) Underwriting or purchase commitments for equities; and
              (v) Claims on fund managers. Banks must regard assets placed with third parties under management as exposures. Under no circumstances may a bank place funds with fund managers (or mudaribs or trustees) that also act as custodian; and
              (d) Any other assets, receivables or transactions (whether on or off- balance sheet), which constitute a claim (or potential claim) for the customers of the bank which are not included in (a), (b) or (c) above. In particular, it includes exposures where the bank is committing client funds through arrangements such as a wakala.
              Amended: January 2015
              Amended: April 2011
              Amended: January 2011
              October 2007

            • CM-4.2.2

              As a general rule, exposures must be reported on a gross basis (i.e. no offset). However, debit balances on accounts may be offset against credit balances on other accounts with the bank if:

              (a) A legally enforceable right of set off exists in all cases (as confirmed by an independent legal opinion addressed to the bank) in respect of the recognised amounts;
              (b) The debit and credit balances relate to the same customer or to customers in the same group (for a group facility, a full cross guarantee structure must also exist before debit balances on accounts may be offset against credit balances i.e. full multilateral guarantees must be in place between all the companies within the group); and
              (c) The bank intends either to settle on a net basis, or to realise the debit balances and settle the credit balances simultaneously; and
              (d) The transactions are subject to the regulation in respect of close-out netting under market contract whenever it is applicable (see Appendix CM-4).
              Amended: January 2015
              Amended: July 2011
              Amended: April 2011
              Amended: January 2011
              October 2007

            • CM-4.2.3

              Large exposures are calculated using the sum of the nominal amounts before the application of the risk weighting and credit conversion factors for:

              (a) On-balance sheet claims;
              (b) Guarantees and other contingent claims; and
              (c) Potential claims in the case of undrawn facilities.

              The amount at risk from Shari'a compliant derivative contracts is taken to be the credit equivalent amount calculated based on the guidelines for the prudential returns (see module CA). In the case of equity exposures, the current fair value as shown in the books of the bank must be taken as the measure of exposure.

              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-4.2.4

              In case of syndicated facilities, the nominal amount would include only the bank's share of the syndication (financed by unrestricted investment accounts, current accounts and bank's own funds) and any amounts for which binding commitments from other financial institutions are not available. Where a binding commitment is available, that amount would be excluded in calculation of the large exposures. See Section CM-4.5 for exemptions.

              Amended: January 2011
              October 2007

            • CM-4.2.5

              For the purpose of large exposures, balance sheet claims involving assets acquired to be leased under Ijarah Muntahia Bittamleek should be reflected as an exposure against the lessee. Further, murabaha contracts where assets are held for resale, under a binding promise, such exposure should be reflected as an exposure to the counterparty which has signed the binding promise. Potential claims in the case of Istisna'a contracts should include the total amount expected to be paid to al-Sani (the seller) and shown as an exposure to al-Mustasni (ultimate buyer).

              October 07

            • CM-4.2.6

              A bank's exposure arising from securities' trading operations is calculated as its net long position in a particular security (a short position in one security issue may not be offset against a long position in another issue made by the same issuer). A bank's 'net long position' in a security refers to its commitments to buy that security together with its current holding of the same security, less its commitments to sell such securities.

              Amended: January 2011
              October 2007

            • CM-4.2.7

              "Underwriting" is defined as "A binding commitment by the reporting bank to purchase securities issued by, or provide syndicated credit facilities to (as the case may be) an unconnected party ("the issuer" or "the borrower") at a mutually agreed price. Underwriting does not take place if a bank commits to purchase its own securities or securities issued by a party connected to it as there is no transfer of risk; therefore banks may not utilise the limits concerned with these definitions in connection with any commitments to any connected counterparties." Temporary exposure limits for "underwriting" and other investment business related exposures are covered in more detail in paragraphs CM-4.5.2A-F.

              Amended: July 2012
              Added: January 2011

          • CM-4.3 CM-4.3 Identity of Counterparty

            • CM-4.3.1

              For the purposes of measuring exposures, the counterparty will generally be: the person from whom the concerned funds are receivable (in the case of fees and commissions etc.); the counterparty (customer) in the case of credit facilities; the person guaranteed, and the issuer of a security in the case of a security held; or the party with whom a contract was made in the case of a Shari'a compliant derivative contract.

              Amended: January 2011
              October 2007

            • CM-4.3.2

              Where a third party has provided an eligible guarantee, and subject to the guaranteed bank's policy statement not stating otherwise, the guaranteed bank may be permitted to report the exposure as being to the third party guarantor, rather than the person guaranteed (see Chapter CA-4 for full conditions relating to the recognition of guarantees for regulatory purposes).

              Amended: January 2015
              Amended: January 2011
              October 2007

          • CM-4.4 CM-4.4 Limits for Large Exposures

            • Definitions and Aggregate Limit on Large Exposures

              • CM-4.4.1

                A 'large exposure' is any exposure whether direct or indirect to a counterparty or a group of closely related counterparties which is greater than, or equal to, 10% of the reporting bank's consolidated Total Capital.

                Amended: January 2015
                Amended: January 2011
                October 2007

              • CM-4.4.1A

                'Capital instrument' includes all components of equity capital including ordinary equity, both voting and non-voting, and preference shares. It also includes convertible or hybrid financial instruments which are debt — like in character and which may be converted into equity (such as convertible murabaha). Also for financial institutions and insurance companies, any other financial instruments (such as subordinated debt) which are eligible as regulatory capital should also be included as capital instruments. Sukuk or senior debt instruments would not normally be regarded as "capital instruments" unless they have convertibility features. Equity-like contracts such as joint venture musharaka contracts (investments but not financing) are also included in this definition. The musharaka stake is classified as a capital instrument at onset.

                Amended: January 2012
                Added: January 2011

              • CM-4.4.1B

                'Acquisition' means the acquiring by a bank of beneficial or legal ownership of capital instruments issued by another entity. This would not include securities underwriting until the expiry of the underwriting period (where separate arrangements apply elsewhere in this Module). Acquisition may also be in the form of exercising of rights to take control of capital instruments pledged as collateral. The pledging of capital instruments by a customer to a bank as collateral (e.g. for the purpose of obtaining credit) does not in itself mean that an "acquisition" has taken place. Acquisition also does not include the establishment of new subsidiaries by the bank. Regulatory requirements for the establishment of SPVs and subsidiaries are contained in Section BR-5-2.

                Amended: January 2015
                Amended: January 2012
                Added: January 2011

              • CM-4.4.1C

                'Investment' is any holding by a bank of capital instruments issued by a third party that is not a subsidiary of the bank. Therefore holdings of subordinated debt eligible as regulatory capital issued by another financial institution would be regarded as an "investment". In this case 'holding' means legal or beneficial ownership of capital instruments.

                Amended: January 2012
                Added: January 2011

              • CM-4.4.1D

                A bank has "close links" with:

                (a) Any person/entity which qualifies as a controller of the concerned bank as defined in Chapter GR-5;
                (b) Any entity which is a subsidiary of the bank; and
                (c) Any entity which is an associate of the bank.
                Amended: January 2015
                Amended: January 2012
                Amended: April 2011
                Added: January 2011

              • CM-4.4.1E

                A "major investment" is defined as any acquisition or investment in the capital instruments of another entity by a Bahraini Islamic bank licensee which is equivalent to or more than 10% of the Bahraini Islamic bank licensees consolidated total capital.

                Amended: October 2016
                Amended: April 2015
                Amended: January 2015
                Amended: January 2012
                Added: January 2011

              • CM-4.4.1F

                [This Paragraph was deleted in January 2015.]

                Deleted: January 2015

              • CM-4.4.2

                Total Capital has the same meaning as when used in Section CA-1.1.

                Amended: January 2015
                Amended: January 2011
                October 2007

              • CM-4.4.3

                The aggregate of large exposures may not exceed 800% of the bank's consolidated Total Capital (there are separate sub-limits for "Significant investments" in Section CM-4.10),whether funded or not funded, i.e. contingent commitments.

                Amended: October 2016
                Amended: January 2015
                Amended: January 2011
                October 2007

              • CM-4.4.3A

                The CBB requires that any large exposure, as defined in Paragraph CM-4.4.1, must be priorly approved by the bank's Board of Directors.

                Added: January 2017

              • CM-4.4.4

                [This Paragraph was deleted in January 2015.]

                Deleted: January 2015

            • Single Exposure Limits to Unconnected Counterparties

              • CM-4.4.5

                A bank may not incur an exposure to an individual counterparty or group of closely related counterparties (not connected to the reporting bank) which exceeds the limit below, in respect of the reporting bank's consolidated Total Capital without the prior written approval of the CBB. Where such limit has been exceeded whether with or without the prior approval of the CBB, the excess amount must be risk-weighted at 800%. The following single exposure limit applies:

                Direct exposures (i.e. funded, unfunded on and off balance sheet): A bank may not incur an exposure to an individual counterparty or group of closely related counterparties which exceeds 15% of the reporting bank's consolidated Total Capital without the prior written approval of the CBB. For this purpose, companies/banks with variable capital should not include participation shares in calculating their consolidated Total Capital, since there are governed by Mudaraba contract (profit sharing).

                Amended: April 2015
                Amended: January 2015
                Amended: January 2011
                October 2007

            • Closely Related Counterparties — Definitions

              • CM-4.4.6

                'Closely related counterparties' are two or more counterparties who constitute a single risk because one of them has, directly or indirectly, a controlling interest in the other(s) (i.e. 20% or more voting rights), or counterparties connected in such a way that the financial soundness of any one of them may affect the financial soundness of the other(s), or the same factors may affect the financial soundness of both or all of them.

                Amended: January 2015
                Amended: January 2011
                October 2007

              • CM-4.4.6A

                The CBB shall exercise its discretion in considering two or more counterparties of a bank as closely related on a case by case basis if it finds during its onsite or offsite supervisory review any linkage of such counterparties.

                Added: January 2017

              • CM-4.4.7

                'Controlling interest' means either significant ownership (i.e. ownership of 20% or more of the voting rights) or any other interests (including, but not limited to, the ability to exercise or control the exercising of voting power in the other party) which enable the holder, or which would enable a proposed transferee, thereof to exercise significant influence over the management and business of the other party.

                Amended: July 2012
                Amended: January 2011
                October 2007

            • Limits on Exposures to Connected Counterparties

              • CM-4.4.8

                Exposures to connected counterparties may be justified only when undertaken for the clear commercial advantage of the bank, when negotiated and agreed on an arm's length basis, and when included in the large exposures policy statement agreed with the CBB.

                Amended: January 2011
                October 2007

              • CM-4.4.8A

                A bank may not exceed the individual or aggregate connected counterparty limits shown in Paragraph CM-4.4.13 without the prior written approval of the CBB.

                Added: July 2012

              • CM-4.4.9

                A bank may not undertake exposures to its own external auditors. In this context, 'external auditors' refers to the firm/partnership, the partners, the directors and managers of the audit firm.

                Amended: January 2011
                October 2007

              • CM-4.4.9A

                Any on-balance sheet utilisation of existing/outstanding restricted investment accounts (RIAs) or any movement of funds between RIAs is not permitted unless specifically permitted under a valid contract between the bank and the relevant customer.

                Amended: January 2015
                Amended: January 2012
                Added: January 2011

              • CM-4.4.10

                For the purpose of this Module, 'Connected counterparties' includes companies or persons connected with the bank, including, in particular; controllers of the bank (and their appointed board representatives) as defined in Chapter GR-5; subsidiaries, associates and related parties of the bank as defined by IFRS; holders of controlled functions in the bank as defined by Module LR-1A and their close family members (as defined by IFRS–IAS 24); members of the Shari'a Supervisory Board.

                Amended: January 2015
                Amended: July 2012
                Amended: July 2011
                Amended: January 2011
                Amended: April 2008
                October 2007

              • CM-4.4.10A

                Equity participations in and credit exposures to consolidated banking and financial subsidiaries (see CM-4.2.1(c)) need not be included in exposures to connected counterparties for the sake of the table in CM-4.4.13. Equity participations in and credit or financing exposures to unconsolidated subsidiaries are included in the definition of exposure in order to understand the degree of support the parent is supplying to its unconsolidated subsidiaries on a day-to-day basis.

                Added: January 2015

              • CM-4.4.10B

                The CBB shall exercise its discretion in applying the definition of connected counterparties of a bank on a case by case basis if it finds during its onsite or offsite supervisory review any linkage of such counterparties.

                Added: January 2017

              • CM-4.4.11

                Lending to senior management is covered under Chapter CM-5. All credit facilities to senior management are included under the limits given in the table under Paragraph CM-4.4.13.

                Amended: January 2015
                Amended: January 2011
                October 2007

            • 0% Limit on Exposures to Controllers

              • CM-4.4.12

                Banks must not undertake exposures to controllers as defined in Chapter GR-5 or to subsidiaries of such (i.e. there is a 0% limit for such exposures), however smaller shareholders will be subject to the normal exposure limits outlined in CM-4.4.5. Directors who are also controllers (or the appointed board representatives of such controllers) are subject to the 0% limit.

                Amended: January 2015
                Amended: January 2011
                Amended: April 2008
                October 2007

              • CM-4.4.13

                The limits for connected counterparties have been set as follows:

                Exposures funded on and off balance sheet (excluding RIAs) as a percentage of consolidated Total Capital

                Connected Counterparties Individual Limit Aggregate Limit
                Controllers and their subsidiaries 0% 0%
                Approved persons (and their close family members) and Shari'a Board Members 10% 25%
                Associates, other related parties not mentioned above and unconsolidated subsidiaries 15%
                Total (including senior management and others)   25%
                Amended: April 2015
                Amended: January 2015
                Amended: April 2011
                Amended: January 2011
                Added: April 2008

              • CM-4.4.13A

                Where limits mentioned under Paragraphs CM-4.4.5 and CM-4.4.13 have been exceeded whether with or without the prior approval of the CBB (see Paragraph CM-4.4.8A), the excess amount must be risk-weighted at 800%.

                Amended: January 2015
                Added: July 2013

            • Deductions from Total Capital

              • CM-4.4.14

                The CBB will closely examine all exposures to companies or persons connected to a bank and will deduct them from the bank's consolidated Total Capital if they are, in the CBB's opinion, of the nature of a capital investment, or provision of long-term working capital, or are made on particularly concessionary terms.

                Amended: January 2015
                Amended: January 2011
                Added: April 2008

              • CM-4.4.15

                Reciprocal cross-holdings of capital between a bank and its controllers (see GR-5) which artificially inflate the capital of licensee concerned are not permitted. Any cross-holdings that occur due to acquisitions or takeovers must be deducted from the concerned bank's Total Capital (see also CA-2.4.15).

                Amended: January 2015
                Added: January 2011

              • CM-4.4.16

                Any other form of connected lending outside the scope of the above will be dealt with by the CBB on a case-by-case basis.

                Added: January 2011

          • CM-4.5 CM-4.5 Exempt or Temporary Exposures

            • Exempt Exposures to Parties not Connected to the Bank

              • CM-4.5.1

                Certain types of exposure are exempt from the limits set out above in CM 4.4.5, but prior notification of commitment to such exposures must be made to the CBB and then retrospectively on a quarterly basis using the Form PIR provided in Appendix BR-5.

                Amended: April 2011
                Amended: January 2011
                October 2007

              • CM-4.5.2

                These exemptions fall into the following categories and are subject, in each case, to the policy statement as agreed with the CBB:

                (a) Short term (i.e. up to 3 months original maturity) interbank exposures to parties not connected to the reporting bank;
                (b) Exposures to GCC governments, and their Public Sector Entities that do not operate on a commercial basis, as set out in the guidelines to the PIR (see Module CA) where such bodies are not connected to the reporting bank;
                (c) Exposures to OECD central governments or Exposures secured by OECD central government securities/guarantees);
                (d) Exposures secured by cash or GCC government securities/guarantees;
                (e) Specific connected short-term exposures agreed with and approved in advance with the CBB, in particular those arising from a group treasury function (see Paragraph CM-4.5.6);
                (f) Pre-notified exposures which are covered by a guarantee from the bank's parent (see Paragraph CM-4.5.7 to CM-4.5.10);
                (g) Sukuk or other securities issued or guaranteed by the Islamic Development Bank (IDB) and any of its subsidiaries;
                Amended: January 2015
                Amended: January 2011
                Added: April 2008

            • Temporary Exposure Limits to Commercial Entities not Connected to the Bank

              • CM-4.5.2A

                In certain circumstances outlined below, banks may apply on a case-by-case basis to the CBB for approval of certain underwriting or investment business related exposures above the limits as stated in CM-4.4.5(a), (b), and (c) for periods of up to 3 months where the entity is a commercial entity.

                Amended: January 2015
                Amended: January 2012
                Added: January 2011

              • CM-4.5.2B

                A bank may not incur an exposure which arises when a bank enters into a legally binding commitment to underwrite a securities issue or to provide a syndicated financing facility for another commercial entity not connected to the bank, which exceeds 15% of the bank's consolidated Total Capital without the prior written approval of the CBB. The maximum level of such exposures per counterparty that the CBB may approve must not exceed 30% of the concerned bank's consolidated Total Capital during the three-month period.

                Amended: April 2015
                Amended: January 2015
                Amended: January 2012
                Added: January 2011

              • CM-4.5.2C

                Such securities underwriting exposures must be included in the trading book policy statement of a bank wishing to use this higher temporary limit. Any residual holdings of securities or syndicated financing commitments held for more than three months from the commitment date of underwriting must be risk-weighted at 800% where there are any excesses above the materiality thresholds outlined in Paragraph CA-2.4.25. Where the lead bank has obtained legally binding irrevocable (i.e. full) commitments from other institutions to participate in the concerned securities issue or to participate in providing the syndicated financing facilities, the lead underwriter or syndicate manager may show participations to the concerned sub-underwriting/ participating institution rather than to the issuer of the security or the obligor. The CBB will not allow any bank to include syndicated credit facilities to, or holdings of securities issued by any of the concerned bank or its connected counterparties (including SPVs connected through ownership, control or establishment) to be included in this temporary 30% limit.

                Amended: January 2015
                Amended: January 2012
                Added: January 2011

              • CM-4.5.2D

                A bank may not incur any temporary large exposure arising from investment business (where the intention by the concerned bank is to securitize such assets or place them with investors), which exceeds 15% of the bank's consolidated Total Capital without the prior written approval of the CBB. The maximum level of such temporary exposures that the CBB may approve per individual exposure must not exceed 25% of the concerned bank's consolidated Total Capital for a maximum six-month period. Any such exposures held for more than six months from the originating date of the exposure must be risk-weighted at 800% where there is any excess above the materiality thresholds mentioned in Paragraph CA-2.4.25. In order for a bank to be allowed such exposures, it must have in place a written detailed due diligence policy for such business which must be approved by the bank's board of directors and related procedures which must be approved by senior management.

                Amended: January 2020
                Amended: January 2015
                Amended: January 2012
                Added: January 2011

              • CM-4.5.2E

                In order to qualify for these temporary limits, banks must submit a request for each individual exposure to the CBB and the CBB shall respond within two weeks from the date of receiving a complete set of all required documents. The CBB will take into account any existing exposures to the concerned counterparties in its consideration of any application for such temporary large exposures limits.

                Amended: April 2012
                Amended: January 2012
                Added: January 2011

              • CM-4.5.2F

                In the case of any subsequent proposed increment in the amount of exposure (for example where a limit of 20% has been approved), the CBB's prior approval must be obtained (as outlined above). CBB approval for fair value changes to holdings/ underwritings of securities during the temporary approval period will not be required.

                Amended: April 2012
                Amended: January 2012
                Added: January 2011

              • CM-4.5.2G

                Temporary large exposures arising from investment business (where the intention by the concerned bank is to securitize such assets or place them with investors) referred to in Paragraph CM-4.5.2D are not subject to the 'connected counterparty' and significant investments in commercial entities limits and treatments during the six-month period. After the expiry of this period, the limits and deduction treatments relating to significant investments in commercial entities and 'connected counterparties' apply.

                Amended: January 2015
                Added: January 2012

            • Exempt Exposures to Connected Counterparties

              • CM-4.5.3

                Exposures to subsidiaries which are always fully consolidated on a line-by-line basis for supervisory purposes are exempt from the limits in this Module on a consolidated basis, however banks must observe the large exposure limits in CM-4.4.13 on a solo basis and the CBB's solo capital adequacy requirements in Module CA.

                Amended: January 2015
                Added: January 2011

              • CM-4.5.4

                Exposures to unconsolidated subsidiaries (normally non-financial and outside the scope of regulatory consolidation) are not exempt from the limits in this Module and will be included under the limits for exposures to associates, related parties and unconsolidated subsidiaries.

                Amended: January 2015
                Amended: January 2011
                October 2007

              • CM-4.5.5

                Banks may apply to the CBB to take on a treasury role on behalf of the group as a whole (provided that the group is subject to consolidated supervision by its home supervisor). The CBB's policy regarding the taking on of a treasury role includes exposures arising from a central risk management function. Such exposures must be approved by the CBB before they may be exempted.

                Amended: January 2011
                October 2007

              • CM-4.5.6

                In the above scenario (Paragraph CM-4.5.5), for example, exposures of more than 15% of the Total Capital to a parent bank from a subsidiary bank may be permitted where they constitute short term placements or financing of excess liquid funds.

                Amended: January 2015
                Amended: January 2011
                October 2007

            • Exposures Undertaken by a Subsidiary Bank

              • CM-4.5.7

                Where exposures undertaken by a Bahrain subsidiary of an overseas bank are guaranteed by its parent bank, the Bahrain subsidiary bank may be deemed to have an exposure to its parent bank.

                Amended: January 2011
                October 2007

              • CM-4.5.8

                Under the terms of this Module (See Paragraph CM-4.5.2(f)), such indirect exposures to a parent bank may be exempt from the limits on large exposures if the CBB is satisfied that:

                (a) Such exposures have been pre-notified to the CBB for the CBB's approval and are entered into within the terms of a policy agreed by the parent bank;
                (b) There are guarantees in place from the parent bank to protect the subsidiary should the exposure become impaired or require to be written off; and
                (c) In the case of banks, which are the Bahrain subsidiaries of overseas banks, the supervisory authority of the parent bank has approved the exposures that can be undertaken by the Bahrain subsidiary.
                Amended: January 2015
                Amended: January 2011
                October 2007

              • CM-4.5.9

                In the case of a Bahrain incorporated bank's subsidiary inside Bahrain, in order for an exposure exceeding 15% of Total Capital to be acceptable in the subsidiary, the Bahrain parent bank must at all times have the capacity to take on the exposure to the third party, without itself exceeding the limit of 15% of its own Total Capital. Also, the total exposure of the banking group to the customer must be within 15% of the parent bank's consolidated Total Capital.

                Amended: April 2015
                Amended: January 2015
                Amended: January 2011
                October 2007

              • CM-4.5.10

                The Central Bank will need to be satisfied that adequate control systems are in place to ensure that credit risks taken in the group as a whole are properly monitored and controlled.

                Amended: January 2011
                October 2007

          • CM-4.6 CM-4.6 Reporting of Exposures

            • CM-4.6.1

              All Islamic bank licensees are required to report their 25 largest exposures to banks as well as their 25 largest exposures to the CBB on a quarterly basis using the Form PIRI provided in Appendix BR-5.

              Amended: July 2015
              Amended: April 2015
              Amended: April 2014
              Amended: January 2011
              Amended: October 2009
              October 2007

            • CM-4.6.1A

              All Bahraini Islamic bank licensees must report the financial details of each large exposure, as defined under Paragraph CM-4.4.1, in Appendix BR-19, as required under Paragraph BR-3.1.7A.

              Added: July 2015

            • CM-4.6.1B

              All Bahraini Islamic bank licensees must report all their exposures to connected parties on a monthly basis using the form provided in Appendix BR-10, as required under Paragraph BR-4.3.4.

              Added: July 2015

            • CM-4.6.2

              Banks are required to adopt policies and set internal limits, which will not lead to the exposure limit(s) referred to above being exceeded as a matter of course.

              October 07

            • CM-4.6.3

              For some banks, the CBB may determine it prudent to set a lower exposure limits than the ones given in this Module.

              Amended: January 2011
              October 2007

            • CM-4.6.4

              Should any bank incur, or may incur an exposure to an individual counterparty (other than an exempt exposure) which results in or may result in it exceeding any of the limits set out above, this must be reported immediately to the CBB for its consideration. Where the exposure or counterparty is not exempt, and action must be taken to immediately bring the exposure back within applicable limits as soon as possible.

              Amended: July 2011
              Amended: January 2011
              October 2007

          • CM-4.7 CM-4.7 Policy Statements

            • CM-4.7.1

              The CBB requires each Bahraini Islamic bank licensee to set out its policy and internal limits on large exposures, including limits for differing types of exposures to individual customers, banks, corporates, countries and economic and market sectors, in a policy statement which must be formally adopted by the Board of Directors and then submitted to the CBB. The policy statement must be part of the risk management policy of the bank. Furthermore, banks must not implement significant changes to these policies without prior discussion with the CBB.

              Amended: April 2014
              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-4.7.2

              The policy statement must identify 'connected counterparties' and the bank's policies towards financing to and investing in these counterparties.

              Amended: July 2011
              Added: January 2011

            • CM-4.7.3

              The bank must explain and justify any requests for exemptions for exposures to / investments in connected counterparties.

              Amended: July 2011
              Added: January 2011

            • CM-4.7.4

              Each bank will be expected to justify to the CBB its policy on exposures to individual counterparties, including the maximum size of an exposure contemplated.

              Amended: January 2011
              October 2007

            • CM-4.7.5

              Exposures to counterparties connected with the bank will continue to be particularly closely examined.

              Amended: January 2011
              October 2007

            • CM-4.7.6

              The necessary control systems to give effect to a bank's policy on large exposures must be clearly specified and monitored by its Board.

              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-4.7.7

              Banks are required to implement appropriate internal systems and controls to monitor the size of their Total Capital on a daily basis to ensure that the limits detailed in this Module are not exceeded.

              Amended: January 2015
              Added: January 2011

          • CM-4.8 CM-4.8 Concentrations in Geographic, Economic and Market Sectors

            • CM-4.8.1

              The extent to which a bank may be prudently exposed to a particular geographic, economic and market sector will vary considerably depending upon the characteristics and strategy of the bank, and the sector concerned.

              Amended: January 2011
              October 2007

            • CM-4.8.2

              Concentrations should also be recognized in not just geographic and economic sectors, but also in markets (e.g. individual stock exchanges). The CBB will not apply common maximum percentages to banks' sectoral or market exposures but, instead, will continue to monitor such exposures on an individual and general basis.

              Amended: January 2011
              October 2007

            • CM-4.8.3

              Banks must specify in their policy statements how they define geographic, economic and market sectors, and what limits apply to differing sectors.

              Amended: January 2011
              October 2007

            • CM-4.8.4

              Exposures and limits for sectors must be reviewed at least quarterly by the Board of Directors.

              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-4.8.5

              Banks which have over 10% of their risk adjusted assets in market risk (i.e. the trading book) must also set market risk concentration limits.

              October 07

          • CM-4.9 CM-4.9 Major Investments

            • Credit Risk and Investment Risk

              • CM-4.9.1

                Where a bank acquires a holding of the capital instruments of another entity, the concerned bank acquires risk in that entity. The risk exposure to a bank through the acquisition of capital is arguably greater than that acquired by providing credit facilities in four ways:

                (a) The rights of a shareholder are subordinated to those of ordinary creditors in the event of liquidation of the concerned entity.
                (b) Term credit facilities have an explicit obligation on the borrower to repay the sum advanced or committed. Share capital has no such commitment (with the exception of some subordinated term instruments). Investments in the capital of an entity can only be realized by the sale of the concerned capital instruments to a third party, or by winding up the concerned entity.
                (c) A capital investment in a third party entity (particularly where the investment is significant in size) is a pledge of capital to the concerned entity to fund its longer-term activities. The funds concerned are no longer available to be used by the investor bank to fund its activities.
                (d) There may be reputational and legal risk to the investing bank, particularly if the bank has a “control relationship” with the concerned entity.
                Added: January 2011

              • CM-4.9.2

                In view of the above, the supervisory treatment of major investments requires special consideration which goes further than the monitoring of large exposures of banks as outlined earlier in Chapter CM-4.

                Amended: October 2016
                Added: January 2011

              • CM-4.9.2A

                [This Paragraph was moved to Section CM-4.10 in October 2016]

                Amended: October 2016
                Amended: January 2015
                Added: July 2014

            • Initial Approval Requirement for "Major Investments"

              • CM-4.9.3

                All Bahraini Islamic bank licensees must obtain the CBB's prior written approval before making a "major investment" (as described in CM-4.4.1E). [This Paragraph was moved to CM-4.9.3A, CM-4.9.3B, CM-4.9.3C and CM-4.9.3D in October 2016].

                Amended: October 2016
                Amended: April 2015
                Amended: January 2015
                Amended: July 2012
                Amended: January 2012
                Added: January 2011

              • CM-4.9.3A

                All Bahraini Islamic bank licensees must obtain the CBB's prior written approval before any future increases in the bank's ownership of any of the existing major investments in excess of 5% of such exposure.

                Added: October 2016

              • CM-4.9.3B

                Where the percentage ownership increase is due to revaluation or change in the capital of the bank, the bank must provide a written notification to the CBB, outlining the percentage increase and the reason for such increase.

                Added: October 2016

              • CM-4.9.3C

                Where a percentage ownership increase as described in Paragraph CM-4.9.3B occurs, the 800% risk weight rule will apply as it exceeds the single large exposure limit outlined in Section CM-4.4.

                Added: October 2016

              • CM-4.9.3D

                Any bank wishing to acquire a "major investment" in another entity must address the points outlined in Paragraph CM-4.9.10 of this Section so that the CBB may make an informed review of the request. Banks must submit such request to the CBB and the CBB shall respond within 2 weeks from the date of receiving a complete set of all the required documents.

                Added: October 2016

              • CM-4.9.4

                Any major investments by a Bahraini Islamic bank licensee in the capital instruments of another entity must be included in the measure of an "exposure" for the purposes of Module CM, i.e. such major investments must be aggregated with all other facilities to a client for the purpose of calculating the level of "large exposures".

                Amended: October 2016
                Amended: January 2015
                Amended: April 2014
                Added: January 2011

              • CM-4.9.5

                The CBB reserves the right to require Bahraini Islamic bank licensees to dispose of any major investment acquired without its prior approval. Where a "major investment" is acquired without approval of the CBB, then the entire value of the holding must be deducted from the consolidated Total Capital of the concerned bank. Approval will not be given for "major investments" in entities incorporated in jurisdictions where secrecy constraints exist or there are restrictions on the passage of information to the bank (other than customer confidentiality requirements imposed by financial regulators).

                Amended: October 2016
                Amended: January 2015
                Amended: April 2014
                Added: January 2011

            • [This Section was deleted in October 2016.]

              Deleted: October 2016

              • CM-4.9.6

                [This Paragraph was moved to Section CM-4.10 in October 2016]

                Amended: October 2016
                Amended: January 2015
                Amended: April 2014
                Added: January 2011

              • CM-4.9.7

                [This Paragraph was moved to Section CM-4.10 in October 2016]

                Amended: October 2016
                Amended: January 2015
                Amended: April 2014
                Added: January 2011

              • CM-4.9.8

                [This Paragraph was moved to Section CM-4.10 in October 2016]

                Amended: October 2016
                Amended: January 2015
                Amended: April 2014
                Added: January 2011

            • Other Requirements

              • CM-4.9.9

                If a bank's close links with another entity prevent effective supervision of the bank (or bank group), the CBB may refuse or revoke a license or require a bank to sell or otherwise dispose of entities within its corporate group, or to restructure the banking group.

                Added: January 2011

            • CBB Criteria for Assessment of Major Investments by Bahraini Islamic Bank Licensees

              • CM-4.9.10

                In assessing any proposed major investment mentioned above, the CBB will take into account the following points:

                (a) The amount of the proposed major investment relative to the existing consolidated Total Capital of the bank.
                (b) Existing capital adequacy ratios on consolidated basis and forecast ratios after the major investment has gone ahead.
                (c) The adequacy of information flows from the investee company to the concerned bank.
                (d) Experience and fit and proper matters relating to the senior personnel associated with the proposed major investment .
                (e) Risks associated with the proposed major investment.
                (f) Disclosure and exchange of (supervisory) information (in the case of a foreign investment).
                (g) Adequacy of host supervision (in the case of a foreign major investment).
                (h) Current investments and concentrations in exposures of the concerned bank.
                (i) The compliance of the concerned bank with the CBB's rules and regulations (e.g. reporting issues), and the adequacy of internal systems and controls.
                (j) The extent of holdings by any other shareholders (holding 5% or more of the capital of the concerned entity) or controllers of the concerned entity.
                (k) Whether the proposed activities are in line with the Memorandum & Articles of Association of the bank.
                (l) The accounting treatment of the proposed major investment.
                (m) Whether the major investment or acquisition relates to a closely-linked party, connected party, or controller in any way.
                (n) The existence of secrecy laws or constraints over supervisory access to the premises, assets, books and records of the concerned entity in which a "major investment" is being acquired.
                (o) The impact and extent of goodwill and intangibles upon the capital adequacy and balance sheet of the bank on a consolidated basis.
                (p) The bank's existing and forecast liquidity position (as a result of the major investment) and how the major investment is to be funded (e.g. by the issuance of new capital or sale of other investments).
                Amended: October 2016
                Amended: April 2015
                Amended: January 2015
                Added: January 2011

          • CM-4.10 CM-4.10 Limits on 'Significant Investments'

            • CM-4.10.1

              No Bahraini Islamic bank licensee may have a significant investment in the capital instruments of a commercial entity where the significant investment amount and any other exposure to the subject entity is more than 15% of the concerned bank's consolidated Total Capital.

              Added: October 2016

            • CM-4.10.2

              The total amount of a bank's significant investments in unconnected commercial entities may not exceed 60% of the concerned bank's consolidated Total Capital.

              Added: October 2016

            • CM-4.10.3

              Any excesses above the limits in Paragraphs CM-4.10.1 and CM-4.10.2 must be risk-weighted according to Paragraph CA-2.4.25.

              Added: October 2016

            • CM-4.10.4

              For purposes of this Section, 'significant investments' in a commercial entity is defined as any investment in the capital instruments of a commercial entity by a Bahraini Islamic bank licensee which is equivalent to or more than 10% of the issued common share capital of the issuing commercial entity.

              Added: October 2016

            • CM-4.10.5

              This section refers to the treatment of investments in commercial entities which are otherwise not connected to the concerned bank (i.e. the bank's connection to the entity is by way of shareholding or holding of other capital instruments). If a bank is investing in a commercial company where there is a connection by way of mutual directors or mutual parent, or some other relationship that makes the investee a 'related party' as defined by IFRS, then the major investment must be treated as an exposure to a connected counterparty and the concerned limits and rules for exposures to connected counterparties apply.

              Added: October 2016

        • CM-5 CM-5 Staff Credit Facilities

          • CM-5.1 CM-5.1 Reporting and Compliance

            • CM-5.1.1

              The CBB's prior written consent must be obtained for any credit facilities provided to an employee where the amount of such facility, either singly or when added to an existing facility/existing facilities outstanding to that employee at that date, would be equal to or in excess of BD 100,000 (Bahrain Dinars One Hundred Thousand), or its equivalent in foreign currency. Banks must notify the CBB in writing of any senior employee who fails to discharge his repayment obligations.

              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-5.1.1A

              Where a bank seeks the CBB's prior approval as required under Paragraph CM-5.1.1, in its request, the bank must confirm that the employee credit facility is in line with the bank's board approved policy. The request must also confirm that the bank has made an internal assessment and evaluation when reaching the decision to grant the employee credit facility and that all necessary internal approvals have been obtained.

              Added: April 2014

            • CM-5.1.2

              Banks must ensure that the provisions of relevant laws (including, specifically, the Bahrain Labour Law) are observed at all times in this area.

              October 07

        • CM-6 CM-6 Write-off – Credit Facility

          • CM-6.1 CM-6.1 Write-offs

            • CM-6.1.1

              All Bahraini Islamic bank licensees must notify the CBB of any write-off of an exposure of an amount in excess of BD 100,000 (Bahrain Dinars One Hundred Thousand), or its equivalent in foreign currency.

              Amended: October 2016
              Amended: October 2015
              Amended: July 2011
              Amended: January 2011
              October 2007

            • CM-6.1.2

              Such notification should be accompanied with documentary evidence showing, beyond reasonable doubt, that the customer does not possess the resources to fulfil the outstanding obligation.

              October 07

            • CM-6.1.3

              All Bahraini Islamic bank licensees must obtain the CBB's written no-objection before writing off any of the following:

              (a) Exposures to or guaranteed by any approved persons of the bank or any other CBB licensee;
              (b) [This Subparagraph was deleted in October 2016];
              (c) Exposures to controllers, subsidiaries, associates and SSB members of the bank;
              (d) [This Subparagraph was deleted in October 2015];
              (e) Exposures to any business entity for which the bank or any of its approved persons is a related party such as a board member, a shareholder owning 5% or more, a person assuming a managerial role, a guarantor; and
              (f) Exposures to any controller of another CBB licensee (as defined in Section GR-5.2 — definition of Controller).
              Amended: October 2016
              Amended: October 2015
              Amended: July 2011
              Amended: January 2011
              Amended: April 2008
              October 2007

            • CM-6.1.3A

              All branches of foreign banks must obtain the CBB's written no-objection before writing off the exposures listed in CM-6.1.3 from (a) to (f) except for (c).

              Added: October 2016

            • CM-6.1.4

              All Islamic bank licensees must notify the CBB of any applicable exposures outlined in Paragraph CM-6.1.3 that are classified as non-performing loans.

              Amended: October 2016
              Added: October 2015

            • CM-6.1.5

              In order to comply with Subparagraph CM-6.1.3 (a) and (f), Islamic bank licensees should refer to the CBB register on the CBB Website which contains a list of approved persons and controllers of all CBB licensees.

              Amended: October 2016
              Added: October 2015

        • CM-7 CM-7 Consumer Finance

          • CM-7.1 CM-7.1 Overview

            • CM-7.1.1

              This Chapter sets out various requirements regarding the provision of consumer finance within the Kingdom of Bahrain by CBB licensees. The aim of these requirements is to encourage:

              (a) Prudent provision of credit facilities by licensees providing consumer finance; and
              (b) The transparent disclosure of the full costs and terms on which licensees offer consumer finance.
              Amended: January 2011
              October 2007

            • Application Date

              • CM-7.1.2

                The contents of this Chapter apply to all consumer finance facilities entered into or renewed after 1 January 2005. The application date of the "Code of Best Practice on Consumer Credit and Charging" is 1 September 2007. All Islamic banks which offer consumer finace facilities to residents of Bahrain must follow the Code after 1 September 2007. Failure to observe the requirements of this Chapter or the Code may result in Enforcement Action under Module EN. The Code is attached as Appendix CM-2 in Part B of the Rulebook.

                October 07

          • CM-7.2 CM-7.2 The CBB's Approach to Consumer Finance

            • CM-7.2.1

              The CBB favours an open, market-based approach to the operations of licensees, to the extent consistent with its regulatory objectives of ensuring a stable financial system and the fair treatment of licensees' customers.

              Amended: January 2011
              October 2007

            • CM-7.2.2

              Bank licensees are reminded of their obligation to implement a sound internal controls framework, including an effective credit culture (see, for instance, Section CM-2.3). Bank licensees are also reminded of their obligations clearly to display and communicate charges and profit rates (see, for instance, Section BC-4.3).

              October 07

            • CM-7.2.3

              The CBB has noted the growth in consumer finance as a proportion of outstanding credit facilities over the past few years. The CBB is concerned that this growth should not be at the cost of declining credit quality. Furthermore, the CBB wishes to see further improvements in licensees' transparency in their dealings with their customers, as regards the costs and terms of their lending. Strong competition in this segment of the market increases the need for licensees to be vigilant and to resist pressures to relax standards.

              Amended: January 2011
              October 2007

            • CM-7.2.4

              The measures presented in this Chapter should be viewed as minimum standards, rather than best practice. They are aimed to encouraging prudent extension of credit facilities and full, frank and fair disclosures, rather than dictate comprehensively how licensees should engage in consumer finance. These measures should be read in conjunction with the "Code of Best Practice on Consumer Credit and Charging" which was agreed jointly between the CBB and the Bahrain Association of banks (see appendix CM-2).

              Amended: April 2014
              October 07

            • CM-7.2.5

              These measures will be kept under review in the light of market developments and adjusted accordingly. If the CBB assesses that credit quality and effective transparency are being significantly undermined, then additional prescriptive measures will be considered.

              Amended: January 2011
              October 2007

            • On-going Effort by the CBB

              • CM-7.2.6

                These measures form part of a wider response by the CBB. The CBB recognizes that a key contributor to ensuring a sounder credit environment is the credit reference bureau.

                Amended: January 2011
                October 2007

              • CM-7.2.7

                The CBB supervisors and examiners will also focus on banks' implementation of the "Code of Best Practice on Consumer Credit and Charging" in their on-going supervision of licensees, to monitor and encourage sound financing practices and disclosure standards.

                Amended: January 2011
                October 2007

          • CM-7.3 CM-7.3 Definition of Consumer Finance

            • CM-7.3.1

              Consumer finance is the provision of any form of credit facility to an individual excluding:

              (a) Any credit facility secured by a first charge on residential property to an individual, where the counterparty lives in, or intends to live in the property;
              (b) Any credit facility secured by cash or investments, where the security provided more than covers the principal of the credit facility; and
              (c) The provision of any form of credit to an individual for business purposes where the facility is to be repaid from the business activities of the counterparty.
              Amended: January 2011
              October 2007

            • CM-7.3.2

              For the purposes of the Rulebook, 'credit facility' includes personal overdraft facilities, credit cards, ijara or other financing facility.

              October 07

          • CM-7.4 CM-7.4 Maximum Limits

            • Total Repayments Ratio

              • CM-7.4.1

                Licensees may only provide a new consumer facility (or renew, extend or otherwise modify an existing consumer facility) for an amount such that the counterparty's total monthly repayments on all his consumer finance commitments do not exceed 50% of his monthly gross income. This limit may only be exceeded in the circumstances described in Paragraphs CM-7.4.6 and CM-7.4.10.

                Amended: July 2011
                October 2007

              • CM-7.4.2

                When reviewing an applicant for a consumer facility, licensees may only take into consideration regular income. A spouse's income may only be taken into consideration when the credit facility would be in joint names, such that the spouse would also be legally liable for the obligation incurred.

                October 07

              • CM-7.4.3

                Notwithstanding the above limit, licensees must review in detail an applicant's personal financial standing and ability to service their obligations. Where a spouse's income is being taken into consideration, then their individual circumstances must also be similarly assessed. In many cases, these reviews may require consumer finance repayments to be kept significantly below 50% of monthly gross income.

                October 07

              • CM-7.4.4

                Licensees must enquire as to applicants' sources of income, their past credit history, their regular outgoings and other financial commitments, including potential liabilities such as guarantees. Particular attention must be paid to housing costs (such as payments to Eskan Bank). A person's regular income, net of consumer finance repayments and other financial obligations, must remain sufficient for that person to support himself and any dependents. Licensees must also take into account likely future trends in income and outgoings, and the impact this may have on the 50% ratio.

                Amended: October 2013
                Amended: July 2011
                October 2007

              • CM-7.4.5

                When factoring in credit cards into the repayment limit in Paragraph CM-7.4.1 above, licensees must include 5% of the credit limits available on these facilities. If the amounts outstanding (including profit) under such facilities exceed their limit, then the full amount outstanding must be included in the repayments ratio calculation. Charge cards are not included under this definition.

                Amended: October 2016
                Amended: July 2011
                October 2007

              • CM-7.4.6

                In the case of high earners – defined for these purposes as persons earning more than BD 3,000 / month - the 50% limit may be relaxed, providing that the licensee has undertaken the review required in Paragraph CM-7.4.4 above and is satisfied that the counterparty can comfortably support a higher facility service ratio.

                October 07

              • CM-7.4.7

                The review undertaken to satisfy requirements in Paragraph CM-7.4.4 above must be documented and made available to the CBB's examiners on request. The documentation must include all relevant information used to support the decision to extend credit facilities. In the case of high earners granted a facility in excess of the 50% limit, the documentation must also include a written statement, signed by an appropriate member of management, explaining the justification for relaxing the limit.

                Amended: January 2011
                October 2007

            • Maximum Tenor Limit

              • CM-7.4.8

                The maximum tenor for instalment consumer finance facilities is seven years. The tenor may not be extended more than twice during the period of the agreement.

                October 07

              • CM-7.4.9

                The CBB does not believe it prudent for licensees to encourage the provision of credit facilities by offering long-term borrowing to fund short-term consumption. The CBB will review the development of market practices in this respect and will consider further measures if required.

                Amended: January 2012
                Amended: January 2011
                October 2007

            • Non-compliant Facilities

              • CM-7.4.10

                Where a customer's monthly gross income falls (e.g. due to redundancy or disability or a similar event outside the control of the customer), the bank must identify such accounts as 'technically non-compliant'. If a customer requests an extension to the tenor of the facility due to reduced income, then the bank may increase the term to assist the customer. The bank must take account of the 50% limit outlined in Paragraph CM-7.4.1. Such facilities must also be identified as 'technically non-compliant'.

                Amended: January 2022
                Amended: July 2021
                Amended: October 2019
                October 07

          • CM-7.5 CM-7.5 [This Section was deleted in October 2012 and requirements are now included in Section BC-4.2

            • [Deleted]

              • CM-7.5.1

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                October 07

              • CM-7.5.2

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                Amended: July 2011
                October 2007

              • CM-7.5.3

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                Amended: October 2011
                Amended: April 2011
                Amended: January 2011
                October 2007

              • CM-7.5.4

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                Amended: July 2012
                October 07

            • [Deleted]

              • CM-7.5.5

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                Amended: July 2012
                October 07

              • CM-7.5.6

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                Amended: July 2011
                October 2007

              • CM-7.5.7

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                Amended: July 2011
                October 2007

              • CM-7.5.8

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                October 07

              • CM-7.5.9

                [This paragraph was deleted in October 2012]

                Deleted: October 2012

              • CM-7.5.10

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                Amended: October 2011
                October 2007

              • CM-7.5.11

                [This paragraph was deleted in October 2012]

                Deleted: October 2012
                October 07

              • CM-7.5.12

                [This Paragraph was deleted in October 2011].

                Deleted: October 2011

          • CM-7.6 CM-7.6 Refunds and Prepayments

            • Refund / Adjustment of Insurance Premium on Financing Prepayments and Top-Ups

              • CM-7.6.1

                Banks/financing companies must refund/adjust proportionately the insurance premium charged on individual credit facilities when the customer either requests for a top up or prepayment of the credit facility as per the prescribed formula below:

                Refund/Adjustment Amount = Remaining period to Maturity
                X Premium Paid
                Original Maturity  
                Added: April 2008

            • Early Repayment Fees / Charges

              • CM-7.6.2

                [This paragraph was deleted in April 2018].

                Deleted: April 2018
                Amended: July 2013
                Amended: October 2011
                Amended: January 2011
                Added: April 2008

        • CM-8 CM-8 Islamic Contracts

          • CM-8.1 CM-8.1 Overview

            • CM-8.1.1

              [This paragraph was deleted in April 2011].

            • CM-8.1.2

              [This paragraph was deleted in April 2011].

            • CM-8.1.3

              In order to monitor and identify any asset deterioration due to the Islamic contracts, the CBB requires additional disclosures (see Module BR) on the Islamic contracts undertaken by the bank during the period.

              Amended: January 2011
              October 2007

            • CM-8.1.4

              Definitions, disclosure requirements and method(s) of accounting treatments for some of the Islamic contracts are outlined below.

              October 07

            • Murabaha

              • CM-8.1.5

                Revenue for the purpose of Murabaha contracts must be recognised on an accrual basis.

                October 07

              • CM-8.1.6

                For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 2: Murabaha and Murabaha to the Purchase Orderer.

                October 07

            • Mudaraba

              • CM-8.1.7

                Revenue on Mudaraba contracts may only be recognised to the extent it is being distributed.

                October 07

              • CM-8.1.8

                For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 3: Mudaraba Financing.

                October 07

              • CM-8.1.9

                As part of its on-going supervision of Islamic banks, the CBB has set out the type of terms and conditions (see Appendix BC-7) which it believes Islamic banks should include, as a minimum, in such contracts.

                Amended: January 2011
                October 2007

            • Musharaka

              • CM-8.1.10

                Under a Musharaka contract, losses are shared in proportion to the contributed capital. It is not permissible to stipulate otherwise.

                October 07

              • CM-8.1.11

                For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 4: Musharaka Financing.

                October 07

            • Salam

              • CM-8.1.12

                As a policy no Salam contracts must be entered into without covering the position through a Parallel Salam contract.

                Amended: July 2011
                October 2007

              • CM-8.1.13

                Where the bank is not able to enter into a Parallel Salam contract it must agree a statement policy with the CBB.

                Amended: January 2011
                October 2007

              • CM-8.1.14

                For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 7: Salam and Parallel Salam.

                October 07

            • Istisna'a

              • CM-8.1.15

                As a policy no Istisna'a contracts must be entered without covering the position through a Parallel Istisna'a contract.

                Amended: July 2011
                October 2007

              • CM-8.1.16

                In accordance with provisions contained in FAS 10: Istisna'a and Parallel Istisna'a, revenue and profit on such contracts must be recognised on a percentage of completion method.

                Amended: July 2011
                October 2007

              • CM-8.1.17

                For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 10: Istisna'a and Parallel Istisna'a.

                October 07

            • Ijarah and Ijarah Muntahia Bittamleek

              • CM-8.1.18

                For a detailed definition, disclosure requirements and method(s) of accounting treatment, refer to AAOIFI's FAS 8: Ijarah and Ijarah Muntahia Bittamleek.

                October 07

            • Facilities Transferred to Qard Hassan

              • CM-8.1.19

                The CBB's approval must be obtained before any transfer of any exposures to Qard Hassan if the amount is more than BD 100,000 or its equivalent in foreign currency (see Paragraph BR-5.2.6).

                Amended: April 2014
                Amended: July 2011
                Amended: January 2011
                October 2007

              • CM-8.1.20

                The requirement stated in Paragraph CM-8.1.19 above applies to both on-balance sheet and restricted investment account related exposures.

                Amended: January 2011
                October 2007

      • OM OM Operational Risk Management [Versions from October 2007 to 31 December 2019]

        • OM-A OM-A Introduction

          • OM-A.1 OM-A.1 Purpose

            • Executive Summary

              • OM-A.1.1

                The Operational Risk Management Module sets out the Central Bank of Bahrain's ('CBB's') rules and guidance to Islamic Bank licensees operating in Bahrain on establishing parameters and control procedures to monitor and mitigate operational risks. The contents of this Module apply to all Islamic banks, except where noted in individual Chapters.

                October 07

              • OM-A.1.2

                This Module provides support for certain other parts of the Rulebook, mainly:

                (a) Principles of Business; and
                (b) High-level Controls.
                October 07

            • Legal Basis

              • OM-A.1.3

                This Module contains the CBB's Directive (as amended from time to time) relating to Operational Risk Management and is issued under the powers available to the CBB under Article 38 of the Central Bank of Bahrain and Financial Institutions Law 2006 ('CBB Law'). The Directive in this Module is applicable to all Islamic bank licensees (including their approved persons).

                Amended: January 2012
                Amended: January 2011
                October 2007

              • OM-A.1.4

                For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1.

                Added: January 2011

          • OM-A.2 [This Chapter was deleted in October 2007]


            October 07

          • OM-A.3 OM-A.3 Module History

            • OM-A.3.1

              This Module was first issued in July 2004 as part Volume one of the CBB Rulebook (Volume one). All directives in this Module have been effective since this date. Any material changes that have subsequently been made to this Module are annotated with the calendar quarter date in which the change was made; Chapter UG-3 provides further details on Rulebook maintenance and version control.

              October 07

            • OM-A.3.2

              When the CBB replaced the BMA in September 2006, the provisions of this Module remained in force. Volume 1 was updated in October 2007 to reflect the switch to the CBB; however, new calendar quarter dates were only issued where the update necessitated changes to actual requirements.

              October 07

            • OM-A.3.3

              The most recent changes made to this Module are detailed in the table below:

              Summary of Changes

              Module Ref. Change Date Description of Changes
              OM-5.1 01/04/05 Physical security measures.
              OM-4.2 01/10/05 Succession planning for locally incorporated banks.
              OM-5.1 01/10/05 Clarification of security manager role for smaller banks.
              OM-B & OM-1.2 01/04/06 Minor amendments concerning roles of Board and management.
              OM-5.1.15-OM-5.1.24 01/04/06 New security requirements for ATM security arrangements and reporting of security related complaints.
              OM-A.2.1-OM-A.2.6 01/10/07 Purpose (expanded)
              OM-A.2.1-OM-A.2.6 01/10/07 Key Requirements (deleted)
              OM-2.1-2.2&2.4 01/10/07 Relocation of Succession Planning Requirements from OM-4
              OM-5.1-OM-5.9 01/10/07 Business Continuity Planning (expanded)
              OM-7 01/10/07 New Books and Records Chapter transferred from Module GR
              OM-8 01/04/08 Basel II Qualitative Operational Risk Requirements
              OM 01/2011 Various minor amendments to ensure consistency in CBB Rulebook.
              OM-A.1.3 and OM-A.1.4 01/2011 Clarified legal basis.
              OM-7.1.4 04/2011 This paragraph was deleted as Ministerial Order 23 does not apply to CBB licensees.
              OM-7.3.4 04/2011 Clarified retention period of records for promotional schemes.
              OM 07/2011 Various minor amendments to clarify Rules and have consistent language.
              OM-2.4 07/2011 Amended CBB reporting requirements regarding succession planning.
              OM-3.1.7 07/2011 Paragraph deleted as no longer applicable since standard conditions and licensing criteria document has now been incorporated as part of Volume 1.
              OM-6.2 10/2011 Added new Section on internet security.
              OM-7.1.7 10/2011 Corrected typo.
              OM-A.1.3 01/2012 Updated legal basis.
              OM-2.1.4 01/2012 Corrected cross reference.
              OM-3.2.2 04/2012 Deleted last sentence of Paragraph as it repeats the requirement under Paragraph OM-3.3.1
              OM-6.2.2 04/2012 Clarified penetration testing interval for internet security.
              OM-1.1.4 10/2012 Amended to reflect updated version of Basel Committee document.
              OM-3.2.6, OM-5.2.1, OM-5.4.8, OM-8 10/2012 Amended to reflect the Basel June 2011 paper on Principles for the Sound Management of Operational Risk.
              OM-6.2 07/2013 Amended reporting requirements related to internet security measures.
              OM-6.2.1 10/2013 Amended Rule to apply to all banks.
              OM-3.7.2 10/2015 Clarified Rule on internal audit outsourcing.
              OM-6 04/2016 Updated ATM security measures for banks.
              OM-3.9 07/2016 Added new Section dealing with outsourcing of functions containing customer information.
              OM-5.10 10/2016 Added new Section on Cyber Security Risk Management
              OM-6.4.3 10/2016 Corrected cross references
              OM-6.4.4 10/2016 Corrected cross references
              OM-6.4.5 10/2016 Corrected cross references
              OM-6.6 10/2016 Added new Section on Cyber Security Measures
              OM-3.9.2 01/2017 Amended Paragraph on customer information
              OM-3.9.6 01/2017 Added new guidance paragraph on customer information
              OM-6.4.22 04/2017 ATM requirement on Solid Wall deleted.
              OM-6.4.23 04/2017 ATM requirement on Solid Wall deleted.
              OM-6.3.1 07/2017 Clarified requirements on compliance date.
              OM-6.3.2A 07/2017 Added new paragraph on Prohibition of Double Swiping.
              OM-6.3.2B 07/2017 Added new paragraph on Prohibition of Double Swiping.
              OM-6.3.2C 07/2017 Added new paragraph on Prohibition of Double Swiping.
              OM-6.3.2D 07/2017 Added new paragraph on Prohibition of Double Swiping.
              OM-6.3.2E 07/2017 Added new paragraph on Prohibition of Double Swiping.
              OM-6.4.21 07/2017 Deleted paragraph.
              OM-7.2.1 07/2017 Amended paragraph according to the Legislative Decree No. (28) of 2002.
              OM-7.2.2 07/2017 Deleted paragraph.
              OM-3.1.2 10/2017 Amended paragraph to allow the utilization of cloud services.
              OM-3.1.5A 10/2017 Added a new paragraph on outsourcing requirements.
              OM-3.2.3 10/2017 Amended paragraph.
              OM-3.3.1 10/2017 Amended paragraph.
              OM-3.3.2 10/2017 Amended paragraph.
              OM-3.3.3 10/2017 Amended paragraph.
              OM-3.3.4 10/2017 Amended paragraph.
              OM-3.3.5 10/2017 Added a new paragraph on outsourcing.
              OM-3.4.1 10/2017 Amended paragraph.
              OM-3.4.2(b) 10/2017 Amended sub-paragraph.
              OM-3.4.3 10/2017 Deleted paragraph.
              OM-3.4.5 10/2017 Amended paragraph.
              OM-3.5.1(a) 10/2017 Amended sub-sub-paragraph no. (5).
              OM-3.5.1(c) 10/2017 Amended sub-sub-paragraphs no. (2) and (3).
              OM-3.5.1(e) 10/2017 Amended sub-sub-paragraph no. (3).
              OM-3.8.3 10/2017 Amended paragraph.
              OM-3.9.1 10/2017 Amended paragraph.
              OM-3.9.2 10/2017 Amended paragraph on third party outsourcing of functions.
              OM-3.9.3 10/2017 Amended paragraph.
              OM-3.9.4 10/2017 Amended sub-paragraph.
              OM-3.9.4(b) 10/2017 Amended sub-paragraph.
              OM-3.9.4(d) 10/2017 Deleted sub-paragraph.
              OM-3.9.5 10/2017 Deleted paragraph.
              OM-3.9.7 10/2017 Added a new paragraph for security measures related to cloud services.
              OM-6.4.6 10/2017 Amended paragraph to include ancillary service providers.
              OM-6.3.1A 04/2018 Added a new Paragraph on card (EMV) compliance.
              OM-6.3.1B 04/2018 Added a new Paragraph on "provision of cash withdrawal and payment services through various channels"
              OM-6.3.2 04/2018 Amended Paragraph to mention "Islamic bank licensees".
              OM-3.9.2 07/2018 Amended Paragraph to include call centres.
              OM-3.9.2A 07/2018 Added new Paragraph on customer notification.
              OM-6.4.15A 10/2018 Added a new Paragraph on drive-thru ATMs.
              OM-6.4.20A 10/2018 Added a new Paragraph on drive-thru ATMs.
              OM-6.1.2 07/2019 Amended Paragraph on deployment of Private Security Guards at Head Offices of Licensees.
              OM-6.3.1C, OM6.3.1D, OM-6.3.1E, OM-6.3.1F 10/2019 Added new Paragraphs on Near Field Communication "NFC".

            • Evolution of the Module

              • OM-A.3.4

                [Deleted in October 2007 updates]

                October 07

        • OM-B OM-B General Guidance and Best Practice

          • OM-B.1 This Section was moved to Chapter OM-1.


        • OM-1 OM-1 International Guidance and Best Practice

          • OM-1.1 OM-1.1 Guidance Provided by International Bodies

            • Guidance Provided by other International Bodies

              • OM-1.1.1

                The papers below provide guidance which promotes best practice and can be generally applied by all licensees to their activities.

                October 07

            • Basel Committee: Framework for Internal Controls Systems in Banking Organisations

              • OM-1.1.2

                The paper (see www.bis.org/publ/bcbs40.pdf) issued in September 1998 presents the first internationally accepted framework for supervisors to use in evaluating the effectiveness of the internal controls over all on- and off-balance-sheet activities of banking organisations.

                October 07

              • OM-1.1.3

                The paper describes elements that are essential to a sound internal control system, recommends principles that supervisors can apply in evaluating such systems, and discusses the role of bank supervisors and external auditors in this assessment process.

                October 07

            • Basel Committee: Principles for the Sound Management of Operational Risk

              • OM-1.1.4

                The paper (see www.bis.org/publ/bcbs195.pdf) issued in June 2011 by the Basel Committee on Banking Supervision, outlines a set of principles that provide a framework for the effective management and supervision of operational risk, for use by banks and supervisory authorities when evaluating operational risk management policies and practices.

                Amended: October 2012
                October 07

              • OM-1.1.5

                The paper also recognises that clear strategies and oversight by the Board of Directors and senior management, a strong operational risk culture and internal control culture (including, among other things, clear lines of responsibility and segregation of duties), effective internal reporting, and contingency planning are all crucial elements of an effective operational risk management framework for banks of any size and scope.

                October 07

            • Basel Committee: Risk Management for Electronic Banking and Electronic Money Activities

              • OM-1.1.6

                The paper (see www.bis.org/publ) issued in March 1998 provides guidelines for supervisory authorities and banking organisations as they develop methods for identifying, assessing, managing and controlling the risks associated with electronic banking and electronic money.

                October 07

              • OM-1.1.7

                The paper indicates that, while providing new opportunities for banks, electronic banking and electronic money activities carry risks as well as benefits and it is important that these risks are recognised and managed in a prudent manner.

                October 07

            • Basel Committee: Risk Management Principles for Electronic Banking

              • OM-1.1.8

                The paper (see www.bis.org/publ) issued in July 2003 recognizes new risks associated with the increase in distribution of financial services through electronic channels, or e-banking. To emphasize the importance of these risks, the Committee has placed responsibility on the shoulders of the Board and senior management to ensure their institutions have analysed, identified and modified operations to mitigate these risks.

                October 07

              • OM-1.1.9

                To facilitate these developments, the Committee has identified fourteen Risk Management Principles for Electronic Banking to help banking institutions expand their existing risk oversight policies and processes to cover their e-banking activities.

                October 07

              • OM-1.1.10

                The Risk Management Principles fall into three broad, and often overlapping, categories of issues that are grouped to provide clarity: Board and Management Oversight; Security Controls; and Legal and Reputational Risk Management.

                October 07

            • Joint Forum: High Level Principles for Business Continuity

              • OM-1.1.11

                This paper provides a broad framework for business continuity standards, and contains seven principles for regulators and industry participants to follow. It was published in August 2006 and is available in the "publications" section of the Basel Committee portion of the BIS website (www.bis.org).

                October 07

        • OM-2 OM-2 General Requirements

          • OM-2.1 OM-2.1 Overview

            • OM-2.1.1

              This Chapter provides guidance and rules for operational risk and sets out requirements for an appropriate risk management environment, including business continuity, outsourcing and electronic banking. Operational risk is defined as the risk of loss resulting from inadequate or failed internal processes, people and systems or from external events. This definition includes legal risk, but excludes strategic and reputational risk.

              October 07

            • OM-2.1.2

              Operational risk is inherent in all types of banks' activities, and therefore all new products and services should be reviewed for operational risks prior to their implementation. As these risks are important and can result in substantial losses, bank auditors should include operational audits in the scope of all audits.

              October 07

            • OM-2.1.3

              The importance of operational risk has gained prominence as increasing reliance on sophisticated technology raises concerns of potential losses should unforeseen events cause technological failures. Banks have traditionally focused on controlling and mitigating credit and liquidity risks, however, enhanced levels of automation, while reducing costs and processing times, also pose potential risks. As such any one process or system failure may itself or through a series of systematic failures, cause financial or other losses to a bank. Therefore, it has become imperative that banks should establish policies and procedures to monitor and control operational risks.

              October 07

            • OM-2.1.4

              The CBB will use the papers mentioned in Paragraphs OM-1.1.1 to OM-1.1.11 as guidelines in evaluation of the internal control systems of banks operating in Bahrain. Such evaluations will be made through the CBB's normal supervisory processes (e.g. meetings with management, on-site examinations (Module BR) and the use of appointed experts (Section BR-6.5).

              Amended: January 2012
              Amended: January 2011
              October 2007

          • OM-2.2 OM-2.2 Developing an Appropriate Risk Management Environment

            • OM-2.2.1

              It must be standard practice for a bank's management to implement policies and procedures to manage risks arising out of a bank's activities. The bank must maintain written policies and procedures that identify the risk tolerances approved by the Board of Directors and must clearly delineate lines of authority and responsibility for managing the risks. Banks' employees and loan officers in particular must be fully aware of all policies and procedures that relate to their specific duties.

              Amended: July 2011
              October 07

            • OM-2.2.2

              The bank's strategy must define its tolerance for risk and lay out the Board's understanding of the specific characteristics of operational risk.

              October 07

            • The Board of Directors

              • OM-2.2.3

                The Board of Directors must be aware of the major aspects of the bank's operational risk as a distinct and controllable risk Category.

                Amended: July 2011
                October 07

              • OM-2.2.4

                The responsibilities of the Board of Directors of the bank must include:

                (a) Approving the bank's operational risk strategy;
                (b) Periodically reviewing the bank's operational risk strategy;
                (c) Approving the basic structure of the framework for managing operational risk; and
                (d) Ensuring that senior management is carrying out its risk management responsibilities.
                October 07

            • Senior Management

              • OM-2.2.5

                The responsibilities of the senior management of the bank must include:

                (a) Implementing the operational risk strategy approved by the Board of Directors;
                (b) Ensuring that the strategy is implemented consistently throughout the whole banking organisation;
                (c) Ensuring that all levels of staff understand their responsibilities with respect to operational risk management;
                (d) Developing and implementing policies, processes and procedures for managing operational risk in all of the bank's products, activities, processes and systems;
                (e) Developing succession plans for senior staff; and
                (f) Developing Business Continuity Plans for the bank.
                October 07

            • Management Information System

              • OM-2.2.6

                The management information system of a banking organisation plays a key role in establishing and maintaining an effective operational risk management framework.

                October 07

              • OM-2.2.7

                'Communication flow' serves the purpose of establishing a consistent operational risk management culture across the bank. 'Reporting flow' enables:

                (a) Senior management to monitor the effectiveness of the risk management system for operational risk; and
                (b) The Board of Directors to oversee senior management performance.
                Amended: January 2012
                October 07

          • OM-2.3 OM-2.3 Identification, Measurement, Monitoring and Control

            • OM-2.3.1

              As part of an effective operational risk management system, banks must:

              (a) Identify critical processes, resources and loss events;
              (b) Establish processes necessary for measuring operational risk;
              (c) Monitor operational risk exposures and loss events on an on-going basis; and
              (d) Develop policies, processes and procedures to control or mitigate operational risk.
              October 07

            • OM-2.3.2

              Banks should assess the costs and benefits of alternative risk limitation and control strategies and should adjust their operational risk exposure using appropriate strategies, in light of their overall risk profile.

              Amended: January 2012
              October 07

          • OM-2.4 OM-2.4 Succession Planning

            • OM-2.4.1

              Succession planning is an essential precautionary measure for a bank if its leadership stability — and hence ultimately its financial stability — is to be protected. Succession planning is especially critical for smaller institutions, where management teams tend to be smaller and possibly reliant on a few key individuals.

              October 07

            • OM-2.4.2

              The CBB requires locally incorporated banks to document their Board-approved succession plans for their senior management team and have these ready at any time for onsite inspection by CBB staff.

              Amended: July 2011
              Amended: January 2011
              October 2007

            • OM-2.4.3

              [This Paragraph was deleted in July 2011].

        • OM-3 OM-3 Outsourcing

          • OM-3.1 OM-3.1 Introduction

            • OM-3.1.1

              This Chapter sets out the CBB's approach to outsourcing by licensees. It also sets out various requirements that licensees must address when considering outsourcing an activity or function.

              Amended: January 2011
              October 2007

            • OM-3.1.2

              In the context of this Chapter, 'outsourcing' means an arrangement whereby a third party performs on behalf of a licensee an activity which was previously undertaken by the licensee itself (or in the case of a new activity, one which commonly would have been performed internally by the licensee). Examples of services that are typically outsourced include data processing, cloud services, customer call centres and back-office related activities.

              Amended: October 2017
              October 07

            • OM-3.1.3

              Most of the Directives in this Chapter are concerned with situations where the third party provider is outside the licensee's group. Section OM-3.8, however, sets out the CBB's requirements when a service is outsourced to a company within the licensee's group.

              Amended: January 2011
              October 2007

            • OM-3.1.4

              The requirements in this Chapter only apply to 'material' outsourcing arrangements. These are arrangements that, if they failed in any way, would pose significant risks to the on-going operations of a licensee, its reputation and/or quality of service provided to its customers. For instance, the outsourcing of all or a substantial part of functions such as customer sales and relationship management, settlements and processing, IT and data processing and financial control, would normally be considered 'material'.

              October 07

            • OM-3.1.5

              Management should carefully consider whether a proposed outsourcing arrangement falls under this Chapter's definition of 'material'. If in doubt, management should consult with the CBB.

              Amended: January 2011
              October 2007

            • OM-3.1.5A

              For outsourcing services that are not considered material outsourcing arrangements, licensees must submit a written notification to the CBB before committing to the new outsourcing arrangement.

              Added: October 2017

            • OM-3.1.6

              The requirements in this Chapter only apply to outsourcing arrangements entered into after May 2003. In the case of pre-existing outsourcing agreements, the CBB requires licensees to apply the requirements of this Chapter to the fullest extent possible when these arrangements are subsequently renewed.

              Amended: January 2011
              October 2007

            • Legal Source

              • OM-3.1.7

                [This Paragraph was deleted in July 2011].

          • OM-3.2 OM-3.2 Supervisory Approach

            • OM-3.2.1

              The CBB recognises the benefits that can potentially be achieved through outsourcing an activity to a third party provider. They can include reduced costs, enhanced service quality and a reduction in management time spent on non-core activities. However, outsourcing an activity also poses potential risks. These include the ability of the service provider to maintain service quality levels, reduced control over the activity and access to relevant information, and increased legal and client confidentiality risks.

              Amended: January 2011
              October 2007

            • OM-3.2.2

              The CBB's approach is to allow licensees the freedom to enter into outsourcing arrangements, providing these have been properly structured and associated risks addressed.

              Amended: April 2012
              Amended: January 2011
              October 2007

            • OM-3.2.3

              The CBB expects licensees to have undertaken a thorough assessment of a proposal before formally submitting the request for prior approval to the CBB. However, the CBB is also willing to discuss ideas informally at an early stage of development, on a 'no-commitment' basis. It especially encourages an early approach when the proposed outsourcing is particularly material or innovative.

              Amended: October 2017
              Amended: January 2011
              October 2007

            • OM-3.2.4

              Once an outsourcing arrangement has been implemented, the CBB requires a licensee to continue to monitor the associated risks and the effectiveness of its mitigating controls. It will verify this through the course of its normal on-site and off-site supervisory processes, such as prudential meetings and on-site examinations. The CBB also requires access to the outsourced activity, which it may occasionally want to examine itself, through management meetings or on-site examinations.

              Amended: January 2011
              October 2007

            • OM-3.2.5

              Fundamental to the CBB's supervisory approach to outsourcing is that the Board and management of the licensee may not abdicate their responsibility for a licensee's business and the way its customers are treated. The Board and management remain ultimately responsible for the effectiveness of systems and controls in outsourced activities.

              Amended: January 2011
              October 2007

            • OM-3.2.6

              The board and senior management are responsible for understanding the operational risks associated with outsourcing arrangements and ensuring that effective risk management policies and practices are in place to manage the risk in outsourcing activities. Outsourcing policies and risk management activities should encompass:

              (a) Procedures for determining whether and how activities can be outsourced;
              (b) Processes for conducting due diligence in the selection of potential service providers;
              (c) Sound structuring of the outsourcing arrangement, including ownership and confidentiality of data, as well as termination rights;
              (d) Programmes for managing and monitoring the risks associated with the outsourcing arrangement, including the financial condition of the service provider;
              (e) Establishment of an effective control environment at the bank and the service provider;
              (f) Development of viable contingency plans; and
              (g) Execution of comprehensive contracts and/or service level agreements with a clear allocation of responsibilities between the outsourcing provider and the bank.
              Added: October 2012

          • OM-3.3 OM-3.3 Prior Approval Requests

            • OM-3.3.1

              A licensee must seek the CBB s prior written approval before committing to a new material outsourcing arrangement.

              Amended: October 2017
              Amended: January 2011
              October 2007

            • OM-3.3.2

              The above request for prior approval must:

              (a) Be made in writing to the licensee's normal supervisory contact;
              (b) Contain sufficient detail to demonstrate that relevant issues raised in Section OM-2.4 onward of this Chapter have been addressed; and
              (c) Be made at least 6 weeks before the licensee intends to commit to the arrangement.
              Amended: October 2017
              October 07

            • OM-3.3.3

              The CBB will review the information provided and provide a definitive response within 6 weeks of receiving the request for prior approval. Where further information is requested from the licensee, however, the time taken to provide this further information will not be taken into account. The CBB may also contact home or host supervisors of the licensee or the service provider, to seek their comments — in such cases, the 6-week turnaround is also subject to the speed of their response.

              Amended: October 2017
              Amended: January 2011
              October 2007

            • OM-3.3.4

              Once an activity has been outsourced, a licensee must immediately inform its normal supervisory contact at the CBB of any material problems encountered with the outsourcing provider. The CBB reserves the right to direct a licensee to make alternative arrangements for the outsourced activity.

              Amended: October 2017
              Amended: January 2011
              October 2007

            • OM-3.3.5

              The CBB reserves the right to require a licensee to terminate or make alternative outsourcing arrangements if, among other reasons, the confidentiality of its customer information was, or is likely to be, breached or the ability of the CBB to carry out its supervisory functions in view of the outsourcing arrangement cannot be assured or executed.

              Added: October 2017

          • OM-3.4 OM-3.4 Risk Assessment

            • OM-3.4.1

              Licensees must undertake a thorough risk assessment of an outsourcing proposal, before formally submitting the request for approval to CBB and committing itself to an agreement.

              Amended: October 2017
              Amended: January 2011
              October 2007

            • OM-3.4.2

              The risk assessment must — amongst other things — include an analysis of:

              (a) The business case;
              (b) The suitability of the outsourcing provider; including but not limited to the outsourcing provider's financial soundness, its technical competence, its commitment to the arrangement, its reputation, its adherence to international standards, and the associated country risk; a and
              (c) The impact of the outsourcing on the licensee's overall risk profile and its systems and controls framework.
              Amended: October 2017
              Amended: July 2011
              October 07

            • OM-3.4.3

              [This paragraph was deleted in October 2017].

              Deleted: October 2017
              October 07

            • OM-3.4.4

              Once an outsourcing agreement has been entered into, licensees must regularly review the suitability of the outsourcing provider and the on-going impact of the agreement on their risk profile and systems and controls framework. Such reviews must take place at least every year.

              Amended: July 2011
              October 07

            • OM-3.4.5

              A licensee must nominate a relevant approved person with day-to-day responsibility for handling the relationship with the outsourcing provider and ensuring that relevant risks are addressed. This person must be notified to the CBB as part of the request for prior approval required under Section OM-3.3 above. Any subsequent replacement of such person must also be notified to the CBB.

              Amended: October 2017
              Amended: July 2011
              Amended: January 2011
              October 2007

          • OM-3.5 OM-3.5 Outsourcing Agreement

            • OM-3.5.1

              The activities to be outsourced and respective contractual liabilities and obligations of the outsourcing provider and licensee must be clearly specified in an outsourcing agreement. This agreement must — amongst other things — address the following points:

              (a) Control over outsourced activities
              1. The Board and management of licensees are held ultimately responsible by the CBB for the adequacy of systems and controls in outsourced activities. Licensees must therefore ensure that they have adequate mechanisms for monitoring the performance of, and managing the relationship with, the outsourcing provider.
              2. A service level agreement ("SLA") — setting out the standards of service to be provided — must form part of the outsourcing agreement. Where the outsourcing provider interacts directly with a licensee's customers, the SLA must — where relevant — reflect the licensee's own standards regarding customer care.
              3. Mechanisms for the regular monitoring by licensees of performance against the SLA and other targets, and for implementing remedies in case of any shortfalls, must also form part of the agreement.
              4. Clear reporting and escalation mechanisms must be specified in the agreement.
              5. Where an outsourcing provider in turn decides to sub-contract to other providers, CBB's prior written approval must be obtained, and the original provider must remain contractually liable to the licensee for the quality and level of service agreed, and its obligations to the licensee must remain unchanged.
              (b) Customer data confidentiality
              1. Licensees must ensure that outsourcing agreements comply with all applicable legal requirements regarding customer confidentiality.
              2. Licensees must ensure that the outsourcing provider implements adequate safeguards and procedures. Amongst other things, customer data must be properly segregated from those belonging to other clients the outsourcing provider may have. Outsourcing providers must give suitable undertakings that the company and its staff will comply with all applicable confidentiality rules. Licensees must have contractual rights to take action against the service provider in the event of a breach of confidentiality.
              3. Licensees must assess the impact of using an overseas-based outsourcing provider on their ability to maintain customer data confidentiality, for instance, because of the powers of local authorities to access such data.
              (c) Access to information
              1. Outsourcing agreements must ensure that the licensee's internal and external auditors have timely access to any relevant information they may require to fulfill their responsibilities. Such access must allow them to conduct on-site examinations of the outsourcing provider, if required.
              2. Licensees must also ensure that the CBB inspectors and appointed experts have timely access to any relevant information they may reasonably require under the law. Such access must allow the CBB to conduct on-site examinations of the outsourcing provider, if required.
              3. Where the outsourcing provider is based overseas, the outsourcing provider must confirm in the outsourcing agreement that there are no regulatory or legal impediments to either the licensee's internal and external auditors, or the CBB inspectors and appointed experts, having the access described above. Should such restrictions subsequently be imposed, the licensee must communicate this fact to the CBB as soon as it becomes aware of the matter.
              4. The outsourcing provider must commit itself, in the outsourcing agreement, to informing the licensee of any developments that may have a material impact on its ability to meet its obligations. These may include, for example, relevant control weaknesses identified by the outsourcing provider's internal or external auditors, and material adverse developments in the financial performance of the outsourcing provider.
              (d) Business continuity
              1. Licensees must ensure that service providers maintain, regularly review and test plans to ensure continuity in the provision of the outsourced service.
              2. Licensees must have an adequate understanding of the outsourcing provider's arrangements, to understand the implications for its own contingency arrangements (see Section OM-3.6).
              (e) Termination
              1. Licensees must have the right to terminate the agreement should the outsourcing provider undergo a change of ownership (whether direct or indirect) that poses a potential conflict of interest; becomes insolvent; or goes into liquidation or administration.
              2. Termination under any other circumstances allowed under the agreement must give licensees a sufficient notice period in which they can effect a smooth transfer of the service to another provider or bring it back in-house.
              3. In the event of termination, for whatever reason, the agreement must provide for the return of all customer data — where required by licensees — or destruction of the records.
              Amended: October 2017
              Amended: July 2011
              Amended: January 2011
              October 2007

          • OM-3.6 OM-3.6 Contingency Planning for Outsourcing Arrangements

            • OM-3.6.1

              Licensees must maintain and regularly review contingency plans to enable them to set up alternative arrangements — with minimum disruption to business — should the outsourcing contract be suddenly terminated or the outsourcing provider fails. This may involve the identification of alternative outsourcing providers or the provision of the service in-house. These plans must consider how long the transition would take and what interim arrangements would apply.

              Amended: July 2011
              October 07

            • OM-3.6.2

              See Chapter OM-5 for further guidance on business continuity and contingency planning.

              October 07

          • OM-3.7 OM-3.7 Internal Audit Outsourcing

            • OM-3.7.1

              Because of the critical importance of an effective internal audit function to a licensee's control framework, all proposals to outsource internal audit operations are to be considered material.

              October 07

            • OM-3.7.2

              The CBB will not permit licensees to outsource their internal audit function to the same firm that acts as their external auditor.

              Amended: October 2015
              Amended: January 2011
              October 2007

            • OM-3.7.3

              Licensees who have existing outsourcing arrangements in place with their external auditor relating to the provision of internal audit services are required to find suitable alternatives when the existing arrangements terminate or come up for renewal.

              Amended: October 2015
              October 07

            • OM-3.7.4

              In all circumstances, Board and management of licensees must retain responsibility for ensuring that an adequate internal audit programme is implemented, and will be held accountable in this respect by the CBB.

              Amended: January 2011
              October 2007

          • OM-3.8 OM-3.8 Intragroup Outsourcing

            • OM-3.8.1

              As with outsourcing to non-group companies, the Board and management of licensees are held ultimately responsible by the CBB for the adequacy of systems and controls in activities outsourced to group companies.

              Amended: January 2011
              October 2007

            • OM-3.8.2

              However, the degree of formality required — in terms of contractual agreements and control mechanisms — for outsourcing within a licensee's group is likely to be less, because of common management and enhanced knowledge of other group companies.

              October 07

            • OM-3.8.3

              A licensee must seek the CBB's prior written approval at least 6 weeks before committing to a material intragroup outsourcing. The request for approval must be made in writing to the licensee's normal supervisory contact, and must set out a summary of the proposed outsourcing, its rationale, and an analysis of its associated risks and proposed mitigating controls. The CBB will respond to the request for approval in the same manner and timescale as set in Section OM-3.3 above.

              Amended: October 2017
              Amended: January 2011
              October 2007

            • OM-3.8.4

              The CBB expects, as a minimum, an agreed statement of the standard of service to be provided by the group provider, including a clear statement of responsibilities allocated between the group provider and licensee.

              Amended: January 2011
              October 2007

            • OM-3.8.5

              The CBB also expects a licensee's management to have addressed the issues of customer confidentiality, access to information and business continuity covered above (Section OM-3.5).

              Amended: January 2011
              October 2007

          • OM-3.9 OM-3.9 Outsourcing of Functions Containing Customer Information

            • OM-3.9.1

              Licensees must seek the CBB's prior written approval for third party and intragroup outsourcing of functions/services containing customer information including but not limited to payment services, debt collection, card and data processing, IT function including cloud services, internal audit and electronic/internet banking services but excluding legal services.

              Amended: October 2017
              Added: July 2016

            • OM-3.9.2

              For a third party outsourcing of functions/services containing customer information, other than debt collection, IT function, internal audit, cards embossing, cheques personalization, data/documents storing and call centres, the service providers must be licensed by the CBB and located in Bahrain. If the outsourced service is not available in Bahrain after 30th June 2017, licensees must submit to the CBB a written request, at least within 30 days of the stated deadline. The request must provide details of the circumstances under which the extension of outsourcing activities is being requested.

              Amended: July 2018
              Amended: October 2017
              Amended: January 2017
              Added: July 2016

            • OM-3.9.2A

              In case of an outsourcing arrangement that involves transmission of customer information to the service provider, Licensees must make necessary changes to the terms of the customer agreements and send prior notices to the customer, who shall provide a consent in writing that his/her information would be transmitted to a service provider. Licensees may only effect the changes in the customer agreement following the receipt of customer consent.

              Added: July 2018

            • OM-3.9.3

              Licensees must provide to the CBB quarterly progress reports on the steps and procedures taken in implementing the requirements of Paragraph OM-3.9.2. The progress report must be provided to the retail bank's supervisory point of contact at the CBB and the first report must be submitted by 31st July 2016.

              Amended: October 2017
              Added: July 2016

            • OM-3.9.4

              For intragroup outsourcing of functions/services containing customer information, the following conditions must also be met:

              (a) The outsourcing providers must be annually audited by the group internal audit team and the audit findings must be reported to the CBB;
              (b) The service level agreement must clearly state that the CBB inspectors and appointed experts have the legal right to conduct onsite examinations of the outsourcing provider and such expenses are to be borne by the licensee; and
              (c) Any report by any other regulatory authority on the quality of controls of the outsourcing provider must be submitted immediately by the licensee to the CBB.
              (d) [This sub-paragraph was deleted in October 2017].
              Amended: October 2017
              Added: July 2016

            • OM-3.9.5

              [This Paragraph was deleted in October 2017].

              Deleted: October 2017
              Added: July 2016

            • OM-3.9.6

              In the case of overseas retail bank licensees, the CBB may consider a third party outsourcing arrangements entered by the licensee's head office as an intragroup outsourcing, provided that the head office submits to the CBB a letter of comfort which includes, but not limited to, the following conditions:

              a. The head office declares its ultimate responsibility of ensuring that adequate controlling measures are in place; and
              b. The head office is responsible to take adequate rectification measures, including compensation to the affected customers, in cases where customers suffer any loss due to inadequate controls applied by the third party service provider.
              Added: January 2017

            • Cloud Services

              • OM-3.9.7

                For the purpose of outsourcing of cloud services, licensees must ensure that, at a minimum, the following security measures are in place:

                (a) Customer information must be encrypted and licensees must ensure that all encryption keys or similar forms of authentication are kept secure within the licensee's control;
                (b) A secure audit trail must be maintained for all actions performed at the cloud services outsourcing provider;
                (c) A comprehensive change management procedure must be developed to account for future changes to technology with adequate testing of such changes;
                (d) The licensee's data must be logically segregated from other entities data at the outsourcing service provider's platform;
                (e) The cloud service provider must provide information on measures taken at its platform to ensure adequate information security, data security and confidentiality, including but not limited to forms of protection available against unauthorized access and incident management process in cases of data breach or data loss; and
                (f) The right to release customer information/data in case of foreign government/court orders must be the sole responsibility of the licensee, subject to the CBB Law.
                Added: October 2017

        • OM-4 OM-4 Electronic Money and Electronic Banking Activities

          • OM-4.1 OM-4.1 Electronic Banking

            • OM-4.1.1

              This Chapter refers to Basel Committee papers that the CBB requires relevant licensees to use as guidance on electronic banking activities.

              Amended: January 2011
              October 2007

            • OM-4.1.2

              The CBB considers that the following papers represent best practice and provide guidelines for recognising, addressing and managing risk associated with this area. Banks should take appropriate steps for the implementation of relevant recommendations set out therein:

              (a) 'Risk Management for Electronic Banking and Electronic Money Activities' issued in March 1998 (see OM-1.1 for further references to the paper);
              (b) 'Risk Management Principles for Electronic Banking' issued in May 2001 (see OM-1.1 for further references to the paper).
              Amended: January 2011
              October 2007

            • OM-4.1.3

              Licensees must use the 'Risk Management Principles and Sound Practices' in the Basel Committee paper in OM-1.1 as guidelines to recognise and prudently manage risks associated with e-banking.

              October 07

        • OM-5 OM-5 Business Continuity Planning

          • OM-5.1 OM-5.1 Introduction

            • Why Do Financial Institutions Need Business Continuity Plans?

              • OM-5.1.1

                All businesses may experience serious disruptions to their business operations. These disruptions may be caused by external events such as flooding, power failure or terrorism, or by internal factors such as human error or a serious computer breakdown. The probability of some events may be small, but the potential consequences may be massive, whereas other events may be more frequent and with shorter time horizons. The Joint Forum (the Basel Committee on Banking Supervision (BCBS), the International Organisation of Securities Commissions (IOSCO) and the International Association of Insurance Supervisors (IAIS)) have given additional background and context to the need for business continuity in its paper of August 2006 titled "High Level Principles for Business Continuity" (www.bis.org).

                October 07

              • OM-5.1.2

                According to the Joint Forum, in its paper, Business Continuity is "a whole of business approach for insuring that specified operations can be maintained or recovered in a timely fashion in the event of disruption. Its purpose is to minimize the operational, financial, legal, reputational, and other material consequences arising from a disruption". The objectives of a good business continuity plan ("BCP") are:

                (a) To minimise financial loss to the licensee;
                (b) To continue to serve customers and counterparties in the financial markets; and
                (c) To mitigate the negative effects that disruptions can have on a licensee's reputation, operations, liquidity, credit quality, its market position, and its ability to remain in compliance with applicable laws and regulations.
                October 07

              • OM-5.1.3

                Banks play a critical role in an economy, in providing payment services, as holders of people's savings, and as providers of finance. Hence, a BCP is especially critical for banks. It helps ensure that their business operations are resilient and the effects of disruptions in service are minimized and thus helps maintain confidence in the banking system.

                October 07

            • Scope and Key Elements of a BCP

              • OM-5.1.4

                The requirements of this Chapter apply to all retail and wholesale banks (whether locally incorporated or a branch).

                October 07

              • OM-5.1.5

                Branch Licensees of foreign banks may apply alternative arrangements to those specified in this module, where they are subject to comprehensive BCP arrangements implemented by their head office or other member of their group, provided that:

                (a) They have notified the CBB in writing what alternative arrangements will apply;
                (b) They have satisfied the CBB that these alternative arrangements are equivalent to the measures contained in this chapter, or are otherwise suitable; and
                (c) The CBB has agreed in writing to these alternative arrangements being used.
                October 07

            • Implementation

              • OM-5.1.6

                The requirements in this Chapter must be complied with in full by 1 October 2007. Failure to comply with these requirements after that will trigger a supervisory response, which may include formal enforcement measures, as set out in Module EN (Enforcement).

                October 07

              • OM-5.1.7

                For contingency planning relating to outsourcing activities, see Section OM-3.6.

                October 07

          • OM-5.2 OM-5.2 General Requirements

            • OM-5.2.1

              To ensure an ability to operate on an ongoing basis and limit losses in the event of severe business disruption all Islamic bank licensees must maintain a business continuity plan (BCP) appropriate to the scale and complexity of their operations. A BCP must address the following key areas:

              (a) Data back up and recovery (hard copy and electronic);
              (b) Continuation of all critical systems, activities, and counterparty impact;
              (c) Financial and operational assessments;
              (d) Alternate communication arrangements between the licensee and its customers and its employees;
              (e) Alternate physical location of employees;
              (f) Communications with and reporting to the CBB and any other relevant regulators; and
              (g) Ensuring customers' prompt access to their funds in the event of a disruption.
              Amended: October 2012
              October 07

            • OM-5.2.2

              Effective BCPs must be comprehensive, limited not just to disruption of business premises and information technology facilities, but covering all other critical areas, which affect the continuity of critical business operations or services (e.g. liquidity, human resources and others).

              October 07

            • OM-5.2.3

              Licensees must notify the CBB promptly if their BCP is activated. They must also provide regular progress reports — as agreed with the CBB — until the BCP is deactivated.

              October 07

            • OM-5.2.4

              The CBB recognises that BCPs involve costs, and that it may not be cost effective to have a fully developed and implemented BCP for all conceivable worst-case scenarios. However, the CBB expects licensees to plan for how they may cope with the complete destruction of buildings and surrounding infrastructure in which their key offices, installations, counterparties or service providers are located. The loss of key personnel, and a situation where back-up facilities might need to be used for an extended period of time are important factors in effective BCPs.

              October 07

            • OM-5.2.5

              Licensees may find it useful to consider two-tier plans: one to deal with near-term problems; this should be fully developed and able to be put into immediate effect. The other, which might be in paper form; should deal with a longer-term scenario (e.g. how to accommodate processes that might not be critical immediately but would become so over time).

              October 07

          • OM-5.3 OM-5.3 Board and Senior Management Responsibilities

            • Establishment of a Policy, Processes&Responsibilities

              • OM-5.3.1

                A Bank's Board of Directors and Senior Management are collectively responsible for a bank's business continuity. The Board must endorse the policies, standards and processes for a licensee's BCP, as established by its senior management. The Board and senior management must delegate adequate resources to develop the BCP, and for its maintenance and periodic testing.

                October 07

              • OM-5.3.2

                Licensees must establish a Crisis Management Team (CMT) to develop, maintain and test their BCP, as well as to respond to and manage the various stages of a crisis. The CMT must comprise members of senior management and heads of major support functions (e.g. building facilities, IT, corporate communications and human resources).

                Amended: July 2011
                October 07

              • OM-5.3.3

                Licensees must establish (and document as part of the BCP) individuals' responsibilities in helping prepare for and manage a crisis; and the process by which a disaster is declared and the BCP initiated (and later terminated).

                October 07

            • Monitoring and Reporting

              • OM-5.3.4

                The CMT must submit regular reports to the Board and senior management on the results of the testing of the BCP (refer to section OM-5.9). Major changes must be developed by CMT, reported to senior management, and endorsed by the Board.

                Amended: July 2011
                October 07

              • OM-5.3.5

                The Chief Executive of a licensee must sign a formal annual statement submitted to the Board on whether the recovery strategies adopted are still valid and whether the documented BCP is properly tested and maintained. The annual statement must be included in the BCP documentation and will be reviewed as part of the CBB's on-site examinations.

                October 07

          • OM-5.4 OM-5.4 Developing a Business Continuity Plan

            • Impact Analysis

              • OM-5.4.1

                Licensees' BCPs must be based on (i) a business impact analysis (ii) an operational impact analysis, and (iii) a financial impact analysis. These analyses must be comprehensive, including all business functions and departments, not just IT or data processing.

                October 07

              • OM-5.4.2

                The key objective of a Business Impact Analysis is to identify the different kinds of risk to business continuity and to quantify the operational and financial impact of disruptions on a licensee's ability to conduct its critical business processes.

                October 07

              • OM-5.4.3

                A typical business impact analysis is normally comprised of two stages. The first is to identify and prioritise the critical business processes that must be continued in the event of a disaster. The first stage should take account of the impact on customers and reputation, the legal implications and the financial cost associated with downtime. The second stage is a time-frame assessment. This aims to determine how quickly the licensee needs to resume critical business processes identified in stage one.

                October 07

              • OM-5.4.4

                Operational impact analysis focuses on the firm's ability to maintain communications with customers and to retrieve key activity records. It identifies the organizational implications associated with the loss of access, loss of utility, or loss of a facility. It highlights which functions may be interrupted by an outage, and the consequences to the public and customer of such interruptions.

                October 07

              • OM-5.4.5

                A Financial Impact Analysis identifies the financial losses that (both immediate and also consequent to the event) arise out of an operational disruption.

                October 07

            • Risk Assessment

              • OM-5.4.6

                In developing a BCP, licensees must consider realistic threat scenarios that may (potentially) cause disruptions to their business processes.

                October 07

              • OM-5.4.7

                Licensees should analyse a threat by focusing on its impact on the business processes, rather than on the source of a threat. Certain scenarios can be viewed purely in terms of business disruption in specific work areas, systems or facilities. The scenarios should be sufficiently comprehensive to avoid the BCPs becoming too basic and thereby avoiding steps that could improve the resiliency of the licensee to disruptions.

                October 07

              • OM-5.4.8

                Business continuity plans must take into account different types of likely or plausible scenarios to which the bank may be vulnerable. In particular, the following specific scenarios must at a minimum, be considered in the BCP:

                •   Utilities are not available (power, telecommunications);
                •   Critical buildings are not available or specific facilities are not accessible;
                •   Software and live data are not available or are corrupted;
                •   Vendor assistance or (outsourced) service providers are not available;
                •   Critical documents or records are not available;
                •   Critical personnel are not available; and
                •   Significant equipment malfunctions (hardware or telecom).
                Amended: October 2012
                October 07

              • OM-5.4.9

                Licensees must distinguish between threats with a higher probability of occurrence and a lower impact to the business process (e.g. brief power interruptions) to those with a lower probability and higher impact (e.g. a terrorist bomb).

                October 07

              • OM-5.4.10

                As a starting point, licensees must perform a "gap analysis". This gap analysis is a methodical comparison of what types of plans the licensee requires in order to maintain, resume or recover critical business operations or services in the event of a disruption, versus what the existing BCP provides. Management and the Board can address the areas that need development in the BCP, using the gap analysis.

                Amended: July 2011
                October 07

          • OM-5.5 OM-5.5 BCP – Recovery Levels&Objectives

            • OM-5.5.1

              The BCP must document strategies and procedures to maintain, resume and recover critical business operations or services. The plan must differentiate between critical and non-critical functions. The BCP must clearly describe the types of events that would lead up to the formal declaration of a business disruption and the process for activating the BCP.

              October 07

            • OM-5.5.2

              The BCP must clearly identify alternate sites for different operations, the total number of recovery personnel, workspace requirements, and applications and technology requirements. Office facilities and records requirements must also be identified.

              October 07

            • OM-5.5.3

              Licensees should take note that they might need to cater for processing volumes that exceed those under normal circumstances. The interdependency among critical services is another major consideration in determining the recovery strategies and priority. For example, the resumption of the front office operations is highly dependent on the recovery of the middle office and back office support functions.

              October 07

            • OM-5.5.4

              Individual critical business and support functions must establish the minimum BCP recovery objectives for recovering essential business operations and supporting systems to a specified level of service ("recovery level") within a defined period following a disruption ("recovery time"). These recovery levels and recovery times must be approved by the senior management prior to proceeding to the development of the BCP.

              October 07

          • List of Contacts and Responsibilities

            • OM-5.5.5

              The BCP must contain a list of all key personnel. The list must include personal contact information on each key employee such as their home address, home telephone number, and cell phone or pager number so they may be contacted in case of a disaster or other emergency.

              October 07

            • OM-5.5.6

              The BCP must contain all the necessary process steps to complete each critical business operation or service. Each process must be explained in sufficient detail to allow another employee to perform the job in case of a disaster.

              Amended: July 2011
              October 07

            • Alternate Sites for Business and Technology Recovery

              • OM-5.5.7

                Most business continuity efforts are dependent on the availability of an alternate site (i.e. recovery site) for successful execution. The alternate site may be either an external site available through an agreement with a commercial vendor or a site within the Licensee's real estate portfolio. A useable, functional alternate site is an integral component of BCP.

                October 07

              • OM-5.5.8

                Licensees must examine the extent to which key business functions are concentrated in the same or adjacent locations and the proximity of the alternate sites to primary sites. Alternate sites must be sufficiently remote from, and do not depend upon the same physical infrastructure components as a licensee's primary business location. This minimises the risk of both sites being affected by the same disaster (e.g. they must be on separate or alternative power grids and telecommunication circuits).

                Amended: July 2011
                October 07

              • OM-5.5.9

                Licensees' alternate sites must be readily accessible and available for occupancy (i.e. 24 hours a day, 7 days a week) within the time requirement specified in their BCP. Should the BCP so require, the alternate sites must have pre-installed workstations, power, telephones and ventilation, and sufficient space. Appropriate physical access controls such as access control systems and security guards must be implemented in accordance with Licensee's security policy.

                Amended: July 2011
                October 07

              • OM-5.5.10

                Other than the establishment of alternate sites, licensees should also pay particular attention to the transportation logistics for relocation of operations to alternate sites. Consideration should be given to the impact a disaster may have on the transportation system (e.g. closures of roads). Some staff may have difficulty in commuting from their homes to the alternate sites. Other logistics, such as how to re-route internal and external mail to alternate sites should also be considered. Moreover, pre-arrangement with telecommunication companies for automated telephone call diversion from the primary work locations to the alternate sites should be considered.

                October 07

              • OM-5.5.11

                Alternate sites for technology recovery (i.e. back-up data centres), which may be separate from the primary business site, should have sufficient technical equipment (e.g. workstations, servers, printers, etc.) of appropriate model, size and capacity to meet recovery requirements as specified by licensees' BCPs. The sites should also have adequate telecommunication (including bandwidth) facilities and pre-installed network connections as specified by their BCP to handle the expected voice and data traffic volume.

                October 07

              • OM-5.5.12

                Licensees should avoid placing excessive reliance on external vendors in providing BCP support, particularly where a number of institutions are using the services of the same vendor (e.g. to provide back-up facilities or additional hardware). Licensees should satisfy themselves that such vendors do actually have the capacity to provide the services when needed and the contractual responsibilities of the vendors should be clearly specified. Licensees should recognise that outsourcing a business operation does not transfer the associated business continuity management responsibilities.

                October 07

              • OM-5.5.13

                The contractual terms should include the lead-time and capacity that vendors are committed to deliver in terms of back-up facilities, technical support or hardware. The vendor should be able to demonstrate its own recoverability including the specification of another recovery site in the event that the contracted site becomes unavailable.

                October 07

              • OM-5.5.14

                Certain licensees may rely on a reciprocal recovery arrangement with other institutions to provide recovery capability (e.g. Cheque sorting and cash handling). Licensees should, however, note that such arrangements are often not appropriate for prolonged disruptions or an extended period of time. This arrangement could also make it difficult for Licensees to adequately test their BCP. Any reciprocal recovery agreement should therefore be subject to proper risk assessment and documentation by licensees, and formal approval by the Board.

                October 07

          • OM-5.6 OM-5.6 Detailed Procedures for the BCP

            • OM-5.6.1

              Once the recovery levels and recovery objectives for individual business lines and support functions are determined, the development of the detailed BCP should commence. The objective of the detailed BCP is to provide detailed guidance and procedures in a crisis situation, of how to recover critical business operations or services identified in the Business Impact Analysis stage, and to ultimately return to operations as usual.

              October 07

            • Crisis Management Process

              • OM-5.6.2

                A BCP must set out a Crisis Management Plan (CMP) that serves as a documented guidance to assist the CMT in dealing with a crisis situation to avoid spill over effects to the business as a whole. The overall CMP, at a minimum, must contain the following:

                (a) A process for ensuring early detection of an emergency or a disaster situation and prompt notification to the CMT about the incident;
                (b) A process for the CMT to assess the overall impact of the crisis situation on the licensee and to make quick decisions on the appropriate responses for action (i.e. staff safety, incident containment and specific crisis management procedures);
                (c) Arrangements for safe evacuation from business locations (e.g. directing staff to a pre-arranged emergency assembly area, taking attendance of all employees and visitors at the time and tracking missing people through different means immediately after the disaster);
                (d) Clear criteria for activation of the BCP and/or alternate sites;
                (e) A process for gathering updated status information for the CMT (e.g. ensuring that regular conference calls are held among key staff from relevant business and support functions to report on the status of the recovery process);
                (f) A process for timely internal and external communications; and
                (g) A process for overseeing the recovery and restoration efforts of the affected facilities and the business services.
                Amended: July 2011
                October 07

              • OM-5.6.3

                If CMT members need to be evacuated from their primary business locations, the licensee should set up a command centre to provide the necessary workspace and facilities for the CMT. Command centres should be sufficiently distanced from the licensee's primary business locations to avoid being affected by the same disaster.

                October 07

            • Business Resumption

              • OM-5.6.4

                Each relevant business and support function must assign at least one member to be a part of the CMT to carry out the business resumption process for the relevant business and supported function. Appropriate recovery personnel with the required knowledge and skills must be assigned to the team.

                Amended: July 2011
                October 07

              • OM-5.6.5

                Generally, the business resumption process consists of three major phases:

                (a) The mobilisation phase — This phase aims to notify the recovery teams (e.g. via a call-out tree) and to secure the resources (e.g. recovery services provided by vendors) required to resume business services.
                (b) The alternate processing phase — This phase emphasizes the resumption of the business and service delivery at the alternate site and/or in a different way than the normal process. This may entail record reconstruction and verification, establishment of new controls, alternate manual processes, and different ways of dealing with customers and counterparties; and
                (c) The full recovery phase — This phase refers to the process for moving back to a permanent site after a disaster. This phase may be as difficult and critical to the business as the process to activate the BCP.
                October 07

              • OM-5.6.6

                For the first two phases above, clear responsibilities should be established and activities prioritised. A recovery tasks checklist should be developed and included in the BCP.

                October 07

              • Technology Recovery

                • OM-5.6.7

                  Business resumption very often relies on the recovery of technology resources that include applications, hardware equipment and network infrastructure as well as electronic records. The technology requirements that are needed during recovery for individual business and support functions should be specified when the recovery strategies for the functions are determined.

                  October 07

                • OM-5.6.8

                  Licensees should pay attention to the resilience of critical technology equipment and facilities such as the uninterruptible power supply (UPS) and the computer cooling systems. Such equipment and facilities should be subject to continuous monitoring and periodic maintenance and testing.

                  October 07

                • OM-5.6.9

                  Appropriate personnel must be assigned with the responsibility for technology recovery. Alternative personnel need to be identified as back up for key technology recovery personnel in the case of the latter unavailability to perform the recovery process.

                  October 07

              • Disaster Recovery Models

                • OM-5.6.10

                  There are various disaster recovery models that can be adopted by licensees to handle prolonged disruptions. The traditional model is an "active/back-up" model, which is widely used by many organizations. This traditional model is based on an "active" operating site with a corresponding alternate site (back-up site), both for data processing and for business operations.

                  October 07

                • OM-5.6.11

                  A split operations model, which is increasingly being used by major institutions, operates with two or more widely separated active sites for the same critical operations, providing inherent back up for each other (e.g. branches). Each site has the capacity to take up some or all of the work of another site for an extended period of time. This strategy can provide nearly immediate resumption capacity and is normally able to handle the issue of prolonged disruptions.

                  October 07

                • OM-5.6.12

                  The split operations model may incur higher operating costs, in terms of maintaining excess capacity at each site and added operating complexity. It may also be difficult to maintain appropriately trained staff and the split operations model can pose technological issues at multiple sites.

                  October 07

                • OM-5.6.13

                  The question of what disaster recovery model to adopt is for individual licensees' judgment based on the risk assessment of their business environment and the characteristics of their own operations.

                  October 07

          • OM-5.7 OM-5.7 Vital Records Management

            • OM-5.7.1

              Each BCP must clearly identify information deemed vital for the recovery of critical business and support functions in the event of a disaster as well as the relevant protection measures to be taken for protecting vital information. Licensees must refer to Chapter OM-7 of the Rulebook when identifying vital information for business continuity. Vital information includes information stored on both electronic and non-electronic media.

              Amended: July 2011
              Amended: October 2009
              October 2007

            • OM-5.7.2

              Copies of vital records must be stored off-site as soon as possible after creation. Back-up vital records must be readily accessible for emergency retrieval. Access to back-up vital records must be adequately controlled to ensure that they are reliable for business resumption purposes. For certain critical business operations or services, licensees must consider the need for instantaneous data back up to ensure prompt system and data recovery. There must be clear procedures indicating how and in what priority vital records are to be retrieved or recreated in the event that they are lost, damaged or destroyed.

              Amended: July 2011
              October 07

          • OM-5.8 OM-5.8 Other Policies Standards, and Processes

            • Employee Awareness and Training Plan

              • OM-5.8.1

                Licensees must implement an awareness plan and business continuity training for employees to ensure that all employees are continually aware of their responsibilities and know how to remain in contact and what to do in the event of a crisis.

                October 07

              • OM-5.8.2

                Key employees should be involved in the business continuity development process, as well as periodic training exercises. Cross training should be utilised to anticipate restoring operations in the absence of key employees. Employee training should be regularly scheduled and updated to address changes to the BCP.

                October 07

            • Public Relations & Communication Planning

              • OM-5.8.3

                Licensees must develop an awareness program and formulate a formal strategy for communication with key external parties (e.g. CBB and other regulators, investors, customers, counterparties, business partners, service providers, the media and other stakeholders) and provide for the type of information to be communicated. The strategy needs to set out all the parties the licensee must communicate to in the event of a disaster. This will ensure that consistent and up-to-date messages are conveyed to the relevant parties. During a disaster, ongoing and clear communication is likely to assist in maintaining the confidence of customers and counterparties as well as the public in general.

                Amended: July 2011
                October 07

              • OM-5.8.4

                The BCP must clearly indicate who may speak to the media and other key external parties, and have pre-arrangements for redirecting external communications to designated staff during a disaster. Important contact numbers and e-mail addresses of key external parties must be kept in a readily accessible manner (e.g. in wallet cards or licensees' intranet).

                Amended: July 2011
                October 07

              • OM-5.8.5

                Licensees may find it helpful to prepare draft press releases as part of their BCP. This will save the CMT time in determining the main messages to convey in a chaotic situation. Important conversations with external parties should be properly logged for future reference.

                October 07

              • OM-5.8.6

                As regards internal communication, the BCP should set out how the status of recovery can be promptly and consistently communicated to all staff, parent bank, head office, branches and subsidiaries (where appropriate). This may entail the use of various communication channels (e.g. broadcasting of messages to mobile phones of staff, Licensees websites, e-mails, intranet and instant messaging).

                October 07

            • Insurance and other Risk Mitigating Measures

              • OM-5.8.7

                Licensees must have proper insurance coverage to reduce the financial losses that they may face during a disaster. Licensees must regularly review the adequacy and coverage of their insurance policies in reducing any foreseeable risks caused by disasters (e.g. loss of offices, critical IT facilities and equipment).

                October 07

            • Government and Community

              • OM-5.8.8

                Licensees may need to coordinate with community and government officials and the media to ensure the successful implementation of the BCP. This establishes proper protocol in case a city- wide or region- wide event impacts the licensee's operations. During the recovery phase, facilities access, power, and telecommunications systems should be coordinated with various entities to ensure timely resumption of operations. Facilities access should be coordinated with the police and fire department and, depending on the nature and extent of the disaster.

                October 07

            • Disclosure Requirements

              • OM-5.8.9

                Licensees must disclose how their BCP addresses the possibility of a future significant business disruption and how the licensee will respond to events of varying scope. Licensees must also state whether they plan to continue business during disruptions and the planned recovery time. The licensees might make these disclosures on their websites, or through mailing to key external parties upon request. In all cases, BCP disclosures must be reviewed and updated to address changes to the BCP.

                Amended: July 2011
                October 07

          • OM-5.9 OM-5.9 Maintenance, Testing and Review

            • Testing & Rehearsal

              • OM-5.9.1

                A BCP is not complete if it has not been subject to proper testing. Testing is needed to ensure that the BCP is operable. Testing verifies the awareness of staff and the preparedness of differing departments/functions of the bank.

                October 07

              • OM-5.9.2

                Licensees must test their BCPs at least annually. Senior management must participate in the annual testing, and demonstrate their awareness of what they are required to do in the event of the BCP being involved. Also, the recovery and alternate personnel must participate in testing rehearsals to familiarise themselves with their responsibilities and the back-up facilities and remote sites (where applicable).

                October 07

              • OM-5.9.3

                All of the BCP's related risks and assumptions must be reviewed for relevancy and appropriateness as part of the annual planning of testing. The scope of testing must be comprehensive enough to cover the major components of the BCP as well as coordination and interfaces among important parties. A testing of particular components of the BCP or a fully integrated testing must be decided or depending on the situation. The following points must be included in the annual testing:

                (a) Staff evacuation and communication arrangements (e.g. call-out trees) must be validated;
                (b) The alternate sites for business and technology recovery must be activated;
                (c) Important recovery services provided by vendors or counterparties must form part of the testing scope;
                (d) Licensees must consider testing the linkage of their back up IT systems with the primary and back up systems of service providers;
                (e) If back up facilities are shared with other parties (e.g. subsidiaries of the licensee), the licensee needs to verify whether all parties can be accommodated concurrently; and
                (f) Recovery of vital records must be performed as part of the testing.
                Amended: July 2011
                October 07

              • OM-5.9.4

                Formal testing reviews of the BCP must be performed to assess the thoroughness and effectiveness of the testing. Specifically, a post-mortem review report must be prepared at the completion of the testing stage for formal sign-off by Licensees' senior management. If the testing results indicate weaknesses or gaps in the BCP, the plan and recovery strategies must be updated to remedy the situation.

                Amended: July 2011
                October 07

            • Periodic Maintenance and Updating of a BCP

              • OM-5.9.5

                Licensees must have formal procedures to keep their BCP updated with respect to any changes to their business. In the event of a plan having been activated, a review process must be carried out once normal operations are restored to identify areas for improvement. If vendors are needed to provide vital recovery services, there must be formal processes for regular (say, annual) reviews of the appropriateness of the relevant service level agreements.

                Amended: July 2011
                October 07

              • OM-5.9.6

                Individual business and support functions, with the assistance of the CMT, must review their business impact analysis and recovery strategy on an annual basis. This aims to confirm the validity of, or whether updates are needed to, the BCP requirements (including the technical specifications of equipment of the alternate sites) for the changing business and operating environment.

                Amended: July 2011
                October 07

              • OM-5.9.7

                The contact information for key staff, counterparties, customers and service providers must be updated as soon as possible when notification of changes is received.

                Amended: July 2011
                October 07

              • OM-5.9.8

                Significant internal changes (e.g. merger or acquisitions, business re-organisation or departure of key personnel) must be reflected in the plan immediately and reported to senior management.

                October 07

              • OM-5.9.9

                Copies of the BCP document must be stored at locations separate from the primary site. A summary of key steps to be taken in an emergency situation must be made available to senior management and other key personnel.

                Amended: July 2011
                October 07

            • Audit and Independent Review

              • OM-5.9.10

                The internal audit function of a licensee or its external auditors must conduct periodic reviews of the BCP to determine whether the plan remains realistic and relevant, and whether it adheres to the policies and standards of the licensee. This review must include assessing the adequacy of business process identification, threat scenario development, business impact analysis and risk assessments, the written plan, testing scenarios and schedules, and communication of test results and recommendations to the Board.

                Amended: July 2011
                October 07

              • OM-5.9.11

                Significant findings must be brought to the attention of the Board and Senior Management within three months of the completion of the review. Furthermore, Senior Management and the Board must ensure that any gaps or shortcomings reported to them are addressed in an appropriate and timely manner.

                Amended: July 2011
                October 07

          • OM-5.10 OM-5.10 Cyber Security Risk Management

            • OM-5.10.1

              To prepare for the eventuality of cyber attacks, licensees must have a cyber attack response mechanism in place. The BCP of the licensee must also be properly enhanced to account for all CBB requirements and must be regularly tested to assure that the licensee is capable of dealing with cyber attacks.

              Added: October 2016

        • OM-6 OM-6 Security Measures for Banks

          • OM-6.1 OM-6.1 Physical Security Measures for Retail Banks

            • General Requirement

              • OM-6.1.1

                Retail banks must maintain up to date Payment Card Industry Data Security Standards (PCI-DSS) certification. This initial certification must be obtained by 30th April 2017. Failure to comply with this requirement will trigger a supervisory response, which may include formal enforcement measures, as set out in Module EN (Enforcement).

                Amended: October 2016
                Amended: April 2016
                Amended: January 2011
                October 2007

              • OM-6.1.1.A

                In order to maintain up to date PCI-DSS certification, retail banks will be periodically audited by PCI authorised companies for compliance. Licensees are asked to make certified copies of such documents available if requested by the CBB.

                Added: April 2016

            • External Measures

              • OM-6.1.2

                All head offices are required to maintain Ministry of Interior ("MOI") guards or alternatively MOI trained and permanently licensed private security guards of licensed private security companies, on a 24 hours basis. All branches must also maintain a 24 hour MOI guard. However, if branches satisfy the criteria mentioned in Paragraphs OM-6.1.3 to OM-6.1.22 below, they may maintain MOI guards during opening hours only. Furthermore, branches will be allowed to replace MOI armed guards with private security guards subject to the approval of the MOI. Training and approval of private security guards will be given by the MOI. Head Offices must always have a 24 hour MOI.

                Amended: July 2019
                October 07

              • OM-6.1.3

                Public entrances to head offices and branches must be protected by measures such as steel rolling shutters, or the external doors must be of solid steel or a similar solid material of equivalent strength and resistance to fire.

                October 07

              • OM-6.1.4

                Other external entrances must have steel doors or be protected by steel rolling shutters. Preferably, all other external entrances must have the following security measures:

                (a) Magic eye;
                (b) Locking device (key externally and handle internally);
                (c) Door closing mechanism;
                (d) Contact sensor with alarm for prolonged opening time; and
                (e) Combination access control system (e.g. access card and key slot or swipe card and password).
                Amended: July 2011
                Amended: April 2011
                October 07

              • OM-6.1.5

                If additional security measures to those mentioned in OM-6.1.3 and OM-6.1.4 such as security cameras, motion detectors or intruder alarms are installed, the requirement for steel external doors or protection by steel rolling shutters is waived.

                October 07

              • OM-6.1.6

                External windows must have security measures such as anti blast films and movement detectors. For ground floor windows, banks may also wish to add steel grills fastened into the wall.

                Amended: July 2011
                October 07

              • OM-6.1.7

                Branch alarm systems should have the following features:

                (a) PIR motion detectors
                (b) Door sensors
                (c) Anti vibration/movement sensors on vaults
                (d) External siren
                (e) The intrusion detection system must be linked to the bank's (i.e. head office) monitoring unit and also the MOI Central Monitoring Unit.
                Amended: January 2011
                October 2007

            • Internal Measures

              • OM-6.1.8

                Teller counters must be screened off from customers by a glass screen of no less than 1 meter in height from the counter work surface or 1.4 meters from the floor.

                October 07

              • OM-6.1.9

                All areas where cash is handled must be screened off from customers and other staff areas.

                October 07

              • OM-6.1.10

                Access to teller areas must be restricted to authorised staff only. The design of the teller area must not allow customers to pass through it.

                Amended: July 2011
                October 07

              • OM-6.1.11

                Panic alarm systems for teller staff must be installed. The choice between silent or audible panic alarms is left to individual banks. Kick bars and/or hold up buttons must be spread throughout the teller and customer service areas and the branch manager's office. The panic alarm must be linked to the MOI Central Monitoring Unit.

                October 07

            • Cash Safety

              • OM-6.1.12

                Cash precious metals and bearer instruments must be kept in fireproof cabinets/safes. Preferably, these cabinets/safes must be located in strong rooms.

                Amended: July 2011
                October 07

              • OM-6.1.13

                Strong rooms must be made of reinforced solid concrete, or reinforced block work. Doors to strong rooms must be steel and preferably also have a steel shutter fitted. Dual locking devices must be installed in strong room doors. Strong room doors must be located out of the sight of customers.

                Amended: July 2011
                October 07

              • OM-6.1.14

                Strong rooms must not contain any other openings except the entry door and where necessary, an air conditioning outlet. The air conditioning outlet must be protected with a steel grill.

                October 07

              • OM-6.1.15

                [This Paragraph was deleted in April 2016.]

                Deleted: April 2016
                Amended: July 2011
                October 07

              • OM-6.1.16

                [This Paragraph was deleted in April 2016 and requirements were moved to Section OM-6.4.]

                Deleted: April 2016
                Amended: July 2011
                October 07

              • OM-6.1.17

                [This Paragraph was deleted in April 2016.]

                Amended: April 2016
                October 07

              • OM-6.1.18

                [This Paragraph was deleted in April 2016 and requirements were moved to Section OM-6.4.]

                Deleted: April 2016
                October 07

              • OM-6.1.19

                [This Paragraph was deleted in April 2016 and requirements are now covered under Paragraph OM-6.4.14.]

                Deleted: April 2016
                October 07

            • CCTV Network Systems

              • OM-6.1.20

                All head offices and branches must have a CCTV network and alarm system which are connected to a central monitoring unit located in the head office, along with a Video Monitoring System (VMS) and to the MOI Central Monitoring Unit.

                Amended: April 2016
                October 07

              • OM-6.1.21

                At a minimum, CCTV cameras must cover the following areas:

                (a) Main entrance;
                (b) Other external doors;
                (c) Any other access points (e.g. ground floor windows);
                (d) The banking hall;
                (e) Tellers' area;
                (f) Strongroom entrance; and
                (g) ATMs (by way of internal or external cameras) Refer to Section OM-6.3 for specific CCTV requirements related to ATMs.
                Amended: April 2016
                Amended: July 2011
                Amended: January 2011
                October 2007

              • OM-6.1.22

                Notices of CCTV cameras in operation must be put up for the attention of the public. CCTV records must be maintained for a minimum 45-day period. The transmission rate (in terms of the number of frames per second) must be high enough to make for effective monitoring. Delayed transmission of pictures to the Central Monitoring Unit is not acceptable. The CCTV system must be operational 24 hours per day.

                Amended: July 2011
                October 07

            • Training and Other Measures

              • OM-6.1.23

                Banks must establish the formal position of security manager. This person will be responsible for ensuring all bank staff are given annual, comprehensive security training. Banks must produce a security manual or procedures for staff, especially those dealing directly with customers. For banks with three or more branches, this position must be a formally identified position. For banks with one or two branches, the responsibilities of this position may be added to the duties of a member of management.

                Amended: July 2011
                October 07

              • OM-6.1.24

                The security manager must maintain records on documented security related complaints by customers and take corrective action or make recommendations for action on a timely basis. Actions and recommendations must also be documented.

                October 07

              • OM-6.1.25

                Banks must consider safety and security issues when selecting premises for new branches. Key security issues include prominence of location (i.e. Is the branch on a main street or a back street?), accessibility for emergency services, and assessment of surrounding premises (in terms of their safety or vulnerability), and the number of entrances to the branch. All banks are required to hold an Insurance Blanket Bond (which includes theft of cash in its cover).

                Amended: July 2011
                October 07

              • OM-6.1.26

                Further rules on ATM Physical Security Measures are contained in Section OM-6.4.

