Article 19 Determination of whether the entity has the responsibility of implementing group-wide requirements


This is a draft act

This text has been parsed from the AMLA consultation paper draft as published on 16 April 2026. While we run a suite of validations, the automated parsing can result in errors. Also, before it is finally adopted by the Commission, its wording, numbering and references may change, and entire articles might be removed or added.

Summary What does Article 19 of the RTS on group-wide minimum requirements and additional measures for third-country subsidiaries and branches say?

This is a brief but important linking article that assigns formal responsibility to the entity identified as the parent undertaking in the Union.

It directly builds on Articles 17 and 18, which establish the criteria for determining which entity holds sufficient prominence and sufficient understanding of operations within a group whose head office is outside the Union.

Article 19 completes that chain by confirming that once an entity is identified through those criteria, it carries the responsibility and oversight for implementing group-wide requirements.

Important points:

  • The obliged entity identified as the parent undertaking in the Union is responsible for implementing and overseeing group-wide requirements.
  • This responsibility flows directly from the determinations made under Articles 17 and 18 of this Regulation.
  • The scope of this responsibility covers group-wide requirements as set out in Article 16(1) of Regulation (EU) 2024/1624, as well as Sections 2 and 3 of this Regulation.

Springlex's summary of the article, a reading aid, not a substitute for the legal text.

  1. Pursuant to Article 2(1) number (42)(b)(iv) of Regulation (EU) 2024/1624 the obliged entity identified as being the parent undertaking in the Union due to its sufficient prominence and understanding of operations under Articles 17 and 18 of this Regulation shall have the responsibility and oversight of implementing group-wide requirements as referred to in Article 16(1) of Regulation (EU) 2024/1624, Section 2 and Section 3 of this Regulation.

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod