RegTech in public and private sectors: the nexus between data, technology and regulation

Abstract

Higher regulatory compliance requirements, fast and continuous changes in regulations and high digital dynamics in the financial markets are powering RegTech (regulatory technology), defined as technology‐enabled innovation applied to the world of regulation, compliance, risk management, reporting and supervision. This work builds on a systematic literature review and a bibliometric analysis of the literature on RegTech, its influential papers and authors, its main areas of research, its past and its future. The resulting multi-dimensional framework bridges across four main dimensions, starting with regulation and technology, where one or more regulations, not necessarily financial ones, are addressed with the support of technologies (e.g. artificial intelligence, DLT, blockchain, smart contracts, API). Data play a central role, as sharing them enables data ecosystems, where additional value can be attained by each market participant, while data automation and machine-readable regulations empower regulators to pull data directly from the banks’ systems and combine these data with data obtained directly from customers or other external sources. Several applications emerge, both for regulated entities, covering matters of compliance, monitoring, risk management, reporting and operations, as well as for authorities, which can leverage on RegTech (SupTech) solutions to make policies, to undertake their authorising, supervising and enforcement operations, for monitoring and controlling purposes, and even to issue fines automatically. As a consequence, stakeholders can reap a series of benefits, such as higher efficiency and effectiveness, accuracy, transparency and lower compliance costs but also risks, such as cyber risk, algorithmic biases, and dehumanization.