Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
On January 22, the Financial Industry Regulatory Authority (FINRA) issued new guidance on areas member firms should consider when seeking to improve their compliance, supervisory, and risk management programs. The 2019 FINRA Risk Monitoring and Examination Priorities Letter (2019 Priorities Letter) examines both new priorities as well as areas of ongoing concern, including the adequacy of firms’ cybersecurity programs. FINRA notes, however, that the 2019 Priorities Letter does not repeat topics previously addressed in prior letters, and advises member firms that it will continue to review ongoing obligations for compliance. Topics FINRA plans to focus on in the coming year include:
- Firms’ use of regulatory technology to help compliance efforts become “more efficient, effective, and risk-based.” FINRA will work with firms to understand risks and concerns related to supervision and governance systems, third party vendor management, and safeguarding customer data;
- Supervision of digital assets, including coordinating with the SEC to review how firms determine whether a given digital asset is a security and whether firms are implementing adequate controls and supervisions related to digital assets, such as complying with anti-money laundering and Bank Secrecy Act rules and regulations;
- Assessment of firms’ compliance with FinCEN’s Customer Due Diligence rule, which requires firms to identify beneficial owners of legal entity customers (as previously covered by InfoBytes here); and
- Financial risks, including credit risks, funding and liquidity planning.
On December 17, the Financial Industry Regulatory Authority (FINRA), the Financial Crimes Enforcement Network (FinCEN), and the SEC announced separate settlements (see here, here, and here) with a global broker-dealer following investigations into the firm’s anti-money laundering (AML) programs. According to FINRA, the broker-dealer and its affiliated securities firm allegedly failed to establish and implement AML processes reasonably designed to detect and report potentially high-risk transactions, including foreign currency wire transfers to and from countries known to be at high risk for money laundering, as well as penny stock transactions processed through the use of an omnibus account on behalf of undisclosed customers. FINRA alleged that from January 2004 to April 2017, the broker-dealer “processed thousands of foreign currency wires for billions of dollars, without sufficient oversight.”
In a separate investigation conducted by FinCEN in conjunction with FINRA and the SEC, the broker-dealer reached a settlement over allegations that it failed to, among other things, (i) develop and implement a risk-based AML program that “adequately addressed the risks associated with accounts that included both traditional brokerage and banking-like services”; (ii) implement policies and procedures, which would ensure the detection and reporting of suspicious activity through all accounts, particularly for those accounts with little to no securities training; (iii) “implement an adequate due diligence program for foreign correspondent accounts”; and (iv) provide sufficient staffing, leading to a backlog of alerts and decreased ability to file suspicious activity reports (SARs).
According to the SEC's investigation, from at least 2011 to 2013, the broker-dealer allegedly failed to file SARs as required by the Bank Secrecy Act’s reporting requirements and Section 17(a) of the Securities Exchange Act of 1934. Among other things, the SEC also claimed that the broker-dealer (i) provided customers with other services, such as cross-border wires, internal transfers between accounts and check writing, which increased its susceptibility to risks of money laundering and other types of associated illicit financial activity; and (ii) “did not properly review suspicious transactions flagged by its internal monitoring systems and failed to detect suspicious transactions involving the movement of funds between certain accounts in suspicious long-term patterns.”
After factoring in remedial actions, the broker-dealer has been assessed total civil money penalties of $14.5 million, including a $500,000 fine against the securities firm.
On December 4, the Financial Crimes Enforcement Network (FinCEN) issued Notice 2018-1 announcing a further extension of time for certain Report of Foreign Bank and Financial Accounts (FBAR) filings in light of FinCEN’s notice of proposed rulemaking (NPR) published March 10, 2016. (See previous InfoBytes coverage on the 2016 NPR here.) Specifically, one of the proposed amendments seeks to “expand and clarify the exemptions for certain U.S. persons with signature or other authority over foreign financial accounts,” but with no financial interest, as outlined in FinCEN Notice 2017-1 issued December 22, 2017. FinCEN noted that because the proposal has not been finalized, it is extending the filing due date to April 15, 2020 for individuals who previously qualified for a filing due date extension under Notice 2017-1. All other individuals must submit FBAR filings by April 15, 2019.
Agencies encourage financial institutions to explore innovative industry approaches to BSA/AML compliance
On December 3, the Financial Crimes Enforcement Network (FinCEN) released a joint statement along with federal banking agencies—the Federal Reserve Board, FDIC, NCUA, and OCC (together, the “agencies”)—to encourage banks and credit unions to explore innovative approaches such as artificial intelligence, digital identity technologies, and internal financial intelligence units to combat money laundering, terrorist financing, and other illicit financial threats when safeguarding the financial system. According to the agencies, private sector innovation and the adoption of new technologies can enhance the effectiveness and efficiency of Bank Secrecy Act/anti-money laundering (BSA/AML) compliance programs. Moreover, new innovations and technologies can also enhance transaction monitoring systems. Specifically, the agencies urged banks to test innovative programs to explore the use of artificial intelligence. However, the agencies emphasized that while feedback on innovative programs may be provided, the “pilot programs in and of themselves should not subject banks to supervisory criticism even if the pilot programs ultimately prove unsuccessful. Likewise, pilot programs that expose gaps in a BSA/AML compliance program will not necessarily result in supervisory action with respect to that program.” The joint statement further specifies that the agencies will be willing to grant exceptive relief from BSA regulatory requirements to facilitate pilot programs, “provided that banks maintain the overall effectiveness of their BSA/AML compliance programs.” However, banks that maintain effective compliance programs but choose not to innovate will not be penalized or criticized.
According to Treasury Under Secretary for Terrorism and Financial Intelligence Sigal Mandelker, “[a]s money launderers and other illicit actors constantly evolve their tactics, we want the compliance community to likewise adapt their efforts to counter these threats,” pointing to the recent use of innovative technologies to identify and report illicit financial activity related to both Iran and North Korea.
As previously covered by InfoBytes, earlier in October the agencies provided guidance on resource sharing between banks and credit unions in order to more efficiently and effectively manage their BSA/AML obligations.
Federal, state financial regulatory agencies issue guidance for institutions affected by California wildfires; FinCEN encourages financial institutions to communicate BSA filing delays
On November 19, the Financial Crimes Enforcement Network (FinCEN) issued a notice to financial institutions that file Bank Secrecy Act reports encouraging such institutions to communicate with FinCEN and their functional regulators regarding any expected filing delays caused by the California wildfires. FinCEN also reminded financial institutions to review advisory FIN-2017-A007, previously covered by InfoBytes, which discusses potential fraudulent activity related to recent disaster relief schemes.
In a related action, the Federal Reserve Board, California Department of Business Oversight, Conference of State Bank Supervisors, FDIC, NCUA, and OCC (collectively, the “agencies”) issued a joint statement on November 15 providing guidance to financial institutions impacted by the California wildfires. The agencies encouraged lenders to work with borrowers in impacted communities to modify loans as appropriate based on the facts and circumstances of each borrower and loan. In addition, the agencies assured lenders that they would (i) expedite any request to operate temporary facilities to provide more convenient services to those affected by the wildfires; (ii) not generally assess penalties for institutions that take prudent steps to satisfy any publishing or reporting requirements, including by contacting their state or federal regulator to discuss satisfaction of such requirements; and (iii) consider granting institutions favorable Community Reinvestment Act consideration for community development loans, investments, and services in support of disaster recovery.
Find continuing InfoBytes coverage on disaster relief here.
FinCEN revises GTOs to expand coverage to 12 metropolitan areas, lower reporting threshold, and include virtual currencies
On November 15, the Financial Crimes Enforcement Network (FinCEN) reissued a revised Geographic Targeting Order (GTO), which requires U.S. title insurance companies to identify the natural persons behind shell companies that pay “all cash” (i.e., the transaction does not involve external financing) for high-end residential real estate in 12 major metropolitan areas. Notably, the purchase amount threshold for the beneficial ownership reporting requirement—which previously varied by city—is now set at $300,000 for residential real estate purchased in the 12 covered areas. In addition, FinCEN requires title insurance companies to report covered purchases made using virtual currencies. FinCEN states that the reissued GTO “will further assist in tracking illicit funds and other criminal or illicit activity, as well as inform FinCEN’s future regulatory efforts in this sector.”
The revised GTO takes effect November 17, and covers certain counties within the following areas: Boston, Chicago, Dallas-Fort Worth, Honolulu, Las Vegas, Los Angeles, Miami, New York City, San Antonio, San Diego, San Francisco and Seattle.
Visit here for additional InfoBytes coverage on FinCEN GTOs.
On October 31, the Financial Crimes Enforcement Network (FinCEN) issued an advisory reminding financial institutions that, on October 19, the Financial Action Task Force (FATF) updated two documents that list jurisdictions identified as having “strategic deficiencies” in their anti-money laundering and combatting the financing of terrorism (AML/CFT) regimes. (See previous InfoBytes coverage here.) The first document, the FATF Public Statement, identifies two jurisdictions, the Democratic People’s Republic of Korea and Iran, that are subject to countermeasures and/or enhanced due diligence (EDD) due to their strategic AML/CFT deficiencies. The second document, Improving Global AML/CFT Compliance: On-going Process - 19 October 2018, identifies jurisdictions with strategic AML/CFT deficiencies that have developed an action plan with the FATF to address those deficiencies: the Bahamas, Botswana, Ethiopia, Ghana, Pakistan, Serbia, Sri Lanka, Syria, Trinidad and Tobago, Tunisia, and Yemen. Notably, the Bahamas, Botswana and Ghana have been added to the list due to the lack of effective implementation of their AML/CFT frameworks. FinCEN urges financial institutions to consider both the FATF Public Statement and the Improving Global AML/CFT Compliance: On-going Process documents when reviewing due diligence obligations and risk-based policies, procedures, and practices.
FinCEN encourages financial institutions affected by Hurricane Michael to communicate BSA filing delays; extends FBAR filing deadline
On October 15, the Financial Crimes Enforcement Network (FinCEN) issued a notice to financial institutions that file Bank Secrecy Act reports to encourage communication with FinCEN and their functional regulators regarding any expected filing delays caused by Hurricane Michael. FinCEN also reminded financial institutions to review advisory FIN-2017-A007, previously covered by InfoBytes, which discusses potential fraudulent activity related to recent disaster relief schemes.
The same day, FinCEN issued a second notice for certain filers affected by Hurricane Michael to extend the deadline for submitting their 2017 calendar year Reports of Foreign Bank and Financial Accounts (FBARs). FBARs for affected filers are now due February 28, 2019.
Find more InfoBytes disaster relief coverage here.
On October 11, the Financial Crimes Enforcement Network (FinCEN) issued an advisory for financial institutions on ways to help better detect and report the Iranian regime's efforts to evade U.S. sanctions through potentially illicit transactions. The advisory outlines deceptive practices used by the Iranian regime to evade sanctions, including front companies, fraudulent documents, transactions involving exchange houses, falsified shipping documents, and the use of virtual currencies, and warns financial institutions that FinCEN expects Iran to expand use of these practices following the November 5 return of sanctions previously suspended as part of the Joint Comprehensive Plan of Action. (See previous InfoBytes coverage here on Executive Order 13846, issued last August reimposing sanctions against Iran.) The advisory also includes a series of red flags to help banks identify possible deceptive activity, and provides information for filing suspicious activity reports. FinCEN advises foreign financial institutions to consult the advisory to “better understand the obligations of their U.S. correspondents, to avoid exposure to U.S. sanctions, and to address the Anti-Money Laundering/Combating the Financing of Terrorism risks that Iranian activity poses to the international financial system.”
See here for continuing InfoBytes coverage of actions related to Iran.
