How do CRR III output floor requirements affect EU banks differently from US Basel III Endgame?

The EU output floor phases in from 50% in 2025 to 72.5% by 2030, applying at consolidated level with transitional reliefs for low-risk mortgage and unrated corporate exposures. The US Basel III Endgame proposal, substantially revised in September 2024, takes a different approach with higher risk-weight sensitivity but no output floor. This means EU banks face a predictable but gradual capital increase, while US banks face potentially sharper but more granular recalibrations. The divergence creates competitive implications for internationally active banks.

What happens when a payment service provider cannot meet the October 2025 instant payments deadline?

The Instant Payments Regulation (2024/886) mandates all SEPA credit transfer PSPs to send and receive instant payments at no extra charge by 9 October 2025 (receive) and 9 January 2026 (send). Failure to comply constitutes a regulatory breach enforceable by national competent authorities. Penalties vary by Member State but include fines, mandatory remediation plans, and potential license conditions.

How does the Retail Investment Strategy affect existing MiFID II inducement rules?

The Commission proposed a partial ban on inducements for execution-only and non-advised sales, while allowing inducements for advised sales subject to a new "best interest" test and value-for-money benchmarks developed by ESMA. Parliament pushed for a broader ban, while Council preferred the partial approach. The trilogue outcome, expected in 2026, will determine the final scope. Either way, firms must prepare for enhanced cost transparency and value-for-money compliance.

Will AMLA directly supervise all banks or only selected entities?

AMLA will directly supervise approximately 40 selected obliged entities with the highest risk profiles and cross-border activity. Selection criteria include ML/TF risk assessments, number of countries of operation, and previous supervisory findings. The first directly supervised entities will be identified in 2027 for supervision starting mid-2028. All other entities remain under national FIU and competent authority supervision, with AMLA providing coordination and convergence.

How do DORA and MiCA interact for crypto-asset service providers?

CASPs authorised under MiCA are explicitly listed in DORA Article 2(1)(f) as in-scope financial entities. They must comply with all five DORA pillars: ICT risk management, incident reporting, resilience testing, third-party risk management, and information sharing. MiCA provides the licensing and conduct framework; DORA adds the operational resilience layer. There is no exemption for smaller crypto firms.

What is the status of PSD3 and when should payment firms prepare?

PSD3 and the Payment Services Regulation (PSR) were proposed by the Commission in June 2023. The framework splits into PSR (directly applicable regulation for payment rules) and PSD3 (directive for authorisation). Council and Parliament positions were agreed in 2024-2025, with trilogue expected to conclude in late 2025 or early 2026. Application is expected 18-24 months after adoption, likely H2 2027 or early 2028. Key changes include enhanced fraud prevention, mandatory IBAN-name verification, and expanded open banking.

How does the Omnibus Simplification Package affect financial firms' ESG reporting?

The February 2025 Omnibus Package proposes to streamline SFDR, Taxonomy Regulation, and CSRD interaction for financial and non-financial companies. For financial firms, this means a potential consolidation of SFDR entity and product-level disclosures, simplified Taxonomy alignment reporting, and better interoperability between CSRD data and SFDR indicators. The package does not eliminate sustainability disclosure but aims to reduce overlap and compliance costs by up to 25%.

TOPICS·FINANCIAL SERVICES·UMBRELLA TOPIC

EU Financial Services Regulation

The EU's interconnected regulatory framework governing banks, insurers, investment firms, asset managers, payment providers, and crypto-asset firms. From Basel III to MiCA, DORA to the AML package -- the most comprehensive financial regulatory architecture in the world, in continuous evolution.

EU / USCONTINUOUSLY EVOLVING1382 regulations trackedUpdated April 2026

THE ESSENTIALS

Financial regulation is the set of rules that governs how banks, insurers, investment firms, and other financial companies operate. In the EU, these rules are designed to prevent the kind of failures that caused the 2008 financial crisis -- ensuring that institutions hold enough capital to absorb losses, treat customers fairly, and do not become vehicles for money laundering or fraud.

