CRA3: ESMA Proposes Wide-Ranging Disclosure Requirements on EU Originators, Sponsors and Issuers

by Dechert LLP

The European Securities and Markets Authority (ESMA) published a consultation paper in February 2014, setting out (amongst other things1) the draft Regulatory Technical Standards (RTS) on disclosure requirements for structured finance instruments (SFIs), as required under Article 8b of the Credit Rating Agencies Regulation2 (the Regulation) as amended by the Credit Rating Agencies 3 Regulation3 (CRA3). The RTS will complement the existing regulatory framework for Credit Rating Agencies (CRAs) within the European Union (EU), as implemented under or pursuant to the Regulation.
The CRA3 disclosure requirements will apply to the originator, sponsor and issuer of an SFI if any one of them is established in the EU and is in addition to (where applicable) existing disclosure requirements under the Prospectus Directive4, Article 409 of the Capital Requirements Regulation(CRR), the reporting requirements for eligible collateral under the European Central Bank (ECB) and Bank of England funding schemes, and disclosure obligations under Rule 17g-56.


Article 8b of the Regulation (which came into force in June 2013) imposed the broad requirement on issuers, originators and sponsors of SFIs established in the EU to jointly publish information on the quality and performance of the assets underlying SFIs, the structure of the securitisation transaction, the supporting cash flows and collateral, and information necessary to conduct comprehensive stress tests on cash flows and collateral values. ESMA was required to set up a website for publication of such information, and to develop draft RTS (for submission to the European Commission by 21 June 2014) to specify the scope, frequency and presentation of information to be published.

ESMA released a discussion paper on CRA3 implementation in July 2013 seeking comment from market participants on specific questions relating to scope of application, type of information to be published, and frequency of disclosure. The current consultation paper includes a feedback statement summarising responses to the discussion paper.

The most significant features of the draft RTS are discussed below.

Scope of application

Despite being implemented under the regulatory framework for CRAs, the disclosure requirements for SFIs are imposed directly on originators, sponsors and issuers of SFIs, in order to address CRA3 objectives including reduction of investor dependence on credit ratings, increasing transparency and reinforcement of competition between CRAs by facilitating an increase in unsolicited credit ratings. However, as currently proposed, the disclosure requirements will apply not only to rated SFIs, but to all SFIs for which the issuer, originator or sponsor is established in the EU, irrespective of whether rated or unrated, offered to the public or subject to private placement, or admission to or location of trading and would include bilateral transactions. Application is not limited to SFIs that qualify as securities, but extends to other financial instruments such as money-market instruments (e.g. ABCP programmes).

For the purposes of the Regulation, SFIs are defined by reference to the Capital Requirements Directive7 (CRD) definition of ‘securitisation’, which covers a transaction or scheme involving tranching of the credit risk associated with securitised exposures. As with the CRR risk retention and disclosure requirements (which replaced the CRD risk retention and disclosure regime as of 1 January 2014) the CRA3 disclosure requirements will not therefore apply to ‘single-tranche’ issuances. ESMA has also clarified that bonds linked to current quotes of an index or benchmark will not be classified as SFIs.

Scope and frequency of information disclosure

The draft RTS require detailed quarterly loan-level disclosure across all asset classes8. Adopting what it describes as a pragmatic approach, ESMA has taken the ECB reporting templates as a starting point, replicating most of their content (including all mandatory fields, but none of the optional fields or guidance notes) verbatim into standardised quarterly reporting templates across the following seven asset classes: RMBS, CMBS, SME ABS, Auto-Loan ABS, Consumer Loan ABS, Credit Card ABS and Leasing ABS. Although described as ‘loan-level’ templates, each also contains bond-level reporting fields in terms of the corresponding ECB reporting template. At present, templates have been produced only for the seven asset classes that are eligible to be pledged as collateral at the ECB, which do not currently include ABCP or CLOs. It is envisaged in the draft disclosure requirements that additional templates will be developed and phased in for classes of assets that cannot be attached to one of these seven asset classes. It would appear therefore that when the RTS come into force, there will not be templates in place for ABCP or CLOs and it is not clear at what date in the future templates will be developed.

