It takes less time to do things right than to explain why you did it wrong

It takes less time to do things right than to explain why you did it wrong.

Compliance with internal and external requirements is an elementary component of planning and implementing change projects in a way that is fair to one's interests and risks. Of course, this also applies to digitalisation and IT transformation projects such as the introduction of apps and changes to the IT architecture.

The inclusion of the compliance perspective in the design of the company's services, but also in the contracts with involved service providers (for example, in the design of software and licence agreements) protects the company from penalties and reputational damage and creates the basis for effective control of important requirements. Consideration of regulations, including data protection, but also of market-specific requirements such as those of MaRisk and the EBA guidelines, thus establishes a secure design of projects and contracts.

This ensures that unnecessary costs are avoided, and risks mitigated, and that a service and product design and contract structure is created that is in line with their interests and practical approach.

Insights

All insights

Blogpost

ZAIT – Comparison to BAIT

At the same time as the Banking Authority IT Requirements (BAIT), the German Federal Financial Supervisory Authority has also updated the Payment Services Authority IT Requirements for Payment and E-Money Institutions (ZAIT).

3rd March 2022

Blogpost

Banking Supervisory Requirements for IT (BAIT) Have Entered into Force Following Publication by BaFin (German Federal Financial Supervisory Authority)

Just like the Minimum Requirements for Risk Management (MaRisk) applicable to banks , the latest version of which BaFin published in late October, BAIT also interprets the legal requirements of Sect. 25 (1) Clause 3 (4) and (5) of the German Credit Act (Kreditwesengesetz).

15th November 2017

Blogpost

VAIT - Update 2022

This blogpost analyses the BaFin circular "Insurance Supervisory Requirements for IT (VAIT)" and puts it in the context of BAIT and ZAIT.

1st April 2022

Contact our experts

Expert EN - Liubov Khomutovskaya

Legal Director

Liubov

Khomutovskaya

Liubov Khomutovskaya is a Legal Director at CORE. Her expertise focuses on drafting and negotiating IT contracts with German, European, and US partners. She has extensive experience in negotiating IT outsourcing contracts in various industries, including the banking sector and the media industry.

Read less

Expert EN - Katrin Miller

Legal Expert Manager

Katrin

Miller

Katrin Miller is a Legal Expert Manager at CORE. Katrin brings extensive experience from data protection projects in companies. In particular, she has deep application knowledge in the areas of int...

Read less

Expert EN - Moritz Treutwein

Senior Transformation Manager

Moritz

Treutwein

Moritz Treutwein is Senior Transformation Manager at CORE. His focus lies within Banking & Capital Markets, and his expertise includes the management and implementation of business unit expansions in the context of IT implementation projects, core banking transformations, audit remediation, and the development of digital business models. Furthermore, he is the appointed information security officer at CORE.

Read less