Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
OCC updates Comptroller’s Licensing Manual to revise public comment period calculation for business combination applicants
On July 30, the OCC released Bulletin 2018-22 announcing an updated version of its “Business Combinations” booklet of the Comptroller’s Licensing Manual. As previously covered in InfoBytes, the OCC released a revised version of the booklet last November, which included updates related to regulations addressing applications for national banks and federal savings associations proposing to execute a business combination. Current version 1.1 of the booklet incorporates minor technical corrections and includes a change in the public comment period calculation, which is “generally 30 days after the newspaper publication.” Among other things, the booklet provides a requirement that a notice “must be published three times in a newspaper of general circulation in the community or communities where the main or home offices of the banks involved in the transaction are located.” The OCC further advises applicants to consider the possibility of a processing delay in the event “significant or adverse comments” are received, and stresses potential delays should be a factored in when planning target dates for consummating a business combination.
On July 20, the OCC released a list of recent enforcement actions taken against national banks, federal savings associations, and individuals currently and formerly affiliated with such entities. The new enforcement actions include cease and desist orders, civil money penalty orders, removal/prohibition orders, and terminations of existing enforcement actions. Two of the more notable actions by the OCC covered in this report are discussed below.
On May 31, the OCC issued a consent order against an international investment bank’s federal branches located in Stamford, Miami, and New York, which identified alleged deficiencies in the branches’ Bank Secrecy Act/Anti-Money Laundering (BSA/AML) compliance programs. The alleged deficiencies include failure to adopt and implement adequate BSA/AML compliance programs and failure to file timely Suspicious Activity Reports. Among other things, the consent order requires the branches to (i) develop and implement an ongoing BSA/AML risk assessment program; (ii) adopt an independent audit program to conduct a review of the bank’s BSA/AML compliance program; (iii) submit a written progress report within 30 days after the end of each calendar quarter that details actions undertaken to ensure compliance with the consent order’s provisions; and (iii) ensure each branch has permanent, experienced BSA officers responsible for compliance functions. The bank has neither admitted nor denied the OCC’s findings, and a civil money penalty was not assessed against the branches.
In addition, on June 18 the OCC issued an order terminating a 2016 consent order against a national bank following the OCC’s determination that the bank had successfully completed the consent order’s requirements for complying with provisions of the Servicemembers Civil Relief Act.
Federal Reserve issues enforcement actions against New York branch of Pakistani bank, former bank employee
On July 12, the Federal Reserve Board released an enforcement action taken against a Pakistani bank’s New York branch concerning deficiencies in the branch’s Bank Secrecy Act/anti-money laundering (BSA/AML) compliance program. Under the terms of the written agreement, the branch is required to (i) submit a written governance plan to strengthen the board of director’s oversight of BSA/AML compliance; (ii) retain an independent third party to conduct a BSA/AML compliance review; (iii) submit a revised, written compliance program that complies with BSA/AML requirements; (iii) submit an enhanced, written customer due diligence program plan; and (iv) submit a revised program to ensure compliant suspicious activity monitoring and reporting. On a parallel basis, the Federal Reserve terminated an enforcement action taken against the branch in 2013.
The Federal Reserve also issued a separate enforcement action against a former bank employee for engaging in unsafe or unsound banking practices by concealing an unreconciled balance using improper accounting practices. The consent order of prohibition prohibits the former employee from, among other things, participating in any manner in the conduct of the affairs of any insured depository institution, holding company, or subsidiary of an insured depository institution.
On June 20, the New York Department of Financial Services (NYDFS) announced a $205 million settlement with a global banking firm to resolve allegations that the bank engaged in unsafe and unsound practices in its foreign exchange (FX) trading business. According to the consent order, the bank did not implement and maintain sufficient controls to identify and prevent unsafe and unsound activities conducted by certain FX traders. Among other things, the order states that FX traders (i) used electronic chatrooms to coordinate trading activity with competitors to improperly affect FX prices; (ii) engaged in a practice known as “jamming the fix,” which entails accumulating a large trading position and subsequently making aggressive trades with the intention of moving the fix price in a desired direction; (iii) disclosed confidential customer information to competitors through electronic chatrooms; and (iv) mislead customers by hiding markups on trades. In addition to the fine, the bank is required to improve its internal controls and programs to comply with applicable New York State and federal laws and regulations, submit a written plan to improve its compliance risk management program, and provide an enhanced written internal audit program.
On May 3, the Georgia governor signed into law an act amending provisions of the Official Code of Georgia applicable to the state’s Department of Banking and Finance (Department) and financial institutions generally, including banks, credit unions, licensed sellers of payment instruments, and mortgage lenders and brokers. Among other things, HB 780 grants the Department and/or its commissioner (i) powers to authorize state chartered financial institutions to exercise powers authorized by federal law but not authorized under state law; (ii) the authority to remove individuals employed by state chartered financial institutions, including officers and directors; and (iii) the ability to establish a process for state chartered financial institutions to “exercise rights and powers authorized solely under federal law.” HB 870 also amends the Official Code of Georgia to provide for the Department’s licensing of mortgage lenders and brokers. The law took effect on May 3, and does not apply to litigation pending as of March 9.
On May 10, Federal Reserve Board (Board) Chairman Jerome H. Powell responded to Senator Elizabeth Warren’s request concerning a formal commitment by the Board to vote on whether a national bank’s remediation plans to improve its compliance and operational risk management program meet the terms set forth by the Board’s February 2 order to cease and desist (Order). (See previous InfoBytes coverage here.) According to Powell, the decision to lift the asset growth restriction placed on the bank as part of the Order will be determined by a vote of the Board of Governors. In addressing an additional request made by Sen. Warren that the third-party review of the bank’s remedial actions required by the Order be publically released, Powell stated that when the third-party review is ready, “we will review that report to determine whether and to what extent the report can be publicly disclosed without impairing protected interests.” Powell noted that typically evaluations of that kind are not released to the public because they contain confidential supervisory information that would, if disclosed, “likely impair the effectiveness of the supervisory process,” among other things.
On May 1, the Federal Reserve Board (Fed) and the New York Department of Financial Services (NYDFS) announced (press releases available here and here) a combined nearly $110 million settlement with a global banking firm to resolve allegations that the bank engaged in unsafe and unsound practices in its foreign exchange (FX) trading business. According to consent orders issued by the Fed and NYDFS, the bank did not maintain sufficient policies and procedures to identify and prevent “unsafe and unsound” activities conducted by certain FX traders. Among other things, between 2008 and 2012 (NYDFS’ time frame goes through 2013), certain FX traders allegedly disclosed confidential customer information and trading activity with competitors through electronic chatrooms. NYDFS additionally alleged that the traders discussed coordinating their trading activities and other ways to manipulate currency prices to increase trading profits, and claimed that while the bank had policies in place intended to prevent such activity, the policies were not adequately enforced.
The bank did not admit to any wrongdoing in agreeing to the terms of the settlement, and the Fed and NYDFS noted the bank’s full cooperation with the investigations. In addition to the fine, the bank is prohibited from employing certain traders involved and is required to improve its internal controls and programs to comply with applicable New York State and federal laws and regulations, submit a written plan to improve its compliance risk management program, and provide an enhanced written internal audit program.
On March 12, the Federal Reserve Board (Fed) entered into a consent order with a Chinese bank (bank) and its New York branch (branch) in connection with alleged Bank Secrecy Act and anti-money laundering (BSA/AML) violations. According to the Fed’s order, a recent examination identified “significant deficiencies” in the branch’s BSA/AML compliance and risk management controls. The consent order requires, among other things, the bank and branch submit within 60 days: (i) a written governance plan to achieve compliance with BSA/AML requirements; (ii) a system to identify and assess risks associated with all products and customers, including “politically exposed persons”; (iii) an enhanced customer due diligence program plan; and (iv) a compliance program to ensure accurate suspicious activity monitoring and reporting. The bank and branch are further required to engage an independent third party acceptable to the Fed to review their dollar-clearing transaction activity in the second half of 2016 “to determine whether suspicious activity involving high-risk customers or transactions” was properly flagged. The order imposes no financial penalty.
On January 22, the New York Department of Financial Services (NYDFS) issued a reminder to all NYDFS-regulated banks, insurance companies, and other financial services institutions that the deadline to file cybersecurity certifications of compliance is February 15, 2018. Mandated by NYDFS’ cybersecurity regulation that went into effect March 1, 2017 (see previous InfoBytes coverage here), the certification covers the prior calendar year and must be filed electronically through the DFS cybersecurity portal. NYDFS Superintendent Maria T. Vullo also announced that going forward, cybersecurity will be incorporated into all department examinations, and cybersecurity-related questions will be added to NYDFS’ “first day letters” issued to commence examinations of financial services companies.
On January 17, the Federal Reserve Board (Fed) ordered a Taiwanese bank to pay a $29 million penalty in connection with alleged Bank Secrecy Act and anti-money laundering (BSA/AML) violations. According to the Fed’s Order, examinations conducted in 2016 identified “significant deficiencies” in three of the bank’s U.S. branches’ BSA/AML compliance and risk management controls. In addition to assessing a penalty, the Order required the bank and its New York, Chicago, and San Jose branches to, among other things, (i) submit a written plan from the board of directors for improving senior management oversight, including building a sustainable governance framework for BSA/AML compliance; (ii) submit compliance plans for enhanced internal controls, independent testing, risk assessment, and employee training; (iii) submit a revised program designed to conduct customer due diligence; (iv) ensure timely, accurate, and complete suspicious activity monitoring and reporting; (v) engage an independent third-party to review the identification and reporting of suspicious activity “involving high risk customers or transactions”; (vi) comply with Office of Foreign Assets Control regulations; and (vii) submit periodic progress reports to the branches’ applicable Federal Reserve Banks detailing actions taken to comply with the provisions of the order.
- Benjamin W. Hutten to discuss "Requirements for banking inherently high-risk relationships" at the Georgia Bankers Association BSA Experience Program
- Benjamin W. Hutten to discuss "BSA program reporting, management and board of directors responsibilities" at the Georgia Bankers Association BSA Experience Program
- Hank Asbill to discuss "Ethical guidance in conducting internal investigations – The intersection of Yates and Upjohn" at the American Bar Association Southeastern White Collar Crime Institute
- H Joshua Kotin to discuss "Recent developments in fair lending and avoiding the pitfalls" at the Arkansas Community Bankers/Bankers Assurance 2019 Compliance Conference
- Brandy A. Hood to discuss "RESPA Section 8/referrals: How do you stay compliant?" at the New England Mortgage Bankers Conference
- Daniel P. Stipano to discuss "Risk management in enforcement actions: Managing risk or micromanaging it" at the American Bar Association Business Law Section Annual Meeting
- Valerie L. Hletko to discuss "Banking on guns ‘n drugs: Social policy meets financial services" at the American Bar Association Business Law Section Annual Meeting
- Daniel P. Stipano to discuss "Navigating the conflicting federal and state laws for doing business with cannabis companies" at the American Bar Association Business Law Section Annual Meeting
- Tim Lange to discuss "Services and value" at the North American Collection Agency Regulatory Association Annual Conference
- Katherine L. Halliday to discuss "UDAP, UDAAP & the Map rule compliance basics" at the Mortgage Bankers Association Regulatory Compliance Conference
- Brandy A. Hood to discuss "How to ace your TRID exam" at the Mortgage Bankers Association Regulatory Compliance Conference
- Amanda R. Lawrence to discuss "Data privacy litigation" at the Mortgage Bankers Association Regulatory Compliance Conference
- Melissa Klimkiewicz to discuss "Navigating FHA rules and regs" at the Mortgage Bankers Association Regulatory Compliance Conference
- Jeffrey P. Naimon to discuss "Washington regulatory overview" at the Mortgage Bankers Association Regulatory Compliance Conference
- Jonice Gray Tucker to discuss "HMDA data is out, now what?" at the Mortgage Bankers Association Regulatory Compliance Conference
- Daniel P. Stipano to discuss "Assessing the CDD final rule: A year of transitions" at the ACAMS AML & Financial Crime Conference
- Daniel P. Stipano to discuss "Lessons learned from recent enforcement actions and CMPs" at the ACAMS AML & Financial Crime Conference
- Kathryn L. Ryan to discuss "The state’s role in fintech: Providing an industry framework for innovation" at Lend360
- Jeffrey P. Naimon to discuss "Truth in lending" at the American Bar Association National Institute on Consumer Financial Services Basics
- Daniel P. Stipano to discuss "Lessons learned from recent enforcement actions" at the Institute of International Bankers Risk Management and Regulatory Examination/Compliance Seminar
- Jonice Gray Tucker to discuss "Fintech regulatory developments, crypto-assets, blockchain and digital banking, and consumer issues" at the Practising Law Institute Banking Law Institute
- Amanda R. Lawrence to discuss "How to balance a successful (and stressful) career with greater personal well-being" at the American Bar Association Women in Litigation Joint CLE Conference