If your company is a bank, an insurer, a payment provider, a fund manager, or a firm that trades securities or crypto-assets, EU financial regulation applies to you directly. If you are a technology company that provides critical services to any of these firms -- cloud hosting, core banking software, data analytics -- you are increasingly within scope too, particularly under the Digital Operational Resilience Act (DORA).

The period from 2024 to 2026 is unusually intense. Several major pieces of legislation are landing at the same time: new capital rules for banks, a dedicated EU agency for anti-money laundering, mandatory instant payments, the first comprehensive crypto-asset regime, and digital resilience requirements that apply across the entire financial sector. For compliance teams, this means parallel implementation projects with overlapping deadlines.

In practical terms: if you operate in financial services anywhere in the EU, you need to understand which regulations apply to your specific entity type, what the deadlines are, and where the supervisory pressure is building. This page maps that landscape.

Switzerland is not an EU member state and does not directly adopt EU financial regulation. However, Swiss financial institutions are supervised by FINMA under a framework that is largely equivalent to EU standards -- a status that is critical for maintaining cross-border market access. Swiss banks, insurers, and asset managers serving EU clients or operating EU subsidiaries must comply with EU rules in those jurisdictions, and equivalence decisions (such as those under MiFIR or Solvency II) depend on Switzerland keeping its domestic framework aligned.

Key areas of divergence to watch: Switzerland has not adopted MiCA, meaning Swiss crypto firms serving EU customers face a separate licensing requirement. The new EU AML Authority (AMLA) will not directly supervise Swiss entities, but Swiss obliged entities forming part of EU group structures may be indirectly affected. DORA does not apply in Switzerland, but FINMA circular 2023/1 on operational risks and ICT covers similar ground. Swiss firms should map their EU exposure and maintain a rolling gap analysis against the regulations listed on this page.

WHAT

A broad body of EU and US regulation governing banks, insurers, investment firms, and other financial institutions. The EU single rulebook harmonises capital, conduct, payments, and AML rules across all Member States.

WHO

All authorised financial institutions, fintechs, payment providers, and increasingly, crypto-asset service providers. Also technology firms serving the financial sector (via DORA).

WHEN

Ongoing and continuously evolving. Key recent milestones: CRR III (Jan 2025), DORA (Jan 2025), MiCA (Dec 2024). Upcoming: Instant Payments (Oct 2025), AIFMD II (Apr 2026), AMLA supervision (2028).

PENALTY

Varies by regulation. Includes licence revocation, fines up to 10% of annual turnover, periodic penalty payments (AMLA: 1% of daily turnover), and personal liability for senior management under fitness-and-propriety regimes.

REGULATORY FRAMEWORK MAP

The EU financial regulatory architecture is organised into eight interconnected pillars. Each pillar contains multiple legislative instruments that interact across boundaries.

KEY LEGISLATION

CRR III / CRD VISolvency II ReviewBRRD II / SRMR IIDGSD Review

The backbone of financial stability. CRR III (Regulation 2024/1623) completes the EU implementation of Basel III final reforms, introducing the output floor, revised credit risk standardised approach, and new operational risk framework. CRD VI enhances supervisory powers, ESG risk management, and third-country branch oversight. Solvency II review modernises insurance prudential rules. Application is phased: core CRR III from 1 January 2025, output floor transitional through 2030.

INTERCONNECTIONS

Feeds into MiFID II/MiFIR capital requirements for investment firms

DORA adds ICT risk as a prudential concern

BRRD ensures resolvability, DGSD protects depositors

KEY SUPERVISORY BODIES

The EU financial supervisory architecture is a multi-layered system of European authorities, national competent authorities, and specialised agencies.

RECENT LEGISLATIVE ACTIVITY

Key regulatory developments in the 2025-2026 cycle. The current period represents a once-in-a-decade convergence of major financial regulation milestones.

CRR III / CRD VI application begins

EU implements final Basel III reforms. Output floor starts at 50%, rising to 72.5% by 2030. New standardised approach for credit, market, and operational risk.

DORA full application

Digital Operational Resilience Act becomes mandatory for banks, insurers, investment firms, payment providers, and their critical ICT third-party providers.

Omnibus Simplification Package proposed

Commission proposes streamlining SFDR, Taxonomy, CSRD, and CSDDD reporting. Aims to reduce administrative burden by up to 25% for financial and non-financial companies.

