InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
Agencies extend comment period on proposed rules to strengthen large bank capital requirements
On October 20, the Fed issued a joint press release with the FDIC and the OCC announcing the extension of the comment period on proposed rules to expand large bank capital requirements. Earlier this year, the agencies announced the proposed rule which would implement the final components of the Basel III Agreement. The components would revise capital requirements for large banking organizations, among other things. (Covered by InfoBytes here.) Adding an additional six weeks (from the original 120-day comment period set to expire on November 30), the new comment period deadline is by January 16, 2024.
Treasury official discusses AI and cloud computing at Gov2Gov summit
On October 24, Assistant Secretary for Financial Institutions at the U.S. Department of Treasury Graham Steele delivered remarks at the Gov2Gov Summit to discuss the benefits and risks of artificial intelligence (AI) and machine learning (ML) in the financial services sector.
First, Assistant Secretary Steele discussed the role of cloud computing and cloud service providers (CSPs) in supporting financial institutions’ work, following the Department’s release of a February report which discussed the financial sector’s adoption of cloud services. Assistant Secretary Steele indicated, among other things, that while cloud services can offer more scalable and flexible solutions for financial services institutions to store and manage their data, financial institutions have struggled to understand clearly and implement the cloud services they are purchasing from large, market-dominating CSPs. Assistant Secretary Steele stated that the Department is working toward a model that will allow financial institutions to “unbundle” cloud service packages so that financial institutions can provide more individualized services.
Next, Assistant Secretary Steele discussed the potential advantages and disadvantages of the use of AI among financial institutions, which use AI for tasks including credit underwriting, fraud prevention, and document review. Among the benefits AI offers to financial institutions are reduced costs, improved performance, and the identification of complex relationships. The risks of AI, according to Assistant Secretary Steele, fall into three categories: (i) the design of AI, which can raise discrimination concerns, such as in consumer lending; (ii) how humans implement AI, including the possible overreliance on AI to render financial decisions; and (iii) operational and cyber risks, including the dangers around data quality and security, as AI consumes significant volumes of data.
Last, Assistant Secretary Steele discussed how policymakers are addressing privacy and discrimination concerns with AI. He mentioned the White House’s Blueprint for an AI Bill of Rights, which would require, among other things, regular assessment of algorithms for certain disparities and biases. Assistant Secretary Steele also cited regulatory actions that can address the risks of AI, including a CFPB rulemaking under the FCRA and Federal banking agency guidance on third party risk management.
FDIC’s crypto risk oversight criticized in OIG report
On October 18, the FDIC Office of Inspector General released a report on the FDIC’s strategies addressing the risks posed by crypto assets. According to the report, the FDIC has started to develop and implement strategies that address crypto risks but has not assessed the significance and potential impact of the risks. Additionally, although the FDIC requested that financial institutions provide information pertaining to their crypto‑related activities, its process for providing supervisory feedback is unclear. Between March 2022 and May 2023, the FDIC sent pause letters to several institutions related to their crypto activities, but it had not provided supervisory feedback to all of those institutions, it did not have an expected timeline for reviewing information and responding to institutions, and its procedures did not describe what constitutes the end of the review process for supervised institutions that received a pause letter.
The OIG report recommends that the FDIC set a timeframe for assessing risks pertaining to related activities and update and clarify the supervisory feedback process related to its review of supervised institutions’ crypto-related activities. The FDIC agreed with both recommendations and plans to complete corrective actions by January 30, 2024.
FTC settles with bankrupt crypto company and bans asset management
On October 12, the FTC announced it has reached a settlement with a bankrupt crypto company, which will permanently ban the company from managing consumer assets. According to the federal court complaint, the FTC alleged that from at least 2018, respondent attracted customers by promising their deposits would be secure, but when the company failed, consumers lost access to significant assets, resulting in over $1 billion in cryptocurrency asset losses. The FTC alleges violations of the FTC Act and the Gramm-Leach-Bliley Act's prohibition on obtaining financial information through false statements. Respondent allegedly misled consumers by claiming their assets were safe on the platform, stating that "YOUR USD IS FDIC INSURED." However, respondent is not a bank and the deposits were not eligible for FDIC insurance. The FTC complaint also alleged that the FDIC does not insure cryptocurrency assets, and consumers' cash deposits were placed in an account held by respondent at a traditional bank. Consumers' funds were protected only if that bank failed, but their cryptocurrency was not protected at all.
The proposed settlement with respondent and its affiliates permanently bans them from offering, marketing, or promoting any product or service related to depositing, exchanging, investing, or withdrawing assets. Respondent and its affiliates have agreed to a judgment of $1.65 billion, which will be suspended to allow the bankrupt company to return its remaining assets to consumers through bankruptcy proceedings. The proposed settlement also prohibits respondent and its affiliates from managing consumer assets, misrepresenting product benefits, making false representations to obtain financial information, and disclosing nonpublic personal information without consent.
The FTC also announced that it is filing a lawsuit against the respondent’s CEO for making false claims that consumer accounts were FDIC-insured. Respondent’s CEO has not agreed to a settlement, and the FTC's case against him will proceed in federal court. “In a parallel action, on October 12, the Commodity Futures Trading Commission separately charged [respondent’s CEO] with fraud and registration failures,” the FTC added.
FDIC seeks comments on proposed and stricter governance guidelines for regional banks
On October 11, the FDIC published a request for comment on proposed corporate governance and risk management guidelines that would apply to all insured state nonmember banks, state-licensed insured branches of foreign banks, and insured state savings associations that are subject to Section 39 of the Federal Deposit Insurance Act (FDI Act), with total consolidated assets of $10 billion or more on or after the effective date of the final guidelines.
