Skip to main content
European Insurance and Occupational Pensions Authority
  • General publications

Guidelines on information and communication technology security and governance

Details

Publication date
12 October 2020

Description

Start application: 01/07/2021

End application: 17/01/2025 (see here)

In accordance with Article 16 of Regulation (EU) No 1094/20104 EIOPA issues these Guidelines addressed to the supervisory authorities to provide guidance on how insurance and reinsurance undertakings should apply the governance requirements foreseen in Directive 2009/138/EC5 (“Solvency II Directive”) and in Commission Delegated Regulation (EU) No 2015/356 (“Delegated Regulation”) in the context of information and communication technology security and governance.

The objective of these Guidelines is to:

  • provide clarification and transparency to market participants on the minimum expected information and cyber security capabilities, i.e. security baseline;
  • avoid potential regulatory arbitrage;
  • foster supervisory convergence regarding the expectations and processes applicable in relation to ICT security and governance as a key to proper ICT and security risk management.

Files

  • 31 JANUARY 2023
Guidelines on information and communication technology security and governance.pdf
  • 31 JANUARY 2023
Resolution of comments of Guidelines on ICT governance and security
  • 31 JANUARY 2023
Austria.xls
  • 31 JANUARY 2023
Belgium.xls
  • 31 JANUARY 2023
Bulgaria
  • 31 JANUARY 2023
Croatia.xls
  • 31 JANUARY 2023
Cyprus.xls
  • 31 JANUARY 2023
Czech Republic.xls
  • 31 JANUARY 2023
Denmark.xls
  • 31 JANUARY 2023
Estonia.xls
  • 31 JANUARY 2023
Finland.xls
  • 31 JANUARY 2023
France.xls
  • 31 JANUARY 2023
Germany.xls
  • 31 JANUARY 2023
Greece.xls
  • 31 JANUARY 2023
Hungary.xls
  • 31 JANUARY 2023
Iceland.xls
  • 31 JANUARY 2023
Ireland.xls
  • 31 JANUARY 2023
Italy.xlsx
  • 31 JANUARY 2023
Lativa.xls
  • 31 JANUARY 2023
Liechtenstein.xlsx
  • 31 JANUARY 2023
Lithuania.xls
  • 31 JANUARY 2023
Luxembourg.xls
  • 31 JANUARY 2023
Malta.xls
  • 31 JANUARY 2023
Netherlands.xls
  • 31 JANUARY 2023
Norway.xlsx
  • 31 JANUARY 2023
Overview of replies.xlsx
  • 31 JANUARY 2023
Poland.xls
  • 31 JANUARY 2023
Portugal.xls
  • 31 JANUARY 2023
Romania.xls
  • 31 JANUARY 2023
Slovakia.xls
  • 31 JANUARY 2023
Slovenia.xls
  • 31 JANUARY 2023
Spain.xls
  • 31 JANUARY 2023
Sweden.xls