Back Custom print Link Text Only Rich Text Print

  • HC-3 HC-3 Board’s Structure and Practices

    • HC-3.1 HC-3.1 Organisation and Assessment of the Board

      • HC-3.1.1

        The Board of a Bahraini Islamic bank licensee must:

        (a) Adopt a formal Board charter specifying matters which are reserved for it, which must include, but are not limited to, the specific requirements and responsibilities of directors stipulated in this Module and the Commercial Companies Law;
        (b) Structure itself in terms of leadership, size and the use of committees so as to effectively carry out its oversight role and other responsibilities. This includes ensuring that the Board has the time and means to cover all necessary subjects in sufficient depth and have a robust discussion of key issues;
        (c) Maintain and periodically update its governance structure, organisational rules, by-laws and other similar documents setting out its organisation, rights, responsibilities and key activities; and
        (d) Carry out annual evaluation and assessments – alone or with the assistance of external experts – of the Board, its committees and individual Board members. This must include:
        i. Assessing how the Board operates in terms of the requirements of the CBB Rulebook and the Commercial Companies Law;
        ii. Evaluating the performance of each committee considering its specific purposes and responsibilities, which shall include review of the self-evaluations undertaken by each committee;
        iii. Reviewing each director's work, their attendance at Board and committee meetings, and their independence and constructive involvement in discussions and decision making;
        iv. Reviewing, based on the Nomination Committee’s advice and assessment, the Board’s current structure, size, composition as well as committees’ structures and composition in order to maintain an appropriate balance of skills, diversity and experience and for the purpose of planned and progressive refreshing of the Board; and
        v. Recommendations for new directors to replace long-standing members or those members whose contribution to the Board or its committees is not adequate.
        Added: April 2023

      • HC-3.1.2

        Where the Board has serious reservations about the performance or integrity of a Board member, or he ceases to be qualified, the Board must take appropriate action and inform the CBB accordingly.

        Added: April 2023

      • HC-3.1.3

        The Board must report to the shareholders, at each annual shareholder meeting, that evaluations have been done and report its findings.

        Added: April 2023

      • HC-3.1.4

        Executive directors must provide the Board with all relevant business and financial information within their knowledge and must recognise that their role as a director is different from their role as a member of management.

        Added: April 2023

      • HC-3.1.5

        Non-executive directors must be fully independent of management and must constructively scrutinise and challenge management and executive directors.

        Added: April 2023

      • HC-3.1.6

        The Board must maintain appropriate records of meeting minutes, including key points of discussions held, recommendations made, decisions taken and dissenting opinions (if any).

        Added: April 2023

      • HC-3.1.7

        The Board must meet at least four times a year to enable it to discharge its responsibilities effectively, and half of all Board meetings in any financial year must be held in the Kingdom of Bahrain.

        Added: April 2023

      • HC-3.1.8

        Individual Board members must attend at least 75% of all Board meetings in a given financial year, whether in-person or virtually (if needed) so as to enable the Board to discharge its responsibilities effectively (see table below). Voting and attendance proxies for Board meetings are prohibited.

        Meetings per year 75% Attendance requirement
        4 3
        5 4
        6 5
        7 5
        8 6
        9 7
        10 8
        Added: April 2023

      • HC-3.1.9

        The absence of Board members at Board and committee meetings must be noted in the relevant meeting minutes. In addition, Board attendance percentage must be reported during any general assembly meeting when Board members stand for re-election (e.g. Board member XYZ attended xx% of scheduled meetings this year).

        Added: April 2023

      • HC-3.1.10

        If a Board member has not attended at least 75% of Board meetings in any given financial year, the licensee must notify the CBB, within one month from its financial year-end, indicating which member has failed to satisfy this requirement, their level of attendance and the reason for non-attendance. The CBB shall then consider the matter and determine whether enforcement action pursuant to Article 65 of the CBB Law is appropriate.

        Added: April 2023

      • HC-3.1.11

        Board governance framework should require members to step down if they are not actively participating in Board meetings.

        Added: April 2023

      • HC-3.1.12

        Non-executive directors should have free access to the Bahraini Islamic bank licensee’s management beyond that provided in Board meetings. Such access should be through the chairperson of the Audit Committee or the CEO. The Board should make this policy known to management to alleviate any management concerns about a director’s authority in this regard.

