CCP Question 10: Outsourcing [last update 4 June 2013]
Article 14 of EMIR Article 11(1) of RTS on CCP requirements
Article 14 of EMIR - Outsourcing:
According to Article 11(1) of Commission Delegated Regulation (EU) No 153/2013 'a CCP shall establish and maintain an internal audit function which is separate and independent from the other functions and activities …’. Is it allowed by the CCP to outsource an internal audit function according to Article 35 of EMIR?
CCP Answer 10
A CCP might outsource its internal audit function where the requirements of Article 35 of EMIR are met. Internal Audit should be considered a "major activity linked to risk management" in the language of EMIR Article 35(1), so outsourcing this would require the specific approval of the competent authority. In addition, EMIR establishes a number of specific requirements for the internal audit function which would need to be met under any outsourcing arrangement. In particular, Article 7(6) of Regulation (EU) No. 153/2013, requires that a CCP have clear and direct reporting lines between the internal audit function and the board and senior management of the CCP. Article 11(3) of Regulation (EU) No. 153/2013 also requires a CCP's internal audit function have the necessary access to information in order to review all of the CCP’s activities and operations, processes and systems, including outsourced activities. Both of these requirements would need to be carefully considered and respected where a CCP sought to outsource its internal audit function.