In addition, the draft RTS set out general parameters for monthly investor reporting (including asset performance, cash flow allocation, status of triggers, counterparty ratings, liquidity/credit support utilisation, account balances and hedging details), as well as inputs and outputs for cash flow models to be published at closing and updated if changes to the structure (e.g. trigger breaches) impact cash flows.

A transaction summary (including transaction-, ownership- and cash flow-structure diagrams) is also to be published at closing summarising structural issues, asset characteristics, cash flows, credit enhancement, liquidity support, voting rights and transaction triggers.

Significantly, copies of all relevant transaction documents (including offering documents, asset sale agreements, servicing and cash management agreements, trust and security documents, intercreditor agreements, swaps, liquidity facilities and subordinated loans, but excluding legal opinions) are to be disclosed at closing, along with “any other relevant underlying documentation”. It is not clear to what extent the document disclosure requirement extends to loan-level documentation.

Data protection

The obligation to disclose information does not extend to where publication would breach national or EU data protection laws. In this regard, ESMA notes that the replication of the ECB loan-level reporting templates builds on the work already done in this area.

Who must comply?

As long as any one of the issuer, originator9 or sponsor10 of an SFI is established in the EU, each such party must jointly comply with the disclosure requirements, and shall jointly agree upon and designate the entity responsible for provision of information to the ESMA website. The issuer, originator and sponsor are permitted to outsource disclosure duties to the servicer or management company of an SFI but neither the designation of the relevant entity, nor the outsourcing to a third party, will release the other entities from responsibility for compliance.

From when?

The disclosure requirements will apply to all SFIs issued after the date of entry into force of the RTS which will follow endorsement by the European Commission.


ESMA has asked market participants to consider and respond to four questions:

  1. Do you agree that issuers, originators and sponsors of an SFI established in the EU shall jointly agree upon and designate the entity responsible for providing the information to ESMA?
  2. Do you consider that national data protection laws could impact the publication of information?
  3. Do you consider the information requested under the draft RTS as appropriate?
  4. Do you consider the frequency of reporting under the draft RTS as adequate?
Next steps

The consultation closes on 11 April 2014. On the basis of responses, ESMA will update the draft RTS and submit it to the European Commission for endorsement by 21 June 2014.


The industry is concerned that the level of disclosure will limit the re-emergence of the securitisation market and hinder the growth of the real economy by imposing significant costs and administrative burdens on the market.

The AFME and other industry groups are preparing a comment letter in response.


The consultation paper also sets out draft Regulatory Technical Standards covering (i) the European Rating Platform for reporting by CRAs and (ii) periodic reporting on fees charged by CRAs (each as required under Article 21.4(a) of the Regulation as amended by CRA3).

Regulation (EC) 1060/2009 of the European Parliament and of the Council of 16 September 2009 on credit rating agencies.

Regulation (EU) 462/2013 of the European Parliament and of the Council of 21 May 2013, amending Regulation (EC) 1060/2009 on credit rating agencies.

4 Directive 2003/71/EC of the European Parliament and of the Council of 4 November 2003 on the prospectus to be published when securities are offered to the public or admitted to trading and amending Directive 2001/34/EC.

Regulation (EU) 575/2013 of the European Parliament and of the Council of 26 June 2013 on prudential requirements for credit institutions and investment firms and amending Regulation (EU) 648/2012.

US Securities Exchange Act of 1934.

Directive 2006/48/EC of the European Parliament and of the Council of 14 June 2006 relating to the taking up and pursuit of the business of credit institutions.

This is despite most respondents to the July 2013 discussion paper arguing that loan-level disclosure is not appropriate for highly granular SFIs (e.g. credit card ABS).

For the purposes of CRA3, ‘originator’ is defined by reference to the definition at Article 4 of the CRD, which covers entities directly or indirectly involved in the agreements creating the underlying exposures securitised, as well as any entity which purchases a third party’s exposures and securitises them. Neither the consultation paper nor the draft RTS addresses compliance requirements where there is more than one entity that could fall within the definition of ‘originator’.

10 For the purposes of CRA3, ‘sponsor’ is defined by reference to the definition at Article 4 of the CRD, which covers credit institutions (i.e. deposit-taking banks) that establish and manage ABCP programmes or other securitisation schemes. This suggests only sponsors that are credit institutions will be caught by the draft RTS. This is in contrast to the definition of ‘sponsor’ in the CRR, which extends to cover investment firms as well as credit institutions.


DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Dechert LLP | Attorney Advertising

Written by:

Dechert LLP

Dechert LLP on:

Readers' Choice 2017
Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
Privacy Policy (Updated: October 8, 2015):

JD Supra provides users with access to its legal industry publishing services (the "Service") through its website (the "Website") as well as through other sources. Our policies with regard to data collection and use of personal information of users of the Service, regardless of the manner in which users access the Service, and visitors to the Website are set forth in this statement ("Policy"). By using the Service, you signify your acceptance of this Policy.

Information Collection and Use by JD Supra

JD Supra collects users' names, companies, titles, e-mail address and industry. JD Supra also tracks the pages that users visit, logs IP addresses and aggregates non-personally identifiable user data and browser type. This data is gathered using cookies and other technologies.

The information and data collected is used to authenticate users and to send notifications relating to the Service, including email alerts to which users have subscribed; to manage the Service and Website, to improve the Service and to customize the user's experience. This information is also provided to the authors of the content to give them insight into their readership and help them to improve their content, so that it is most useful for our users.

JD Supra does not sell, rent or otherwise provide your details to third parties, other than to the authors of the content on JD Supra.

If you prefer not to enable cookies, you may change your browser settings to disable cookies; however, please note that rejecting cookies while visiting the Website may result in certain parts of the Website not operating correctly or as efficiently as if cookies were allowed.

Email Choice/Opt-out

Users who opt in to receive emails may choose to no longer receive e-mail updates and newsletters by selecting the "opt-out of future email" option in the email they receive from JD Supra or in their JD Supra account management screen.


JD Supra takes reasonable precautions to insure that user information is kept private. We restrict access to user information to those individuals who reasonably need access to perform their job functions, such as our third party email service, customer service personnel and technical staff. However, please note that no method of transmitting or storing data is completely secure and we cannot guarantee the security of user information. Unauthorized entry or use, hardware or software failure, and other factors may compromise the security of user information at any time.

If you have reason to believe that your interaction with us is no longer secure, you must immediately notify us of the problem by contacting us at In the unlikely event that we believe that the security of your user information in our possession or control may have been compromised, we may seek to notify you of that development and, if so, will endeavor to do so as promptly as practicable under the circumstances.

Sharing and Disclosure of Information JD Supra Collects

Except as otherwise described in this privacy statement, JD Supra will not disclose personal information to any third party unless we believe that disclosure is necessary to: (1) comply with applicable laws; (2) respond to governmental inquiries or requests; (3) comply with valid legal process; (4) protect the rights, privacy, safety or property of JD Supra, users of the Service, Website visitors or the public; (5) permit us to pursue available remedies or limit the damages that we may sustain; and (6) enforce our Terms & Conditions of Use.

In the event there is a change in the corporate structure of JD Supra such as, but not limited to, merger, consolidation, sale, liquidation or transfer of substantial assets, JD Supra may, in its sole discretion, transfer, sell or assign information collected on and through the Service to one or more affiliated or unaffiliated third parties.

Links to Other Websites

This Website and the Service may contain links to other websites. The operator of such other websites may collect information about you, including through cookies or other technologies. If you are using the Service through the Website and link to another site, you will leave the Website and this Policy will not apply to your use of and activity on those other sites. We encourage you to read the legal notices posted on those sites, including their privacy policies. We shall have no responsibility or liability for your visitation to, and the data collection and use practices of, such other sites. This Policy applies solely to the information collected in connection with your use of this Website and does not apply to any practices conducted offline or in connection with any other websites.

Changes in Our Privacy Policy

We reserve the right to change this Policy at any time. Please refer to the date at the top of this page to determine when this Policy was last revised. Any changes to our privacy policy will become effective upon posting of the revised policy on the Website. By continuing to use the Service or Website following such changes, you will be deemed to have agreed to such changes. If you do not agree with the terms of this Policy, as it may be amended from time to time, in whole or part, please do not continue using the Service or the Website.

Contacting JD Supra

If you have any questions about this privacy statement, the practices of this site, your dealings with this Web site, or if you would like to change any of the information you have provided to us, please contact us at:

- hide
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.