What is ESMA securitisation reporting?

Under the EU Securitisation Regulation (EUSR, Regulation 2017/2402), originators and sponsors of EU securitisations must report loan-level data and transaction documents to an ESMA-registered securitisation repository. ESMA specifies the data templates (XML and CSV formats) for each asset class — RMBS, Auto ABS, Consumer ABS, SME loans, CMBS, and CLOs. The requirement applies to all public and private securitisations issued after January 2019.

What is STS securitisation and what are the disclosure requirements?

STS (Simple, Transparent, and Standardised) is a label under the EUSR that grants preferential regulatory capital treatment to qualifying securitisations. To obtain STS designation, a transaction must meet criteria across simplicity (true sale, no resecuritisation), transparency (full loan-level data disclosure, investor reports), and standardisation (standardised eligibility criteria, risk retention). STS notification must be submitted to ESMA and the national competent authority.

Which entities are responsible for ESMA reporting?

The originator (the entity that originally created the assets), the sponsor (typically the bank arranging an ABCP conduit), or the SSPE (Special Purpose Vehicle issuer) may be responsible for reporting, depending on the transaction structure. In practice, the transaction parties appoint a reporting entity — often the administrator, servicer, or a specialist reporting agent — to handle the technical upload to the repository (e.g. ESMA's SECCO or a commercial repository).

How does ESMA securitisation reporting differ from US SEC ABS reporting?

The US SEC's Regulation AB II (for public ABS) requires prospectus-level asset disclosure and ongoing 10-D/10-K reporting, but applies only to publicly registered offerings. Most US private securitisations are exempt. ESMA's regime applies to both public and private EU securitisations and uses standardised machine-readable templates. The EU framework is generally more prescriptive on field-level data quality; the US system allows more flexibility in narrative disclosure formats.

ESMA Securitisation Reporting | Loan-Level Templates & STS Disclosure

The ESMA Reporting Regime

ESMA's securitisation disclosure framework requires originators, sponsors, and SSPEs to submit granular loan-level data to registered repositories. For compliance teams, this means wrestling with detailed templates, strict validation rules, and regular submission deadlines.

The EU Securitisation Regulation (Regulation (EU) 2017/2402) introduced comprehensive disclosure requirements designed to give investors standardised access to underlying asset data. Whether a securitisation qualifies as Simple, Transparent and Standardised (STS) or not, the reporting obligations apply—though STS transactions face additional disclosure requirements.

The operative EU framework is EU 2020/1224 (RTS) and EU 2020/1225 (ITS), binding since 2021. April 2024 was a technical update to validation rules only, not a new framework.

Definition

Securitisation Repository (SR)

An ESMA-registered entity that collects, maintains, and disseminates securitisation data. Only two ESMA-registered securitisation repositories currently operate: EuroDW and SecRep B.V. Originators submit loan-level data and transaction documentation to the SR, which makes it available to investors, supervisors, and other authorised parties via ESMA's DESK portal. Repository choice is made at transaction registration and cannot be changed mid-deal without regulatory notification.

The regime applies to both public and private securitisations, though private transactions have some reporting flexibilities. For ABF practitioners, understanding these requirements matters even for warehouse facilities—as assets eventually moving to public markets need data captured in the required format from origination.

Reporting isn't just about compliance—it's about data architecture. Teams that build ESMA-compliant data capture into their origination systems have a permanent advantage over those retrofitting data for each securitisation.

Who Reports What

Party	Primary Responsibility	Key Submissions
Originator	Loan-level data accuracy	Asset templates, investor reports
Sponsor	Overall reporting compliance	Transaction documents, liability templates
SSPE	Structural information	Inside information, significant events
Reporting Entity	Designated submitter	All templates on behalf of parties

Article 5 Investor Due Diligence

The EU Securitisation Regulation imposes symmetrical obligations on institutional investors (Article 5) — they must verify access to all required disclosures before investing and perform ongoing monitoring. This investor-side due diligence obligation mirrors the issuer's disclosure duty.

STS Disclosure Requirements

Simple, Transparent and Standardised (STS) securitisations enjoy preferential regulatory capital treatment but face enhanced disclosure requirements. The “STS notification” submitted to ESMA includes detailed confirmations that specific criteria are met.

The STS Framework

Simple

• True sale of assets
• Homogeneous asset pool
• No active portfolio management
• Clear credit granting standards
• No re-securitisation

Transparent

• Historical performance data
• Liability cash flow model
• Environmental impact disclosure
• Verification before pricing
• Clear documentation

Standardised

• Risk retention compliance
• Mitigation of interest rate/FX risk
• Referenced interest payments
• Sequential amortisation (post-call)
• No tranche maturity extensions

STS Notification Content

The STS notification is a detailed document confirming compliance with each criterion. For each requirement, the notification must explainhow the transaction meets it—not merely assert that it does.

STS Notification Elements (Illustrative)

True saleLegal opinion confirming transfer of title, bankruptcy remoteness analysis, accounting treatment as derecognition

HomogeneityAsset type classification, confirmation all assets originated under consistent underwriting standards

Credit grantingDescription of originator credit policy, verification of borrower ability to pay, documentation of underwriting standards

Risk retentionIdentification of retention holder, form of retention (vertical/horizontal/etc), ongoing holding commitment

Historical dataStatic pool performance data, loss curves by vintage, prepayment behaviour, minimum data history (5 years for non-retail)

Third-Party Verification

While not mandatory, originators may engage an authorised third-party verifier to confirm STS compliance. This provides investors with independent assurance and can support marketing. However, the originator/sponsor remains responsible for STS status—verification does not shift liability.

For STS securitisations, issuers may engage a Third-Party Verifier (TPV) registered with ESMA to independently confirm STS compliance. TPVs include Kroll and STS Verification International. The ESMA Peer Review (March 2025) flagged NCAs for over-reliance on TPV attestations without independent verification.

Synthetic STS notifications are submitted via email to STSnotifications@esma.europa.eu — there is no automated portal for synthetic STS as there is for traditional STS notifications.

STS Status Can Be Lost

If a transaction no longer meets STS criteria—for example, due to material changes in the asset pool or structural features—the originator must notify ESMA and investors. Loss of STS status affects investor regulatory capital treatment and can trigger repricing or investor exits.

Loan-Level Data Templates

ESMA's loan-level templates are the core of securitisation reporting. Each asset class has its own template with hundreds of fields covering borrower information, loan terms, collateral details, and performance data.

Template Categories

The templates are organised by underlying asset type. Each template reflects the specific data points relevant to that asset class, though they share common structural elements.

RMBS~300 fields

Residential Mortgages

LTV, property value, borrower income, interest rate type, regional identifiers

AUTO~250 fields

Auto Loans & Leases

Vehicle make/model, new vs used, lease vs loan, balloon payment, residual value

CONS~200 fields

Consumer Loans

Loan purpose, employment status, debt-to-income, payment method, channel

SME~280 fields

SME Loans

Company size, NACE code, guarantees, relationship tenure, facility type

CMBS~320 fields

Commercial Mortgages

Property type, tenant info, DSCR, occupancy, lease terms, capex reserves

ESOT~180 fields

Esoteric / Other

Flexible template for trade receivables, equipment leases, infrastructure, other

Field Categories Within Templates

Asset Identification

Unique identifiers, pool cut-off date, origination date, currency, original and current balance. These fields link the loan to the transaction and establish basic parameters.

Borrower Information

Employment status, income, debt ratios, geographic location (regional, not individual addresses), credit score at origination. Anonymised to protect personal data.

Loan Terms

Interest rate (fixed/floating), margin, reference rate, payment frequency, maturity, amortisation type, prepayment provisions, fees.

Collateral Details

For secured assets: property/vehicle/equipment description, valuation, valuation date, LTV calculation, insurance status. Varies significantly by asset class.

Performance Data

Current arrears status, number of days past due, cumulative prepayments, loss amounts, recovery amounts. Updated with each reporting period.

Special Situations

Modifications, forbearance, legal proceedings, workout status. Critical for tracking credit deterioration and resolution outcomes.

Template Updates

ESMA periodically updates templates to reflect market developments and supervisory experience. Template changes typically have transition periods, but implementing new fields can require significant IT development—especially if the required data wasn't captured at origination.

Recent Template Additions

Recent updates have added fields for: ESG-related data (energy efficiency for RMBS, emissions for Auto), COVID-related forbearance tracking, and enhanced borrower vulnerability indicators. These reflect regulatory priorities around sustainability and consumer protection.

ESMA's February 2025 consultation proposed a simplified private securitisation template (Annex XVI) for transactions not publicly marketed. As of March 2026, this has not yet been adopted — this remains forthcoming.

XML & CSV Formats

Submissions to securitisation repositories can be made in XML or CSV format. Each has trade-offs, and the choice often depends on originator systems capabilities and volume.

XML Format

Structured & Validated

•Self-describing with schema validation
•Handles complex nested structures
•Native support for special characters
•Larger file sizes, more verbose
•Requires XML-capable systems

CSV Format

Simple & Compact

Easy to generate from spreadsheets
Smaller file sizes
Widely supported by basic tools
Simpler debugging and inspection
Encoding issues with special characters

XML Schema Structure

ESMA publishes XML schemas (XSD files) defining the exact structure required. Submissions must validate against these schemas before the repository accepts them. The mandatory XML schema version is v1.3.1 (required since September 1, 2021). Issuers must use this specific schema for all loan-level data submissions.

<SecuritisationData>
  <Header>
    <ReportingEntity>LEI_CODE_HERE</ReportingEntity>
    <SecuritisationIdentifier>ISIN/UTI</SecuritisationIdentifier>
    <ReportingDate>2026-01-15</ReportingDate>
    <DataCutOffDate>2025-12-31</DataCutOffDate>
  </Header>
  <UnderlyingExposures>
    <Exposure>
      <ExposureIdentifier>LOAN001</ExposureIdentifier>
      <OriginalBalance>250000.00</OriginalBalance>
      <CurrentBalance>237500.00</CurrentBalance>
      <InterestRateType>FLOATING</InterestRateType>
      <!-- ... 200+ more fields ... -->
    </Exposure>
    <!-- ... additional exposures ... -->
  </UnderlyingExposures>
</SecuritisationData>

CSV Field Mapping

CSV submissions use a flat file structure with specific column ordering. The repository provides mapping documents showing which column corresponds to which template field.

CSV Header Row (Consumer Loan Template - First 10 Fields)

EXPOSURE_ID,ORIGINATOR_ID,ORIGINAL_BALANCE,CURRENT_BALANCE,CURRENCY,ORIGINATION_DATE,MATURITY_DATE,INTEREST_RATE_TYPE,INTEREST_RATE,BORROWER_REGION

Common Pain Points

ESMA reporting looks straightforward on paper but creates operational challenges in practice. Teams new to securitisation reporting consistently encounter the same obstacles.

Template Complexity

Field Count Overwhelm

Templates contain 200-300+ fields, many with subtle interdependencies. Teams often underestimate the mapping effort required to connect origination systems to template fields. A single RMBS template field like “Interest Rate Reset Frequency” might require logic combining multiple source system fields.

Conditional Logic

Many fields are conditionally required based on other field values. “If Interest Rate Type = FLOATING, then Reference Rate is mandatory.” These dependencies create complex validation rules that simple spreadsheet approaches cannot handle reliably.

Enumeration Constraints

Fields with enumerated values (e.g., Employment Status must be EMPL, SEMP, UNEM, RETD, etc.) require exact matches. Internal systems using “Employed” or “Full-time” need translation layers. New origination products may not fit existing enumerations.

Validation Errors

Repository validation catches data quality issues before submission is accepted. Common validation failures include:

Schema Validation Failure

Cause: XML structure doesn't match XSD, missing required elements

Fix: Use schema-aware XML editors, validate locally before submission

Cross-Field Validation

Cause: Maturity date before origination date, LTV > 100% without explanation

Fix: Build validation rules into extraction logic, add business logic checks

Referential Integrity

Cause: Exposure ID in liability template doesn't match asset template

Fix: Generate files from single source, implement ID matching checks

Threshold Breaches

Cause: Too many ND values, excessive outliers in numeric fields

Fix: Improve source data capture, investigate genuine outliers

Data Mapping Challenges

Historical Data Gaps

ESMA fields may require data not captured at loan origination. Retrofitting is expensive or impossible—you cannot reconstruct a borrower's employment status at origination if it was never recorded.

System Fragmentation

Loan data lives across multiple systems: origination, servicing, collections, accounting. Assembling a complete template record requires integration across systems that may not share common identifiers.

Definition Mismatches

Internal definitions may not align with ESMA specifications. "Current Balance" might mean different things in accounting vs servicing systems, neither matching the ESMA definition precisely.

Timing Differences

Templates require point-in-time snapshots, but source systems may only store current state. Reconstructing historical performance data for mid-period cut-offs requires careful temporal logic.

The Retrofit Trap

Many originators attempt their first ESMA submission by retrofitting data from existing systems. This works once—painfully. Sustainable compliance requires redesigning data capture at origination to match template requirements from day one.

Reporting Timeline & Deadlines

ESMA reporting follows a regular cadence, with different deadlines for initial disclosure and ongoing reporting. Missing deadlines can affect STS status and trigger supervisory scrutiny.

Initial Reporting

Before Pricing

Loan-level data (draft)

Made available to potential investors before pricing for due diligence. May be via data room or preliminary SR submission.

Transaction documentation

Prospectus, offering circular, transaction summary. For STS, includes the STS notification.

At/After Closing

Final loan-level data

Complete template submission reflecting final pool composition. Due within 15 days of closing.

Investor report

Initial investor report with pool stratifications, structural features, key metrics.

Ongoing Reporting

Report Type	Frequency	Deadline	Content
Loan-level data	Quarterly (minimum)	1 month after period end	Updated performance, new/redeemed assets
Investor report	Monthly/Quarterly	Per transaction documents	Collections, losses, triggers, tests
Inside information	Event-driven	Without delay	Material events affecting transaction
Significant events	Event-driven	Without delay	Breaches, amendments, rating changes

EU, UK & US Reporting Compared

Issuers with cross-border programmes must navigate EU, UK, and US disclosure regimes. While all three aim to provide investors with loan-level data, the approaches differ significantly.