AMLA becomes operational

Anti-Money Laundering Authority in Frankfurt begins building supervisory capacity. Will directly supervise ~40 highest-risk entities from 2028.

Instant Payments Regulation fully applicable

Eurozone PSPs must send SEPA instant credit transfers at no extra charge within 10 seconds, 24/7/365 (receive obligation already applied from January 2025). Non-eurozone PSPs follow in 2027-2028.

AIFMD II / UCITS VI application

Revised rules for alternative and UCITS fund managers: mandatory liquidity management tools, loan origination framework, delegation substance requirements.

MiFIR payment for order flow ban

EU-wide ban on payment for order flow. Brokers must route retail orders based on best execution without conflicted inducements.

PSD3 / PSR expected adoption

New payment services framework replacing PSD2. PSR as directly applicable regulation, PSD3 directive for authorisation. Enhanced fraud prevention, IBAN-name verification.

REGULATION BY SECTOR

Financial regulation applies differently across sectors. Each has a primary prudential or conduct framework, supplemented by cross-cutting requirements.

KEY COMPLIANCE REQUIREMENTS

Licensing and authorisation

Obtain and maintain regulatory licences for all financial activities in each jurisdiction where you operate.

Capital and prudential requirements

Maintain adequate capital buffers and liquidity ratios as prescribed by CRR/CRD, IFR/IFD, and Solvency II.

Conduct of business rules

Comply with investor protection, suitability, best execution, and disclosure requirements when providing financial services.

AML/KYC obligations

Implement anti-money laundering controls, customer due diligence, and suspicious transaction reporting under the evolving AML package.

Digital operational resilience

Implement ICT risk management, incident reporting, resilience testing, and third-party oversight under DORA.

Supervisory reporting

Submit regular prudential, statistical, resolution, and transaction reports to national and EU supervisory authorities.

Governance and risk management

Establish sound governance structures with independent risk, compliance, and internal audit functions. Fitness-and-propriety for senior management.

ESG integration

Integrate environmental, social, and governance risk into disclosures, product governance, and risk management under SFDR, Taxonomy, and sector-specific provisions.

WHO DOES THIS AFFECT?

Select your entity type for tailored compliance guidance across the EU financial regulatory framework.

KEY OBLIGATIONS

☐Maintain CRR III capital requirements including output floor (50% from 2025, 72.5% by 2030)

☐Implement DORA ICT risk management framework and incident reporting

☐Comply with BRRD II MREL requirements for resolvability

☐Submit AML/CFT reporting and prepare for AMLA oversight

☐Integrate ESG risk into Pillar 3 disclosures under CRR III

☐Offer SEPA instant payments at no extra cost from October 2025

YOUR FIRST STEP

Assess CRR III output floor impact on capital ratios and prepare remediation plan if needed. Validate DORA Register of Information completeness.

KEY MILESTONES

From the post-crisis reforms to the digital finance era. The current 2024-2026 cluster is the densest period of financial regulatory change since 2008.

Jul 21, 2010

DODD-FRANKDodd-Frank Wall Street Reform and Consumer Protection Act signed into US law

Jun 27, 2013

CRR/CRD IVCRR I and CRD IV adopted, implementing Basel III in the EU

Nov 4, 2014

SSM LAUNCHECB Single Supervisory Mechanism becomes operational for eurozone banks

Jan 1, 2016

SOLVENCY IISolvency II becomes applicable for EU insurers and reinsurers

Jan 3, 2018

MiFID IIMiFID II/MiFIR becomes applicable, transforming EU securities market regulation

Jun 28, 2021

CRR IICRR II (Basel III intermediate) becomes applicable: NSFR, FRTB reporting, TLAC/MREL

Jun 30, 2024

MiCA STABLECOINMiCA Title III/IV applicable for stablecoin issuers (ARTs, EMTs)

Dec 30, 2024

MiCA FULLMiCA fully applicable for all crypto-asset service providers

Jan 1, 2025

CRR IIICRR III core provisions applicable: revised SA-CR, operational risk, output floor starts

