Report 867ee07c

Summary

Croatian fintech regulation is defined by a dual-regulatory framework overseen by the Croatian National Bank (HNB/CNB) and the Croatian Financial Services Supervisory Agency (HANFA/CFSSA). The regulatory landscape covers banking, electronic money institutions, MiFID entities, insurance, and open banking. While the framework supports innovation through dedicated hubs, it is also expanding in scope due to new cybersecurity directives like NIS2.

Key findings

• Regulatory Authorities: Oversight is split between two primary bodies:
  • Croatian National Bank (HNB/CNB): Regulates banking, payment services (including PSD2 implementation), e-money, investment funds, and open banking [https://fintechcroatia.com/regulation.html, https://www.hnb.hr/en/-/fintech-donosi-nove-proizvode-i-usluge-i-nove-regulatorne-izazove].
  • Croatian Financial Services Supervisory Agency (HANFA/CFSSA): Regulates non-bank financial markets, insurance, and specific payment services [https://fintechcroatia.com/regulation.html, https://www.hanfa.hr/en/].
• Jurisdictional Nuance: Subagent findings indicate a slight overlap or division regarding payment services; while one source attributes payment service regulation to HANFA, others specify that HNB manages banking-related payment services and PSD2 compliance [https://fintechcroatia.com/regulation.html, https://www.hnb.hr/en/-/fintech-donosi-nove-proizvode-i-usluge-i-nove-regulatorne-izazove].
• Innovation Support: The HNB operates an "Innovation Hub" designed to provide informal support, guidance, and advice regarding licensing, supervision, and oversight for developers of innovative banking or payment solutions [https://fintechhub.hnb.hr/en/, https://fintechcroatia.com/regulation.html].
• Virtual Assets and Crypto: Virtual asset service providers acting as exchanges are classified as "Obliged Entities" and are required to notify HANFA of their operations [https://fintechcroatia.com/regulation.html]. Additionally, some municipalities, such as Sveta Nedelja, have actively introduced payment services involving cryptocurrencies [https://en.split-tech-city.com/financial-technology-in-croatia/].
• Cybersecurity Compliance: The implementation of the NIS2 directive is significantly expanding regulatory and reporting obligations for an estimated 8,000 to 10,000 entities in Croatia, with a target compliance deadline of 2027 [https://copla.com/blog/compliance-regulations/nis2-directive-regulations-and-implementation-in-croatia/].

Sources

• https://fintechcroatia.com/regulation.html - Used to identify regulatory bodies, scope of regulation (MiFID, e-money), and virtual asset notification requirements.
• https://www.hanfa.hr/en/ - Used to confirm the role of HANFA in regulating non-bank financial markets.
• https://fintechhub.hnb.hr/en/ - Used to verify the purpose and existence of the HNB Innovation Hub.
• https://www.hnb.hr/en/-/fintech-donosi-nove-proizvode-i-usluge-i-nove-regulatorne-izazove - Used to confirm HNB's role in regulating banking and PSD2-related payment services.
• https://en.split-tech-city.com/financial-technology-in-croatia/ - Used to identify local cryptocurrency payment trends in Sveta Nedelja.
• https://copla.com/blog/compliance-regulations/nis2-directive-regulations-and-implementation-in-croatia/ - Used to identify the impact and timeline of NIS2 directive implementation.

Confidence

0.9

Open questions

• Specific details regarding any regulatory updates or legislative changes enacted in 2024 or later.
• Current status of active community debates or legal protests regarding specific new fintech laws.