Regulations Across ASEAN

Covering Taxonomy, Prudential Reporting, Capital Adequacy, Striking Off, Regulatory Sandbox. This episode covers critical ASEAN regulatory developments in taxonomy, prudential reporting, capital adequacy, striking off, and cybersecurity standards, highlighting new governance frameworks and sustainability initiatives across financial sectors.

Show Notes

This episode of Carver's ASEAN Regulatory Updates delves into significant regulatory changes across taxonomy, prudential reporting, capital adequacy, striking off, and regulatory sandbox sectors. Listeners will gain insight into enhanced governance frameworks, sustainability mandates, and cybersecurity standards shaping the ASEAN financial landscape.

Key updates include the Bangko Sentral ng Pilipinas raising the cash withdrawal threshold triggering enhanced due diligence and revising its regulatory reporting governance framework to ensure data integrity and timely submissions. In Malaysia, the Labuan Financial Services Authority unveiled its 2026 regulatory plan focusing on capital adequacy and embedding climate risk management within governance structures. Additionally, the Securities Commission Malaysia launched a consultation on a new, detailed Malaysia Taxonomy for Sustainable Finance aligned with ASEAN and international standards.

Singapore's Cyber Security Agency announced mandatory tiered Cyber Trust Mark certification levels for critical and non-critical infrastructure owners and auditors, with deadlines through 2026 and 2027. The Monetary Authority of Singapore issued guidelines on environmental risk management, emphasizing forward-looking transition planning for banks, insurers, and asset managers to address climate-related risks responsibly.

For more information, visit the Carver Agents website.

Articles mentioned:
  1. Statement of the Forty-fourth Meeting of the Polio IHR Emergency Committee
  2. 1231
  3. SW 12/2024 - 06-Mar-2026 - Notice of Striking Off for ING Gourmet Pte Ltd
  4. CSA to Raise Cybersecurity Standards for Critical Information Infrastructure Owners
  5. BSP, itinaas sa P1-M ang halaga ng cash withdrawal na mangangailangan ng masusing pagsiyasat
  6. 02 Mar 2026 - Call for Feedback: Malaysia Taxonomy for Sustainable Finance
  7. Senior Minister of State, Tan Kiat How, Committee of Supply 2026 Speech, Safeguarding our Digital Space in a Digital Age
  8. Labuan FSA Regulatory Plan for 2026
  9. 05.03.2026 - Shaping a stronger future for the Asia Pacific
  10. MAS Sets Supervisory Expectations on Financial Institutions for Transition Planning Practices in addressing Environmental Risk

What is Regulations Across ASEAN?

Regulatory news, updates, and insights for countries in the ASEAN region presented by the Carver Agents team

Welcome to Carver's ASEAN Regulatory Updates for March 08, 2026.

The World Health Organization extended its Temporary Recommendations concerning poliovirus for a further three months, effective March 1, 2026. This follows the reaffirmation of the poliovirus situation as a Public Health Emergency of International Concern. The International Health Regulations amendments, which entered into force on September 19, 2025, now include broader poliovirus notification and vaccination documentation requirements. Affected states must declare polio transmission as a national public health emergency. Additionally, all residents and long-term visitors are required to be vaccinated with bOPV or IPV before international travel to mitigate the risk of international spread.

In the Philippines, the Bangko Sentral ng Pilipinas increased the cash withdrawal threshold requiring enhanced due diligence from ₱500,000 to ₱1,000,000. Enhanced due diligence must be performed at the customer level for transactions exceeding this threshold within one banking day. Financial institutions may set lower thresholds based on risk assessments.

The Bangko Sentral ng Pilipinas also revised its reporting governance framework for banks. The updated circular removes report categorization distinctions, updates submission deadlines for reports in XML format, and imposes penalties for non-compliance with reporting standards. It clarifies the roles and responsibilities of boards, senior management, compliance, and internal audit in ensuring integrity, accuracy, and timeliness in regulatory reporting. Banks must adopt a board-approved reporting governance framework covering data ownership, quality, and end-to-end reporting processes, maintaining documented standards and procedures for report generation and validation.

In Malaysia, the Labuan Financial Services Authority announced its 2026 regulatory plan. The plan includes issuing multiple guidelines, exposure drafts, circulars, and frameworks focusing on capital adequacy, sustainability, governance, and anti-money laundering and counter-financing of terrorism enhancements. These will target various Labuan financial entities, including takaful, insurance, banking, and Islamic banking sectors. Entities are expected to implement internal capital adequacy assessment processes and embed climate risk management into governance and risk management frameworks.

Also in Malaysia, the Securities Commission Malaysia launched a consultation on the Malaysia Taxonomy for Sustainable Finance. This new taxonomy replaces earlier principle-based frameworks with a detailed, science-based structure. Stakeholders are invited to submit feedback electronically by April 14, 2026, using the prescribed template. The taxonomy aligns with the ASEAN Taxonomy and international standards, incorporating environmental and social considerations beyond climate change.

In Singapore, the Cyber Security Agency of Singapore announced mandatory attainment of tiered Cyber Trust Mark certification levels. Critical Information Infrastructure Owners must obtain Level 5 certification for non-critical information infrastructure systems by the end of 2027. Critical Information Infrastructure auditors are required to achieve Level 5 certification by the end of 2026. Licensed cybersecurity service providers must obtain Level 3 certification by December 31, 2026.

Further emphasizing cybersecurity, Senior Minister of State Tan Kiat How, in his Committee of Supply 2026 speech, outlined expanded cybersecurity standards and obligations. These include extending requirements to non-critical information infrastructure systems interconnected with critical infrastructure, deploying government proprietary threat detection tools, raising minimum cybersecurity requirements for routers to Cyber Labeling Scheme Level 2, exploring similar requirements for IP cameras, and mandating Cyber Trust Mark for key entities including Critical Information Infrastructure Owners, auditors, and licensed cybersecurity service providers.

The Monetary Authority of Singapore issued three guidelines on Environmental Risk Management focusing on transition planning for banks, insurers, and asset managers. These guidelines elaborate supervisory expectations to build risk assessment and management capabilities for climate-related risks. Financial institutions are required to establish risk-proportionate transition planning processes considering their business risk profiles and local circumstances. They must assess and manage physical and transition climate-related risks in a forward-looking manner and engage customers and investee companies on climate risks to avoid indiscriminate actions that could disrupt financial stability.

That wraps up today's regulatory updates. Visit carveragents.ai for more information.