PPSD2

Update re intra-group exemption

Konzernprivileg | intra-group exemption | PayTechLaw
0
Shares
0
0
0
0
0
0

The German regulator BaFin lately issued a very narrow interpretation of the BaFin intra-group exemption. However, if group companies are able to meet certain requirements they shall now be able to rely on the intra-group exemption and will not need a payment license.

In its circular regarding the German Payment Services Supervisory Act (ZAG), BaFin severely restricted the scope of the intra-group exemption (contained in Sec. 2 para 1 No 13 ZAG).The exemption was to apply only where payer and payee are part of the same company group but should not apply if one of them (e.g. a customer or supplier) is not part of the group.

Company groups that are often organized with shared services entities and a central cash management are faced with the choice of re-organizing themselves in a decentralized way, engaging and integrating an external payment service provider, or applying for a payment license themselves. Thus, it came as no surprise that the BaFin circular triggered quite an outcry among German corporates.

Under the co-ordination of the Association of German Treasurer (Verband Deutscher Treasurer e.V.) German business associations have contacted BaFin and laid out the implications of such interpretation in practice. It turned out that BaFin’s central concern was related to anti-money laundering.

Accordingly, also BaFin agrees that – unless other payment law aspects come into play – it should be possible to interpret the exemption in the light of the purpose to prevent anti-money laundering in a way that it is not required to obtain a license to carry out a central cash management if the following requirements are met at all times:

  1. The company carrying out the services such as payment transactions that are intra-group and external and connected services, has concluded respective service contracts with the relevant group companies.
  2. The company has to document all payment transactions to ensure traceability and transparency of all transactions at all times.
  3. To ensure compliance with legal requirements of payment services (in particular as regards foreign trade laws), the company has to issue uniformly binding rules/requirements for all relevant group companies and has to implement the relevant processes and systems. This applies in particular, but is not limited to, measures designed to prevent anti-money laundering or terrorist financing.
  4. Compliance with such rules/requirements shall be audited by the internal audit/compliance department internally on a regular basis by use of suitable system- and process audits of the company. Such audits shall be comprehensible for third parties. Any deviations or irregularities discovered during such audits shall be addressed by suitable measures and shall be rectified in a sustainable way.

This technological interpretation is also based on recital 17 PSD2 according to which the collection of payment orders on behalf of a group by one group company shall not be considered a payment service.

However, the letters exchanged between BaFin and the Association of German Treasurers, leave open the question whether the reasoning only applies to central cash management but not,  for instance, to a central procurement entity that centrally pays all suppliers of a group. The arguments used to exempt cash management apply in this case as well because the risk of anti-money laundering appears to be rather low when meeting the requirements set out above but there is no mentioning of other scenarios in the letters. To be on the very safe side, a central procurement entity should be set up as central regulator pursuant to Sec. 2 para. 1 No. 2 ZAG. This means in turn that the central procurement entity needs to be in a position that it is able to negotiate conditions with the suppliers for other group companies essentially on its own.

 

Titelbild / Cover picture: Copyright © fotolia

 

0
0

Susanne started her legal career at Linklaters. Most recently, she headed the legal department of PayPal for the DACH region. Before that, she worked at eBay mainly on payment related topics. Her focus are regulatory issues and product advice in the payment and ecommerce industry. Susanne dealt with completely different legal topics as head of legal director for the Bundesdruckerei (federal printing office).



By continuing, you accept our privacy policy.
You May Also Like
AAnti Money Laundering
AMLA konsultiert Leitlinien zur laufenden Überwachung von Geschäftsbeziehungen – Was auf Verpflichtete zukommt AMLA Consults on Guidelines for the Ongoing Monitoring of Business Relationships – What You Should Expect
Read More
  • 5 minute read

AMLA Consults on Guidelines for the Ongoing Monitoring of Business Relationships – What You Should Expect

Continuous monitoring is already one of the core obligations in anti-money laundering compliance today. However, the AMLR elevates this principle to a new level. Obliged entities must not only review individual transactions but continuously analyse and assess the entire business relationship throughout its lifecycle.
Read More
DData Protection
Datenschutz im Zahlungsverkehr – Rechtliche Grundlagen und Besonderheiten Data Protection in Payment Services – Legal Framework and Key Particularities
Read More
  • 10 minute read

Data Protection in Payment Services – Legal Framework and Key Particularities

Data protection in payment services operates within the complex interplay of the GDPR, PSD2 and the German ZAG. A key challenge lies in the legal classification of payment data, as transaction data may reveal highly sensitive insights into individuals’ private lives. This article analyses the principal legal bases for data processing as well as the allocation of data protection responsibilities among payment service providers, PISPs and AISPs.
Read More
RRegulatory
Der Bafin-Jahresbericht 2025: Zwischen Cyber-Resilienz, Geldwäscheprävention und dem Blick nach Europa The BaFin Annual Report 2025: Between Cyber Resilience, Anti-Money Laundering and a European Perspective
Read More
  • 5 minute read

The BaFin Annual Report 2025: Between Cyber Resilience, Anti-Money Laundering and a European Perspective

The BaFin Annual Report 2025 highlights a profound transformation of financial supervision. Alongside cyber resilience, DORA and ESG regulation, data-driven supervision, anti-money laundering and stronger European harmonisation are moving centre stage. At the same time, requirements for governance, IT structures and management accountability are increasing significantly.
Read More
PPayment
Ist bei E-Geld ein Vertrag zwischen dem E-Geld-Herausgeber und der Akzeptanzstelle erforderlich? Is a contract between the e-money issuer and the merchant required for e-money?
Read More
  • 9 minute read

Is a contract between the e-money issuer and the merchant required for e-money?

This article examines the European Commission’s controversial interpretation of Article 11(7) EMD2 regarding the definition of electronic money. It focuses on whether a contractual relationship between the e-money issuer and the accepting merchant is required for electronic money acceptance. The article concludes that Article 11(7) EMD2 does not establish a general contractual requirement for the acceptance of e-money.
Read More