Back Custom print Link Text Only Rich Text Print

  • Evolution of Module

    • GR-A.2.1

      This Module was first issued in April 2016 by the CBB. Any material changes that have subsequently been made to this Module are annotated with the calendar quarter date in which the change was made: Chapter UG-3 provides further details on Rulebook maintenance and version control.

      April 2016

    • GR-A.2.2

      A list of recent changes made to this Module is detailed in the table below:

      Module Ref. Change Date Description of Changes
      GR-9.1.8 10/2016 Added a Rule in the Cessation of Business Section to be consistent with other Volumes of the CBB Rulebook.
      GR-4.3.8 01/2017 Amended Paragraph reference.
      GR-7.1.6 01/2017 Consistency of notification timeline rule on controllers with other Volumes of the CBB Rulebook.
      GR-2.2.1 07/2017 Amended paragraph according to the Legislative Decree No. (28) of 2002.
      GR-2.2.2 07/2017 Deleted paragraph.
      GR-5A.1 10/2017 Added a chapter on "General Requirements for Financing-Based Crowdfunding Platform Operators".
      GR-5A.2 10/2017 Additional requirements for “Shari'a — Compliant Financing — Based Crowdfunding Platform Operators".
      GR-6.1.3 10/2017 Added additional requirement to submit when requesting no-objection letter for proposed dividends.
      GR-5A.1.4 10/2018 Amended Paragraph to further clarify the scope of exemption.
      GR-10 11/2018 Amended Paragraph to further clarify the scope of exemption.
      GR-11 11/2018 Added new Section on Outsourcing
      GR-5A.1.4 01/2019 Amended Paragraph on maximum credit provided to each borrower under a crowdfunding agreement.
      GR-5A.1.5 01/2019 Amended Paragraph.
      GR-5A.1.8 01/2019 Amended Paragraph.
      GR-5A.1.11A 01/2019 Added a new Paragraph on the minimum time to withdraw a commitment.
      GR-5B.1 04/2019 Added a Chapter on "Physical Security measures for Payment Service Providers owning or Operating Cash Dispensing Machines (CDMs) or Kiosks".
      GR-5B.2 04/2019 Additional requirements for "CDM/Kiosk Security Measures: Hardware/Software".
      GR-7.1.1A 04/2019 Added a new Paragraph on exposure to controllers.
      GR-7.1.1B 04/2019 Added a new Paragraph on exposure to controllers.
      GR-5B.1.13 07/2019 Added a new Paragraph on Europay, MasterCard and Visa (EMV) Compliance.
      GR-5B.1.14 & GR-5B.1.15 10/2019 Added new Paragraphs on Contactless Payment Transactions.
      GR-2.2.1 01/2020 Amended Paragraph.
      GR-9.1.8 04/2020 Amended Paragraph.
      GR-10.3.14 04/2020 Amended Paragraph adding reference to CBB consumer protection.
      GR-10.5.6 04/2020 Amended Paragraph adding reference to CBB consumer protection.
      GR-10.7.1 -  GR-10.7.3 04/2020 Amended Paragraphs adding reference to CBB consumer protection.
      GR-5B.1.13A 07/2020 Added a new Paragraph on contactless payment.
      GR-C 10/2020 Added a new Chapter on Provision of Financial Services on a Non-discriminatory Basis.
      GR-12 01/2021 Added a new Chapter on Information Security.
      GR-13 04/2021 Added a new Chapter on Fees and Charges.
      GR-12.2 07/2021 Added a new Section on Cyber Security.
      GR-12.2 01/2022 Enhanced Section on Cyber Security Risk Management.
      GR-5A 04/2022 Deleted Chapter and replaced with Module CFP requirements.
      GR-12.2.59 04/2022 Amended Paragraph on cyber security incident reporting.
      GR-12.2.60 04/2022 Amended Paragraph on submission period of the cyber security incident report.
      GR-11 07/2022 Replaced Chapter with new Outsourcing Requirements.
      GR-12.2.26 10/2022 Amended Paragraph on email domains requirements.
      GR-12.2.26A 10/2022 Added a new Paragraph on additional domains requirements.
      GR-14 10/2022 Added a new Chapter on marketing of financial services including requirements for arrangements relating to regulated services provided.
      GR-15 04/2023 Added a new Chapter on Client Money.
      GR-12.1.3 – GR-12.1.5 07/2023 Added new Rules on Secured customer Authentication requirements.