InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
Agencies release annual CRA asset-size threshold adjustments
On December 31, the Federal Reserve Board, the OCC, and the FDIC announced the joint annual adjustments to CRA asset-size thresholds used to define small and intermediate small banks and small and intermediate small savings associations. A “small” bank or savings association is defined as an institution that, as of December 31 of either of the prior two calendar years, had less than $1.305 billion in assets. An “intermediate small” bank or savings association is defined as an institution that, as of December 31 of both of the prior two calendar years, had at least $326 million in assets, and as of December 31 of either of the past two calendar years, had less than $1.305 billion in assets. This joint final rule became effective on January 1.
Fed issues new fintech compliance bulletin
On December 17, the Federal Reserve Board (Fed) released a new issue of the Consumer Compliance Supervision Bulletin focusing on supervisory insights into consumer compliance issues related to fintech to assist financial institutions with assessing and managing risk associated with technological innovation. Among the topics covered in the bulletin, are (i) managing risk with fintech collaborations—the Fed stresses the importance of creating strong policies and procedures, as well as board and senior management oversight, comprehensive and tailored training, and risk monitoring; (ii) managing UDAP risks with online and mobile banking platforms—the Fed recommends a focus on ensuring consistency and accuracy in disclosures on the platforms and the regular monitoring of complaints; and (iii) managing possible fair lending risks resulting from targeted online marketing—the Fed suggests careful monitoring over marketing activities and vendors, as well as close review of filters used with internet advertising to prevent excluding populations with legally protected characteristics. The bulletin will be featured on the agency’s new fintech page previously covered by InfoBytes here.
CFPB releases TRID guidance for construction loans
On December 18, the CFPB published two guides to assist with TILA-RESPA Integrated Disclosure Rule (TRID) compliance for construction-only and construction-permanent loans. The Bureau notes that under Regulation Z, “a creditor may treat a construction-permanent loan as either one, combined transaction or as two or more separate transactions.” Disclosure options are (i) one, combined loan estimate along with one, combined closing disclosure; or (ii) two or more loan estimates and two or more closing disclosures for each phase of the construction-permanent loan. Appendix D in both the Combined Guide and the Separate Guide provides methods that may be used for estimating construction phase financing disclosures. As previously covered by InfoBytes, the Bureau previously released FAQs in May concerning the application of TRID to construction loans.
CFPB releases annual HMDA and TILA adjustments
On December 18, the CFPB announced final rules adjusting the asset-size thresholds under HMDA (Regulation C) and TILA (Regulation Z). Both rules take effect on January 1, 2020.
Under HMDA, institutions with assets below certain dollar thresholds are exempt from the collection and reporting requirements. The final rule increases the asset-size exemption threshold for banks, savings associations, and credit unions from $46 million to $47 million, thereby exempting institutions with assets of $47 million or less as of December 31, from collecting and reporting HMDA data in 2020.
TILA exempts certain entities from the requirement to establish escrow accounts when originating higher-priced mortgage loans (HPMLs), including entities with assets below the asset-size threshold established by the CFPB. The final rule increases this asset-size exemption threshold from $2.167 billion to $2.202 billion, thereby exempting creditors with assets of $2.202 billion or less as of December 31, from the requirement to establish escrow accounts for HPMLs in 2020.
States recommend FTC “significantly” strengthen COPPA
On December 9, a coalition of 25 state attorneys general responded to the FTC’s request for comments on a wide range of issues related to the Children’s Online Privacy Protection Rule (COPPA). As previously covered by InfoBytes, the FTC released a notice in July seeking comments on all major provisions of COPPA, including definitions, notice and parental consent requirements, exceptions to verifiable parental consent, and the safe harbor provision. In response the AGs strongly recommend that, while the FTC should “significantly” strengthen COPPA, any changes must be flexible and evolve to meet a rapidly-changing data landscape’s needs. Specifically, the AGs state that COPPA’s definition of “web site or online service directed to children,” as well as its definition of an “operator,” need to be modified, as many first-party platforms embed third parties who allegedly engage in the majority of the privacy-invasive online tracking. By expanding the definition of an operator, the AGs claim that COPPA would require compliance by companies that use and profit from the data as well as companies that collect the data. According to the AGs, COPPA, places a lower burden on third-parties and requires them to be bound by the rule only when they have “actual knowledge” that they are tracking children, even though these entities “are arguably as well-positioned as the operators of the websites and online services to know that they are tracking and monitoring children.”
The AGs also believe that the prong that “recognizes the child-directed nature of the content” should be strengthened, because companies that are able to identify and target consumers through sophisticated algorithms are often disincentivized to use the information to affirmatively identify child-directed websites or other online services. Among other things, the AGs also discuss the need for specifying the appropriate methods used for determining a user’s age, expanding COPPA to protect minors’ biometric data, and providing illustrative security requirements.