                Added: April 2016

          • OM-6.2 OM-6.2 Internet Security for all Banks

            • OM-6.2.1

              All banks providing internet banking services must regularly test their systems against security breaches and verify the robustness of the security controls in place. These tests must be conducted by security professionals, such as ethical hackers, that provide penetration testing services and a vulnerability assessment of the system. The tests must be undertaken by external independent parties that are not employees of the bank nor associated with it.

              Amended: April 2016
              Amended: October 2013
              Added: October 2011

            • OM-6.2.2

              The penetration testing referred to in Paragraph OM-6.2.1, must be conducted each year in June and December.

              Amended: July 2013
              Amended: April 2012
              Added: October 2011

            • OM-6.2.3

              The vulnerability assessment report, along with the steps taken to mitigate the risks must be maintained by the bank for a 5-year period from the date of testing and must be provided to the CBB within two months following the end of the month where the testing took place, i.e. for the June test, the report must be submitted at the latest by 31st August and for the December test, by 28th February (see Section BR-4A.2).

              Amended: July 2013
              Added: October 2011

          • OM-6.3 OM-6.3 ATM Security Measures: Hardware/Software for Retail Banks

            • Implementation

              • OM-6.3.1

                The requirements in this Section must be complied with in full by 30th April 2017, or as specified otherwise. Failure to comply with these requirements will trigger a supervisory response, which may include formal enforcement measures, as set out in Module EN (Enforcement).

                Amended: July 2017
                Added: April 2016

            • Europay, MasterCard and Visa (EMV) Compliance

              • OM-6.3.1A

                All cards (debit, credit, charge, prepaid, etc.) issued by licensees in the Kingdom of Bahrain must be EMV compliant. Moreover, all ATMs, CDMs, POS, etc. must be EMV compliant for accepting cards issued in the Kingdom of Bahrain. In this context, EMV compliant means using chip and online PIN authentication. However, contactless card payment transactions, where no PIN verification is required, are permitted for small amounts i.e. up to BD 20 per transaction, provided that Islamic bank licensees bear full responsibility in case of fraud occurrence.

                Added: April 2018

            • Provision of Cash Withdrawal and Payment Services through Various Channels

              • OM-6.3.1B

                Islamic bank licensees are allowed to provide cash withdrawal and payment services using various channels, including but not limited to, contactless, cardless, QR code, e-wallets, biometrics (iris recognition, facial recognition, fingerprint, voiceprint, etc.), subject to enrolling customers through registration process wherein customers' acceptance of products/services terms and conditions are documented and customers are properly authenticated.

                Added: April 2018

            • Near Field Communication ("NFC")

              • OM-6.3.1C

                Islamic retail bank licensees must ensure that all currently installed ATMs support contactless payment using Near Field Communication "NFC" technology. The changes necessary to the software/hardware to meet this requirement must be completed no later than 1st April 2020.

                Added: October 2019

              • OM-6.3.1D

                Islamic retail bank licensees must ensure, with effect from 18th August 2019, that all new installations of ATM machines support contactless payment using Near Filed Communication "NFC" technology.

                Added: October 2019

              • OM-6.3.1E

                Islamic retail bank licensees must ensure, with effect from 1st October 2019, that any new POS terminals or devices support contactless payment using Near Filed Communication "NFC" technology.

                Added: October 2019

              • OM-6.3.1F

                Islamic retail bank licensees must ensure, that any payment card issued or reissued (credit, debit, prepaid and charge cards) on or after 12th October 2019 supports contactless payment using Near Field Communications "NFC" technology.

                Added: October 2019

            • Geolocation Limitations

              • OM-6.3.2

                All Islamic bank licensees issuing debit, prepaid and/or credit cards must ensure that all Bahrain issued cards enable each customer to maintain a list of 'approved' countries for card ATM/Point of Sale (POS) transactions. Customers must be allowed to determine those countries in which their card must not be accepted as well as countries or merchant categories in which a card transaction would require a further level of authorisation, (for example, 2-way SMS).

                Amended: April 2018
                Added: April 2016

            • Prohibition of Double Swiping

              • OM-6.3.2A

                All card acquirer licensees must communicate to the concerned merchants that the CBB has directed to stop the practice of double swiping of payment cards by some merchants at the merchant's POS terminals/ECR, with effect from 15th June, 2017.

                Added: July 2017

              • OM-6.3.2B

                For the purpose of Paragraph OM-6.3.2A, card acquirer licensee means a CBB licensee that enters into a contractual relationship with a merchant and the payment card issuer, under a card payment scheme, for accepting and processing payment card transactions. Card acquirers include three-party payment card network operators, who have outsourced their acquiring services to third party service providers.

                Added: July 2017

              • OM-6.3.2C

                For the purpose of Paragraph OM-6.3.2A, double swiping means swiping of a payment card by a merchant at the POS terminal/ECR for the second time, resulting in capturing and storing of payment cardholder data and sensitive authentication data encoded on the magnetic stripe of a customer's payment card, after the merchant received the required card payment authorisation response.

                Added: July 2017

              • OM-6.3.2D

                All card acquirer licensees must include the following clause into the merchant agreements entered into with all their merchants and bring into force the said clause on or before 15th June, 2017: "Pursuant to the CBB directions and instructions, the merchant shall stop double swiping of a payment card at a merchant's point-of-sale (POS) terminal/electronic cash register (ECR) to capture or store cardholder and sensitive authentication data encoded on the magnetic stripe of a customer's payment card, after the merchant received the required card payment authorisation response. The merchant asserts its full compliance with the obligation contained in this clause and understands that any breach of this clause will expose the merchant to mandatory contractual and/or legal disciplinary actions by the relevant regulator and/or concerned Ministry."

                Added: July 2017

              • OM-6.3.2E

                All card acquirer licensees must:

                (i) Educate the concerned merchants on the regulatory requirement and continue to follow up the progress of the implementation to comply within the period stipulated in Paragraph OM-6.3.2A; and
                (ii) Educate and facilitate, where necessary, any merchant that has a valid business need to have cardholder data or non-sensitive information, to transmit such data/information through an integration option.
                Added: July 2017

            • Integration of Hardware Components

              • OM-6.3.3

                If the Automated Teller Machines (ATM) environment permits access to internal areas where account data is processed and/or stored (e.g., for service or maintenance), these areas must be effectively protected from access by unauthorised persons to mitigate the risk associated with attaching/inserting malicious additional components, especially those which may be designed to capture sensitive data. Banks must encrypt account data or secure access to such data by effective physical barriers such as strong walls, doors, and mechanical locks.

                Added: April 2016

              • OM-6.3.4

                All entry to sensitive areas must be recorded, including the name of the persons accessing the area; the date; and the time of access to and exit from the area. CCTV cameras must be installed, and used to record all activities within the ATM environment.

                Added: April 2016

              • OM-6.3.5

                Banks are required to implement best industry practice in respect of hardware and software development and integration, including but not limited to formal specification, test plans, and documentation. Hardware and software should only be introduced to the environment following a successful programme of testing.

                Added: April 2016

              • OM-6.3.6

                All test plans and the outcomes of these plans must be retained by the bank for a minimum of five years from the date of testing and be available on request to the CBB or their authorised representatives. Examples of instances in which a detailed testing process must be undertaken prior to installation and integration of components include, but are not limited to, secure card readers or EPPs. In all instances the applicable standards relating to Payment Card Industry (PCI), PIN Transaction Security (PTS), and Point of Interaction (POI) requirements must be fully complied with.

                Added: April 2016

              • OM-6.3.7

                Banks must ensure that the integration of Secure Card Readers, (SCRs) and, if applicable, any mechanism protecting the SCRs are properly implemented and fully comply with the guidelines provided by the device vendor. SCRs must be approved by and fully comply with all Payment Card Industry standards at all times.

                Added: April 2016

              • OM-6.3.8

                Banks must ensure that all ATMs, including offsite ATMs, are equipped with mechanisms which prevent skimming attacks. There must be no known or demonstrable way to disable or defeat the above-mentioned mechanisms, or to install an external or internal skimming device.

                Added: April 2016

            • ATM Software

              • OM-6.3.9

                Banks must ensure that their ATM software security measures comply with the following:

                (a) Access to sensitive services is controlled by requiring authentication. Entering or exiting sensitive services must not reveal or otherwise compromise the security of sensitive information;
                (b) ATM software must include controls which are designed to prevent unauthorised modification of the software configuration, including the operating system, drivers, libraries, and individual applications. Software configuration includes the software platform, configuration data, applications loaded to and executed by the platform, and the associated data. The mechanisms must also ensure the integrity of third-party applications, using a controlled process to install such controls;
                (c) Access to all elements of the ATM environment must be strictly controlled to ensure an effective segregation of functions and an effective segregation of responsibilities exists for all personnel; and
                (d) The logging data must be stored in a way that data cannot be changed under any circumstances, and deleted only after authorisation by a member of bank staff who has specific responsibility delegated by the CEO.
                Added: April 2016

              • OM-6.3.10

                ATMs should incorporate dedicated tampering protection capabilities.

                Added: April 2016

            • Device Management/Operation

              • OM-6.3.11

                Banks must ensure that their device management/operation controls comply with the following:

                (a) Software is protected and stored in a manner which precludes unauthorised modification; and
                (b) Loading of software into ATMs is performed by a person who has the requisite knowledge and skills, and who has been nominated and authorised by a senior manager in the bank to undertake these tasks.
                Added: April 2016

            • ATM Application Management

              • OM-6.3.12

                Banks must ensure that their ATM application management complies with the following:

                (a) The display of a cardholder PIN on the ATM display must not be in 'clear' mode;
                (b) Sensitive information must not be present any longer or used more often than strictly necessary. The ATM must automatically clear its internal buffers when either the transaction is completed, or the ATM has timed out whilst awaiting a response from the cardholder or host; and
                (c) Prevent the display or disclosure of cardholder account information on the ATM screen, printed on receipts, or audio transcripts for visually impaired cardholders.
                Added: April 2016

          • OM-6.4 OM-6.4 ATM Security Measures: Physical Security for Retail Banks

            • Implementation

              • OM-6.4.1

                The requirements in this Section must be complied with in full by 31st March 2017. Failure to comply with any of these requirements will trigger a supervisory response, which may include formal enforcement measures, as set out in Module EN (Enforcement).

                Added: April 2016

            • Record Keeping

              • OM-6.4.2

                Banks must record the details of the site risk assessments and retain such records for a period of five years from the date of the ATM installation, or whatever other period required by the Ministry of the Interior or the CBB from time to time, whichever is the longer.

                Added: April 2016

            • Installation of an Off-site ATM in Bahrain

              • OM-6.4.3

                Applications for the installation of off-site ATMs must be sent in writing, and in accordance with the requirements set out in Paragraphs OM-6.4.6 to Paragraphs OM-6.4.12 to the Supervisory Point of Contact (SPoC), at the CBB.

                Amended: October 2016
                Added: April 2016

              • OM-6.4.4

                The purpose of the content of Paragraphs OM-6.4.5 to OM-6.4.12 is to set out the minimum criteria to be followed by banks for the installation and usage of off-site ATMs in the Kingdom of Bahrain.

                Amended: October 2016
                Added: April 2016

            • General Criteria

              • OM-6.4.5

                The ownership and operations of any off-site ATMs is subject to the prior written approval of the CBB and must comply with the Rules outlined in Paragraph OM-6.4.6.

                Amended: October 2016
                Added: April 2016

              • OM-6.4.6

                Off-site ATMs must be owned either individually or jointly by banks or ancillary service providers which are members of the BENEFIT Switch. Each relevant owning bank must already have linked its ATM capability to the BENEFIT Switch prior to requesting the CBB's permission to install an off-site ATM and, furthermore, must conform to the general standards set by the Benefit Company from time to time or by the ancillary service provider licensed by the CBB.

                Amended: October 2017
                Added: April 2016

              • OM-6.4.7

                Banks must bear full legal responsibility for their respective off-site ATMs, as well as all costs associated with such ATMs (including, but not limited to, cash replenishment, installation, security etc.).

                Added: April 2016

              • OM-6.4.8

                Banks wishing to install an off-site ATM must submit an application (in writing) for the CBB's approval (see Paragraph BR-5.3.3). A copy of the written permission (for installation of that off-site ATM) of the legal owner of the proposed location must be provided to the CBB, as well as a copy of the written permission of any other relevant authorities in this context (e.g. the Ministry of Interior).

                Added: April 2016

              • OM-6.4.9

                The CBB will consider applications on a 'first come, first served' basis for a particular location. If more than one application is received to install an off-site ATM in the same location, the number of such applications which are approved will depend upon whether the location appears to the CBB to be capable of sustaining multiple off-site ATMs subject to the exact details of each individual application regarding security being acceptable to the CBB.

                Added: April 2016

              • OM-6.4.10

                Each application will be assessed on its individual merits, and at the CBB's sole discretion, taking into account factors which the CBB considers relevant including, but not limited to:

                (a) The suitability of the location in question;
                (b) The level of overall activities of the applicant in the market as well as the size and make-up of its customer base; and
                (c) The type and range of facilities which the applicant proposes offering through the off-site ATM at the location in question.
                Added: April 2016

              • OM-6.4.11

                In addition to the information required by the CBB under Paragraph OM-6.4.8, the CBB may require further information/clarification to be provided to it before it takes a decision regarding the application. The CBB's decision in this regard will be notified to each relevant applicant bank in writing.

                Added: April 2016

              • OM-6.4.12

                A bank must request in writing the CBB's permission to close any of its off-site ATMs.

                Added: April 2016

              • OM-6.4.13

                The CBB may, at its sole discretion, require an off-site ATM to be closed and decommissioned at any time.

                Added: April 2016

            • ATM Alarms

              • OM-6.4.14

                In addition to alarming the premises, banks must alarm the ATM itself, in a way which activates audibly when the ATM is under attack. The system must be monitored by remote signaling to an appropriate local police response designated by the Ministry of the Interior. Banks must consider the following:

                (a) The design of the system must ensure that the ATM has a panic alarm installed;
                (b) The design of the system must give an immediate, system controlled warning of an attack on the ATM, and all ATMs must be fitted with fully operational fraud detection and inhibiting devices;
                (c) A maintenance record must be kept for the alarm detection system and routine maintenance must be conducted in accordance with at least the manufacturer's recommendations. The minimum must be two planned maintenance visits and tests every 6 months; and
                (d) The alarm system must be monitored from an ARC 24 hours daily. It must automatically generate an alarm signal if the telephone/internet line fails or is cut.
                Added: April 2016

            • Closed-circuit Television (CCTV)

              • OM-6.4.15

                Banks must ensure that ATMs are equipped with Closed-circuit television (CCTV). The location of camera installation must be carefully chosen to ensure that images of the ATM are recorded, however keypad entry are not recorded. The camera must support the detection of the attachment of alien devices to the fascia (external body) and possess the ability to generate an alarm for remote monitoring if the camera is blocked or otherwise disabled.

                Added: April 2016

              • OM-6.4.15A

                For the purposes of Paragraph OM-6.4.15, the location of camera installation in drive-thru ATMs must be carefully chosen to ensure that the images of the vehicle number plates are clearly captured at both daytime and nighttime.

                Added: October 2018

              • OM-6.4.16

                As a minimum, CCTV activity must be recorded (preferably in digital format) and, where risk dictates, remotely monitored by a third party ARC.

                Added: April 2016

              • OM-6.4.17

                When an ATM is located in an area where a public CCTV system operates, the deployer or agent must liaise with the agency responsible for the CCTV system to include the ATM site in any preset automatic camera settings or to request regular sweeps of the site. The CCTV system must not be able to view the ATM keypad thereby preventing observation of PIN entry.

                Added: April 2016

              • OM-6.4.18

                Banks must ensure that the specifications of CCTV cameras meet the following minimum requirements:

                (a) Analogue Cameras:

                Resolution — Minimum 700 TVL

                Lens — Vari-focal lenses from 2.8 to 12mm

                Sensitivity — Minimum 0.5 Luminance (Lux) without Infrared (IR), 0 Lux with IR

                IR — At least 10 to 20 meters (Camera that detects motion)
                (b) IP Cameras:

                Resolution — 2 MP — 1080 p

                Lens — Vari-focal lenses from 2.8 to 12mm

                Sensitivity — Minimum 0.5 Lux without IR, 0 Lux with IR

                IR — At least 10 to 20 meters
                Added: April 2016

              • OM-6.4.19

                Banks must ensure that the following network requirements are met for connecting the Banks CCTV system to MOI Control room:

                (a) The minimum speed of the upload should be 2 Mbps for each node (ATM's and branches);
                (b) Speed/storage limit threshold must not be applied in a manner which permits a network delay; and
                (c) Access must be restricted to authorised personnel.
                Added: April 2016

            • ATM Lighting

              • OM-6.4.20

                Banks must ensure that adequate and effective lighting is operational at all times within the ATM environment. The standard of the proposed lighting must be agreed with the Ministry of the Interior and other relevant authorities, and tested at least once every three months to ensure that the lighting is in good working order.

                Added: April 2016

              • OM-6.4.20A

                Banks must ensure that adequate and effective lighting is operational within drive-thru ATMs to enable the CCTV cameras to capture the vehicle number plates at both daytime and nighttime.

                Added: October 2018

              • OM-6.4.21

                This Paragraph was deleted in July 2017

                Deleted: July 2017
                Added: April 2016

            • [Deleted]

              Deleted: April 2017

              • OM-6.4.22

                This Paragraph was deleted in April 2017.

                Deleted: April 2017
                Added: April 2016

              • OM-6.4.23

                This Paragraph was deleted in April 2017.

                Deleted: April 2017
                Added: April 2016

            • Fire Alarm

              • OM-6.4.24

                Banks must ensure that effective fire alarm and fire defense measures, such as a sprinkler, are installed and functioning for all ATMs. These alarms must be linked to the "General Directorate of Civil Defense" in Bahrain.

                Added: April 2016

            • Cash Replenishment

              • OM-6.4.25

                All cash movements between branches, to and from the CBB and to off-site ATMs must be performed by specialised service providers.

                Added: April 2016

            • ATM Service/ Maintenance

              • OM-6.4.26

                Banks must maintain a list of all maintenance, replenishment and inspection visits by staff or other authorised parties.

                Added: April 2016

          • OM-6.5 OM-6.5 ATM Security Measures: Additional Measures for Retail Banks

            • OM-6.5.1

              Banks may ensure the adequacy and effectiveness of external security measures throughout the ATM environment through the additional security measures outlined in this Section.

              Added: April 2016

            • Sounders and Flashing Warning Lights

              • OM-6.5.2

                Banks should ensure that street-based ATMs are installed with an audible alarm sounder, and a visual flashing warning light, to indicate when the ATM is under attack.

                Added: April 2016

            • Armored Anti-Bandit Shroud

              • OM-6.5.3

                Banks should obtain and act upon advice provided by the Ministry of the Interior in respect of protecting the ATM installation with an armored anti-bandit shroud which is placed around the ATM to prevent any bombing or other physical attempts to damage the ATM.

                Added: April 2016

          • OM-6.6 OM-6.6 Cyber Security Measures

            • OM-6.6.1

              Clear ownership and management accountability of the risks associated with cyber attacks and related risk management must be established, which cover not only the IT function but also all relevant business lines. Cyber security must be made part of the licensee IT security policy.

              Added: October 2016

            • OM-6.6.2

              The Board and senior management must ensure that the cyber security controls are periodically evaluated for adequacy, taking into account emerging cyber threats and establishing a credible benchmark of cyber security controls endorsed by the Board and senior management. Should material gaps be identified, the Board and senior management must ensure that corrective action is taken immediately.

              Added: October 2016

            • OM-6.6.3

              Licensees must report to the CBB within one week any instances of cyber attacks, whether internal or external, that compromise customer information or disrupt critical services that affect their operations. When reporting such instances, licensees must provide the root cause analysis of the cyber attack and measures taken by them to ensure that similar events do not recur.

              Added: October 2016

        • OM-7 OM-7 Books and Records

          • OM-7.1 OM-7.1 General Requirements

            • OM-7.1.1

              The requirements in Section OM-7.1 apply to Bahraini Islamic bank licensees, with respect to the business activities of the whole bank (whether booked in Bahrain or in a foreign branch). The requirements in Section OM-7.1 also apply to overseas Islamic bank licensees, but only with respect to the business booked in their branch in Bahrain.

              October 07

            • OM-7.1.2

              With reference to Articles 59 and 60 of the CBB Law, all Islamic bank licensees must maintain books and records (whether in electronic or hard copy form) sufficient to produce financial statements and show a complete record of the business undertaken by a licensee. These records must be retained for at least 10 years according to Article 60 of the CBB Law.

              Amended: January 2011
              October 2007

            • OM-7.1.3

              OM-7.1.2 includes accounts, books, files and other records (e.g. trial balance, general ledger, nostro/vostro statements, reconciliations and list of counterparties). It also includes records that substantiate the value of the assets, liabilities and off-balance sheet activities of the licensee (e.g. client activity files and valuation documentation).

              October 07

            • OM-7.1.4

              [This Paragraph was deleted in April 2011]

            • OM-7.1.5

              Unless otherwise agreed with the CBB in writing, records must be kept in either English or Arabic; or else accompanied by a certified English or Arabic translation. Records must be kept current. The records must be sufficient to allow an audit of the licensee's business or an on-site examination of the licensee by the CBB.

              October 07

            • OM-7.1.6

              If a licensee wishes to retain certain records in a language other than English or Arabic without translation, the licensee should write to the CBB, explaining which types of records it wishes to keep in a foreign language, and why systematically translating these may be unreasonable. Generally, only loan contracts or similar original transaction documents may be kept without translation. Where exemptions are granted by CBB, the licensee is nonetheless asked to confirm that it will make available certified translations of such documents, if requested by CBB for an inspection or other supervisory purpose.

              October 07

            • OM-7.1.7

              Translations produced in compliance with Rule OM-7.1.5 may be undertaken in-house, by an employee or contractor of the licensee, provided they are certified by an appropriate officer of the licensee.

              Amended: October 2011
              October 2007

            • OM-7.1.8

              Records must be accessible at any time from within the Kingdom of Bahrain, or as otherwise agreed with the CBB in writing.

              October 07

            • OM-7.1.9

              Where older records have been archived, or in the case of records relating to overseas branches of Bahraini Islamic banks, the CBB may accept that records be accessible within a reasonably short time frame (e.g. within 5 business days), instead of immediately. The CBB may also agree similar arrangements for overseas Islamic banks, as well as Bahraini Islamic banks, where elements of record retention and management have been centralised in another group company, whether inside or outside of Bahrain.

              October 07

            • OM-7.1.10

              All original account opening documentation, due diligence and transaction documentation should normally be kept in Bahrain, if the business is booked in Bahrain. However, where a licensee books a transaction in Bahrain, but the transaction documentation is handled entirely by another (overseas) branch or affiliate of the licensee, the relevant transaction documentation may be held in the foreign office, provided electronic or hard copies are retained in Bahrain; the foreign office is located in a FATF member state; and the foreign office undertakes to provide the original documents should they be required.

              October 07

            • OM-7.1.11

              Licensees should also note that to perform effective consolidated supervision of a group (or sub-group), the CBB needs to have access to financial information from foreign operations of a licensee, in order to gain a full picture of the financial condition of the group: see Module BR (CBB Reporting), regarding the submission of consolidated financial data. If a licensee is not able to provide to the CBB full financial information on the activities of its branches and subsidiaries, it should notify the CBB of the fact, to agree alternative arrangements: these may include requiring the group to restructure or limit its operations in the jurisdiction concerned.

              October 07

            • OM-7.1.12

              In the case of Bahraini Islamic banks with branch operations overseas, where local record-keeping requirements are different, the higher of the local requirements or those contained in this Chapter must be followed.

              October 07

          • OM-7.2 OM-7.2 Transaction Records

            • OM-7.2.1

              Islamic bank licensees must keep completed transaction records for as long as they are relevant for the purposes for which they were made (with a minimum period in all cases of five years from the date when the transaction was completed — see Module Section FC-7.1). Records of completed transactions must be kept whether in hard copy or electronic format, for at least five years from the date of the transaction as per the Legislative Decree No. (28) of 2002 with respect to Electronic Transactions "The Electronic Transaction Law" and its amendments.

              Amended: July 2017
              October 07

            • OM-7.2.2

              [This paragraph has been deleted in July 2017].

              Deleted: July 2017
              October 07

            • OM-7.2.3

              Rule OM-7.2.1 applies to all transactions entered into by a Bahraini Islamic bank licensee, whether booked in Bahrain or in an overseas branch. With respect to overseas Islamic bank licensees, it applies only to transactions booked in the Bahrain branch.

              October 07

            • OM-7.2.4

              In the case of overseas Islamic bank licensees, Rule OM-7.2.1 therefore only applies to business booked in the Bahrain branch, not in the rest of the company.

              October 07

          • OM-7.3 OM-7.3 Other Records

            • Corporate Records

              • OM-7.3.1

                Islamic bank licensees must maintain the following records in original form or in hard copy at their premises in Bahrain:

                (a) Internal policies, procedures and operating manuals;
                (b) Corporate records, including minutes of shareholders', Directors' and management meetings;
                (c) Correspondence with the CBB and records relevant to monitoring compliance with CBB requirements;
                (d) Reports prepared by the Islamic bank licensee's internal and external auditors; and
                (e) Employee training manuals and records.
                October 07

              • OM-7.3.2

                In the case of Bahrain Islamic bank licensees, these requirements apply to the licensee as a whole, including any overseas branches. In the case of overseas Islamic bank licensees, all the requirements of Chapter OM-7 are limited to the business booked in their branch in Bahrain and the records of that branch (see Rule OM-7.1.1). They are thus not required to hold copies of shareholders' and Directors' meetings, except where relevant to the branch's operations.

                October 07

            • Customer Records

              • OM-7.3.3

                Record-keeping requirements with respect to customer records, including customer identification and due diligence records, are contained in Module FC (Financial Crime). These requirements address specific requirements under the Amiri Decree Law No. 4 of 2001, the standards promulgated by the Financial Action Task Force, as well as to the best practice requirements of the Basel Committee Core Principles methodology, and its paper on "Customer due diligence for banks".

                October 07

            • Promotional Schemes

              • OM-7.3.4

                Islamic bank licensees must maintain all material related to promotional schemes as outlined in Section BC-1.1 for a minimum period of 5 years.

                Added: April 2011

        • OM-8 OM-8 Qualitative Aspects

          • OM-8.1 OM-8.1 Introduction

            • OM-8.1.1

              The contents of this Chapter apply in full to all Bahraini Islamic bank licensees both on a consolidated basis and on a solo basis.

              Added: October 2012

            • OM-8.1.1A

              This Chapter may be used as guidance for overseas Islamic bank licensees.

              Added: October 2012

            • OM-8.1.1.B

              Section CA-6.2 of the Capital Adequacy Module allows banks to use either the basic indicator approach or standardised approach to compute capital charge for operational risk. This chapter sets out the qualitative aspect of these two approaches.

              Added: October 2012

            • OM-8.1.2

              Operational risk is defined as the risk of loss resulting from inadequate or failed internal processes, people and systems or from external events which includes but is not limited to, legal risk1 and Shariah compliance risk. This definition excludes strategic and reputational risk.

              Added: October 2012

              1 Legal risk includes, but is not limited to, exposure to fines, penalties, or punitive damages resulting from supervisory actions, as well as private settlements.

            • OM-8.1.3

              Operational risk is inherent in all banking products, activities, processes and systems, and the effective management of operational risk must be a fundamental element of a bank's risk management programme. Sound operational risk governance relies upon three lines of defence:

              (a) Business line management;
              (b) An independent operational risk management function; and
              (c) Independent review functions.
              Added: October 2012

            • OM-8.1.4

              In the context of this Chapter, 'independent' and 'independent review' have the following meanings. The review functions must be independent of the risk generating business lines or the process or system under review. An independent review would include the following components:

              (a) Verification of the Framework is done on a periodic basis and would be typically performed by the bank's internal and/or external audit, but may involve other suitably qualified independent parties from external sources. Verification activities test the effectiveness of the overall Framework, consistent with policies approved by the board of directors, and also test validation processes to ensure that they are independent and implemented in a manner consistent with established bank policies; and
              (b) Validation ensures that the quantification systems used by the bank are sufficiently robust and provide assurance of the integrity of inputs, assumptions, processes and outputs. Specifically the independent validation process should provide enhanced assurance that the risk management methodology results in an operational risk capital charge that credibly reflects the operational risk profile of the bank. In addition to the quantitative aspects of internal validation, the validation of data inputs, methodology and outputs of operational risk models is important to the overall process.
              Added: October 2012

            • OM-8.1.5

              The operational risk management function must be functionally independent of the risk generating business lines and will be responsible for the design, maintenance and ongoing development of the operational risk Framework ("Framework" – see also Paragraphs OM-8.2.12 and OM-8.2.13 for a description of the "Framework") within the bank.

              Added: October 2012

            • OM-8.1.6

              For the purpose of Paragraph OM-8.1.5, "functionally independent" means that the risk management function cannot report hierarchically and/or functionally to any person or function that is directly responsible for risk generation.

              Added: October 2012

            • OM-8.1.7

              The operational risk management function should include the operational risk measurement and reporting processes, risk committees and responsibility for board reporting. A key function of the operational risk management function is to challenge the business lines' inputs to, and outputs from, the bank's risk management, risk measurement and reporting systems. The operational risk management function should have a sufficient number of personnel skilled in the management of operational risk to effectively address its many responsibilities.

              Added: October 2012

            • OM-8.1.8

              The independent review functions are the audit and compliance functions and the staff occupying these functions must be competent and appropriately trained and not be involved in the development, implementation and operation of the operational risk Framework (for example, internal audit and compliance must not be involved with the setting of risk appetite or risk tolerance, but internal audit should be reviewing the robustness of the process of how these limits are set and why and how they are adjusted in response to changing circumstances). Internal Audit should independently verify that the Framework has been implemented as intended and is functioning effectively. Internal audit coverage should include opining on the overall appropriateness and adequacy of the Framework and the associated governance processes across the bank. Internal audit should not simply be testing for compliance with board approved policies and procedures, but should be evaluating whether the Framework meets organisational needs and supervisory expectations. More details on the Internal Audit Function and the Role of the Audit Committee are to be found in Chapter HC-3.

              Added: October 2012

          • OM-8.2 OM-8.2 Basic Indicator Approach

            • OM-8.2.1

              Banks applying the basic indicator approach for capital adequacy purposes as detailed in Section CA-6.2 of Module CA (Capital Adequacy) are encouraged to comply with the principles set forth in this Section.

              Added: October 2012

            • Fundamental Principles of Operational Risk Management

              • OM-8.2.2

                Principle 1: The board of directors must take the lead in establishing a strong risk management culture. The board of directors and senior management must establish a corporate culture that is guided by strong risk management and that supports and provides appropriate standards and incentives for professional and responsible behaviour. In this regard, it is the responsibility of the board of directors to ensure that a strong operational risk management culture exists throughout the whole organisation.

                Added: October 2012

              • OM-8.2.3

                Banks with a strong culture of risk management and ethical business practices are less likely to experience potentially damaging operational risk events and are better placed to deal effectively with those events that do occur. The actions of the board and senior management, and policies, processes and systems provide the foundation for a sound risk management culture. More details on the role of the board and senior management are to be found in Chapters HC-1, HC-2, and HC-6 as well as in Chapters CM-1 and OM-2.

                Added: October 2012

              • OM-8.2.4

                The board must establish a code of conduct or an ethics policy that sets clear expectations for integrity and ethical values of the highest standard and identify acceptable business practices and prohibited conflicts (see Section HC-2.2).

                Added: October 2012

              • OM-8.2.5

                Clear expectations and accountabilities ensure that bank staff understand their roles and responsibilities for risk, as well as their authority to act. Strong and consistent senior management support for risk management and ethical behaviour convincingly reinforces codes of conduct and ethics, compensation strategies, and training programmes.

                Added: October 2012

              • OM-8.2.6

                Compensation policies must be aligned to the bank's statement of risk appetite and tolerance, long-term strategic direction, financial goals and overall safety and soundness. They must also appropriately balance risk and reward (see Chapter HC-5 concerning remuneration).

                Added: October 2012

              • OM-8.2.7

                Banks should refer to the Financial Stability Board's Principles for Sound Compensation Practices, published in September 2009 regarding compensation policies.

                Added: October 2012

              • OM-8.2.8

                Senior management should ensure that an appropriate level of operational risk training is available at all levels throughout the organisation. Training that is provided should reflect the seniority, role and responsibilities of the individuals for whom it is intended.

                Added: October 2012

              • OM-8.2.9

                Principle 2: Banks must develop, implement and maintain a Framework that is fully integrated into the bank's overall risk management processes. The Framework for operational risk management chosen by an individual bank will depend on a range of factors, including its nature, size, complexity and risk profile.

                Added: October 2012

              • OM-8.2.10

                The fundamental premise of sound risk management is that the board of directors and bank management understand the nature and complexity of the risks inherent in the portfolio of bank products, services and activities. This is particularly important for operational risk, given that operational risk is inherent in all business products, activities, processes and systems.

                Added: October 2012

              • OM-8.2.11

                A vital means of understanding the nature and complexity of operational risk is to have the components of the Framework fully integrated into the overall risk management processes of the bank. The Framework should be appropriately integrated into the risk management processes across all levels of the organisation including those at the group and business line levels, as well as into new business initiatives. products, activities, processes and systems. In addition, results of the bank's operational risk assessment should be incorporated into the overall bank business strategy development processes.

                Added: October 2012

              • OM-8.2.12

                The Framework must be comprehensively and appropriately documented in board of directors approved policies and must include definitions of operational risk and operational loss. Banks that do not adequately describe and classify operational risk and loss exposure may significantly reduce the effectiveness of their Framework.

                Added: October 2012

              • OM-8.2.13

                Framework documentation must clearly:

                (a) Identify the governance structures used to manage operational risk, including reporting lines and accountabilities;
                (b) Describe the risk assessment tools and how they are used;
                (c) Describe the bank's accepted operational risk appetite and tolerance (see Paragraphs OM-8.2.17 and OM-8.2.18), as well as thresholds or limits for inherent and residual risk, and approved risk mitigation strategies and instruments;
                (d) Describe the bank's approach to establishing and monitoring thresholds or limits for inherent and residual risk exposure;
                (e) Establish risk reporting and Management Information Systems (MIS);
                (f) Provide for a common taxonomy of operational risk terms to ensure consistency of risk identification, exposure rating and risk management objectives;
                (g) Provide for appropriate independent review and assessment of operational risk; and
                (h) Require the policies to be reviewed whenever a material change in the operational risk profile of the bank occurs, and revised as appropriate.
                Added: October 2012

            • Governance: The Board of Directors

              • OM-8.2.14

                Principle 3: The board of directors must establish, approve and periodically review the Framework. The board of directors must oversee senior management to ensure that the policies, processes and systems are implemented effectively at all decision levels.

                Added: October 2012

              • OM-8.2.15

                The board of directors must:

                (a) Establish a management culture, and supporting processes, to understand the nature and scope of the operational risk inherent in the bank's strategies and activities, and develop comprehensive, dynamic oversight and control environments that are fully integrated into or coordinated with the overall Framework for managing all risks across the enterprise;
                (b) Provide senior management with clear guidance and direction regarding the principles underlying the Framework and approve the corresponding policies developed by senior management;
                (c) Regularly review the Framework to ensure that the bank has identified and is managing the operational risk arising from external market changes and other environmental factors, as well as those operational risks associated with new products, activities, processes or systems, including changes in risk profiles and priorities (e.g. changing business volumes);
                (d) Ensure that the bank's Framework is subject to effective independent review by audit or other appropriately trained parties such as the compliance function; and
                (e) Ensure that as best practice evolves, management is availing themselves of these advances.
                Added: October 2012

              • OM-8.2.16

                Strong internal controls are a critical aspect of operational risk management, and the board of directors must establish clear lines of management responsibility and accountability for implementing a strong control environment. The control environment must provide appropriate independence/separation of duties between operational risk management functions, business lines and support functions.

                Added: October 2012

              • OM-8.2.17

                Principle 4: The board of directors must approve and review a risk appetite and tolerance statement for operational risk that articulates the nature, types and levels of operational risk that the bank is willing to assume.

                Added: October 2012

              • OM-8.2.18

                When approving and reviewing the risk appetite and tolerance statement, the board of directors must consider all relevant risks, the bank's level of risk aversion, its current financial condition and the bank's strategic direction. The risk appetite and tolerance statement should encapsulate the various operational risk appetites within a bank and ensure that they are consistent. The board of directors must approve appropriate thresholds or limits for specific operational risks, and an overall operational risk appetite and tolerance.

                Added: October 2012

              • OM-8.2.19

                The board of directors must regularly review the appropriateness of limits and the overall operational risk appetite and tolerance statement. This review must consider changes in the external environment, material increases in business or activity volumes, the quality of the control environment, the effectiveness of risk management or mitigation strategies, loss experience, and the frequency, volume or nature of limit breaches. The board must monitor management adherence to the risk appetite and tolerance statement and provide for timely detection and remediation of breaches.

                Added: October 2012

            • Senior Management

              • OM-8.2.20

                Principle 5: Senior management must develop for approval by the board of directors a clear, effective and robust governance structure with well defined, transparent and consistent lines of responsibility. Senior management is responsible for consistently implementing and maintaining throughout the organisation policies, processes and systems for managing operational risk in all of the bank's material products, activities, processes and systems consistent with the risk appetite and tolerance.

                Added: October 2012

              • OM-8.2.21

                Senior management is responsible for establishing and maintaining robust challenge mechanisms and effective issue-resolution processes. These must include systems to report, track and, when necessary, escalate issues to ensure resolution. Banks must be able to demonstrate that the three lines of defence (as highlighted in Paragraph OM-8.1.3) approach is operating satisfactorily and to explain how the board and senior management ensure that this approach is implemented and operating in an appropriate and acceptable manner.

                Added: October 2012

              • OM-8.2.22

                Senior management must translate the operational risk management Framework established by the board of directors into specific policies, processes and procedures that can be implemented and verified within the different business units. Senior management must clearly assign authority, responsibility and reporting relationships to encourage and maintain this accountability, and ensure that the necessary resources are available to manage operational risk in line with the bank's risk appetite and tolerance statement. Moreover, senior management must ensure that the management oversight process is appropriate for the risks inherent in a business unit's activity.

                Added: October 2012

              • OM-8.2.23

                Senior management must ensure that staff responsible for managing operational risk coordinate and communicate effectively with staff responsible for managing credit, market, and other risks, as well as with those in the bank who are responsible for the procurement of external services such as insurance risk transfer and outsourcing arrangements. Failure to do so could result in significant gaps or overlaps in a bank's overall risk management programme.

                Added: October 2012

              • OM-8.2.24

                A bank's risk management function should be commensurate with the nature, size, complexity and risk profile of the bank's activities. The managers of the corporate operational risk management function should be of sufficient stature within the bank to perform their duties effectively, ideally evidenced by title commensurate with other risk management functions such as credit, market and liquidity risk.

                Added: October 2012

              • OM-8.2.25

                Senior management should ensure that bank activities are conducted by staff with the necessary experience, technical capabilities and access to resources. Staff responsible for monitoring and enforcing compliance with the institution's risk policy should have authority independent from the units they oversee.

                Added: October 2012

              • OM-8.2.26

                A bank's governance structure should be commensurate with the nature, size, complexity and risk profile of its activities. When designing the operational risk governance structure, a bank must take the following into consideration:

                (a) Committee structure;
                (b) Committee composition; and
                (c) Committee operation.
                Added: October 2012

              • OM-8.2.27

                Sound industry practice for larger and more complex organisations with a central group function and separate business units is to utilise a board-created enterprise level risk committee for overseeing all risks, to which a management level operational risk committee reports. Depending on the nature, size and complexity of the bank, the enterprise level risk committee may receive input from operational risk committees by country, business or functional area. Smaller and less complex organisations may utilise a flatter organisational structure that oversees operational risk directly within the board's risk management committee.

                Added: October 2012

              • OM-8.2.28

                Sound industry practice is for operational risk committees (or the risk committee in smaller banks) to include a combination of members with expertise in business activities and financial, as well as independent risk management (refer to Module HC for details on committee membership).

                Added: October 2012

              • OM-8.2.29

                Committee meetings should be held at appropriate frequencies with adequate time and resources to permit productive discussion and decision-making. Records of committee operations should be adequate to permit review and evaluation of committee effectiveness.

                Added: October 2012

            • Risk Management Environment: Identification and Assessment

              • OM-8.2.30

                Principle 6: Senior management must ensure the identification and assessment of the operational risk inherent in all material products, activities, processes and systems to make sure the inherent risks and incentives are well understood.

                Added: October 2012

              • OM-8.2.31

                Risk identification and assessment are fundamental characteristics of an effective operational risk management system. Effective risk identification considers both internal factors (such as the bank's structure, the nature of the bank's activities, the quality of the bank's human resources, organisational changes and employee turnover) and external factors (such as changes in the broader environment and the industry and advances in technology). Sound risk assessment allows the bank to better understand its risk profile and allocate risk management resources and strategies most effectively.

                Added: October 2012

              • OM-8.2.32

                Examples of tools that may be used for identifying and assessing operational risk include:

                (a) Audit Findings: While audit findings primarily focus on control weaknesses and vulnerabilities, they can also provide insight into inherent risk due to internal or external factors;
                (b) Internal Loss Data Collection and Analysis: Internal operational loss data provides meaningful information for assessing a bank's exposure to operational risk and the effectiveness of internal controls. Analysis of loss events can provide insight into the causes of large losses and information on whether control failures are isolated or systematic. Banks may also find it useful to capture and monitor operational risk contributions to credit and market risk related losses in order to obtain a more complete view of their operational risk exposure;
                (c) External Data Collection and Analysis: External data elements consist of gross operational loss amounts, dates, recoveries, and relevant causal information for operational loss events occurring at organisations other than the bank. External loss data can be compared with internal loss data, or used to explore possible weaknesses in the control environment or consider previously unidentified risk exposures;
                (d) Risk Assessments: In a risk assessment, often referred to as a Risk Self Assessment (RSA), a bank assesses the processes underlying its operations against a library of potential threats and vulnerabilities and considers their potential impact. A similar approach, Risk Control Self Assessments (RCSA), typically evaluates inherent risk (the risk before controls are considered), the effectiveness of the control environment, and residual risk (the risk exposure after controls are considered). Scorecards build on RCSAs by weighting residual risks to provide a means of translating the RCSA output into metrics that give a relative ranking of the control environment;
                (e) Business Process Mapping: Business process mappings identify the key steps in business processes, activities and organisational functions. They also identify the key risk points in the overall business process. Process maps can reveal individual risks, risk interdependencies, and areas of control or risk management weakness. They also can help prioritise subsequent management action;
                (f) Risk and Performance Indicators: Risk and performance indicators are risk metrics and/or statistics that provide insight into a bank's risk exposure. Risk indicators, often referred to as Key Risk Indicators (KRIs), are used to monitor the main drivers of exposure associated with key risks. Performance indicators, often referred to as Key Performance Indicators (KPIs), provide insight into the status of operational processes, which may in turn provide insight into operational weaknesses, failures, and potential loss. Risk and performance indicators are often paired with escalation triggers to warn when risk levels approach or exceed thresholds or limits and prompt mitigation plans;
                (g) Scenario Analysis: Scenario analysis is a process of obtaining expert opinion of business line and risk managers to identify potential operational risk events and assess their potential outcome. Scenario analysis is an effective tool to consider potential sources of significant operational risk and the need for additional risk management controls or mitigation solutions. Given the subjectivity of the scenario process, a robust governance Framework is essential to ensure the integrity and consistency of the process;
                (h) Measurement: Larger banks may find it useful to quantify their exposure to operational risk by using the output of the risk assessment tools as inputs into a model that estimates operational risk exposure. The results of the model can be used in an economic capital process and can be allocated to business lines to link risk and return; and
                (i) Comparative Analysis: Comparative analysis consists of comparing the results of the various assessment tools to provide a more comprehensive view of the bank.s operational risk profile. For example, comparison of the frequency and severity of internal data with RCSAs can help the bank determine whether self assessment processes are functioning effectively. Scenario data can be compared to internal and external data to gain a better understanding of the severity of the bank's exposure to potential risk events.
                Added: October 2012

              • OM-8.2.33

                The bank must ensure that the internal pricing and performance measurement mechanisms appropriately take into account operational risk. Where operational risk is not considered, risk-taking incentives might not be appropriately aligned with the risk appetite and tolerance.

                Added: October 2012

              • OM-8.2.34

                Principle 7: Senior management must ensure that there is an approval process for all new products, activities, processes and systems that fully assesses operational risk.

                Added: October 2012

              • OM-8.2.35

                In general, a bank's operational risk exposure is increased when a bank engages in new activities or develops new products; enters unfamiliar markets; implements new business processes or technology systems; and/or engages in businesses that are geographically distant from the head office. Moreover, the level of risk may escalate when new products activities, processes, or systems transition from an introductory level to a level that represents material sources of revenue or business-critical operations. A bank should ensure that its risk management control infrastructure is appropriate at inception and that it keeps pace with the rate of growth of, or changes to, products activities, processes and systems.

                Added: October 2012

              • OM-8.2.36

                A bank must have policies and procedures that address the process for review and approval of new products, activities, processes and systems. The review and approval process should consider:

                (a) Inherent risks in the new product, service, or activity;
                (b) Changes to the bank's operational risk profile and appetite and tolerance, including the risk of existing products or activities;
                (c) The necessary controls, risk management processes, and risk mitigation strategies;
                (d) The residual risk;
                (e) Changes to relevant risk thresholds or limits; and
                (f) The procedures and metrics to measure, monitor, and manage the risk of the new product or activity.
                Added: October 2012

              • OM-8.2.37

                The approval process should also include ensuring that appropriate investment has been made for human resources and technology infrastructure before new products are introduced. The implementation of new products, activities, processes and systems should be monitored in order to identify any material differences to the expected operational risk profile, and to manage any unexpected risks.

                Added: October 2012

            • Monitoring and Reporting

              • OM-8.2.38

                Principle 8: Senior management must implement a process to regularly monitor operational risk profiles and material exposures to losses. Appropriate reporting mechanisms must be in place at the board, senior management, and business line levels that support proactive management of operational risk.

                Added: October 2012

              • OM-8.2.39

                Banks are encouraged to continuously improve the quality of operational risk reporting. A bank should ensure that its reports are comprehensive, accurate, consistent and actionable across business lines and products. Reports should be manageable in scope and volume; effective decision-making is impeded by both excessive amounts and paucity of data.

                Added: October 2012

              • OM-8.2.40

                Reporting should be timely and a bank should be able to produce reports in both normal and stressed market conditions. The frequency of reporting should reflect the risks involved and the pace and nature of changes in the operating environment. The results of these monitoring activities should be included in regular management and board reports, as should assessments of Framework performed by the internal audit and/or risk management and compliance functions. Reports generated by (and/or for) supervisory authorities should also be reported internally to senior management and the board, where appropriate.

                Added: October 2012

              • OM-8.2.41

                Operational risk reports may contain internal financial, operational, and compliance indicators, as well as external market or environmental information about events and conditions that are relevant to decision making. Operational risk reports should include:

                (a) Breaches of the bank's risk appetite and tolerance statement, as well as thresholds or limits;
                (b) Details of recent significant internal operational risk events and losses; and
                (c) Relevant external events and any potential impact on the bank and operational risk capital.
                Added: October 2012

              • OM-8.2.42

                Data capture and risk reporting processes should be analysed periodically with a view to continuously enhancing risk management performance as well as advancing risk management policies, procedures and practices.

                Added: October 2012

            • Control and Mitigation

              • OM-8.2.43

                Principle 9: Banks must have a strong control environment that utilises:

                (a) Policies, processes and systems;
                (b) Appropriate internal controls; and
                (c) Appropriate risk mitigation and/or transfer strategies.
                Added: October 2012

              • OM-8.2.44

                Internal controls must be designed to provide assurance that a bank will:

                (a) Have efficient and effective operations;
                (b) Safeguard its assets;
                (c) Produce reliable financial reports; and
                (d) Comply with applicable laws and regulations.
                Added: October 2012

              • OM-8.2.45

                A sound internal control programme consists of five components that are integral to the risk management process: control environment, risk assessment, control activities, information and communication, and monitoring activities. These components are outlined in more detail in the Basel Committee paper "Framework for Internal Control Systems in Banking Organisations".

                Added: October 2012

              • OM-8.2.46

                Control processes and procedures should be established and banks should have a system in place for ensuring compliance with a documented set of internal policies concerning the risk management system. Principal elements of this could include, for example:

                (a) Top-level reviews of the bank's progress towards the stated objectives;
                (b) Verifying compliance with management controls;
                (c) Review of the treatment and resolution of instances of non-compliance;
                (d) Evaluation of required approvals and authorisations to ensure accountability to an appropriate level of management; and
                (e) Tracking reports for approved exceptions to thresholds or limits, management overrides and other deviations from policy.
                Added: October 2012

              • OM-8.2.47

                An effective internal control environment also requires appropriate segregation of duties. Assignments that establish conflicting duties for individuals, or a team without dual controls or other countermeasures may enable concealment of losses, errors or inappropriate actions. Therefore, areas of potential conflicts of interest should be identified, minimised, and subject to careful independent monitoring and review.

                Added: October 2012

              • OM-8.2.48

                In addition to segregation of duties and dual controls, banks should ensure that other traditional internal controls are in place as appropriate to address operational risk. Examples of these controls include:

                (a) Clearly established authorities and/or processes for approval;
                (b) Close monitoring of adherence to assigned risk limits or thresholds;
                (c) Safeguards for access to, and use of, bank assets and records;
                (d) Appropriate staffing level and training to maintain expertise;
                (e) Ongoing processes to identify business lines or products where returns appear to be out of line with reasonable expectations;
                (f) Regular verification and reconciliation of transactions and accounts; and
                (g) A vacation policy that provides for officers and employees being absent from their duties for a period of not less than two consecutive weeks.
                Added: October 2012

              • OM-8.2.49

                Effective use and sound implementation of technology can contribute to the control environment. For example, automated processes are less prone to error than manual processes. However, automated processes introduce risks that must be addressed through sound technology governance and infrastructure risk management programmes.

                Added: October 2012

              • OM-8.2.50

                The use of technology related products, activities, processes and delivery channels exposes a bank to strategic, operational, and reputational risks and the possibility of material financial loss. Consequently, a bank should have an integrated approach to identifying, measuring, monitoring and managing technology risks. Sound technology risk management uses the same precepts as operational risk management and includes:

                (a) Governance and oversight controls that ensure technology, including outsourcing arrangements, is aligned with and supportive of the bank's business objectives;
                (b) Policies and procedures that facilitate identification and assessment of risk;
                (c) Establishment of a risk appetite and tolerance statement as well as performance expectations to assist in controlling and managing risk;
                (d) Implementation of an effective control environment and the use of risk transfer strategies that mitigate risk; and
                (e) Monitoring processes that test for compliance with policy thresholds or limits.
                Added: October 2012

              • OM-8.2.51

                Management should ensure the bank has a sound technology infrastructure that:

                (a) Meets current and long-term business requirements by providing sufficient capacity for normal activity levels as well as peaks during periods of market stress;
                (b) Ensures data and system integrity, security, and availability; and
                (c) Supports integrated and comprehensive risk management.
                Added: October 2012

              • OM-8.2.52

                Mergers and acquisitions resulting in fragmented and disconnected infrastructure, cost-cutting measures or inadequate investment can undermine a bank's ability to aggregate and analyse information across risk dimensions or the consolidated enterprise, manage and report risk on a business line or legal entity basis, or oversee and manage risk in periods of high growth. Management should make appropriate capital investment or otherwise provide for a robust infrastructure at all times, particularly before mergers are consummated, high growth strategies are initiated, or new products are introduced.

                Added: October 2012

              • OM-8.2.53

                In those circumstances where internal controls do not adequately address risk and exiting the risk is not a reasonable option, management can complement controls by seeking to transfer the risk to another party such as through insurance. The board of directors should determine the maximum loss exposure the bank is willing and has the financial capacity to assume, and should perform an annual review of the bank's risk and insurance management programme.

                Added: October 2012

              • OM-8.2.54

                Because risk transfer is an imperfect substitute for sound controls and risk management programmes, banks should view risk transfer tools as complementary to, rather than a replacement for, thorough internal operational risk control. Having mechanisms in place to quickly identify, recognise and rectify distinct operational risk errors can greatly reduce exposures. Careful consideration also needs to be given to the extent to which risk mitigation tools such as insurance truly reduce risk, transfer the risk to another business sector or area, or create a new risk (e.g. counterparty risk).

                Added: October 2012

            • Role of Disclosure

              • OM-8.2.55

                Principle 10: A bank's public disclosures must allow stakeholders to assess its approach to operational risk management.

                Added: October 2012

              • OM-8.2.56

                A bank's public disclosure of relevant operational risk management information can lead to transparency and the development of better industry practice through market discipline. The amount and type of disclosure should be commensurate with the size, risk profile and complexity of a bank's operations, and evolving industry practice. See also Chapter HC-8 and Chapter PD-1 on disclosure requirements.

                Added: October 2012

              • OM-8.2.57

                A bank should disclose its operational risk management Framework in a manner that will allow stakeholders to determine whether the bank identifies, assesses, monitors and controls/mitigates operational risk effectively.

                Added: October 2012

              • OM-8.2.58

                A bank's disclosures should be consistent with how senior management and the board of directors assess and manage the operational risk of the bank.

                Added: October 2012

              • OM-8.2.59

                A bank must have a formal disclosure policy approved by the board of directors that addresses the bank's approach for determining what operational risk disclosures it will make and the internal controls over the disclosure process. In addition, banks must implement a process for assessing the appropriateness of their disclosures, including the verification and frequency of them.

                Added: October 2012

          • OM-8.3 OM-8.3 Standardised Approach

            • OM-8.3.1

              Banks applying standardised approach for capital adequacy purposes as detailed in section CA-6.2 of Capital Adequacy Module, must satisfy the principles set out in section OM-8.2 and in this Section. In order to qualify for use of the Standardised Approach, a bank must satisfy the CBB that, at a minimum:

              (a) Its board of directors and senior management, as appropriate, are actively involved in the oversight of the operational risk management framework (see principles 1–3);
              (b) It has an operational risk management system that is conceptually sound and is implemented with integrity (see principles 4–7); and
              (c) It has sufficient resources in the use of the approach in the major business lines as well as the control and audit areas.
              Amended: October 2012
              Added: April 08

            • OM-8.3.2

              The CBB will have the right to insist on a period of initial monitoring of a bank’s Standardised Approach before it is used for regulatory capital purposes.

              Added: April 08

            • OM-8.3.3

              A bank must develop specific policies and have documented criteria for mapping gross income for current business lines and activities into the standardised framework. The criteria must be reviewed and adjusted for new or changing business activities as appropriate. Further guidance on business line mapping is set out in paragraph CA-6.2.8 of the Capital Adequacy Module.

              Added: April 08

            • OM-8.3.4

              A bank using the standardised approach must meet the following additional criteria:

              (a) The bank must have an operational risk management system with clear responsibilities assigned to an operational risk management function. The operational risk management function is responsible for developing strategies to identify, assess, monitor and control/mitigate operational risk; for codifying bank-level policies and procedures concerning operational risk management and controls; for the design and implementation of the bank's operational risk assessment methodology; and for the design and implementation of a risk-reporting system for operational risk;
              (b) As part of the bank's internal operational risk assessment system, the bank must systematically track relevant operational risk data including material losses by business line. Its operational risk assessment system must be closely integrated into the risk management processes of the bank. Its output must be an integral part of the process of monitoring and controlling the banks operational risk profile. For instance, this information must play a prominent role in risk reporting, management reporting, and risk analysis. The bank must have techniques for creating incentives to improve the management of operational risk throughout the bank;
              (c) There must be regular reporting of operational risk exposures, including material operational losses, to business unit management, senior management, and to the board of directors. The bank must have procedures for taking appropriate action according to the information within the management reports;
              (d) [This subparagraph was deleted in October 2012];
              (e) [This subparagraph was deleted in October 2012]; and
              (f) The bank's operational risk assessment system (including the internal validation processes) must be subject to regular review by external auditors and /or the CBB.
              Amended: October 2012
              Added: April 08

        • Appendix OM-1

          Set out below are examples of Shariah requirements that are to be complied with by the banks in respect of the financing contracts. The list is for guidance purposes and not conclusive and may vary according to the views of the various Shariah Supervisory Board (SSB):

          (a) Murabahah and Ijarah contracts
          •    The asset is in existence at the time of sale or lease or, in case of Ijarah, the lease contract should be preceded by acquisition of the usufruct of the asset except if the asset was agreed upon based on a general specification.
          •    The asset is legally owned by the bank when it is offered for sale.
          •    The asset is intended to be used by the buyer/ lessee for activities or businesses permissible by Shariah; if the asset is leased back to its owner in the first lease period, it should not lead to contract of ‘inah, by varying the rent or the duration.
          •    There is no late payment, penalty fee or increase in price in exchange for extending or rescheduling the date of payment of accounts receivable or lease receivable, irrespective of whether the debtor is solvent or insolvent.
          (b) Salam and Istisna’ contracts
          •    A sale and purchase contract cannot be inter-dependent and inter-conditional on each other, such as Salam and Parallel Salam; Istisna’ and Parallel Istisna’.
          •    It is not allowed to stipulate a penalty clause in respect of delay in delivery of a commodity that is purchased under Salam contract, however it is allowed under Istisna’ or Parallel Istisna’.
          •    The subject-matter of an Istisna’ contract may not physically exist upon entering into the contract.
          (c) Musharakah and Mudarabah contracts
          •    The capital of the bank is to be invested in Shariah compliant investments or business activities.
          •    A partner in Musharakah cannot guarantee the capital of another partner or a Midrib guarantees the capital of the Mudarabah.
          •    The purchase price of other partner’s share in a Musharakah with a binding promise to purchase can only be set as per the market value or as per the agreement at the date of buying. It is not permissible, however, to stipulate that the share be acquired at its face value.
          Added: April 08

      • OM OM Operational Risk Management

        • OM-A OM-A Introduction

          • OM-A.1 OM-A.1 Purpose

            • OM-A.1.1

              The purpose of this module is to provide rules and guidance to banks operating in Bahrain on establishing parameters and control procedures to monitor and mitigate operational risks.

            • OM-A.1.2

              This module provides support for certain other parts of the Rulebook, mainly:

              (a) Principles of Business; and
              (b) High Level Controls.

            • OM-A.1.3

              The contents of this Module apply to all banks, except where noted in individual chapters.

          • OM-A.2 OM-A.2 Key requirements

            • General procedures

              • OM-A.2.1

                Banks' management must establish written policies and procedures to manage risks arising out of the banks' activities.

            • Outsourcing

              • OM-A.2.2

                A licensee must formally notify the Agency and seek its prior approval before committing to a new material outsourcing arrangement. The notification must:

                (a) be made in writing to the licensee's normal supervisory contact;
                (b) contain sufficient detail to demonstrate that relevant issues raised in section OM-2.4 onward of this chapter have been addressed; and
                (c) be made at least 6 weeks before the licensee intends to commit to the arrangement.

              • OM-A.2.3

                Once an outsourcing arrangement has been implemented, the Agency requires a licensee to continue to monitor the associated risks and the effectiveness of its mitigating controls.

            • Electronic money and electronic banking activities

              • OM-A.2.4

                The Agency specifically urges the licensees to use the 'Fourteen Risk Management Principles and Sound Practices' set out in the Basel's Committee paper stated in section OM-3.1 below, as guidelines, in order to recognise, address and manage risks associated with e-banking in a prudent manner.

            • Business continuity, contingency planning and security

              • OM-A.2.5

                Banks must submit their succession plans for their senior management team to the Agency. Locally incorporated banks must confirm that the plan has been reviewed and endorsed at Board level. This information should be submitted to the Agency by the end of each calendar year.

              • OM-A.2.6

                All full commercial banks must implement security measures which satisfy the Agency's minimum requirements as laid out in Chapter OM-5. These measures include external physical security measures as well as internal measures for staff security and the handling of cash.

          • OM-A.3 OM-A.3 Regulation history

            • OM-A.3.1

              This module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

            • OM-A.3.2

              A list of most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              OM-5 01/04/05 New Securities Measures
              OM-4.2 01/10/05 Succession planning for locally incorporated banks
              OM-5.1 01/10/05 Clarification of security manager role for smaller banks and deletion of requirement for cash trays
              OM-B & OM-1.2 01/04/06 Minor amendments concerning roles of Board and management and editing of OM B.
              OM-5.1.15OM-5.1.24 01/04/06 New security requirements for ATM security arrangements and reporting of security related complaints

            • Evolution of the Module

              • OM-A.3.3

                Prior to the development of this Rulebook, the Agency had issued various circulars representing regulations covering different aspects of operational risk management. These circulars have now been consolidated into this module covering the operational risk management regulation. These circulars and their evolution into this module are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                BC/3/98 21 Feb 1998 OM-B Basel Committee on Banking Supervision Framework for the Evaluation of Internal Control Systems
                BS/9/03 14 Sep 2003 OM-1 Operational Risk Management
                ODG/162/03 21 May 2003 OM-2 Outsourcing
                BC/9/98 16 Jun 1998 OM-3 Electronic Money and Electronic Banking Activities
                BC/6/02 24 Jun 2002 OM-3 Risk Management Principles for Electronic Banking
                ODG/347/03 28 Sep 2003 OM-4.2 Succession Planning

            • Effective date

              • OM-A.3.4

                The contents in this module are effective from the date depicted in the original circulars (see paragraph OM-A.3.3) or from the date shown in the Module Footer.

        • OM-B OM-B General guidance and best practice

          • OM-B.1 OM-B.1 Guidance provided by other international bodies

            • OM-B.1.1

              The papers below provide guidance which promotes best practice and can be generally applied by all licensees to their activities.

            • Basel Committee: Framework for Internal Controls Systems in Banking Organisations

              • OM-B.1.2

                The paper (see www.bis.org/publ/bcbs40.pdf) issued in September 1998 presents the first internationally accepted framework for supervisors to use in evaluating the effectiveness of the internal controls over all on and off balance sheet activities of banking organizations.

              • OM-B.1.3

                The paper describes elements that are essential to a sound internal control system, recommends principles that supervisors can apply in evaluating such systems, and discusses the role of bank supervisors and external auditors in this assessment process.

            • Basel Committee: Sound Practices for the Management and Supervision of Operational Risk

              • OM-B.1.4

                The paper (see www.bis.org/publ/bcbs96.pdf) issued in February 2003 by the Risk Management Group of the Basel Committee on Banking Supervision, outlines a set of principles that provide a framework for the effective management and supervision of operational risk, for use by banks and supervisory authorities when evaluating operational risk management policies and practices.

              • OM-B.1.5

                The paper also recognises that clear strategies and oversight by the Board of Directors and senior management, a strong operational risk culture and internal control culture (including, among other things, clear lines of responsibility and segregation of duties), effective internal reporting, and contingency planning are all crucial elements of an effective operational risk management framework for banks of any size and scope.

            • Basel Committee: Risk Management for Electronic Banking and Electronic Money Activities

              • OM-B.1.6

                The paper (see www.bis.org/publ/bcbs35.pdf) issued in March 1998 provides guidelines for supervisory authorities and banking organisations as they develop methods for identifying, assessing, managing and controlling the risks associated with electronic banking and electronic money.

              • OM-B.1.7

                The paper indicates that, while providing new opportunities for banks, electronic banking and electronic money activities carry risks as well as benefits and it is important that these risks are recognised and managed in a prudent manner.

            • Basel Committee: Risk Management Principles for Electronic Banking

              • OM-B.1.8

                The paper (see www.bis.org/publ/bcbs98.pdf) issued in July 2003 recognizes new risks associated with the increase in distribution of financial services through electronic channels, or e-banking. To emphasize the importance of these risks, the Committee have placed responsibility on the shoulders of the Board and senior management to ensure their institutions have analysed, identified and modified operations to mitigate these risks.

              • OM-B.1.9

                To facilitate these developments, the Committee has identified fourteen Risk Management Principles for Electronic Banking to help banking institutions expand their existing risk oversight policies and processes to cover their e-banking activities.

              • OM-B.1.10

                The Risk Management Principles fall into three broad, and often overlapping, categories of issues that are grouped to provide clarity: Board and Management Oversight; Security Controls; and Legal and Reputational Risk Management.

        • OM-1 OM-1 General procedures

          • OM-1.1 OM-1.1 Overview

            • OM-1.1.1

              Operational risk is defined as the risk of loss resulting from inadequate or failed internal processes, people and systems or from external events. This definition includes legal risk, but excludes strategic and reputational risk.

            • OM-1.1.2

              Operational risk is inherent in all types of banks' activities, and therefore all new products and services should be reviewed for operational risks prior to their implementation. As these risks are important and can result in substantial losses, bank auditors should include operational audits in the scope of all audits.

            • OM-1.1.3

              The importance of operational risk has gained prominence as increasing reliance on sophisticated technology raises concerns of potential losses should unforeseen events cause technological failures. Banks have traditionally focused on controlling and mitigating credit and liquidity risks, however, enhanced levels of automation, while reducing costs and processing times, also pose potential risks. As such any one process or system failure may itself or through a series of systematic failures, could possibly cause financial or other losses to a bank. Therefore, it has become imperative that banks should establish policies and procedures to monitor and control operational risks.

            • OM-1.1.4

              For detailed guidance on the management of operational risk within a bank, refer to the Basel Committee paper 'Sound Practices for the Management and Supervision of Operational Risk' (see www.bis.org/publ/bcbs_wp96.htm).

            • OM-1.1.5

              The Agency will use the paper mentioned in paragraph OM-1.1.4 as a guideline in evaluation of the internal control systems of banks operating in Bahrain. Such evaluations will be made through the Agency's normal supervisory processes (e.g. meetings with management, on-site examinations (Module BR) and the use of reporting accountants (Module AU)).

          • OM-1.2 OM-1.2 Developing an appropriate risk management environment

            • OM-1.2.1

              It should be standard practice for a bank's management to establish policies and procedures to manage risks arising out of its activities. The bank should maintain written policies and procedures that identify the risk tolerances of the Board of Directors and should clearly delineate lines of authority and responsibility for managing the risks. Banks' employees should be fully aware of all policies and procedures that relate to their specific duties.

            • OM-1.2.2

              The bank's strategy should define its tolerance for risk and lay out the Board's understanding of the specific characteristics of operational risk.

            • The Board of Directors

              • OM-1.2.3

                The Board of Directors should be aware of the major aspects of the bank's operational risk as a distinct and controllable risk category.

              • OM-1.2.4

                The responsibilities of the Board of Directors of the bank should include:

                (a) approving the bank's operational risk strategy;
                (b) periodically reviewing the bank's operational risk strategy;
                (c) approving the basic structure of the framework for managing operational risk; and
                (d) ensuring that senior management is carrying out its risk management responsibilities.

            • Senior management

              • OM-1.2.5

                The responsibilities of the Senior management of the bank should include:

                (a) implementing the operational risk strategy approved by the Board of Directors;
                (b) ensuring that the strategy is implemented consistently throughout the whole banking organisation;
                (c) ensuring that all levels of staff understand their responsibilities with respect to operational risk management;
                (d) developing policies, processes and procedures for managing operational risk in all of the bank's products, activities, processes and systems; and
                (e) Developing succession plans for senior staff.

            • Management information system

              • OM-1.2.6

                The management information system of a banking organisation plays a key role in establishing and maintaining an effective operational risk management framework. Two key aspects of management information system are:

                (a) 'Communication flow' serves the purpose of establishing a consistent operational risk management culture across the bank.
                (b) 'Reporting flow' enables:
                1. senior management to monitor the effectiveness of the risk management system for operational risk; and
                2. the Board of Directors to oversee senior management performance.

          • OM-1.3 OM-1.3 Identification, measurement, monitoring, and control

            • OM-1.3.1

              As part of an effective operational risk management system, banks should:

              (a) identify critical processes, resources and loss events;
              (b) establish processes necessary for measuring operational risk;
              (c) monitor operational risk exposures and loss events on an on-going basis; and
              (d) develop policies, processes and procedures to control or mitigate operational risk.

            • OM-1.3.2

              Banks should assess the costs and benefits of alternative risk limitation and control strategies and should adjust their operational risk exposure using appropriate strategies, in light of their overall risk profile.

        • OM-2 OM-2 Outsourcing

          • OM-2.1 OM-2.1 Introduction

            • OM-2.1.1

              This chapter sets out the Agency's approach to outsourcing by licensees. It also sets out various requirements that licensees must address when considering outsourcing an activity or function.

            • OM-2.1.2

              In the context of this chapter, 'outsourcing' means an arrangement whereby a third party performs on behalf of a licensee an activity which was previously undertaken by the licensee itself (or in the case of a new activity, one which commonly would have been performed internally by the licensee). Examples of services that are typically outsourced include data processing, customer call centres and back-office related activities.

            • OM-2.1.3

              Most of the Regulations in this chapter are concerned with situations where the third party provider is outside the licensee's group. Section OM-2.8, however, sets out the Agency's requirements when a service is outsourced to a company within the licensee's group.

            • OM-2.1.4

              The requirements in this chapter only apply to 'material' outsourcing arrangements. These are arrangements that, if they failed in any way, would pose significant risks to the on-going operations of a licensee, its reputation and/or quality of service provided to its customers. For instance, the outsourcing of all or a substantial part of functions such as customer sales and relationship management, settlements and processing, IT and data processing and financial control, would normally be considered 'material'.

            • OM-2.1.5

              Management should carefully consider whether a proposed outsourcing arrangement falls under this chapter's definition of 'material'. If in doubt, management should consult with the Agency.

            • OM-2.1.6

              The requirements in this chapter only apply to outsourcing arrangements entered into after the issuance of the original circular as depicted in paragraph OM-A.3.3. In the case of pre-existing outsourcing agreements, the Agency requires licensees to apply the requirements of this chapter to the fullest extent possible when these arrangements are subsequently renewed.

            • Legal source

              • OM-2.1.7

                The BMA "Standard Conditions and Licensing Criteria" require a licensee's activities to be conducted in an orderly manner and subject to appropriate sound risk management systems, in accordance with the regulations, circulars, notices and directions of the Agency.

          • OM-2.2 OM-2.2 Supervisory approach

            • OM-2.2.1

              The Agency recognises the benefits that can potentially be achieved through outsourcing an activity to a third party provider. They can include reduced costs, enhanced service quality and a reduction in management time spent on non-core activities. However, outsourcing an activity also poses potential risks. These include the ability of the service provider to maintain service quality levels, reduced control over the activity and access to relevant information, and increased legal and client confidentiality risks.

            • OM-2.2.2

              The Agency's approach is to allow licensees the freedom to enter into outsourcing arrangements, providing these have been properly structured and associated risks addressed. The Agency requires prior approval to be sought by licensees wishing to outsource material activities, to give the Agency the opportunity to verify that the proposed arrangements are adequate.

            • OM-2.2.3

              The Agency expects licensees to have undertaken a thorough assessment of a proposal before formally submitting a notification to the Agency. However, the Agency is also willing to discuss ideas informally at an early stage of development, on a 'no-commitment' basis. It especially encourages an early approach when the proposed outsourcing is particularly material or innovative.

            • OM-2.2.4

              Once an outsourcing arrangement has been implemented, the Agency requires a licensee to continue to monitor the associated risks and the effectiveness of its mitigating controls. It will verify this through the course of its normal on-site and off-site supervisory processes, such as on-site examinations and prudential meetings. The Agency also requires access to the outsourced activity, which it may occasionally want to examine itself, through management meetings or on-site examinations.

            • OM-2.2.5

              Fundamental to the Agency's supervisory approach to outsourcing is that the Board and management of the licensee may not abdicate their responsibility for a licensee's business and the way its customers are treated. The Board and management remain ultimately responsible for the effectiveness of systems and controls in outsourced activities.

          • OM-2.3 OM-2.3 Notifications and prior approval

            • OM-2.3.1

              A licensee must formally notify the Agency and seek its prior approval before committing to a new material outsourcing arrangement.

            • OM-2.3.2

              The above notification must:

              (a) be made in writing to the licensee's normal supervisory contact;
              (b) contain sufficient detail to demonstrate that relevant issues raised in section OM-2.4 onward of this chapter have been addressed; and
              (c) be made at least 6 weeks before the licensee intends to commit to the arrangement.

            • OM-2.3.3

              The Agency will review the information provided and provide a definitive response within 6 weeks of receiving the notification. Where further information is requested from the licensee, however, the time taken to provide this further information will not be taken into account. The Agency may also contact home or host supervisors of the licensee or the service provider, to seek their comments — in such cases, the 6-week turnaround is also subject to the speed of their response.

            • OM-2.3.4

              Once an activity has been outsourced, a licensee must immediately inform its normal supervisory contact at the Agency of any material problems encountered with the outsourcing provider. In exceptional cases, the Agency reserves the right to direct a licensee to make alternative arrangements for the outsourced activity.

          • OM-2.4 OM-2.4 Risk assessment

            • OM-2.4.1

              Licensees must undertake a thorough risk assessment of an outsourcing proposal, before formally notifying the Agency and committing itself to an agreement.

            • OM-2.4.2

              The risk assessment should — amongst other things — include an analysis of:

              (a) the business case;
              (b) the suitability of the outsourcing provider; and
              (c) the impact of the outsourcing on the licensee's overall risk profile and its systems and controls framework.

            • OM-2.4.3

              In assessing the suitability of the outsourcing provider, the licensee should amongst other things consider its financial soundness, its technical competence, its commitment to the arrangement, and its reputation.

            • OM-2.4.4

              Once an outsourcing agreement has been entered into, licensees must regularly review the suitability of the outsourcing provider and the on-going impact of the agreement on their risk profile and systems and controls framework. Such reviews should take place at least every year.

            • OM-2.4.5

              A licensee must nominate a member of senior management with day-to-day responsibility for handling the relationship with the outsourcing provider and ensuring that relevant risks are addressed. This person should be notified to the Agency as part of the notification required under section OM-2.3 above.

          • OM-2.5 OM-2.5 Outsourcing agreement

            • OM-2.5.1

              The activities to be outsourced and respective contractual liabilities and obligations of the outsourcing provider and licensee must be clearly specified in an outsourcing agreement. This agreement must — amongst other things — address the following points:

              (a) Control over outsourced activities
              1. The Board and management of licensees are held ultimately responsible by the Agency for the adequacy of systems and controls in outsourced activities. Licensees must therefore ensure that they have adequate mechanisms for monitoring the performance of, and managing the relationship with, the outsourcing provider.
              2. A service level agreement ("SLA") — setting out the standards of service to be provided — must form part of the outsourcing agreement. Where the outsourcing provider interacts directly with a licensee's customers, the SLA should — where relevant — reflect the licensee's own standards regarding customer care.
              3. Mechanisms for the regular monitoring by licensees of performance against SLA and other targets, and for implementing remedies in case of any shortfalls, should also form part of the agreement.
              4. Clear reporting and escalation mechanisms should be specified in the agreement.
              5. Where an outsourcing provider in turn decides to sub-contract to other providers, the original provider must remain contractually liable to the licensee for the quality and level of service agreed, and its obligations to the licensee must remain unchanged.
              (b) Customer data confidentiality
              1. Licensees should ensure that outsourcing agreements comply with all applicable legal requirements regarding customer confidentiality.
              2. Licensees should ensure that the outsourcing provider implements adequate safeguards and procedures. Amongst other things, customer data should be properly segregated from those belonging to other clients the outsourcing provider may have. Outsourcing providers should give suitable undertakings that the company and its staff will comply with all applicable confidentiality rules. Licensees should have contractual rights to take action against the service provider in the event of a breach of confidentiality.
              3. Licensees should assess the impact of using an overseas-based outsourcing provider on their ability to maintain customer data confidentiality, for instance, because of the powers of local authorities to access such data.
              (c) Access to information
              1. Outsourcing agreements must ensure that the licensee's internal and external auditors have timely access to any relevant information they may require to fulfil their responsibilities. Such access must allow them to conduct on-site examinations of the outsourcing provider, if required.
              2. Licensees must also ensure that the Agency has timely access to any relevant information it may reasonably require under the law. Such access must allow the Agency to conduct on-site examinations of the outsourcing provider, if required.
              3. Where the outsourcing provider is based overseas, the outsourcing provider must confirm in the outsourcing agreement that there are no regulatory or legal impediments to either the licensee's internal and external auditors, or the Agency, having the access described above. Should such restrictions subsequently be imposed, the licensee must communicate this fact to the Agency as soon as it becomes aware of the matter.
              4. The outsourcing provider must commit itself, in the outsourcing agreement, to informing the licensee of any developments that may have a material impact on its ability to meet its obligations. These may include, for example, relevant control weaknesses identified by the outsourcing provider's internal or external auditors, and material adverse developments in the financial performance of the outsourcing provider.
              (d) Business continuity
              1. Licensees should ensure that service providers maintain, regularly review and test plans to ensure continuity in the provision of the outsourced service.
              2. Licensees should have an adequate understanding of the outsourcing provider's arrangements, to understand the implications for its own contingency arrangements (see section OM-2.6).
              (e) Termination
              1. Licensees must have the right to terminate the agreement should the outsourcing provider undergo a change of ownership (whether direct or indirect) that poses a potential conflict of interest; becomes insolvent; or goes into liquidation or administration.
              2. Termination under any other circumstances allowed under the agreement must give licensees a sufficient notice period in which they can effect a smooth transfer of the service to another provider or bring it back in-house.
              3. In the event of termination, for whatever reason, the agreement should provide for the return of all customer data — where required by licensees — or their destruction.

          • OM-2.6 OM-2.6 Contingency planning

            • OM-2.6.1

              Licensees should maintain and regularly review contingency plans to enable them to set up alternative arrangements — with minimum disruption to business — should the outsourcing contract be suddenly terminated or the outsourcing provider fails. This may involve the identification of alternative outsourcing providers or the provision of the service in-house. These plans should consider how long the transition would take and what interim arrangements would apply.

            • OM-2.6.2

              See chapter OM-4 for further guidance on business continuity and contingency planning.

          • OM-2.7 OM-2.7 Internal audit outsourcing

            • OM-2.7.1

              Because of the critical importance of an effective internal audit function to a licensee's control framework, all proposals to outsource internal audit operations are to be considered material.

            • OM-2.7.2

              The Agency will generally not permit licensees to outsource their internal audit function to the same firm that acts as their external auditors. However, the Agency may allow short-term outsourcing of internal audit operations to a licensee's external auditor, to meet unexpected urgent or short-term needs (for instance, on account of staff resignation or illness). Any such arrangement will normally be limited to a maximum of one year.

            • OM-2.7.3

              Licensees who have existing outsourcing arrangements in place with their external auditors relating to the provision of internal audit services are required to find suitable alternatives when the existing arrangements terminate or come up for renewal.

            • OM-2.7.4

              In all circumstances, Board and management of licensees must retain responsibility for ensuring that an adequate internal audit programme is implemented, and will be held accountable in this respect by the Agency.

          • OM-2.8 OM-2.8 Intra-group outsourcing

            • OM-2.8.1

              As with outsourcing to non-group companies, the Board and management of licensees are held ultimately responsible by the Agency for the adequacy of systems and controls in activities outsourced to group companies.

            • OM-2.8.2

              However, the degree of formality required — in terms of contractual agreements and control mechanisms — for outsourcing within a licensee's group is likely to be less, because of common management and enhanced knowledge of other group companies.

            • OM-2.8.3

              A licensee must formally notify the Agency at least 6 weeks before committing to a material intra-group outsourcing. The request must be made in writing to the licensee's normal supervisory contact, and must set out a summary of the proposed outsourcing, its rationale, and an analysis of its associated risks and proposed mitigating controls. The Agency will respond to the notification in the same manner and timescale as set in section OM-2.3 above.

            • OM-2.8.4

              The Agency expects, as a minimum, an agreed statement of the standard of service to be provided by the group provider, including a clear statement of responsibilities allocated between the group provider and licensee.

            • OM-2.8.5

              The Agency also expects a licensee's management to have addressed the issues of customer confidentiality, access to information and business continuity covered above (section OM-2.5 and OM-2.4).

        • OM-3 OM-3 Electronic money and electronic banking activities

          • OM-3.1 OM-3.1 Electronic banking

            • OM-3.1.1

              This chapter provides information on the Basel Committee papers that the Agency requires the relevant licensees to use as guidance on electronic banking risk management principles and best practice.

            • OM-3.1.2

              The Agency considers that the provisions of the following papers represent best practice and provide guidelines for recognising, addressing and managing risk associated with this area. Banks should take appropriate steps for the implementation of relevant recommendations set out therein:

              (a) 'Risk Management for Electronic Banking and Electronic Money Activities' issued in March 1998 (see section OM-B.1 for further references to the paper)
              (b) 'Risk Management Principles for Electronic Banking' issued in May 2001 (see section OM-B.1 for further references to the paper)

            • OM-3.1.3

              The Agency specifically urges the licensees to use the 'Fourteen Risk Management Principles and Sound Practices' set out in the Basel's Committee paper stated in paragraph OM-3.1.2(b) above, as guidelines, in order to recognise, address and manage risks associated with e-banking in a prudent manner. The paper stated in paragraph OM-3.1.2(a) above, should be used as guidance for best practice in this area.

        • OM-4 OM-4 Business continuity and contingency planning

          • OM-4.1 OM-4.1 Contingency planning

            • OM-4.1.1

              Although operations risks are difficult to quantify, they can often be evaluated by examining a series of "worst-case" or "what-if" scenarios (stress testing), such as a power loss, a doubling of transaction volume or a mistake found in the pricing software for collateral management. They can also be assessed through periodic reviews of procedures, documentation requirements, data processing systems, contingency plans and other operational practices. Such reviews may help to reduce the likelihood of errors and breakdowns in controls, improve the control of risk and the effectiveness of the limit system and prevent unsound marketing practices and the premature adoption of new products or lines of business.

            • OM-4.1.2

              Such stress tests should not be limited to quantitative exercises that compute potential losses or gains. They should also include more qualitative analyses of the actions management might take under particular scenarios. Contingency plans are important products of such qualitative analyses.

            • OM-4.1.3

              Since the delivery of corporate and customer services represent key strategic and reputational issues, such problems could cause serious difficulties for banks and even jeopardise their ability to conduct key business activities. This requires the bank to establish business continuity and contingency plans outlining operating procedures and lines of communication, both formal and informal, in the event of an unexpected disaster (also see Basel Committee paper 'Framework for Internal Control Systems in Banking Organizations' for further guidance).

            • OM-4.1.4

              For contingency planning relating to outsourcing activities, see section OM-2.6.

          • OM-4.2 OM-4.2 Succession planning

            • OM-4.2.1

              Succession planning is an essential precautionary measure for a bank if its leadership stability — and hence ultimately its financial stability — is to be protected. Succession planning is especially critical for smaller institutions, where management teams tend to be smaller and possibly reliant on a few key individuals.

            • OM-4.2.2

              The Agency will generally monitor banks' succession plans through the work of its on-site examiners. In order to supplement these efforts, the Agency requires its locally incorporated banks to submit to the Agency a description of their succession plans for their senior management team. Locally incorporated banks must summarise who is covered by their succession plan, and confirm that the plan has been reviewed and endorsed at Board level.

            • OM-4.2.3

              The information required in paragraph OM-4.2.2 should be submitted to the Agency by the end of each calendar year. It should be addressed to the Executive Director, Banking Supervision.

        • OM-5 OM-5 Security Measures for Banks

          • OM-5.1 OM-5.1 Physical Security Measures

            • External Measures

              • OM-5.1.1

                The content of this section is applicable to all full commercial banks licensed by the Agency in the Kingdom of Bahrain.

              • OM-5.1.2

                All head offices are required to maintain Ministry of Interior ("MOI") guards on a 24 hours basis. All branches must maintain a 24 hour MOI guard. However, if branches satisfy the criteria mentioned in paragraphs OM-5.1.3 to OM-5.1.20 below, they may maintain MOI guards during opening hours only. Furthermore, banks will be allowed to replace MOI armed guards with private security guards subject to the approval of the MOI. Training and approval of private security guards will be given by the MOI. Head Offices must always have a 24 hour MOI guard.

              • OM-5.1.3

                Public entrances to head offices and branches must be protected by measures such as steel rolling shutters, or the external doors must be of solid steel or a similar solid material of equivalent strength and resistance to fire.

              • OM-5.1.4

                Other external entrances should have steel doors or be protected by steel rolling shutters. Preferably, all other external entrances should have the following security measures:

                Magic eye.
                Locking device (key externally and handle internally).
                Door closing mechanism.
                Contact sensor with alarm for prolonged opening time.
                Combination access control system (e.g. access card and key slot or swipe card and password).

              • OM-5.1.5

                If additional security measures to those mentioned in OM-5.1.3 and OM-5.1.4 such as security cameras, motion detectors or intruder alarms are installed, the requirement for steel external doors or protection by steel rolling shutters is waived.

              • OM-5.1.6

                External windows should have security measures such as anti blast films and movement detectors. For ground floor windows, banks may also wish to add steel grills fastened into the wall.

              • OM-5.1.7

                Branch alarm systems should have the following features:

                (a) PIR motion detectors
                (b) Door sensors
                (c) Anti vibration/movement sensors on vaults
                (d) External siren
                (e) The intrusion detection system must be linked to the bank's (i.e. head office) monitoring unit and also the MOI Central Monitoring Unit.

            • Internal Measures

              • OM-5.1.8

                Teller counters must be screened off from customers by a glass screen of no less than 1 meter in height from the counter work surface or 1.4 meters from the floor.

              • OM-5.1.9

                All areas where cash is handled must be screened off from customers and other staff areas.

              • OM-5.1.10

                Access to teller areas must be restricted to authorised staff only. The design of the teller area should not allow customers to pass through it.

              • OM-5.1.11

                Panic alarm systems for teller staff must be installed. The choice between silent or audible panic alarms is left to individual banks. Kick bars and/or hold up buttons must be spread throughout the teller and customer service areas and the branch manager's office. The panic alarm must be linked to the MOI Central Monitoring Unit.

            • Cash Safety

              • OM-5.1.12

                Cash, precious metals and bearer instruments must be kept in fireproof cabinets/safes. Preferably, these cabinets/safes should be located in strong rooms.

              • OM-5.1.13

                Strong rooms must be made of reinforced solid concrete, or reinforced block work. Doors to strong rooms must be steel and preferably also have a steel shutter fitted. Dual locking devices should be installed in strong room doors. Strong room doors should be located out of the sight of customers.

              • OM-5.1.14

                Strong rooms must not contain any other openings except the entry door and where necessary, an air conditioning outlet. The air conditioning outlet must be protected with a steel grill.

              • OM-5.1.15

                ATMs should not normally be replenished during customer opening hours. Replenishment of off-site ATMs should be performed by specialised service providers, comprising a crew of at least two persons. ATM replenishment staff must carry a mobile phone or communication device in case of emergency.

              • OM-5.1.16

                All cash movements between branches, to and from the BMA and to offsite ATMs should be performed by specialised service providers.

              • OM-5.1.17

                All ATMs must be properly maintained and covered by service or maintenance agreements. All ATMs must be inspected daily by bank staff to check that they are functioning properly and have not been tampered with.

              • OM-5.1.18

                All banks must maintain a list of all maintenance, replenishment and inspection visits by staff or other authorised parties.

              • OM-5.1.19

                All ATMs must be fitted with fraud detection and inhibiting devices (mandatory by year end 2006).

            • CCTV Network Systems

              • OM-5.1.20

                All head offices and branches must have a CCTV network which is connected to a central monitoring unit located in the head office, and to the MOI Central Monitoring Unit.

              • OM-5.1.21

                The location and type of CCTV cameras is left to the discretion of banks. At a minimum, CCTV cameras should cover the following areas:

                (a) Main entrance
                (b) Other external doors
                (c) Any other access points (e.g. ground floor windows)
                (d) The banking hall
                (e) Tellers' area
                (f) Strongroom entrance
                (g) ATMs (by way of internal or external cameras)

              • OM-5.1.22

                Notices of CCTV cameras in operation should be put up for the attention of the public. CCTV records should be maintained for a minimum 45 day period. The transmission rate (in terms of the number of frames per second) should be high enough to make for effective monitoring. Delayed transmission of pictures to the Central Monitoring Unit is not acceptable. The CCTV system should be operational 24 hours per day.

            • Training and Other Measures

              • OM-5.1.23

                Banks should establish the formal position of security manager. This person will be responsible for ensuring all bank staff are given annual, comprehensive security training. Banks should produce a security manual or procedures for staff, especially those dealing directly with customers. For banks dealing with three or more branches, this position should be a formally identified position. For banks with one or two branches, the responsibilities of this position may be added to the duties of a member of management.

              • OM-5.1.24

                The security manager must maintain records on documented security related complaints by customers and take corrective action or make recommendations for action on a timely basis. Actions and recommendations must also be documented.

              • OM-5.1.25

                Banks should consider safety and security issues when selecting premises for new branches. Key security issues include prominence of location (i.e. Is the branch on a main street or a back street?), accessibility for emergency services, and assessment of surrounding premises (in terms of their safety or vulnerability), and the number of entrances to the branch. All banks are required to hold an Insurance Blanket Bond (which includes theft of cash in its cover).

        • OM-8.1 OM-8.1 Introduction [1 April 2008 to 30 September 2012]

          • OM-8.1.1

            Section CA-6.2 of the Capital Adequacy Module allows banks to use either the basic indicator approach or standardised approach to compute capital charge for operational risk. This chapter sets out the qualitative aspect of these two approaches.

            Added: April 08

          • OM-8.1.2

            Operational risk is defined as the risk of loss resulting from inadequate or failed internal processes, people and systems or from external events which includes but is not limited to, legal risk and Shariah compliance risk. This definition excludes strategic and reputational risk.

            Added: April 08

          • OM-8.1.3

            Shariah compliance risk is a type of operational risk facing Islamic banks which can lead to non-recognition of income and resultant losses. See Appendix OM-1 for examples of Shariah requirements that must be complied with by the banks.

            Added: April 08

        • OM-8.2 OM-8.2 Basic Indicator Approach [1 April 2008 to 30 September 2012]

          • OM-8.2.1

            Banks applying the basic indicator approach for capital adequacy purposes as detailed in section CA-6.2 of Capital Adequacy Module are encouraged to comply with the principles set forth in this section.

            Added: April 08

          • Developing an Appropriate Risk Management Environment

            • OM-8.2.2

              Failure to understand and manage operational risk, which is present in virtually all bank transactions and activities, may greatly increase the likelihood that some risks will go unrecognised and uncontrolled. Both the board and senior management are responsible for creating an organisational culture that places high priority on effective operational risk management and adherence to sound operating controls. Operational risk management is most effective where a bank’s culture emphasises high standards of ethical behaviour at all levels of the bank. The board and senior management should promote an organisational culture which establishes through both actions and words the expectations of integrity for all employees in conducting the business of the bank.

              Added: April 08

            • OM-8.2.3

              Principle 1: The board of directors must be aware of the major aspects of the bank's operational risks as a distinct risk category that must be managed, and it must approve and periodically review the bank's operational risk management framework. The framework must provide a bank-wide definition of operational risk and lay down the principles of how operational risk is to be identified, assessed, monitored, and controlled/mitigated.

              Amended: July 2011
              Added: April 08

            • OM-8.2.4

              The board of directors should approve the implementation of a bank-wide framework to explicitly manage operational risk as a distinct risk to the bank’s safety and soundness. The board should provide senior management with clear guidance and direction regarding the principles underlying the framework and approve the corresponding policies developed by senior management.

              Added: April 08

            • OM-8.2.5

              An operational risk framework should be based on an appropriate definition of operational risk which clearly articulates what constitutes operational risk in that bank. The framework should cover the bank’s appetite and tolerance for operational risk, as specified through the policies for managing this risk and the bank’s prioritisation of operational risk management activities, including the extent of, and manner in which, operational risk is transferred outside the bank. It should also include policies outlining the bank’s approach to identifying, assessing, monitoring and controlling/mitigating the risk. The degree of formality and sophistication of the bank’s operational risk management framework should be commensurate with the bank’s risk profile.

              Added: April 08

            • OM-8.2.6

              The board is responsible for establishing a management structure capable of implementing the bank’s operational risk management framework. Since a significant aspect of managing operational risk relates to the establishment of strong internal controls, it is particularly important that the board establishes clear lines of management responsibility, accountability and reporting. In addition, there should be separation of responsibilities and reporting lines between operational risk control functions, business lines and support functions in order to avoid conflicts of interest. The framework should also articulate the key processes the bank needs to have in place to manage operational risk.

              Added: April 08

            • OM-8.2.7

              The board should review the framework regularly to ensure that the bank is managing the operational risks arising from external market changes and other environmental factors, as well as those operational risks associated with new products, activities or systems. This review process should also aim to assess industry best practice in operational risk management appropriate for the bank’s activities, systems and processes. If necessary, the board should ensure that the operational risk management framework is revised in light of this analysis, so that material operational risks are captured within the framework.

              Added: April 08

            • OM-8.2.8

              Principle 2: The board of directors must ensure that the bank's operational risk management framework is subject to effective and comprehensive internal audit by operationally independent, appropriately trained and competent staff. The internal audit function must not be directly responsible for operational risk management.

              Amended: July 2011
              Added: April 08

            • OM-8.2.9

              Banks should have in place adequate internal audit coverage to verify that operating policies and procedures have been implemented effectively. The board (either directly or indirectly through its audit committee) should ensure that the scope and frequency of the audit programme is appropriate to the risk exposures. Audit should periodically validate that the bank’s operational risk management framework is being implemented effectively across the bank.

              Added: April 08

            • OM-8.2.10

              To the extent that the audit function is involved in oversight of the operational risk management framework, the board should ensure that the independence of the audit function is maintained. This independence may be compromised if the audit function is directly involved in the operational risk management process. The audit function may provide valuable input to those responsible for operational risk management, but should not itself have direct operational risk management responsibilities. In practice, the CBB recognises that the audit function at some banks (particularly smaller banks) may have initial responsibility for developing an operational risk management programme. Where this is the case, banks should see that responsibility for day-to-day operational risk management is transferred elsewhere in a timely manner.

              Added: April 08

            • OM-8.2.11

              Principle 3: Senior management must have responsibility for implementing the operational risk management framework approved by the board of directors. The framework must be consistently implemented throughout the whole banking organisation, and all levels of staff must understand their responsibilities with respect to operational risk management. Senior management must also have responsibility for developing policies, processes and procedures for managing operational risk in all of the bank's material products, activities, processes and systems.

              Amended: July 2011
              Added: April 08

            • OM-8.2.12

              Management should translate the operational risk management framework established by the board of directors into specific policies, processes and procedures that can be implemented and verified within the different business units. While each level of management is responsible for the appropriateness and effectiveness of policies, processes, procedures and controls within its purview, senior management should clearly assign authority, responsibility and reporting relationships to encourage and maintain this accountability, and ensure that the necessary resources are available to manage operational risk effectively. Moreover, senior management should assess the appropriateness of the management oversight process in light of the risks inherent in a business unit’s policy.

              Added: April 08

            • OM-8.2.13

              Senior management should ensure that bank activities are conducted by qualified staff with the necessary experience, technical capabilities and access to resources, and that staff responsible for monitoring and enforcing compliance with the institution’s risk policy have authority independent from the units they oversee. Management should ensure that the bank’s operational risk management policy has been clearly communicated to staff at all levels in units that incur material operational risks.

              Added: April 08

            • OM-8.2.14

              Senior management should ensure that staff responsible for managing operational risk communicate effectively with staff responsible for managing credit, market, and other risks, as well as with those in the bank who are responsible for the procurement of external services such as insurance purchasing and outsourcing agreements. Failure to do so could result in significant gaps or overlaps in a bank's overall risk management programme.

              Added: April 08

            • OM-8.2.15

              Senior management should also ensure that the bank’s remuneration policies are consistent with its appetite for risk. Remuneration policies which reward staff that deviate from policies (e.g. by exceeding established limits) weaken the bank’s risk management processes.

              Added: April 08

            • OM-8.2.16

              Particular attention should be given to the quality of documentation controls and to transaction-handling practices. Policies, processes and procedures related to advanced technologies supporting high transactions volumes, in particular, should be well documented and disseminated to all relevant personnel.

              Added: April 08

          • Risk Management: Identification, Assessment, Monitoring and Mitigation/Control

            • OM-8.2.17

              Principle 4: Banks must identify and assess the operational risk inherent in all material products, activities, processes and systems. Banks must also ensure that before new products, activities, processes and systems are introduced or undertaken, the operational risk inherent in them is subject to adequate assessment procedures.

              Amended: July 2011
              Added: April 08

            • OM-8.2.18

              Risk identification is paramount for the subsequent development of a viable operational risk monitoring and control system. Effective risk identification considers both internal factors (such as the bank’s structure, the nature of the bank’s activities, the quality of the bank’s human resources, organisational changes and employee turnover) and external factors (such as changes in the industry and technological advances) that could adversely affect the achievement of the bank’s objectives.

              Added: April 08

            • OM-8.2.19

              In addition to identifying the most potentially adverse risks, banks should assess their vulnerability to these risks. Effective risk assessment allows the bank to better understand its risk profile and most effectively target risk management resources.

              Added: April 08

            • OM-8.2.20

              Amongst the possible tools used by banks for identifying and assessing operational risk are:

              (a) Self- or Risk Assessment: a bank assesses its operations and activities against a menu of potential operational risk vulnerabilities. This process is internally driven and often incorporates checklists and/or workshops to identify the strengths and weaknesses of the operational risk environment. Scorecards, for example, provide a means of translating qualitative assessments into quantitative metrics that give a relative ranking of different types of operational risk exposures. Some scores may relate to risks unique to a specific business line while others may rank risks that cut across business lines. Scores may address inherent risks, as well as the controls to mitigate them. In addition, scorecards may be used by banks to allocate economic capital to business lines in relation to performance in managing and controlling various aspects of operational risk.
              (b) Risk Mapping: in this process, various business units, organisational functions or process flows are mapped by risk type. This exercise can reveal areas of weakness and help prioritise subsequent management action.
              (c) Risk Indicators: risk indicators are statistics and/or metrics, often financial, which can provide insight into a bank’s risk position. These indicators tend to be reviewed on a periodic basis (such as monthly or quarterly) to alert banks to changes that may be indicative of risk concerns. Such indicators may include the number of failed trades, staff turnover rates and the frequency and/or severity of errors and omissions.
              (d) Measurement: some banks have begun to quantify their exposure to operational risk using a variety of approaches. For example, data on a bank’s historical loss experience could provide meaningful information for assessing the bank’s exposure to operational risk and developing a policy to mitigate/control the risk. An effective way of making good use of this information is to establish a framework for systematically tracking and recording the frequency, severity and other relevant information on individual loss events. Some banks have also combined internal loss data with external loss data, scenario analyses, and risk assessment factors.
              Added: April 08

            • OM-8.2.21

              Principle 5: Banks must implement a process to regularly monitor operational risk profiles and material exposures to losses. There must be regular reporting of pertinent information to senior management and the board of directors that supports the proactive management of operational risk.

              Amended: July 2011
              Added: April 08

            • OM-8.2.22

              An effective monitoring process is essential for adequately managing operational risk. Regular monitoring activities can offer the advantage of quickly detecting and correcting deficiencies in the policies, processes and procedures for managing operational risk. Promptly detecting and addressing these deficiencies can substantially reduce the potential frequency and/or severity of a loss event.

              Added: April 08

            • OM-8.2.23

              In addition to monitoring operational loss events, banks should identify appropriate indicators that provide early warning of an increased risk of future losses. Such indicators (often referred to as key risk indicators or early warning indicators) should be forward-looking and could reflect potential sources of operational risk such as rapid growth, the introduction of new products, employee turnover, transaction breaks, system downtime, and so on. When thresholds are directly linked to these indicators an effective monitoring process can help identify key material risks in a transparent manner and enable the bank to act upon these risks appropriately.

              Added: April 08

            • OM-8.2.24

              The frequency of monitoring should reflect the risks involved and the frequency and nature of changes in the operating environment. Monitoring should be an integrated part of a bank's activities. The results of these monitoring activities should be included in regular management and board reports, as should compliance reviews performed by the internal audit and/or risk management functions. Reports generated by (and/or for) supervisory authorities may also inform this monitoring and should likewise be reported internally to senior management and the board, where appropriate.

              Added: April 08

            • OM-8.2.25

              Senior management should receive regular reports from appropriate areas such as business units, group functions, the operational risk management office and internal audit. The operational risk reports should contain internal financial, operational, and compliance data, as well as external market information about events and conditions that are relevant to decision making. Reports should be distributed to appropriate levels of management and to areas of the bank on which areas of concern may have an impact. Reports should fully reflect any identified problem areas and should motivate timely corrective action on outstanding issues. To ensure the usefulness and reliability of these risk and audit reports, management should regularly verify the timeliness, accuracy, and relevance of reporting systems and internal controls in general. Management may also use reports prepared by external sources (auditors, supervisors) to assess the usefulness and reliability of internal reports. Reports should be analysed with a view to improving existing risk management performance as well as developing new risk management policies, procedures and practices.

              Added: April 08

            • OM-8.2.26

              In general, the board of directors should receive sufficient higher-level information to enable them to understand the bank's overall operational risk profile and focus on the material and strategic implications for the business.

              Added: April 08

            • OM-8.2.27

              Principle 6: Banks must have policies, processes and procedures to control and/or mitigate material operational risks. Banks must periodically review their risk limitation and control strategies and must adjust their operational risk profile accordingly using appropriate strategies, in light of their overall risk appetite and profile.

              Amended: July 2011
              Added: April 08

            • OM-8.2.28

              Control activities are designed to address the operational risks that a bank has identified. For all material operational risks that have been identified, the bank should decide whether to use appropriate procedures to control and/or mitigate the risks, or bear the risks. For those risks that cannot be controlled, the bank should decide whether to accept these risks, reduce the level of business activity involved, or withdraw from this activity completely. Control processes and procedures should be established and banks should have a system in place for ensuring compliance with a documented set of internal policies concerning the risk management system. Principle elements of this could include, for example:

              (a) Top-level reviews of the bank's progress towards the stated objectives;
              (b) Checking for compliance with management controls;
              (c) Policies, processes and procedures concerning the review, treatment and resolution of non-compliance issues; and
              (d) A system of documented approvals and authorisations to ensure accountability to an appropriate level of management.
              Added: April 08

            • OM-8.2.29

              Although a framework of formal, written policies and procedures is critical, it needs to be reinforced through a strong control culture that promotes sound risk management practices. Both the board of directors and senior management are responsible for establishing a strong internal control culture in which control activities are an integral part of the regular activities of a bank. Controls that are an integral part of the regular activities enable quick responses to changing conditions and avoid unnecessary costs.

              Added: April 08

            • OM-8.2.30

              An effective internal control system also requires that there be appropriate segregation of duties and that personnel are not assigned responsibilities which may create a conflict of interest. Assigning such conflicting duties to individuals, or a team, may enable them to conceal losses, errors or inappropriate actions. Therefore, areas of potential conflicts of interest should be identified, minimised, and subject to careful independent monitoring and review.

              Added: April 08

            • OM-8.2.31

              In addition to segregation of duties, banks should ensure that other internal practices are in place as appropriate to control operational risk. Examples of these include:

              (a) Close monitoring of adherence to assigned risk limits or thresholds;
              (b) Maintaining safeguards for access to, and use of, bank assets and records;
              (c) Ensuring that staff have appropriate expertise and training;
              (d) Identifying business lines or products where returns appear to be out of line with reasonable expectations (e.g., where a supposedly low risk, low margin trading activity generates high returns that could call into question whether such returns have been achieved as a result of an internal control breach); and
              (e) Regular verification and reconciliation of transactions and accounts.
              Failure to implement such practices has resulted in significant operational losses for some banks in recent years.
              Added: April 08

            • OM-8.2.32

              Operational risk can be more pronounced where banks engage in new activities or develop new products (particularly where these activities or products are not consistent with the bank's core business strategies), enter unfamiliar markets, and/or engage in businesses that are geographically distant from the head office. Moreover, in many such instances, banks do not ensure that the risk management control infrastructure keeps pace with the growth in the business activity. A number of the most sizeable and highest-profile losses in recent years have taken place where one or more of these conditions existed. Therefore, it is incumbent upon banks to ensure that special attention is paid to internal control activities where such conditions exist.

              Added: April 08

            • OM-8.2.33

              Some significant operational risks have low probabilities but potentially very large financial impact. Moreover, not all risk events can be controlled (e.g., natural disasters). Risk mitigation tools or programmes can be used to reduce the exposure to, or frequency and/or severity of, such events. For example, insurance policies, particularly those with prompt and certain pay-out features, can be used to externalise the risk of "low frequency, high severity" losses which may occur as a result of events such as third-party claims resulting from errors and omissions, physical loss of securities, employee or third-party fraud, and natural disasters.

              Added: April 08

            • OM-8.2.34

              However, banks should view risk mitigation tools as complementary to, rather than a replacement for, thorough internal operational risk control. Having mechanisms in place to quickly recognise and rectify legitimate operational risk errors can greatly reduce exposures. Careful consideration also needs to be given to the extent to which risk mitigation tools such as insurance truly reduce risk, or transfer the risk to another business sector or area, or even create a new risk (e.g. legal or counterparty risk).

              Added: April 08

            • OM-8.2.35

              Investments in appropriate processing technology and information technology security are also important for risk mitigation. However, banks should be aware that increased automation could transform high-frequency, low-severity losses into low frequency, high-severity losses. The latter may be associated with loss or extended disruption of services caused by internal factors or by factors beyond the bank's immediate control (e.g., external events). Such problems may cause serious difficulties for banks and could jeopardise an institution's ability to conduct key business activities. As discussed below in Principle 7, banks should establish disaster recovery and business continuity plans that address this risk.

              Added: April 08

            • OM-8.2.36

              Banks should also establish policies for managing the risks associated with outsourcing activities. Outsourcing of activities can reduce the institution's risk profile by transferring activities to others with greater expertise and scale to manage the risks associated with specialised business activities. However, a bank's use of third parties does not diminish the responsibility of the board of directors and management to ensure that the third-party activity is conducted in a safe and sound manner and in compliance with applicable laws. Outsourcing arrangements should be based on robust contracts and/or service level agreements that ensure a clear allocation of responsibilities between external service providers and the outsourcing bank. Furthermore, banks need to manage residual risks associated with outsourcing arrangements, including disruption of services.

              Added: April 08

            • OM-8.2.37

              Depending on the scale and nature of the activity, banks should understand the potential impact on their operations and their customers of any potential deficiencies in services provided by vendors and other third-party or intra-group service providers, including both operational breakdowns and the potential business failure or default of the external parties. The board and management should ensure that the expectations and obligations of each party are clearly defined, understood and enforceable. The extent of the external party's liability and financial ability to compensate the bank for errors, negligence, and other operational failures should be explicitly considered as part of the risk assessment. Banks should carry out an initial due diligence test and monitor the activities of third party providers, especially those lacking experience of the banking industry's regulated environment, and review this process (including reevaluations of due diligence) on a regular basis. For critical activities, the bank may need to consider contingency plans, including the availability of alternative external parties and the costs and resources required to switch external parties, potentially on very short notice.

              Added: April 08

            • OM-8.2.38

              In some instances, banks may decide to either retain a certain level of operational risk or self-insure against that risk. Where this is the case and the risk is material, the decision to retain or self-insure the risk should be transparent within the organisation and should be consistent with the bank's overall business strategy and appetite for risk.

              Added: April 08

            • OM-8.2.39

              Principle 7: Banks must have in place contingency and business continuity plans to ensure their ability to operate on an ongoing basis and limit losses in the event of severe business disruption.

              Amended: July 2011
              Added: April 08

            • OM-8.2.40

              For reasons that may be beyond a bank's control, a severe event may result in the inability of the bank to fulfil some or all of its business obligations, particularly where the bank's physical, telecommunication, or information technology infrastructures have been damaged or made inaccessible. This can, in turn, result in significant financial losses to the bank, as well as broader disruptions to the financial system through channels such as the payments system. This potential requires that banks establish disaster recovery and business continuity plans that take into account different types of plausible scenarios to which the bank may be vulnerable, commensurate with the size and complexity of the bank's operations.

              Added: April 08

            • OM-8.2.41

              Banks should identify critical business processes, including those where there is dependence on external vendors or other third parties, for which rapid resumption of service would be most essential. For these processes, banks should identify alternative mechanisms for resuming service in the event of an outage. Particular attention should be paid to the ability to restore electronic or physical records that are necessary for business resumption. Where such records are backed-up at an off-site facility, or where a bank's operations must be relocated to a new site, care should be taken that these sites are at an adequate distance from the impacted operations to minimise the risk that both primary and back-up records and facilities will be unavailable simultaneously.

              Added: April 08

            • OM-8.2.42

              Banks should periodically review their disaster recovery and business continuity plans so that they are consistent with the bank's current operations and business strategies. Moreover, these plans should be tested periodically to ensure that the bank would be able to execute the plans in the unlikely event of a severe business disruption.

              Added: April 08

      • LM LM Liquidity Risk Management [Version up to 30 September 2007]

        • LM-A LM-A Introduction [Version up to 30 September 2007]

          • LM-A.1 LM-A.1 Purpose [Version up to 30 September 2007]

            • LM-A.1.1 [Version up to 30 September 2007]

              The purpose of this module is to provide a checklist of the key elements of a sound Liquidity Risk Management system which supervisors can expect their banks to observe.

            • LM-A.1.2 [Version up to 30 September 2007]

              This module provides support for certain other parts of the Rulebook, mainly:

              (a) Licensing Requirements;
              (b) Principles of Business;
              (c) BMA Reporting Requirements;
              (d) Audit Firms; and
              (e) High Level Controls.

          • LM-A.2 LM-A.2 Key requirements [Version up to 30 September 2007]

            • LM-A.2.1 [Version up to 30 September 2007]

              It is the responsibility of the bank's Board of Directors and management to ensure that the bank has sufficient liquidity to meet its obligations as they fall due.

            • LM-A.2.1 [Version up to 30 September 2007]

              A bank must inform the Agency of any concerns it has about its current or future liquidity profile, and of its plans to rectify/deal with any problems.

            • LM-A.2.2 [Version up to 30 September 2007]

              The Agency has established certain limits for negative maturity mismatch positions. Positions within such periods should be reported on a monthly basis.

            • LM-A.2.3 [Version up to 30 September 2007]

              Currencies should be translated into the reporting currency of the bank (which in any case would be either Bahraini Dinar or US Dollar) at the closing spot mid price on the reporting date and entered in the relevant time band. However, the Agency may also require institutions to provide management information on positions in individual currencies in the event of difficulties either in the individual institution or with the currency in question.

          • LM-A.3 LM-A.3 Regulation history [Version up to 30 September 2007]

            • LM-A.3.1 [Version up to 30 September 2007]

              This module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

            • LM-A.3.2 [Version up to 30 September 2007]

              A list of most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              LM    
                   
                   
                   
                   

            • Evolution of the Module [Version up to 30 September 2007]

              • LM-A.3.3 [Version up to 30 September 2007]

                The module incorporates the requirements set out under Section E of the Prudential Information Returns for Islamic Banks (PIRI) pack.

            • Effective date [Version up to 30 September 2007]

              • LM-A.3.4 [Version up to 30 September 2007]

                The contents in this module are effective from the date depicted in the original circulars/pack (see paragraph LM-A.3.3) from which the requirements are compiled.

        • LM-1 LM-1 Prudential information [Version up to 30 September 2007]

          • LM-1.1 LM-1.1 Introduction [Version up to 30 September 2007]

            • LM-1.1.1 [Version up to 30 September 2007]

              An important element of banking is managing liquidity. Long-term financing contracts may be financed by amounts received from customers for short-term investments. As a result of this, a bank is exposed to the risk that investors' demands for repayment might outstrip its ability to transform assets into cash.

            • Liquidity risk management reporting under section E of the PIRI [Version up to 30 September 2007]

              • LM-1.1.2 [Version up to 30 September 2007]

                The purpose of this chapter is to introduce the Agency's supervisory approach with respect to reporting requirements and bank's obligations in terms of its liquidity management practices.

              • LM-1.1.3 [Version up to 30 September 2007]

                The contents of this chapter should be read in conjunction with the guidelines set out under Section E of the PIRI (in Appendix BR 3) and PIRI reporting forms (in Appendix BR 4).

          • LM-1.2 LM-1.2 The bank's prudential obligation [Version up to 30 September 2007]

            • LM-1.2.1 [Version up to 30 September 2007]

              It is the responsibility of the bank's Board of Directors and management to ensure that the bank has sufficient liquidity to meet its obligations as they fall due.

            • LM-1.2.2 [Version up to 30 September 2007]

              A bank must inform the Agency of any concerns it has about its current or future liquidity profile, and of its plans to rectify/deal with any problems.

            • LM-1.2.3 [Version up to 30 September 2007]

              Banks will be expected to have formal written policies which limit liquidity risk to acceptable levels; appropriate liquidity measurement and information systems and clearly defined managerial responsibilities for managing liquidity. These policies, controls and systems are to be observed on a daily basis and reviewed to take account of changing circumstances.

          • LM-1.3 LM-1.3 The Agency's obligation [Version up to 30 September 2007]

            • LM-1.3.1 [Version up to 30 September 2007]

              The Agency will review with banks their policies, systems and controls for managing their liquidity.

            • LM-1.3.2 [Version up to 30 September 2007]

              Banks are expected to monitor and maintain adequate liquidity not only for meeting the requirements of the unrestricted investment account holders, but also that arising for the restricted investment account holders.

            • LM-1.3.3 [Version up to 30 September 2007]

              The Agency has established the following limits for negative maturity mismatch positions. Positions within such periods should be reported on a monthly basis (see section BR-4):

              (i)
              Self Financed and Current Accounts Only
              Period Limit
              0-8 days 10%
              8 days —1 month 20%
              (ii)
              Unrestricted Investment
              Period Limit
              0-8 days 10%
              8 days — 1 month 20%
              (iii)
              Restricted Investment Accounts Only
              Period Limit
              0-8 days 10%
              8 days — 1 month 20%
              (iv)
              Self Financed, Restricted/ Unrestricted Investment Accounts & Current Accounts
              Period Limit
              0-8 days 15%
              8 days — 1 month 25%

          • LM-1.4 LM-1.4 Liquidity reporting in individual currencies [Version up to 30 September 2007]

            • LM-1.4.1 [Version up to 30 September 2007]

              Section E of the PIRI (Appendix BR 4) should be completed on the basis of all currencies combined.

            • LM-1.4.2 [Version up to 30 September 2007]

              Currencies should be translated into the reporting currency of the bank (which in any case would be either Bahraini Dinar or US Dollar) at the closing spot mid price on the reporting date and entered in the relevant time band. However, the Agency may require institutions to provide management information on positions in individual currencies in the event of difficulties either in the individual institution or with the currency in question.

      • LM LM Liquidity Risk Management [Version 1 October 2007 to 31 July 2018]

        • LM-A LM-A Introduction [Version 1 October 2007 to 31 July 2018]

          • LM-A.1 LM-A.1 Purpose [Version 1 October 2007 to 31 July 2018]

            • Executive Summary [Version 1 October 2007 to 31 July 2018]

              • LM-A.1.1 [Version 1 October 2007 to 31 July 2018]

                The purpose of this Module is to provide a checklist of the key elements of a sound Liquidity Risk Management system which supervisors can expect their banks to observe.

                October 07

              • LM-A.1.2 [Version 1 October 2007 to 31 July 2018]

                This module provides support for certain other parts of the Rulebook, mainly:

                (a) Licensing Requirements;
                (b) Principles of Business;
                (c) CBB Reporting Requirements;
                (d) Audit Firms; and
                (e) High-Level Controls.
                October 07

            • Legal Basis [Version up to 31 July 2018]

              • LM-A.1.3 [Version up to 31 July 2018]

                This Module contains the Central Bank of Bahrain's ('CBB') Directive (as amended from time to time) on liquidity risk management requirements for Islamic bank licensees, and is issued under the powers available to the CBB under Article 38 of the Central Bank of Bahrain and Financial Institutions Law 2006 (CBB Law). The directive in this Module is applicable to all Islamic bank licensees.

                Amended: April 2011
                Added: January 2011

              • LM-A.1.4 [Version up to 31 July 2018]

                For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1.

                Added: January 2011

          • LM-A.2 LM-A.2 Key Requirements [Version up to 31 July 2018]

            • LM-A.2.1 [Version up to 31 July 2018]

              It is the responsibility of the bank's Board of Directors and management to ensure that the bank has sufficient liquidity to meet its obligations as they fall due.

              October 07

            • LM-A.2.2 [Version 31 July 2018]

              A bank must inform the CBB of any concerns it has about its current or future liquidity profile, and of its plans to rectify/deal with any problems.

              Amended: January 2011
              October 2007

            • LM-A.2.3 [Version to 31 July 2018]

              The CBB has established certain limits for negative maturity mismatch positions. Positions within such periods should be reported on a quarterly basis.

              Amended: April 2014
              Amended: January 2011
              October 2007

            • LM-A.2.4 [Version up to 31 July 2018]

              Currencies should be translated into the reporting currency of the bank (which in any case would be either Bahrain Dinar or US Dollar) at the closing spot mid price on the reporting date and entered in the relevant time band. However, the CBB may also require institutions to provide management information on positions in individual currencies in the event of difficulties either in the individual institution or with the currency in question.

              Amended: January 2011
              October 2007

          • LM-A.3 LM-A.3 Regulation history [Version up to 31 July 2018]

            • LM-A.3.1 [Version up to 31 July 2018]

              This Module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

              October 07

            • LM-A.3.2 [Version up to 31 July 2018]

              A list of most recent changes made to this Module are detailed in the table below:

              Summary of Changes

              Module Ref. Change Date Description of Changes
              LM 01/2011 Various minor amendments to ensure consistency in CBB Rulebook.
              LM-A.1.3 and LM-A.1.4 01/2011 Added legal basis
              LM-A.2.3 and LM-1.3.3 04/2014 Corrected frequency of reporting.
              LM-1.1.3 04/2014 Corrected cross reference.
              LM-1.1 and LM-1.4 04/2015 Corrected reference to PIRI.

            • Evolution of the Module [Version up to 31 July 2018]

              • LM-A.3.3 [Version up to 31 July 2018]

                The module incorporates the requirements set out under Section F of the Prudential Information Returns for Islamic Banks (PIRI) pack.

                Amended July 09
                October 07

            • Effective Date [Version up to 31 July 2018]

              • LM-A.3.4 [Version up to 31 July 2018]

                The contents in this Module are effective from the date depicted in the original circulars/pack (see Paragraph LM-A.3.3) from which the requirements are compiled.

                October 07

        • LM-1 LM-1 Prudential Information [Version up to 31 July 2018]

          • LM-1.1 LM-1.1 Introduction [Version up to 31 July 2018]

            • LM-1.1.1 [Version up to 31 July 2018]

              An important element of banking is managing liquidity. Long-term financing contracts may be financed by amounts received from customers for short-term investments. As a result of this, a bank is exposed to the risk that investors' demands for repayment might outstrip its ability to transform assets into cash.

              October 07

            • Liquidity Risk Management Reporting under Section E of the PIRI [Version up to 31 July 2018]

              • LM-1.1.2 [Version up to 31 July 2018]

                The purpose of this Chapter is to introduce the CBB's supervisory approach with respect to reporting requirements and bank's obligations in terms of its liquidity management practices.

                Amended: January 2011
                October 2007

              • LM-1.1.3 [Version up to 31 July 2018]

                The contents of this Chapter should be read in conjunction with the guidelines set out under Section E of the PIRI (in Appendix BR-4) and PIRI reporting forms (in Appendix BR-5).

                Amended: April 2015
                April 2014

          • LM-1.2 LM-1.2 The Bank's Prudential Obligation [Version up to 31 July 2018]

            • LM-1.2.1 [Version up to 31 July 2018]

              It is the responsibility of the bank's Board of Directors and management to ensure that the bank has sufficient liquidity to meet its obligations as they fall due.

              October 07

            • LM-1.2.2 [Version up to 31 July 2018]

              A bank must inform the CBB of any concerns it has about its current or future liquidity profile, and of its plans to rectify/deal with any problems.

              Amended: January 2011
              October 2007

            • LM-1.2.3 [Version up to 31 July 2018]

              Banks will be expected to have formal written policies which limit liquidity risk to acceptable levels; appropriate liquidity measurement and information systems and clearly defined managerial responsibilities for managing liquidity. These policies, controls and systems are to be observed on a daily basis and reviewed to take account of changing circumstances.

