This prudential practice guide applies to external custody arrangements (where an insurer engages an external party to act as its custodian), including arrangements with a related entity (or entities) in the same corporate group. This prudential practice guide does not apply to arrangements that either insurers or their custodians have with securities depositories, whether in Australia or overseas.   |  File type: PDF  |  File size: 87.99 KB

This Prudential Standard requires a general insurer and a Level 2 insurance group to maintain, as part of its overall risk management framework, a specific reinsurance management framework to manage the risks arising from its reinsurance arrangements.

Prudential Standard GPS 220 Risk Management (GPS 220) sets out APRA’s requirements of general insurers (insurers) in relation to risk management. This prudential practice guide aims to assist insurers in complying with those requirements in relation to operational risk and, more generally, to outline prudent practices in relation to operational risk management.   |  File type: PDF  |  File size: 63.84 KB

This Prudential Standard requires a Level 3 Head to ensure that an aggregate risk exposure external to the Level 3 group does not expose prudentially regulated institutions within the group to excessive risk. The ultimate responsibility for the aggregate risk exposure policy of a Level 3 group rests with the Board of its Level 3 Head.

Prudential Standard 3PS 221 Aggregate Risk Exposures (3PS 221) sets out APRA’s requirements in relation to the aggregation of risks across a Level 3 group. This PPG aims to assist Level 3 Heads to comply with those requirements and, more generally, to outline prudent practices in relation to certain aggregation matters.  |  File type: PDF  |  File size: 503.56 KB

Prudential Standard GPS 220 Risk Management (GPS 220) sets out APRA’s requirements of insurers in relation to risk management. This prudential practice guide aims to assist insurers in complying with those requirements in relation to credit risk and, more generally, to outline prudent practices in relation to credit risk management.   |  File type: PDF  |  File size: 63.35 KB

This PPG aims to assist regulated entities in managing data risk. It is designed to provide guidance to senior management, risk management and technical specialists (both management and operational). The PPG targets areas where APRA continues to identify weaknesses as part of its ongoing supervisory activities. The PPG does not seek to provide an allencompassing framework, or to replace or endorse existing industry standards and guidelines.  |  File type: PDF  |  File size: 328.44 KB

This Prudential Standard aims to ensure that an APRA-regulated entity takes measures to be resilient against information security incidents (including cyber-attacks) by maintaining an information security capability commensurate with information security vulnerabilities and threats.

This PPG aims to assist regulated entities in maintaining information security. It is designed to provide guidance to Boards, senior management, risk management and information security specialists (management and operational).  |  File type: PDF  |  File size: 837.05 KB

This PPG aims to assist regulated institutions in considering and prudently managing the risks posed by a potential influenza pandemic, or any other widespread outbreak of contagious disease that could affect their operations. The information in this guide supports compliance with Prudential Standards CPS 232 Business Continuity Management (CPS 232) and SPS 232 Business Continuity Management (SPS 232), which set out the Australian Prudential Regulation Authority’s (APRA) requirements in relation to business continuity management for authorised deposit-taking institutions (ADIs), general insurers, life companies and registrable superannuation entity (RSE) licensees (RSE licensees). This guide also supports compliance with risk management and other relevant prudential requirements.  |  File type: PDF  |  File size: 268.63 KB

This Prudential Standard requires each APRA-regulated institution and Head of a group to implement a whole-of-business approach to business continuity management that is appropriate to the nature and scale of the operations. Business continuity management increases resilience to business disruption arising from internal and external events and may reduce the impact on the institution’s or group’s business operations, reputation, profitability, depositors, policyholders and other stakeholders.

This Prudential Standard requires that all outsourcing arrangements involving material business activities entered into by an APRA-regulated institution and a Head of a group be subject to appropriate due diligence, approval and ongoing monitoring. All risks arising from outsourcing material business activities must be appropriately managed to ensure that the APRA-regulated institution, or the group it heads, is able to meet its financial and service obligations to its depositors and/or policyholders.

Prudential Standard APS 231 Outsourcing, Prudential Standard GPS 231 Outsourcing and Prudential Standard LPS 231 Outsourcing (Prudential Standards) set out the Australian Prudential Regulation Authority’s (APRA's) requirements in relation to outsourcing. This prudential practice guide aims to assist regulated institutions in complying with those requirements and, more generally, to outline prudent practices in relation to managing outsourcing arrangements. For the purposes of this guide, ‘regulated institution’ refers to an authorised deposit-taking institution (ADI) or a general insurer or a life company (including a friendly society) regulated by APRA.   |  File type: PDF  |  File size: 85.64 KB

This Prudential Standard requires a Level 3 Head to ensure that associations and dealings within the Level 3 group do not expose prudentially regulated institutions within the group to excessive risk.

Prudential Standard 3PS 222 Intra-group Transactions and Exposures (3PS 222) sets out APRA’s requirements in relation to the associations and dealings between institutions in a Level 3 group. This PPG aims to assist Level 3 Heads to comply with those requirements and, more generally, to outline prudent practices in relation to certain intra-group matters.  |  File type: PDF  |  File size: 505.33 KB