![x [OR] [CBC] Title Banner](https://no-cache.hubspot.com/cta/default/3893111/2469e9c7-8c26-46be-a40f-832d893e9227.png)
![x [PH] [CBC] Logo](https://no-cache.hubspot.com/cta/default/3893111/450424e7-f0ae-4e04-af63-6591ae4ec2a7.png)
![x [OR] [CBC] Legal Disclaimer Banner](https://no-cache.hubspot.com/cta/default/3893111/2dcb376b-223f-4162-a06a-b8712ddcf5ff.png)
CBS-1 Deposit & Account Services
Introduction
![[OR] [BDO] [PH] [E3] [CBS] [1] [ITo] Retail Deposit & Account Services](https://no-cache.hubspot.com/cta/default/3893111/646bc62a-7023-4544-894f-67ccff7ae379.png)
China Banking Corporation (Chinabank) is a long-established Philippine bank founded in 1920, with a nationwide branch, ATM, and digital banking footprint. That operating model means the bank’s deposit and account services depend on a blend of branch operations, digital channels, core banking, payments connectivity, fraud controls, reconciliation, and recovery capability.
Under BSP Circular No. 1203, a Philippine bank must identify its critical operations, set a clearly defined
tolerance for disruption for each of them, and use both quantitative and qualitative metrics.
The BSP says those metrics must include, at a minimum, a time-based measure, and should also consider factors such as the number of affected customers and the volume and value of affected transactions. The Circular also requires tolerances to be tested against severe but plausible scenarios and reviewed and approved by the board.
The BCM Institute guidance is consistent with this approach.It defines impact tolerance as the maximum tolerable level of disruption to a critical business service and recommends setting tolerances with stakeholders, considering downtime, data loss, customer impact, financial loss, and regulatory requirements, then documenting and periodically reviewing them. It also distinguishes impact tolerance from a traditional recovery time objective because impact tolerance is outcome-based, not merely time-based.
Accordingly, the table below provides a practical impact-tolerance summary for Chinabank’s CBS-1 Deposit and Account Services.
The values are illustrative target tolerances for operational resilience planning and testing; they should be calibrated by Chinabank using actual customer volumes, risk appetite, system architecture, regulatory obligations, and board-approved thresholds.
![Banner [Table] [OR] [E3] Establish Impact Tolerance](https://no-cache.hubspot.com/cta/default/3893111/627c33a8-714d-40af-9a2b-0d7957fb8afa.png)
Table P4: Establish Impact Tolerance for CBS-1
|
Sub-CBS Code |
Sub-CBS |
Maximum Tolerable Downtime (MTD) |
Maximum Tolerable Data Loss (MTDL) |
Customer Impact |
Regulatory Impact |
Impact Type |
Current Resilience Status |
Action Required |
|
1.1 |
Customer Onboarding and Account Application |
8 hours |
Near-zero; no loss of submitted application records |
Medium: delayed new account acquisition, branch/digital queues increase |
Moderate: onboarding delays may affect service commitments and complaints handling |
Customer / Operational / Reputational |
Partially resilient |
Maintain alternate branch/manual intake, queue controls, and digital failover for application capture |
|
1.2 |
Customer Identification and Verification (KYC/CDD) |
4 hours |
Zero loss of identity and due-diligence records |
High: customers cannot be onboarded or updated |
High: AML/CFT and customer due-diligence obligations are directly affected |
Regulatory / Compliance / Customer |
Partially resilient |
Strengthen document-image retention, verification workflow resilience, and fallback procedures for screening and validation |
|
1.3 |
Account Approval and Opening |
4 hours |
Near-zero; no loss of approval/audit trail |
High: inability to open accounts blocks customer access to banking |
High: account opening control failures may create compliance breaches |
Customer / Regulatory / Operational |
Partially resilient |
Ensure maker-checker fallback, workflow recovery, and audit-log integrity |
|
1.4 |
Initial Funding and Deposit Booking |
2 hours |
Zero for posted funding transactions |
High: customer funds may be uncredited or delayed |
High: inaccurate posting may affect books, complaints, and prudential reporting |
Financial / Customer / Regulatory |
Needs strengthening |
Tighten real-time posting recovery, suspense-account rules, and reconciliation triggers |
|
1.5 |
Product Terms Setup and Account Parameter Maintenance |
1 business day |
Near-zero; parameter changes must be fully logged |
Medium: wrong features, limits, or pricing could affect customers |
High: pricing/terms misconfiguration may create compliance and conduct issues |
Regulatory / Conduct / Operational |
Partially resilient |
Enforce configuration control, versioning, rollback, and approval governance |
|
1.6 |
Deposit Transactions Processing |
2 hours |
Zero for ledger-impacting transactions |
Very high: customers cannot deposit, transfer internally, or update balances reliably |
High: transaction disruption affects critical operations and service continuity expectations |
Customer / Financial / Systemic / Reputational |
Material service criticality |
Prioritize active-active/rapid failover, transaction replay, and channel prioritization |
|
1.7 |
Withdrawal and Funds Access Processing |
1 hour |
Zero for withdrawal/debit transactions |
Very high: customers lose access to funds, causing immediate harm |
Very high: prolonged loss of funds access may trigger complaints, regulatory escalation, and market confidence issues |
Customer / Financial / Liquidity / Reputational |
Critical |
Strengthen ATM/branch/channel fallback, cash contingency, and authorization resilience |
|
1.8 |
Account Servicing and Customer Maintenance |
8 hours |
Near-zero; profile and maintenance changes must not be lost |
Medium to high: customers cannot update details, limits, mandates, or service instructions |
Moderate to high: inaccurate customer records may create compliance and service issues |
Customer / Regulatory / Operational |
Partially resilient |
Improve workflow recovery for customer maintenance and preserve change history |
|
1.9 |
Interest, Fees, and Charges Processing |
1 business day |
Near-zero; calculation inputs and outputs must be recoverable |
Medium: delayed or incorrect charges/interest cause dissatisfaction and remediation |
High: miscalculation can create conduct, disclosure, and financial reporting issues |
Financial / Conduct / Reputational |
Partially resilient |
Enhance batch recovery, recalculation capability, and post-run validation controls |
|
1.10 |
Statement, Passbook, and Balance Reporting |
1 business day |
Low tolerance for loss of reporting data snapshots |
Medium: reduced transparency and higher call-center demand |
Moderate: delayed statements/reporting may affect disclosure obligations and complaint handling |
Customer / Regulatory / Reputational |
Generally resilient |
Provide alternate balance inquiry channels and resilient statement-generation processes |
|
1.11 |
Digital Account Access and Channel Integration |
1 hour |
Zero for authenticated customer transactions; minimal loss for session data |
Very high: customers cannot view balances or access accounts digitally |
High: prolonged channel outage affects critical operations and customer harm thresholds |
Customer / Reputational / Operational |
Critical |
Improve channel redundancy, identity/authentication resilience, and degraded-mode operations |
|
1.12 |
Reconciliation and Exception Management |
End of day |
Zero loss of recon and exception records |
Medium initially, but high if unresolved because errors accumulate |
Very high: unresolved breaks can lead to inaccurate books, reporting issues, and control failures |
Financial / Regulatory / Operational |
Needs strengthening |
Automate exception capture, recovery queues, and escalation before end-of-day deadlines |
|
1.13 |
Fraud Detection and Transaction Monitoring |
30 minutes for monitoring degradation; 2 hours max for full restoration |
Zero loss of fraud alerts/case data |
Very high: fraud losses and customer harm may escalate rapidly |
Very high: control failure affects fraud, AML, and operational risk expectations |
Financial Crime / Customer / Regulatory |
Critical |
Protect real-time alerting, alternate detection rules, and case-management continuity |
|
1.14 |
Regulatory Reporting and Compliance Monitoring |
As required by filing deadline; internal recovery target 4 hours for critical monitoring functions |
Zero loss of compliance evidence and report data |
Indirect customer impact, but high enterprise impact |
Very high: missed or inaccurate regulatory submissions may lead to sanctions or supervisory findings |
Regulatory / Compliance / Reputational |
Partially resilient |
Ensure evidence retention, reporting lineage, and fallback reporting procedures |
|
1.15 |
Incident Response, Business Continuity, and Service Recovery |
Immediate activation; crisis command within 15 minutes |
Zero loss of incident logs, decision records, and recovery actions |
Enterprise-wide impact if delayed, as all other sub-CBS recovery worsens |
Very high: poor response undermines ability to remain within tolerance across critical operations |
Governance / Operational / Reputational |
Foundational but must be continuously tested |
Maintain tested incident playbooks, succession rules, communications, and recovery orchestration |
Regulatory Requirements and Philippine Banking Examples
BSP Circular No. 1203 is clear that banks must identify critical operations proportionate to their size and complexity, then use those identified operations to drive later steps, such as setting tolerance for disruption and mapping interconnections and interdependencies. For CBS-1 Deposit and Account Services, that means Chinabank should not set one generic tolerance for the whole service; it should set more granular tolerances for sub-services such as withdrawals, transaction processing, KYC, fraud monitoring, and reconciliation.
The Circular also says tolerances should include at least a time-based metric, but should not stop there. Banks should also consider the maximum number of customers affected and the volume and value of transactions affected by the disruption.
That is why sub-CBS, such as 1.6 Deposit Transactions Processing, 1.7 Withdrawal and Funds Access Processing, and 1.11 Digital Account Access and Channel Integration, are assigned tighter tolerances than statement production or product-parameter maintenance. These services can cause faster and broader customer harm if disrupted.
The BSP further requires banks to test tolerance levels against severe but plausible scenarios. The Circular gives examples such as pandemics, natural calamities, failure of key service providers, and major cyber incidents. For a Philippine bank, this means the proposed tolerances for CBS-1 should be validated through exercises such as branch unavailability, core banking degradation, telecom outage affecting digital banking, ATM/network failure, third-party KYC or fraud-tool outage, and cyberattack on customer channels.
Another important BSP requirement is dependency management. The Circular says third-party arrangements affecting critical operations must specify how service will be maintained during disruption or how exit/alternative arrangements will work, and that banks must also assess dependencies on public infrastructure such as telecommunications, transportation, and energy. For Chinabank’s retail deposit service, this strongly supports tighter resilience expectations for digital channels, withdrawals, fraud monitoring, and reconciliation because these areas are especially sensitive to telecom, power, network, and vendor disruption.
Finally, BSP requires the board to review, challenge, and approve both the criteria for identifying critical operations and the criteria for setting tolerance for disruption. Senior management must also communicate resource and capability gaps so that investment priorities can be decided. In practice, any “Current Resilience Status” marked as partial or needing strengthening should feed directly into Chinabank’s remediation roadmap, funding decisions, and testing plan.
![Banner [Summing] [OR] [E3] Establish Impact Tolerance](https://no-cache.hubspot.com/cta/default/3893111/5e80e50f-5e3e-44ea-8c43-16bf42d4f3b5.png)
Setting impact tolerance for CBS-1 Deposit and Account Services is not a documentation exercise; it is the point where Chinabank translates operational resilience principles into measurable service expectations. The most time-sensitive sub-CBS are those that affect customers’ immediate access to funds, transaction processing, digital access, and fraud controls.
These therefore, warrant the tightest tolerances, near-zero data-loss expectations, and the fastest recovery capabilities.
By contrast, supporting processes such as statements, parameter maintenance, or some servicing functions may accept slightly longer disruption windows, provided they remain within regulatory, conduct, and customer-harm limits.
This tiered approach is aligned with BSP Circular No. 1203, which expects banks to use proportionate, outcome-based tolerances, test them under severe but plausible scenarios, and improve resilience where testing shows weakness.
For Chinabank, the next step after agreeing on these draft tolerances is to validate them against actual business volumes, service-level expectations, branch and digital-channel capacity, third-party dependencies, and board-approved risk appetite.
Once validated, these tolerances should become the basis for scenario testing, investment prioritisation, recovery design, and management reporting for CBS-1.
![x [OR] [BDO] Title Banner](https://no-cache.hubspot.com/cta/default/3893111/7cd9fce2-f5ee-45d0-8b58-a9d11edd3e9c.png)
![[OR] [BDO] [PH] [E3] [CBS] [1] [DP] Retail Deposit & Account Services](https://no-cache.hubspot.com/cta/default/3893111/9ecaf9a8-a1b1-4d8c-ba7e-a7f2126a3f9e.png)
![[OR] [BDO] [PH] [E3] [CBS] [1] [MD] Retail Deposit & Account Services](https://no-cache.hubspot.com/cta/default/3893111/cc58e114-abef-4c4c-8473-5951e6953aa9.png)
![[OR] [BDO] [PH] [E3] [CBS] [1] [MPR] Retail Deposit & Account Services](https://no-cache.hubspot.com/cta/default/3893111/23a5f245-0677-4aea-8a05-e4ced3a69fcd.png)
![[OR] [BDO] [PH] [E3] [CBS] [1] [SuPS] Retail Deposit & Account Services](https://no-cache.hubspot.com/cta/default/3893111/67e25ae3-3c4e-48d0-b6e7-ea5718dfa802.png)
![[OR] [BDO] [PH] [E3] [CBS] [1] [ST] Retail Deposit & Account Services](https://no-cache.hubspot.com/cta/default/3893111/e14ff2a1-48f2-4cd3-9924-d72a7bf84794.png)
Gain Competency: For organisations looking to accelerate their journey, BCM Institute’s training and certification programs, including the OR-5000 Operational Resilience Expert Implementer course, provide in-depth insights and practical toolkits for effectively embedding this model.
More Information About OR-5000 [OR-5] or OR-300 [OR-3]
To learn more about the course and schedule, click the buttons below for the OR-300 Operational Resilience Implementer course and the OR-5000 Operational Resilience Expert Implementer course.
![[BL-OR] [3-4-5] View Schedule](https://no-cache.hubspot.com/cta/default/3893111/d0d733a1-16c0-4b68-a26d-adbfd4fc6069.png)
![[BL-OR] [3] FAQ OR-300](https://no-cache.hubspot.com/cta/default/3893111/f20c71b4-f5e8-4aa5-8056-c374ca33a091.png)
![Email to Sales Team [BCM Institute]](https://no-cache.hubspot.com/cta/default/3893111/3c53daeb-2836-4843-b0e0-645baee2ab9e.png)