              October 07

          • LM-1.3 LM-1.3 The CBB's Obligation [Version up to 31 July 2018]

            • LM-1.3.1 [Version up to 31 July 2018]

              The CBB will review with banks their policies, systems and controls for managing their liquidity.

              Amended: January 2011
              October 2007

            • LM-1.3.2 [Version up to 31 July 2018]

              Banks are expected to monitor and maintain adequate liquidity not only for meeting the requirements of the unrestricted investment account holders, but also that arising for the restricted investment account holders.

              October 07

            • LM-1.3.3 [Version up to 31 July 2018]

              The CBB has established the following limits for negative maturity mismatch positions. Positions within such periods should be reported on a quarterly basis as part of the PIRI (see Section BR-3):

              (i)
              Self Financed and Current Accounts Only
              Period Limit*
              0-8 days 10%
              8 days - 1 month 20%
              (ii)
              Unrestricted Investment
              Period Limit*
              0-8 days 10%
              8 days - 1 month 20%
              (iii)
              Restricted Investment Accounts Only
              Period Limit*
              0-8 days 10%
              8 days - 1 month 20%
              (iv)
              Self Financed, Restricted/ Unrestricted Investment Accounts & Current Accounts
              Period Limit*
              0-8 days 15%
              8 days - 1 month 25%
              Amended: April 2014
              Amended: January 2011
              October 2007

          • LM-1.4 LM-1.4 Liquidity Reporting in Individual Currencies [Version up to 31 July 2018]

            • LM-1.4.1 [Version up to 31 July 2018]

              Section E of the PIRI (Appendix BR-5) should be completed on the basis of all currencies combined.

              Amended: April 2015
              July 09
              October 07

            • LM-1.4.2 [Version up to 31 July 2018]

              Currencies should be translated into the reporting currency of the bank (which in any case would be either Bahrain Dinar or US Dollar) at the closing spot mid price on the reporting date and entered in the relevant time band. However, the CBB may require institutions to provide management information on positions in individual currencies in the event of difficulties either in the individual institution or with the currency in question.

              Amended: January 2011
              October 2007

      • FC FC Financial Crimes

        • FC-A FC-A Introduction

          • FC-A.1 FC-A.1 Purpose

            • FC-A.1.1

              This Module applies, to all Islamic bank licensees, a comprehensive framework of Rules and Guidance aimed at combating money laundering and terrorist financing. In so doing, it helps implement the 40 Recommendations on money laundering and 9 Special Recommendations on terrorist financing, issued by the Financial Action Task Force (FATF), and the requirements of the Basel Committee "Customer Due Diligence for Banks" paper, that are relevant to Islamic bank licensees. (Further information on these can be found in Chapter FC-10.)

            • FC-A.1.2

              The Module requires Islamic bank licensees to have effective anti-money laundering ('AML') policies and procedures, in addition to measures for combating the financing of terrorism ('CFT'). The Module contains detailed requirements relating to customer due diligence, reporting and the role and duties of the Money Laundering Reporting Officer (MLRO). Furthermore, examples of suspicious activity are provided, to assist Islamic bank licensees monitor transactions and fulfil their reporting obligations under Bahrain law.

          • FC-A.2 FC-A.2 Module history

            • Changes to the Module

              • FC-A.2.1

                This module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

              • FC-A.2.2

                A list of recent changes made to this Module is detailed in the table below:

                Module Ref. Change Date Description of Changes
                FC 01/04/05 Update to reflect revised FATF 40 + 9 recommendations
                FC-1.4 01/07/05 Technology abuse update
                FC-1.1 01/07/05 Nominee a/c clarification
                FC-1.3 FC-2.2 FC-5.2 01/07/05 Clarifications on risk-based approach, record keeping, and STRs
                FC-6.1 01/07/05 New references to "terrorist financing"
                FC-7.1 01/07/05 Prompt access to records is a rule
                FC-2.2 01/10/05 Up to date CDD documentation requirement
                FC-1.8 01/10/05 Location of correspondent
                FC-1.9 01/10/05 Location of introducer
                FC-4.2 , FC-4.3 01/10/05 Requirement to report to Board
                FC 01/10/05 Reordering of sections
                FC-1.11.1 01/01/06 New text for syndicated business
                FC-1.1.3, FC-1.2.8, FC-1.2.11, FC-3.1.4 01/01/06 Correction of minor typos

            • Evolution of the Module

              • FC-A.2.3

                Prior to the introduction of Volume 2 (Islamic Banks) of the BMA Rulebook, the BMA had issued various circulars containing requirements covering different aspects of financial crime. These requirements were consolidated into Version 01 of this Module. Some of these requirements remain in their original form; others have since been updated. These circulars and their original location in this Module are listed below:

                Circular Ref. Date of Issue Module Ref. (Version 01) Circular Subject
                BC/17/97 10 Nov 1997 FC-B.1 Money Laundering
                OG/308/89 14 Oct 1989 FC-B.1 Money Laundering
                EDBC/6/01 14 Oct 2001 FC-1, FC-4–FC-7 Re: Money Laundering Regulation
                BC/1/02 27 Jan 2002 FC-3 FATF Special Recommendations on Terrorism Financing
                BC/3/00 5 Mar 2000 FC-1.5 Re: Accounts for Charity Organisations

        • FC-B FC-B Scope of Application

          • FC-B.1 FC-B.1 License Categories

            • FC-B.1.1

              This Module applies to all Islamic bank licensees, including branches of banks incorporated outside of Bahrain, and Bahrain-incorporated subsidiaries of overseas groups.

            • FC-B.1.2

              The Rules and Guidance in this Module are in addition to and supplement the requirements contained in Decree Law No. (4) of 2001 with respect to the prevention and prohibition of the laundering of money ("The AML Law"). The AML Law imposes obligations on persons generally in relation to the prevention of money laundering. All Islamic bank licensees are under the statutory obligations of that Law, a copy of which is contained in Part B of Volume 2, under 'Supplementary Information'. Nothing in this Module is intended to restrict the application of the AML Law.

          • FC-B.2 FC-B.2 Overseas Subsidiaries and Branches

            • FC-B.2.1

              Islamic bank licensees must apply the requirements in this Module to all their branches and subsidiaries operating both in the Kingdom of Bahrain and in foreign jurisdictions. Where local standards differ, the higher standard must be followed. Islamic bank licensees must pay particular attention to procedures in branches or subsidiaries in countries that do not or insufficiently apply the FATF Recommendations and Special Recommendations.

            • FC-B.2.2

              Where another jurisdiction's laws or regulations prevent a Islamic bank licensee (or any of its foreign branches or subsidiaries) from applying the same standards contained in this Module or higher, the licensee must immediately inform the BMA in writing.

            • FC-B.2.3

              In such instances, the BMA will review alternatives with the Islamic bank licensee. Should the BMA and the licensee be unable to reach agreement on the satisfactory implementation of this Module in a foreign subsidiary or branch, the Islamic bank licensee may be required by BMA to cease the operations of the subsidiary or branch in the foreign jurisdiction in question.

        • FC-1 FC-1 Customer due diligence

          • FC-1.1 FC-1.1 General requirements

            • Verification of Identity and Source of Funds

              • FC-1.1.1

                Islamic bank licensees must establish effective systematic internal procedures for establishing and verifying the identity of their customers and the source of their funds. Such procedures must be set out in writing and approved by the licensee's Board of Directors. They must be strictly adhered to.

              • FC-1.1.2

                Islamic bank licensees must implement the customer due diligence measures outlined in Chapters 1, 2 and 3 when:

                (a) establishing business relations with a new or existing customer;
                (b) a change to the signatory or beneficiary of an existing account or business relationship is made;
                (c) a significant transaction takes place;
                (d) there is a material change in the way that the bank account is operated or in the manner in which the business relationship is conducted;
                (e) customer documentation standards change substantially;
                (f) the Islamic bank licensee has doubts about the veracity or adequacy of previously obtained customer due diligence information;
                (g) carrying-out one-off or occasional transactions above BD 6,000, or where several smaller transactions that appear to be linked fall above this threshold; or
                (h) carrying out wire transfers irrespective of amount;
                (h) there is a suspicion of money laundering or terrorist financing.

              • FC-1.1.3

                For the purposes of this Module, "customer" includes counterparties such as financial markets counterparties, except where financial institutions are acting as principals where simplified due diligence measures may sometimes apply. These simplified measures are set out in Section FC-1.11.

              • FC-1.1.4

                The BMA's specific minimum standards to be followed with respect to verifying customer identity and source of funds are contained in Section FC-1.2. Enhanced requirements apply under certain high-risk situations: these requirements are contained in Sections FC-1.3 to FC-1.8 inclusive. Additional requirements apply where an Islamic bank licensee is relying on a professional intermediary to perform certain parts of the customer due diligence process: these are detailed in Section FC-1.10. Simplified customer due diligence measures may apply in defined circumstances: these are set out in Section FC-1.11 .

            • Verification of Third Parties

              • FC-1.1.5

                Islamic bank licensees must obtain a signed statement from all new customers confirming whether or not the customer is acting on their own behalf or not. This undertaking must be obtained prior to conducting any transactions with the customer concerned.

              • FC-1.1.6

                Where a customer is acting on behalf of a third party, the Islamic bank licensee must also obtain a signed statement from the third party, confirming they have given authority to the customer to act on their behalf. Where the third party is a legal person, the Islamic bank licensee must have sight of the original Board resolution (or other applicable document) authorising the customer to act on the third party's behalf, and retain a certified copy.

              • FC-1.1.7

                Islamic bank licensee must establish and verify the identity of the customer and (where applicable) the party/parties on whose behalf the customer is acting, including the Beneficial Owner of the funds. Verification must take place in accordance with the requirements specified in this Chapter.

              • FC-1.1.8

                Where financial services are provided to a minor or other person lacking full legal capacity, the normal identification procedures as set out in this Chapter must be followed. In the case of minors, licensees must additionally verify the identity of the parent(s) or legal guardian(s). Where a third party on behalf of a person lacking full legal capacity wishes to open an account, the licensee must establish the identity of that third party as well as the intended account holder.

            • Anonymous and Nominee Accounts

              • FC-1.1.9

                Islamic bank licensees must not establish or keep anonymous accounts or accounts in fictitious names. Where Islamic bank licensees maintain a nominee account, which is controlled by or held for the benefit of another person, the identity of that person must be disclosed to the Islamic bank licensee and verified by it in accordance with the requirements specified in this Chapter.

            • Timing of Verification

              • FC-1.1.10

                Islamic bank licensees must not commence a business relationship or undertake a transaction with a customer before completion of the relevant customer due diligence measures specified in Chapters 1, 2 and 3. However, verification may be completed after receipt of funds in the case of non face-to-face business, or the subsequent submission of CDD documents by the customer after initial face-to face contact, providing that no disbursement of funds takes place until after the requirements of this Chapter have been fully met.

            • Incomplete Customer Due Diligence

              • FC-1.1.11

                Where an Islamic bank licensee is unable to comply with the requirements specified in Chapters 1, 2 and 3, it must consider whether to terminate the relationship or not proceed with the transaction, and additionally, consider whether it should file a suspicious transaction report.

              • FC-1.1.12

                See also Chapter FC-5, which covers the filing of suspicious transaction reports.

          • FC-1.2 FC-1.2 Face-to-face Business

            • Natural persons

              • FC-1.2.1

                If the customer is a natural person, Islamic bank licensees must obtain and record the following information (in hard copy or electronic form), before providing financial services of any kind:

                (a) full legal name and any other names used;
                (b) full permanent address (i.e. the residential address of the customer; a post office box is not insufficient);
                (c) date and place of birth;*
                (d) nationality;
                (e) passport number (if customer is a passport holder);
                (f) CPR or Iqama number (for Bahraini or GCC residents only);
                (g) telephone/fax number and email address (where applicable);
                (h) occupation or public position held (where applicable);
                (i) employer's name and address (where applicable);
                (j) type of account, and nature and volume of anticipated business dealings with the Islamic bank licensee;
                (k) Signature(s) of the customer(s); and
                (l) Source of funds.

              • FC-1.2.2

                See Part B, Volume 2 (Islamic Banks), for Guidance Notes on source of funds (FC-1.2.1(1)) and requirements for Bahraini residents (FC-1.2.1 (c) & (f)).

              • FC-1.2.3

                Islamic bank licensees must verify the information in Paragraph FC-1.2.1 (a) to (f), by the following methods below; at least one of the copies of the identification documents mentioned in (a) and (b) below must include a clear photograph of the customer:

                (a) confirmation of the date of birth and legal name, by taking a copy of a current valid official original identification document (e.g. birth certificate, passport, CPR or Iqama);
                (b) confirmation of the permanent residential address by taking a copy of a recent utility bill, bank statement or similar statement from another licensee or financial institution, or some form of official correspondence or official documentation card, such as CPR, from a public/governmental authority, or a tenancy agreement or record of home visit by an official of the Islamic bank licensee; and
                (c) where appropriate, direct contact with the customer by phone, letter or email to confirm relevant information, such as residential address information.

              • FC-1.2.4

                Any document copied for the purpose of identification verification must be an original. An authorised official of the licensee must certify the copy, by writing on it the words 'original sighted', together with the date and his signature. Equivalent measures must be taken for electronic copies.

              • FC-1.2.5

                Identity documents which are not obtained by an authorised official of the licensee in original form (e.g. due to a customer sending a copy by post following an initial meeting) must instead be certified (as per FC-1.2.4) by one of the following from a GCC or FATF member state:

                (a) a lawyer;
                (b) a notary;
                (c) a chartered/certified accountant;
                (d) an official of a government ministry;
                (e) an official of an embassy or consulate; or
                (f) an official of another licensed financial institution or of an associate company of the licensee.

              • FC-1.2.6

                The individual making the certification under FC-1.2.5 must give clear contact details (e.g. by attaching a business card or company stamp). The Islamic bank licensee must verify the identity of the person providing the certification through checking membership of a professional organisation (for lawyers or accountants), or through checking against databases/websites, or by direct phone or email contact.

            • Legal Entities or Legal Arrangements (such as trusts)

              • FC-1.2.7

                If the customer is a legal entity or a legal arrangement such as a trust, the Islamic bank licensee must obtain and record the following information from original identification documents, databases or websites, in hard copy or electronic form, to verify the customer's legal existence and structure:

                (a) the entity's full name and other trading names used;
                (b) registration number (or equivalent);
                (c) legal form;
                (d) registered address and trading address (where applicable);
                (e) type of business activity;
                (f) date and place of incorporation or establishment;
                (g) telephone, fax number and email address;
                (h) regulatory body or listing body (for regulated activities such as financial services and listed companies);
                (i) name of external auditor (where applicable);
                (j) type of account, and nature and volume of anticipated business dealings with the Islamic bank licensee; and
                (k) source of funds.

              • FC-1.2.8

                The information provided under FC-1.2.7 must be verified by obtaining certified copies of the following documents, as applicable (depending on the legal form of the entity):

                (a) certificate of incorporation and/or certificate of commercial registration or trust deed;
                (b) memorandum of association;
                (c) articles of association;
                (d) partnership agreement;
                (e) Board resolution seeking the banking services (only necessary in the case of private or unlisted companies);
                (f) identification documentation of the authorised signatories of the account;
                (g) copy of the latest financial report and accounts, audited where possible (audited copies do not need to be certified); and
                (h) list of authorised signatories of the company for the account and a Board resolution (or other applicable document) authorising the named signatories or their agent to operate the account (resolution only necessary for private or unlisted companies).

              • FC-1.2.9

                Documents obtained to satisfy the requirements in FC-1.2.8 above must be certified in the manner specified in FC-1.2.4 to FC-1.2.6.

              • FC-1.2.10

                The documentary requirements in FC-1.2.8 above do not apply in the case of listed companies: see Section FC-1.11 below. Also, the documents listed in FC-1.2.8 above are not exhaustive: for customers from overseas jurisdictions, documents of an equivalent nature may be produced as satisfactory evidence of a customer's identity.

              • FC-1.2.11

                Islamic bank licensees must also obtain and document the following due diligence information. These due diligence requirements must be incorporated in the licensee's new business procedures:

                (a) enquire as to the structure of the legal entity or trust sufficient to determine and verify the identity of the ultimate beneficial owner of the funds, the ultimate provider of funds (if different), and ultimate controller of the funds (if different);
                (b) ascertain whether the legal entity has been or is in the process of being wound up, dissolved, struck off or terminated;
                (c) obtain the names, country of residence and nationality of Directors or partners (only necessary for private or unlisted companies);
                (d) require, through new customer documentation or other transparent means, updates on significant changes to corporate ownership and/or legal structure;
                (e) obtain and verify the identity of shareholders holding 20% or more of the issued capital (where applicable). The requirement to verify the identity of these shareholders does not apply in the case of listed companies;
                (f) in the case of trusts or similar arrangements, establish the identity of the settlor(s), trustee(s), and beneficiaries (including making such reasonable enquiries as to ascertain the identity of any other potential beneficiary, in addition to the named beneficiaries of the trust); and
                (g) where a licensee has reasonable grounds for questioning the authenticity of the information supplied by a customer, conduct additional due diligence to confirm the above information.

              • FC-1.2.12

                For the purposes of Paragraph FC-1.2.11, acceptable means of undertaking such due diligence might include taking bank references; visiting or contacting the company by telephone; undertaking a company search or other commercial enquiries; accessing public and private databases (such as stock exchange lists); making enquiries through a business information service or credit bureau; confirming a company's status with an appropriate legal or accounting firm; or undertaking other enquiries that are commercially reasonable.

          • FC-1.3 FC-1.3 Enhanced Customer Due Diligence: General Requirements

            • FC-1.3.1

              Enhanced customer due diligence must be performed on those customers identified as having a higher risk profile, and additional inquiries made or information obtained in respect of those customers.

            • FC-1.3.2

              The additional information referred to in Paragraph FC-1.3.1 might include documents (either in hard copy or electronic format) relating to the following:

              (a) evidence of a person's permanent address through the use of a credit reference agency search or through independent verification by home visit;
              (b) a personal reference (e.g. by an existing customer of the Islamic bank licensee);
              (c) another licensed entity's reference and contact with the concerned licensee regarding the customer;
              (d) documentation outlining the customer's source of wealth;
              (e) documentation outlining the customer's source of income; and
              (f) independent verification of employment, or public position held.

            • FC-1.3.3

              In addition to the general rule contained in Paragraph FC-1.3.1 above, special care is required in the circumstances specified in Sections FC-1.4 to FC-1.9 inclusive.

          • FC-1.4 FC-1.4 Enhanced Customer Due Diligence: Non face-to-face Business and New Technologies

            • FC-1.4.1

              Islamic bank licensees must establish specific procedures for verifying customer identity where no face-to-face contact takes place.

            • FC-1.4.2

              Where no face-to-face contact takes place, Islamic bank licensees must take additional measures (to those specified in Section FC-1.2), in order to mitigate the potentially higher risk associated with such business. In particular, Islamic bank licensees must take measures:

              (a) to ensure that the customer is the person they claim to be; and
              (b) to ensure that the address provided is genuinely the customer's.

            • FC-1.4.3

              There are a number of checks that can provide a Islamic bank licensee with a reasonable degree of assurance as to the authenticity of the applicant. They include:

              (a) telephone contact with the applicant on an independently verified home or business number;
              (b) with the customer's consent, contacting an employer to confirm employment, via phone through a listed number or in writing; and
              (c) salary details appearing on recent bank statements.

            • FC-1.4.4

              financial services provided via post, telephone or internet pose greater challenges for customer identification and AML/CFT purposes. Islamic bank licensees must establish procedures to prevent the misuse of technological developments in money laundering or terrorist financing schemes. Specifically, banks which provide significant electronic and internet banking services to their customers, should connect a programme to such systems to highlight all unusual transactions so as to enable the concerned bank to report such transactions. Islamic bank licensees must also ensure that they comply with any e-commerce laws and/or BMA regulations issued from time to time.

          • FC-1.5 FC-1.5 Enhanced Customer Due Diligence: Politically Exposed Persons ("PEPs")

            • FC-1.5.1

              Islamic bank licensees must have appropriate risk management systems to determine whether a customer is a Politically Exposed Person ('PEP') , both at the time of establishing business relations and thereafter on a periodic basis. Licensees must utilize publicly available databases and information to establish whether a customer is a PEP.

            • FC-1.5.2

              Islamic bank licensees must establish a client acceptance policy with regard to PEPs, taking into account the reputational and other risks involved. Senior management approval must be obtained before a PEP is accepted as a customer.

            • FC-1.5.3

              Where an existing customer is a PEP, or subsequently becomes a PEP, enhanced monitoring and customer due diligence measures must include:

              (a) analysis of complex financial structures, including trusts, foundations or international business corporations;
              (b) a written record in the customer file to establish that reasonable measures have been taken to establish both the source of wealth and the source of funds;
              (c) development of a profile of anticipated customer activity, to be used in on-going monitoring;
              (d) approval of senior management for allowing the customer relationship to continue; and
              (e) ongoing account monitoring of the PEP's account by senior management (such as the MLRO).

            • FC-1.5.4

              "Politically Exposed Persons" mean individuals who are, or have been, entrusted with prominent public functions in Bahrain or a foreign country, such as Heads of State or government, senior politicians, senior government, judicial or military officials, senior executives of state owned corporations or important political party officials. Business relationships with family members or close associates of PEPs involve reputational risks similar to PEPs themselves. The definition is not intended to cover middle-ranking or more junior officials in the foregoing categories. Bahraini PEPs would include all Ministers, all MPs, and all Ministry officials with the rank of Undersecretary or above.

          • FC-1.6 FC-1.6 Enhanced Due Diligence: Charities, Clubs and Other Societies

            • FC-1.6.1

              Financial services must not be provided to charitable funds and religious, sporting, social, cooperative and professional societies, before an original certificate authenticated by the relevant Ministry confirming the identities of those purporting to act on their behalf (and authorising them to obtain the said service) has been obtained. For Clubs and Societies registered with the General Organisation for Youth and Sports (GOYS), Islamic bank licensees must contact GOYS to clarify whether the account may be opened in accordance with the rules of GOYS.

            • FC-1.6.2

              Islamic bank licensees are reminded that clubs and societies registered with GOYS may only have one account with banks in Bahrain.

            • FC-1.6.3

              Charities should be subject to enhanced transaction monitoring by banks. Islamic bank licensees should develop a profile of anticipated account activity (in terms of payee countries and recipient organisations in particular).

            • FC-1.6.4

              Islamic bank licensees must report all payments and transfers of BD3,000 (or equivalent in foreign currencies) and above, from accounts held by charities registered in Bahrain. The report must be submitted to the BMA's Compliance Unit (see FC-5.3 for contact address), giving details of the amount transferred, account name, number and beneficiary name account and bank details. Islamic bank licensees must ensure that such transfers are in accordance with the spending plans of the charity (in terms of amount, recipient and country).

          • FC-1.7 FC-1.7 Enhanced Due Diligence: "Pooled Funds"

            • FC-1.7.1

              Where Islamic bank licensees receive pooled funds managed by professional intermediaries (such as investment and pension fund managers, stockbrokers and lawyers or authorised money transferors), they must apply CDD measures contained in Section FC-1.9 to the professional intermediary. In addition, Islamic bank licensees must verify the identity of the beneficial owners of the funds where required as detailed in Paragraphs FC-1.7.2 or FC-1.7.3 below.

            • FC-1.7.2

              Where funds pooled in an account are not co-mingled (i.e. where there are "sub-accounts" attributable to each beneficiary) all beneficial owners must be identified by the Islamic bank licensee, and their identity verified in accordance with the requirements in Section FC-1.2.

            • FC-1.7.3

              For accounts held by intermediaries resident in Bahrain, where such funds are co-mingled, the Islamic bank licensee must make a reasonable effort (in the context of the nature and amount of the funds received) to look beyond the intermediary and determine the identity of the beneficial owners or underlying clients, particularly where funds are banked and then transferred onward to other financial institutions (e.g. in the case of accounts held on behalf of authorised money transferors). Where, however, the intermediary is subject to equivalent regulatory and money laundering regulation and procedures (and, in particular, is subject to the same due diligence standards in respect of its client base) the BMA will not insist upon all beneficial owners being identified provided the Islamic bank licensee has undertaken reasonable measures to determine that the intermediary has engaged in a sound customer due diligence process, consistent with the requirements in Section FC-1.8.

            • FC-1.7.4

              For accounts held by intermediaries from foreign jurisdictions, the intermediary must be subject to requirements to combat money laundering and terrorist financing consistent with the FATF 49 Recommendations and the intermediary must be supervised for compliance with those requirements. The bank must obtain documentary evidence to support the case for not carrying out customer due diligence measures beyond identifying the intermediary. The bank must satisfy itself that the intermediary has identified the underlying beneficiaries and has the systems and controls to allocate the assets in the pooled accounts to the relevant beneficiaries. The due diligence process contained in Section FC-1.8 must be followed.

            • FC-1.7.5

              Where the intermediary is not empowered to provide the required information on beneficial owners (e.g. lawyers bound by professional confidentiality rules) or where the intermediary is not subject to the same due diligence standards referred to above, a bank must not permit the intermediary to open an account or allow the account to continue to operate, unless specific permission has been obtained in writing from the BMA.

          • FC-1.8 FC-1.8 Enhanced Due Diligence for Correspondent Banking Relationships

            • FC-1.8.1

              The customer due diligence measures outlined under Section FC-1.2 must be carried out in the normal way on the respondent bank. Islamic bank licensees which intend to act as correspondent banks must gather sufficient information (e.g. through a questionnaire) about their respondent banks to understand the nature of the respondent's business. Factors to consider to provide assurance that satisfactory measures are in place at the respondent bank include:

              (a) Information about the respondent bank's ownership structure and management;
              (b) Major business activities of the respondent and its location (i.e. whether it is located in a FATF compliant jurisdiction) as well as the location of its parent (where applicable);
              (c) Where the customers of the respondent bank are located;
              (d) The respondent's AML/CFT controls;
              (e) The purpose for which the account will be opened;
              (f) Confirmation that the respondent bank has verified the identity of any third party entities that will have direct access to the correspondent banking services without reference to the respondent bank (e.g. in the case of "payable through" accounts);
              (g) The extent to which the respondent bank performs ongoing due diligence on customers with direct access to the account, and the condition of bank regulation and supervision in the respondent's country (e.g. from published FATF reports). Banks should take into account the country where the respondent bank is located and whether that country abides by the FATF 40+ 9 Recommendations when establishing correspondent relationships with foreign banks. Banks should obtain where possible copies of the relevant laws and regulations concerning AML/CFT and satisfy themselves that respondent banks have effective customer due diligence measures consistent with the FATF 40+ 9 Recommendations;
              (h) Confirmation that the respondent bank is able to provide relevant customer identification data on request to the correspondent bank; and
              (i) Whether the respondent bank been subject to a money laundering or terrorist financing investigation.

            • FC-1.8.2

              Islamic bank licensees must implement the following additional measures, prior to opening a correspondent banking relationship:

              (a) Complete a signed statement that outlines the respective responsibilities of each institution in relation to money laundering detection and monitoring responsibilities; and
              (b) Ensure that the correspondent banking relationship has the approval of senior management.

            • FC-1.8.3

              Islamic bank licensees must refuse to enter into or continue a correspondent banking relationship with a bank incorporated in a jurisdiction in which it has no physical presence and which is unaffiliated with a regulated financial group (i.e. "shell banks", see Section FC-1.10). Banks must pay particular attention when entering into or continuing relationships with respondent banks located in jurisdictions that have poor KYC standards or have been identified by the FATF as being "non-cooperative" in the fight against money laundering/terrorist financing.

          • FC-1.9 FC-1.9 Introduced Business from Professional Intermediaries

            • FC-1.9.1

              An Islamic bank licensee may only accept customers introduced to it by other financial institutions or intermediaries, if it has satisfied itself that the financial institution or intermediary concerned is subject to FATF-equivalent customer due diligence measures. Where Islamic bank licensees delegate part of the customer due diligence measures to another financial institution or intermediary, the responsibility for meeting the requirements of Chapters 1 and 2 remains with the Islamic bank licensee, not the third party.

            • FC-1.9.2

              Islamic bank licensees may only accept introduced business if all of the following conditions are satisfied:

              (a) the customer due diligence measures applied by the introducer are consistent with those required by the FATF 40 + 9 Recommendations;
              (b) a formal agreement is in place defining the respective roles of the licensee and the introducer in relation to customer due diligence measures. The agreement must specify that the customer due diligence measures of the introducer will comply with the FATF 40 + 9 Recommendations;
              (c) the introducer is able to provide all relevant data pertaining to the customer's identity, the identity of the customer and beneficial owner of the funds (where different) and, where applicable, the party/parties on whose behalf the customer is acting; also, the introducer has confirmed that the licensee will be allowed to verify the customer due diligence measures undertaken by the introducer at any stage; and
              (d) written confirmation is provided by the introducer confirming that all customer due diligence measures required by the FATF 40 + 9 Recommendations have been followed and the customer's identity established and verified. In addition, the confirmation must state that any identification documents or other customer due diligence material can be accessed by the Islamic bank licensee and that these documents will be kept for at least five years after the business relationship has ended.

            • FC-1.9.3

              The Islamic bank licensee must perform periodic reviews ensuring that any introducer on which it relies is in compliance with the FATF 40 + 9 Recommendations. Where the introducer is resident in another jurisdiction, the Islamic bank licensee must also perform periodic reviews to verify whether the jurisdiction is in compliance with the FATF 40 + 9 Recommendations.

            • FC-1.9.4

              Should the Islamic bank licensee not be satisfied that the introducer is in compliance with the requirements of the FATF 40 + 9 Recommendations, the licensee must conduct its own customer due diligence on introduced business, or not accept further introductions, or discontinue the business relationship with the introducer.

          • FC-1.10 FC-1.10 Shell Banks

            • FC-1.10.1

              Islamic bank licensees must not establish business relations with banks, which have no physical presence or "mind and management" in the jurisdiction in which they are licensed ("shell banks"). Banks must not knowingly establish relations with banks that have relations with shell banks.

            • FC-1.10.2

              Islamic bank licensees must make a suspicious transaction report to the Anti-Money Laundering Unit and the Compliance Unit if they are approached by a shell bank or an institution they suspect of being a shell bank.

          • FC-1.11 FC-1.11 Simplified Customer Due Diligence

            • FC-1.11.1

              Islamic bank licensees may apply simplified customer due diligence measures, as described in Paragraphs FC-1.11.2 to FC-1.11.8, if:

              (a) the customer is the Bahrain Monetary Agency ('BMA'), the Bahrain Stock Exchange ('BSE') or a licensee of the BMA;
              (b) the customer is a Ministry of a Gulf Cooperation Council ('GCC') or Financial Action Task Force ('FATF') member state government, a company in which a GCC government is a majority shareholder, or a company established by decree in the GCC;
              (c) the customer is a company listed on a GCC or FATF member state stock exchange with equivalent disclosure standards to those of the BSE;
              (d) the customer is a financial institution whose entire operations are subject to AML/CFT requirements consistent with the FATF Recommendations / Special Recommendations and it is supervised by a financial services supervisor in a FATF or GCC member state for compliance with those requirements;
              (e) the customer is a financial institution which is a subsidiary of a financial institution located in a FATF or GCC member state, and the AML/CFT requirements applied to its parent also apply to the subsidiary; or
              (f) the customer is a borrower in a syndicated transaction where the agent bank is a financial institution whose entire operations are subject to AML/CFT requirements consistent with the FATF Recommendations / Special Recommendations and it is supervised by a financial services supervisor in a FATF or GCC member state for compliance with those requirements.
              (g) the transaction is a one-off or occasional transaction not exceeding BD 6,000 (or equivalent in other currencies), or one of a number of transactions which are related and, when taken together, do not exceed BD 6,000 per year (or equivalent in other currencies).

            • FC-1.11.2

              For customers falling under categories a–f specified in Paragraph FC-1.11.1, the information required under Paragraph FC-1.2.1 (for natural persons) or FC-1.2.7 (for legal entities or legal arrangements such as trusts) must be obtained. However, the verification and certification requirements in Paragraphs FC-1.2.3 and FC-1.2.8, and the due diligence requirements in Paragraph FC-1.2.11, may be dispensed with. Where the account is a correspondent banking relationship, enhanced due diligence applies. Refer to Section FC-1.8.

            • FC-1.11.3

              For customers falling under category (g) in paragraph FC-1.11.1, the customer's name and contact information must be recorded. However, the verification, certification and due diligence requirements in Paragraphs FC-1.2.3, FC-1.2.8 and FC-1.2.11 may be dispensed with. As a matter of prudence, it is recommended that identification documentation is checked by the Islamic Bank Licensee. Islamic bank licensees may, of course, continue to apply the verification, certification and due diligence requirements mentioned in Paragraph FC-1.11.2 for their own purposes.

            • FC-1.11.4

              Islamic bank licensees wishing to apply simplified due diligence measures as allowed for under Paragraph FC-1.11.1 must retain documentary evidence supporting their categorisation of the customer.

            • FC-1.11.5

              Examples of such documentary evidence may include a printout from a regulator's website, confirming the licensed status of an institution, and internal papers attesting to a review of the AML/CFT measures applied in a jurisdiction.

            • FC-1.11.6

              Islamic bank licensees may use authenticated SWIFT messages as a basis for confirmation of the identity of a financial institution under FC-1.11.1 (d) and (e) where it is dealing as principal. For customers coming under Paragraph FC-1.11.1 (d) and (e), Islamic bank licensees must also obtain and retain a written statement from the parent institution of the subsidiary concerned, confirming that the subsidiary is subject to the same AML/CFT measures as its parent.

            • FC-1.11.7

              Simplified customer due diligence measures must not be applied where an Islamic bank licensee knows, suspects, or has reason to suspect, that the applicant is engaged in money laundering or terrorism financing or that the transaction is carried out on behalf of another person engaged in money laundering or terrorism financing.

            • FC-1.11.8

              Simplified customer due diligence measures must not be applied where an Islamic bank licensee knows, suspects, or has reason to suspect, that transactions are linked, such that they exceed the threshold specified in Paragraph FC-1.11.1 (g).

        • FC-2 FC-2 AML / CFT Systems and Controls

          • FC-2.1 FC-2.1 General Requirements

            • FC-2.1.1

              Islamic bank licensees must take reasonable care to establish and maintain appropriate systems and controls for compliance with the requirements of this Module and to limit their vulnerability to financial crime. These systems and controls must be documented, and approved and reviewed annually by the Board of the licensee. The documentation, and the Board's review and approval, must be made available upon request to the BMA.

            • FC-2.1.2

              The above systems and controls, and associated documented policies and procedures, should cover standards for customer acceptance, on-going monitoring of high-risk accounts, staff training and adequate screening procedures to ensure high standards when hiring employees.

            • FC-2.1.3

              Islamic bank licensees must incorporate Key Performance Indicators (KPIs) to ensure compliance with AML/CFT requirements by all staff. The performance against the KPIs must be adequately reflected in their annual performance evaluation and in their remuneration (See also Paragraph HC-5.4.9A).

              Added: April 2020

          • FC-2.2 FC-2.2 Ongoing Customer Due Diligence and Transaction Monitoring

            • Risk Based Monitoring

              • FC-2.2.1

                Islamic bank licensees must develop risk-based monitoring systems appropriate to the complexity of their business, their number of clients and types of transactions. These systems must be configured to identify significant or abnormal transactions or patterns of activity. Such systems must include limits on the number, types or size of transactions undertaken outside expected norms; and must include limits for cash and non-cash transactions.

              • FC-2.2.2

                Islamic bank licensees' risk-based monitoring systems should therefore be configured to help identify:

                (a) transactions which do not appear to have a clear purpose or which make no obvious economic sense;
                (b) significant or large transactions not consistent with the normal or expected behaviour of a customer; and
                (c) unusual patterns of activity (relative to other customers of the same profile or of similar types of transactions, for instance because of differences in terms of volumes, transaction type, or flows to or from certain countries), or activity outside the expected or regular pattern of a customer's account activity.

            • Automated Transaction Monitoring

              • FC-2.2.3

                Islamic bank licensees must consider the need to include automated transaction monitoring as part of their risk-based monitoring systems to spot abnormal or unusual flows of funds. In the absence of automated transaction monitoring systems, all transactions above BD 6,000 must be viewed as "significant" and be captured in a daily transactions report for monitoring by the MLRO or a relevant delegated official, and records retained by the Islamic bank licensees for five years after the date of the transaction.

              • FC-2.2.4

                BMA would expect larger Islamic bank licensees to include automated transaction monitoring as part of their risk-based monitoring systems. See also Chapters FC-4 and FC-7, regarding the responsibilities of the MLRO and record-keeping requirements.

            • Unusual Transactions or Customer Behaviour

              • FC-2.2.5

                Where a Islamic bank licensee's risk-based monitoring systems identify significant or abnormal transactions (as defined in FC-2.2.2 and FC-2.2.3), it must verify the source of funds for those transactions, particularly where the transactions are above the occasional transactions threshold of BD 6,000. Furthermore, Islamic bank licensees must examine the background and purpose to those transactions and document their findings.

              • FC-2.2.6

                The investigations required under FC-2.2.5 must be carried out by the MLRO (or relevant delegated official). The documents relating to these findings must be maintained for five years from the date when the transaction was completed (see also FC-7.1.1 (b)).

              • FC-2.2.7

                Islamic bank licensees must consider instances where there is a significant, unexpected or unexplained change in customer activity.

              • FC-2.2.8

                When an existing customer closes one account and opens another, the Islamic bank licensee must review its customer identity information and update its records accordingly. Where the information available falls short of the requirements contained in Chapter FC-1, the missing or out of date information must be obtained and re-verified with the customer.

              • FC-2.2.9

                Once identification procedures have been satisfactorily completed and, as long as records concerning the customer are maintained in line with Chapters FC-1 and FC-7, no further evidence of identity is needed when transactions are subsequently undertaken within the expected level and type of activity for that customer, provided reasonably regular contact has been maintained between the parties and no doubts have arisen as to the customer's identity.

            • Maintaining Documentation

              • FC-2.2.10

                Islamic bank licensees must take reasonable steps to ensure that they receive and maintain up-to-date copies of the identification documents specified in Chapter FC-1. Islamic bank licensees must require all customers to provide up-to-date identification documents in their standard terms and conditions of business.

              • FC-2.2.11

                Islamic bank licensees must review and update their customer due diligence information at least every three years. If, upon performing such a review, copies of identification documents are more than 12 months out of date, the Islamic bank licensee must take steps to obtain updated copies as soon as possible.

        • FC-3 FC-3 Money transfers and alternative remittances

          • FC-3.1 FC-3.1 Electronic transfers

            • Outward Transfers

              • FC-3.1.1

                Islamic bank licensees must include all required originator information details with the accompanying electronic transfers of funds they make on behalf of their customers. Non-routine transfers must not be batched, if batching increases the risks of money laundering or terrorist financing. This obligation does not apply where the transfer is made by a bank acting as principal or acting on behalf of another bank as principal such as in the case of payment of spot FX transactions.

              • FC-3.1.2

                For the purposes of this Chapter, "Originator Information" means:

                (a) The name of the payer;
                (b) The address of the payer; and
                (c) The account number of the payer (where funds are being remitted from an account with your bank).

              • FC-3.1.3

                It is not necessary for the recipient institution to pass the originator information on to the payee. The obligation is discharged simply by notifying the recipient institution of the originator information at the time the transfer is made.

            • Inward Transfers

              • FC-3.1.4

                Banks must:

                (a) Maintain records (in accordance with Chapter FC-7 of this Module) of all originator information received with an inward transfer; and
                (b) Carefully scrutinise inward transfers which do not contain originator information (i.e. full name, address and account number or a unique customer identification number). Licensees should presume that such transfers are "suspicious transactions" and pass them to the MLRO for review for determination as to possible filing of an STR, unless (a), the sending institution is able to promptly (i.e. within two business days) advise the licensee in writing of the originator information upon the licensee's request; or (b) the sending institution and the licensee are acting on their own behalf (as principals).

          • FC-3.2 FC-3.2 Remittances on behalf of other Money Transferors

            • FC-3.2.1

              Whenever a Islamic bank licensee uses the services of Authorised Money Transferors to effect the transfer of funds for a customer to a person or organisation in another country, that licensee must, in respect of the amount so transferred, maintain records of:

              (a) The identity of its customer(s) in accordance with Chapters FC-1 and FC-7 of this Regulation; and
              (b) The exact amount transferred for each such customer (particularly where a single transfer is effected for more than one customer).

            • FC-3.2.2

              Islamic bank licensees must be able to produce this information for inspection immediately upon request by the BMA.

            • FC-3.2.3

              Islamic bank licensees must not transfer funds for customers to a person or organisation in another country by any means other than through an Authorised Money Transferor. Where a licensee is found to be in contravention of this rule, the Agency will not hesitate to impose sanctions upon that licensee (and in serious cases may revoke that licensee's license).

        • FC-4 FC-4 Money Laundering Reporting Officer (MLRO)

          • FC-4.1 FC-4.1 Appointment of MLRO

            • FC-4.1.1

              Islamic bank licensees must appoint a money laundering reporting officer ("MLRO"). The MLRO must be approved by BMA prior to his appointment. The Agency should be notified of the appointment of the MLRO, using the MLRO Form (Appendix FC-4).

            • FC-4.1.2

              The position of MLRO must not be combined with functions that create potential conflicts of interest, such as an internal auditor or business line head. The position of MLRO may not be outsourced.

            • FC-4.1.3

              Subject to Paragraph FC-4.1.2, however, the position of MLRO may otherwise be combined with other functions in the Islamic bank licensee, such as that of Compliance officer, in cases where the volume and geographical spread of the business is limited and, therefore, the demands of the function are not likely to require a full time resource. Paragraph FC-4.1.6 requires that the MLRO is a Director or employee of the licensee, so the function may not be outsourced to a third party employee.

            • FC-4.1.4

              Islamic bank licensees must appoint a deputy MLRO to act for the MLRO in his absence. The deputy MLRO must be resident in Bahrain unless otherwise agreed with the BMA.

            • FC-4.1.5

              Islamic bank licensees should note that although the MLRO may delegate some of his functions, either within the licensee or even possibly (in the case of larger groups) to individuals performing similar functions for other group entities, that the responsibility for compliance with the requirements of this Module remains with the licensee and the designated MLRO

            • FC-4.1.6

              So that he can carry out his functions effectively, Islamic bank licensees must ensure that their MLRO:

              (a) is a Director or a member of senior management of the licensee;
              (b) has a sufficient level of seniority within the Islamic bank licensee, has the authority to act without interference from business line management and has direct access to the Board and senior management (where necessary);
              (c) has sufficient resources, including sufficient time and (if necessary) support staff, and has designated a replacement to carry out the function should the MLRO be unable to perform his duties;
              (d) has unrestricted access to all transactional information relating to any financial services provided by the Islamic bank licensee to that customer, or any transactions conducted by the Islamic bank licensee on behalf of a customer;
              (e) is provided with timely information needed to identify, analyse and effectively monitor customer accounts;
              (f) has access to all customer due diligence information obtained by the Islamic bank licensee; and
              (g) is resident in Bahrain.

            • FC-4.1.7

              In addition, Islamic bank licensees must ensure that their MLRO is able to:

              (a) monitor the day-to-day operation of its policies and procedures relevant to this Module; and
              (b) respond promptly to any reasonable request for information made by the Anti-Money Laundering Unit or the BMA.

            • FC-4.1.8

              If the position of MLRO falls vacant, the Islamic bank licensee must appoint a permanent replacement (after obtaining BMA approval), within 120 calendar days of the vacancy occurring. Pending the appointment of a permanent replacement, the licensee must make immediate interim arrangements (including the appointment of an acting MLRO) to ensure continuity in the MLRO function's performance. These interim arrangements must be approved by the BMA.

          • FC-4.2 FC-4.2 Responsibilities of the MLRO

            • FC-4.2.1

              The MLRO is responsible for:

              (a) establishing and maintaining the Islamic bank licensee's AML/CFT policies and procedures;
              (b) ensuring that the licensee complies with the AML Law and any other applicable AML/CFT legislation and regulations;
              (c) ensuring day-to-day compliance with the licensee's own internal AML/CFT policies and procedures;
              (d) acting as the Islamic bank licensee's main point of contact in respect of handling internal suspicious transactions reports from the licensee's staff (refer to Section FC-5.1) and as the main contact for the Financial Intelligence Unit, the BMA and other concerned bodies regarding AML/CFT;
              (e) making external suspicious transactions reports to the Anti-Money Laundering Unit and Compliance Unit (refer to Section FC-5.2);
              (f) taking reasonable steps to establish and maintain adequate arrangements for staff awareness and training on AML/CFT matters (whether internal or external), as per Chapter FC-5;
              (g) producing annual reports on the effectiveness of the licensee's AML / CFT controls, for consideration by senior management, as per Paragraph FC-4.3.3;
              (h) on-going monitoring of what may, in his opinion, constitute high-risk customer accounts; and
              (i) maintaining all necessary CDD, transactions, STR and staff training records for the required periods (refer to Section FC-7.1).

          • FC-4.3 FC-4.3 Compliance monitoring

            • Annual Compliance Review

              • FC-4.3.1

                An Islamic bank licensee must review the effectiveness of its AML/CFT procedures, systems and controls at least once each calendar year. The review must cover the Islamic bank licensee and its branches and subsidiaries both inside and outside the Kingdom of Bahrain. The scope of the review must include:

                (a) a report, containing the number of internal reports made in accordance with Section FC-5.1, a breakdown of all the results of those internal reports and their outcomes for each segment of the licensee's business, and an analysis of whether controls or training need to be enhanced;
                (b) a report, indicating the number of external reports made in accordance with Section FC-5.2 and, where a Islamic bank licensee has made an internal report but not made an external report, noting why no external report was made;
                (c) a sample test of compliance with this Module's customer due diligence requirements; and
                (d) a report as to the quality of the Islamic bank licensee's anti-money laundering procedures, systems and controls, and compliance with the AML Law and this Module.

              • FC-4.3.2

                The reports listed under Paragraph FC-4.3.1 (a) and (b) must be made by the MLRO. The sample testing required under Paragraph FC-4.3.1 (c) must be undertaken either by the licensee's internal audit function or its external auditors. The report required under Paragraph FC-4.3.1 (d) must be made by the licensee's external auditors.

              • FC-4.3.3

                The reports listed under Paragraph FC-4.3.1 must be submitted to the licensee's Board, for it to review and commission any required remedial measures, and copied to the licensee's senior management.

              • FC-4.3.4

                The purpose of the annual compliance review is to assist a licensee's Board and senior management to assess, amongst other things, whether internal and external reports are being made (as required under Chapter FC-5), and whether the overall number of such reports (which may otherwise appear satisfactory) does not conceal inadequate reporting in a particular segment of the licensee's business (or, where relevant, in particular branches or subsidiaries). Islamic bank licensees should use their judgement as to how the reports listed under Paragraph FC-4.3.1 (a) and (b) should be broken down in order to achieve this aim (e.g. by branches, departments, product lines, etc).

              • FC-4.3.5

                Islamic bank licensees must instruct their external auditors to produce the report referred to in Paragraph FC-4.3.1 (d). The report must be submitted to the BMA by the 30th of April of the following year. The findings of this review must be received and acted upon by the licensee.

              • FC-4.3.6

                The external auditors may rely upon work performed by the licensee's internal audit function, as part of their procedures for producing the statement referred to in Paragraph FC-4.3.5.

        • FC-5 FC-5 Suspicious Transactions Reporting

          • FC-5.1 FC-5.1 Internal reporting

            • FC-5.1.1

              Islamic bank licensees must implement procedures to ensure that staff who handle customer business (or are managerially responsible for such staff) make a report promptly to the MLRO if they know or suspect that a customer (or a person on whose behalf a customer may be acting) is engaged in money laundering or terrorism financing, or if the transaction or the customer's conduct otherwise appears unusual or suspicious. These procedures must include arrangements for disciplining any member of staff who fails, without reasonable excuse, to make such a report.

            • FC-5.1.2

              Where Islamic bank licensees' internal processes provide for staff to consult with their line managers before sending a report to the MLRO, such processes must not be used to prevent reports reaching the MLRO, where staff have stated that they have knowledge or suspicion that a transaction may involve money laundering or terrorist financing.

          • FC-5.2 FC-5.2 External reporting

            • FC-5.2.1

              Islamic bank licensees must take reasonable steps to ensure that all reports made under Section FC-5.1 are considered by the MLRO (or his duly authorised delegate). Having considered the report and any other relevant information the MLRO (or his duly authorised delegate), if he still suspects that a person has been engaged in money laundering or terrorism financing, or the activity concerned is otherwise still regarded as suspicious, must report the fact promptly to the relevant authorities. Where no report is made, the MLRO must document the reasons why.

            • FC-5.2.2

              To take reasonable steps, as required under Paragraph FC-5.2.1, Islamic bank licensees must:

              (a) require the MLRO to consider reports made under Section FC-5.1.3 in the light of all relevant information accessible to or reasonably obtainable by the MLRO;
              (b) permit the MLRO to have access to any information, including know your customer information, in the Islamic bank licensee's possession which could be relevant; and
              (c) ensure that where the MLRO, or his duly authorised delegate, suspects that a person has been engaged in money laundering or terrorist financing, a report is made by the MLRO which is not subject to the consent or approval of any other person.

            • FC-5.2.3

              Reports to the relevant authorities made under Paragraph FC-5.2.1 must be sent to the Anti-Money Laundering Unit at the Ministry of the Interior, with a copy sent to the BMA's Compliance Directorate. Reports must be made using the Suspicious Transaction Report (STR) form and related instructions, included in Part B of Volume 2 (Islamic Banks).

            • FC-5.2.4

              Islamic bank licensees must report all suspicious transactions or attempted transactions. This reporting requirement applies regardless of whether the transaction involves tax matters.

            • FC-5.2.5

              Islamic bank licensees must retain all relevant details of STRs submitted to the relevant authorities, for at least five years.

            • FC-5.2.6

              In accordance with the AML Law, Islamic bank licensees, their Directors, officers and employees must not warn or inform ("tipping off") their customers, the beneficial owner or other subjects of the STR when information relating to them is being reported to the relevant authorities.

          • FC-5.3 FC-5.3 Contacting the Relevant Authorities

            • FC-5.3.1

              Reports made by the MLRO or his duly authorised delegate under Section FC-5.2 must be sent to the Anti-Money Laundering Unit at the Ministry of the Interior and copied to the Compliance Unit at the Bahrain Monetary Agency at the following addresses:

              Anti-Money Laundering Unit
              General Directorate of Criminal Investigation
              Ministry of Interior
              P.O. Box 26698
              Manama, Kingdom of Bahrain
              Telephone: 17 718888
              Fax: 17 715818
              E-mail: aecd@batelco.com.bh or amlu@batelco.com.bh

              Head of Compliance Unit
              Bahrain Monetary Agency
              P.O. Box 27
              Manama, Kingdom of Bahrain
              Telephone: 17 547922
              Fax: 17 535673
              E-mail: cunit@bma.gov.bh;aljaber@bma.gov.bh

        • FC-6 FC-6 Staff Training and Recruitment

          • FC-6.1 FC-6.1 General Requirements

            • FC-6.1.1

              An Islamic bank licensee must take reasonable steps to provide periodic training and information to ensure that staff who handle customer transactions, or are managerially responsible for such transactions, are made aware of:

              (a) their responsibilities under the AML Law, this Module, and any other relevant AML / CFT laws and regulations;
              (b) the identity and responsibilities of the MLRO and his deputy;
              (c) the potential consequences, both individual and corporate, of any breach of the AML Law, this Module and any other relevant AML / CFT laws or regulations;
              (d) the Islamic bank licensee's current AML/CFT policies and procedures;
              (e) money laundering and terrorist financing typologies and trends;
              (f) the type of customer activity or transaction that may justify an internal STR;
              (g) the Islamic bank licensee's procedures for making internal STRs; and
              (h) customer due diligence measures with respect to establishing business relations with customers.

            • FC-6.1.2

              The information referred to in Paragraph FC-6.1.1 must be brought to the attention of relevant new employees of Islamic bank licensees, and must remain available for reference by staff during their period of employment

            • FC-6.1.3

              Relevant new employees must be given AML/CFT training within three months of joining an Islamic bank licensee.

            • FC-6.1.4

              Islamic bank licensees must ensure that their AML/CFT training for relevant staff remains up-to-date, and is appropriate given the licensee's activities and customer base.

            • FC-6.1.5

              The BMA would normally expect AML/CFT training to be provided to relevant staff at least once a year.

            • FC-6.1.6

              Islamic bank licensees must develop adequate screening procedures to ensure high standards when hiring employees. These procedures must include controls to prevent criminals or their associates from being employed by licensees.

        • FC-7 FC-7 Record Keeping

          • FC-7.1 FC-7.1 General Requirements

            • CDD and Transaction Records

              • FC-7.1.1

                Islamic bank licensees must comply with the record keeping requirements contained in the AML Law. Islamic bank licensees must therefore retain adequate records (including accounting and identification records), for the following minimum periods:

                (a) for customers, in relation to evidence of identity and business relationship records (such as application forms and business correspondence), for at least five years after the customer relationship has ceased; and
                (b) for transactions, in relation to documents enabling a reconstitution of the transaction concerned, for at least five years after the transaction was completed.

            • Compliance Records

              • FC-7.1.2

                Islamic bank licensees must retain copies of the reports produced for their annual compliance review, as specified in Paragraph FC-4.3.1, for at least five years. Licensees must also maintain for 5 years reports made to, or by, the MLRO made in accordance with Sections FC-5.1 and FC-5.2, and records showing how these reports were dealt with and what action, if any, was taken as a consequence of those reports.

            • Training Records

              • FC-7.1.3

                Islamic bank licensees must maintain for at least five years, records showing the dates when AML/CFT training was given, the nature of the training, and the names of the staff that received the training.

            • Access

              • FC-7.1.4

                All records required to be kept under this Section must be made available for prompt and swift access by the relevant authorities or other authorised persons.

              • FC-7.1.5

                Islamic bank licensees are also reminded of the requirements contained in Chapter LR-6 (Books and Records).

        • FC-8 FC-8 NCCT Measures and Terrorist Financing

          • FC-8.1 FC-8.1 Special Measures for Non-Cooperative Countries or Territories ('NCCTs')

            • FC-8.1.1

              Islamic bank licensees must give special attention to any dealings they may have with entities or persons domiciled in countries or territories which are:

              (a) identified by the FATF as being "non-cooperative"; or
              (b) notified to Islamic bank licensees from time to time by the BMA.

            • FC-8.1.2

              Whenever transactions with such parties have no apparent economic or visible lawful purpose, their background and purpose must be re-examined and the findings documented. If suspicions remain about the transaction, these must be reported to the relevant authorities in accordance with Section FC-5.2.

          • FC-8.2 FC-8.2 Terrorist Financing

            • FC-8.2.1

              Islamic bank licensees must comply in full with the provisions of the UN Security Council Anti-terrorism Resolution No. 1373 of 2001 ('UNSCR 1373').

            • FC-8.2.2

              Any Islamic bank licensee that wishes, intends or has been requested to do anything that might contravene, in its reasonable opinion, the provisions of UNSCR 1373 (and in particular Article 1, paragraphs c) and d) of UNSCR 1373) must seek, in writing, the prior written opinion of the BMA on the matter.

            • FC-8.2.3

              A copy of UNSCR 1373 is included in Part B of Volume 2 (Islamic Banks), under 'Supplementary Information'.

            • FC-8.2.4

              Islamic bank licensees must report to the BMA details of:

              (a) funds or other financial assets or economic resources held with them which may be the subject of Article 1, paragraphs c) and d) of UNSCR 1373; and
              (b) all claims, whether actual or contingent, which the Islamic bank licensee has on persons and entities which may be the subject of Article 1, paragraphs c) and d) of UNSCR 1373.

            • FC-8.2.5

              For the purposes of Paragraph FC-8.2.4, 'funds or other financial resources' includes (but is not limited to) shares in any undertaking owned or controlled by the persons and entities referred to in Article 1, paragraph c) and d) of UNSCR 1373, and any associated dividends received by the licensee.

            • FC-8.2.6

              All reports or notifications under this Section must be made to the BMA's Compliance Unit.

            • FC-8.2.7

              See Section FC-5.3 for the Compliance Unit's contact details.

          • FC-8.3 FC-8.3 Designated Persons and Entities

            • FC-8.3.1

              Without prejudice to the general duty of all Islamic bank licensees to exercise the utmost care when dealing with persons or entities who might come under Article 1, paragraphs (c) and (d) of UNSCR 1373, Islamic bank licensees must not deal with any persons or entities designated by the BMA as potentially linked to terrorist activity.

            • FC-8.3.2

              The BMA from time to time issues to licensees lists of designated persons and entities believed linked to terrorism. Licensees are required to verify that they have no dealings with these designated persons and entities, and report back their findings to the BMA. Names designated by BMA include persons and entities designated by the United Nations, under UN Security Council Resolution 1267 ("UNSCR 1267").

            • FC-8.3.3

              Islamic bank licensees must report to the relevant authorities, using the procedures contained in Section FC-5.2, details of any accounts or other dealings with designated persons and entities, and comply with any subsequent directions issued by the relevant authorities.

        • FC-9 FC-9 Enforcement Measures

          • FC-9.1 FC-9.1 Regulatory Penalties

            • FC-9.1.1

              Without prejudice to any other penalty imposed by the BMA Law or the AML Law or the Penal Code of the Kingdom of Bahrain, failure by a bank to comply with this Regulation or any direction given hereunder shall result in the levying by the Agency, without need of a court order and at the Agency's discretion, of a fine of up to BD 20,000.

            • FC-9.1.2

              Module EN provides further information on the assessment of financial penalties and the criteria taken into account prior to imposing such fines (reference to Paragraph EN-5.1.4). Other enforcement measures may also be applied by BMA in response to a failure by a licensee to comply with this Module; these other measures are also set out in Module EN.

            • FC-9.1.3

              The BMA will endeavour to assist Islamic bank licensees to interpret and apply the rules and guidance in this Module. Islamic bank licensees may seek clarification on any issue by contacting the Compliance Unit (see Section FC-5.3 for contact details).

            • FC-9.1.4

              Without prejudice to the BMA's general powers under the law, the BMA may amend, clarify or issue further directions on any provision of this Module from time to time, by notice to its licensees.

        • FC-10 FC-10 AML / CFT Guidance and Best Practice

          • FC-10.1 FC-10.1 Guidance Provided by International Bodies

            • FATF: 40 Recommendations and 9 Special Recommendations

              • FC-10.1.1

                The Forty Recommendations (see www.FATF-gafi.org) and Nine Special Recommendations (together with their associated interpretative notes and best practices papers) issued by the Financial Action Task Force (FATF), provide the basic framework for combating money laundering activities and the financing of terrorism. FATF Recommendations 4–6, 8–11, 13–15, 17, 21–23, 25, 29–32 and 40 as well as Special Recommendations IV–IX, and the AML/CFT Methodology are specifically relevant to the banking sector.

              • FC-10.1.2

                The relevant authorities in Bahrain believe that the principles established by these Recommendations and Special Recommendations should be followed by licensees in all material respects, as representing best practice and prudence in this area.

            • Basel Committee: Statement on money laundering and Customer Due Diligence for banks

              • FC-10.1.3

                In December 1988, the Basel Committee on Banking Supervision issued a "Statement of Principles" followed by the Customer Due Diligence for Banks paper in October 2001 (with attachment dated February 2003 — see www.bis.org/publ/) with which internationally active banks of member states are expected to comply. These papers cover identifying customers, avoiding suspicious transactions, and co-operating with law enforcement agencies.

              • FC-10.1.4

                The BMA supports the above papers and the desirability of all Islamic bank licensees adhering to their requirements and guidance.

    • Prudential Requirements

      • PCD PCD Prudential Consolidation and Deduction Requirements

        • PCD-A PCD-A Introduction

          • PCD-A.1 PCD-A.1 Purpose

            • PCD-A.1.1

              This Module sets out the regulatory rules for prudential consolidation and pro-rata consolidation for banks where they own controlling or significant minority stakes in regulated financial entities (including qualifying holdings). It also sets out the framework for the prudential deductions from capital for (a) investments in regulated financial entities (below the significance threshold determined for consolidation and pro-rata consolidation), (b) significant investments in insurance entities (c) significant investments in commercial entities and (d) exposures to counterparties exceeding the large exposure limits as set out by CBB.

