The Banking Regulation Review: Netherlands


The Netherlands has a long history as an open trading nation with household-name institutions such as ING Bank, cooperatively owned Rabobank and ABN AMRO operating worldwide. The Dutch banking sector is highly concentrated, with this same small group of systemically important banks accounting for the bulk of domestic lending to households and businesses. The lion's share of Dutch savings is held in accounts with these banks, which also handle most payment processing. Measured against the size of the Dutch economy, the banking sector is large. Although on a downward trend since pre-crisis years, in 2019, the size of its assets relative to the gross domestic product of the Netherlands still amounted to over 320 per cent.2

Dutch banks reported lower results in 2019 than in the previous year. Banks continued to profit from a strong economy, a booming housing market and from the cost-cutting and digitisation efforts of earlier years. However, banks were also faced with continued pressure from low interest rates, increased provisions for bad loans and high regulatory and compliance costs. Other risks to the business models and operations of Dutch banks include political uncertainty, technological disruption and cybercrime.

The regulatory regime applicable to banks

i Basic structure of banking regulation

The Netherlands has a twin peaks supervision model, which focuses on system and prudential supervision on the one hand, and conduct of business supervision on the other. The European Central Bank (ECB) and the Dutch Central Bank (DCB) are the system and prudential supervisors. The responsibility for conduct of business supervision lies with the Netherlands Authority for the Financial Markets (AFM), the aim being to foster orderly and transparent market processes, maintain integrity in the relationship between market parties and overseeing due care in the provision of services to customers.

The regulatory rules applicable to banks are largely laid down in the Dutch Financial Markets Supervision Act (FMSA), which has been in force since 2007, and in the various decrees and regulations deriving from it. In view of the increasing complexity of the FMSA and difficulties in its compatibility with the sectoral approach of European legislation, preparations were started in 2016 for a thorough review of the design of the FMSA. However, in May 2019, the Minister of Finance decided that, in view of the complexity of such an exercise, the costs involved and the expected developments in the area, it was not the right time to revise the FMSA.

The regulatory rules applicable to banks derive from EU legislation to a very large extent. Many of the rules contained in the FMSA follow the implementation of European directives.3 However, with the aim of further integrating the single market, more and more regulatory requirements are adopted in the form of European regulations.4 Of particular importance for the banking sector are the Capital Requirements Directive (CRD IV), as implemented in the FMSA, and the Capital Requirements Regulation (CRR). Both CRD IV and CRR were significantly amended in 2019 by the EU's Banking Reform Package, resulting in CRD V and CRR II.5 The changes will largely take effect in December 2020 and June 2021. The Dutch act implementing CRD IV and CRR II was published for consultation in February 2020.6

ii Regulation of banks with a registered office in the Netherlands

Banks established in the Netherlands are required to obtain a banking licence from the ECB. The DCB is responsible for the processing of licence applications. To obtain a banking licence, banks must, inter alia, comply with the following requirements:

  1. the day-to-day policymakers of a bank and its management team members must be suitable for the banking business;7 in addition, the members of the supervisory board (or comparable body) should also be suitable for the performance of their supervisory tasks;
  2. the integrity of the persons determining or co-determining the day-to-day policy, the management team members and the members of the supervisory board (or comparable body) of the bank must be beyond doubt;
  3. the bank must have sound and prudent business operations, including procedures and measures for adequate risk management and client acceptance;
  4. at least two natural persons should determine the day-to-day policy of the bank and perform their activities from within the Netherlands;
  5. the supervisory board (or comparable body) should consist of at least three persons;
  6. the bank must have a transparent control structure safeguarding adequate supervision; and
  7. the bank must comply with certain financial safeguards, such as minimum own funds, solvency and liquidity requirements.

Once a licence has been granted, a bank must continue to comply with these requirements. Dispensation may be granted from certain specific requirements for obtaining a banking licence provided the applicant demonstrates that he or she cannot reasonably comply with the requirements, and that the objectives the requirements seek to protect can be achieved through alternative means. To stimulate innovation in the financial sector, the DCB, since 2017, is also open, where appropriate, to more tailor-made solutions for innovative products, services or business models through its regulatory sandbox.8

In January 2019, the formal application period for a banking licence was changed from 13 weeks to 26 weeks.9 This allows the DCB and the ECB to rely less on stop-the-clock information requests, and will give applicants a more realistic view of the required decision-making time. Other recent changes to the application process include the obligation to prepare an exit plan, which should identify how the applicant could cease its banking operations in an orderly manner when so required. In March 2018, the ECB published two guides detailing the process and requirements for acquiring a banking licence in the eurozone.10 In January 2019, these guides were supplemented with more specific expectations regarding capital requirements and the programme of operations.11

If a bank wishes to render investment services or perform investment activities in the Netherlands, it must apply for a wider banking and investment firm licence. In this case, there are additional requirements that relate to the conduct of business requirements with which investment firms need to comply. A licensed bank does not need a separate licence for the provision of payment services or certain other financial services also regulated under the FMSA, such as the offering of (consumer) credit, providing advice about financial products (other than financial instruments) and acting as an intermediary with respect to such products. The services involved, however, need to be covered by the banking licence, and the bank involved is subject to additional conduct of business rules when offering such services (see Section IV).

Since 2016, the FMSA has contained a separate regime for credit unions, defined as cooperatives of members sharing a certain profession or business that take repayable funds from their members and grant credits for their own account to their members for the purposes of their profession or business.

iii Regulation of foreign banks and activities

In general, branches of foreign banks established to carry out regulated banking activities in the Netherlands are subject to the same licence requirements and ongoing obligations as banks with a registered office in the Netherlands. This means that these branches usually require a banking licence. However, foreign banks with their registered office in another EU or European Economic Area (EEA) Member State may conduct banking activities through a branch office or on a cross-border basis in the Netherlands using a European passport. On this basis, banks from other eurozone countries may conduct banking activities in the Netherlands under their ECB banking licence, provided the ECB has been notified thereof. Similarly, banks with their registered office in an EU or EEA Member State that is not a eurozone country may conduct banking activities in the Netherlands under their home Member State banking licence following a notification procedure in their home Member State. Those non-eurozone banks holding a European passport in the Netherlands are directly supervised by the ECB. The DCB remains responsible for the supervision of non-EEA banks that have established a branch or provide cross-border services in the Netherlands.

