The CBM Directive no. 1 has been amended on the 29 January 2019. The significant changes, featuring in the Annexes to the same Directive relate inter alia to security incident reporting, fraud data reporting (including for e-money institutions), and complaint procedures.

All the annexes are based on the guidelines published under Directive (EU) 2015/2366 (PSD II) by the European Banking Authority on the 13 October 2017.

CBM Directive no. 1

Guidelines on Major Incident Reporting under the PSD2

Guidelines on Procedures for Complaints of Alleged Infringements of Directive (EU) 2015/2366

Guidelines on Security Measures for Operational and Security Risks under PSD2

Guidelines on Fraud Reporting under PSD2