              Amended: January 2011
              Apr 08

            • PCD-A.1.2

              Consolidation and pro-rata consolidation, wherever referred to in this Module, denotes consolidation and pro-rata consolidation rules only for the purposes of computing regulatory minimum capital requirements and as such these do not impact on accounting consolidations and pro-rata consolidation of banks and banking groups, for which there are separate applicable standards and best practices.

            • PCD-A.1.3

              For prudential purposes, CBB will supervise banks and banking groups on a consolidated basis, in accordance with consolidation and deduction rules outlined in this Module.

              Apr 08

            • PCD-A.1.4

              The rules for prudential consolidation and pro-rata consolidation are set out in PCD-1.

              Apr 08

            • PCD-A.1.5

              The rules for prudential deductions from capital are set out in PCD-2. The prudential framework is also applicable to banks on a standalone basis.

              Apr 08

            • PCD-A.1.6

              This Module complements Modules CA and CM, which respectively set minimum capital requirements and large exposure requirements for licensed Islamic banks in Bahrain.

              Amended: January 2011
              Apr 08

            • Legal Basis

              • PCD-A.1.7

                This Module contains the CBB's Directive (as amended from time to time) on prudential consolidation and deduction requirements for Islamic bank licensees, and is issued under the powers available to the CBB under Article 38 of the Central Bank of Bahrain of Bahrain and Financial Institutions Law 2006 (CBB Law). The directive in this Module is applicable to all Islamic bank licensees.

                Adopted: January 2011

              • PCD-A.1.8

                For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1.

                Adopted: January 2011

          • PCD-A.2 PCD-A.2 Definitions

            • PCD-A.2.1

              A banking group is a parent bank and all its subsidiaries.

              Apr 08

            • PCD-A.2.2

              A subsidiary is an entity, including an unincorporated entity such as a partnership, that is controlled by another bank (known as the parent bank).

              Apr 08

            • PCD-A.2.3

              A parent bank is a bank which has one or more subsidiaries.

              Apr 08

            • PCD-A.2.4

              Control is the power to govern the financial and operating policies of an entity so as to obtain benefits from its activities.

              Apr 08

            • PCD-A.2.5

              Control is presumed to exist when the parent bank owns, directly or indirectly through subsidiaries, more than half of the voting power of an entity unless, in exceptional circumstances, the bank can clearly demonstrate that such ownership does not constitute control. Control also exists when the parent owns half or less of the voting power of an entity when there is power:

              (a) Over more than half of the voting rights by virtue of an agreement (whether revocable or not) with other investors;
              (b) To govern the financial and operating policies of the entity under a statute or an agreement;
              (c) To appoint or remove the majority of the members of the board of directors or equivalent governing body and control of the entity is by that board or body; or
              (d) To cast the majority of votes at meetings of the board of directors or equivalent governing body and control of the entity is by that board or body.
              October 2010

            • PCD-A.2.6

              A bank may own share warrants, share call options, equity instruments that are convertible into ordinary shares, or other similar instruments that have the potential, if exercised or converted, to give the bank voting power or reduce another party's voting power over the financial and operating policies of another entity (potential voting rights). The existence and effect of potential voting rights that are currently exercisable or convertible, including potential voting rights held by another entity, are considered when assessing whether the bank has the power to govern the financial and operating policies of another entity. Potential voting rights are not currently exercisable or convertible when, for example, they cannot be exercised or converted until a future date or until the occurrence of a future event.

              Apr 08

            • PCD-A.2.7

              In assessing whether potential voting rights contribute to control, the bank examines all facts and circumstances (including the terms of exercise of the potential voting rights and any other contractual arrangements whether considered individually or in combination) that affect potential voting rights, except the intention of management and the financial ability to exercise or convert.

              Apr 08

            • PCD-A.2.8

              A parent bank loses control when it loses the power to govern the financial and operating policies of an investee so as to obtain benefit from its activities. The loss of control can occur with or without a change in absolute or relative ownership levels. It could occur, for example, when a subsidiary becomes subject to the control of a government, court, administrator or regulator. It could also occur as a result of a contractual agreement.

              Apr 08

            • PCD-A.2.9

              Significant investments include investments in:

              (a) Licensed banking, securities or other financial entities from 20% to 50% of the investee's capital;
              (b) Insurance entities of 20% or more of the investee's capital; and
              (c) Commercial entities of 15% or more of the bank's capital.

              1 Securities entities include category one and category two investment firms incorporated in Bahrain and equivalent entities incorporated outside Bahrain.

              October 2010

            • PCD-A.2.10

              For the sake of clarity, investment management entities must be treated as financial entities (for further information, see paragraph PCD-1.1.2).

              Apr 08

            • PCD-A.2.11

              Minority interest is that portion of the profit or loss and net assets of a subsidiary attributable to equity interests that are not owned, directly or indirectly through subsidiaries, by the parent bank.

              Apr 08

            • PCD-A.2.12

              Although consolidation and pro-rata consolidation rules outlined in this module are prescribed only for computing regulatory minimum capital, the procedures applied for such consolidation and pro-rata consolidation are performed in accordance with applicable accounting standards and best practices which may be subject to change from time to time.

              Apr 08

            • PCD-A.2.13

              A "qualifying holding" is defined (see Section CM-4.4 for associated terms) as any investment in the capital instruments of another entity by a locally incorporated bank which is equivalent to or more than 10% of the locally incorporated bank's capital base (as reported in the most recent PIR submitted to the CBB.

              Amended: April 2014
              Amended: January 2014
              Amended: October 2012
              Adopted: January 2011

          • PCD-A.3 PCD-A.3 Module History

            • PCD-A.3.1

              This Module was first issued in January 2008. Any material changes that have subsequently been made to this Module are annotated with the calendar quarter date in which the change was made: Chapter UG-3 provides further details on Rulebook maintenance and version control. The most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              PCD 1.1.1, 1.2.1, 2.1, 2.3.3 & 2.4 04/2010 Minor guidance changes
              PCD 2.1 01/2010 Clarification on risk weighting of listed and unlisted instruments
              PCD 10/2010 Various minor amendments to ensure consistency in CBB Rulebook.
              PCD-4 10/2010 New Chapter on SPV moved from Section HC-1.5
              PCD-A.1.7 and A.1.8 01/2011 Added legal basis.
              PCD-A, PCD-2, PCD-3, PCD-4 01/2011 Changes made to incorporate Basel Core principle 5.
              PCD-A.2.13 10/2012 Amended definition of 'qualifying holding' to be in line with Paragraph CM-4.4.1E and Glossary.
              PCD-A.2.13 01/2014 Corrected typo.
              PCD-A.2.13 04/2014 Corrected cross reference.
              PCD-4.1 04/2014 Amended requirements for SPVs and Shari'a compliance for Islamic banks.

        • PCD-1 PCD-1 Prudential Consolidation Framework

          • PCD-1.1 PCD-1.1 Banking, Securities and Other Financial Subsidiaries

            • PCD-1.1.1

              To the greatest extent possible, all banking and other relevant financial entities which are subsidiaries of a licensee bank will be captured through consolidation (or aggregation) for regulatory capital purposes (or deducted in line with chapter PCD-2). Thus, majority-owned or - controlled banking entities, securities entities (where such activities are subject to broadly the similar set of regulations or where securities activities are deemed banking activities) and other financial entities should generally be fully consolidated or aggregated for regulatory capital purposes. (See PCD-2.1.3 for possible exceptions to this treatment). Banks must notify the CBB of their proposed regulatory aggregation or consolidation approaches and agree them with the CBB and their external auditors.

              Apr 08

            • PCD-1.1.2

              For the purpose of this module, a financial entity is an entity which conducts banking activities or other financial activities such as finance leasing, issuing credit cards, portfolio management, investment advisory, money changers, factoring, forfaiting, custodial and safekeeping services and other similar activities that are ancillary to the business of banking, whether or not the entity is regulated. For the sake of further clarity, financial entities do not include insurance entities (for further guidance on banking activities and regulated banking services, please see "Licensing and Authorisation Requirements Module").

              Apr 08

            • PCD-1.1.3

              When recognising consolidated capital for regulatory capital purposes, the CBB will assess the appropriateness of including minority interest(s) arising from the consolidation of less than wholly owned banking, securities and other financial entities.

              Apr 08

            • PCD-1.1.4

              Such minority interests will be included subject to their ability to absorb losses. However, if the transfer of minority interest capital is legally restricted or if minority interest capital is not readily available then such capital will not be eligible for inclusion in the group's capital. In cases where minority interest capital exceeds 5% of a bank's consolidated capital for regulatory capital purposes, the bank is required to demonstrate to CBB that minority interests recognised as capital are readily available to other group companies e.g. by producing legal proof from the concerned supervisor of subsidiary that there is no restriction on transfer of funds to other group companies.

              Amended October 2010
              Apr 08

            • PCD-1.1.5

              For instances where it is not feasible or desirable to consolidate certain securities and other financial entities for regulatory capital purposes, banks are required to provide the CBB with sufficient evidence that such holdings are acquired through underwriting of the share issue and are held on a temporary basis in the ordinary course of business; or are subject to materially different regulation; or non-consolidation for regulatory capital purposes is otherwise required by law.

              Amended October 2010
              Apr 08

            • PCD-1.1.6

              With the exception of activities carried out in the ordinary course of business (like share underwriting), in cases where consolidation for regulatory capital purposes does not occur, the parent bank is required to report capital adequacy measures for the parent and subsidiary separately (see also chapter PCD-2).

              Apr 08

          • PCD-1.2 PCD-1.2 Significant Investments in Banking, Securities and Other Financial Entities

            • PCD-1.2.1

              Significant investments (20% - 50%) in banking, securities and other financial entities, will be consolidated or aggregated on a pro-rata basis for regulatory capital purposes unless deducted in accordance with chapter PCD-2.

              Apr 08

            • PCD-1.2.2

              However, the CBB must be satisfied that the parent bank with significant minority ownership is expected to support the entity to the extent of its proportionate ownership only. The parent bank will be required to demonstrate that other significant shareholders have the means and the willingness to proportionately support the financial entity. The bank should have joint control in the investee entity along with other parties. If there is no joint control and a single party can exercise control, prorata-consolidation for regulatory capital purposes can not applied.

              Apr 08

            • PCD-1.2.3

              For instances where it is not feasible or desirable to prorata-consolidate/aggregate certain securities and other financial entities for regulatory capital purposes, banks are required to provide the CBB with sufficient evidence that such holdings are acquired through underwriting of the share issue and are held on a temporary basis in the ordinary course of business; or are subject to materially different regulation; or non-prorata-consolidation for regulatory capital purposes is otherwise required by law.

              Apr 08

            • PCD-1.2.4

              With the exception of activities carried out in ordinary course of business (like share underwriting), in cases where prorata-consolidation for regulatory capital purposes does not occur, the bank is required to report capital adequacy measures for itself and the investee entity separately.

              Apr 08

        • PCD-2 PCD-2 Prudential Deductions Framework

          • PCD-2.1 PCD-2.1 Investments in Banking, Securities and Other Financial Entities

            • PCD-2.1.1

              Equity investments in banking, securities and other financial entities below 20% of the investee's capital must be risk-weighted at a minimum risk-weight of 100% for listed entities and 150% for unlisted entities (see CM-4.9 where an investment below 20% of the investee's capital may exceed 15% of the reporting bank's capital base — "Qualifying holdings" — the excess of such individual holdings must be deducted and there is an additional aggregate limit for such holdings).

              Amended: January 2011
              Amended January 2009
              Apr 08

            • PCD-2.1.2

              Investments in instruments of a banking, securities and financial entities, other than equity, which are allowed as regulatory capital for the investee must be risk weighted at a minimum risk-weight of 100% for listed instruments or 150% for unlisted instruments unless such investments (including any other equity investment in that entity) exceed 20% of the eligible capital of investee entity, in which case the investments in other regulatory capital instruments of that investee entity must be deducted from the bank's capital for capital adequacy purposes.

              Amended January 2009
              Apr 08

            • PCD-2.1.3

              If any majority-owned banking, securities and other financial subsidiaries are not consolidated or aggregated for regulatory capital purposes as stated in paragraph PCD-1.1.5 and section PCD-3.1 respectively, all equity and other regulatory capital investments in those entities attributable to the group will be deducted, and the assets and liabilities, as well as third-party capital investments in the subsidiary will be removed from the bank's balance sheet for regulatory capital purposes.

              Apr 08

            • PCD-2.1.4

              If any significant investments in banking, securities and other financial entities are not prorata-consolidated or prorata-aggregated for regulatory capital purposes as stated in paragraph PCD-1.2.3 and section PCD-3.1 respectively, all equity and other regulatory capital investments in those entities attributable to the group will be deducted, and the assets and liabilities, as well as third-party capital investments in the investee will be removed from the bank's balance sheet for regulatory capital purposes.

              Apr 08

            • PCD-2.1.5

              CBB will ensure these entities (referred to in paragraph PCD-2.1.3 and PCD-2.1.4) otherwise meet regulatory capital requirements and monitor steps taken by the bank to correct any capital shortfall, if it exists. If not corrected within the timeframe agreed with CBB, the shortfall will also be deducted from investor bank's capital for regulatory capital purposes. In case of PCD-2.1.4, this deduction will be on proportionate basis if other parties are also willing to support on proportionate basis.

              Apr 08

          • PCD-2.2 PCD-2.2 Significant Investments in Insurance Entities

            • PCD-2.2.1

              When measuring regulatory capital for banks, the equity holdings in an insurance entity of 20% or more of the investee's capital shall be required to be deducted from bank's capital for regulatory capital purposes. Holdings less than 20% will be risk weighted under the applicable credit risk weighting rules (or subject to the qualifying holdings requirements outlined in Module CM-4.9).

              Amended: January 2011
              Apr 08

            • PCD-2.2.2

              Majority-owned or controlled insurance subsidiaries must be adequately capitalised to reduce the possibility of future potential losses to the parent bank. The parent bank will monitor actions taken by the subsidiary to correct any capital shortfall and, if it is not corrected in a timely manner, the shortfall will also be deducted from the parent bank's capital for regulatory capital purposes.

              Apr 08

          • PCD-2.3 PCD-2.3 Significant Investments in Commercial Entities

            • PCD-2.3.1

              Investments in commercial entities include holding of equities of commercial entities acquired through underwriting activities which have been held for more than 90 days2.


              2 Within the period of 90 days, CBB approved underwritten amounts are subject to treatment outlined in Section CM-4.5. See also Chapter CA-5 if such positions are to be included in the trading book.

              Amended: January 2011

            • PCD-2.3.2

              "Qualifying holdings" in commercial entities which exceed certain materiality levels outlined in CM-4.9 must be deducted from the bank's capital for regulatory capital purposes. If the investments exceed a materiality level of 15% of the bank's capital on an individual basis, the concerned bank is required to deduct the excess amount from its capital. If the aggregate amount of qualifying holdings exceeds a threshold of 60% of the bank's capital, then such excess amount is also to be deducted from the bank's capital. The application of the materiality levels will be undertaken in the order of deduction of amount in excess of 15% of bank's capital followed by 60% of capital. An illustrative example is provided in Appendix PCD-1.

              Amended: January 2011
              Apr 08

            • PCD-2.3.3

              Investments in commercial entities below the level of a qualifying holding will be risk-weighted under the applicable risk weighting rules (see chapter CA-5 for trading book and chapter CA-4 for banking book). The risk-weighting treatment will follow the accounting method in the concerned bank's audited financial statements. The effect of banks' existing significant qualifying holdings will be reviewed by the CBB. The CBB will then discuss any possible transitional arrangements with concerned banks.

              Amended: January 2011
              Apr 08

          • PCD-2.4 PCD-2.4 Common Deduction Principles

            • PCD-2.4.1

              Reciprocal cross holdings of banks' capital artificially designed to inflate the capital position of banks must be deducted for regulatory capital purposes. In determining such reciprocal cross-holdings, the CBB will take into account any bilateral agreement, dates and timings of such transactions and the amount of the two transactions involved. This deduction must be made from the tier in which the reciprocal cross holding exists.

              Apr 08

            • PCD-2.4.2

              In case of non-compliance3 with the large exposure limits (as set out in Chapter CM-4 of the Rulebook), the excess will be deducted from the capital of the bank for regulatory capital purposes. For off-balance sheet items, the excess is to be calculated after the application of credit conversion factors as detailed in chapter CA-4 of the Capital Adequacy Module for Islamic banks. These deduction requirements apply for direct exposures (i.e. funded by a bank's own funds or unrestricted investment accounts) and restricted investment accounts.


              3 For the purpose of this rule, non-compliance means where a large exposure is taken without prior approval of CBB.

              Amended: January 2011

            • PCD-2.4.3

              Deductions referred to in this module (except as stated otherwise, see paragraph PCD-2.4.1, PCD-2.4.4 and PCD-2.4.7) must be made 50% from Tier 1 and 50% from Tier 2 capital. If the amount deductible from Tier 2 exceeds the bank's actual Tier 2, the bank should deduct the shortfall amount from Tier 1 capital.

              Apr 08

            • PCD-2.4.4

              Goodwill relating to consolidated subsidiaries and entities subject to a deduction approach pursuant to this chapter must be deducted from Tier 1, and the remainder of the investments must be deducted as provided for in this sub-section.

              Apr 08

            • PCD-2.4.5

              The limits on Tier 2 capital will be based on the amount of Tier 1 capital after all deductions. Note that total eligible Tier 2 Capital may not exceed Tier One Capital. See Appendix PCD-2 for details of how these limits work in practice.

              Apr 08

            • PCD-2.4.6

              Where the deduction requirement relates to an investment which is carried at fair value and the resultant unrealised fair value gain/loss has been included in Tier 2 capital as per paragraph CA-2.1.5 (e) of the Capital Adequacy Module, the unrealised fair value gain/loss will be removed from the Tier 2 capital. The remaining amount will be deducted as per the above paragraph PCD-2.4.3. If the deduction is not for the full amount of investment, then the related unrealised fair value gain/loss will also be eliminated proportionately from Tier 2 capital. An example is provided in Appendix PCD-2.

              Apr 08

            • PCD-2.4.7

              Positions in the bank's own eligible regulatory capital instruments are deducted from capital. This deduction must be made from the Tier in which the investment exists.

              Apr 08

            • PCD-2.4.8

              This prudential deductions framework (PCD-2.4) applies to investments irrespective of their classification in banking book or trading book. Where a bank demonstrates that it is an active market maker then the CBB may, on a case by case basis, establish a dealer exception for holdings of other designated banks', securities firms', and other financial entities' capital instruments in the trading book. In order to qualify for the dealer exception, the bank must demonstrate to the CBB that it has adequate systems and controls surrounding the trading of financial institutions' eligible regulatory capital instruments.

              Apr 08

        • PCD-3 PCD-3 Related Issues

          • PCD-3.1 PCD-3.1 Related Issues

            • PCD-3.1.1

              If a parent bank either controls or holds a significant investment (20% - 50%) in a non-resident banking, securities or other financial entity which is filing its return with the respective supervisor under the Basel II capital adequacy rules, and the investment is not deducted, the investor bank will not automatically be required to consolidate or pro-rata consolidate on a line by line basis respectively for regulatory capital purposes. Under such circumstances, the aggregation rules outlined in paragraph PCD-3.1.2 will be applicable. However, a bank may opt to consolidate or pro-rata consolidate such entities instead of aggregation or pro-rata aggregation provided that it satisfies CBB that these entities are otherwise adequately capitalised on a stand-alone basis in their respective jurisdictions. CBB will liaise with the concerned host supervisors in this regard. In addition, if a foreign branch of a Bahraini bank is filing its return with the respective supervisor under the Basel II capital adequacy rules, the aggregation rules may also be applied to such branch.

              Amended: January 2011
              Apr 08

            • PCD-3.1.2

              The capital and risk weighted assets (RWAs) of the non-resident entity must be shown separately. The parent bank will be required to aggregate the subsidiary's eligible capital and RWAs (based on the risk weighting of assets reported by the subsidiary to its host central bank) with its own eligible capital and RWAs respectively. In cases where bank does not control the entity, such aggregation will be limited to the percentage of ownership by the bank in the financial entity (see Appendix PCD-3). In cases where the bank does control the entity, the bank will be required to undertake full aggregation (see Appendix PCD-4).

              Amended October 2010
              Apr 08

            • PCD-3.1.3

              Appropriate adjustments will be made to eliminate intra-group exposures.

              Apr 08

            • PCD-3.1.4

              If a bank in Bahrain is a subsidiary of a non-resident parent bank, the capital adequacy of such bank will be determined on a standalone basis.

              Apr 08

        • PCD-4 PCD-4 Special Purpose Vehicles ('SPVs')

          • PCD-4.1 PCD-4.1 General Requirements

            • PCD-4.1.1

              SPVs are subject to the consolidation, deduction, risk weighting and qualifying holdings rules and regulations mentioned in this Module and Chapter CM-4.

              Amended: April 2014
              Amended: January 2011
              October 2010

            • PCD-4.1.2

              All Bahraini Islamic bank licensees must obtain the CBB's prior specific written approval if they intend to act as originator, sponsor or manager of a special purpose vehicle ('SPV'), or if they intend to participate in the creation of an SPV, or if they intend to acquire a holding of 20% or more of the equity capital of an SPV. All Bahraini Islamic bank licensees must seek prior specific written CBB approval if they are appointed as nominee shareholders of SPVs or hold votes by proxy arrangement in SPVs on behalf of other investors.

              Amended: April 2014
              October 2010

            • PCD-4.1.2A

              For purposes of Paragraph PCD-4.1.2, in order to avoid any delays and/or disruption in implementation of a Bahraini Islamic bank licensee's plans in this context, the CBB should be approached as soon as possible, even at a very preliminary stage.

              Added: April 2014

            • PCD-4.1.3

              The CBB requires any Bahraini Islamic bank licensee associated with an SPV to confirm the following points in any request for approval under Paragraph PCD-4.1.2:

              (a) The purpose of the SPV;
              (b) The nature of the relationship between the Bahraini Islamic bank licensee and the SPV (i.e. originator, sponsor, manager, investor, controller etc.);
              (c) The proposed consolidation/accounting treatment of the SPV in relation to the Bahraini Islamic bank licensee both for the PIR and the audited financial statements' purposes as agreed with its external auditor;
              (d) The availability of financial and other information relevant to the SPV and access to its business premises and records;
              (e) Whether the Bahraini Islamic bank licensee is providing any guarantees, warranties or financial/liquidity support of any kind to the SPV; and
              (f) A copy of the Bahraini Islamic bank licensee's Shari'a Supervisory Board approval of the initial investment or financing structure involving the use of the concerned SPV(s).
              Amended: April 2014
              October 2010

            • PCD-4.1.3A

              In addition to the points noted in PCD-4.1.3, Bahraini Islamic bank licensees which are involved with SPVs in any of the relationships described in Paragraph PCD-4.1.2 must not allow such SPVs to obtain any conventional financing to fund themselves or any transactions that they enter into.

              Added: April 2014

            • PCD-4.1.3AA

              For purposes of Paragraph PCD-4.1.3A, in case of new acquisition or investment after the date of issuance of these rules, when conventional borrowing exists, it should be replaced by Islamic financing as soon as possible and in no case later than 12 months from the date of investment. In case of existing investments before the date of issuance of these rules, where conventional borrowing exists, it should be replaced by Islamic financing as soon as possible and in no case later than 12 months from the date of issuance of these rules. Both cases are extendable subject to SSB approval.

              Added: April 2014

            • PCD-4.1.3B

              Bahraini Islamic bank licensees which are involved with SPVs in any of the relationships described in Paragraph PCD-4.1.2 must not allow such SPVs to give any type of financial guarantee, warranty or indemnity to the Rab Al Maal, the Muwakil or investors in the SPV or any other counterparty, customer or stakeholder either directly or on behalf of the Bahraini Islamic bank licensee.

              Added: April 2014

            • PCD-4.1.3C

              The Shari'a Supervisory Board of the Bahraini Islamic bank licensee must monitor on an ongoing basis the Shari'a compliance of the SPVs and must oversee the conduct of the annual Shari'a compliance review of transactions, assets, liabilities and other commitments and relationships entered into by all SPVs with which the Bahraini Islamic bank licensee is involved (by way of the relationships described in Paragraph PCD-4.1.2). The Shari'a compliance function of the Bahraini Islamic bank licensee must perform such reviews.

              Added: April 2014

            • PCD-4.1.3D

              Bahraini Islamic bank licensees which are involved with SPVs in any of the relationships described in Paragraph PCD-4.1.2 must not transfer non-performing or impaired assets from their own balance sheets to such SPVs or vice versa.

              Added: April 2014

            • PCD-4.1.4

              Where the SPV is consolidated into the accounts of a locally incorporated bank, the bank must provide separate accounting information on the SPV to the CBB on a quarterly basis. Furthermore, the annual audited financial statements of all consolidated SPVs must be submitted to the CBB within 3 months of the year end of the concerned SPV.

              October 2010

            • PCD-4.1.5

              Where a locally incorporated bank has a controller or majority ownership relationship with an SPV, or acts as sponsor, the bank must obtain the prior written approval of the CBB for any changes to the capital, ownership, management or control of the SPV. All locally incorporated banks must also notify the CBB of any material events in relation to the SPV. If necessary, the CBB may require that formal information exchange arrangements are put in place (e.g. a memorandum of understanding) if the SPV is located in a foreign jurisdiction and its activities are not supervised locally.

              Amended: April 2014
              October 2010

        • Appendix PCD-1 Investments in Commercial Entities

          Bank "x" with eligible capital of 1,000,000 before deductions has made investment in seven commercial entities listed below:

          Investee Amount %age of bank's capital
          a 100,000 10%
          b 120,000 12%
          c 150,000 15%
          d 160,000 16%
          e 170,000 17%
          f 200,000 20%
          g 250,000 25%
          Total 1,150,000 115%

          The amount to be deducted from capital in respect of these investments will be based on the following calculation:

          15% threshold (Individual basis)

          Sr # Amount 15% of Bank's capital Excess over 15% of Bank's capital
          d 160,000 150,000 10,000
          e 170,000 150,000 20,000
          f 200,000 150,000 50,000
          g 250,000 150,000 100,000
          Total     180,000

          Capital deduction on account of 15% threshold on individual basis is 180,000 (A).

          60% Threshold (Aggregate basis)

          Aggregate of investments after 15% deduction:

          c 150,000
          d 150,000
          e 150,000
          f 150,000
          g 150,000
          Total 750,000 (B)

          60% of Bank's capital = 600,000
          Aggregate (B) = 750,000
          Deduction = 150,000

          So the capital deduction based on the 60% threshold on aggregate basis is 150,000 (C).

          Total deduction based on investments in commercial entities is 330,000 (A+C).

          Net eligible capital after deductions is 670,000 (1,000,000 - 330,000).

          Remaining amount of investments 820,000 (1,150,000-330,000) will be risk weighted under the applicable risk weighting rules.

        • Appendix PCD-2 Comprehensive Example of Deductions

          Bank "x" with capital base of 10,000,000 before deductions (consisting of 5,000,000 Tier 1 and 5,000,000 Tier 2) has made four investments listed below along with the amount required to be deducted from the capital for capital adequacy purposes:

          Investment Amount Deduction requirement
          (For rules refer to chapter PCD-2)
          Bank "a" 1,000,000 1,000,000
          Insurance entity "b" 3,000,000 3,000,000 4
          Commercial entity "c" 2,000,000 500,000 5
          Entity "d" 500,000 400,000 6
          Total 6,500,000 4,900,000

          Determination of eligible Tier 1 and Tier 2 capital:

          These deductions include Goodwill of 100,000 & reciprocal cross holdings of 400,000 in Tier 1.

          Determination of eligible capital:

            Tier 1 capital Tier 2 capital
          Capital base 5,000,000 5,000,000
          Goodwill 7 (100,000) -
          Reciprocal cross-holding 8 (400,000) -
          Other deductions (Equally from Tier 1 and Tier 2) (4,900,000 - 500,000=4,400,000/2) (2,200,000) (2,200,000)
          Resulting capital 2,300,000 2,800,000
          Eligible capital 2,300,000 2,300,000 9

          Calculation of CAR:

          CAR = Eligible capital/Risk-Weighted Assets

          = (2,300,000 + 2,300,000)/(Say) 40,000,000 = 4,600,000/40,000,000 = 11.5%


          4 This investment is 30% of the insurance "b" capital.

          5 This investment is 20% of the bank's capital. As such the amount exceeding 15% i.e. 500,000 will be deducted.

          6 This investment is 2% of entity "d"s capital. Entity "d" has also made investment in Tier 1 capital of Bank "x" amounting to 400,000. This amount (400,000), being cross-holding, is required to be deducted from regulatory capital of the bank "x".

          7 This represents goodwill arising at the time of acquisition of a consolidated subsidiary.

          8 As this cross-holding exists in Tier 1 capital (see footnote 3), this amount must be deducted from the same tier.

          9 Tier 2 can not exceed 100% of Tier 1 (after all subsequent deductions).

        • Appendix PCD-3 Pro-rata Aggregation

          Bank "x" has made an investment in a non-resident financial entity "y" (30% shareholding) which is filing its return with the respective supervisor under the Basel II capital adequacy rules. The aggregation of capital and RWAs will be carried out as follows:

          Bank:

          Eligible regulatory capital = 3,000,00010

          Risk weighted assets = 20,000,000

          CAR = 3,000,000/20,000,000

          = 15%

          Investee:

          Eligible regulatory capital = 1,000,000

          Risk weighted assets = 10,000,000

          CAR = 1,000,000/10,000,000

          = 10%

          Consolidated Capital Adequacy Ratio:

          Eligible regulatory capital = 3,300,000 [(3,000,000 + (1,000,000*30%)]

          Risk weighted assets = 23,000,000 (20,000,000 + (10,000,000*30%)]

          CAR = 3,300,000/23,000,000

          = 14.35%


          10 This capital amount is after all necessary deductions, including investment in "y".

        • Appendix PCD-4 Full Aggregation

          Bank "x" controls a non-resident financial entity "z" (80% shareholding) which is filing its return with the respective supervisor under the Basel II capital adequacy rules. The aggregation of capital and RWAs will be carried out as follows:

          Parent Bank:

          Eligible regulatory capital = 3,000,00011,

          Risk weighted assets = 20,000,000

          CAR = 3,000,000/20,000,000

          = 15%

          Non-resident subsidiary:

          Eligible regulatory capital = 1,000,000

          Risk weighted assets = 10,000,000

          CAR = 1,000,000/10,000,000

          = 10%

          Consolidated Capital Adequacy Ratio:

          Eligible regulatory capital = 4,000,000 (3,000,000+1,000,000)

          Risk weighted assets = 30,000,000 (20,000,000+10,000,000)

          CAR = 4,000,000/30,000,000

          = 13.33%


          11 This capital amount is after all necessary deductions, including investment in "z".

        • Appendix PCD-5 Calculation of the Investment Amount, based on its Fair Value that should be deducted from Capital Base

          Bank "x" with eligible capital of 1,000 before deductions has made investment in a commercial entity (cost 160) which is carried at fair value (200). The amount to be deducted is as follows:

          Regulatory capital (before deductions) = 1,000

          Equity investment at cost = 160

          Equity investment at fair value = 200

          Fair value gain = 40

          Amount to be subjected to deduction (see Appendix CA-17 of CA module) = 200 - (40*.55) = 178

          Excess investment amount above the 15% level = 178 - (1,000 X 0.15) = 28

          The deduction should be as follows:

          1. The asset side should be reduced by 50 (28 see above + 22 see Appendix CA-17 of CA Module)
          2. The Capital Base shall be reduced as follows:
          Fair value to be removed from Tier 2 (18/178*28) 2.82
          Deduction of 50% of remaining amount from Tier 1(28-2.83 = 25.17/2) 12.59
          Deduction of 50% of the remaining amount from Tier 2(28-2.83 = 25.17/2) 12.59
          Total deduction from capital base 28.00

    • Reporting Requirements

      • BR BR BMA Reporting Requirements

        • BR-A BR-A Introduction

          • BR-A.1 BR-A.1 Purpose

            • BR-A.1.1

              The purpose of this module is to set out the Agency's reporting requirements applicable to the banks as part of the Agency's ongoing supervision activities.

            • BR-A.1.2

              This module provides support for certain other parts of the Rulebook, mainly:

              (a) Principles of Business;
              (b) Public Disclosure;
              (c) Credit Risk Management;
              (d) Operational Risk Management;
              (e) Financial Crimes;
              (f) Capital Adequacy;
              (g) High Level Controls;
              (h) Business and Market Conduct;
              (i) Enforcement; and
              (j) Audit Firms.

            • BR-A.1.3

              Unless otherwise stated, all reports referred to in this module should be addressed to Islamic Financial Institutions Supervision Directorate of the Agency.

          • BR-A.2 BR-A.2 Key requirements

            • Regular reporting — Annual requirements

              • BR-A.2.1

                All locally incorporated banks in the Kingdom of Bahrain are required to submit to the Agency their annual reports (in compliance with the provisions set out under section BR-1.1) no later than the end of 3 calendar months from the date of such reports. In addition, these banks are also required to submit supplementary information (as listed under section BR-1.1) to the Agency.

              • BR-A.2.2

                All Bahrain branches of foreign banks are required to submit to the Agency their annual audited financial statements (in compliance with the provisions set out under section BR-1.2) no later than the end of 3 calendar months from the date of such statements. In addition, these banks are also required to submit supplementary information (as listed under section BR-1.2) to the Agency.

            • Regular reporting — Semi-annual requirements

              • BR-A.2.3

                All FCB Bahrain branches of foreign banks are required to submit to the Agency their Balance Sheet and Profit and Loss Accounts (in compliance with the provisions set out under section BR-2.1) no later than the end of 8 weeks from the date of such statements.

            • Regular reporting — Quarterly requirements

              • BR-A.2.4

                All locally incorporated banks in the Kingdom of Bahrain are required to submit to the Agency the following information on a quarterly basis:

                (a) PIR Forms (in accordance with the provisions set out under section BR-3.1);
                (b) reviewed (unaudited) quarterly financial statements (in accordance with the provisions set out under section BR-3.1); and
                (c) large exposure returns (in accordance with the provisions set out under section BR-3.1).

              • BR-A.2.5

                All Bahrain branches of foreign banks are required to submit to the Agency PIRB Forms (in accordance with the provisions set out under section BR-3.2).

              • BR-A.2.6

                All banks licensed by the Agency in the Kingdom of Bahrain are required to submit to the Agency quarterly statistical returns as required under section BR-3.3).

            • Regular reporting — Monthly requirements

              • BR-A.2.7

                All banks licensed by the Agency in the Kingdom of Bahrain are required to submit to the Agency monthly statistical returns as required under section BR-4.1).

              • BR-A.2.8

                All locally incorporated banks listed on the Bahrain Stock Exchange are required to report to the Capital Markets Supervision Directorate of the Agency, on a monthly basis, information relating to their Directors' interests in the shares of locally incorporated banks listed on the Bahrain Stock Exchange (in accordance with the provisions set out under section BR-3.1).

            • Ad-hoc reporting and notification

              • BR-A.2.9

                All banks licensed by the Agency in the Kingdom of Bahrain are required to notify and report to the Agency on the following matters:

                (a) large exposures (section BR-5.1);
                (b) changes in strategy and/or corporate plan (section BR-5.1);
                (c) changes in management (section BR-5.1);
                (d) changes in dealing staff (section BR-5.1);
                (e) appointment of a Compliance Manager/Officer (section BR-5.1);
                (f) money laundering and suspicious transactions (section BR-5.1);
                (g) promotion of financial products and services (section BR-5.1); and
                (h) authorised signatories (section BR-5.1).

              • BR-A.2.10

                All locally incorporated banks are required to give the Agency, immediate written notification of any actual breach by such bank of the minimum Risk Asset Ratio(s) (RAR) in accordance with section BR-5.2.

              • BR-A.2.11

                All FCBs licensed by the Agency in the Kingdom of Bahrain are required to notify and report to the Agency on the following matters:

                (a) introduction of new and expanded customers and products (section BR-5.3); and
                (b) accounts for charity organisations (section BR-5.3).

          • BR-A.3 BR-A.3 Regulation history

            • BR-A.3.1

              This module was first issued in January 2005 as part of the initial launch of the BMA Rulebook Volume for Islamic banks. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter UG-3 of Module UG provides further details on Rulebook maintenance and control.

            • BR-A.3.2

              The most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              BR-5.1.13 01/04/05 Notification of fraud
              BR-5.1 01/10/05 New threshold for reporting of transfers by charities and prior approval of the appointment of compliance officer/manager.
              BR-5.1.3 01/01/06 Addition to changes in strategy and or corporate plan
              BR-5.1.4 01/01/06 Addition of contact details to management information details
              BR-3.3, BR-4.1 & BR-5.1.14 01/04/06 Revised statistical returns instructions and new notification requirement for material losses
              BR-3.2 01/07/06 Deletion of requirement for Form SR6
              BR-4.1 01/07/06 Deletion of references to precious metals and commodities returns. Transfer of reserve requirements material from BR-4.2 to BR-4.1.
              BR-4.2 01/07/06 Deletion of reserve requirements material (moved to BR-4.1).
              BR-3.1.3 01/07/06 Hard copies of PIRI no longer required
              BR-4.1.3 01/07/06 Revised submission date for statistical returns
              BR-5.1.9 01/07/06 Minor changes reflecting change of Compliance Unit to Directorate
              BR-5.3.3 01/07/06 Deleted since duplicated BR-5.1.15

            • Evolution of the Module

              • BR-A.3.3

                Prior to the development of the Rulebook, the Agency had issued various circulars representing regulations covering different aspects of BMA reporting structure. These circulars were subsequently compiled into a folder "Part 2: Reports" which was part of the information pack ("The Establishment, regulations and supervision of banks and other financial institutions in Bahrain") issued in 1997. The contents of that information pack have now been incorporated in this module.

              • BR-A.3.4

                In addition, certain circulars have been incorporated in this module that supplement the BMA reporting requirements set out in the information pack mentioned in paragraph BR-A.3.3. These circulars and their evolution into this module are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                BC/4/99
                (partial)
                17 Mar 1999 BR-1.1, BR-3.1 Annual Accounts for the Year Ending 31 December 1999
                BC/12/98 28 Sep 1998 BR-1.1 Accounting and Auditing Standards for Islamic Financial Institutions
                no reference
                (partial)
                Apr 1981 BR-1.1 Precious Metals and Commodities
                ODG/329/03 10 Sep 2003 BR-1.1 Corporate Governance Reporting
                EDBC/1/95 26 Aug 1995 BR-1.2 Re: Provisioning Policies of Branches of Foreign Banks in Bahrain
                BC/1/99
                (partial)
                22 Feb 1999 BR-2.1 Enhancing Bank Transparency
                BC/20/99
                (partial)
                28 Sep 1999 BR-3.1 Enhancing Islamic Banks Transparency
                ER/118/98 2 Feb 1998 BR-3.3, BR-4.1 Revised Statistical Returns
                ER/247/98 22 Mar 1998 BR-3.3, BR-4.1 Revised Statistical Returns
                OG/89/88 30 Jun 1988 BR-4.2 Reserve Balances
                BMA/751/93
                (partial)
                8 Jul 1993 BR-4.3 Directors' Interest in the Shares of, and the Unaudited Quarterly Financial Statements of, Locally Incorporated Banks Quoted on the Bahrain Stock Exchange.
                BC/904/95
                (partial)
                24 Jul 1995 BR-5.1 Notification to, and approval from the Agency for certain matters
                BC/309/94 28 Mar 1994 BR-5.1 Management Personnel
                BMA/1287/94
                (partial)
                6 Nov 1994 BR-5.1 Foreign Exchange, Securities and Other Dealers
                BC/13/99
                (partial)
                15 Jun 1999 BR-5.1 Compliance, Risk Management and Internal Controls
                EDBC/6/01
                (partial)
                14 Oct 2001 BR-5.1 Re: Money Laundering Regulation
                EDBC/73/96
                (partial)
                1 May 1996 BR-5.1 Explanatory note on the promotion of Banking and Financial Products offered in/from Bahrain by Means of Incentives etc.
                BMA(4)/91/832 22 Oct 1991 BR-5.1 Specimen Signatures
                OG/45/88 13 Mar 1988 BR-5.2 Write-Off — Credit Facility
                ODG/145/92 18 Aug 1992 BR-5.3 New or expanded products and facilities in the Retail Banking Field
                BC/3/00 5 Mar 2000 BR-5.3 Re: Accounts for Charity Organisations
                BC/09/01 26 Nov 2001 BR-1.1, BR-3.1, BR-5.2 New Prudential Regulations for Islamic Banks

            • Effective date

              • BR-A.3.5

                The contents in this module are effective from the date of the original circular (BR-A.3.4) or from the date of changes shown in BR-A.3.2.

        • BR-1 BR-1 Regular reporting — Annual requirements

          • BR-1.1 BR-1.1 Locally incorporated banks

            • BR-1.1.1

              The content of this section is applicable to all locally incorporated banks licensed by the Agency in the Kingdom of Bahrain.

            • Annual reports

              • BR-1.1.2

                All banks, referred to under paragraph BR-1.1.1, are required to submit to the Agency their audited annual reports within 3 calendar months of the date of such reports.

              • BR-1.1.3

                The banks should ensure that the audited accounts reconcile with the following reports submitted to the Agency and that adequate explanations for any material differences between these accounts and reports are provided by the bank's external auditors (also see section AU-3.7):

                (a) Prudential Information Returns for Islamic banks, and
                (b) Monthly Statements of Assets and Liabilities.

            • Supplementary information

              • BR-1.1.4

                In addition to the reports required in paragraph BR-1.1.2, banks are also required to submit to the Agency the following information:

                (a) Copies of any report(s) submitted by the external auditors to the Management or Board of Directors including where applicable, the management letter/internal control report;
                (b) The audited accounts for the bank's ultimate holding company;
                (c) The audited accounts and management letters for subsidiaries and branches of the bank located outside Bahrain;
                (d) A list of subsidiaries, associated companies and affiliates of the bank, together with details of their locations and the amount of participation by the bank in these entities;
                (e) Any other supplementary information required by the Agency; and
                (f) Report on corporate governance framework attached to year-end PIRI (see Appendix BR 7 for sample report)

            • Compliance

              • BR-1.1.5

                In addition to the provisions of section AU-3.7, the audited financial statements or the annual reports of these banks should be in full compliance with the disclosure requirements set out under sections PD-1.3 and PD-1.4.

          • BR-1.2 BR-1.2 Branches of foreign banks

            • BR-1.2.1

              The content of this section is applicable to branches (licensed by the Agency) of foreign banks.

            • Annual audited financial statements

              • BR-1.2.2

                All branches, referred to under paragraph BR-1.2.1, are required to submit to the Agency their annual audited financial statements of their Bahrain operations within 3 calendar months of the date of such statements.

            • Supplementary information

              • BR-1.2.3

                In addition to the statements required in paragraph BR-1.2.2, branches are also required to submit to the Agency the following information:

                (a) the external auditors' management letter;
                (b) a reconciliation statement between the audited financial statements and the relevant prudential returns and monthly statistical returns;
                (c) the head office's annual audited financial statements; and
                (d) a statement of provisions as set out in paragraph BR-1.2.4, below.

            • Provisions against branch assets in head office books

              • BR-1.2.4

                If specific provisions against the assets of a branch are maintained in the books of its head office, the Agency should be advised on an annual basis and in writing (along with the information listed under paragraph BR-1.2.3) of the amount of provisions set aside for the Bahrain branch's bad debts (and any other non-performing assets). For detailed guidance related to this subject, see section CM-4.3.

            • Compliance

              • BR-1.2.5

                The annual accounts should be in full compliance with the Financial Accounting Standards issued by AAOIFI or where AAOIFI standards do not cover a subject, International Financial Reporting Standards should be used.

          • BR-1.3 All licensed banks

            [This Section deleted 07/2006]

        • BR-2 BR-2 Regular reporting — Semi-annual requirements

          • BR-2.1 BR-2.1 FCB branches of foreign banks

            • BR-2.1.1

              The content of this section is applicable only to FCB branches (licensed by the Agency) of foreign banks.

            • Financial information

              • BR-2.1.2

                Branches (referred to under paragraph BR-2.1.1) are required to submit to the Agency the following information (in the same format as their Annual Audited Accounts) for their Bahrain operation on a semi-annual basis (within eight weeks of the date of these statements):

                (a) Balance Sheet, and
                (b) Profit and Loss Accounts

            • Compliance

              • BR-2.1.3

                The statements mentioned under paragraph BR-2.1.2 should be in compliance with the requirements set out under section PD-2.2.

        • BR-3 BR-3 Regular reporting — Quarterly requirements

          • BR-3.1 BR-3.1 Locally incorporated banks

            • BR-3.1.1

              The content of this section is applicable to all locally incorporated banks licensed by the Agency in the Kingdom of Bahrain.

            • Prudential Information Returns for Islamic Banks (PIRI)

              • BR-3.1.2

                All banks, referred to under paragraph BR-3.1.1, must complete PIRI forms (see Appendix BR 4), on a quarterly basis. This form is intended to be a financial report of the bank as a separate legal entity. Banks should therefore include on it all assets and liabilities of their head office and their branches in Bahrain and abroad. Separate figures in respect of the head office or "Bahrain operations" are not required.

              • BR-3.1.3

                The forms referred to under paragraph BR-3.1.2 must be submitted electronically online to the Agency on a quarterly basis within 20 calendar days of the end of the reporting date. Effective from 2nd quarter 2006, banks are not required to submit hard copies of the returns.

              • BR-3.1.4

                These forms are divided into five sections. Each reporting section is supplemented with guidelines for completion under Appendix BR 3. Further requirements and guidance relating to the contents of these forms are also set out under various Modules of the Rulebook. Reporting sections and their corresponding requirements and guidance (where applicable) are set out as below:

                (a) Section A — Capital Adequacy: see Module CA;
                (b) Section B — Asset Quality: see sections CM-2, CM-4 and CM-5;
                (c) Section C — Management of Investment Accounts: see section HC-5.4;
                (d) Section D — Earnings Quality; and
                (e) Section E — Liquidity: see section LM-1.

              • BR-3.1.5

                The references made in paragraphs BR-3.1.4(a) to (e) should be read in conjunction with the guidelines set under Appendix BR 3 and referred to while completing the PIRI forms set under Appendix BR 4.

            • Financial information

              • BR-3.1.6

                All banks, referred to under paragraph BR-3.1.1, should submit their reviewed (unaudited) quarterly financial statements to the Agency within 60 days from the statement date.

            • Compliance

              • BR-3.1.7

                The statements mentioned under paragraph BR-3.1.6 should be in compliance with the requirements set out under section PD-3.1.

          • BR-3.2 BR-3.2 All licensed banks

            • BR-3.2.1

              The content of this section is applicable to all banks (licensed by the Agency) in the Kingdom of Bahrain.

            • Statistical returns

              • BR-3.2.2

                All banks, referred to under paragraph BR-3.2.1, are required to submit the following quarterly statistical returns to the Financial Stability Directorate of the Agency:

                (a) Form SR-3 — 'Quarterly Balance Sheet by Country and Class of Customer';
                (b) Form SR-4 — 'Quarterly Balance Sheet by Currency';
                (c) Form SR-5 — 'Quarterly Classification of Loans and Advances to Domestic Non-banks'.

                (For instructions relating to the completion of the above mentioned returns, refer to Appendix BR 1 and for returns forms refer to Appendix BR 2)

              • BR-3.2.3

                The returns included in Appendix BR 2 should be submitted to the Agency in electronic form (Excel spreadsheet) via email (to erdsr@bma.gov.bh ) no later than the 10th of the month following the end of the relevant quarter. One printed copy should also be delivered to the Financial Stability Directorate by the same date.

        • BR-4 BR-4 Regular reporting — Monthly requirements

          • BR-4.1 BR-4.1 All licensed banks

            • BR-4.1.1

              The content of this section is applicable to all banks (or as stated otherwise) licensed by the Agency in the Kingdom of Bahrain.

            • Statistical returns

              • BR-4.1.2

                All banks, referred to under paragraph BR-4.1.1, are required to submit to the Agency (Financial Stability Directorate) the following monthly statistical returns:

                (a) Form SR-1 — 'Monthly Balance Sheet'; and
                (b) Form SR-2 — 'Monthly Classification of Deposits and Other Liabilities to Banks and Non-banks'.

                (For instructions relating to the completion of the above mentioned returns, refer to Appendix BR 1 and for returns forms refer to Appendix BR 2)

              • BR-4.1.3

                The returns included in Appendix BR 2 should be submitted to the Agency in electronic form (Excel spreadsheet) via email to erdsr@bma.gov.bh no later than the 10th of the month following the end of the relevant month. One printed copy should also be delivered to the Financial Stability Directorate by the same date.

            • Precious metals and commodities returns

              • BR-4.1.4

                [This Paragraph deleted with effect from 1 July 2006].

            • Reserve requirements

              • BR-4.1.4a

                The Banking Services Directorate will calculate the reserve requirement of each Islamic bank licensee bank on a monthly basis using the figures reported in the monthly statistical report, Form SR-2 (see Rule BR-4.1.2 above) and will notify each bank of its required reserve (if any).

              • BR-4.1.4b

                The monthly reserve requirements will be calculated as 5% of the total of an Islamic bank licensee's BD deposits from non-banks and the BD Certificates of Deposit that it has issued to customers.

              • BR-4.1.4c

                Reserve requirements, because of their scope of coverage (cf. Rule BR-4.1.4b), generally only apply to Islamic retail bank licensees. They may apply, however, to wholesale banks, if they undertake on-shore business (cf. Section LR-1.2).

          • BR-4.2 Full commercial banks

            [This section deleted 07/2006]

          • BR-4.3 BR-4.3 Locally incorporated banks

            • BR-4.3.1

              The content of this section is only applicable to locally incorporated banks.

            • Directors' interests in the shares of locally incorporated banks listed on the Bahrain Stock Exchange

              • BR-4.3.2

                All locally incorporated banks listed on the Bahrain Stock Exchange are required to report to the Capital Markets Supervision Directorate of the Agency the following information, on a monthly basis, relating to their Directors:

                (a) the number and type of interests of each Director in the shares (i.e. whether by shareholding, options etc.) of all such banks in which the respective Directors have interests in and the rights associated with such interests;
                (b) the date on which, and manner in which, such interests were acquired or disposed of (as the case may be);
                (c) the acquisition price paid, or disposal price received, for such interests; and
                (d) the person(s) from, or to, whom the interests in such shares were acquired or disposed (as the case may be).

              • BR-4.3.3

                The information required in paragraph BR-4.3.2 above should be submitted to the Agency no later than 15 days following the end of the relevant quarter.

        • BR-5 BR-5 Ad-hoc reporting and notification

          • BR-5.1 BR-5.1 All licensed banks

            • BR-5.1.1

              The content of this section is applicable to all banks (licensed by the Agency) in the Kingdom of Bahrain.

            • Large exposures

              • BR-5.1.2

                Should any bank find that, for reasons outside its control or otherwise, it has an exposure to an individual counterparty (other than an exempt exposure) which results in it exceeding any of the limits set out under Chapter CM-5, this should be reported immediately to the Agency for its consideration, and action should be taken immediately to bring the exposure back within applicable limits as soon as possible.

            • Changes in strategy and/or corporate plan

              • BR-5.1.3

                All banks should notify the Agency, in writing, of all major changes (regardless of type and/or effect), including the establishment of branches, subsidiaries, SPVs and cross-border presences (see HC-1.5 for full text) to strategy or corporate plan prior to implementation.

            • Current management and changes thereto

              • BR-5.1.4

                All banks should, on a continuous basis, keep the Agency informed, in writing, of the senior management positions held by relevant persons (including General Managers, Deputy General Managers and other senior persons). Such notification should include the following information:

                (a) Full Name (and CPR for Bahrain resident management);
                (b) Contact details including address and emergency phone no;
                (c) Date of birth;
                (d) Place of birth (including town etc.);
                (e) Nationality;
                (f) Professional qualifications (by educational establishment and dates); and
                (g) Career details over the last ten years (with your institution or elsewhere).

              • BR-5.1.5

                The Agency should also be notified of any changes to the positions mentioned under paragraph BR-5.1.4 that may occur from time to time subject to observing the requirements set out in section HC-1.3.

              • BR-5.1.6

                For detailed rules and guidance on prior notification of appointment and changes in management inventory, refer to chapter HC-1 and HC-2.

            • Changes in dealing staff

              • BR-5.1.7

                All banks should notify the Agency of the following events, within 21 days of their occurrence:

                (a) the appointment of a dealer, including promotion to Head of a Dealing function. The information provided should include details as set out under section HC-2.1.
                (b) the resignation, suspension, dismissal or departure from your institution for whatever reason of a dealer (including his/her transfer to other duties within your institution). The information provided should include details as set out under section HC-2.1.

            • Appointment of a Compliance Manager/Officer

              • BR-5.1.8

                All banks must notify the Agency of the appointment of a compliance manager/officer (refer to section HC-3.2), and must submit the appointee's Curriculum Vitae to the Agency. The Agency's approval must be received by the bank before the appointment becomes final. The bank should also outline how the compliance function fits into the bank's senior management reporting structure, and should give details of relevant reporting lines within the bank.

            • Money laundering and suspicious transactions

              • BR-5.1.9

                The Money Laundering Reporting Officer (or his/her duly authorised delegate) must send a report to the Compliance Directorate of the BMA where he/she knows or has suspicions that a transaction might involve money laundering or terrorist financing, either due to the customer's economic standing or because it meets one of the examples of suspicious transactions described in Appendix FC 3.

            • Promotion of financial products and services offered in/from Bahrain by mean of incentives etc.

              • BR-5.1.10

                The Agency should be sent copies of documentation relating to promotional schemes at least ten days prior to their launch for information purposes. Refer to chapter BC-1 for more details.

            • Authorised signatories

              • BR-5.1.11

                In order to maintain an up-to-date record of authorised signatories of respective banks, the Agency requires all banks to submit to it a list of specimen signatures (and changes to it from time to time) of the officials authorised to sign on behalf of the concerned bank.

            • UN SCR 1373 (2001)

              • BR-5.1.12

                The Agency requires all banks to notify it immediately of any act that might contravene the provisions of UN Security Council Resolution 1373 (2001). Banks should refer to chapter FC-8 for full details of this requirement.

            • Notification of fraud or other material concerns

              • BR-5.1.13

                All banks must report immediately to the Agency any frauds, either attempted or realised, or any well-founded concerns about the integrity of individual Directors or members of management. This obligation to disclose extends to individual Board members and members of management: i.e. if a Director or member of management has reasonable grounds to believe that information that should have been reported to the Agency has not, then they have a duty to report the matter personally to the Agency. All such cases shall be treated in the strictest confidence by the Agency.

              • BR-5.1.14

                All banks must report immediately to the Agency any material losses as soon as the bank becomes aware of them. This notification requirement is separate from notifications for loan write-offs (see BR-5.2.3) or frauds (see above), but refers to losses caused by external events (e.g. falls in stock markets) or internal control failures. In this context "material" would mean: a loss which exceeds 5% of net earnings in a given quarter; or a loss which reduces the bank's capital adequacy by more than 1%; or a loss which reduces total assets by more than 1%.

            • Accounts for charity organisations

              • BR-5.1.15

                All banks, referred to under paragraph BR-5.1.1, should notify the Agency of any transfer of funds amounting to BD 3,000 or above (or equivalent in other currencies) from accounts held by the bank for charitable organisations registered in the Kingdom of Bahrain (also see section FC-1.6). Such notification should include details of amount transferred, account name and number, and beneficiary (name and location).

          • BR-5.2 BR-5.2 Locally incorporated banks

            • BR-5.2.1

              The content of this section is applicable to all locally incorporated banks licensed by the Agency in the Kingdom of Bahrain.

            • Capital adequacy

              • BR-5.2.2

                All banks, referred to under paragraph BR-5.2.1, must give the Agency immediate written notification of any actual breach by such banks of the minimum Risk Asset Ratio(s) (RAR) in accordance with section CA-2.5. Where such notification is given, the bank must also adhere to the additional notification and reporting requirements as set out under section CA-2.5.

            • Write-off of credit facility

              • BR-5.2.3

                All banks, referred to under paragraph BR-5.2.1, should notify the Agency of any write-off of a credit facility, (i.e., loan, overdraft and any other credit facility) of an amount in excess of BD 100,000 (Bahraini Dinars One Hundred Thousand), or its equivalent in foreign currency. See section CM-7.1 for further details.

            • Use of behavioural adjustments to data provided under Section E of PIRI

              • BR-5.2.4

                Banks may in certain circumstances apply to the Agency to use behavioural adjustments (Estimates) to their contractual data provided under Section E of PIRI Forms (also see section AU-3.7). Such application must be supported by data for a minimum period of two years and verified by external auditors.

          • BR-5.3 BR-5.3 Full commercial banks

            • BR-5.3.1

              The content of this section is only applicable to full commercial banks licensed by the Agency in the Kingdom of Bahrain.

            • Introduction of new or expanded customer products and facilities

              • BR-5.3.2

                All banks, referred to under paragraph BR-5.3.1, should notify the Agency of information relating to any new or expanded customer products and facilities in accordance with the requirements set out under section BC-4.7.

              • BR-5.3.3

                [This Paragraph deleted July 2006.]

      • PD PD Public Disclosure Requirements

        • PD-A PD-A Introduction

          • PD-A.1 PD-A.1 Purpose

            • PD-A.1.1

              The purpose of this module is to set out the rules and guidelines that banks should adhere to in order to enhance corporate and financial transparency through better public disclosure.

            • PD-A.1.2

              This module provides support for certain other parts of the Rulebook, mainly:

              (a) Principles of Business;
              (b) High Level Controls;
              (c) Audit Firms;
              (d) BMA Reporting Requirements;
              (e) Capital Adequacy;
              (f) Business and Market Conduct; and
              (g) Risk Management (i.e. market, credit, liquidity and operational).

            • PD-A.1.3

              This module also provides support for certain aspects relating to disclosure requirements stipulated in the BMA Law (Amiri Decree Law No. 23 of 1973) and the Bahrain Commercial Companies Law of 2001 (as amended).

          • PD-A.2 PD-A.2 Key requirements

            • General guidance and best practice

              • PD-A.2.1

                Section PD-B.2 lists the key guidance papers on disclosure as issued by the Basel Committee on Banking Supervision and International Organization of Securities Commissions. These papers serve as international best practice in financial and other disclosures.

            • Annual audited financial statements (annual reports)

              • PD-A.2.2

                Locally incorporated banks are required to publish their audited financial statements per the rules set out in the BMA Law, Bahrain Commercial Companies Law of 2001 (as amended) and the Bahrain Stock Exchange regulations.

              • PD-A.2.3

                Locally incorporated banks must, in their Annual Reports, provide timely information which facilitates market participants' assessment of them. There are seven broad categories of information (as set out in section PD-1.3 and section PD-1.4), each of which should be addressed in clear terms and with appropriate details to help achieve a satisfactory level of bank transparency.

            • Annual disclosure in the annual audited financial statements of banks listed on the Bahrain Stock Exchange (BSE)

              • PD-A.2.4

                The Directors' Report attached to the annual financial statements of banks (referred to under section PD-1.4) should contain details of the interests of Directors, chief executive officers and managers (persons as defined under section HC-2.1, respectively) in the shares of such banks. Such details should include:

                (a) total interests in the shares of such banks by individual persons mentioned above, and
                (b) changes in such interests from the previous financial year to the current financial year.

            • Semi-annual disclosure by commercial branches of foreign banks

              • PD-A.2.5

                Banks (referred to under section PD-2.2) are required by the Agency to prepare and disclose to the public the following information (in the same format as their Annual Audited Accounts) for their Bahrain operations on a semi-annual basis:

                (a) Balance Sheet, and
                (b) Profit and Loss Accounts

            • Publication of reviewed (unaudited) quarterly financial statements

              • PD-A.2.6

                Banks should prepare reviewed (unaudited) quarterly financial statements on a quarterly basis in accordance with FAS 1 issued by AAOIFI. Such statements should be in the same form, and should be prepared on the same basis, as is required by FAS 1 for banks' annual published financial statements.