Prudential regulation

i Relationship with the prudential regulator

As the prudential supervisor of the most significant Dutch banks,12 the ECB has far-reaching investigatory and supervisory powers under the Single Supervisory Mechanism (SSM) Regulation.13 In addition, the ECB has at its disposal the supervisory powers granted to the DCB under the FMSA. To the extent necessary to carry out the tasks conferred on it by the SSM Regulation, the ECB may require the DCB to use these powers. The ECB is also exclusively responsible for the withdrawal of a banking licence of both significant and less significant Dutch banks. The DCB will in principle exercise its enforcement powers under the FMSA regarding the banks that are identified as less significant. Under the FMSA, the DCB is entitled to enter any place for inspection and may request information from any party. The DCB is also entitled to request business data and documents for inspection and to make copies of these. Everyone is obliged to fully cooperate with the DCB.

If the DCB concludes that a bank has violated a rule under the FMSA or, if applicable, a European regulation, it may take enforcement action. The DCB can choose from various enforcement measures and sanctions, including but not limited to:

  1. imposing a certain course of action to comply with the FMSA (instruction order);
  2. appointing one or more persons as trustee over all or certain bodies or representatives of a bank;
  3. imposing a particular duty, backed by a judicial penalty for non-compliance;
  4. imposing an administrative fine;
  5. publishing an imposed duty or fine on the DCB's website and by press release;
  6. imposing a suspension of voting rights of shareholders or partners responsible for a breach of a bank's licence or declaration of no objection requirement (see Section VI);
  7. imposing a temporary ban against a natural person who is held responsible for non-compliance with the CRR provisions from exercising his or her functions; and
  8. imposing certain measures including, but not limited to, higher solvency or liquidity requirements and the termination of banking business activities with a high risk to the solidity of the banks.

The liability of the DCB (and the AFM) under the FMSA is limited to wilful misconduct and gross negligence. Since 2018, the DCB (and the AFM) has had extensive powers to publish warnings and decisions in the event of infringements of the FMSA and to periodically publish overviews of key data of individual banks.14

ii Management of banks

Most Dutch banks are limited liability companies. Although a statutory basis exists for the creation of a one-tier board structure, limited liability companies in the Netherlands traditionally have a two-tier board structure composed of a managing board and a supervisory board. The managing board is responsible for carrying out the company's day-to-day affairs. As such, a bank's managing board is responsible for compliance with the FMSA. Rules on managing and supervisory boards and their members are set out in great detail in various EU, ECB and DCB guidelines.15 They contain guidance as regards, inter alia, integrity and suitability, sufficient time commitment, independence, supervisory board committees and their composition, and on the maximum number of executive and non-executive positions a board member may hold. The DCB also has a specific position in relation to the independence requirements of members of a bank's supervisory board, which it revised in June 2019.16

The managing and supervisory boards are jointly responsible for compliance (on a comply or explain basis) with the Dutch Corporate Governance Code (if applicable) and the Dutch Banking Code. Adherence to the former is mandatory for listed Dutch banks.17 It includes principles that are held to be generally accepted, as well as detailed best practice provisions relating to both managing and supervisory boards, general meetings, the auditing process and the external auditor.18 The Banking Code contains principles that are based on the Corporate Governance Code, but focuses on the managing and supervisory boards, risk management, auditing and remuneration policy of banks.19 The Banking Code applies to all banks with a banking licence under the FMSA, and compliance is monitored by a special monitoring commission. The Dutch Banking Association recommends that the Banking Code be applied by all entities that operate in the Netherlands (irrespective of their country of incorporation), including banks operating under a European passport.

Restrictions on remuneration

A far-reaching Act on financial sector remuneration has been in force since 2015. One of the most important restrictions is the bonus cap, which holds that the variable remuneration of all persons working under the responsibility of banks with their registered office in the Netherlands, and Dutch branches of banks outside the EEA, may not exceed 20 per cent of the fixed component. Several exceptions apply, including for persons working predominantly in another country, or persons working for the EEA top holding of a group whose staff work predominantly in another country, and, subject to approval by the DCB or the ECB, for retention bonuses. In such cases, the maximum variable remuneration is as set out in CRD IV: 100 per cent of the fixed component or, depending on the exception, 200 per cent subject to shareholder approval.

The Act also restricts severance payments. Moreover, the supervisory board may (and under certain circumstances must), inter alia, claw back bonuses where payment was based on incorrect information or the non-achievement of underlying objectives, and revise bonus payments if these were unacceptable according to standards of reasonableness and fairness. The rules also provide for a statutory ban on bonuses for management (and certain others) of state-aided banks. In March 2017, the DCB introduced a tweak to the bonus cap in that the international holding exemption would be available not only to Dutch global top holdings of financial groups but also to EEA top holdings, thus making the Netherlands more attractive for EEA top holdings of non-EEA financial groups.

Following an evaluation of the remuneration rules in 2018, the Minister of Finance published a draft act for consultation in July 2019 that would, in addition to the existing restrictions of variable pay discussed above, introduce a number of restrictions to fixed pay.20 Directors and employees in the financial sector who receive part of their fixed pay in shares or similar instruments whose value depends on the performance of the company will have to retain these for at least five years. Furthermore, financial undertakings will have to describe in their remuneration policy how the remuneration of their directors and employees is proportional to the firm's role in the financial sector and its position in society. Finally, the exception from the bonus cap for persons falling outside the scope of collective labour agreements will be restricted. Another evaluation will be scheduled in five years.

iii Regulatory capital and liquidity

Rules of prudential supervision are provided for in the CRR and its various regulatory and implementing technical standards on a European level, and in the FMSA, the Decree on Prudential Supervision FMSA and regulations issued by the DCB on a national level. These rules relate to, inter alia, solvency (regulatory capital), liquidity and additional supervision with respect to financial conglomerates.


