Skip to main content



Search form

ESMA supervision to focus on data, Brexit and cybersecurity in 2019

19 February 2019

The European Securities and Markets Authority (ESMA) has published today its 2019 Supervision Work Programme, which details the main areas of focus for the upcoming year for ESMA’s supervision of Trade Repositories (TRs), Credit Rating Agencies (CRAs), and the monitoring of third-country market infrastructures such as third-country central clearing counterparties (TC-CCPs) and third-country Central Securities Depositories (TC-CSDs).

ESMA currently directly supervises eight TRs and 27 CRAs. It also carries responsibility for four certified CRAs and 32 TC-CCPs.

Main priorities for 2019

For CRAs and TRs in the EU, ESMA uses a risk-based approach to establish its annual Supervision Work Programme, considering the main developments per industry and per registered entity.  For 2019, the supervisory priorities will include:

  • TR data quality and access by public authorities;
  • TR business continuity planning, IT process and system reliability, and information security function;
  • CRA portfolio risk and quality of the rating process;
  • CRA Cybersecurity;
  • Recognition of UK CCPs in a no-deal Brexit scenario; and
  • Assessing the pending applications for recognition as TC-CCPs (19) and TC-CSDs, including risk monitoring.

In addition, there are areas where common issues exist across TRs and CRAs on which ESMA will perform further work including Brexit, fees charged by CRAs and TRs, the effectiveness of internal control systems, and the use of new technologies.