InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
OFAC sanctions Nicaraguan mining authority; Biden issues new E.O. expanding Treasury’s authority to hold Nicaraguan regime accountable
On October 24, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) announced sanctions pursuant to Executive Order (E.O.) 13851 against the Nicaraguan mining authority General Directorate of Mines and a Government of Nicaragua official. OFAC stated that the mining authority is “being designated for being owned or controlled by, or having acted or purported to act for or on behalf of, directly or indirectly,” the Nicaraguan Minister of Energy and Mines whose property and interests in property were blocked in 2021. As a result of the sanctions, all property and interests in property belonging to the sanctioned persons in the U.S. are blocked and must be reported to OFAC. Additionally, “any entities that are owned, directly or indirectly, 50 percent or more in the aggregate by one or more of such persons are also blocked.” U.S. persons are prohibited from engaging in any dealings involving the property or interests in property of blocked or designated persons, unless exempt or authorized by a general or specific OFAC license.
The same day, President Biden signed a new E.O., Taking Additional Steps to Address the National Emergency With Respect to the Situation in Nicaragua, to amend E.O. 13851 and, according to the announcement, expand Treasury’s “authority to hold the Ortega-Murillo regime accountable for its continued attacks on Nicaraguans’ freedom of expression and assembly.” The new E.O. grants Treasury authority to target certain persons operating or that have operated in Nicaragua’s gold sector, as well as other sectors identified by Treasury in consultation with the State Department. According to OFAC’s announcement, the E.O. “provides expanded sanctions authorities that could be used to prohibit new U.S. investment in certain identified sectors in Nicaragua, the importation of certain products of Nicaraguan origin into the United States, or the exportation, from the United States, or by a United States person, wherever located, of certain items to Nicaragua.” In conjunction with the E.O., OFAC issued Nicaragua-related General License 4, which authorizes the wind down of transactions involving the Directorate General of Mines of the Nicaraguan Ministry of Energy and Mines that are otherwise normally prohibited by the Nicaragua Sanctions Regulations, and issued one related frequently asked question regarding that General License.
UK Information Commissioner fines company £4.4 million for data breach
On October 24, the UK Information Commissioner fined a construction company £4.4 million for a data breach that allegedly allowed hackers to access thousands of employees’ personal data. According to the monetary penalty notice, the company failed to process personal data in a manner that ensured the appropriate security of individuals’ personal data as required by Article 5(1)(f) and Article 32 of the EU’s General Data Protection Regulation. This includes protecting against unauthorized or unlawful processing, against accidental loss, destruction, or damage, and using appropriate technical and organizational measures, the regulator said. As a result of insufficient security measures, the company was exposed to a cyber-attack that affected the personal data of up to 113,000 company employees, including personal information such as phone numbers, email addresses, national insurance numbers, and bank account details, among others. An investigation found that the company allegedly failed to follow-up on a suspicious activity alert, used outdated software systems and protocols, and lacked adequate staff training and insufficient risk assessments. The regulator warned companies that “[t]he biggest cyber risk businesses face is not from hackers outside of their company, but from complacency within their company.” The regulator further stressed that failure to regularly monitor for suspicious activity, act on warnings, update software, or provide training may expose other companies to a similar fine.
West Virginia AG pings CFPB on "unconstitutionally appropriated" funds
On October 24, the West Virginia attorney general sent a letter to CFPB Director Rohit Chopra, and to the leadership of both the House Financial Services Committee and the Senate Banking Committee, regarding the constitutionality of the Bureau’s continuing operation. As previously covered by a Buckley Special Alert, the U.S. Court of Appeals for the Fifth Circuit held that the CFPB funding structure created by Congress violated the Appropriations Clause of the Constitution, which provides that “no money shall be drawn from the Treasury, but in Consequence of Appropriations made by Law.” The 5th Circuit ruled that, although the CFPB spends money pursuant to a validly enacted statute, the structure violates the Appropriations Clause because the CFPB obtains its funds from the Federal Reserve (not the Treasury), the CFPB maintains funds in a separate account, the Appropriations Committees do not have authority to review the agency’s expenditures, and the Bureau exercises broad authority over the economy. In the letter, the AG argued that the Bureau cannot discharge its duties in a constitutionally permissible way. He further noted that the Bureau “plainly cannot do that with a funding scheme that ‘sever[s] any line of accountability between [Congress] and the CFPB.’” The AG urged the Bureau to reassess its future plans and to reevaluate whether its present regulations have any effect. The letter also requested answers to a series of questions, no later than November 1: (i) “Does the agency believe that any of the regulations that it promulgated under the unconstitutional funding scheme remain in effect? If so, which ones—and why? Similarly, how does the decision affect past enforcement actions?”; and (ii) “What plans does the Bureau plan to undertake to comply with the ruling? How will its ongoing enforcement efforts be effected? How will this change affect any promulgation of regulations? How will bank supervision continue, if at all?”
9th Circuit says district court must reassess statutory damages in TCPA class action
On October 20, the U.S. Court of Appeals for the Ninth Circuit ordered a district court to reassess the constitutionality of a statutory damages award in a TCPA class action. Class members alleged the defendant (a multi-level marketing company) made more than 1.8 million unsolicited automated telemarketing calls featuring artificial or prerecorded voices without receiving prior express consent. The district court certified a class of consumers who received such a call made by or on behalf of the defendant, and agreed with the jury’s verdict that the defendant was responsible for the prerecorded calls at the statutorily mandated damages of $500 per call, resulting in total damages of more than $925 million. Two months later, the FCC granted the defendant a retroactive waiver of the heightened written consent and disclosure requirements, and the defendant filed post-trial motions with the district court seeking to “decertify the class, grant judgment as a matter of law, or grant a new trial on the ground that the FCC’s waiver necessarily meant [defendant] had consent for the calls made.” In the alternative, the defendant challenged the damages award as being “unconstitutionally excessive” under the Due Process Clause of the Fifth Amendment.
On appeal, the 9th Circuit affirmed most of the district court’s ruling, including upholding its decision to certify the class. Among other things, the appellate court determined that the district court correctly held that the defendant waived its express consent defense based on the retroactive FCC waiver because “no intervening change in law excused this waiver of an affirmative defense.” The appellate court found that the defendant “made no effort to assert the defense, develop a record on consent, or seek a stay pending the FCC’s decision,” even though it knew the FCC was likely to grant its petition for a waiver. While the 9th Circuit did not take issue with the $500 congressionally-mandated per call damages figure, and did not disagree with the total number of calls, it stressed that the “due process test applies to aggregated statutory damages awards even where the prescribed per-violation award is constitutionally sound.” Recognizing that Congress “set a floor of statutory damages at $500 for each violation of the TCPA but no ceiling for cumulative damages, in a class action or otherwise,” the appellate court explained that such damages “are subject to constitutional limitation in extreme situations,” and “in the mass communications class action context, vast cumulative damages can be easily incurred, because modern technology permits hundreds of thousands of automated calls and triggers minimum statutory damages with the push of a button.” Accordingly, the 9th Circuit ordered the district court to reassess the damages in light of these concerns.
FRBs to adopt new Fedwire format in 2025
On October 24, the Federal Reserve Board published a notice in the Federal Register announcing that the International Organization for Standardization’s (ISO) 20022 message format for the Fedwire Funds Service will be adopted on a single day, March 10, 2025. The Fedwire Funds Service is a real-time gross settlement system owned and operated by the Federal Reserve Banks that enables businesses and financial institutions to quickly and securely transfer funds using either balances held at the Reserve Banks or intraday credit provided by the Reserve Banks. A single-day implementation strategy is preferable to a three-phased implementation approach, the Fed said, explaining it is both simpler and more efficient and is likely to reduce users’ overall costs related to software development, testing, and training. The Fed also announced a revised testing strategy and backout strategy, as well as other details concerning ISO 20022’s implementation.
OCC releases enforcement actions
On October 20, the OCC released a list of recent enforcement actions taken against national banks, federal savings associations, and individuals currently and formerly affiliated with such entities. Included among the actions is a cease and desist order against an New York branch of an India-based bank for allegedly engaging in Bank Secrecy Act/anti-money laundering (BSA/AML) program violations. The bank allegedly “failed to establish and maintain a reasonably designed BSA/AML compliance program ('BSA/AML Program') that adequately covers the required BSA/AML Program components. Deficiencies include (i) a weak system of internal controls; (ii) a weak BSA Officer function; and (iii) an insufficient training program.” The order requires the bank to, among other things, submit a BSA/AML action plan and develop a written suspicious activity monitoring and reporting program.
FTC final order fines company $62 million for misleading potential home sellers
On October 21, the FTC announced the approval of a final order against an online home buying firm accused of allegedly making misleading claims to consumers about how much money they could save by selling their home through the company’s services as opposed to selling on the open market. As previously covered by InfoBytes, the FTC claimed the company violated the FTC Act by, among other things, misrepresenting: (i) market value prices when making offers to buy homes by including downward adjustments to such values; (ii) the manner in which it made money on transactions; (iii) that consumers likely would have paid the same amount in repair costs whether they sold their home through the company or in traditional sale; and (iv) that consumers paid less in costs. The final order requires the company to pay $62 million, which is expected to be used for consumer redress, and prohibits the company from making deceptive, false, and unsubstantiated claims about how much money consumers will receive for their homes or the costs required to use the company’s service. Additionally, the company is required to have “competent and reliable evidence to support any representations made about the costs, savings, or financial benefits associated with using its service, and any claims about the costs associated with traditional home sales.”
CFPB releases education ombudsman’s annual report
On October 20, the CFPB Education Loan Ombudsman published its annual report on consumer complaints submitted between September 1, 2021 and August 31, 2022. The report is based on approximately 8,410 complaints received by the Bureau regarding federal and private student loans—a 59 percent increase from the previous reporting period. Of these complaints, roughly 2,000 were related to debt collection, while approximately 900 mentioned Covid-19 (the categories increased by 122 and 23 percent, respectively). The report discussed certain risks raised in the consumer complaints, including difficulty pursuing claims and defenses against predatory institutions of higher learning, improper collection attempts on non-qualified private student loans that have been discharged in bankruptcy, and processing errors and servicer misrepresentations that have caused federal student loan borrowers to not be able to take full advantage of pandemic-related relief.
The report advised policymakers to consider several recommendations, including: (i) examining whether holders of private student loans originated to fund predatory for-profit schools are abiding by state and federal law; (ii) ensuring holders and servicers of private loans are not collecting on non-qualified discharged debt; and (iii) examining whether servicers may be creating barriers to pandemic-related relief. The Bureau also advised policymakers to consider whether to make loan forgiveness programs “opt out” rather than “opt in,” and whether simplifying consumer-facing incentives for consolidating commercial Federal Family Education Loan Program into Direct Consolidation Loans could benefit borrowers if made permanent.
Senators urge CFPB to increase transparency on “Remittance Rule”
On October 19, a group of five Democratic senators sent a letter to CFPB Director Rohit Chopra requesting that the Bureau strengthen its rule regarding remittances transfers. According to the letter, though remittance providers are required to display the exchange rate and fees associated with a transaction, as required by a May 2020 final rule (covered by InfoBytes here), some providers collect additional revenue by increasing exchange rates. The senators explained that because of various “loopholes in the rules, remittance providers may technically comply with the CFPB’s remittance rule requirements while providing insufficient price transparency to allow consumers to make informed comparisons and choose the lowest-cost provider.” The senators requested that the Bureau “strengthen the remittance rule to ensure greater transparency” so that remittance providers are not able to “advertise ‘no-fee remittances’ while simultaneously inflating exchange rates without limit or without providing accurate third-party costs.” Additionally, the senators stressed that the Bureau “should require remittance providers to display mid-market exchange rates, while only collecting revenue through added costs, including fixed third-party fees, openly displayed as ‘total cost,’ as recommended by the Remittance Community Task Force.” The senators also recommended that the Bureau “rescind the permanent exemption for non-covered third-party fees and encourage the adoption of new technology that would provide transparent, pre-transfer cost information.”
CFPB discusses impact of overdraft fees on seniors
On October 19, the CFPB released an issue brief, Overdraft Fees and Economically Insecure Older Adults, examining the economic effects of overdraft fees on economically insecure older adults. The Bureau noted that older adults of color, older women, LGBTQ+ older adults, and retirees are more likely to be economically insecure and may face greater challenges with overdraft fees. The brief also found that older adults pay fees for overdraft services less frequently than other age groups but stated that the economically insecure could be “particularly impacted” because “they are often unable to adjust their carefully managed budgets” when they incur fees. Among other things, the brief provided recommendations to financial institutions for implementing age-friendly banking practices, such as offering view-only account access and/or convenience accounts for financial caregivers. The brief also noted that financial institutions should provide customer service to respond to consumers’ concerns about bank fees in person, by phone, and online. The Bureau stated that it will “track the impact of overdraft fees on older adults” through analysis of consumer complaints, among other things.