Industries
From CRR III/CRD VI through DORA and NIS2 to the AML package: the supervisory load of an EU bank, monitored continuously and routed to the right desk — days before the circular lands.
As of:
A bank is watched by more authorities than almost any other market participant: the EBA and the ECB at EU level, the national supervisor (in Germany BaFin and the Bundesbank), and — for every cross-border line — the host-state regulator. Prudential rules, IT resilience, anti-money-laundering and sustainability run in parallel, each on its own cadence, its own consultations, its own transition windows.
Horizon Scanner monitors those sources continuously, classifies every publication by relevance and routes what matters to the function that owns it — with an audit trail. Below is the regulatory load on a European bank's desk today.
The frameworks on your desk today — each links to the full briefing.
Time horizon
The EU's implementation of Basel III: CRR III (Regulation (EU) 2024/1623) has applied since 1 Jan 2025, output floor included. CRD VI (Directive (EU) 2024/1619) must be transposed by 10 Jan 2026; most provisions apply from 11 Jan 2026.
The anti-money-laundering authority AMLA is seated in Frankfurt. The single rulebook (AMLR) applies from 10 July 2027; direct supervision of the highest-risk cross-border institutions begins in 2028.
DORA has applied since 17 Jan 2025. Supervisors are now testing the register of information, incident reporting and — for significant institutions — threat-led penetration testing (TLPT).
What Horizon Scanner does
Instead of manually checking three supervisory websites, everything runs through one pipeline — EU level and host states in parallel.
Prudential to Treasury/Risk, ICT to the CISO, AML to the MLRO — automatically by topic, with default mapping from day one.
Every publication seen, every classification and every routing is logged — the evidence internal audit and supervisors want to see.
Especially then. LSIs carry the same regulatory density as significant institutions but with smaller teams. Continuous monitoring plus default routing removes exactly the manual load an LSI has no dedicated staff function for.
For the ICT security of financial entities DORA is lex specialis and displaces NIS2 to that extent. We monitor both regimes and tag which publication belongs in which bucket — the boundary is set out in our NIS2 briefing.
Yes. Coverage follows the sources, not our briefing pages: EBA guidelines, technical standards and national transposition acts on CRR III/CRD VI are monitored and routed like everything else.
ECB Banking Supervision is one of our EU-level sources. Guides, supervisory priorities and SREP-related communications are captured and routed to the function that owns them.
Twenty minutes. Concrete sources and routing from your firm.
Book a demo