InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
FDIC chairman addresses the importance of innovation
On May 11, FDIC Chairman Jelena McWilliams spoke at the Federalist Society Conference about the Dodd-Frank Act in a post Covid-19 environment and the future of financial regulation. Among other topics, McWilliams emphasized the importance of promoting innovation through inclusion, resilience, amplification, and protecting the future of the banking sector. McWilliams pointed out that “alternative data and AI can be especially important for small businesses, such as sole proprietorships and smaller companies owned by women and minorities, which often do not have a long credit history” and that “these novel measures of creditworthiness, like income streams, can provide critical access to capital” that otherwise may not be possible to access. McWilliams also discussed an interagency request for information announced by the FDIC and other regulators in March (covered by InfoBytes here), which seeks input on financial institutions’ use of AI and asks whether additional regulatory clarity may be helpful. McWilliams also added that rapid prototyping helps initiate effective reporting of more granular data for banks. Additionally, McWilliams addressed agency’s efforts to expand fintech partnerships through several initiatives intended to facilitate cooperation between fintech groups and banks to promote accessibility to new customers and offer new products. Concerning the ability to confront the direct cost of developing and deploying technology at any one institution, McWilliams added that “there are things that we can do to foster innovation across all banks and to reduce the regulatory cost of innovation.”
NYDFS, insurance company reach $1.8 million cyber breach settlement
On May 13, NYDFS announced a settlement with an insurance company to resolve allegations that the broker violated the state’s cybersecurity regulation (23 NYCRR Part 500) by failing to implement multi-factor authentication or reasonably equivalent or more secure access controls. Under Part 500.12(b), covered entities are required to implement such protocols (see FAQs here). NYDFS’s investigation also revealed that the insurance company falsely certified its compliance with the cybersecurity regulation for 2018. Under the terms of the consent order, the company will pay a $1.8 million civil monetary penalty and will undertake improvements to strengthen its existing cybersecurity program to ensure compliance with 23 NYCRR Part 500. NYDFS acknowledged the broker’s “commendable” cooperation throughout the examination and investigation and stated that the broker had demonstrated its commitment to remediation.
FDIC fines Oregon-based bank for unfair and deceptive collection practices
On May 10, the FDIC announced that an Oregon-based bank has agreed to settle allegations of unfair and deceptive practices in violation of Section 5 of the FTC Act related to a wholly owned subsidiary’s debt collection practices for commercial equipment financing. According to the FDIC, the subsidiary unfairly and deceptively charged various undisclosed collection fees—such as collection call and letter fees and third-party collection fees—to borrowers with past due accounts. The FDIC additionally claimed that some of the subsidiary’s collection practices were also unfair and deceptive, including (i) placing excessive and sequential collection calls to borrowers even after requests were made to stop the calls; (ii) disclosing borrowers’ debt information to third parties; and (iii) telling borrowers that their commercial debt would be reported as delinquent to the consumer reporting agencies (CRAs), even though its policy and practice was to not report such delinquencies to the CRAs. Under the terms of the settlement order, the bank, which does not admit nor deny the violations, will voluntarily pay an approximately $1.8 million civil money penalty.
Fed continues to allow bank insiders access to PPP loans
On May 14, the Federal Reserve Board announced the third extension of a temporary exception from the requirements of section 22(h) of the Federal Reserve Act and corresponding provisions of Regulation O to allow certain bank directors and shareholders to apply for Small Business Administration (SBA) Paycheck Protection Program (PPP) loans from their affiliated banks. The extension is effective immediately and applies to PPP loans made from March 31 through June 30. If the PPP is extended, the rule change will ultimately end on March 31, 2022. The Fed reiterated that any PPP loans extended to bank directors and shareholders must be consistent with SBA’s PPP lending restrictions and done without favoritism from the bank. The original extension was announced on April 17 (covered by InfoBytes here).
Fed will resume HMDA quarterly reporting
On May 14, the Federal Reserve’s Division of Consumer and Community Affairs issued a letter informing supervised financial institutions that HMDA quarterly reporting will resume beginning with institutions’ 2021 first quarter data, due on or before May 31, 2021, for all covered loans and applications with a final action taken date between January 1 and March 31, 2021. As previously covered by InfoBytes, last year the Fed eased quarterly HMDA reporting requirements during the Covid-19 pandemic in order to provide supervised institutions with flexibility to reallocate resources to serving customers. The Fed’s newest letter, which supersedes previous guidance, notes that it “does not intend to cite in an examination or initiate an enforcement action against any entity that did not make the quarterly filing for data collected in 2020.”
Senate moves to repeal OCC’s “true lender” rule
On May 11, the U.S. Senate passed S.J. Res. 15 by a vote of 52 - 47 to invoke the Congressional Review Act and provide for congressional disapproval and invalidation of the OCC’s “true lender" rule. Issued last year, the final rule amended 12 CFR Part 7 to state that a bank makes a loan when, as of the date of origination, it either (i) is named as the lender in the loan agreement or (ii) funds the loan. The final rule also clarified that if “one bank is named as the lender in the loan agreement and another bank funds the loan, the bank that is named as the lender in the loan agreement makes the loan.” (Covered by InfoBytes here.) In applauding the passage of the resolution, Senator Chris Van Hollen (D-MD), who introduced S.J. Res. 15, stated that “strik[ing] down the ‘Rent-A-Bank’ rule will help prevent predatory lenders from ripping off consumers by charging loan-shark rates under deceptive terms.” He noted that the legislation has support from a broad array of stakeholder and consumer protection groups, including a bipartisan group of state attorneys generals and the Conference of State Bank Supervisors, as previously covered by InfoBytes here.
Ranking member of the Senate Banking Committee, Senator Pat Toomey (R-PA) countered, however, that “[w]ithout the rule, the secondary market for these loans would be disrupted, which, again, disproportionately harms lower-income borrowers.” He further added that “[v]oting in favor of the CRA is a direct assault on fintech. It will make it harder for Congress to legislate here. It will make it harder for regulators to issue guidance and rules that promote fintech. Courts will see it as Congress buying into the notion that fintechs are ‘predatory’ lending. And it will scare away state legislatures from promoting fintech.”
S.J. Res. 15 now heads to the House of Representatives for consideration.
Fed proposes changes to its PSR Policy governing intraday credit
On May 7, the Federal Reserve Board issued a notice of proposed rulemaking (NPRM) seeking comments regarding proposed amendments to Regulation II, which implements Section 920 of the EFTA, that would require banks to ensure that two unaffiliated payment networks are available on their debit cards for online purchases. In a memo to the Board, Fed staff noted that due to the growth in online commerce, “card-not-present transactions have become an increasingly significant portion of all debit card transactions, and technology has evolved to enable multiple networks for these transactions.” However, “[d]espite this, two unaffiliated payment card networks are often not available to process card-not-present transactions, such as online purchases, because some issuers do not enable multiple networks for such transactions.” This outcome, Fed staff stated, is “inconsistent with Regulation II’s requirement that at least two unaffiliated networks be available to process each debit card transaction.”
The NPRM addresses this issue by amending Regulation II and its official commentary to (i) “clarify that the requirement that each debit card transaction must be able to be processed on at least two unaffiliated payment card networks applies to card-not-present transactions”; (ii) clarify requirements imposed “on debit card issuers to ensure that at least two unaffiliated payment card networks have been enabled for debit card transactions”; and (iii) “standardize and clarify the use of certain terminology.” Notably, Fed staff emphasized in their memo that the NPRM would not impact Regulation II’s provisions governing interchange fees for certain debit card transactions. As previously covered by InfoBytes, last month, two North Dakota trade associations filed a complaint against the Fed claiming that the agency has “failed to properly follow Congress’s instructions to ensure that debit-card processing fees are reasonable and proportional to the costs of debit-card transactions.”
The Fed published its report on debit card transactions in 2019, and noted it “will continue to review the parts of Regulation II that directly address interchange fees for certain electronic debit transactions in light of the most recent data collected by the Board pursuant to section 920 of the EFTA and may propose revisions in the future.”
District Court certifies student loan borrower class action
On December 2, the U.S. District Court for the Northern District of New York granted final approval of a class of student loan borrowers who claimed a defendant student loan servicer and other associated entities interfered with their rights to prepay or consolidate their Federal Family Education Loan Program student loans in accordance with certain guarantees under federal law. Specifically, the class alleged that they suffered harm when their applications seeking loan forgiveness were denied because the defendant failed to complete and return required loan verification certifications (LVCs) within 10 days. According to the class, the defendant allegedly “admitted that it failed to return LVCs within the time period mandated by law,” and in 2019 had entered into consent orders with the CFPB and NYDFS, “in which it conceded that it had failed to do so.” (Covered by InfoBytes here and here.) The complaint alleges several claims, including violations of New York General Business Law, breach of contract, and breach of the implied covenant of good faith and fair dealing.
Fed shaping “novel institutions” guidelines
On May 5, the Federal Reserve Board issued a notice and request for comments on proposed guidelines for evaluating account and service requests that would allow companies with “novel types of banking charters” to access the Fed’s payments system. Among other things, the notice outlines six proposed principals for Reserve Banks to consider when an institution requests access. These include:
- Whether the institution is eligible under federal statute to maintain an account at a Federal Reserve Bank and has a “well-founded, clear, transparent, and enforceable legal basis for its operations.”
- Whether the provision of an account and services to an institution would “present or create undue credit, operational, settlement, cyber or other risks to the Reserve Bank.”
- Whether the provision of an account and services to an institution would “present or create undue credit, operational, settlement, cyber or other risks to the overall payment system.”
- Whether the provision of an account and services to an institution would “create undue risk to the stability of the U.S. financial system.”
- Whether the provision of an account and services to an institution would “create undue risk to the overall economy by facilitating activities such as money laundering, terrorism financing, fraud, cybercrimes, or other illicit activity.”
- Whether the provision of an account and services to an institution would “adversely affect the Federal Reserve’s ability to implement monetary policy.”
“With technology driving rapid change in the payments landscape, the proposed Account Access Guidelines would ensure requests for access to the Federal Reserve payments system from novel institutions are evaluated in a consistent and transparent manner that promotes a safe, efficient, inclusive, and innovative payment system, consumer protection, and the safety and soundness of the banking system,” Fed Governor Lael Brainard said in the announcement.
If the Fed decides to grant an access request, “it may impose (at the time of account opening, granting access to service, or any time thereafter) obligations relating to, or conditions or limitations on, use of the account or services as necessary to limit operational, credit, legal, or other risks posed to the Reserve Banks, the payment system, financial stability or the implementation of monetary policy or to address other considerations,” the notice stated, adding that the “account-holding Reserve Bank may, at its discretion, decide to place additional risk management controls on the account and services, such as real-time monitoring of account balances, as it may deem necessary to mitigate risks.”
Comments on the proposal are due 60 days following publication in the Federal Register.
Michael J. Hsu named acting Comptroller of the Currency
On May 7, Michael J. Hsu was designated acting Comptroller of the Currency, effective May 10. Previously, Hsu served as an associate director in the Federal Reserve’s Division of Supervision and Regulation where he led the Large Institution Supervision Coordinating Committee Program, which supervises global systemically important banking companies operating in the U.S. Hsu’s career over the past 19 years also included positions at the SEC, Treasury Department, and International Monetary Fund. In accepting the position, Hsu stated his focus “will be on solving urgent problems and addressing pressing issues until the 32nd Comptroller is confirmed.”
Hsu issued a statement to agency staff the same day outlining planned areas of focus including:
- Addressing the “disproportionate impact” of the Covid-19 pandemic on rural and minority communities;
- Confronting the risks and challenges of climate change, as well as the acceleration of technological development and digitization in the industry;
- Understanding how “complacency about risk-taking is of increasing supervisory concern as [the industry enters] a phase of growth and heightened competition”; and
- Reviewing key regulatory standards, as well as other matters pending before the agency, which will take into account both external and internal views.