FDIC issues brokered-deposits proposal
On December 12, the FDIC issued a notice of proposed rulemaking (NPRM) requesting comments on revisions to the agency’s brokered deposit regulations implementing Section 29 of the FDI Act, and also issued an associated factsheet. The regulations were originally implemented in the late 1980s, and the FDIC more recently issued guidance in the form of FAQs in 2016. The FDIC’s NPRM follows an advanced notice of proposed rulemaking issued last December (previously covered by InfoBytes here), that requested feedback on ways in which the agency could improve its brokered deposit regulation. According to the FDIC, the NPRM would modernize and establish a new framework to ensure the “classification of a deposit as brokered appropriately reflects changes in the banking system, including banks’ use of new technologies to engage and interact with their customers.” Among other things, the NPRM would: (i) revise the “facilitation” prong of the deposit broker definition so that it applies to persons who engage in specified activities; (ii) revise two exceptions under Section 29—the first would allow a wholly owned operating subsidiary to be eligible for the insured depository institution exception to the “deposit broker” definition in certain circumstances, while the second would amend the “primary purpose exception” for agents or nominees whose primary purposes are not the placement of funds with insured depository institutions for customers (the FDIC plans to establish an application process for third parties who want to take advantage of the primary purpose exception); and (iii) continue to consider an agent’s placement of brokered CDs as deposit brokering, and continue to be report such deposits as brokered. Chair McWilliams provided remarks (linked here) about brokered deposit regulation at a Brookings Institution event the day before the NPRM was adopted.
Board member Martin Gruenberg voted against the NPRM, stating that the proposal would “significantly weaken” the rule and would narrow the scope of deposits that are considered brokered “without adequate justification and expose the banking system to significantly increased risk.”
Comments on the NPRM are due within 60 days of publication in the Federal Register.
Fed announces fintech initiatives
On December 17, the Federal Reserve Board (Fed) announced a new fintech website section created to engage with banks and other companies involved in fintech innovation. According to the announcement, the new section will highlight supervisory observations regarding fintech, provide a hub of information for interested stakeholders on innovation-related matters, and deliver practical tips for banks and other companies interested in engaging in fintech activity.
Additionally, on February 26, 2020 the Fed will hold the first in a series of “fintech innovation office hours” in conjunction with the Federal Reserve Bank of Atlanta. According to the Fed, they intend to host “office hours” nationwide to provide opportunities, especially “helpful to community banks and their potential fintech partners,” and to speak to well-versed Fed staff members about concepts and advancements surrounding “emerging financial technologies.” The announcement provides a link for interested parties to sign up to participate.
New Fed exam guidelines issued for FBOs
On December 12, the Federal Reserve Board (Fed) issued SR 19-15, “Revised Examination Guidelines for Representative Offices of Foreign Banks,” which is applicable to foreign banking organizations (FBOs) with U.S. representative offices (offices) subject to supervision by the Fed. According to the letter, Reserve Banks should examine offices of FBOs at least every 24 months, and ideally, at the same time as any examination of related U.S. branches or agencies. An office can be examined more often (i) based on state law examination requirements; (ii) if “supervisory concerns” exist regarding the foreign bank’s condition; and (iii) if the activities of the office are central to the FBO’s entire U.S. operations or if the office has a large number of employees. The letter provides guidelines for documentation of exam findings and for assignment of various ratings including compliance, risk management and operational controls. The Fed notes that “the type of documentation and rating should vary depending on the representative office’s activities and the significance of supervisory concerns.”
FHFA proposes stress testing amendments
On December 16, the FHFA released a notice of proposed rulemaking (NPRM) to amend the stress testing requirements for Federal Home Loan Banks (FHL Banks), consistent with changes made by Section 401 of the Economic Growth, Regulatory Relief, and Consumer Protection Act (the Act). Specifically, the NPRM will (i) increase the minimum threshold for regulated entities to conduct stress tests from $10 billion to $250 billion in total consolidated assets; (ii) remove the requirements for FHL Banks subject to stress testing, as none of the banks meet the minimum threshold (notably, under the proposal, the Director will maintain the ability to require any regulated entity with assets below the minimum threshold to conduct stress tests at his or her discretion); and (iii) reduce the number of stress test scenarios from three to two by removing the “adverse” scenario. According to the FHFA, while the “adverse” scenario provides value in limited circumstances, “the ‘baseline’ and ‘severely adverse’ scenarios largely cover the full range of expected and stressful conditions.” As such, the FHFA believes removing the “adverse” scenario will reduce the supervisory burden for FHL Banks. The FHFA further proposes that the Enterprises (Fannie Mae and Freddie Mac)—who remain subject to stress testing under the NPRM—be required to conduct stress tests on an annual basis, as Section 401 changed the required frequency from “annual” to “periodic,” but did not define the term “periodic” in the Act.
Comments on the NPRM are due January 13, 2020.
OCC highlights key risks affecting the federal banking system in semiannual risk report
On December 9, the OCC released its Semiannual Risk Perspective for Fall 2019, identifying and reiterating key risk areas that pose a threat to the safety and soundness of national banks and federal savings associations, including credit, operational, and interest rate risks. While the OCC commented that “bank financial performance is sound,” it also advised that “[b]anks should prepare for a cyclical change while credit performance is strong,” emphasizing that “[c]redit risk has accumulated in many portfolios.” The OCC also highlighted that competition with nonbank mortgage and commercial lending could pose a risk as well.
Specific areas of concern that the OCC described include: elevation of operational risk as advances in technology and innovation in core banking systems result in a changing and increasingly complex operating environment; increased use of third-party service providers that contribute to continued threats of fraud; need for prudent credit risk management practices that include “identifying borrowers that are most vulnerable to reduced cash flows from slower than anticipated economic growth”; “volatility in market rates [leading] to increasing levels of interest rate risk”; LIBOR’s anticipated cessation and whether banks have started to determine the potential impact of cessation and develop risk management strategies; and strategic risks facing banks as non-depository financial institutions (NDFI) use evolving technology and expand data analysis abilities (the OCC commented that NDFIs “are strong competitors to bank lending models”). The OCC also noted that there is increased interest from banks in sharing utilities with NDFIs to implement Bank Secrecy Act/anti-money laundering compliance programs and sanctions processes and controls.