Why consolidated supervision matters
Swiss private banking has long operated through complex multi-entity structures — holding companies, operating banks, asset management subsidiaries, booking centres in multiple jurisdictions, and ancillary service entities spanning Geneva, Zurich, Luxembourg, Singapore and beyond. For decades, the regulatory focus fell primarily at the individual legal entity level. That era is over.
FINMA's consolidated supervision framework, anchored in the Financial Market Supervision Act (FINMASA) and the Banking Act (BankA), requires that financial groups and financial conglomerates under FINMA's oversight are supervised not only entity by entity, but as an integrated whole. This shift in supervisory philosophy carries profound implications for how Swiss private banking groups must organise their governance, manage their risks, and report to their regulator.
The underlying rationale is sound. A risk that appears contained within a single subsidiary may, in reality, threaten the entire group. Capital held at one level may not be freely transferable to where it is needed. Governance failures in a foreign booking centre can expose the Swiss parent to regulatory and reputational consequences entirely disproportionate to the size of that entity. Consolidated supervision is FINMA's answer to this structural reality — and institutions that treat it as a compliance exercise rather than a governance imperative do so at their peril.
The Swiss consolidated supervision framework is grounded in Arts. 3c, 4 and 10 of the Banking Act (BankA), the FINMA Supervisory Ordinance, and FINMA Circular 2015/2 (Liquidity risks — banks). For financial groups, FINMA designates a lead regulated entity responsible for group-wide compliance — typically the Swiss parent bank or holding company. The scope of consolidation, the definition of "financial group" and the obligations attaching to each level of the structure are determined by FINMA on a case-by-case basis.
The structural challenge: what consolidation actually requires
The first difficulty most private banking groups encounter is definitional: precisely which entities fall within the supervisory perimeter, and what obligations apply to each? FINMA's approach to defining the consolidation scope is purposive rather than mechanical — it looks through legal form to economic substance. An entity that performs functions integral to the banking group's operations, or that poses risks that could affect the consolidated entity, may be drawn into the supervisory perimeter even if it is not itself a regulated firm.
This creates immediate governance questions that many groups have not answered clearly. Which entities are in scope? Who is responsible for group-wide compliance? How does the parent board exercise oversight over entities it does not directly control? In practice, the answers to these questions are often fragmented across multiple internal legal and compliance functions, with no single owner of the consolidated view.
The second structural challenge is data. Consolidated supervision requires the group to produce integrated risk and capital reporting that aggregates positions, exposures and metrics across all in-scope entities. Where each entity operates on different core banking systems, different data architectures, and different risk methodologies, producing a coherent, timely and accurate consolidated view is technically demanding and operationally expensive. In many Swiss private banking groups, this remains the most significant practical obstacle to effective consolidated supervision compliance.
"Consolidated supervision is not a reporting exercise. It is a governance architecture — and it starts with the board, not the compliance function."
The four most common implementation failures
Drawing on experience across Swiss private banking and wealth management groups, four failure patterns recur with particular frequency:
- Governance without teeth at the group level. Many groups have a group holding board that nominally exercises consolidated oversight, but in practice defers entirely to the operating bank's board and management. The holding board receives condensed summaries rather than substantive risk reporting, meets infrequently, and has limited independent expertise. FINMA expects the group-level governance body to exercise genuine oversight — not to rubber-stamp the operating entity's decisions.
- Incomplete identification of the supervisory perimeter. Entities are omitted from the consolidated perimeter — often intentionally, to avoid the associated compliance burden — without a documented legal basis for exclusion. When FINMA requests a group structure chart and an explanation of the consolidation scope, gaps become immediately apparent and generate supervisory attention that could have been avoided.
- Capital and liquidity management that ignores transferability constraints. Consolidated capital ratios may look adequate at the group level while concealing structural barriers to transferring capital between entities. Regulatory restrictions, minority interests, tax considerations and cross-border capital controls all affect the practical availability of capital where it is needed. A group that has not stress-tested its capital transferability has not completed its consolidated capital planning.
- Inadequate intra-group transaction governance. Transactions between group entities — funding, cost allocation, service agreements, intra-group lending — require governance frameworks that ensure they are conducted on arm's-length terms, do not create hidden concentrations, and are transparent to FINMA. Many groups have informal intra-group arrangements that pre-date the current supervisory framework and have never been reviewed against consolidated supervision requirements.
A practical governance framework for consolidated supervision
Effective consolidated supervision compliance is built on three structural elements: a clear governance architecture at the group level, an integrated risk and capital reporting framework, and a disciplined intra-group transaction governance process. Each element is necessary; none is sufficient alone.
Element 1 — Group governance architecture
The group holding board must be constituted as a genuine oversight body, not a legal formality. In practice this means the holding board should have independent members with relevant financial services and risk expertise, meet with sufficient frequency to exercise meaningful oversight (typically at least four times per year, with additional sessions as required), and receive reporting that gives it a genuine group-wide risk picture rather than a consolidation of individual entity summaries.
The relationship between the holding board and the operating bank's board requires explicit governance documentation — typically a Group Governance Charter that sets out respective mandates, reserved matters, escalation protocols and information flows. FINMA will expect to see this documentation and to understand how it operates in practice.