        Added: April 2023

    • HC-3.2 HC-3.2 Board Chairperson

      • HC-3.2.1

        The Chairperson of the Board of the Bahraini Islamic bank licensee must:

        (a) Not be an executive director;
        (b) Not be the same person as the CEO. This applies also to the deputy chairperson;
        (c) Commit sufficient time to perform their role effectively;
        (d) Play a critical role in promoting mutual trust, efficient functioning of the Board, open discussion, constructive dissent from decisions and constructive support for decisions after they have been made;
        (e) Ensure that all directors receive an agenda, minutes of prior meetings and adequate background information on each agenda item in writing well before each Board meeting;
        (f) Encourage and promote critical and objective discussion and ensure that dissenting views can be freely expressed, discussed and recorded in the minutes of the Board meeting; and
        (g) Ensure that Board decisions are taken on sound and well-informed bases.
        Added: April 2023

      • HC-3.2.2

        The chairperson of a Bahraini Islamic bank licensee should be an independent Board member.

        Added: April 2023

    • HC-3.3 HC-3.3 Board Committees

      • HC-3.3.1

        The Board of the Bahraini Islamic bank licensee must establish Audit, Risk, Remuneration and Nomination Committees described elsewhere in this Module.

        Added: April 2023

      • HC-3.3.2

        Objectivity and independence must be ensured by the selection of appropriate Board members in each committee.

        Added: April 2023

      • HC-3.3.3

        Committees may be combined provided that no conflict of interest arises between the duties of such committees, and subject to the CBB’s prior approval.

        Added: April 2023

      • HC-3.3.4

        Every committee must have a formal written charter or other instrument which sets out its roles and responsibilities, how the committee will report to the Board, what is expected of committee members and any tenure limits for serving on the committee.

        Added: April 2023

      • HC-3.3.5

        Each committee must have the resources and the authority necessary to discharge its duties and responsibilities, including the authority to select, retain, terminate and approve the fees of external legal, accounting or other advisors as it deems necessary.

        Added: April 2023

      • HC-3.3.6

        Each Board committee must maintain appropriate records of their deliberations and decisions in their meeting minutes, including key points of discussions held, recommendations made, decisions taken (and update on their subsequent implementation) and dissenting opinions (if any).

        Added: April 2023

      • HC-3.3.7

        Each committee must prepare and review with the Board an annual performance evaluation of the committee and its members and must recommend to the Board any improvements deemed necessary or desirable to the committee’s charter or composition. The report must be in the form of a written report presented at any regularly scheduled Board meeting.

        Added: April 2023

      • HC-3.3.8

        Members of each committee must exercise judgment free from any personal conflicts of interest or bias.

        Added: April 2023

      • HC-3.3.9

        The Board should consider occasional rotation of membership and chair of the Board committees provided that doing so does not impair the collective skills, experience and effectiveness of these committees.

        Added: April 2023

    • HC-3.4 HC-3.4 Audit Committee

      • HC-3.4.1

        The audit committee of the Bahraini Islamic bank licensee must have at least three directors of which the majority must be independent and have no conflict of interest with any other duties they have.

        Added: April 2023

      • HC-3.4.2

        The Chairperson of the audit committee must:

        (a) Be independent;
        (b) Not be the chairperson of the board, unless he is considered independent; and
        (c) Not be the chairperson of any other Board committee.
        Added: April 2023

      • HC-3.4.3

        The CEO and other senior management of the Bahraini Islamic bank licensee must not be members of the audit committee.

        Added: April 2023

      • HC-3.4.4

        The audit committee members must have sufficient experience in audit practices, financial reporting and accounting.