Jan 17, 2025

DORADORA fully applicable for all 21 categories of financial entities

Jul 1, 2025

AMLAAnti-Money Laundering Authority begins operations in Frankfurt

Oct 9, 2025

INSTANT PAYInstant Payments Regulation: eurozone PSPs must send SEPA instant credit transfers at no surcharge (receive obligation already applied from 9 Jan 2025)

Apr 16, 2026

AIFMD IIAIFMD II and UCITS VI become applicable for fund managers

Apr 23, 2026

YOU ARE HERE

Jun 30, 2026

PFOF BANMiFIR grandfathering exemption expires: payment for order flow banned EU-wide (prohibition in force since March 2024)

Jan 1, 2027

CRR III P2CRR III second phase: revised market risk framework (FRTB) becomes binding

Jul 1, 2028

AMLA DIRECTAMLA begins direct supervision of ~40 highest-risk obliged entities

Jan 1, 2030

OUTPUT FLOORCRR III output floor fully phased in at 72.5%

KEY QUESTIONS & INTERPRETATIONS

FINANCE REGULATIONS1382

EU216

US280

COURT RULINGS0

REGULATORY ACTIVITY OVER TIME

202184

202296

2023108

202497

2025104

202611

EU US

BY STATUS

Proposed157

In Force125

Adopted218

BY TYPE

rule274

decision54

regulation150

directive13

bill5

act4

MOST CONNECTED REGULATIONS

JUR.	TITLE	STATUS	LINKS
EU	Commission Delegated Regulation (EU) 2022/127 of 7 December 2021 supplementing Regulation (EU) 2021/2116 of the European Parliament and of the Council with rules on paying agencies and other bodies, financial management, clearance of accounts, securities and use of euro	Adopted	6
EU	Decision (EU) 2022/1743 of the European Parliament of 4 May 2022 on discharge in respect of the implementation of the budget of the European Chemicals Agency (ECHA) for the financial year 2020	Adopted	2
EU	Corrigendum to Regulation (EU) 2019/876 of the European Parliament and of the Council of 20 May 2019 amending Regulation (EU) No 575/2013 as regards the leverage ratio, the net stable funding ratio, requirements for own funds and eligible liabilities, counterparty credit risk, market risk, exposures to central counterparties, exposures to collective investment undertakings, large exposures, reporting and disclosure requirements, and Regulation (EU) No 648/2012 (Official Journal of the European Union L 65 of 25 February 2021)	Adopted	2
EU	Decision (EU, Euratom) 2021/1623 of the European Parliament of 28 April 2021 on the closure of the accounts of the European Chemicals Agency for the financial year 2019	Adopted	2
EU	Decision (EU, Euratom) 2022/1696 of the European Parliament of 4 May 2022 on discharge in respect of the implementation of the budget of the Innovation and Networks Executive Agency (now European Climate, Infrastructure and Environment Executive Agency – CINEA) for the financial year 2020	Adopted	1
EU	Corrigendum to Regulation (EU) 2019/876 of the European Parliament and of the Council of 20 May 2019 amending Regulation (EU) No 575/2013 as regards the leverage ratio, the net stable funding ratio, requirements for own funds and eligible liabilities, counterparty credit risk, market risk, exposures to central counterparties, exposures to collective investment undertakings, large exposures, reporting and disclosure requirements, and Regulation (EU) No 648/2012 (Official Journal of the European Union L 150 of 7 June 2019)	Adopted	1
US	Permitted Payment Stablecoin Issuer Anti-Money Laundering/Countering the Financing of Terrorism Program and Sanctions Compliance Program Requirements	Proposed	0
US	Anti-Money Laundering and Countering the Financing of Terrorism Programs	Proposed	0
US	Anti-Money Laundering and Countering the Financing of Terrorism Programs	Proposed	0
US	Accidental Release Prevention Requirements: Risk Management Programs Under the Clean Air Act; Common Sense Approach to Chemical Accident Prevention; Extension of Comment Period	Proposed	0