Key Differences

Aspect	EU (ESMA / SR 2017/2402)	UK (FCA SECN + PRA PS7/24)	US (SEC Reg AB II)
Effective Date	Since 2021 (RTS/ITS)	November 1, 2024 (PS7/24)	Ongoing (Reg AB II 2014)
Repository	EuroDW or SecRep B.V. (ESMA-registered)	FCA-registered repository (EDW for most)	EDGAR (SEC filing system)
Format	XML v1.3.1 or CSV per ESMA templates	Largely aligned with ESMA templates (CP26/6 proposes principles-based divergence)	XML per SEC Asset Data File specs
Timing	Before pricing + ongoing quarterly	Before pricing + ongoing quarterly	At offering + ongoing with Form 10-D
Scope	All EU securitisations (public & private)	UK securitisations under UK Securitisation Regulation 2024	Public ABS offerings (Reg AB II)
Verification	Third-party STS verification (optional TPV)	UK STS framework (UKETS); FCA-registered TPVs	CEO certification of disclosure

UK Divergence: FCA CP26/6

FCA CP26/6 (February 2026) proposes removing prescribed loan-level data templates for UK securitisations entirely, replacing them with a principles-based approach — a significant UK-EU divergence affecting dual-market issuers. If adopted, issuers operating in both markets will need separate data architectures rather than a single aligned framework.

Practical Implications

Dual Compliance Burden

Cross-border issuers cannot use a single report for both regimes. Field definitions, formats, and timing differ. This typically means maintaining parallel reporting processes and system extracts.

Data Architecture Opportunity

A unified data warehouse capturing all required fields for all regimes, with format-specific export layers, reduces duplication. Invest in the underlying data model, not just compliance outputs.

Regulatory reporting is converging conceptually—both regimes want granular loan-level data available to investors. The operational complexity lies in the details: different field definitions, different formats, different submission mechanisms.

Building Reporting Capability

ESMA securitisation reporting is a significant operational commitment. Teams that treat it as a compliance checkbox will struggle with each submission. Those that build robust data architecture and automated processes create sustainable advantage.

Keys to Success

Data Architecture:

• Capture ESMA fields at origination
• Build unified data model for all templates
• Implement temporal data for point-in-time
• Automate validation before submission

Process:

• Assign clear reporting ownership
• Build validation into production flow
• Maintain test submissions between deals
• Track template changes proactively

For related context on securitisation structures, see our Securitisation Fundamentals guide. For understanding the waterfall mechanics that investor reports must explain, explore our Waterfall Structures deep dive.

The ESMA Reporting Regime

Securitisation Repository (SR)

Who Reports What

Article 5 Investor Due Diligence

STS Disclosure Requirements

The STS Framework

Simple

Transparent

Standardised

STS Notification Content

STS Notification Elements (Illustrative)

Third-Party Verification

STS Status Can Be Lost

Loan-Level Data Templates

Template Categories

Residential Mortgages

Auto Loans & Leases

Consumer Loans

SME Loans

Commercial Mortgages

Esoteric / Other

Field Categories Within Templates

Asset Identification

Borrower Information

Loan Terms

Collateral Details

Performance Data

Special Situations

Template Updates

Recent Template Additions

XML & CSV Formats

Structured & Validated

Simple & Compact

XML Schema Structure

CSV Field Mapping

Common Pain Points

Template Complexity

Field Count Overwhelm

Conditional Logic

Enumeration Constraints

Validation Errors

Data Mapping Challenges

Historical Data Gaps

System Fragmentation

Definition Mismatches

Timing Differences

The Retrofit Trap

Reporting Timeline & Deadlines

Initial Reporting

Before Pricing

At/After Closing

Ongoing Reporting

EU, UK & US Reporting Compared

Key Differences

UK Divergence: FCA CP26/6

Practical Implications

Dual Compliance Burden

Data Architecture Opportunity

Building Reporting Capability

Keys to Success

Further Reading

Loan-Level Data Templates

RMBS Templates (Annexes 2 & 11)

Auto Loan & Lease Templates (Annexes 4 & 13)

Consumer Loan Templates (Annexes 5 & 14)

SME Loan Templates (Annexes 6 & 15)

Credit Card Templates (Annexes 7 & 16)

Leasing Templates (Annexes 8 & 17)

ESMA Official Resources

Securitisation Disclosure Technical Standards

European DataWarehouse (EDW)

Securitisation Regulation (EU) 2017/2402

ESMA Peer Review on Securitisation Disclosure

Legal & Advisory

EU Securitisation Regulation: Disclosure and Due Diligence

STS Verification: Market Practice and Pitfalls

Rating Agencies

European Structured Finance Data Quality

EU Securitisation Disclosure Framework

UK Regulatory Resources