        Added: April 2023

      • HC-3.4.5

        The audit committee must meet:

        (a) At least four times a year.
        (b) At least twice a year with the external auditor.
        (c) At least once a year in the absence of the CEO and any executive management, but in presence of the Head of Compliance, Internal Auditor and CRO.
        Added: April 2023

      • HC-3.4.6

        The audit committee must, at minimum:

        (a) Ensure that the licensee has effective and adequate policies covering all its business activities, internal audit, financial reporting, compliance, risk management, prevention of frauds and cyber security breaches, etc.;
        (b) Oversee the financial reporting process;
        (c) Oversee and interact with the licensee’s internal and external auditors;
        (d) Review the integrity of the Islamic bank licensee’s financial statements;
        (e) Recommend to the Board, based on a Board approved objective criteria, the appointment, remuneration, dismissal and rotation of external auditors;
        (f) Review and approve the internal and external audit and compliance scope;
        (g) Receive internal and external audit and compliance reports and ensure that senior management is taking necessary corrective actions in a timely manner to address any control weaknesses, non-compliance with policies, laws and regulations, and other problems identified by auditors, the head of compliance and other control functions;
        (h) Assess once a year the extent to which the licensee is managing its compliance risk effectively;
        (i) Ensure that the agenda for their meetings includes compliance and internal audit issues at least every quarter;
        (j) Recommend the appointment and dismissal of the heads of internal audit and compliance functions. The licensee must also discuss the reasons for their dismissal with the CBB.
        (k) Make a determination, at least once a year, of the external auditor’s independence;
        (l) Commission every five years a quality review of the effectiveness and efficiency of the internal audit and compliance functions by a third-party consultant, other than the external auditor. The results of such independent review must be provided to the CBB by 30th September of the relevant year;
        (m) Review and supervise the implementation and enforcement of the licensee's code of conduct, unless such mandate is delegated to another committee such as the Governance Committee; and
        (n) Ensure that senior management establishes and maintains an adequate and effective internal control systems, procedures and processes for the business of the licensee.
        Added: April 2023

      • HC-3.4.7

        In case the licensee has a different board committee overseeing and monitoring compliance issues, then all of the above compliance-related requirements in Paragraph HC-3.4.6 can be handled by such committee instead.

        Added: April 2023

    • HC-3.5 HC-3.5 Risk Committee

      • HC-3.5.1

        The risk committee of the Bahraini Islamic bank licensee must have at least three directors of which the majority must be independent. In addition, the committee members must have experience in risk management issues and practices and have no conflict of interest with any other duties they may have.

        Added: April 2023

      • HC-3.5.2

        The chairperson of the risk committee must:

        (a) Be independent;
        (b) Not be the chairperson of the Board, unless he is considered independent; and
        (c) Not be the chairperson of any other Board committee.
        Added: April 2023

      • HC-3.5.3

        The CEO and other senior management must not be members of the risk committee.

        Added: April 2023

      • HC-3.5.4

        The licensee must have a strong and appropriate risk governance framework which:

        (a) Includes a strong risk culture, and a well-developed risk appetite articulated through the risk appetite statement (RAS);
        (b) Outlines actions to be taken when the stated risk limits are breached, including disciplinary actions for excessive risk-taking, escalation procedures and notification to the Board; and
        (c) Includes well-defined organisational responsibilities for risk management.
        Added: April 2023

      • HC-3.5.5

        The Bahraini Islamic bank licensee’s RAS must:

        (a) Include both quantitative and qualitative considerations;
        (b) Establish the individual and aggregate level and types of risks that the bank is willing to assume;
        (c) Define the boundaries and business considerations according to which the bank is expected to operate;
        (d) Be aligned with the bank’s strategic, capital and financial plans and compensation practices; and
        (e) Be communicated effectively throughout the bank, linking it to daily operational decision-making and establishing the means to raise risk issues and strategic concerns across the bank on a timely and proactive basis.
        Added: April 2023

      • HC-3.5.6

        Islamic bank licensees must avoid organisational silos that can impede effective sharing of risk information across the organisation and can result in decisions being taken in isolation from the rest of the bank. Accordingly, the Board, senior management and control functions must re-evaluate established practices in order to encourage greater communication.