            • Disclosure of charges

              • PD-A.2.7

                The Agency requires all FCBs to display, by a conspicuous notice, their current effective charges.

            • Disclosure relating to Deposit Protection Schemes (the 'Scheme')

              • PD-A.2.8

                The Agency requires all FCBs to give prominence to the protection of deposits afforded under the Deposit Protection Scheme (see chapter CP-2) — for example in related marketing materials and in general notices featured within banking halls and in account documentation, including audited financial statements.

            • Public disclosure via the internet

              • PD-A.2.9

                Non-listed locally incorporated OBUs and IBs may apply to the Agency to disclose their quarterly financial statements via the Internet. If a non-listed locally incorporated OBU or IB wishes to cease disclosure of quarterly financial statements via the local press and use the internet instead, it must satisfy the following criteria:

                (a) The bank has no shareholders resident in Bahrain.
                (b) The bank has no customers resident in Bahrain. Customers include borrowers, depositors, investment account holders or persons from whom the bank earns fees or commissions. "Customers" in this context would not include other banks, but would include Bahraini corporations, the Government of Bahrain and its agencies, and private individuals (whether high net worth or not).
                (c) The bank does not market itself in any way to residents of Bahrain. In particular, the bank should not market funds or other financial products to residents, even if the bank has no on balance sheet assets or liabilities arising from Bahraini residents.

          • PD-A.3 PD-A.3 Regulation history

            • PD-A.3.1

              This module was first issued in January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter UG-3 of Module UG provides further details on Rulebook maintenance and control.

            • PD-A.3.2

              A list of the most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              PD-2.1.5 & PD-3.1.7 Jan 2006 Revised notification for submission of accounts to the Agency
              PD-4.3 July 2006 Amendment to disclosure of charges requirements
                   
                   
                   

            • Evolution of the Module

              • PD-A.3.3

                Prior to the development of this Rulebook, the Agency had issued various circulars representing regulations covering different aspects of public disclosure requirements. These circulars have now been consolidated into this module covering regulations relating to public disclosure requirements. These circulars and their evolution into this module are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                BC/4/99 17 Mar 1999 PD-1.3 Annual Accounts for the Year Ending 31 December 1999
                BC/10/97 3 Aug 1997 PD-1.3 Accounting and Auditing Standards for Islamic Financial Institutions
                no reference
                (partial)
                Apr 1981 PD-1.5 Precious Metals and Commodities
                BMA/751/93 8 Jul 1993 PD-1.1, PD-1.3, PD-1.4, PD-3.2 Directors' Interest in the Shares of, and the Unaudited Quarterly Financial Statements of, Locally Incorporated Banks Quoted on the Bahrain Stock Exchange.
                EDBC/782/93 17 Jul 1993 PD-1.1 The Interests of Directors, Chief Executive and Senior Managers in the Shares of Locally Incorporated Banks Quoted on the Bahrain Stock Exchange.
                BC/1/99 22 Feb 1999 PD-2.2 Enhancing Bank Transparency
                OG/73/02 17 Feb 2002 PD-4.2 Duty to Display Current Effective Rate of Interest
                ODG/248/2004 25 Jul 2004 PD-4.2 Consumer Finance
                BC/20/99 28 Sep 1999 PD-2.2 Enhancing Islamic Banks Transparency
                OG/107/01 3 Mar 2001 PD-4.3 Disclosure of BD Interest Rates
                OG/425/94 21 Dec 1994 PD-4.4 Deposit Protection
                OG/423/93 28 Nov 1993 PD-4.4 Deposit Protection Scheme (the "Scheme")

            • Effective date

              • PD-A.3.4

                The contents in this module are effective from the date depicted in the original circulars (see paragraph PD-A.3.3) from which the requirements complied.

        • PD-B PD-B General guidance and best practice

          • PD-B.1 PD-B.1 Guidance provided by international bodies

            • Basel Committee on Banking Supervision: Various papers

              • PD-B.1.2

                The papers below set best practice standards and are to be taken as guidance by licensees in order to improve public disclosure practices:

                •  'Enhancing Bank Transparency' — September 1998 (see www.bis.org/publ/bcbs41.pdf)
                •  'Sound Practices for Loan Accounting and Disclosure' — July 1999 (see www.bis.org/publ/bcbs55.pdf)
                •  'Best Practices for Credit Risk Disclosure' — September 2000 (see www.bis.org/publ/bcbs74.pdf)

              • PD-B.1.3

                In addition, the Basel Committee, in conjunction with the International Organization of Securities Commissions (IOSCO) has issued the following papers that relate to the subject matter of this module:

                •  'Intra-group Transactions and Exposure Principles' — December 1999 (see www.bis.org/publ/bcbs62.pdf)
                •  'Risk Concentrations Principles' — December 1999 (see www.bis.org/publ/bcbs43.pdf)

            • Basel Committee on Banking Supervision: Various papers [Deleted with Section PD-B.1.1 on April 2016]

              • PD-B.1.2 [Deleted with Section PD-B.1.1 on April 2016]

                The papers below set best practice standards and are to be taken as guidance by licensees in order to improve public disclosure practices:

                •   'Enhancing Bank Transparency' — September 1998 (see www.bis.org/publ/bcbs41.pdf)
                •   'Sound Practices for Loan Accounting and Disclosure' — July 1999 (see www.bis.org/publ/bcbs55.pdf)
                •   'Best Practices for Credit Risk Disclosure' — September 2000 (see www.bis.org/publ/bcbs74.pdf)
                •   Basel II The Third Pillar — Market Discipline — June 2006.
                April 2008

              • PD-B.1.3 [Deleted with Section PD-B.1.1 on April 2016]

                In addition, the Basel Committee, in conjunction with the International Organization of Securities Commissions (IOSCO) has issued the following papers that relate to the subject matter of this Module:

                •   'Recommendations for Public Disclosure of Trading and Derivatives Activities of Banks and Securities Firms' — October 1999 (see www.bis.org/publ/bcbs48.pdf)
                •   'Intra-group Transactions and Exposure Principles' — December 1999 (see www.bis.org/publ/bcbs62.pdf)
                •   'Risk Concentrations Principles' — December 1999 (see www.bis.org/publ/bcbs43.pdf)
                April 2008

              • PD-B.1.4 [Deleted with Section PD-B.1.1 on April 2016]

                The Islamic Financial Services Board has issued the following paper which makes recommended disclosures for Islamic banks:

                •   'Disclosures to promote transparency and market discipline for institutions offering Islamic financial services — December 2006 (see www.ifsb.org/)
                April 2008

        • PD-1 PD-1 Annual disclosure requirements

          • PD-1.1 PD-1.1 Introduction

            • PD-1.1.1

              The purpose of the contents of this chapter is to set out the Agency's requirements relating to the disclosure of information in the bank's annual audited financial statements ('Annual Report'). This chapter also refers to the Bahrain Commercial Companies Law of 2001 (as amended) and the Bahrain Stock Exchange regulations relating to public disclosure and reporting requirements.

            • PD-1.1.2

              For the purpose of this module, the following definitions apply:

              (a) 'Director' includes any person who occupies the position of a Director and any person who appears to the Agency to be a Director (howsoever called) of the applicant/licensed locally incorporated banks and its subsidiaries;
              (b) 'Chief Executive/General Manager' means a person who is responsible under the immediate authority of the Directors for the conduct of the applicant/licensed locally incorporated bank, including its subsidiaries and overseas branches, and Bahrain branches of foreign banks;
              (c) 'Manager' means a person who, under the immediate authority of a Director or the chief executive/general manager, exercises major managerial function(s) or is responsible for maintaining accounts or other records of the applicant/licensed bank; and
              (d) 'Interest in the shares' shall include, but not be limited to, direct and/or indirect ownership of such shares, the right of voting associated with such shares, the right to receive dividends payable on such shares, and/or any right, regardless of the form thereof, to purchase (or otherwise acquire an interest in) such shares at any time.

          • PD-1.2 PD-1.2 Publication of annual audited financial statements (Annual Reports)

            • PD-1.2.1

              Locally incorporated banks are required to publish their audited financial statements per the rules set out in the BMA law, Bahrain Commercial Companies Law of 2001 (as amended) and the Bahrain Stock Exchange regulations (this latter obligation only applies to banks listed on the Bahrain Stock Exchange).

            • PD-1.2.2

              The audited financial statements should be prepared in accordance with the Financial Accounting Standards (FAS) issued by the Accounting and Auditing Organisation for Islamic Financial Institutions (AAOIFI). For products and activities not covered by AAOIFI, International Accounting Standards (IAS) should be followed.

          • PD-1.3 PD-1.3 Disclosure in the annual audited financial statements (Annual Reports)

            • General

              • PD-1.3.1

                The audited financial statements should be prepared in accordance with the Financial Accounting Standards (FAS) issued by the Accounting and Auditing Organisation for Islamic Financial Institutions (AAOIFI).

              • PD-1.3.2

                For products and activities not covered by the standards listed in paragraph PD-1.3.1, banks should follow the requirements of the International Accounting Standards (IAS) for preparation of audited financial statements.

            • Approval by the Board of Directors

              • PD-1.3.3

                The accounts should be approved by the bank's Board of Directors, signed (normally by the Chairman and the Chief Executive Officer) and annotated as follows:

                "These accounts were approved by the Board of Directors on [date] and signed on their behalf by [name/title] and [name/title]".

            • Investment accounts

              • PD-1.3.4

                Restricted investment accounts are to be reported off balance sheet in the financial statements. Banks must provide disclosures as per the requirements of FAS 1: Presentation and Disclosure in the Financial Statements of Islamic Banks and Financial Institutions issued by AAOIFI.

              • PD-1.3.5

                Unrestricted investment accounts are to be reported on balance sheet in the financial statements. The assets financed by the unrestricted investment accounts are to be included under the Assets section on the balance sheet (net of provisions). The equity of the unrestricted investment accounts should be shown between the liabilities and owners' equity sections. Disclosures and presentations must be in accordance with FAS 1 issued by AAOIFI.

            • Consolidation issues

              • PD-1.3.6

                Where a parent or a group company operating in Bahrain receives funds on an unrestricted basis and these funds are invested with another group company on a restricted basis, these should be eliminated on consolidation. In the consolidated financial statements, investment of the PSIA outside the group should be reported as Unrestricted Investment Accounts. Disclosures and presentation should be in accordance with FAS 1 issued by AAOIFI.

            • Compliance

              • PD-1.3.7

                The Annual Report should include a declaration by the external auditors that no violations have taken place of:

                (a) the Bahrain Commercial Companies Law of 2001 (as amended);
                (b) the BMA Law that might have had a material effect on the business of the bank or on its financial position; and
                (c) the licensing and authorisation requirements and other rules and regulations issued by the Agency.

                In so far as the violations have any material impact on the financial statements of the bank.

          • PD-1.4 PD-1.4 Additional disclosure in the annual audited financial statements of banks listed on the Bahrain Stock Exchange (BSE)

            • PD-1.4.1

              The content of this section is applicable only to locally incorporated banks listed on the Bahrain Stock Exchange (BSE).

            • PD-1.4.2

              The disclosure requirements set out in this section for banks referred to under paragraph PD-1.4.1 are in addition to those set out in section PD-1.3.

            • Interests of Directors, chief executive officers and managers

              • PD-1.4.3

                Without prejudice to any other requirement of Bahrain law (or any other direction of the Agency), the Directors' Report section of the annual audited financial statements of banks should contain details of the interests of Directors, chief executive officers and managers (persons as defined under section PD-1.1, respectively) in the shares of such banks. Such details should include:

                (a) total interests in the shares of such banks by individual persons mentioned above, and
                (b) changes in such interests from the previous financial year to the current financial year.

              • PD-1.4.4

                For the purpose of the disclosure required under paragraph PD-1.4.3, any interests in the shares of a bank held by the spouse(s) or children of a Director, or any other person the control of whose interests in such shares lies ultimately with the Director, shall be deemed to be the interests of the relevant Director. For a definition of 'interest in the shares', see paragraph PD-1.1.2(d).

          • PD-1.5 PD-1.5 Disclosure relating to precious metals and commodities trading activities

            • PD-1.5.1

              The content of this section is applicable to all licensed banks authorised to carry out activities related to trading in precious metals and commodities in accordance with the requirements set out under chapter LR-5.

            • Dealing authorisation

              • PD-1.5.2

                All licensed banks authorized to carry out such dealing activities are required to show in their audited annual financial statements, as a note to or on the face of the balance sheet and profit and loss account, in addition to the disclosure requirements stated in this chapter, accounts detailing assets and liabilities related to precious metals and commodities and their profit and loss account income attributable to such dealing.

        • PD-2 PD-2 Semi-annual disclosure requirements

          • PD-2.1 PD-2.1 Disclosure by commercial branches of foreign banks

            • PD-2.1.1

              The content of this section is applicable only to FCB branches (licensed by the Agency) of foreign banks.

            • PD-2.1.2

              Banks (referred to under paragraph PD-2.1.1) are required by the Agency to prepare and disclose to the public the following information (in the same format as their Annual Audited Accounts) for their Bahrain operations on a semi-annual basis:

              (a) Balance Sheet, and
              (b) Profit and Loss Accounts.

            • PD-2.1.3

              The statements referred to under paragraph PD-2.1.2 should be reviewed by the bank's external auditors, in accordance with International Standards on Auditing (ISA) applicable to Review engagements.

            • PD-2.1.4

              These statements (referred to under paragraph PD-2.1.2) should be published in one local newspaper within eight weeks from the statements' date.

            • PD-2.1.5

              Banks must submit a newspaper copy of the statements (referred to under paragraph PD-2.1.2) to the Agency within eight weeks from the statements' date. The copy should be accompanied by a letter clearly showing on which date and in which publication(s) the statements were published.

        • PD-3 PD-3 Quarterly disclosure requirements

          • PD-3.1 PD-3.1 Reviewed (unaudited) quarterly financial statements

            • PD-3.1.1

              The content of this section is applicable only to locally incorporated banks licensed by the Agency.

            • PD-3.1.2

              All banks referred to under paragraph PD-3.1.1 should prepare and disclose the following information to the public on a quarterly basis:

              (a) A Statement of Financial Position (Balance Sheet)
              (b) An Income Statement
              (c) A Statement of Cash Flows
              (d) A Statement of Changes in Restricted Investment Accounts.
              (e) A Statement of Changes in Owners' Equity.
              (f) Changes to Accounting Policies.

            • Presentation

              • PD-3.1.3

                The presentation of the above statements should be in accordance with Financial Accounting Standards (FAS) No. 1 issued by the Accounting & Auditing Organization for Islamic Financial Institutions and the statements should be prepared on a consolidated basis.

              • PD-3.1.4

                The statements should include comparative data for income related items to the identical period in, and the year to date for, the bank's previous financial year.

              • PD-3.1.5

                The balance sheet should be compared with the balance sheet in the bank's previous audited annual accounts.

            • Review by External Auditors

              • PD-3.1.6

                Such statements should be reviewed by banks' external auditors, in accordance with International Standards on Auditing and the Auditing Standards for Islamic Financial Institutions where applicable.

            • Publication

              • PD-3.1.7

                The statements should be published in one of the local newspapers and a copy submitted to the Agency within eight weeks of the statements' date. The copy should be accompanied by a letter clearly showing on which date and in which publication(s) the statements were published.

            • Additional requirements

              • PD-3.1.8

                The quarterly statements should include the following items:

                (a) (as a minimum) each of the headings and subtotals included in the most recent annual financial statements as presented under FAS 1. Notes should be included if their omission would make the quarterly statement misleading.
                (b) Basic and diluted earnings per share in the earnings statement.
                (c) A statement to the effect that the same accounting policies and methods of computation are followed in the quarterly statements as compared with the most recent financial statements or, where these policies or methods have changed, a description of the nature and effect of the change.
                (d) Explanatory comments concerning the seasonality of the quarterly operations.
                (e) The nature and amount of any unusual items affecting assets, liabilities, income or cash flows.
                (f) Information on the nature and amount of changes in estimates of amounts reported in prior quarterly periods of the current financial year, or changes in estimates of amounts reported in prior financial years, if these changes have a material effect in the current quarterly period.
                (g) Issuances, repurchases, and repayments of securities.
                (h) Dividends paid (aggregate or per share) for shares.
                (i) Any material events subsequent to the end of the quarterly period that have not been reflected in the Financial Statements for the quarterly period should be outlined.
                (j) The effect of changes in the composition of the bank during the quarterly period, including business combinations, acquisitions or disposal of subsidiaries and long-term investments, restructurings and discontinuing operations should be stated.
                (k) Changes to contingent liabilities and contingent assets since the last annual balance sheet should be disclosed.

        • PD-4 PD-4 Other public disclosure requirements

          • PD-4.1 PD-4.1 Introduction

            • PD-4.1.1

              The purpose of the contents of this chapter is to set out the Agency's requirements relating to other public disclosure of information by the banks, not covered in chapters PD-1 to PD-3.

          • PD-4.2 PD-4.2 Disclosure of key terms relating to a consumer finance agreement

            • PD-4.2.1

              The content of this section is applicable to all FCBs licensed by the Agency.

            • PD-4.2.2

              All banks referred to under paragraph PD-4.2.1 are required by the Agency to follow the disclosure requirements related to consumer finance as set out under section CM-7.5.

          • PD-4.3 PD-4.3 Disclosure of charges on short-term financing facilities

            • PD-4.3.1

              The content of this section is applicable to all FCBs licensed by the Agency.

            • PD-4.3.2

              The Agency requires all FCBs to display, by a conspicuous notice, their scale of charges on BD short-term revolving facilities to commercial customers.

            • PD-4.3.3

              'Conspicuous notice' means a written statement in both Arabic and English languages which is easily visible and legible and is displayed in all FCB premises open to the public.

            • PD-4.3.4

              FCBs are left free to decide their own basis of charging and to make changes to it as they consider appropriate.

            • PD-4.3.5

              FCBs must display a list of current charges including any standard charges and commissions that will be applied by the bank to individual services and transactions. See section BC-4.2 for further details.

          • PD-4.4 PD-4.4 Disclosure relating to Deposit Protection Scheme

            • PD-4.4.1

              The content of this section is applicable to all FCBs licensed by the Agency.

            • PD-4.4.2

              The Agency requires all FCBs referring (directly or indirectly) to the protection of deposits in related marketing materials and in general notices featured within banking halls and in account documentation, including Annual Reports, to prominently disclose the following statement:

              "Subject to the provisions thereof, deposits held with the Bahrain office of [name of the banking firm] are covered by the Deposit Protection Scheme established by the Bahrain Monetary Agency regulation concerning the establishment of a Deposit Protection Scheme and a Deposit Protection Board".

            • PD-4.4.3

              FCBs should, in discussions and/or correspondence with new and prospective customers, bring the Deposit Protection Scheme and the protection afforded by it to the customer's notice.

            • PD-4.4.4

              The Agency welcomes the introduction by the banks, at their discretion, of other appropriate means to promote the Deposit Protection Scheme as prominently as possible.

            • PD-4.4.5

              For detailed guidance on the Deposit Protection Scheme's documentation requirements, see chapter CP-2.

        • PD-5 PD-5 Public Disclosure via the Internet

          • PD-5.1 PD-5.1 Publication and disclosure of financial results

            • Existing requirements

              • PD-5.1.1

                All locally incorporated banks are required to disclose their quarterly financial statements to the public within eight weeks of the end of each quarter. Disclosure to the public should be by way of an announcement in the local press of the balance sheet and profit and loss account (with certain other additional disclosures as outlined in chapters PD-1 to PD-4).

            • Criteria for application for disclosure via the internet

              • PD-5.1.2

                Non-listed locally incorporated banks may apply to the Agency to disclose their quarterly financial statements via the internet. If a bank wishes to cease disclosure of quarterly financial statements via the local press, it must satisfy the following criteria:

                (a) The bank has no shareholders resident in Bahrain.
                (b) The bank has no customers resident in Bahrain. Customers include borrowers, depositors, investment account holders or persons from whom the bank earns fees or commissions. "Customers" in this context would not include other banks, but would include Bahraini corporations, the Government of Bahrain and its agencies, and private individuals (whether high net worth or not).
                (c) The bank does not market itself in any way to residents of Bahrain. In particular, the bank should not market funds or other financial products to residents, even if the bank has no on balance sheet assets or liabilities arising from Bahraini residents.

              • PD-5.1.3

                Banks meeting all of the above criteria, may apply to the Agency to disclose their quarterly financial statements by way of their website instead of by way of the local press.

      • PD PD Public Disclosure Requirements [October 2007]

        This version of Module PD was replaced in April 2008. Click here for the current Module PD.

        • PD-A PD-A Introduction

          This version of Module PD was replaced in April 2008. Click here for the current Module PD.

          • PD-A.1 PD-A.1 Purpose

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-A.1.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The purpose of this Module is to set out the rules and guidelines that banks should adhere to in order to enhance corporate and financial transparency through better public disclosure.

              October 07

            • PD-A.1.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              This Module provides support for certain other parts of the Rulebook, mainly:

              (a) Principles of Business (Module PB);
              (b) High-level Controls (Module HC);
              (c) Audit Firms (Module AU);
              (d) CBB Reporting Requirements (Module BR);
              (e) Capital Adequacy (Module CA);
              (f) Business and Market Conduct (Module BC); and
              (g) Risk Management (i.e. market, credit, liquidity and operational) (Module OM).
              October 07

            • PD-A.1.3

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              This Module also provides support for certain aspects relating to disclosure requirements stipulated in the Decree No. 64 of 2006 of the Central Bank of Bahrain and Financial Institutions Law 2006 ('CBB Law') and the Bahrain Commercial Companies Law of 2001 (as amended).

              October 07

            • Legal Basis

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.1.4

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                This Module contains the CBB's Directive relating to public disclosure and is issued under the powers available to the CBB under Article 38 of the Central Bank of Bahrain and Financial Institutions Law 2006 ('CBB Law'). The Directive in this Module is applicable to all Islamic bank licensees.

                October 07

              • PD-A.1.5

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1.

                October 07

          • PD-A.2 PD-A.2 Key requirements

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • General guidance and best practice

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.2.1

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Section PD-B.2 lists the key guidance papers on disclosure as issued by the Basel Committee on Banking Supervision and International Organisation of Securities Commissions. These papers serve as international best practice in financial and other disclosures.

                October 07

            • Annual audited financial statements (annual reports)

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.2.2

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Locally incorporated banks are required to publish their audited financial statements per the rules set out in the CBB Law, Bahrain Commercial Companies Law of 2001 (as amended) and the Bahrain Stock Exchange regulations.

                October 07

              • PD-A.2.3

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Locally incorporated banks must, in their Annual Reports, provide timely information which facilitates market participants' assessment of them. There are seven broad categories of information (as set out in Section PD-1.3 and Section PD-1.4), each of which should be addressed in clear terms and with appropriate details to help achieve a satisfactory level of bank transparency.

                October 07

            • Annual disclosure in the annual audited financial statements of banks listed on the Bahrain Stock Exchange (BSE)

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.2.4

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The Directors' Report attached to the annual financial statements of banks (referred to under Section PD-1.4) should contain details of the interests of Directors, chief executive officers and managers (persons as defined under Section HC-2.1, respectively) in the shares of such banks. Such details should include:

                (a) Total interests in the shares of such banks by individual persons mentioned above, and
                (b) Changes in such interests from the previous financial year to the current financial year.
                October 07

            • Semi-annual disclosure by commercial branches of foreign banks

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.2.5

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Banks (referred to under Section PD-2.2) are required by the Central Bank to prepare and disclose to the public the following information (in the same format as their Annual Audited Accounts) for their Bahrain operations on a semi-annual basis:

                (a) Balance Sheet, and
                (b) Profit and Loss Accounts
                October 07

            • Publication of reviewed (unaudited) quarterly financial statements

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.2.6

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Banks should prepare reviewed (unaudited) quarterly financial statements on a quarterly basis in accordance with FAS 1 issued by AAOIFI. Such statements should be in the same form, and should be prepared on the same basis, as is required by FAS 1 for banks' annual published financial statements.

                October 07

            • Disclosure of charges

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.2.7

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The Central Bank requires all retail banks to display, by a conspicuous notice, their current effective charges.

                October 07

            • Disclosure relating to Deposit Protection Schemes (the "Scheme")

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.2.8

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The Central Bank requires all retail banks to give prominence to the protection of deposits afforded under the Deposit Protection Scheme (see Chapter CP-2) - for example in related marketing materials and in general notices featured within banking halls and in account documentation, including audited financial statements.

                October 07

            • Public disclosure via the internet

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.2.9

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Non-listed locally incorporated OBUs and IBs may apply to the Central Bank to disclose their quarterly financial statements via the Internet. If a non-listed locally incorporated OBU or IB wishes to cease disclosure of quarterly financial statements via the local press and use the internet instead, it must satisfy the following criteria:

                (a) The bank has no shareholders resident in Bahrain.
                (b) The bank has no customers resident in Bahrain. Customers include borrowers, depositors, investment account holders or persons from whom the bank earns fees or commissions. 'Customers' in this context would not include other banks, but would include Bahraini corporations, the Government of Bahrain and its agencies, and private individuals (whether high net worth or not).
                (c) The bank does not market itself in any way to residents of Bahrain. In particular, the bank should not market funds or other financial products to residents, even if the bank has no on balance sheet assets or liabilities arising from Bahraini residents.
                October 07

          • PD-A.3 PD-A.3 Module History

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-A.3.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              This Module was first issued in January 2005 by the BMA as part of the Islamic principles volume. All regulations in this volume have been effective since this date. Any material changes that have subsequently been made to this Module are annotated with the calendar quarter date in which the change was made: Chapter UG-3 provides further details on Rulebook maintenance and version control.

              October 07

            • PD-A.3.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              When the CBB replaced the BMA in September 2006, the provisions of this Module remained in force. Volume 2 was updated in October 2007 to reflect the switch to the CBB; however, new calendar quarter dates were only issued where the update necessitated changes to actual requirements.

              October 07

            • PD-A.3.3

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              A list of the most recent changes made to this Module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              PD-2.1.5 & 3.1.7 Jan 2006 Revised notification for submission of accounts to the Central Bank.
              PD-4.3 July 2006 Amendment to disclosure of charges requirements.
              PD-A.1.4 10/2007 New Rule PD-A.1.4 introduced categorising this Module as a Directive.
              PD-1.3 10/2007 New Rule PD-1.3.8 requiring disclosure of penalties paid
              October 07

            • Evolution of the Module

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.3.4

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Prior to the development of this Rulebook, the Central Bank had issued various circulars representing regulations covering different aspects of public disclosure requirements. These circulars have now been consolidated into this Module covering regulations relating to public disclosure requirements. These circulars and their evolution into this Module are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                BC/4/99 17 Mar 1999 PD-1.3 Annual Accounts for the Year Ending 31 December 1999.
                BC/10/97 3 Aug 1997 PD-1.3 Accounting and Auditing Standards for Islamic Financial Institutions.
                no reference (partial) Apr 1981 PD-1.5 Precious Metals and Commodities.
                CBB/751/93 8 Jul 1993 PD-1.1, PD-1.3, PD-1.4, PD-3.2 Directors' Interest in the Shares of, and the Unaudited Quarterly Financial Statements of, Locally Incorporated Banks Quoted on the Bahrain Stock Exchange.
                EDBC/782/93 17 Jul 1993 PD-1.1 The Interests of Directors, Chief Executive and Senior Managers in the Shares of Locally Incorporated Banks Quoted on the Bahrain Stock Exchange.
                BC/1/99 22 Feb 1999 PD-2.2 Enhancing Bank Transparency.
                OG/73/02 17 Feb 2002 PD-4.2 Duty to Display Current Effective Rate of Interest.
                ODG/248/2004 25 Jul 2004 PD-4.2 Consumer Finance.
                BC/20/99 28 Sep 1999 PD-2.2 Enhancing Islamic Banks Transparency.
                OG/107/01 3 Mar 2001 PD 4.3 Disclosure of BD Interest Rates
                OG/425/94 21 Dec 1994 PD 4.4 Deposit Protection
                OG/423/93 28 Nov 1993 PD 4.4 Deposit Protection Scheme (the 'Scheme')
                October 07

            • Effective date

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-A.3.5

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The contents in this Module are effective from the date depicted in the original circulars (see Paragraph PD-A-3.3) from which the requirements are compiled.

                October 07

        • PD-B PD-B General guidance and best practice

          This version of Module PD was replaced in April 2008. Click here for the current Module PD.

          • PD-B.1 PD-B.1 Guidance provided by international bodies

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-B.1.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              This Chapter provides general guidance on public disclosure requirements.

              October 07

            • Basel Committee on Banking Supervision: Various papers

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-B.1.2

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The papers below set best practice standards and are to be taken as guidance by licensees in order to improve public disclosure practices:

                •   'Enhancing Bank Transparency' – September 1998 (see www.bis.org/publ/bcbs41.pdf)
                •   'Sound Practices for Loan Accounting and Disclosure' – July 1999 (see www.bis.org/publ/bcbs55.pdf)
                •   'Best Practices for Credit Risk Disclosure' – September 2000 (see www.bis.org/publ/bcbs74.pdf)
                October 07

              • PD-B.1.3

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                In addition, the Basel Committee, in conjunction with the International Organisation of Securities Commissions (IOSCO) has issued the following papers that relate to the subject matter of this Module:

                •   'Intra-group Transactions and Exposure Principles' – December 1999 (see www.bis.org/publ/bcbs62.pdf)
                •   'Risk Concentrations Principles' – December 1999 (see www.bis.org/publ/bcbs43.pdf)
                October 07

        • PD-1 PD-1 Annual disclosure requirements

          This version of Module PD was replaced in April 2008. Click here for the current Module PD.

          • PD-1.1 PD-1.1 Introduction

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-1.1.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The purpose of the contents of this Chapter is to set out the Central Bank's requirements relating to the disclosure of information in the bank's annual audited financial statements ('Annual Report'). This Chapter also refers to the Bahrain Commercial Companies Law of 2001 (as amended) and the Bahrain Stock Exchange regulations relating to public disclosure and reporting requirements.

              October 07

            • PD-1.1.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              For the purpose of this Module, the following definitions apply:

              (a) 'Director' includes any person who occupies the position of a Director and any person who appears to the Central Bank to be a Director (howsoever called) of the applicant/licensed locally incorporated banks and its subsidiaries;
              (b) 'Chief Executive/General Manager' means a person who is responsible under the immediate authority of the Directors for the conduct of the applicant/licensed locally incorporated bank, including its subsidiaries and overseas branches, and Bahrain branches of foreign banks;
              (c) 'Manager' means a person who, under the immediate authority of a Director or the chief executive/general manager, exercises major managerial function(s) or is responsible for maintaining accounts or other records of the applicant/licensed bank; and
              (d) 'Interest in the shares' shall include, but not be limited to, direct and/or indirect ownership of such shares, the right of voting associated with such shares, the right to receive dividends payable on such shares, and/or any right, regardless of the form thereof, to purchase (or otherwise acquire an interest in) such shares at any time.
              October 07

          • PD-1.2 PD-1.2 Publication of annual audited financial statements (Annual Reports)

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-1.2.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              Locally incorporated banks are required to publish their audited financial statements per the rules set out in the CBB law, Bahrain Commercial Companies Law of 2001 (as amended) and the Bahrain Stock Exchange regulations (this latter obligation only applies to banks listed on the Bahrain Stock Exchange).

              October 07

            • PD-1.2.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The audited financial statements should be prepared in accordance with the Financial Accounting Standards (FAS) issued by the Accounting and Auditing Organisation for Islamic Financial Institutions (AAOIFI). For products and activities not covered by AAOIFI, International Accounting Standards (IAS) should be followed.

              October 07

          • PD-1.3 PD-1.3 Disclosure in the annual audited financial statements (Annual Reports)

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • General

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-1.3.1

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The audited financial statements should be prepared in accordance with the Financial Accounting Standards (FAS) issued by the Accounting and Auditing Organisation for Islamic Financial Institutions (AAOIFI).

                October 07

              • PD-1.3.2

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                For products and activities not covered by the standards listed in Paragraph PD 1.3.1, banks should follow the requirements of the International Accounting Standards (IAS) for preparation of audited financial statements.

                October 07

            • Approval by the Board of Directors

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-1.3.3

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The accounts should be approved by the bank's Board of Directors, signed (normally by the Chairman and the Chief Executive Officer) and annotated as follows:

                'These accounts were approved by the Board of Directors on [date] and signed on their behalf by [name/title] and [name/title]'.

                October 07

            • Investment accounts

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-1.3.4

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Restricted investment accounts are to be reported off-balance sheet in the financial statements. Banks must provide disclosures as per the requirements of FAS 1: Presentation and Disclosure in the Financial Statements of Islamic Banks and Financial Institutions issued by AAOIFI.

                October 07

              • PD-1.3.5

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Unrestricted investment accounts are to be reported on-balance sheet in the financial statements. The assets financed by the unrestricted investment accounts are to be included under the Assets Section on the balance sheet (net of provisions). The equity of the unrestricted investment accounts should be shown between the liabilities and owners' equity Sections. Disclosures and presentations must be in accordance with FAS 1 issued by AAOIFI.

                October 07

            • Consolidation issues

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-1.3.6

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Where a parent or a group company operating in Bahrain receives funds on an unrestricted basis and these funds are invested with another group company on a restricted basis, these should be eliminated on consolidation. In the consolidated financial statements, investment of the PSIA outside the group should be reported as Unrestricted Investment Accounts. Disclosures and presentation should be in accordance with FAS 1 issued by AAOIFI.

                October 07

            • Compliance

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-1.3.7

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The Annual Report should include a declaration by the external auditors that no violations have taken place of:

                (a) The Bahrain Commercial Companies Law of 2001 (as amended);
                (b) The CBB Law that might have had a material effect on the business of the bank or on its financial position; and
                (c) The licensing and authorisation requirements and other rules and regulations issued by the Central Bank.

                In so far as the violations have any material impact on the financial statements of the bank.

                October 07

              • PD-1.3.8

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The Annual Report must disclose the amount of any penalties paid to the Central Bank during the period of the report together with a factual description of the reason(s) given by the Central Bank for the penalty (see Section EN-1.3). Failure to comply with this requirement will mean that the concerned bank will be required to make the disclosure in the subsequent quarterly financial statement and in the subsequent annual financial statement. A financial penalty for non-disclosure will also be levied upon the concerned bank.

                October 07

          • PD-1.4 PD-1.4 Additional disclosure in the annual audited financial statements of banks listed on the Bahrain Stock Exchange (BSE)

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-1.4.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The content of this Section is applicable only to locally incorporated banks listed on the Bahrain Stock Exchange (BSE).

              October 07

            • PD-1.4.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The disclosure requirements set out in this Section for banks referred to under Paragraph PD-1.4.1 are in addition to those set out in Section PD-1.3.

              October 07

            • Interests of Directors, chief executive officers and managers

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-1.4.3

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Without prejudice to any other requirement of Bahrain law (or any other direction of the Central Bank), the Directors' Report Section of the annual audited financial statements of banks should contain details of the interests of Directors, chief executive officers and managers (persons as defined under Section PD-1.1, respectively) in the shares of such banks. Such details should include:

                (a) Total interests in the shares of such banks by individual persons mentioned above, and
                (b) Changes in such interests from the previous financial year to the current financial year.
                October 07

              • PD-1.4.4

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                For the purpose of the disclosure required under Paragraph PD-1.4.3, any interests in the shares of a bank held by the spouse(s) or children of a Director, or any other person the control of whose interests in such shares lies ultimately with the Director, shall be deemed to be the interests of the relevant Director. For a definition of 'interest in the shares', see Paragraph PD-1.1.2(d).

                October 07

          • PD-1.5 PD-1.5 Disclosure relating to precious metals and commodities trading activities

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-1.5.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The content of this Section is applicable to all licensed banks authorised to carry out activities related to trading in precious metals and commodities in accordance with the requirements set out under Chapter LR-5.

              October 07

            • Dealing authorisation

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-1.5.2

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                All licensed banks authorized to carry out such dealing activities are required to show in their audited annual financial statements, as a note to or on the face of the balance sheet and profit and loss account, in addition to the disclosure requirements stated in this Chapter, accounts detailing assets and liabilities related to precious metals and commodities and their profit and loss account income attributable to such dealing.

                October 07

        • PD-2 PD-2 Semi-annual disclosure requirements

          This version of Module PD was replaced in April 2008. Click here for the current Module PD.

          • PD-2.1 PD-2.1 Disclosure by commercial branches of foreign banks

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-2.1.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The content of this Section is applicable only to retail bank branches (licensed by the Central Bank) of foreign banks.

              October 07

            • PD-2.1.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              Banks (referred to under Paragraph PD-2.1.1) are required by the Central Bank to prepare and disclose to the public the following information (in the same format as their Annual Audited Accounts) for their Bahrain operations on a semi-annual basis:

              (a) Balance Sheet, and
              (b) Profit and Loss Accounts.
              October 07

            • PD-2.1.3

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The statements referred to under Paragraph PD-2.1.2 should be reviewed by the bank's external auditors, in accordance with International Standards on Auditing (ISA) applicable to Review engagements.

              October 07

            • PD-2.1.4

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              These statements (referred to under Paragraph PD-2.1.2) should be published in one local newspaper within eight weeks from the statements' date.

              October 07

            • PD-2.1.5

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              Banks must submit a newspaper copy of the statements (referred to under Paragraph PD-2.1.2) to the Central Bank within eight weeks from the statements' date. The copy should be accompanied by a letter clearly showing on which date and in which publication(s) the statements were published.

              October 07

        • PD-3 PD-3 Quarterly disclosure requirements

          This version of Module PD was replaced in April 2008. Click here for the current Module PD.

          • PD-3.1 PD-3.1 Reviewed (unaudited) quarterly financial statements

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-3.1.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The content of this Section is applicable only to locally incorporated banks licensed by the Central Bank.

              October 07

            • PD-3.1.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              All banks referred to under Paragraph PD-3.1.1 should prepare and disclose the following information to the public on a quarterly basis:

              (a) A Statement of Financial Position (Balance Sheet)
              (b) An Income Statement
              (c) A Statement of Cash Flows
              (d) A Statement of Changes in Restricted Investment Accounts.
              (e) A Statement of Changes in Owners' Equity.
              (f) Changes to Accounting Policies.
              October 07

            • Presentation

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-3.1.3

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The presentation of the above statements should be in accordance with Financial Accounting Standards (FAS) No. 1 issued by the Accounting & Auditing Organisation for Islamic Financial Institutions and the statements should be prepared on a consolidated basis.

                October 07

              • PD-3.1.4

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The statements should include comparative data for income related items to the identical period in, and the year to date for, the bank's previous financial year.

                October 07

              • PD-3.1.5

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The balance sheet should be compared with the balance sheet in the bank's previous audited annual accounts.

                October 07

            • Review by External Auditors

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-3.1.6

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Such statements should be reviewed by banks' external auditors, in accordance with International Standards on Auditing and the Auditing Standards for Islamic Financial Institutions where applicable.

                October 07

            • Publication

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-3.1.7

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The statements should be published in one of the local newspapers and a copy submitted to the Central Bank within eight weeks of the statements' date. The copy should be accompanied by a letter clearly showing on which date and in which publication(s) the statements were published.

                October 07

            • Additional requirements

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-3.1.8

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                The quarterly statements should include the following items:

                (a) (As a minimum) each of the headings and subtotals included in the most recent annual financial statements as presented under FAS 1. Notes should be included if their omission would make the quarterly statement misleading.
                (b) Basic and diluted earnings per share in the earnings statement.
                (c) A statement to the effect that the same accounting policies and methods of computation are followed in the quarterly statements as compared with the most recent financial statements or, where these policies or methods have changed, a description of the nature and effect of the change.
                (d) Explanatory comments concerning the seasonality of the quarterly operations.
                (e) The nature and amount of any unusual items affecting assets, liabilities, income or cash flows.
                (f) Information on the nature and amount of changes in estimates of amounts reported in prior quarterly periods of the current financial year, or changes in estimates of amounts reported in prior financial years, if these changes have a material effect in the current quarterly period.
                (g) Issuances, repurchases, and repayments of securities.
                (h) Dividends paid (aggregate or per share) for shares.
                (i) Any material events subsequent to the end of the quarterly period that have not been reflected in the Financial Statements for the quarterly period should be outlined.
                (j) The effect of changes in the composition of the bank during the quarterly period, including business combinations, acquisitions or disposal of subsidiaries and long-term investments, restructurings and discontinuing operations should be stated.
                (k) Changes to contingent liabilities and contingent assets since the last annual balance sheet should be disclosed.
                October 07

        • PD-4 PD-4 Other public disclosure requirements

          This version of Module PD was replaced in April 2008. Click here for the current Module PD.

          • PD-4.1 PD-4.1 Introduction

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-4.1.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The purpose of the contents of this Chapter is to set out the Central Bank's requirements relating to other public disclosure of information by the banks, not covered in Chapters PD-1 to PD-3.

              October 07

          • PD-4.2 PD-4.2 Disclosure of key terms relating to a consumer finance agreement

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-4.2.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The content of this Section is applicable to all retail banks licensed by the Central Bank.

              October 07

            • PD-4.2.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              All banks referred to under Paragraph PD-4.2.1 are required by the Central Bank to follow the disclosure requirements related to consumer finance as set out under Section CM-7.5.

              October 07

          • PD-4.3 PD-4.3 Disclosure of charges on short-term financing facilities

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-4.3.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The content of this Section is applicable to all retail banks licensed by the Central Bank.

              October 07

            • PD-4.3.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The Central Bank requires all retail banks to display, by a conspicuous notice, their scale of charges on BD short-term revolving facilities to commercial customers.

              October 07

            • PD-4.3.3

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              'Conspicuous notice' means a written statement in both Arabic and English languages which is easily visible and legible and is displayed in all retail banks' premises open to the public.

              October 07

            • PD-4.3.4

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              Retail banks are left free to decide their own basis of charging and to make changes to it as they consider appropriate.

              October 07

            • PD-4.3.5

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              Retail banks must display a list of current charges including any standard charges and commissions that will be applied by the bank to individual services and transactions. See Section BC 4.2 for further details.

              October 07

          • PD-4.4 PD-4.4 Disclosure relating to Deposit Protection Scheme

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • PD-4.4.1

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The content of this Section is applicable to all retail banks licensed by the Central Bank.

              October 07

            • PD-4.4.2

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The Central Bank requires all retail banks referring (directly or indirectly) to the protection of deposits in related marketing materials and in general notices featured within banking halls and in account documentation, including Annual Reports, to prominently disclose the following statement:

              •   'Subject to the provisions thereof, deposits held with the Bahrain office of [name of the banking firm] are covered by the Deposit Protection Scheme established by the Central Bank of Bahrain regulation concerning the establishment of a Deposit Protection Scheme and a Deposit Protection Board'.
              October 07

            • PD-4.4.3

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              Retail banks should, in discussions and/or correspondence with new and prospective customers, bring the Deposit Protection Scheme and the protection afforded by it to the customer's notice.

              October 07

            • PD-4.4.4

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              The Central Bank welcomes the introduction by the banks, at their discretion, of other appropriate means to promote the Deposit Protection Scheme as prominently as possible.

              October 07

            • PD-4.4.5

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              For detailed guidance on the Deposit Protection Scheme's documentation requirements, see Chapter CP-2.

              October 07

        • PD-5 PD-5 Public Disclosure via the Internet

          This version of Module PD was replaced in April 2008. Click here for the current Module PD.

          • PD-5.1 PD-5.1 Publication and disclosure of financial results

            This version of Module PD was replaced in April 2008. Click here for the current Module PD.

            • Existing requirements

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-5.1.1

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                All locally incorporated banks are required to disclose their quarterly financial statements to the public within eight weeks of the end of each quarter. Disclosure to the public should be by way of an announcement in the local press of the balance sheet and profit and loss account (with certain other additional disclosures as outlined in Chapters PD-1 to PD-3).

                October 07

            • Criteria for application for disclosure via the internet

              This version of Module PD was replaced in April 2008. Click here for the current Module PD.

              • PD-5.1.2

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Non-listed locally incorporated banks may apply to the Central Bank to disclose their quarterly financial statements via the internet. If a bank wishes to cease disclosure of quarterly financial statements via the local press, it must satisfy the following criteria:

                (a) The bank has no shareholders resident in Bahrain.
                (b) The bank has no customers resident in Bahrain. Customers include borrowers, depositors, investment account holders or persons from whom the bank earns fees or commissions. 'Customers' in this context would not include other banks, but would include Bahraini corporations, the Government of Bahrain and its agencies, and private individuals (whether high net worth or not).
                (c) The bank does not market itself in any way to residents of Bahrain. In particular, the bank should not market funds or other financial products to residents, even if the bank has no on balance sheet assets or liabilities arising from Bahraini residents.
                October 07

              • PD-5.1.3

                This version of Module PD was replaced in April 2008. Click here for the current Module PD.

                Banks meeting all of the above criteria, may apply to the Central Bank to disclose their quarterly financial statements by way of their website instead of by way of the local press.

                October 07

    • Enforcement & Redress

      • CP CP Compensation [1 October 2007 to 30 September 2012]

        • CP-A CP-A Introduction

          • CP-A.1 CP-A.1 Purpose

            • CP-A.1.1

              The purpose of this Module is to set out rules and regulations establishing a Deposit Protection Scheme (the 'Scheme') for compensating eligible depositors (as defined under Section CP-2.1) when the banks (referred to under Section CP-2.1) are unable, or likely to be unable, to satisfy claims against them.

              October 07

            • CP-A.1.2

              The body established to operate and administer the compensation scheme is the Deposit Protection Board (the 'Board'). The Module sets out rules and regulations that would allow the Board to:

              (a) Administer and implement the scheme;
              (b) Calculate compensation amount; and
              (c) Establish rules of operation.
              Amended: January 2011
              October 07

            • CP-A.1.3

              The Module also specifies:

              (a) Who is eligible for receiving compensation;
              (b) How the scheme will be funded;
              (c) Who the contributing banks are; and
              (d) What are contributing banks' responsibilities regarding the implementation of the scheme.
              Amended: January 2011
              October 07

            • Legal Basis

              • CP-A.1.4

                This Module sets out how the CBB now applies Resolution No. 3 of His Highness the Prime Minister dated 1st November 1993 (the "Resolution") in light of certain legislative and regulatory changes that have taken place since that date. It also contains a modified version of a Regulation issued by the Bahrain Monetary Agency by way of circular (OG/423/93) on 28th November 1993 (the "Regulation") in order to implement the Resolution. The Regulation (as modified) is currently effective by virtue of Article 188 (and Article 4) of the Central Bank of Bahrain and Financial Institutions Law 2006 ("CBB Law"). The Regulation is applicable to all Islamic bank licensees.

                Adopted: January 2011

              • CP-A.1.5

                For an explanation of the CBB's rule-making powers and different regulatory instruments, see Section UG-1.1

                Adopted: January 2011

          • CP-A.2 CP-A.2 Key Requirements

            • CP-A.2.1

              The Deposit Protection Board (the 'Board') should, subject to and in accordance with the terms and conditions of the regulations in this Module, be responsible for the activities set out under Section CP-1.1.

              October 07

            • CP-A.2.2

              The Board should be convened and ready to carry out its duties in the case of any of the following events identified under Section CP-2.

              October 07

            • CP-A.2.3

              The Scheme will apply to eligible deposits (as defined in Section CP-2.1) held with the Bahrain offices of retail banks which are licensed by the CBB.

              Amended: January 2011
              October 07

            • CP-A.2.4

              Each eligible depositor should be entitled to receive under the Scheme a maximum of the lesser of:

              (a) Three quarters of the combined total amount of all of his eligible deposits with the relevant bank; or
              (b) BD 15,000.
              Amended: January 2011
              October 07

            • CP-A.2.5

              Notwithstanding the provisions of Section CP-2.2, the amount payable under the Scheme in any one calendar year (the 'current year') should not exceed BD 25,000,000.

              October 07

            • CP-A.2.6

              Upon the convening of the Board in accordance with Section CP-1.2, the Board will calculate the total amount of compensation to be paid under the Scheme in the case of the relevant bank, as well as the amount of compensation payable under the Scheme to each eligible depositor of such relevant bank.

              October 07

            • CP-A.2.7

              Upon receipt by the Board of confirmation from the (lead) mandated bank that the actions referred to in Section CP-2.3 have been completed, each eligible depositor should be sent a certificate in duplicate (attached in Appendix CP-1) by the Board informing such eligible depositor of the amount of compensation payable to him/her under the Scheme in respect of his/her eligible deposit(s) with the relevant bank.

              October 07

            • CP-A.2.8

              The CBB requires all retail bank licensees referring (directly or indirectly) to the protection of deposits in related marketing materials and in general notices featured within banking halls and in account documentation, including Annual Reports, to prominently disclose the statement set out under Section CP-2.4.

              Amended: January 2011
              October 07

          • CP-A.3 CP-A.3 Module History

            • CP-A.3.1

              This Module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter 3 of Module UG provides further details on Rulebook maintenance and control.

              October 07

            • CP-A.3.2

              A list of the most recent changes made to this Module are detailed in the table below:

              Summary of Changes

              Module Ref. Change Date Description of Changes
              CP-1.2 10/07 New reference to CBB Law
              CP-2.4 10/07 Renaming of Scheme Disclosure to "CBB"
              CP 01/2011 Various minor amendments to ensure consistency in formatting of CBB Rulebook.
              CP-A.1.4 01/2011 Added legal basis.

            • Evolution of the Module

              • CP-A.3.3

                Prior to the development of the Rulebook, the CBB had issued various circulars representing regulations covering the operations and establishment of the Deposit Protection Scheme and the Deposit Protection Board. These circulars have now been consolidated into the Compensation Module. These circulars and their evolution into this Module are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                OG/423/93 28 Nov 1993 CP-1 — CP-2 Deposit Protection Scheme (the "Scheme").
                OG/425/94 21 Dec 1994 CP-2.4 Deposit Protection.
                Amended: January 2011
                October 07

            • Effective Date

              • CP-A.3.4

                The contents in this Module are effective from the date depicted in the original circulars/information pack (see Paragraph CP-A.3.3) from which the requirements are compiled.

                October 07

        • CP-1 CP-1 Deposit Protection Board (the 'Board')

          • CP-1.1 CP-1.1 Constitution of the Board

            • CP-1.1.1

              The contents of this chapter set out the details of the constitution, authority and administration of the Deposit Protection Board (the 'Board').

              October 07

            • CP-1.1.2

              The Deposit Protection Board (the 'Board') should, subject to and in accordance with the terms and conditions of this Module, be responsible for:

              (a) The administration and implementation of a Deposit Protection Scheme (the 'Scheme');
              (b) The determination of the amount of compensation which is to be paid out under the Scheme in the event of the liquidation of a relevant bank (as defined in Section CP-1.2 below); and
              (c) The establishment of the rules of operation of the Board.
              Amended: January 2011
              October 07

            • CP-1.1.3

              The Board should consist of the following persons, whose period of membership of the Board (other than in the case of the person referred to in Paragraph CP-1.1.3(e) below) should be for a three year renewable period:

              (a) Two representatives of the CBB, who shall be appointed by the Governor of the CBB, one of whom should be Chairman of the Board;
              (b) Four representatives of commercial banking firms in Bahrain, who should be appointed by the Governor of the CBB following consultation with the Bankers' Society of Bahrain;
              (c) One representative of each of the Ministries of Finance and National Economy, of Justice and Islamic Affairs, and of Commerce, who should be appointed by their Ministers;
              (d) One representative of the Bahrain Chamber of Commerce and Industry, who should be appointed by the President thereof; and
              (e) Upon a commercial banking firm becoming a relevant bank in accordance with Section CP-1.2, and for the purpose of the operation of the Scheme in the case of that relevant bank only, the liquidator of such relevant bank.
              Amended: January 2011
              October 07

            • CP-1.1.4

              Upon the appointment of the members of the Board (other than the person referred to in Paragraph CP-1.1.3(e) above), the Board shall be formally constituted by a Resolution of the Minister of Finance.

              October 07

          • CP-1.2 CP-1.2 Convening of the Board

            • CP-1.2.1

              The Board should be convened and ready to carry out its duties in the case of:

              (a) A forced liquidation carried out pursuant to the CBB Law, no later than 7 calendar days after the CBB has applied to the Minister of Finance, under the provisions of Article 143 of the CBB Law, for his approval for an application to be made to the Bahrain courts for an insolvent banking firm (herein referred to as the 'relevant bank') in accordance with Article 144 and 145 of the pre-mentioned Law, or
              (b) The liquidation of a relevant bank in any other case, no later than 7 days after the CBB is informed that a relevant bank is to be wound up.
              Amended: January 2011
              October 07

          • CP-1.3 CP-1.3 Voting by the Board

            • CP-1.3.1

              The Board should meet as often as is necessary to carry out its duties under the regulation set out in this Module and should take decisions by a simple majority vote of those present at any meeting thereof provided that, in the event of a tie, the Chairman will have the casting vote.

              October 07

            • CP-1.3.2

              Decisions of the Board will be binding and will not be subject to appeal.

              October 07

        • CP-2 CP-2 Deposit Protection Scheme (the 'Scheme')

          • CP-2.1 CP-2.1 Application of the Scheme

            • CP-2.1.1

              The Scheme will apply to eligible deposits (as defined in Paragraph CP-2.1.5 below) held with the Bahrain offices of retail bank licensees which are licensed by the CBB. These retail banks (excluding the relevant bank as referred to under Section CP-1.2) are herein referred to as the 'contributing banks' which term will, unless otherwise stated herein, include the mandated bank(s) as defined in Section CP 2.3 below.

              Amended: January 2011
              October 07

            • CP-2.1.2

              Without prejudice to Paragraph CP-2.1.1 above, the Board may, at its discretion, exclude (in whole or in part) from compensation under the Scheme, any depositors of a relevant bank in Bahrain who are entitled to claim in a similar scheme established in another jurisdiction, where such scheme covers the deposit liabilities of the Bahrain offices of such relevant bank; and

              October 07

            • CP-2.1.3

              Without prejudice to Paragraph CP-2.1.1 above, the Board may, at its discretion, exclude (in whole or in part) from the requirement to contribute to the Scheme, any retail bank licensee in Bahrain whose Bahrain offices' deposit liabilities are (in whole or in part) covered by a similar scheme established in another jurisdiction provided that evidence, in form and substance satisfactory to it, of such coverage is provided to the Board.

              October 07

            • CP-2.1.4

              Subject to the provision of Paragraph CP-2.1.6 below, the Scheme will apply to deposits (each an 'eligible deposit') held with the Bahrain offices of retail bank licensees, in Bahrain Dinars and other currencies, by persons (each an 'eligible depositor') who are either residents or non-residents of Bahrain.

              October 07

            • CP-2.1.5

              In accordance with the Prime Ministerial Resolution No. (3) of 1993 with respect to the Deposit Protection Scheme, 'deposit' shall mean a current, call, saving and/or fixed deposit in Bahrain Dinars or other currencies, as well as non-bearer Certificates of Deposit denominated in Bahrain Dinars or other currencies issued by the relevant bank.

              Amended: April 2010
              October 2007

            • CP-2.1.6

              Without prejudice to the provisions of Paragraph CP-2.1.4 above, the Scheme will not apply to deposits which have, in the opinion of the Board, been illegally gained and/or relate to illicit or illegal matters. The Scheme will also not apply to deposits of:

              (a) The Bahrain Government and Bahrain Government Agencies (which shall, for the purposes of this Regulation, mean entities in which the Bahrain Government holds 50% or more of the share capital);
              (b) Other banks including, for the sake of clarity, the CBB;
              (c) The parent, subsidiaries, associates or affiliates of the relevant bank;
              (d) Directors, shareholders with more than 5% shareholding (ordinary and/or preference), or managers of the relevant bank; and/or
              (e) Persons whose identity cannot be ascertained.
              Amended: January 2011
              October 07

          • CP-2.2 CP-2.2 Operation of the Scheme

            • CP-2.2.1

              Each eligible depositor should be entitled to receive under the Scheme a maximum of the lesser of:

              (a) Three quarters of the combined total amount of all of his eligible deposits with the relevant bank, or
              (b) BD 15,000,

              irrespective of the number, type, value and currency of eligible deposits held by such eligible depositor with the relevant bank at the time the Scheme is put into operation for such relevant bank.

              Amended: January 2011
              October 07

            • CP-2.2.2

              The amount referred to in Paragraph CP-2.2.1 above may be amended from time to time by the CBB. In calculating the amount payable in each case hereunder, the Board will be entitled to take account of various matters including, but not limited to, any set off rights to which the relevant bank was entitled against an eligible depositor or an eligible deposit at the proposed date for the making of such payment as well as any amounts paid out during the period of administration of the relevant bank by the CBB (if appropriate), and the amount payable hereunder shall be reduced accordingly.

              Amended: January 2011
              October 07

            • CP-2.2.3

              Notwithstanding the provisions of Paragraph CP-2.2.1 above, the amount payable under the Scheme in any one calendar year (the 'current year') should not exceed BD 25,000,000 (regardless of the number of relevant banks in existence in the year), provided that if circumstances so demand (and subject to the prior approval of the Governor of the CBB being obtained) the Board (which term for this Paragraph, will not include the liquidator of a relevant bank) may make available to the Scheme for the current year:

              (a) Any portion of the above amount for the calendar year immediately preceding the current year which has not been utilized in that calendar year; together with
              (b) Any portion of the above amount for the calendar year immediately following the current year.

              The Board may, from time to time and with the prior approval of the Governor of the CBB, amend the figure of BD 25,000,000 referred to in this Paragraph.

              Amended: January 2011
              October 07

            • CP-2.2.4

              In the event that the amount to be payable under the Scheme to eligible depositors of a relevant bank in accordance with Paragraph CP-2.2.1 above is greater than the maximum sum determined to be available in the Scheme for such relevant bank under Paragraph CP-2.2.3 above, the amounts determined to be payable to such eligible depositors under Paragraph CP-2.2.1 above should be made on a pro rata basis in accordance with a formula to be determined by the Board.

              October 07

            • CP-2.2.5

              If, in the opinion of the Board, the amount which would be payable to eligible depositors in accordance with Paragraph CP-2.2.4 above would make the Scheme inappropriate (for administrative and/or other reasons) for a relevant bank, the Scheme may not be made available for such relevant bank.

              October 07

            • CP-2.2.6

              If one or more eligible deposits with the relevant bank are held in the name of more than one person, each such person will be deemed to be a separate eligible depositor for an amount ascertained by dividing the total amount of such eligible deposit(s) by the number of such persons.

              October 07

            • CP-2.2.7

              An eligible deposit to which two or more persons are entitled as members of a partnership (whether or not in equal shares) should be treated as a single eligible deposit and the partners in such partnership should be treated as one eligible depositor.

              October 07

            • CP-2.2.8

              If a person establishes, to the satisfaction of the Board, that:

              (a) He/she is a trustee for, or otherwise holds, one or more eligible deposits with the relevant bank; and
              (b) The beneficial owner of each such eligible deposit is a person separate and distinct from the beneficial owner of any other eligible deposit with the relevant bank,

              such person should be treated as a different eligible depositor for each such eligible deposit for the purposes of this Module. However, in the event that the beneficial owner of one or more eligible deposits (regardless of in whose name such eligible deposits are held) is the same person, such eligible deposits should, for the purposes of this Module, be treated as being held by one eligible depositor.

              Amended: January 2011
              October 07

            • CP-2.2.9

              No assignment or other transfer of the legal or beneficial ownership of an eligible deposit(s), or any part thereof, should be considered valid if, in the opinion of the Board, the purpose of such assignment or transfer is to enable any person(s) (including an eligible depositor(s)) to gain an advantage in the Scheme which is not intended to be given by the Regulation in this module.

              October 07

          • CP-2.3 CP-2.3 Procedures for Making Claims under the Scheme

            • CP-2.3.1

              Upon the convening of the Board in accordance with Section CP-1.2 above, the Board will calculate the total amount of compensation to be paid under the Scheme in the case of the relevant bank, as well as the amount of compensation payable under the Scheme to each eligible depositor of such relevant bank. In addition, one or more of the contributing banks will be appointed by the Board to act as the mandated bank(s) (the 'mandated bank(s)') for the purpose of the operation of the Scheme for the relevant bank.