Licensed banks are required to be sufficiently solvent. The Decree on Prudential Rules FMSA provides that a bank's solvency is sufficient if the bank complies with the requirements set out in Part 3 of the CRR. These requirements include both quantitative requirements (i.e., a Common Equity Tier 1 (CET1) capital ratio of 4.5 per cent of the bank's risk-weighted assets (RWA), a Tier 1 capital ratio of 6 per cent of a bank's RWA and a total capital ratio of 8 per cent of a bank's RWA) and qualitative requirements (conditions that own-fund items and subordinated liabilities must meet to qualify as CET1 capital, Additional Tier 1 capital or Tier 2 capital). The DCB or the ECB also impose an additional bank-specific Pillar 2 buffer following the supervisory review and evaluation process (SREP) when they identify risks not adequately covered by the standard capital requirements. In addition, since 2016, the DCB and the ECB also communicate their expectations for banks to hold additional own funds in the form of capital guidance. This practice has been included in the latest European Banking Authority (EBA) SREP guidelines, and is given a formal basis in CRD V. In November 2018, the ECB published guidance setting out its expectations of banks' internal capital adequacy assessment process.21

The DCB has issued a regulation, amended in October 2019, which sets out how it uses certain options and discretions that CRD IV and the CRR grant to competent national authorities, including a number of (transitional) provisions. In view of the systemic risk in the Dutch housing market, in October 2019 the DCB also consulted on a measure introducing a capital floor to the risk weighting of mortgage loans.22 The measure is expected to enter into force in the course of 2020 and will be effective for a period of two years. The DCB clarified that the measure will not come on top of the similar capital floor that will be introduced by the Basel III reform package.

In 2016, the ECB set out how it would use these options and discretions in relation to significant banks, and issued guidance on the exercise of those options and discretions by competent national authorities in relation to less significant banks.23 The ECB also annually publishes a recommendation on dividend distribution policies, which should take into account capital demand due to future changes in the EU's legal, regulatory and accounting frameworks.24

Capital buffers

CRD IV prescribes four capital buffers:

  1. a capital conservation buffer equal to 2.5 per cent CET1 capital;
  2. an institution-specific countercyclical capital buffer (CCyB) of, in principle, between zero and 2.5 per cent CET1 capital;
  3. a global systemically important institutions (G-SII) buffer of, in principle, between 1 and 3.5 per cent CET1 capital; or an other systemically important institutions (O-SII) buffer of, in principle, between zero and 2 per cent CET1 capital; and
  4. as a Member State option, a systemic risk buffer (SRB) of, in principle, between 1 and 3 per cent CET1 capital.

With regard to the G-SII, O-SII and SRB, in principle only the highest of the three applies, although this will change under CRD V, when the G-SII or O-SII buffer will become cumulative to the SRB. In the Netherlands, the G-SII buffer only applies to ING Bank (1 per cent), and the O-SII buffer applies to ING Bank, Rabobank, ABN AMRO (each 2 per cent) and de Volksbank and BNG Bank (each 1 per cent). The government has chosen to apply an SRB of 3 per cent to ING Bank, Rabobank and ABN AMRO. The DCB has kept the CCyB at zero per cent since its introduction in 2016. It continues to review the necessity of increasing this percentage on a quarterly basis. In 2019, the phase-in period of the capital buffers ended; they are now applicable in full.

Banks can be subject to a combination of buffers, referred to as the combined buffer requirement. When banks fail to meet the combined buffer requirement, specific restrictions apply and certain measures may be imposed, such as a limitation to make distributions or payments in connection with their CET1 and Additional Tier 1 instruments, and the required production of a capital conservation plan, including at least an estimate of income and expenditure and a forecast balance sheet, measures to increase the capital ratios, and a plan and time frame for increasing own funds with the objective of meeting the combined buffer requirement.


Banks must hold a sufficient amount of liquid assets.25 Since 2018, the previous Dutch liquidity requirements and reporting rules have been fully replaced by the two liquidity requirements of the CRR: the liquidity coverage ratio (LCR) and stable funding requirements. The LCR, as further specified in the LCR delegated regulation, has a binding minimum of 100 per cent.26

For the stable funding requirement, only a general rule currently exists, requiring institutions to ensure that their long-term obligations are adequately met with a diversity of stable funding instruments under normal and stress conditions. A binding minimum standard for a net stable funding ratio (NSFR) of 100 per cent is included in CRR II and will become applicable as of June 2021.

In addition to these requirements, the DCB normally also imposes bank-specific liquidity requirements as part of a bank's Pillar 2 requirement, such as regarding specific liquidity survival periods and diversification of sources of funding and liquidity, including through an NSFR proxy requirement. In November 2018, the ECB published a guide to the internal liquidity adequacy assessment process for significant banks.27

Leverage ratio

Banks are required to calculate their leverage ratios in accordance with the methodology set out in Part 7 of the CRR, report them to the relevant supervising authority and disclose them. CRR II introduces a binding minimum leverage ratio of 3 per cent, which will become applicable as of June 2021. In addition, CRR II introduces an additional leverage ratio buffer requirement for G-SIIs, applicable as of January 2022. The Dutch government has argued for the extension of this buffer to O-SIIs. However, CRR II will only include an instruction to the Commission to carry out an appropriateness study for such extension.