        Added: April 2023

      • HC-3.5.7

        The risk committee must, at minimum:

        (a) Recommend the appointment or removal of the Chief Risk Officer (CRO) or equivalent. The licensee must also discuss the reasons for removal with the CBB;
        (b) Discuss all risk strategies on both an aggregated basis and by type of risk and make recommendations to the Board, and on the risk appetite;
        (c) Ensure that:
        i. Risks are identified, measured, aggregated, controlled, mitigated, monitored and reported on an ongoing basis across all business lines, the licensee as a whole, its subsidiaries and overseas branches (if any);
        ii. Risk identification and measurement include both quantitative and qualitative elements;
        iii. Each key risk has a policy, process and controls;
        iv. The licensee has sufficient and robust management information system and policies, supported by appropriate control procedures and processes, designed to ensure that the licensee’s risk identification, measurement, aggregation, controlling, mitigation, monitoring and reporting capabilities are commensurate with the licensee’s size, complexity and risk profile. The sophistication of the licensee’s risk management information system and internal control infrastructure must keep pace with changes to the licensee’s risk profile, the external risk landscape and industry practices;
        i. The licensee’s risk management infrastructure, including a sufficiently robust data infrastructure, data governance and architecture and information technology infrastructure keeps pace with developments such as balance sheet and revenue growth, increasing complexity of the licensee’s business, risk configuration or operating structure, geographical expansion, mergers and acquisitions, or the introduction of new products or business lines;
        ii. Senior management has in place processes to promote the licensee’s adherence to the approved risk policies and risk appetite;
        iii. The licensee’s policies must determine the key management decisions that must be taken by more than one person;
        iv. The licensee has an adequate communication within the licensee about risk, both across the organisation and through reporting to the Board and senior management;
        v. The licensee has a strong risk culture that promotes risk awareness and encourages open communication and challenge about risk-taking across the organisation as well as vertically to and from the Board and senior management; and
        vi. The licensee has adequate escalation procedures on risks related matters.
        (d) Advise the Board on the licensee’s risk appetite, overseeing senior management’s implementation of the RAS, reporting on the state of risk culture in the licensee, and interacting with and overseeing the CRO;
        (e) Oversee the strategies for capital and liquidity management as well as for all relevant risks of the licensee, such as credit, market, operational, rate of return risk in the banking book and reputational risks, to ensure that they are consistent with the stated risk appetite;
        (f) Commission every five years a quality review of the effectiveness and efficiency of the risk management framework and function by a third-party consultant, other than the external auditor. The results of such independent review must be provided to the CBB by 31st May of the relevant year. More specifically, an Islamic bank licensee must undertake reviews referred to above with regards to the following individual areas that are relevant to the risk management framework:
        i. ICAAP Framework referred to in Module IC;
        ii. Capital adequacy requirements under Module CA;
        iii. Recovery and resolution planning (RRP) and related documents referred to in Module DS;
        iv. Credit risk management framework and compliance with Module CM;
        v. Operational risk management framework and compliance with Module OM;
        vi. Stress testing framework included in Module ST;
        vii. Liquidity risk management framework and compliance with Module LM; and
        viii. Compliance with Module RR.
        (g) Receive regular reporting and communication from the CRO and other relevant functions about the licensee’s current risk profile, current state of the risk culture, utilisation against the established risk appetite and limits, limit breaches and mitigation plans.
        Added: April 2023

      • HC-3.5.8

        There must be effective communication and coordination between the audit committee and the risk committee to facilitate the exchange of information and effective coverage of all risks, including emerging risks, and any needed adjustments to the risk governance framework of the bank.

        Added: April 2023

    • HC-3.6 HC-3.6 Remuneration Committee

      • HC-3.6.1

        The remuneration committee of the Bahraini Islamic bank licensee must have at least three directors.

        Added: April 2023

      • HC-3.6.2

        Members of the remuneration committee must be independent of any risk-taking function or committee.

        Added: April 2023

      • HC-3.6.3

        The remuneration committee should include only independent directors or, alternatively, only non-executive directors of whom a majority are independent directors and the chairperson should be an independent director.

        Added: April 2023

      • HC-3.6.4

        The remuneration committee should meet at least twice a year.

        Added: April 2023

      • HC-3.6.5

        The remuneration committee must, at minimum:

