Article 26 Record-keeping policy

  1. (1)

    An application for registration as a securitisation repository shall contain the following information:

    1. (a)

      the record-keeping systems, policies and procedures that are used in order to ensure that the information made available by a reporting entity under Regulation (EU) 2017/2402 by means of the applicant is recorded and maintained by the applicant in accordance with Article 80(3) of Regulation (EU) No 648/2012, as applied by Article 10(2) of Regulation (EU) 2017/2402;

    2. (b)

      a detailed description of the record-keeping systems, policies and procedures that are used in order to ensure that information made available by a reporting entity under Regulation (EU) 2017/2402 by means of the applicant is modified appropriately and in accordance with relevant legislative or regulatory requirements;

    3. (c)

      information about the receipt and administration of information made available by a reporting entity under Regulation (EU) 2017/2402 by means of the applicant, including a description of any policies and procedures put in place by the applicant to ensure the following:

      1. (i)

        the timely and accurate recording of the information received;

      2. (ii)

        the record-keeping of all information received that relates to the receipt, modification or termination of a securitisation transaction in a reporting log;

      3. (iii)

        that the information is maintained both online and offline;

      4. (iv)

        that the information is adequately copied for business continuity purposes.

  2. (2)

    The application for registration shall also include the applicant’s policies and procedures to promptly record, and maintain for at least 10 years following the termination of the securitisation, the verifications, validations and information produced by the applicant under Delegated Regulation (EU) 2020/1229.