Start Free Trial
Home/Regulations/BCBS 239 — Risk Data Aggregation and Risk Reporting — Regulatory Reference
Regulatory Reference
Financial Services Global / EU high

BCBS 239 — Risk Data Aggregation and Risk Reporting — Regulatory Reference

Risk data lineage and completeness for large banks — AutoPIL lineage tracking satisfies data provenance requirements.

Key Provisions
  • 14 principles across governance, data architecture, accuracy, timeliness, supervisory review
  • Applies to global systemically important banks (G-SIBs) and large domestic banks
  • Principle 2 — data architecture and IT infrastructure
  • Principle 3 — accuracy and integrity of risk data
How AutoPIL Enforces It
  • Source registry + audit chain provide the data lineage Principle 3 expects
  • Agent registry documents AI-driven contributors to risk aggregation
  • Tamper-evident audit chain supports independent validation
Audit LogPolicy EngineLineageSensitivity LabelsAgent Registry
AutoPIL Policy IDs
FS-BCBS239-P2-001AI-Inclusive Risk Data Architecture
FS-BCBS239-P3-001Risk Data Lineage Audit
Official Sources
https://www.bis.org/publ/bcbs239.htm

This page is a working reference and not a substitute for qualified legal review. Verify against official sources before use in compliance artifacts.

AutoPIL Governance Platform

Enforce this regulation today

AutoPIL intercepts every AI agent data access call, enforces your policy, and writes a tamper-evident audit record — before sensitive data enters the agent context window.

Start Free Trial View All Industries