The proposed guidelines cover board of director’s obligations, composition, duties, and committee structure that must be met to meet the standard of good corporate governance. The proposed guidelines state that the board will ultimately be responsible for the affairs of the covered institution and each individual member must abide by certain legal duties. Under the proposed guidelines, the board of directors must, among other things: (i) evaluate and approve a strategic plan covering at least a three-year period; (ii) establish policies and procedures by which the covered institution operates; (iii) establish a code of ethics covering legal requirements, such as insider information, disclosure, and self-dealing; (iv) provide active oversight of management; (v) exercise independent judgement; and (vi) select and appoint qualified executive officers. Additionally, the board will be required to maintain a majority of independent directors on the board and should consider diversity of demographic representation, opinion, experience, and ownership level when choosing its board members. The proposed guidelines would also require that the board have an audit committee, a compensation committee, a trust committee (if the covered institution has trust powers), and a risk committee.
Comments must be received by the FDIC by December 11, 2023.
FDIC proposes additions to its safety and soundness standards
On October 5, the FDIC issued a notice of proposed rulemaking that would add a new appendix to the agency’s safety and soundness standards. The new appendix, which would be Appendix C, “is intended to promote strong corporate governance and risk management at FDIC-supervised institutions that have total consolidated assets of $10 billion or more by proposing corporate governance and risk management guidelines.” The proposed guidelines would describe the general obligations of the board of directors, requiring the board to be active and involved in protecting the interests of the institution, adopt a code of ethics for the institution’s operations, and form a Risk Committee within the institution’s committee structure. The proposed guidelines would also require institutions to establish a risk management program that includes a “three-line-of-defense model” for risk monitoring and reporting, as well as require institutions to create and maintain a risk profile and risk appetite statements that are communicated to all employees to encourage compliance.
FDIC makes public August enforcement actions
On September 29, the FDIC released a list of administrative enforcement actions taken against banks and individuals in August. During the month, the FDIC made public nine orders consisting of “three consent orders, three orders terminating consent orders, two orders of prohibition, and one order to pay a civil money penalty.” The list includes an order to pay a civil money penalty imposed against a Utah-based bank related to violations of the Flood Disaster Protection Act. The FDIC claimed that the bank engaged in a pattern practice of violating FDPA by, among other things: (i) issuing loans without adequate flood insurance; (ii) failing to provide notices when increasing or extending loans; and (iii) “failing to provide required force-placed insurance notices when loans were secured by properties and contents located in Special Flood Hazard Areas.” The bank neither admitted nor denied the alleged violations but agreed to, among other things, pay a $4,125 civil money penalty.
Agencies extend favorable CRA consideration for certain areas affected by Hurricane Maria
On September 20, the Federal Reserve, FDIC, and OCC announced they are providing a 36-month extension to give favorable consideration under the CRA for bank activities that help revitalize or stabilize areas in Puerto Rico and the U.S. Virgin Islands impacted by Hurricane Maria. This extension is the second extension following the original period provided in January 2018 and the first extension granted in May 2021.
The agencies determined that the FEMA’s designation of parts of Puerto Rico and the U.S. Virgin Islands as “active disaster areas” demonstrates ongoing community need to the area. The extension allows the agencies to give favorable consideration to a financial institution’s activities in the qualifying areas that satisfy the definition of “community development” under the CRA, including loans and investments, through September 20, 2026. The activities will be treated consistently with the agencies’ original Interagency Statement in January 2018.
FDIC's chairman addresses CRA rulemaking, unbanked households, and nonbank payment services
On September 20, FDIC Chairman Martin J. Gruenberg delivered prepared remarks at the Exchequer Club, discussing the risks posed by nonbank financial institutions (nonbanks) to the U.S. financial system. He noted that nonbanks hold a significant share of the financial sector, with assets totaling around $20.5 trillion in 2021, emphasizing their importance alongside traditional banks. Gruenberg highlighted the financial stability concerns associated with nonbanks, especially their limited regulation and supervision compared to traditional banks. He further mentioned the interconnectedness between nonbanks and banks, and the potential for nonbanks to transmit risk during market shocks, which underscores the need for attention to these issues. Specifically, Gruenberg stated that the “information about the risks undertaken by a variety of nonbanks is severely lacking”, and transparency about these issues will ensure a safer financial system. Gruenberg also pointed out that nonbanks are becoming increasingly active in mortgage finance, business lending, and consumer financial services. He discussed some risks associated with hedge funds and leveraged investment vehicles generally, such as their reliance on short-term funding, and their potential to disrupt the stability of financial markets. Gruenberg concluded by advocating for a comprehensive strategy to address the financial stability risks posed by nonbanks, emphasizing the importance of transparency, oversight, and prudential requirements for nonbank financial institutions.
Biden announces nomination for FDIC Inspector General
On September 15, President Joe Biden announced his intention to nominate Jennifer L. Fain as Inspector General of the FDIC. Fain brings over 22 years of experience in the inspector general community, most recently serving as Deputy Inspector General for the Export-Import Bank of the United States (EXIM). She has extensive oversight experience in financial services and consumer protection and has held leadership positions in various audit, inspection, and evaluation offices within federal agencies. Fain holds an M.S. in Finance from Johns Hopkins University and a B.S.B.A. in Accounting from the University of Colorado.