Consolidated application of regulatory capital and liquidity requirements

The above-mentioned capital, liquidity and leverage requirements apply to banks on both an individual and consolidated basis. The DCB or ECB may, when certain criteria are met, waive the requirement to comply on an individual basis. The capital and leverage requirements apply on the basis of the consolidated situation of a bank's highest holding entity in each Member State and in the EU as a whole. The liquidity requirements must be met on the basis of the consolidated situation of the highest holding entity in the EU. In addition, the application of the capital requirements on a sub-consolidated basis applies in the case of subsidiary banks, investment firms and financial institutions in a third country.

From December 2020, CRD V also brings financial holding companies and mixed financial holding companies directly within the scope of the EU prudential framework by introducing an approval requirement along with direct supervisory powers. These holdings will become directly responsible for ensuring compliance with regulatory requirements on a consolidated level. An exemption from the approval requirement is available under conditions, including that the holding company's activities are limited to acquiring holdings and that it does not engage in management, operational or financial decisions affecting the group.

Supplementary supervision of banks in a financial conglomerate

The Financial Conglomerates (FICO) Directive was implemented in the FMSA and the Decree on Prudential Supervision of Financial Groups FMSA.28 The FICO Directive introduced the supplementary supervision of banking (insurance and investment) activities carried out in a financial conglomerate. The rules relate, inter alia, to supplementary capital adequacy requirements, risk concentration, intragroup transactions, internal control mechanisms and risk management processes. The holding company of a financial conglomerate must calculate the supplementary capital adequacy in accordance with certain methods described under the FMSA.

DCB policy rule in respect of EBA guidelines

In April 2019, the DCB issued an updated policy rule that lists which of the European supervisory authorities' guidelines it applies. This includes practically all guidelines issued by the EBA, including the Guidelines on internal governance, the Guidelines for the joint assessment of the elements covered by the SREP, and the Guidelines on sound remuneration policies.29

iv Recovery and resolution

Bank Recovery and Resolution Directive and Single Resolution Mechanism Regulation

The Dutch Act implementing the Bank Recovery and Resolution Directive (BRRD) entered into force in 2015, and the Single Resolution Mechanism Regulation (SRMR) became fully applicable in 2016.30 These two legal acts, with the international agreement on the transfer and mutualisation of contributions to the Single Resolution Fund, provide a comprehensive European framework for the recovery and resolution of banks. Both the BRRD and the SRMR were amended in 2019 by the Banking Reform Package, resulting in BRRD II and SRMR II.31 The amendments, in particular, included a substantial revision of the minimum requirement for own funds and eligible liabilities (MREL) requirements, so as to align them with the international standard for total loss-absorbing capacity (TLAC) set by the Financial Stability Board. The changes took effect for G-SIIs in June 2019 and will take effect for other banks in December 2020.

The rules aim to ensure that:

  1. banks and authorities make adequate preparation for crises;
  2. supervisory authorities are equipped with the necessary tools to intervene at an early stage when a bank is in trouble;
  3. resolution authorities have the necessary tools to take effective action when bank failure cannot be avoided, including the power to bail-in creditors; and
  4. banks contribute to an ex ante funded resolution fund.

The DCB has been designated as the national resolution authority for the Netherlands. However, on the basis of the Single Resolution Mechanism (SRM), for significant banks and other cross-border groups in the eurozone, the Single Resolution Board is the competent resolution authority in cooperation with the national resolution authorities. In a 2017 communication, the DCB has set out a number of technical details on how it intends to use the bail-in tool.32 For example, conversion of liabilities by bail-in will result in the creation of claim rights, which are transferable and entitles holders to new shares once issued.

During the course of 2019, the Single Resolution Board and the DCB continued the process of drafting resolution plans for the major Dutch banks and of setting each bank's MREL requirement. Less complex banks received their first binding MREL target in the first quarter of 2019, while for the most complex banks, new binding MREL targets were set in the third and fourth quarters of 2019 on both consolidated and individual levels.33 Following publication of BRRD II and SRMR II in June 2019, the Single Resolution Board updated its MREL policy accordingly.34 It intends to publish a new MREL policy in early 2020.

Deposit insurance

The Dutch deposit insurance framework is based on the (third) Deposit Guarantee Scheme (DGS) Directive, which has been in force since 2015.35 The framework comprises an ex ante funded guarantee scheme to which banks must contribute on a quarterly basis. The fund should reach a target level of 0.8 per cent of insured deposits. The guarantee covers natural persons and businesses, with the exception of financial undertakings and governments, for an amount up to €100,000. In July 2017 and February 2019, the DCB adopted a number of more detailed rules in relation to the Dutch DGS. Most importantly, the DCB introduced a new payout system in which banks must compile and deliver a uniform single customer view, containing an overview of customers' deposits and other relevant data. The new system will enable the DCB to meet the requirement of the DGS Directive that, by 2024, the payout of insured deposits must be made within seven business days of a bank's failure.36 In August 2019, an act supported by the Dutch banking sector entered into force clarifying that banks can use customers' personal identification numbers in implementing their DGS obligations.37

Progress on the European Commission's proposal for a European Deposit Insurance Scheme (EDIS), first circulated in 2015 to reinforce deposit protection by mutualising national deposit guarantee funds in the eurozone, remained slow in 2019. A number of Member States, including the Netherlands, insist that further risk reduction must precede further risk sharing. In December 2019, the high-level working group on EDIS proposed a roadmap for political negotiations.

Dutch Intervention Act

Ahead of the BRRD and the SRM Regulation, Dutch rules for bank recovery and resolution were introduced by the Dutch Intervention Act in 2012. Pursuant to this Act, the DCB had the power to take various measures in respect of banks if it perceived signs of dangerous developments regarding a bank's solvency or liquidity. These powers have largely been replaced by those following the implementation of the BRRD. The powers granted by the Act to the Minister of Finance to take immediate measures if he or she is of the view that the situation of a bank causes a serious and immediate danger to the stability of the financial system continue to apply. These include the temporary suspension of shareholder voting rights, the suspension of management or supervisory board members, and the expropriation of assets or liabilities of a bank or its parent companies with a corporate seat in the Netherlands.

Conduct of business

i Conduct of business rules

Conduct of business rules for banks are for the most part set forth in the FMSA. Compliance with many of these rules is supervised primarily by the DCB or the ECB when relating to governance, risk management, solvency and liquidity. Compliance with the remaining conduct of business rules, including those set out in the Decree on conduct of business supervision FMSA, is supervised by the AFM. These rules mostly relate to the activities of a bank as a financial services provider, a payment services provider or an investment firm (providing investment services or investment activities). This means that, in practice, a bank will be subject to conduct of business rules that are supervised by the AFM if it:

  1. provides investment services or performs investment activities (rules relating to, inter alia, client classification, the provision of information, know your customer requirements, conflicts of interest, best execution, inducements and customer order handling rules);
  2. offers or advises on mortgage or consumer credit or offers electronic money to consumers (requirements as to, inter alia, adequate measures to protect clients' rights, outsourcing and the availability of an internal complaints regulation); or
  3. provides payment services (requirements as to, inter alia, information obligations of the payment service provider towards its (potential) clients and the availability of an internal complaints regulation).

ii Consumer and mortgage credit

Under the FMSA, banks must comply with certain conduct of business rules when offering credit to consumers. Irrespective of the credit amount, additional requirements may apply to banks (and other entities) pursuant to both the Dutch Civil Code and the Act on Consumer Credit.38 The additional rules stem mainly from the implementation of the Consumer Credit Directive.39 These rules relate to the civil law relationship between the bank and the consumer or borrower, and include requirements with respect to pre-contractual information, the form and contents of the credit agreement, and the consumer's right to rescind a credit agreement up to 14 calendar days after entering the agreement. Violation of the rules may lead to civil liability. When offering consumer credit, banks must also take into account the 2012 Code of Conduct for Consumer Credit as drawn up by the Dutch Banking Association.

The FMSA and the Civil Code contain specific rules in relation to retail mortgage loans, stemming mainly from the implementation of the Mortgage Credit Directive.40 The rules concern, inter alia, creditworthiness assessments, information obligations and consumer rights in cases of early repayment and arrears and foreclosures. In 2017, the AFM provided further guidance on costs that may be imposed in the case of early repayment, requiring banks to also revisit calculations of mortgages provided since 2016.41 In July 2019, limitations were also introduced to the costs banks can charge customers when they change their interest rate during a fixed-interest period.42

iii Payment services

As a result of the implementation of the first Payment Services Directive,43 payment service providers are subject to certain conduct of business requirements under both the FMSA and the Civil Code. The rules in the Civil Code relate to the civil law relationship between a payment service provider and client, including:

  1. the payment service contract governing the execution of payment transactions;
  2. the amendment and termination of such a contract;
  3. the required consent of the payer regarding the execution of a payment transaction;
  4. the right of withdrawal;
  5. the maximum period to execute payment transactions; and
  6. costs and liability.

The AFM supervises compliance with all conduct of business rules, including those under the Civil Code. The Dutch Authority for Consumers and Markets (ACM) supervises competition issues relating to access to payment systems.

In December 2018, the act implementing the second Payment Services Directive (PSD2) was belatedly adopted by Parliament. PSD2 modernises the current rules on payment services by opening the EU payment market to payment initiation service providers, introducing new security requirements and enhancing consumer rights.44 The Act finally entered into force in February 2019. In the course of 2019, the EBA published various clarifications to issues relating to application programming interfaces under PSD2 raised by the working group established for that purpose in January 2019.45

The rules implementing the Payment Accounts Directive, in force since 2016, contain requirements for banks and payment service providers on transparency and comparability of fees, and on the facilitation of access to, and switching between, payment accounts.46

iv Anti-money laundering and terrorist financing

Pursuant to the Dutch Prevention of Money Laundering and Terrorist Financing Act, licensed banks (and other financial institutions) are subject to a number of obligations so as to prevent money laundering and terrorist funding. Adequate client identification forms an important part of these obligations. Banks must identify clients with whom they intend to establish a continuing business relationship in the Netherlands, or with whom they enter into an incidental transaction, or a series of related transactions, worth €15,000 or more. If a bank suspects that a transaction is related to money laundering or terrorist financing, the Financial Intelligence Unit (FIU) of the Netherlands must be notified. The FIU is designated to receive information relating to suspicious transactions, to investigate and, if necessary, to report the transactions to the Public Prosecutor to initiate criminal proceedings. In July 2018, new anti-money laundering (AML) rules entered into force, belatedly implementing the Fourth Anti-Money Laundering Directive, which, with its accompanying regulation, had been adopted in 2015.47 The new rules facilitate the work of FIUs in identifying and following suspicious transfers and in the exchange of information between FIUs, and established a harmonised policy towards non-EU countries with deficient AML regimes. It also introduced a centralised register with information on all ultimate beneficiary owners (UBOs). This UBO register has not yet been established in the Netherlands. In February 2020, the act establishing the UBO register was still pending in Parliament.

In May 2018, the Fifth Anti-Money Laundering Directive was adopted.48 The Directive extended the scope of the rules to virtual currencies and pre-paid cards, further enhanced the role and powers of the national FIUs, and provided clearer rules on the nature of and access to UBO information. The Directive also introduced a requirement to establish a centralised data retrieval portal through which authorities can get timely and automatic access to information on bank accounts. In February 2020, both the Act establishing the centralised data retrieval portal and the Act for the implementation of the remainder of the Fifth Anti-Money Laundering Directive were still pending in Parliament.49

Meanwhile, following a number of money laundering scandals across Europe in recent years, AML remains high on the agenda of both legislators and regulators. In December 2019, the Council and the European Parliament adopted a regulation strengthening the powers of the EBA in enforcing AML rules.50 In addition, it was reported in October 2019 that the Council mandated the Commission to propose a new independent EU body with AML enforcement powers, a move supported by the Dutch government. On a national level, in June 2019, the Ministers of Finance and Justice published an AML action plan. This was followed in December 2019 by a draft act with various new measures to fight money laundering, including limiting the use of cash transactions to €3,000 and allowing banks to engage in the joint monitoring of transactions. Other measures proposed as part of the AML action plan include bolstering of enforcement through the creation of multidisciplinary intervention teams and the sharing of police information with banks. In addition, in July 2019, the DCB published good practices for banks on customer tax integrity risk management.51

v Bankers' oath, code of conduct and disciplinary measures

Dutch banks must ensure that all persons with an employment contract with them, or who otherwise carry out activities that are part of the operation of a banking business or its essential supporting business processes, take the bankers' oath. The bankers' oath is linked to the bankers' code of conduct and a set of disciplinary measures. A foundation established by the Dutch Banking Association supervises compliance with the code of conduct, and can impose disciplinary measures, including reprimands, fines and a temporary ban from carrying out a function in the banking sector. The foundation's disciplinary commission deals with an increasing number of cases and frequently hands out disciplinary measures, in many cases a reprimand or a temporary ban from working in the banking sector.

vi Banking secrecy

There is no specific legal provision on banking secrecy in the Netherlands. As a general principle, Dutch law requires banks to keep all client data confidential. This requirement has various sources of origin, including custom, general principles of contract law (i.e., reasonableness and fairness) and the obligation of due care, which stems in turn from the general banking conditions used by most banks in the Netherlands. Several exceptions to the banking secrecy requirement apply. The more general exception provides that a bank is authorised to disclose client data to third parties, including regulatory authorities or supervisors, if it is under a statutory obligation to do so (see Section III.i). Violation of banking secrecy may result in civil liability as a result of a breach of contract or, as the case may be, tort law. Obviously, and perhaps more importantly, violating bank secrecy may also lead to reputational damage.


Dutch banks raise funds from different sources, including deposits (corporate and non-corporate), interbank transactions (including ECB transactions) and capital markets funding. In general, Dutch banks are more dependent on financing through the financial markets than other European banks.52 This is because they lend more than banks in other countries, which is due, inter alia, to above-average high mortgage loans. In combination with a relatively large financial sector in the Netherlands, the relatively high loan-to-deposit ratio caused Dutch banks to be vulnerable to problems in the capital markets. In recent years, however, the loan-to-deposit ratio has gradually decreased.53

Over the past few years, Dutch banks have increased their capital ratios up to the new requirements, largely by de-leveraging and de-risking their balance sheets and by retention of profits. However, in recent years many Dutch banks have also launched successful issues of Additional Tier 1 instruments to meet the new leverage ratio and MREL requirements (see Section III.iv).

In December 2018, an amendment to the Dutch Bankruptcy Act entered into force, implementing the Directive regarding the ranking of unsecured debt instruments in the insolvency hierarchy.54 This change, welcomed by many banks, allows banks to issue senior non-preferred or Tier 3 debt, ranking junior to senior debt, but senior to subordinate debt and capital instruments, to fulfil their MREL or TLAC requirement. A number of Dutch banks, including Rabobank and ABN AMRO, have included the possibility of issuing senior non-preferred notes in their funding programmes.

Control of banks and transfers of banking business

i Control regime

Supervision of participations in banks

The Acquisitions Directive has been implemented in the FMSA.55 Each person who holds, acquires or increases a qualifying holding in a bank with a corporate seat in the Netherlands requires a declaration of no objection (DNO) from the ECB.56 The DCB is responsible for processing the DNO application. A qualifying holding is a direct or indirect holding of 10 per cent or more of the issued share capital of the bank, direct or indirect voting power, or a right to exercise equivalent control of 10 per cent or more within the bank. This definition is subject to certain aggregation principles: for instance, voting rights held through subsidiary companies or voting agreements are to be included.57 Provided the integrity of the person holding the qualifying holding is beyond doubt, the DNO will be granted unless another ground for refusal applies. A DNO will be refused if:

  1. the integrity of the proposed acquirer or the persons who, as a result of their qualifying holding, can determine the day-to-day policy of the bank is not beyond doubt;
  2. the proposed acquirer, taking into account his, her or its reputation, or the persons who, as a result of their qualifying holding, will determine the day-to-day policy of the bank, are not fit;
  3. the financial soundness of the proposed acquirer, in particular in relation to the business activities of the bank, is not beyond doubt;
  4. the qualifying holding would constitute an impediment for the bank to comply with the prudential requirements to which it is subject;
  5. there are reasonable grounds to suspect that, in connection with the acquisition of the qualifying holding, money laundering or terrorist financing is being or has been committed or attempted, or that the proposed acquisition could increase the risk thereof; or
  6. the information provided by the proposed acquirer is incorrect or incomplete (e.g., in the event of a proposed participation of more than 50 per cent, the applicant must submit a detailed business plan with its application for a DNO).

Where the applicant for a DNO is a legal entity, the integrity of all its directors and other persons, if any, who can determine or co-determine the day-to-day policy of the applicant is tested. An additional DNO must be obtained for every subsequent increase as a result of which a threshold of 20, 33, 50 or 100 per cent is reached or passed. In 2016, the European supervisory authorities jointly issued guidelines with detailed further rules for assessing qualifying holdings in banks, including as regards the concepts of acting in concert and indirect acquisitions.

On the basis of Dutch law, the applicant can request a bandwidth DNO. As long as the qualifying holding remains within the range granted, no additional DNO needs to be obtained for any subsequent increase as a result of which a threshold is reached or passed; only a notification needs to be made.

Applicants can also request a group DNO, which extends to all companies within a group collectively, and means no additional DNOs are required for transfers of qualifying holdings within a group. In this case, the DCB also assesses the financial soundness of the acquirer's group entities. In December 2019, the Minister of Finance published for consultation a draft act clarifying the notification obligation that is applicable in the case of changes to the holding within a group with a group DNO.58 If any control relating to a qualifying holding is exercised without having been granted a DNO or in violation of any conditions attached to a DNO, the resolution adopted will be liable for nullification.

Supervision of holdings by and restructuring of banks

In addition to the rules regarding holdings in banks, a bank with a corporate seat in the Netherlands must also obtain a DNO for:

  1. acquiring or increasing a qualifying holding in another bank, investment firm, insurance company or financial institution with a corporate seat outside the EU or the EEA, unless the balance sheet total of the bank or insurance company involved does not exceed 1 per cent of the consolidated balance sheet total of the acquiring or increasing bank;
  2. acquiring or increasing a qualifying holding where the target is not a bank, investment firm, insurance company or financial institution, if the total price paid for the holding amounts to 1 per cent or more of the consolidated balance sheet total of the bank;
  3. acquiring the whole, or a substantial part, of the assets and liabilities of another enterprise or institution, unless the total amount of the assets or liabilities to be taken over does not exceed 1 per cent of the existing consolidated own funds of the bank; or
  4. undertaking a financial or corporate restructuring of its own business.

For significant banks, the ECB is the competent authority in relation to the above-mentioned DNOs. For non-significant banks, the DCB remains competent.59

ii Transfers of banking business

Apart from the rules as set out under the FMSA and the competition rules,60 there are no legal provisions in the Netherlands specifically aimed at prohibiting or limiting the transfer of a banking business either by Dutch or by foreign entities. The transfer of a banking business is subject to the general rules of Dutch civil and corporate law, including rules on legal mergers and divisions and on transfers of assets and liabilities. Although cooperation and cross-participation are permitted in the Netherlands, a merger into a single legal entity of a bank and an insurance company is prohibited.61

The year in review

In quantitative terms, 2019 was a decent year for Dutch banks. However, results were substantially lower than in 2018, due to the continued pressure from low interest rates, increased provisions for bad loans, and high regulatory and compliance costs. 2019 was another uneventful year in terms of transactions. The Dutch state did not further sell down its stake in ABN AMRO, which was nationalised in 2008, and in which it continues to hold 56 per cent. It is speculated that the state will only sell down further after the finalisation of the new remuneration rules. In November 2019, the state also again decided that de Volksbank, nationalised in 2013, was not yet ready to be privatised. Further efforts can be made to better position the bank for a privatisation. Meanwhile, the state is assessing options for privatisation and for embedding its 'societal character' in its governance. Only a number of smaller transactions took place in 2019. In February 2019, LeasePlan was reported to be looking to divest its used cars platform In March 2019, after deciding to scale back its banking activities, insurance company ASR sold part of these to Achmea. Saxo Bank completed its acquisition of BinckBank in August 2019, and the takeover of KAS Bank by CACEIS, a subsidiary of Crédit Agricole, was completed in September 2019.

As regards regulatory change, 2019 saw the adoption of the EU Banking Reform Package, although most new requirements will only become applicable in the next few years. Banks in particular continued their efforts to meet the ever-increasing expectations of legislators and supervisors in relation to integrity risk and, in particular, anti-money laundering.

Outlook and conclusions

Dutch banks are in good shape and are still expected to do well in 2020. Banks' business models and operations will continue, however, to be vulnerable to a number of risks, including the low interest rate environment, compliance risks, political uncertainty, technological disruption and cybercrime. As in 2019, the DCB has indicated supervision focus in 2020 will again be on technological change and digitisation, corporate social responsibility and sustainability, and financial and economic crime. The focus of the AFM will be largely on the same themes. The ECB will focus on two main themes it describes as balance sheet repair and strengthening future resilience, and on Brexit-related work. As in 2019, combating money laundering in particular will continue to feature high on the agenda of legislators and regulators alike, and banks will be expected to keep up their efforts to meet these requirements.

In terms of new regulatory requirements, banks' implementation efforts in 2020 and beyond will focus on the implementation of the EU Banking Reform Package, which will largely enter into force in December 2020 and June 2021. This is due to be followed by the implementation of the Basel standards agreed in December 2017, which is still a few years away. This will include the new capital floor based on standardised approaches, which will have a big impact on Dutch banks' capital requirements due to its treatment of mortgage-backed exposures. However, the long phase-in agreed by the Basel Committee will ease its impact. Finally, another continuing effort in 2020 and thereafter will be the transition of financial contracts to risk-free rates. In the eurozone, a working group led by ING Bank will continue work on ensuring a smooth transition from the Euro overnight index average reference rate to the new European risk-free rate, the Euro short-term rate, which the ECB started publishing in October 2019. In parallel to the implementation of these last outstanding elements of regulatory reform, attention is also increasingly being given to the review and recalibration of existing rules, as legislators and regulators take stock of the effects of the rules that have fully overhauled banking regulation over the past decade.



1 Mariken van Loopik is a partner and Maurits ter Haar is a senior associate at De Brauw Blackstone Westbroek.

2 DCB, Financial Stability Report Autumn 2019, October 2019.

3 Including the Capital Requirements Directive IV (Directive 2013/36/EU (CRD IV)), the Markets in Financial Instruments Directive II (Directive 2014/65/EU (MiFID II)), the Payment Services Directive 2 (Directive (EU) 2015/2366 (PSD2)), the Consumer Credit Directive (Directive 2008/48/EC), the Electronic Money Directive (Directive 2009/110/EC) and the Mortgage Credit Directive (Directive 2014/17/EU).

