Title
BSP IT Profile Report Submission Guidelines
Law
Bsp Memorandum No. M-2012-011 (corrected Copy)
Decision Date
Feb 17, 2012
All banks must submit an IT Profile report detailing their technology systems and risk profiles as of December 31, 2011, to the Bangko Sentral ng Pilipinas by March 31, 2012, with annual updates required thereafter.
administrative law
technology risk
banking regulations

Questions (BSP MEMORANDUM NO. M-2012-011)

The memorandum states it is in furtherance to Sec. X176 of the Manual of Regulations for Banks (MORB) on Technology Risk Management.

All banks in the Philippines are required to accomplish and submit an IT Profile report.

The initial IT Profile report is as of 31 December 2011.

It shall be submitted on or before 31 March 2012.

Subsequent reports are submitted on an annual basis within twenty-five (25) calendar days from the end of the reference year.

The template can be accessed at http://bsp.gov.ph/frp/templates.

Universal/Commercial Banks (U/KBs): sdckb-itprofile@bsp.gov.ph; Thrift Banks (TBs): sdctb-itprofile@bsp.gov.ph; Rural/Cooperative Banks (R/CBs): sdcrb-itprofile@bsp.gov.ph.

The subject must be: 'ITPROFILE,< bankname >,< reference period >' (example given: 'ITPROFILE < bankname >, 31 December 2011').

The certification must be duly notarized and signed by the authorized official of the reporting institution.

It must be sent via facsimile to the Director of the BSP Supervisory Data Center (SDC) at (632) 708-7554 or 708-7558.

The institution may submit the report in CD together with the aforementioned certification through messengerial or postal services within the prescribed deadline.

The Director, Supervisory Data Center, Bangko Sentral ng Pilipinas, 16th Floor, Multi-Storey Building, BSP Complex, A. Mabini Street, Malate, Manila 1004.

The memorandum ends with 'For compliance,' indicating that submission requirements are mandatory for covered banks.

To build baseline information of IT systems of Philippine banks and to risk profile the complexity of IT operations based on technology-related products/services, delivery channels, and processes involved.

The memorandum provides an example showing 'To' as the designated BSP email address, optional 'Cc', and 'Subject' as 'ITPROFILE < bankname >, < reference period >'.

It was adopted on 17 February 2012 and filed on 21 March 2012; these dates can matter for understanding when the directive became effective and ensuring deadlines are computed from the reference timeline set by the memorandum.


Analyze Cases Smarter, Faster
Jur helps you analyze cases smarter to comprehend faster, building context before diving into full texts. AI-powered analysis, always verify critical details.

About Privacy Terms