On October 4, the Financial Crimes Enforcement Network (FinCEN) issued advisory FIN-2018-A005 to U.S. financial institutions to increase awareness of the growing risk that certain Nicaraguan senior foreign political figures may potentially move assets using the U.S. financial system in reaction to a “perceived threat of further unrest, potential sanctions, or other factors.” FinCEN warns that the assets could be the proceeds of corruption and may be directed into U.S. accounts, or laundered through the U.S. financial system. The advisory—which is underscored by actions taken against Nicaraguan officials involved in corruption and human rights abuse pursuant to the Global Magnitsky sanctions program, as previously covered by InfoBytes—provides due diligence guidance for U.S. financial institutions consistent with existing Bank Secrecy Act obligations. It also reminds financial institutions of their suspicious activity report filing obligations and of the potential need to refer to advisory FIN-2018-A003 released last June on the use of financial facilitators to gain access to global financial systems for the purpose of moving or hiding illicit proceeds and evading U.S. and global sanctions. (See previous InfoBytes coverage here.)
- Jeffrey S. Hydrick to discuss "State legislative update" at the NMLS Annual Conference & Training
- Kathryn L. Ryan to speak at the "Business model primer" at the NMLS Annual Conference & Training
- Daniel P. Stipano to discuss "Dynamic customer due diligence and beneficial ownership from KYC to ongoing CDD and the new rule implementation" at the Puerto Rican Symposium of Anti-Money Laundering
- Jon David D. Langlois to discuss "Regulatory risks of convenience fees" at the Mortgage Bankers Association National Mortgage Servicing Conference & Expo
- Michelle L. Rogers to discuss "Preparing for servicing exams in the current regulatory environment" at the Mortgage Bankers Association National Mortgage Servicing Conference & Expo
- APPROVED Webcast: NMLS Annual Conference & Ombudsman Meeting: Review and recap
- Brandy A. Hood to discuss "Keeping your head above water in flood insurance compliance" at the Mortgage Bankers Association National Mortgage Servicing Conference & Expo
- Melissa Klimkiewicz to discuss "Servicing super session" at the Mortgage Bankers Association National Mortgage Servicing Conference & Expo
- Jessica L. Pollet to discuss "Law & compliance speedsmarts" at the American Financial Services Association Law & Compliance Symposium
- Daniel P. Stipano to discuss "Lessons learned from recent high profile enforcement actions" at the Florida International Bankers Association AML Compliance Conference
- Moorari K. Shah to provide "Regulatory update – California and beyond" at the National Equipment Finance Association Summit
- Sasha Leonhardt and John B. Williams to discuss "Privacy" at the National Association of Federally-Insured Credit Unions Spring Regulatory Compliance School
- Aaron C. Mahler to discuss "Regulation B/fair lending" at the National Association of Federally-Insured Credit Unions Spring Regulatory Compliance School
- Heidi M. Bauer to discuss "'So you want to form a joint venture' — Licensing strategies for successful JVs" at RESPRO26
- Jonice Gray Tucker to to discuss "DC policy: Everything but the kitchen sink" at CBA Live
- Jonice Gray Tucker to discuss "Small business & regulation: How fair lending has evolved & where are we heading?" at CBA Live
- Daniel P. Stipano to discuss "Lessons learned from ABLV and other major cases involving inadequate compliance oversight" at the ACAMS International AML & Financial Crime Conference
- Daniel P. Stipano to discuss "A year in the life of the CDD final rule: A first anniversary assessment" at the ACAMS International AML & Financial Crime Conference
- Moorari K. Shah to discuss "State regulatory and disclosures" at the Equipment Leasing and Finance Association Legal Forum
- Hank Asbill to discuss "Pay no attention to the man behind the curtain: Addressing prosecutions driven by hidden actors" at the National Association of Criminal Defense Lawyers West Coast White Collar Conference
- Daniel P. Stipano to discuss "Keep off the grass: Mitigating the risks of banking marijuana-related businesses" at the ACAMS AML Risk Management Conference
- Daniel P. Stipano to discuss "Mid-year policy update" at the ACAMS AML Risk Management Conference
- Benjamin W. Hutten to discuss "Requirements for banking inherently high-risk relationships" at the Georgia Bankers Association BSA Experience Program