Element 2 — Integrated risk and capital reporting
The technical challenge of producing consolidated risk and capital reporting is real, but it is ultimately an information architecture problem with known solutions. The prerequisite is a data governance framework that establishes common definitions, common measurement methodologies, and common reporting timelines across all in-scope entities. Without definitional consistency at the data layer, consolidated reporting will be internally inconsistent regardless of the sophistication of the aggregation tools applied on top.
In practice, most Swiss private banking groups cannot achieve full data harmonisation in the short term — the legacy system landscape is too heterogeneous and the cost of core banking consolidation too high. The practical alternative is a consolidated reporting layer that sits above the entity systems, applies consistent adjustments and eliminations, and produces the integrated view that FINMA requires. This layer must be governed as a critical infrastructure — with documented methodology, independent validation, and clear accountability for its integrity.
Capital reporting at the consolidated level must address both regulatory capital ratios and the practical question of capital mobility. A group that carries surplus capital at the holding level but faces regulatory or structural barriers to downstreaming it to an operating entity has a capital adequacy problem that the headline consolidated ratio will not reveal. Stress testing for capital adequacy must therefore incorporate transfer constraints explicitly.
Element 3 — Intra-group transaction governance
Intra-group transactions — funding lines, service level agreements, cost allocation arrangements, guarantee structures, intra-group lending — represent some of the most significant governance risks in a consolidated group. They can create hidden concentrations, transfer risk across entity boundaries in ways that are invisible to entity-level supervision, and generate conflicts of interest between minority shareholders of subsidiaries and the group parent.
Effective intra-group transaction governance requires a documented Related Party Transaction Policy that defines what constitutes an intra-group transaction, establishes approval thresholds and processes, requires arm's-length pricing with independent verification, and mandates disclosure to the relevant boards and — where required — to FINMA. All existing intra-group arrangements should be reviewed against this policy and documented in a central register.
The FINMA supervisory dialogue: what to expect
FINMA's approach to consolidated supervision is risk-based and iterative. The regulator will typically begin a consolidated supervision relationship by requesting a comprehensive group structure overview — legal entity chart, ownership structure, regulatory status of each entity, and the basis for the consolidation perimeter. This initial request is an assessment exercise: FINMA is forming a view of the group's self-awareness and governance maturity.
Institutions that approach this initial exchange with a well-prepared, internally consistent group documentation package signal to FINMA that consolidated supervision is genuinely embedded in their governance. Institutions that produce incomplete, inconsistent or clearly reactive documentation signal the opposite — and invite more intensive supervisory engagement.
Subsequent supervisory dialogue will typically focus on capital adequacy at the consolidated level, the quality of group-level risk reporting, the governance of significant intra-group transactions, and — increasingly — the group's approach to consolidated operational resilience, including IT risk and third-party dependencies across the group perimeter.
FINMA's consolidated supervision framework is not static. The regulator's expectations have evolved materially over the past decade — towards more granular consolidated risk reporting, stronger group-level governance, and more explicit treatment of operational and IT risk at the consolidated level. Institutions that designed their consolidated governance frameworks five or more years ago and have not reviewed them since are likely operating with frameworks that no longer fully meet current supervisory expectations. A structured gap assessment against current FINMA guidance is a worthwhile investment for any group that has not recently conducted one.
Board implications: what directors need to understand
Consolidated supervision is ultimately a board-level responsibility. The holding board — or, in groups without a separate holding structure, the parent bank's board — bears personal accountability for ensuring that the group is managed and supervised on a consolidated basis in accordance with FINMA's requirements. This accountability cannot be delegated to management.
In practice, many board members of Swiss private banking holding companies have limited familiarity with the consolidated supervision framework and its specific obligations. They are experienced bankers, lawyers, or business leaders — but the technical requirements of FINMA's consolidated supervisory regime are not intuitive, and the gap between formal board accountability and substantive board understanding is one of the most significant governance risks in this space.
The minimum that every holding board member should understand includes: the scope of the group's supervisory perimeter and the basis on which it is defined; the key metrics in the consolidated capital and liquidity report and what they mean; the principal intra-group exposures and the governance arrangements that manage them; and the escalation pathway for regulatory incidents at subsidiary level to the group board.
This is not a counsel of perfection. It is a description of the minimum knowledge required to exercise genuine oversight — which is what FINMA, and the law, expects.
Conclusion: from compliance exercise to governance discipline
Group consolidated supervision will continue to intensify as a supervisory priority for FINMA. The regulator's resourcing of consolidated supervision, its increasing use of on-site inspections at the group level, and its growing focus on cross-border risk management all point in the same direction. For Swiss private banking groups, the question is not whether to invest in consolidated governance — it is whether to invest proactively or reactively.
The institutions that will manage this well are not necessarily those with the largest compliance budgets or the most sophisticated risk systems. They are those whose boards have genuinely internalised the consolidated supervision obligation, whose governance architecture gives effect to group-level oversight rather than merely describing it, and whose risk and capital reporting gives management and the board a true picture of the group's position — not just a regulatory submission.
The practical starting point for any group that has doubts about the adequacy of its consolidated supervision framework is a structured self-assessment: map the supervisory perimeter, review the governance documentation, stress-test the capital and liquidity reporting, and audit the intra-group transaction register. The gaps this exercise reveals are almost always manageable — but they need to be identified before FINMA identifies them first.