              October 07

            • CP-2.3.2

              Following the completion of the calculations referred to in Paragraph CP-2.3.1 above, the total amount of compensation due to be paid under the Scheme in the case of the relevant bank should be paid by the mandated bank into a special account to be held by itself. In the event that there is more than one mandated bank, the total amount of compensation due to be paid should be paid by the mandated banks into a special account to be held by one of the mandated banks so designated by the Board (such bank being herein referred to as the 'lead mandated Bank'. In either case, such account should be entitled 'The Central Bank of Bahrain – Deposit Protection Board'.

              October 07

            • CP-2.3.3

              At the same time as the mandated Bank(s) is/are carrying out the action referred to in Paragraph CP-2.3.2 above, each of the contributing banks (other than the (lead) mandated Bank) should execute in favour of such (lead) mandated bank an indemnity in form and substance to be agreed between the Board and the contributing banks.

              October 07

            • CP-2.3.4

              The proportion of the total amounts referred to in Paragraph CP-2.3.2 above to be paid by each of the contributing banks should be calculated in accordance with a formula determined by the Board, which formula will take into account the relative size of each such bank's deposit base.

              October 07

            • CP-2.3.5

              Upon receipt by the Board of confirmation, in form and substance satisfactory to it, from the (lead) mandated bank that the actions referred to in Paragraph CP-2.3.2 and Paragraph CP-2.3.3 above have been completed, each eligible depositor should be sent a certificate in duplicate (in the form, or substantially in the form, of the Schedule attached in Appendix CP-1) by the Board informing such eligible depositor of the amount of compensation payable to him/her under the Scheme in respect of his/her eligible deposit(s) with the relevant bank.

              October 07

            • CP-2.3.6

              The certificate referred to in Paragraph CP-2.3.5 above should also contain instructions as to the method by which, and time within which, the compensatory amount referred to therein may be collected by the eligible depositor from the (lead) mandated bank. No amounts of compensation should be payable under the scheme after the expiry of the period referred to in such certificate, which period should not be less than 12 months.

              October 07

            • CP-2.3.7

              When the duplicate copy of the certificate referred to in Paragraph CP-2.3.5 above is signed by an eligible depositor, it should constitute an assignment by such eligible depositor in favour of the (lead) mandated bank, of all rights and benefits in relation to that proportion of any claim which he/she would otherwise have in the liquidation of the relevant bank which is represented by the compensatory amount which he/she has received under the Scheme. Such assignment should be made to the (lead) mandated bank on its own behalf and as agent on behalf of the other contributing banks to the Scheme in the case of the relevant bank. Upon receipt of the signed duplicate copy of the certificate from an eligible depositor, the (lead) mandated bank should pay the amount referred to in the certificate to such eligible depositor.

              October 07

            • CP-2.3.8

              At the end of such periods as will be determined between the Board and the (lead) mandated bank, each of the contributing banks (other than the mandated bank (s)) should pay to the (lead) mandated bank that portion of its contributory share of the total amount referred to in Paragraph CP-2.3.1 above (such contributory share being determined in accordance with the formula to be determined by the Board pursuant to Paragraph CP-2.3.4 above and being notified to each contributing bank by the Board) which the (lead) mandated bank has paid to eligible depositors under the Scheme in the case of the relevant bank in the immediately preceding period.

              October 07

            • CP-2.3.9

              The (lead) mandated bank should be entitled to claim as an ordinary creditor, on its own behalf and as agent for and on behalf of the other contributing banks, in the liquidation of the relevant bank for that proportion of the total amounts referred to in Paragraph CP-2.3.1 above which has been paid out to eligible depositors under the Scheme at the end of the period referred to in Paragraph CP-2.3.6 above.

              October 07

            • CP-2.3.10

              Any amount received by the (lead) mandated bank in the liquidation of the relevant bank should be reimbursed to the contributing banks pro-rata to such contributing banks' contributions to the amounts paid out under the Scheme in the case of the relevant bank.

              October 07

            • CP-2.3.11

              The liquidator of the relevant bank should, in making any payments to eligible depositors thereof in the liquidation of such relevant bank, take such steps as are necessary to ensure that eligible depositors must not receive any payment in the liquidation of the relevant bank for amounts already paid out under the Scheme to such eligible depositors.

              October 07

          • CP-2.4 CP-2.4 Disclosure of Scheme's Applicability

            • CP-2.4.1

              The Central Bank requires all retail bank licensees referring (directly or indirectly) to the protection of deposits in related marketing materials and in general notices featured within banking halls and in account documentation, including Annual Reports, to prominently disclose the following statement:

              •   "Subject to the provisions thereof, deposits held with the Bahrain office of [name of the banking firm] are covered by the Deposit Protection Scheme established by the Central Bank of Bahrain regulation concerning the establishment of a Deposit Protection Scheme and a Deposit Protection Board".
              October 07

            • CP-2.4.2

              Retail bank licensees should, in discussions and/or correspondence with new and prospective customers, bring the Deposit Protection Scheme and the protection afforded by it to such customers' notice.

              October 07

          • CP-2.5 CP-2.5 Other Provisions

            • CP-2.5.1

              Save as otherwise set out above, nothing in this regulation shall affect the rights of depositors of a relevant bank to claim as creditors in the liquidation of the relevant bank, regardless of the basis on which such claim is made.

              October 07

            • CP-2.5.2

              The provisions of Article 116 to 120 of the CBB Law relating to secrecy and confidentiality should apply to all matters discussed, decisions reached and records kept by the Board relating to the Scheme.

              Amended: January 2011
              October 07

            • CP-2.5.3

              The Board (which term, for the purpose of this Paragraph, should not include the liquidator of a relevant bank) should be entitled to make subsidiary rules for the proper and regular enforcement of this Module, and should be the final arbiter of any dispute in relation to this Module and/or the Scheme which may occur from time to time.

              Amended: January 2011
              October 07

      • CP CP Compensation

        • CP-A CP-A Introduction

          • CP-A.1 CP-A.1 Purpose

            • CP-A.1.1

              The purpose of this module is to set out rules and regulations establishing a Deposit Protection Scheme (the 'Scheme') for compensating eligible depositors (as defined under section CP-2.1) when the banks (referred to under section CP-2.1) are unable, or likely to be unable, to satisfy claims against them.

            • CP-A.1.2

              The body established to operate and administer the compensation scheme is the Deposit Protection Board (the 'Board'). The module sets out rules and regulations that would allow the Board to:

              (a) administer and implement the scheme;
              (b) calculate compensation amount; and
              (c) establish rules of operation.

            • CP-A.1.3

              The module also specifies:

              (a) who is eligible for receiving compensation;
              (b) how the scheme will be funded;
              (c) who the contributing banks are; and
              (d) what are contributing banks' responsibilities regarding the implementation of the scheme.

          • CP-A.2 CP-A.2 Key requirements

            • CP-A.2.1

              The Deposit Protection Board (the 'Board') should, subject to and in accordance with the terms and conditions of the regulations in this module, be responsible for the activities set out under section CP-1.1.

            • CP-A.2.2

              The Board should be convened and ready to carry out its duties in the case of any of the following events identified under section CP-1.2.

            • CP-A.2.3

              The Scheme will apply to eligible deposits (as defined in section CP-2.1) held with the Bahrain offices of full commercial banks which are licensed by the Agency.

            • CP-A.2.4

              Each eligible depositor should be entitled to receive under the Scheme a maximum of the lesser of:

              (a) three quarters of the combined total amount of all of his eligible deposits with the relevant bank, or
              (b) BD 15,000.

            • CP-A.2.5

              Notwithstanding the provisions of section CP-2.2, the amount payable under the Scheme in any one calendar year (the 'current year') should not exceed BD 25,000,000.

            • CP-A.2.6

              Upon the convening of the Board in accordance with section CP-1.2, the Board will calculate the total amount of compensation to be paid under the Scheme in the case of the relevant bank, as well as the amount of compensation payable under the Scheme to each eligible depositor of such relevant bank.

            • CP-A.2.7

              Upon receipt by the Board of confirmation from the (lead) mandated bank that the actions referred to in section CP-2.3 have been completed, each eligible depositor should be sent a certificate in duplicate (attached in Appendix CP 1) by the Board informing such eligible depositor of the amount of compensation payable to him/her under the Scheme in respect of his/her eligible deposit(s) with the relevant bank.

            • CP-A.2.8

              The Agency requires all FCBs referring (directly or indirectly) to the protection of deposits in related marketing materials and in general notices featured within banking halls and in account documentation, including Annual Reports, to prominently disclose the statement set out under section CP-2.4.

          • CP-A.3 CP-A.3 Regulation history

            • CP-A.3.1

              This module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter UG-3 of Module UG provides further details on Rulebook maintenance and control.

            • CP-A.3.2

              A list of the most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
                   
                   
                   
                   
                   

            • Evolution of the Module

              • CP-A.3.3

                Prior to the development of the Rulebook, the Agency had issued various circulars representing regulations covering the operations and establishment of the Deposit Protection Scheme and the Deposit Protection Board. These circulars have now been consolidated into the Compensation Module. These circulars and their evolution into this module are listed below:

                Circular Ref. Date of Issue Module Ref. Circular Subject
                OG/423/93 28 Nov 1993 CP-1CP-2 Deposit Protection Scheme (the "Scheme")
                OG/425/94 21 Dec 1994 CP-2.4 Deposit Protection

            • Effective date

              • CP-A.3.4

                The contents in this module are effective from the date depicted in the original circulars/information pack (see paragraph CP-A.3.3) from which the requirements are compiled

        • CP-1 CP-1 Deposit Protection Board (the 'Board')

          • CP-1.1 CP-1.1 Constitution of the Board

            • CP-1.1.1

              The contents of this chapter set out the details of the constitution, authority and administration of the Deposit Protection Board (the 'Board').

            • CP-1.1.2

              The Deposit Protection Board (the 'Board') should, subject to and in accordance with the terms and conditions of the regulations in this module, be responsible for:

              (a) the administration and implementation of a Deposit Protection Scheme (the 'Scheme');
              (b) the determination of the amount of compensation which is to be paid out under the Scheme in the event of the liquidation of a relevant bank (as defined in section CP-1.2 below); and
              (c) the establishment of the rules of operation of the Board.

            • CP-1.1.3

              The Board should consist of the following persons, whose period of membership of the Board (other than in the case of the person referred to in paragraph CP-1.1.3(e) below) should be for a three year renewable period:

              (a) two representatives of the Agency, who shall be appointed by the Governor of the Agency, one of whom should be Chairman of the Board;
              (b) four representatives of commercial banking firms in Bahrain, who should be appointed by the Governor of the Agency following consultation with the Bankers' Society of Bahrain;
              (c) one representative of each of the Ministries of Finance and National Economy, of Justice and Islamic Affairs, and of Commerce, who should be appointed by their Ministers;
              (d) one representative of the Bahrain Chamber of Commerce and Industry, who should be appointed by the President thereof; and
              (e) upon a commercial banking firm becoming a relevant bank in accordance with section CP-1.2, and for the purpose of the operation of the Scheme in the case of that relevant bank only, the liquidator of such relevant bank.

            • CP-1.1.4

              Upon the appointment of the members of the Board (other than the person referred to in paragraph CP-1.1.3(e) above), the Board shall be formally constituted by a Resolution of the Minister of Finance & National Economy.

          • CP-1.2 CP-1.2 Convening of the Board

            • CP-1.2.1

              The Board should be convened and ready to carry out its duties in the case of:

              (a) a forced liquidation carried out pursuant to the BMA Law, no later than 7 days after the Agency has applied to the Minister of Finance and National Economy, under the provisions of Article 99 of the BMA Law, for his approval for an application to be made to the Bahrain courts for an insolvent banking firm (herein referred to as the 'relevant bank') in accordance with Article 100 of the pre-mentioned Law, or
              (b) the liquidation of a relevant bank in any other case, no later than 7 days after the Agency is informed that a relevant bank is to be wound up.

          • CP-1.3 CP-1.3 Voting by the Board

            • CP-1.3.1

              The Board should meet as often as is necessary to carry out its duties under the regulation set out in this module and should take decisions by a simple majority vote of those present at any meeting thereof provided that, in the event of a tie, the Chairman will have the casting vote.

            • CP-1.3.2

              Decisions of the Board will be binding and will not be subject to appeal.

        • CP-2 CP-2 Deposit Protection Scheme (the 'Scheme')

          • CP-2.1 CP-2.1 Application of the Scheme

            • CP-2.1.1

              The Scheme will apply to eligible deposits (as defined in paragraph CP-2.1.5 below) held with the Bahrain offices of full commercial banks which are licensed by the Agency. These full commercial banks (excluding the relevant bank as referred to under section CP-1.2) are herein referred to as the 'contributing banks' which term will, unless otherwise stated herein, include the mandated bank(s) as defined in section CP-2.3 below.

            • CP-2.1.2

              Without prejudice to paragraph CP-2.1.1 above, the Board may, at its discretion, exclude (in whole or in part) from compensation under the Scheme, any depositors of a relevant bank in Bahrain who are entitled to claim in a similar scheme established in another jurisdiction, where such scheme covers the deposit liabilities of the Bahrain offices of such relevant bank; and

            • CP-2.1.3

              Without prejudice to paragraph CP-2.1.1 above, the Board may, at its discretion, exclude (in whole or in part) from the requirement to contribute to the Scheme, any full commercial bank in Bahrain whose Bahrain offices' deposit liabilities are (in whole or in part) covered by a similar scheme established in another jurisdiction provided that evidence, in form and substance satisfactory to it, of such coverage is provided to the Board.

            • CP-2.1.4

              Subject to the provision of paragraph CP-2.1.6 below, the Scheme will apply to deposits (each an 'eligible deposit') held with the Bahrain offices of full commercial banks, in Bahraini Dinars and other currencies, by persons (each an 'eligible depositor') who are either residents or non-residents of Bahrain.

            • CP-2.1.5

              For the purposes of this Regulation, 'deposit' shall mean a current, call, saving and/or fixed deposit or investment account in Bahraini Dinars or other currencies, as well as non-bearer Certificates of Deposit denominated in Bahraini Dinars or other currencies issued by the relevant bank.

            • CP-2.1.6

              Without prejudice to the provisions of paragraph CP-2.1.4 above, the Scheme will not apply to deposits which have, in the opinion of the Board, been illegally gained and/or relate to illicit or illegal matters. The Scheme will also not apply to deposits of:

              (a) the Bahrain Government and Bahrain Government Agencies (which shall, for the purposes of this Regulation, mean entities in which the Bahrain Government holds 50% or more of the share capital);
              (b) other banks including, for the sake of clarity, the Agency;
              (c) the parent, subsidiaries, associates or affiliates of the relevant bank;
              (d) Directors, shareholders with more than 5% shareholding (ordinary and/or preference), or managers of the relevant bank; and/or
              (e) persons whose identity cannot be ascertained.

          • CP-2.2 CP-2.2 Operation of the Scheme

            • CP-2.2.1

              Each eligible depositor should be entitled to receive under the Scheme a maximum of the lesser of:

              (a) three quarters of the combined total amount of all of his eligible deposits with the relevant bank, or
              (b) BD 15,000,

              irrespective of the number, type, value and currency of eligible deposits held by such eligible depositor with the relevant bank at the time the Scheme is put into operation for such relevant bank.

            • CP-2.2.2

              The amount referred to in paragraph CP-2.2.1 above may be amended from time to time by the Agency. In calculating the amount payable in each case hereunder, the Board will be entitled to take account of various matters including, but not limited to, any set off rights to which the relevant bank was entitled against an eligible depositor or an eligible deposit at the proposed date for the making of such payment as well as any amounts paid out during the period of administration of the relevant bank by the Agency (if appropriate), and the amount payable hereunder shall be reduced accordingly.

            • CP-2.2.3

              Notwithstanding the provisions of paragraph CP-2.2.1 above, the amount payable under the Scheme in any one calendar year (the 'current year') should not exceed BD 25,000,000 (regardless of the number of relevant banks in existence in the year), provided that if circumstances so demand (and subject to the prior approval of the Governor of the Agency being obtained) the Board (which term for this paragraph, will not include the liquidator of a relevant bank) may make available to the Scheme for the current year:

              (a) any portion of the above amount for the calendar year immediately preceding the current year which has not been utilized in that calendar year; together with
              (d) any portion of the above amount for the calendar year immediately following the current year.

              The Board may, from time to time and with the prior approval of the Governor of the Agency, amend the figure of BD 25,000,000 referred to in this paragraph.

            • CP-2.2.4

              In the event that the amount to be payable under the Scheme to eligible depositors of a relevant bank in accordance with paragraph CP-2.2.1 above is greater than the maximum sum determined to be available in the Scheme for such relevant bank under paragraph CP-2.2.3 above, the amounts determined to be payable to such eligible depositors under paragraph CP-2.2.1 above should be made on a pro rata basis in accordance with a formula to be determined by the Board.

            • CP-2.2.5

              If, in the opinion of the Board, the amount which would be payable to eligible depositors in accordance with paragraph CP-2.2.4 above would make the Scheme inappropriate (for administrative and/or other reasons) for a relevant bank, the Scheme may not be made available for such relevant bank.

            • CP-2.2.6

              If one or more eligible deposits with the relevant bank are held in the name of more than one person, each such person will be deemed to be a separate eligible depositor for an amount ascertained by dividing the total amount of such eligible deposit(s) by the number of such persons.

            • CP-2.2.7

              An eligible deposit to which two or more persons are entitled as members of a partnership (whether or not in equal shares) should be treated as a single eligible deposit and the partners in such partnership should be treated as one eligible depositor.

            • CP-2.2.8

              If a person establishes, to the satisfaction of the Board, that:

              (a) he/she is a trustee for, or otherwise holds, one or more eligible deposits with the relevant bank; and
              (b) the beneficial owner of each such eligible deposit is a person separate and distinct from the beneficial owner of any other eligible deposit with the relevant bank,

              such person should be treated as a different eligible depositor for each such eligible deposit for the purposes of this Regulation. However, in the event that the beneficial owner of one or more eligible deposits (regardless of in whose name such eligible deposits are held) is the same person, such eligible deposits should, for the purposes of this Regulation, be treated as being held by one eligible depositor.

            • CP-2.2.9

              No assignment or other transfer of the legal or beneficial ownership of an eligible deposit(s), or any part thereof, should be considered valid if, in the opinion of the Board, the purpose of such assignment or transfer is to enable any person(s) (including an eligible depositor(s)) to gain an advantage in the Scheme which is not intended to be given by the Regulation in this module.

          • CP-2.3 CP-2.3 Procedures for making claims under the Scheme

            • CP-2.3.1

              Upon the convening of the Board in accordance with section CP-1.2 above, the Board will calculate the total amount of compensation to be paid under the Scheme in the case of the relevant bank, as well as the amount of compensation payable under the Scheme to each eligible depositor of such relevant bank. In addition, one or more of the contributing banks will be appointed by the Board to act as the mandated bank(s) (the 'mandated bank(s)') for the purpose of the operation of the Scheme for the relevant bank.

            • CP-2.3.2

              Following the completion of the calculations referred to in paragraph CP-2.3.1 above, the total amount of compensation due to be paid under the Scheme in the case of the relevant bank should be paid by the mandated bank into a special account to be held by itself. In the event that there is more than one mandated bank, the total amount of compensation due to be paid should be paid by the mandated banks into a special account to be held by one of the mandated banks so designated by the Board (such bank being herein referred to as the 'lead mandated Bank'. In either case, such account should be entitled 'The Bahrain Monetary Agency — Deposit Protection Board'

            • CP-2.3.3

              At the same time as the mandated Bank(s) is/are carrying out the action referred to in paragraph CP-2.3.2 above, each of the contributing banks (other than the (lead) mandated Bank) should execute in favour of such (lead) mandated bank an indemnity in form and substance to be agreed between the Board and the contributing banks.

            • CP-2.3.4

              The proportion of the total amounts referred to in paragraph CP-2.3.2 above to be paid by each of the contributing banks should be calculated in accordance with a formula determined by the Board, which formula will take into account the relative size of each such bank's deposit base.

            • CP-2.3.5

              Upon receipt by the Board of confirmation, in form and substance satisfactory to it, from the (lead) mandated bank that the actions referred to in paragraph CP-2.3.2 and paragraph CP-2.3.3 above have been completed, each eligible depositor should be sent a certificate in duplicate (in the form, or substantially in the form, of the Schedule attached in Appendix CP 1) by the Board informing such eligible depositor of the amount of compensation payable to him/her under the Scheme in respect of his/her eligible deposit(s) with the relevant bank.

            • CP-2.3.6

              The certificate referred to in paragraph CP-2.3.5 above should also contain instructions as to the method by which, and time within which, the compensatory amount referred to therein may be collected by the eligible depositor from the (lead) mandated bank. No amounts of compensation should be payable under the scheme after the expiry of the period referred to in such certificate, which period should not be less than 12 months.

            • CP-2.3.7

              When the duplicate copy of the certificate referred to in paragraph CP-2.3.5 above is signed by an eligible depositor, it should constitute an assignment by such eligible depositor in favour of the (lead) mandated bank, of all rights and benefits in relation to that proportion of any claim which he/she would otherwise have in the liquidation of the relevant bank which is represented by the compensatory amount which he/she has received under the Scheme. Such assignment should be made to the (lead) mandated bank on its own behalf and as agent on behalf of the other contributing banks to the Scheme in the case of the relevant bank. Upon receipt of the signed duplicate copy of the certificate from an eligible depositor, the (lead) mandated bank should pay the amount referred to in the certificate to such eligible depositor.

            • CP-2.3.8

              At the end of such periods as will be determined between the Board and the (lead) mandated bank, each of the contributing banks (other than the mandated bank(s)) should pay to the (lead) mandated bank that portion of its contributory share of the total amount referred to in paragraph CP-2.3.1 above (such contributory share being determined in accordance with the formula to be determined by the Board pursuant to paragraph CP-2.3.4 above and being notified to each contributing bank by the Board) which the (lead) mandated bank has paid to eligible depositors under the Scheme in the case of the relevant bank in the immediately preceding period.

            • CP-2.3.9

              The (lead) mandated bank should be entitled to claim as an ordinary creditor, on its own behalf and as agent for and on behalf of the other contributing banks, in the liquidation of the relevant bank for that proportion of the total amounts referred to in paragraph CP-2.3.1 above which has been paid out to eligible depositors under the Scheme at the end of the period referred to in paragraph CP-2.3.6 above.

            • CP-2.3.10

              Any amount received by the (lead) mandated bank in the liquidation of the relevant bank should be reimbursed to the contributing banks pro-rata to such contributing banks' contributions to the amounts paid out under the Scheme in the case of the relevant bank.

            • CP-2.3.11

              The liquidator of the relevant bank should, in making any payments to eligible depositors thereof in the liquidation of such relevant bank, take such steps as are necessary to ensure that eligible depositors must not receive any payment in the liquidation of the relevant bank for amounts already paid out under the Scheme to such eligible depositors.

          • CP-2.4 CP-2.4 Disclosure of Scheme's applicability

            • CP-2.4.1

              The Agency requires all FCBs referring (directly or indirectly) to the protection of deposits in related marketing materials and in general notices featured within banking halls and in account documentation, including Annual Reports, to prominently disclose the following statement:

              "Subject to the provisions thereof, deposits held with the Bahrain office of [name of the banking firm] are covered by the Deposit Protection Scheme established by the Bahrain Monetary Agency regulation concerning the establishment of a Deposit Protection Scheme and a Deposit Protection Board".

            • CP-2.4.2

              FCBs should, in discussions and/or correspondence with new and prospective customers, bring the Deposit Protection Scheme and the protection afforded by it to such customers' notice.

          • CP-2.5 CP-2.5 Other provisions

            • CP-2.5.1

              Save as otherwise set out above, nothing in this regulation shall affect the rights of depositors of a relevant bank to claim as creditors in the liquidation of the relevant bank, regardless of the basis on which such claim is made.

            • CP-2.5.2

              The provisions of Article 16 of the BMA Law No. (23) of 1973 relating to secrecy and confidentiality should apply to all matters discussed, decisions reached and records kept by the Board relating to the Scheme.

            • CP-2.5.3

              The Board (which term, for the purpose of this paragraph, should not include the liquidator of a relevant bank) should be entitled to make subsidiary rules for the proper and regular enforcement of this Regulation, and should be the final arbiter of any dispute in relation to this Regulation and/or the Scheme which may occur from time to time.

      • EN EN Enforcement

        • EN-A EN-A Introduction

          • EN-A.1 EN-A.1 Application

            • EN-A.1.1

              Chapters EN-1 to EN-4 and EN-6 to EN-9 inclusive apply to licensees. Chapters EN-2 to EN-5 and EN-10 apply to the Directors and employees of licensees.

          • EN-A.2 EN-A.2 Purpose

            • EN-A.2.1

              This module sets out the Agency's approach to enforcement, and the mechanisms used by the Agency to address failures by licensees to comply with its regulatory requirements. The purpose of such measures is to encourage a high standard of compliance by the Agency licensees, thus reducing risk to their customers and the rest of the financial system.

            • EN-A.2.2

              This module provides support for all other modules of the Rulebook.

          • EN-A.3 EN-A.3 Regulation history

            • EN-A.3.1

              This module was first issued on 1st January 2005 as part of the Islamic principles volume. All regulations in this volume have been effective since this date. All subsequent changes are dated with the month and year at the base of the relevant page and in the Table of Contents. Chapter UG-3 of Module UG provides further details on Rulebook maintenance and control.

            • EN-A.3.2

              A list of the most recent changes made to this module are detailed in the table below:

              Summary of changes

              Module Ref. Change Date Description of Changes
              EN-7 01/07/06 Addition of procedures for "Appointed Experts" (relocated from AU-4)
                   
                   
                   
                   

            • Evolution of the Module

              • EN-A.3.3

                The module incorporates the requirements set out under Circular No. ODG/249/2004 dated 22 July 2004 relating to the Agency's approach to enforcement.

            • Effective date

              • EN-A.3.4

                The contents in this module are effective from 1st September 2004. However, the contents of other modules referred to herein are effective from the dates specified in those respective modules.

        • EN-1 EN-1 General procedures

          • EN-1.1 EN-1.1 The Agency's approach to enforcement

            • EN-1.1.1

              The Agency favours an open, pragmatic and collaborative relationship with its licensees, within the boundaries set by the law and BMA regulations. Whilst the Agency wishes to avoid a legalistic and confrontational style of supervision, it believes that effective supervision requires effective enforcement of its requirements. Should licensees fail to cooperate, then the Agency will use the means described in this module to achieve compliance.

            • EN-1.1.2

              In the Agency's view, it is generally neither practical nor effective to prescribe in detail the exact regulatory response for each and every potential contravention. There are a large number of potential contraventions. Moreover, individual circumstances are unlikely to be identical in all cases, and may warrant different responses.

            • EN-1.1.3

              In deciding any given regulatory response, the Agency will nonetheless consistently assess the individual circumstance of each contravention against the principles described in this module. The Agency's overall approach is to take into account:

              (a) the seriousness of the contravention concerned (including the risks posed to the licensee's customers and other market participants);
              (b) the compliance track record of the licensee concerned (including the extent to which the contravention reflects systemic weaknesses or reckless behaviour); and
              (c) which measures are most likely to achieve the desired result of remedying the contravention.

            • EN-1.1.4

              Such an approach reduces the risk of inappropriate enforcement actions, by allowing regulatory measures to be tailored to individual circumstances. By taking into account a licensee's compliance record and attitude, it also creates positive incentives and encourages an open and collaborative approach. By assessing individual cases against the same broad principles, the Agency also aims to achieve an overall consistency in its regulatory actions.

            • EN-1.1.5

              Underlying the Agency's approach outlined in paragraph EN-1.1.3 is the fundamental principle of proportionality. The enforcement measures contained in this module are of varying severity, and will be used accordingly in keeping with the Agency's assessment of the contravention. Thus, the Agency will reserve its most serious enforcement measures — such as cancellation of license or withdrawal of "fit and proper" status — for the most serious contraventions.

            • EN-1.1.6

              In keeping with the proportionality principle, and to the extent consistent with the Agency's enforcement approach in paragraph EN-1.1.3, the Agency will usually opt for the least severe of appropriate enforcement measures. In most cases, the Agency expects to use a Formal Notice before resorting to more severe measures; the need for further measures will then usually be dependent on the response of the licensee or individual concerned.

            • EN-1.1.7

              Where a significant element of judgment is required to assess compliance with a requirement, then the Agency will usually discuss the matter with the licensee or individual concerned, before using one of this module's enforcement mechanisms. This is likely to be the case, for example, with respect to requirements for adequate systems and controls. Conversely, where there are clear-cut contraventions of the BMA's requirements, then the Agency will usually move immediately to one or more of the enforcement mechanisms outlined in this module. This is more likely to occur in cases where quantitative requirements — such as those relating to capital and/or large exposures — are concerned. In most such cases, though, the Agency also expects to continue an active dialogue with the licensee or individual concerned, aimed at remedying the contravention.

            • EN-1.1.8

              Except in the limited circumstances outlined below, the Agency will usually only apply an enforcement measure after the licensee or person concerned has been given a suitable opportunity to make representations. In the case of measures described in chapters EN-8 to EN-10, certain procedures are set out in the 1973 BMA Decree — Law No. (23) of 1973.

          • EN-1.2 EN-1.2 Prohibition on insurance

            • EN-1.2.1

              To help the Agency achieve the purpose of this module, licensees may not enter into or make a claim under a contract of insurance that is intended to, or has the effect of, indemnifying them from the fines provided for in this module.

          • EN-1.3 EN-1.3 Publicity

            • EN-1.3.1

              The Agency will not as a matter of general policy publicise individual cases when it uses the measures set out in chapters EN-2 to EN-7. However, in such cases the Agency may inform the licensee's external auditors and — in the case of licensees with overseas operations — relevant overseas regulators.

            • EN-1.3.2

              In exceptional circumstances, the Agency may decide to publicise individual cases when the measures set out in chapters EN-2 to EN-7 are used, where there is a strong case that doing so would help achieve the Agency's supervisory objectives. In such instances, the Agency will usually allow the licensee or individual concerned the opportunity to make representations to the Agency before a public statement is issued.

            • EN-1.3.3

              With respect to the financial penalties provided for in chapter EN-6, licensees are required to disclose in their annual reports the amount of any such penalties paid to the Agency, together with a factual description of the reason(s) given by the Agency for the penalty.

            • EN-1.3.4

              Without prejudice to the above policy, the Agency may from time to time publish aggregate information on its use of measures set out in chapters EN-2 to EN-7, without identifying the licensees or individuals concerned, unless their identities have previously been disclosed as provided for in paragraphs EN-1.3.2 or EN-1.3.3.

            • EN-1.3.5

              By their nature, the penalties in chapters EN-8 to EN-10 inclusive are public acts, once applied. The Agency will in these instances generally issue a public statement explaining the circumstances of the case.

        • EN-2 EN-2 Formal warnings

          • EN-2.1 EN-2.1 BMA policy

            • EN-2.1.1

              Formal Warnings are clearly identified as such and represent the Agency's first level formal enforcement measure. They are intended to clearly set out the Agency's concerns to a licensee or an individual regarding an issue, and should be viewed by the recipient with the appropriate degree of seriousness.

            • EN-2.1.2

              As indicated in section EN-1.1, the Agency will usually discuss concerns prior to resorting to a formal enforcement measure, especially where a significant element of judgment is required in assessing compliance with a regulatory requirement.

            • EN-2.1.3

              Where such discussions fail to resolve matters to the Agency's satisfaction, then it may issue a Formal Warning. Failure to respond adequately to a Formal Warning will lead the Agency to consider more severe enforcement measures. However, more severe measures do not require the prior issuance of a Formal Warning — depending on its assessment of the circumstances, Agency may decide to have immediate recourse to other measures. Similarly, there may be circumstances where Agency issues a Formal Warning without prior discussion with the licensee or person concerned: this would usually be the case where a clear-cut compliance failing has occurred.

            • EN-2.1.4

              When considering whether to issue a Formal Warning, the criteria taken into consideration by the Agency therefore include the following:

              (a) the seriousness of the actual or potential contravention, in relation to the requirement(s) concerned and the risks posed to the licensee's customers, market participants and other stakeholders;
              (b) in the case of an actual contravention, its duration and/or frequency of the contravention; the extent to which it reflects more widespread weaknesses in controls and/or management; and the extent to which it was attributable to deliberate or reckless behaviour; and
              (c) the extent to which the Agency's supervisory objectives would be better served by issuance of a Formal Notice as opposed to another type of regulatory action.

          • EN-2.2 EN-2.2 Procedure for issuing Formal Warnings

            • EN-2.2.1

              Proposals to issue Formal Warnings are carefully considered against the criteria listed in Section EN-2.1. They require approval of a Director or more senior BMA official, and include the statement "This is a Formal Warning as defined in Chapter EN-2 of the BMA Rulebook".

            • EN-2.2.2

              Depending on the issue in question, recipients of a Formal Warning may be required to respond to the contents of the Warning. (In other cases, recipients may also respond should they wish to.) Given its nature, there is no provision for recipients to challenge the issuance of a Warning.

        • EN-3 EN-3 Directions

          • EN-3.1 EN-3.1 BMA policy

            • EN-3.1.1

              The Agency may issue Directions to licensees or individuals under supervisory powers granted to it by the BMA Decree — Law No. 23 of 1973 ("BMA Law"). These powers are broad in nature, and effectively allow the Agency to issue whatever Directions it reasonably believes are required to achieve its statutory objectives.

            • EN-3.1.2

              The types of Directions that the Agency may issue in practice vary and will depend on the individual circumstances of a case. Generally, however, Directions require a licensee or individual to undertake specific actions in order to address or mitigate certain perceived risks. They may also include restrictions on a licensee's activities until those risks have been addressed — for instance, a ban on the acceptance of new customers.

            • EN-3.1.3

              The Agency is conscious of the powerful nature of a Direction and, in the case of a licensee, the fact that it subordinates the role of its Board and management on a specific issue. The Agency will carefully consider the need for a Direction, and whether alternative measures may not achieve the same end. Where feasible, the Agency will try to achieve the desired outcome through persuasion, rather than recourse to a Direction.

            • EN-3.1.4

              In considering whether to issue a Direction, the criteria taken into consideration by the Agency include the following:

              (a) the seriousness of the actual or potential contravention, in relation to the requirement(s) concerned and the risks posed to the licensee's customers, market participants and other stakeholders;
              (b) in the case of an actual contravention, its duration and/or frequency of the contravention; the extent to which it reflects more widespread weaknesses in controls and/or management; and the extent to which it was attributable to deliberate or reckless behaviour; and
              (c) the extent to which the Agency's supervisory objectives would be better served by issuance of a Direction as opposed to another type of regulatory action.

          • EN-3.2 EN-3.2 Procedure for issuing Directions

            • EN-3.2.1

              Proposals to issue Directions are carefully considered against the criteria listed in section EN-3.1. They require approval of an Executive Director or more senior official of the Agency, and include the statement "This is a formal Direction as defined in Chapter EN-3 of the BMA Rulebook".

            • EN-3.2.2

              The subject of the Direction will normally be given 10 business days from the Direction's date of issuance in which to make representations to the Agency concerning the actions required. This must be done in writing, and addressed to the issuer of the original notification. Should a representation be made, the Agency will make a final determination, again normally within 10 business days of the date of the representation. Where urgent action is required, the Agency may reduce the period allowed for representations.

            • EN-3.2.3

              In extreme circumstances, where the Agency believes that immediate action is required to prevent real damage to Bahrain's financial markets, its users or to customers of the licensee concerned, it may not be practical to allow a right of representation. In such cases, the Agency must state a justification for the withdrawal of the right to make representations.

        • EN-4 EN-4 Formal requests for information

          • EN-4.1 EN-4.1 Procedure

            • EN-4.1.1

              As part of its on-going supervision, the Agency may specifically request information or temporary reporting from a licensee or individual. Recipients of such requests are bound to respond to such requests under the terms of their license. Such requests are in effect a type of Direction.

            • EN-4.1.2

              Henceforward, to clearly identify such requests, they will always be made in writing, under signature of a Director or more senior official of the Agency; will include the statement "This is a formal request for information as defined in Chapter EN-4 of the BMA Rulebook"; and will state the deadline by which the information is to be communicated to the Agency.

            • EN-4.1.3

              Failure to respond to such formal requests within the deadline set will be viewed as a significant breach of regulatory requirements and will incur a Formal Warning or other enforcement measure, as decided by the Agency depending on the circumstances of the case.

            • EN-4.1.4

              The deadline set in the request will vary depending on individual circumstances, but will in all cases be reasonable. A recipient may submit a case for an extension to the deadline, providing the request is made before the original deadline has passed. The Agency will respond before the original deadline has passed; if it fails to do so, then the requested extension will apply. Whilst waiting for a reply, the recipient must assume that the original deadline will apply.

            • EN-4.1.5

              The above procedures do not prevent individual Agency supervisors making oral requests for information as part of their day-to-day interaction with licensees. The Agency expects licensees to maintain their cooperative response to such requests; however, in the interests of clarity, the Agency will not view failures to respond to oral requests as a breach of regulatory requirements.

        • EN-5 EN-5 Adverse "fit and proper" findings

          • EN-5.1 EN-5.1 Requirements for individuals

            • EN-5.1.1

              Article 85 of the BMA Decree — Law No. 23 of 1973 ("BMA Law") provides that any Director, manager or official responsible for the direction or management of a licensee, is to be considered removed from office should he be convicted by a court for a crime affecting his honesty; is declared bankrupt by a court; or if a court rules that his legal capacity is totally or partially impaired.

            • EN-5.1.2

              The Agency's standard conditions and licensing criteria, issued pursuant to Article 59 of the BMA Law, require that management and staff of a licensee should be adequately qualified and experienced.

            • EN-5.1.3

              In addition, chapter HC-2 specifies that all persons wishing to hold or holding the position of Director, Chief Executive/General Manager or Manager in a licensee must be assessed by the Agency as "fit and proper" to hold such a position. The chapter specifies various factors that the Agency takes into account when reaching such a decision.

            • EN-5.1.4

              In interpreting the term "manager" for the purposes of Article 85 of the BMA Decree — Law No. 23 of 1973, the Agency uses the definition given in chapter HC-2. The same definition applies when the term "manager" is used in other modules, unless a different definition is explicitly provided for in the module concerned.

          • EN-5.2 EN-5.2 BMA policy

            • EN-5.2.1

              The Agency is conscious of the impact that assessing someone as not "fit and proper" may have on an individual. Such assessments are carefully reviewed in the light of all relevant facts. The criteria used in reaching a decision include the following:

              (a) the extent to which the factors set out in the BMA Law and chapter HC-2 have not been met;
              (b) the extent to which the person has deliberately or recklessly breached requirements of the BMA Law or BMA regulations;
              (c) the person's past compliance record and conduct following any such contravention;
              (d) the length of time since factors indicating a lack of fitness or propriety occurred; and
              (e) the risk the person poses to licensees and their customers.

            • EN-5.2.2

              In assessing evidence, the Agency applies a lower threshold than is applied in a criminal court of law, reflecting the administrative nature of the sanction. The Agency may also take into account the cumulative effect of factors which, when considered individually, may not in themselves be sufficient to justify an adverse "fit and proper" finding.

            • EN-5.2.3

              The Agency may also take into account the particular function being undertaken in the licensee by the individual concerned, and the size and nature of the licensee itself, particularly when assessing the suitability of a person's experience or qualifications. Thus, the fact that a person was deemed "fit and proper" for a particular position in a particular firm does not necessarily mean he would be suitable in a different position or in a different firm.

          • EN-5.3 EN-5.3 Procedure for issuing an adverse finding

            • EN-5.3.1

              All proposals for issuing an adverse "fit and proper" finding are subject to a thorough review by the Agency of all relevant facts, assessed against the criteria outlined in section EN-5.2. In some instances, it may be appropriate for the Agency to request the licensee or person concerned to provide further information, in order to help reach a decision.

            • EN-5.3.2

              All adverse findings have to be approved by an Executive Director of the Agency. A notice of intent is issued to the person concerned, and copied to the Board/senior management of the licensee as appropriate, setting out the circumstances and the basis for the Agency's proposed adverse finding. The person has 30 calendar days from the date of the notice in which to make written representations, addressed to the Executive Director concerned, failing which a final notice is issued by the Agency.

            • EN-5.3.3

              If representations are made, then the Agency has 30 days from the date of the representation in which to consider any mitigating evidence submitted and make a final determination.

        • EN-6 EN-6 Financial penalties

          • EN-6.1 EN-6.1 BMA Policy

            • EN-6.1.1

              The Agency may on a very selective basis impose financial penalties on licensees. Their use is generally limited to situations where major breaches of regulatory requirements have taken place and a licensee has failed to respond in an acceptable manner to the concerns expressed by the Agency. Financial penalties are thus normally preceded by the issuance of a Formal Notice and/or Direction.

            • EN-6.1.2

              The level of financial penalty applied is determined by the nature of the contravention and the amount of additional supervisory attention and resources taken up by a licensee's behaviour. The maximum penalty, however, is capped at BD 20,000. The Agency intends that the impact of a penalty should derive more from its signaling effect than from the actual amount of money involved.

            • EN-6.1.3

              As indicated in section EN-1.3, the Agency requires disclosure by licensees in their annual reports of any financial penalties served on them, together with a factual description of the reasons given by the Agency for applying the penalty. In addition, the Agency may publicise the issuance of a financial penalty notice, where there is a strong case that doing so would help achieve the Agency's supervisory objectives. In such instances, the Agency will usually allow the licensee concerned the opportunity to make representations to the Agency before a public statement is issued.

            • EN-6.1.4

              Examples of the types of compliance failings that may lead to the serving of a financial penalty notice include (but are not limited to):

              (a) Failures to address persistent delays and/or significant inaccuracies in regulatory reporting to the Agency;
              (b) Repeated failures to respond to formal requests for information from the Agency, within the deadlines set;
              (c) The submission of information to the Agency known to be false or misleading; and
              (d) Major failures in maintaining adequate systems and controls in accordance with the Agency's requirements, subjecting depositors and other customers to significant risk of financial loss.

            • EN-6.1.5

              In assessing whether to serve a financial penalty notice, the Agency takes into account the following criteria:

              (a) the seriousness of the contravention, in relation to the requirement(s) concerned;
              (b) the duration and/or frequency of the contravention, and the extent to which it reflects more widespread weaknesses in controls and/or management;
              (c) the extent to which the contravention was deliberate or reckless;
              (d) the licensee's past compliance record and conduct following the contravention; and
              (e) the scope of any other action taken by the BMA or other regulators against the licensee, in response to the compliance failures in question.

            • EN-6.1.6

              The imposition of a financial penalty does not preclude the BMA from also using other enforcement measures to remedy the same violation (for instance, a Direction).

          • EN-6.2 EN-6.2 Money laundering regulation

            • EN-6.2.1

              In addition to the circumstances set out in section EN-6.1, a financial penalty of up to BD 20,000 may be applied by the Agency in cases where a licensee fails to comply with any of the requirements in module FC.

            • EN-6.2.2

              As with the imposition of financial penalties in response to breaches of other regulatory requirements, the Agency will apply financial penalties with respect to the regulations set out under module FC on a very selective basis only. The same criteria set out in section EN-6.1 will be taken into account by the Agency when considering imposing a financial penalty. Financial penalties applied under this Section are also subject to the same disclosure requirements as described in section EN-6.1.

            • EN-6.2.3

              A failure to comply with the requirements in module FC that warrants a financial penalty would not trigger also a financial penalty under section EN-6.1.

            • EN-6.2.4

              Any financial penalties applied by the Agency as regards the implementation of its regulations set out under module FC, are without prejudice to the criminal sanctions available to the Bahraini courts under the Decree — Law No. 4 of 2001, with respect to the prevention and prohibition of the laundering of money. As with other financial penalties, the imposition of a financial penalty with regards to breaches of the regulation in module FC does not prevent the Agency from also using other enforcement measures to remedy the same violation (for instance, a Direction).

          • EN-6.3 EN-6.3 Procedures for financial penalties

            • EN-6.3.1

              A written financial penalty notice will be addressed to the Chief Executive Officer or General Manager of the licensee concerned. This written notification will describe the contravention concerned, the Agency's evidence supporting a financial penalty, and the factors justifying the level of penalty proposed. Only an Executive Director or more senior member of the Agency's management may sign the notification.

            • EN-6.3.2

              The licensee has 15 business days from the notification's date of issuance to submit any representations it wishes to make to the Agency, in writing and addressed to the issuer of the original notification. If the licensee decides not to submit representations, it has 30 calendar days from the notification's date of issuance in which to pay the penalty.

            • EN-6.3.3

              Should the licensee make representations challenging the proposed penalty, the Agency has 15 business days from the issuance of those representations in which to re-examine the facts of the case and its conclusions. If the Agency confirms application of a penalty, payment is required within 30 calendar days of a final notice being issued. However, the licensee has the right to lodge a further written appeal within those 30 days, addressed to H.E. the Governor. In such cases, H.E. the Governor makes a final determination within 15 business days of the date of the written appeal. If H.E. the Governor confirms application of a penalty, then payment is required within 30 calendar days of H.E. the Governor's written confirmation.

            • EN-6.3.4

              Failure to pay a penalty within the required deadlines will be considered a breach of the Agency's regulatory requirements, and will also result in other measures being considered, as described elsewhere in this Module.

          • EN-6.4 EN-6.4 Remedying a compliance failure

            • EN-6.4.1

              Payment of a financial penalty does not by itself absolve a licensee from remedying the compliance failure concerned. The Agency will expect the licensee to address the contravention within a reasonable timescale, to be agreed on a case-by-case basis. Failure to do so will result in other measures being considered.

        • EN-7 EN-7 Investigations

          • EN-7.1 EN-7.1 Legal source

            • EN-7.1.1

              Article 82 of the BMA Decree — Law No. 23 of 1973 ("BMA Law") empowers the Agency to order investigations of licensees, in order to help it assess a licensee's compliance with the provisions of the BMA Law. Such investigations may be carried out either by its own officials or auditors appointed for such a purpose by the Agency. Article 83 requires licensees to make available to the Agency's inspectors its books and other records, and to provide all relevant information within the time limits deemed reasonable by the inspectors.

            • EN-7.1.2

              Article 87 of the BMA Law provides for criminal sanctions where false or misleading statements are made to the Agency, or an investigation by the Agency is otherwise obstructed (see section EN-10.3).

          • EN-7.2 EN-7.2 BMA Policy

            • EN-7.2.1

              The BMA uses its own inspectors to undertake on-site examinations of licensees as an integral part of its regular supervisory efforts. In addition, the BMA may commission special investigations of licensees in order to help it assess their compliance with BMA requirements. Such investigations may be carried out either by the BMA's own officials, by duly qualified experts appointed for the purpose by the BMA ("Appointed Experts"), or a combination of the two.

            • EN-7.2.2

              Failure by licensees to cooperate fully with the BMA's inspectors, or to respond to their examination reports within the time limits specified, will be treated as demonstrating a material lack of cooperation with the Agency which will result in other enforcement measures being considered, as described elsewhere in this module.

            • EN-7.2.3

              The BMA may appoint an individual or a firm as an Appointed Expert. Examples of Appointed Experts are reporting accountants, lawyers and expert witnesses. The appointment of Appointed Experts is not necessarily indicative of a contravention of BMA requirements or suspicion of such a contravention. For instance, an Appointed Expert may be commissioned to provide an expert opinion on a technical matter.

            • EN-7.2.4

              Appointed Experts report in a form and within a scope defined by the BMA, and are solely responsible to the BMA for the work they undertake in relation to the investigation concerned. The report produced by the Appointed Experts is the property of the BMA (but is usually shared by the BMA with the firm concerned). The cost of the Appointed Experts' work must be borne by the licensee concerned.

            • EN-7.2.5

              In selecting an Appointed Expert, the BMA will take into account the level of fees proposed and aim to limit these to the lowest level consistent with an adequate review of the matters at hand, given the qualifications, track record and independence of the persons concerned. Because the cost of such investigations are met by the licensee, the BMA makes only selective use of Appointed Experts, when essential to supplement BMA's other supervisory tools and resources.

            • EN-7.2.6

              The BMA will not, as a matter of general policy, publicise the appointment of Appointed Experts, although it reserves the right to do so where this would help achieve its supervisory objectives. Both the Appointed Experts and the BMA are bound to confidentiality provisions restricting the disclosure of confidential information with regards to any such information obtained in the course of the investigation.

            • EN-7.2.7

              Unless the Agency otherwise permits, Appointed Experts may not be the same firm appointed as external auditors of the bank.

            • EN-7.2.8

              Compliance by Appointed Experts with the contents of this chapter will not, of itself, constitute a breach of any other duty owed by them to a particular bank (i.e. create a conflict of interest).

            • EN-7.2.9

              The Agency may commission reports, which require Appointed Experts to review information from another company within the reporting bank's group even where that other company is not itself subject to any Agency requirements.

            • EN-7.2.10

              Banks must provide all relevant information and assistance to Appointed Experts on demand.

            • EN-7.2.11

              The Agency may appoint one or more of its officials to work on the Appointed Experts' team for a particular bank.

          • EN-7.3 EN-7.3 The required report

            • EN-7.3.1

              The scope of the required report will be determined and detailed by the Agency in the appointment letter. Commissioned Appointed Experts will normally be required to report on one or more of the following aspects of a bank's business:

              (a) accounting and other records;
              (b) internal control systems;
              (c) returns of information provided to the Agency;
              (d) operations of certain departments; and/or
              (e) other matters specified by the Agency.

            • EN-7.3.2

              Appointed Experts will be required to form an opinion on whether, during the period examined, the bank is in compliance with the relevant provisions of the BMA Law and the Agency's relevant requirements, as well as other requirements of Bahrain Law and, where relevant, industry best practice locally and/or internationally.

            • EN-7.3.3

              The Appointed Experts report must follow the format set out in Appendix EN 1.

            • EN-7.3.4

              Unless otherwise directed by the Agency or unless the circumstances described in section EN-7.3 apply, the report should be discussed with Board of Directors and/or senior management in advance of it being sent to the Agency.

            • EN-7.3.5

              Where the report is qualified by exception, the report must clearly set out the risks which the bank runs by not correcting the weakness, with an indication of the severity of the weakness should it not be corrected. Appointed Experts will be expected to report on the type, nature and extent of any weaknesses found during their work, as well as the implications of a failure to address and resolve such weaknesses.

            • EN-7.3.6

              If the Appointed Experts conclude, after discussing the matter with the bank, that they will give a negative opinion (as opposed to one qualified by exception) or that the issue of the report will be delayed, they must immediately inform the Agency in writing giving an explanation in this regard.

            • EN-7.3.7

              The report must be completed, dated and submitted, together with any comments by Directors or management (including any proposed timeframe within which the bank has committed to resolving any issues highlighted by the report), to the Agency within the timeframe applicable.

          • EN-7.4 EN-7.4 Other notifications to the Agency

            • EN-7.4.1

              Appointed Experts must communicate to the Agency, during the conduct of their duties, any reasonable belief or concern they may have that any of the requirements of the Agency, including the criteria for licensing a bank (see Module LR), are not or have not been fulfilled, or that there has been a material loss or there exists a significant risk of material loss in the concerned bank, or that the interests of customers are at risk because of adverse changes in the financial position or in the management or other resources of a bank. Notwithstanding the above, it is primarily the bank's responsibility to report such matters to the Agency.

            • EN-7.4.2

              The Agency recognises that Appointed Experts cannot be expected to be aware of all circumstances which, had they known of them, would have led them to make a communication to the Agency as outlined above. It is only when Appointed Experts, in carrying out their duties, become aware of such a circumstance that they should make detailed inquiries with the above specific duty in mind.

            • EN-7.4.3

              If Appointed Experts decide to communicate directly with the Agency in the circumstances set out in paragraph EN-7.4.1 above, they may wish to consider whether the matter should be reported at an appropriate senior level in the bank at the same time and whether an appropriate senior representative of the bank should be invited to attend the meeting with the Agency.

        • EN-8 EN-8 Administration

          • EN-8.1 EN-8.1 Legal source

            • EN-8.1.1

              Article 93 of the BMA Decree — Law No. 23 of 1973 ("BMA Law") empowers (but does not oblige) the Agency to assume the administration of a licensee in certain circumstances, subject to the approval of the Minister of Finance. These circumstances are where:

              (a) the licensee has become insolvent;
              (b) its liquidity or solvency are in jeopardy;
              (c) its continued activity is detrimental to the rights of depositors; or
              (d) it commits serious contraventions of the provisions of the BMA Law.

            • EN-8.1.2

              Article 94 of the BMA Law provides that where the Agency assumes the administration of a licensee, the licensee concerned may appeal to the Minister of Finance and, subsequently, the courts, in order to challenge its administration by the Agency.

            • EN-8.1.3

              Articles 95 to 99 of the BMA Law set down the operating parameters of an administration.

          • EN-8.2 EN-8.2 BMA Policy

            • EN-8.2.1

              The Agency views the administration of a licensee as a very powerful sanction, and will generally only pursue this option if less severe measures are unlikely to achieve its supervisory objectives.

            • EN-8.2.2

              Although Article 93 of the BMA Law specifies the circumstances in which the Agency may pursue an administration, it does not oblige the Agency to administer a licensee. Faced with the circumstances described, the Agency may pursue other courses of action, if it considers that these are more likely to achieve the supervisory outcomes sought. Because an administration is likely to send a negative signal to the markets about the status of a licensee, other supervisory actions may in fact be preferable in terms of protecting the interests of those with a claim on the licensee.

            • EN-8.2.3

              The criteria used by the Agency in deciding whether to seek an administration of a licensee include the following:

              (a) the extent to which the interests of the market, its users and those who have a claim on the licensee would be best served by the administration of the license, for instance because of the potential impact on asset values arising from an administration;
              (b) the extent to which other regulatory actions could reasonably be expected to achieve the Agency's desired supervisory objectives (such as restrictions on the licensee's operations, including limitations on new business and asset disposals);
              (c) the extent to which the liquidity or solvency of the licensee is in jeopardy; and
              (d) the extent to which the licensee has contravened the conditions of the BMA Law, including the extent to which the contraventions reflect more widespread or systemic weaknesses in controls and/or management.

          • EN-8.3 EN-8.3 Procedure for implementing an administration

            • EN-8.3.1

              All proposals for assuming the administration of a licensee are subject to a thorough review by the Agency of all relevant facts, assessed against the criteria outlined in section EN-8.1. After being assessed at Executive Director level, proposals are submitted to H.E. the Governor and subsequently the Minister of Finance and National Economy for their respective approvals.

            • EN-8.3.2

              Once approved by the Minister of Finance and National Economy, a formal notice of administration is issued to the licensee concerned and copies posted in every place of business of the licensee. As soon as practicable thereafter, the notice is also published in the Official Gazette and in local newspapers. The term "in administration" should be clearly marked in all the bank's correspondence and on its website, next to the bank's name.

            • EN-8.3.3

              Article 94 of the BMA Law allows a licensee 10 days following the administration taking effect in which to appeal to the Minister of Finance. If the Minister refuses the appeal, the licensee has a further 10 days from the date of the refusal in which to lodge an appeal at the courts. So as to reduce the potential damage of an administration order being applied and then withdrawn on appeal, where feasible the Agency will give advance notice to a licensee's Board of its intention to seek an administration, and allow the Board the right of appeal prior to an administration notice being formally served.

        • EN-9 EN-9 Cancellation of license

          • EN-9.1 EN-9.1 Legal source

            • EN-9.1.1

              Article 66 of the BMA Decree — Law No. 23 of 1973 ("BMA Law") empowers the Agency to cancel a license under certain circumstances. These include cases where a licensee has:

              (a) contravened the conditions of its license;
              (b) repeatedly violated the provisions of the BMA Law; or
              (c) failed to follow BMA regulations regarding the merger or other major restructurings of its operations.

            • EN-9.1.2

              Article 66 of the BMA Law also requires the Agency to give the licensee concerned reasonable time to object to any proposed cancellation of its license.

          • EN-9.2 EN-9.2 BMA policy

            • EN-9.2.1

              The Agency generally views canceling a license as appropriate only in extreme circumstances, when faced with the gravest of contraventions or when left with no other reasonable means of successfully addressing the regulatory failings in question.

            • EN-9.2.2

              The criteria used by the Agency in assessing whether to seek cancellation of a license include:

              (a) the extent to which the interests of the market, its users and those who have a claim on the licensee would be best served by the cancellation of the license;
              (b) the extent to which other regulatory penalties could reasonably be expected to achieve the Agency's desired supervisory objectives;
              (c) the extent to which the licensee has contravened the conditions of its license and/or the BMA Law, including the seriousness, duration and/or frequency of the contravention(s) concerned, and the extent to which the contraventions reflect more widespread or systemic weaknesses in controls and/or management;
              (d) the extent to which the licensee has been involved in financial crime or other criminal conduct; and
              (e) the licensee's past compliance record and conduct following the contravention(s).

          • EN-9.3 EN-9.3 Procedure for cancellation of license

            • EN-9.3.1

              All proposals for canceling a license are subject to a thorough review by the Agency of all relevant facts, assessed against the criteria outlined in section EN-9.2. After being assessed at Executive Director level, proposals are submitted to H.E. the Governor for approval.

            • EN-9.3.2

              Once approved within the BMA, a formal notice of cancellation is issued to the licensee concerned. The notice of cancellation will describe the factual circumstances of the contraventions concerned, and the Agency's rationale for the proposed cancellation, as measured against the criteria outlined in section EN-9.2.

            • EN-9.3.3

              The licensee has 30 calendar days from the date of the notice in which to lodge an appeal. The appeal should be addressed to the Board of the BMA, and copied to H.E. the Governor of the BMA.

            • EN-9.3.4

              If an appeal is lodged, the Board of the BMA will make a final ruling within 60 calendar days of its date of issuance.

        • EN-10 EN-10 Criminal sanctions

          • EN-10.1 EN-10.1 Overview

            • EN-10.1.1

              The BMA Decree — Law No. 23 of 1973 ("BMA Law") provides for a number of criminal sanctions in cases where certain of its provisions are contravened. This section provides a summary of those sanctions most relevant to licensees, their Directors and employees. What follows is not a complete list of all sanctions provided for in the BMA Law, nor is it a substitute for reading the Law and being fully aware of its provisions.

            • EN-10.1.2

              Licensees, their Directors and employees should also be aware of the criminal sanctions provided for under other relevant Bahraini laws, such as the Decree — Law No. 4 of 2001, with respect to the prevention and prohibition of the laundering of money.

            • EN-10.1.3

              In all cases to do with criminal sanctions, the Agency can only refer the matter to the Office of Public Prosecutor. The Agency has no authority to apply such sanctions without recourse to the courts.

          • EN-10.2 EN-10.2 BMA policy

            • EN-10.2.1

              Because of their criminal status, and their provision for custodial sentences, the sanctions provided for under the BMA Law are viewed by the Agency as very powerful measures, to be pursued sparingly. In most situations, the Agency will seek to address regulatory failures through administrative sanctions, as outlined in preceding sections, rather than by pursuing the criminal sanctions outlined here.

            • EN-10.2.2

              Where, however, the nature of the offence is such that there is strong evidence of a reckless or intentional breach of the BMA Law relevant to the following Articles, then the Agency will usually refer the matter to the Office of Public Prosecutor.

          • EN-10.3 EN-10.3 Article 87

            • EN-10.3.1

              Article 87 of the BMA Law provides for a term of imprisonment of up to two years, and/or a fine of up to BD 5,000, without prejudice to any other penalty prescribed in any other law, in case of conviction of a Director, manager, official, agent or representative of any licensee who:

              (a) makes false or misleading statements with fraudulent intent;
              (b) omits, with fraudulent intent, to make any statement or any entry in the books or accounts of the banking firm;
              (c) obstructs the performance of the auditor's duties; and
              (d) obstructs an investigation conducted by inspectors appointed by the Agency.

          • EN-10.4 EN-10.4 Article 88

            • EN-10.4.1

              Article 88 provides for a term of imprisonment of up to six months, and/or a fine of up to BD 1,000, for any Director, manager or official responsible for the direction or management of a licensee, who deliberately neglects to ensure the implementation of the provisions of the BMA Law.

          • EN-10.5 EN-10.5 Article 92

            • EN-10.5.1

              Article 92 C provides for a term of imprisonment of up to two years, and/or a fine of up to BD 5,000, for any Director, manager, official or employee, who receives or approves the acceptance of deposits although he is aware — or ought to be aware by reason of the nature of his duties — of the insolvency of his bank.