Regulatory Alerts2022-01-01
Circular No. 22/2022: Access Control to Credit Information Systems
The Palestine Monetary Authority issued Circular No. 22/2022 mandating enhanced security protocols for bank access to credit information systems, effective June 12, 2022. The directive requires institutions to implement continuous email-based authentication codes valid for three minutes, enforce mandatory password changes every 60 days with strict complexity rules, and configure automatic session locks after twenty minutes of inactivity. Additionally, banks must suspend accounts after five failed login attempts, require explicit logout procedures, and instruct all users to clear browser data upon implementation.
Share