DATE	JUR.	TITLE	STATUS
Apr 10, 2026	US	Permitted Payment Stablecoin Issuer Anti-Money Laundering/Countering the Financing of Terrorism Program and Sanctions Compliance Program Requirements	Proposed
Apr 10, 2026	US	Anti-Money Laundering and Countering the Financing of Terrorism Programs	Proposed
Apr 10, 2026	US	Anti-Money Laundering and Countering the Financing of Terrorism Programs	Proposed
Apr 2, 2026	US	Accidental Release Prevention Requirements: Risk Management Programs Under the Clean Air Act; Common Sense Approach to Chemical Accident Prevention; Extension of Comment Period	Proposed
Apr 1, 2026	US	National Emission Standards for Hazardous Air Pollutants: Chemical Manufacturing Area Sources Technology Review	In Force
Mar 30, 2026	US	Marketable Treasury Securities Redemption Operations	In Force
Mar 23, 2026	US	Application of the Federal Securities Laws to Certain Types of Crypto Assets and Certain Transactions Involving Crypto Assets	In Force
Mar 17, 2026	EU	Council Decision (EU) 2026/735 of 17 March 2026 on the position to be adopted, on behalf of the European Union, within the EEA Joint Committee concerning an amendment to Annex IX (Financial services) to the EEA Agreement (ESAs Review) (Text with EEA relevance)	Adopted
Mar 6, 2026	EU	Commission Implementing Regulation (EU) 2026/496 of 6 March 2026 on the temporary suspension of the visa exemption for nationals of Georgia holding diplomatic, service and official passports	Adopted
Feb 17, 2026	EU	Commission Implementing Regulation (EU) 2026/349 of 17 February 2026 laying down technical information for the calculation of technical provisions and basic own funds for reporting with reference dates from 31 December 2025 until 30 March 2026 in accordance with Directive 2009/138/EC of the European Parliament and of the Council on the taking-up and pursuit of the business of Insurance and Reinsurance	Adopted
Feb 13, 2026	EU	Commission Regulation (EU) 2026/338 of 13 February 2026 amending Regulation (EU) 2023/1803 as regards International Financial Reporting Standard 18	Adopted
Dec 19, 2025	EU	Regulation (EU) 2025/2649 of the European Parliament and of the Council of 19 December 2025 amending Regulation (EU) 2021/2115 as regards the conditionality system, types of intervention in the form of direct payment, types of intervention in certain sectors and rural development and annual performance reports and Regulation (EU) 2021/2116 as regards suspensions of payments, annual performance clearance and controls and penalties	Adopted
Dec 19, 2025	EU	Decision (EU) 2026/86 of the European Central Bank of 19 December 2025 amending Decision (EU) 2016/456 (ECB/2016/3) as regards investigations in relation to the prevention of fraud, corruption and any other illegal activities affecting the financial interests of the Union and amending Decision (EU) 2020/1575 (ECB/2020/54) as regards the follow-up to suspected breaches of professional duties where the person concerned is a high-level ECB official (ECB/2025/45)	Adopted
Dec 18, 2025	US	Base Erosion and Anti-Abuse Tax Rules for Qualified Derivative Payments on Securities Lending Transactions	In Force
Dec 16, 2025	US	Receipt of Pesticide Petitions Filed for Residues of Pesticide Chemicals in or on Various Commodities-October 2025	Proposed
Dec 16, 2025	EU	Council Decision (EU) 2026/231 of 16 December 2025 on the position to be adopted, on behalf of the European Union, within the EEA Joint Committee concerning an amendment to Annex IX (Financial services), Annex XII (Free movement of capital) and Annex XXII (Company law) to the EEA Agreement (Framework for the recovery and resolution of central counterparties) (Text with EEA relevance)	Adopted
Dec 15, 2025	US	Receipt of Pesticide Petitions Filed for Residues of Pesticide Chemicals in or on Various Commodities-August 2025	Proposed
Dec 9, 2025	US	Rescinding Regulations Related to Nondiscrimination on the Basis of Sex in Education Programs or Activities Receiving Federal Financial Assistance	In Force
Dec 1, 2025	US	Receipt of Pesticide Petitions Filed for Residues of Pesticide Chemicals in or on Various Commodities-September 2025	Proposed
Nov 26, 2025	EU	Regulation (EU) 2025/2441 of the European Parliament and of the Council of 26 November 2025 amending Regulation (EU) 2018/1806 as regards the revision of the suspension mechanism	Adopted