RTS on group-wide minimum requirements and additional measures for third-country subsidiaries and branches

COMMISSION DELEGATED REGULATION (EU) .../...

of XXX

supplementing Regulation (EU) 2024/1624 of the European Parliament and of the Council with regard to regulatory technical standards on group-wide requirements, on additional measures and additional supervisory actions related to obliged entities’ branches or subsidiaries in third countries

(Text with EEA relevance)
This is a draft act

This text has been parsed from the AMLA consultation paper draft as published on 16 April 2026. While we run a suite of validations, the automated parsing can result in errors. Also, before it is finally adopted by the Commission, its wording, numbering and references may change, and entire articles might be removed or added.

THE EUROPEAN COMMISSION,

Having regard to the Treaty on the Functioning of the European Union,

Having regard to Regulation (EU) 2024/1624 of the European Parliament and of the Council of 31 May 2024 on the prevention of the use of the financial system for the purposes of money laundering or terrorist financing, and in particular Articles 16(4) and 17(3) thereof,

Whereas:

Open full page
Recital 1

Regulation (EU) 2024/1624 aims for harmonisation of the measures to be put in place to prevent money laundering, its predicate offences, terrorist financing and the non- implementation and evasion of targeted financial sanctions at Union level, including when such measures are designed and implemented in a group or in a structure mentioned in Regulation (EU) 2024/1624. Consistent implementation of group-wide anti-money laundering, countering the financing of terrorism and of group-wide requirements to target the non-implementation or evasion of targeted financial sanctions is key to the robust and effective management of risks, especially in a cross-border context.

Recital 2

Minimum requirements for group-wide policies, procedures and controls should be developed, implemented and applied at group level in an adequate and consistent manner, while avoiding any risks of compromising anti-money laundering, countering the financing of terrorism requirements as well as preventing the non-implementation or evasion of targeted financial sanctions. Minimum requirements are also applicable to structures other than groups when such structures fulfil the conditions set out in this Regulation. Group-wide policies, procedures and controls should be designed to ensure consistency in the implementation of the group-wide requirements mentioned in Regulation (EU) 2024/1624 such as to enhance governance arrangements, the standing and role of the compliance manager and compliance officer at group level, the relations between the parent undertaking and the subsidiaries in the Union and in third countries as well as the business-wide risk assessments at group level.

Recital 3

Group-wide policies, procedures and controls should not result in a derogation for the parent undertaking in the Union from carrying out the entity level policies, procedures and controls, including its entity-level risk assessment.

HAS ADOPTED THIS REGULATION:

  1. Section 1General provisions
  2. Section 2Minimum group-wide requirements
  3. Section 3Information sharing
  4. Section 4Additional measures for branches or subsidiaries in third countries of obliged entities and parent undertakings in the union
  5. Section 5Criteria for identifying the parent undertaking in the union in cases of two or more obliged entities whose head office is located outside of the union
  6. Section 6Conditions for the application of group-wide requirements to structures sharing common ownership, management or compliance control
  7. Section 7Final provisions

This Regulation shall be binding in its entirety and directly applicable in all Member States.

Done at Brussels,

For the Commission

The President

[For the Commission

On behalf of the President

[Position]

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod