Finanstilsynet’s digitalisation principles
Published: 11 October 2023
- We will conduct data-driven and risk-based supervision
- We will give supervised institutions effective collaboration and reporting tools
- We will manage our data in a way that supports streamlining and digitalisation
- We will have flexible IT systems
- We will increase the digital competence of all employees
A transparent and consistent IT architecture is a prerequisite for stable services and digital innovation. Against this background, Finanstilsynet has laid own the following digitalisation principles:
- Finanstilsynet’s digitalisation process will be compliant with government guidelines, including the goal of having one digital public sector and a common digital ecosystem.
- Finanstilsynet's architecture principles will form the basis for the work on digitalisation.
- Common public solutions and commercially available solutions will be used whenever this is cost-effective and relevant.
- As far as possible, standards will be used, including standards from the European Financial Supervisory Authorities, and components in the IT systems will be reused.
- Finanstilsynet will use cloud services where this provides secure, appropriate and cost-effective solutions.
- Finanstilsynet's internal IT and information security will satisfy statutory requirements and recognised standards.
- Built-in security features in digital solutions will be based on best practices and standards to reduce the risk of cybercrime.
- Finanstilsynet will have a good overview of what constitutes master data and where these data are stored, as well as how they are handled.
- Data will be documented in accordance with guidelines for common information management in the public sector.
- Finanstilsynet will be user-oriented. Sharing of data will be facilitated whenever possible, and data will be protected whenever necessary.
- Finanstilsynet will have sufficient internal expertise to manage the development of key IT systems.
- Cooperation with external actors, for example with supervisory authorities in other countries, on the development and operation of common IT solutions will take place provided that this is permitted by regulations and ensures savings, faster implementation or reduced risk.