        (a) Recommend to the Board:
        i. An appropriate remuneration policy designed to reduce employees’ incentives to take excessive and undue risk, which must be approved by the shareholders; and
        ii. A fair and internally transparent remuneration system, which includes relevant performance measures and effective controls.
        (b) Ensure on an annual basis that the remuneration policy and its implementation:
        i. Are in full compliance with CBB requirements;
        ii. Are consistent with the licensee’s strategy, culture, long-term business objectives, risk appetite, performance and control environment; and
        iii. Are creating the desired incentives for managing risk, capital and liquidity.
        (c) Work closely with the risk committee in evaluating the incentives created by the remuneration system. The risk committee must, without prejudice to the tasks of the remuneration committee, examine whether incentives provided by the remuneration system take into consideration risk, capital, liquidity and the likelihood and timing of earnings;
        (d) Approve the remuneration package and amounts for each approved person and material risk-taker, as well as the total variable remuneration to be distributed based on the results of the performance evaluation system and taking account of total remuneration including salaries, fees, expenses, bonuses and other employee benefits;
        (e) Regularly review remuneration outcomes, risk measurements, and risk outcomes for consistency with Board’s approved risk appetite;
        (f) Question payouts for income that cannot be realised or whose likelihood of realisation remains uncertain at the time of payout;
        (g) Recommend Board member remuneration based on their attendance and in compliance with the Commercial Companies Law;
        (h) Evaluate practices by which remuneration is paid for potential future revenues whose timing and likelihood remain uncertain by means of both quantitative and qualitative key indicators. It must demonstrate that its decisions are consistent with the assessment of the licensee’s financial condition and future prospects; and
        (i) Obtain feedback on performance evaluation of the Chief Risk Officer, Chief Internal Auditor, Head of Compliance, Head of Internal Shari’a Audit, Shari’a Officer from the designated Board committee responsible for oversight of these functions.
        Added: April 2023

    • HC-3.7 HC-3.7 Nomination Committee

      • HC-3.7.1

        The nomination committee of the Bahraini Islamic bank licensee must have at least three independent directors, or alternatively, three non-executive directors of whom the majority must be independent directors including its chairperson.

        Added: April 2023

      • HC-3.7.2

        The committee should meet at least twice a year.

        Added: April 2023

      • HC-3.7.3

        The nomination committee must, at minimum:

        (a) Assess and recommend to the Board from time to time the changes that the committee considers desirable to the size of the Board, any Board committee or management structure;
        (b) Regularly review the time commitment required from each non-executive director and require them to inform the committee before accepting any Board appointments to another company;
        (c) Recommend to the Board persons qualified to become members of the Board of directors or CEO and his deputies, chief financial officer, chief operating officer, chief investment officer, chief banking officer, corporate secretary and any equivalent or other senior management positions that the Board determines are subject to its approval. The exceptions are the appointments of the chief internal auditor, chief risk officer and head of compliance who must be recommended by other committees as prescribed in this module;
        (d) Assess the role and responsibilities of a Board member, the knowledge, experience and competence which the role requires;
        (e) Assess the Board’s and senior management’s effectiveness;
        (f) Recommend to the Board appropriate succession plans of approved persons within senior management;
        (g) Recommend to the Board, and oversee the implementation of, appropriate personnel or human resource policies; and
        (h) Recommend to the Board the prescribed title, authority, duties, accountability and internal reporting responsibilities for each approved person within senior management.
        Added: April 2023

    • HC-3.8 HC-3.8 Corporate Governance Committee

      • HC-3.8.1

        The Bahraini Islamic bank licensee must assign to one of its senior management the role of a corporate governance officer who is responsible for the tasks of verifying the bank's compliance with corporate governance rules and regulations.

        Added: April 2023

      • HC-3.8.2

        The Board should establish a corporate governance committee for developing and recommending changes from time to time in the Islamic bank licensee’s corporate governance policy framework. Such committee should have at least three directors of which the majority should be independent.

        Added: April 2023

      • HC-3.8.3

        The corporate governance committee should:

        (a) Oversee and monitor the implementation of the governance policy framework by working with the management and the Audit Committee; and
        (b) Provide the Board of directors with reports and recommendations based on its findings in the exercise of its functions.
        Added: April 2023

      • HC-3.8.4

        The responsibilities of the corporate governance officer may be assumed by the head of compliance and should include, at minimum:

        (a) Coordinating and following up on the licensee’s compliance with corporate governance requirements;
        (b) Ensuring that the corporate governance policies, their implementation and related internal controls are consistent with the regulatory and legal requirements;
        (c) Working closely with the Board and/or the relevant Board committee to improve the governance framework of the licensee; and
        (d) Reviewing the annual corporate governance disclosure to ensure that its contents are in conformity with the licensee’s internal policies and the CBB rulebook requirements.
        Added: April 2023