4 Including the Capital Requirements Regulation (Regulation (EU) No. 575/2013 (CRR)), the Markets in Financial Instruments Regulation (Regulation (EU) No. 600/2014), the Single Supervisory Mechanism Regulation (Regulation (EU) No. 1024/2013), the Single Resolution Mechanism Regulation (Regulation (EU) No. 806/2014), the Benchmarks Regulation (Regulation (EU) 2016/1011), the Packaged Retail and Insurance-based Investment Products Regulation (Regulation (EU) No. 1286/2014), the European Market Infrastructure Regulation (Regulation (EU) No. 648/2012), the Securities Financing Transactions Regulation (Regulation (EU) 2015/2365) and various delegated acts and regulatory and implementing technical standards.

5 Regulation (EU) 2019/876 and Directive (EU) 2019/878.

6 Draft act implementing capital requirements 2020.

7 Since 2015, a bank's management team members (i.e., the bank's senior officers who work directly below the level of the day-to-day policymakers and who are responsible for those persons whose activities may have a material impact on the bank's risk profile) also need to be tested on their suitability and integrity. These tests are performed by the bank itself, with supplementary testing or checks, or both, by the DCB.

8 DCB and AFM, 'More room for innovation in the financial sector, market access, authorisations and supervision', December 2016.

9 Financial Markets Amendment Act 2018.

10 ECB guide to the assessment of licence applications, March 2018 and ECB guide to the assessment of fintech credit institution licence applications, March 2018.

11 ECB guide to the assessment of licence applications, second revised edition, January 2019.

12 ING Bank, ABN AMRO, Rabobank, de Volksbank, Nederlandse Waterschapsbank (NWB Bank) and BNG Bank are currently identified as significant banks.

13 The ECB may request information, conduct general investigations and carry out on-site inspections; it has substantial powers of early intervention and the right to impose fines and other administrative sanctions.

14 Act on Transparent Supervision Financial Markets.

15 This includes the DCB Suitability Policy Rule 2012, the ECB Guide to fit and proper assessments, the Joint ESMA and EBA Guidelines on the assessment of the suitability of members of the management body and key function holders under CRD IV and MiFID II, and the EBA Guidelines on internal governance.

16 DCB Q&A, position on the independent functioning of the supervisory board, June 2019.

17 Non-listed banks often voluntarily apply the Corporate Governance Code.

18 The previous Corporate Governance Code was applicable as of 1 January 2008. A revised Corporate Governance Code entered into force on 1 January 2017.

19 The original Banking Code was applicable as of 1 January 2010. A revised Banking Code entered into force on 1 January 2015.

20 Draft Act on further remuneration measures.

21 ECB, Guide to the internal capital adequacy assessment process (ICAAP), November 2018.

22 DCB, Consultation Regulation on risk weighting for mortgage loans, October 2019.

23 ECB Regulation (EU) 2016/445 on the exercise of options and discretions available in Union law, November 2016; ECB recommendation on common specifications for the exercise of some options and discretions available in Union law by national competent authorities (NCAs) in relation to less significant institutions (LSIs); and ECB guideline on the exercise of options and discretions in Union law by NCAs in relation to LSIs, November 2016.

24 ECB, 2020 recommendation on distribution policies, January 2020.

25 Section 3:63 et seq. of the FMSA.

26 Regulation (EU) 2015/61.

27 ECB, Guide to the internal liquidity adequacy assessment process (ILAAP), November 2018.

28 Directive 2002/87/EC as amended by Directive 2011/89/EU.

29 DCB policy rule application guidelines European supervisory authorities FMSA 2019.

30 Directive 2014/59/EU and Regulation (EU) 806/2014.

31 Directive (EU) 2019/879 and Regulation (EU) 2019/877.

32 DCB, Operation of the bail-in tool, December 2017.

33 2018 Single Resolution Board policy for the first wave of resolution, November 2018, and 2018 Single Resolution Board policy for the second wave of resolution, January 2019.

34 Addendum to the Single Resolution Board 2018 MREL policy on new CRR requirements, June 2019.

35 Directive 2014/49/EU.

36 DCB Policy Rule on the Single Customer View, July 2017, and DCB first round of changes to DGS rules, February 2019.

37 Act on the use of personal identification numbers in the DGS.

38 The Netherlands has chosen to apply the provisions implementing the Consumer Credit Directive to all credit agreements, including those with a value below €200 and above €75,000.

39 Directive 2008/48/EC.

40 Directive 2014/17/EU.

41 AFM, Guidance for the calculation of costs in case of early mortgage repayment, March 2017.

42 Draft Amendment Decree concerning the costs of changing interest rates of mortgage credit.

43 Directive 2007/64/EC.

44 Directive (EU) 2015/2366.

45 The working group on application programming interfaces under PSD2.

46 Directive 2014/92/EU.

47 Directive (EU) 2015/849 and Regulation (EU) 2015/847.

48 Directive (EU) 2018/843.

49 Bank Data Retrieval Portal Act and the Act Implementing Changes to the Fourth Anti-Money Laundering Directive.

50 Regulation (EU) 2019/2175.

51 DCB, Good practices – Customer tax integrity risk management, July 2019.

52 International Monetary Fund, The Netherlands Country Report, February 2019.

53 DCB, Financial Stability Report Autumn 2019, October 2019.

54 Directive (EU) 2017/2399.

55 Directive 2007/44/EC.

56 Section 3:95 et seq. of the FMSA.

57 Section 1:1 juncto, Section 5:45 of the FMSA, pursuant to which the Dutch rules implementing the Transparency Directive (Directive 2004/109/EC) apply.

58 Draft Financial Markets Amendment Act 2021.

59 ECB letter SSM/2017/0140 of 31 March 2017.

60 These rules include that a proposed acquisition or merger of a bank that qualifies as a concentration under the Dutch or EU competition rules should be notified to and approved by the ACM or the European Commission prior to completion.

61 Section 3:36 of the FMSA.

62 DCB, Supervision Outlook 2020, January 2020.

63 AFM, Agenda 2020, January 2020.

64 ECB, SSM Supervisory Priorities 2020, October 2019.

Get unlimited access to all The Law Reviews content