InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
Georgia exempts certain retailers from mortgage licensing requirements
On April 18, the Georgia governor signed HB 212, which amends the Official Code of Georgia Annotated relating to the licensing of mortgage lenders and mortgage brokers. Under the Act, the following persons, who meet certain requirements, are exempt from state licensing requirements: “retailers and retail brokers of manufactured homes, mobile homes, or residential industrialized buildings.” The Act also revises the definition of a “mortgage broker” to remove the aforementioned categories from the term, and further provides that a “mortgage broker” does not include employees of exempt persons who satisfy specific requirements. The Act takes effect July 1.
NYDFS creates Consumer Protection and Financial Enforcement Division
On April 29, NYDFS announced its newly created Consumer Protection and Financial Enforcement Division, led by Katherine Lemire as Executive Deputy Superintendent. The new office combines the Enforcement and Financial Frauds division with the Consumer Protection division and is responsible for ensuring compliance, fighting consumer fraud, and assisting NYDFS with the enforcement of the state’s Banking, Insurance and Financial Services laws. The office will have a particular investigative focus on the response to cybersecurity events and the creation of supervisory, regulatory and enforcement policy in the area of financial crimes. Prior to her new role, Lemire served as Assistant United States Attorney in the Southern District of New York where she investigated complex federal crimes, and as a prosecutor in the Manhattan District Attorney’s Office.
CFPB fines student loan servicer $3.9 million for unfair practices
On May 1, the CFPB announced a $3.9 million settlement with a student loan servicing company. The settlement resolves allegations that the company engaged in unfair practices by failing to make adjustments to loans made under the Federal Family Education Loan Program to account for circumstances such as deferment, forbearance, or entrance into the Income-Based Repayment (IBR) program. According to the consent order, between 2005 and 2015, certain accounts requiring manual adjustments to principal loan balances based on program participation were allegedly placed in “queues” to process the adjustments, which took, in some cases, years to process. The servicer allegedly did not inform affected borrowers that it did not complete the processing of their principal balances associated with the deferment, forbearance, or IBR participation. The queues allegedly resulted in some borrowers paying off incorrect loan amounts and other borrowers experiencing delays in loan consolidation while waiting for the servicer to adjust principal balances. In addition to the $3.9 million civil money penalty, the consent order requires the servicer to make the proper adjustments to the principal balances of the affected accounts or pay restitution to borrowers who paid off loans with inaccurate loan balances. The servicer is also required to comply with certain compliance monitoring, reporting, and recordkeeping requirements.
Democratic senators concerned with CFPB retiring HMDA search tool
On April 29, nine Democratic Senators, led by Sherrod Brown (D-Ohio), wrote to the CFPB expressing “deep concern” regarding the Bureau’s plan to retire its tools for public exploration of HMDA data—HMDA Explorer Tool and the Public Data Platform API. In the letter, the Senators argue that retiring the tools with no plan for adequate replacements “threatens to undermine the statutory purposes of HMDA and does not live up the commitments to transparency and accountability” that Director Kraninger promised to uphold during her nomination hearing. The Senators cite to the Bureau’s decision to move the Office of Fair Lending and Equal Opportunity from the Supervision and Enforcement section to the Office of the Director and argue that “[r]reductions in available data and its accessibility, combined with weakened [fair lending] enforcement, is a disservice to the consumers the CFPB was created to protect.” The letter urges the CFPB to reverse course and requests that the Bureau provide a “detailed briefing” on the decision by May 10.
In the notice regarding the tools’ retirement, the Bureau states that the FFIEC “will publish a query tool for the 2018 data in the coming months.”
OFAC reaches settlement with New Jersey corporation for alleged Ukrainian sanctions violations
On April 25, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) announced a $75,375 settlement with a New Jersey corporation for two alleged violations of the Ukraine Related Sanctions Regulations. The settlement resolves potential civil liability for the company’s alleged issuance of two separate invoices for software licensing and software support services to an entity previously identified on OFAC’s Sectoral Sanctions Identification List. According to OFAC, the designated entity’s attempts to remit payment were rejected by financial institutions after it was determined that the transaction was prohibited. However, the corporation—which allegedly failed to have in place a sanctions compliance program and failed to “recognize that the delayed collection of payment was prohibited”—explored possible options to collect the payment and did not seek guidance or authorization from OFAC.
South Carolina enacts servicemembers civil relief act
On April 26, the South Carolina governor signed H 3180 to enact the South Carolina Servicemembers Civil Relief Act, which will “expand and supplement the rights, benefits, and protections of the federal Servicemembers Civil Relief Act (SCRA)” and provide that a violation of the SCRA is a violation of the state’s act. In particular, the Act expands federal SCRA’s definition of “military service” to include South Carolina guardsman who are on state active duty, subject to certain requirements. It also provides that a “dependent of a servicemember engaged in military service has the same rights and protections provided to a servicemember” under both the Act and the SCRA and expands contract termination rights for servicemembers receiving “military orders to relocate for a period of service of at least ninety days to a location that does not support the contract,” encompassing phone, internet, TV, and gym subscriptions. The Act took effect upon signature and is applicable to contracts executed on or after April 26.
CFPB updates Prepaid Small Entity Compliance Guide
On April 26, the CFPB released version 3.1 of its Prepaid Small Entity Compliance Guide to incorporate previously issued submission instructions for issuers submitting account agreements pursuant to the prepaid account rule through the electronic submission system “Collect.” (See previous InfoBytes coverage here.)
Federal Reserve issues BSA/AML enforcement action against Japanese bank
On April 25, the Federal Reserve Board announced an enforcement action against a Japanese bank for alleged weaknesses in its New York branch’s anti-money laundering risk management and compliance programs, including a failure to comply with applicable rules and regulations, including the Bank Secrecy Act. Under the terms of the order, the bank is required to, among other things, (i) develop and implement a written plan to strengthen the board of directors’ oversight of Bank Secrecy Act/anti-money laundering (BSA/AML) compliance and Office of Foreign Assets Control (OFAC) regulations; (ii) submit an enhanced written compliance program that complies with BSA/AML requirements; (iii) submit an enhanced, written customer due diligence plan; (iv) submit a written program to ensure compliant, timely, and accurate suspicious activity monitoring and reporting; (v) submit a written plan to enhance OFAC regulation compliance; and (vi) submit a written plan for independent testing of the bank’s compliance with all applicable BSA/AML requirements. A civil money penalty was not assessed against the bank or the branch. This is the latest in a long string of BSA/AML and OFAC-related regulatory enforcement actions against the U.S. operations of foreign banking organizations. Intense regulatory scrutiny of such institutions’ BSA/AML and OFAC risk management appears to continue unabated.
FDIC fines banks for TCPA, BSA violations; releases March enforcement actions
On April 26, the FDIC announced a list of administrative enforcement actions taken against banks and individuals in March. The 13 orders include “three consent orders; two orders terminating consent orders; four Section 19 orders; one removal and prohibition order; two voluntary terminations of insurance orders; and two orders to pay civil money penalty.” The FDIC assessed, among other things, a $200,000 civil money penalty against an Oklahoma-based bank for allegedly violating the FTC Act and the TCPA by (i) using telemarketers who misrepresented themselves as employees or affiliates of the federal government; and (ii) placing calls to consumers who appeared on the National Do Not Call Registry or who requested to be added to the bank’s internal Do Not Call List.
The FDIC also assessed a consent order against an Illinois-based bank related to alleged weaknesses in its Bank Secrecy Act (BSA) compliance program. Among other things, the bank is ordered to (i) designate a senior official to enforce and take corrective action related to its BSA compliance policy; (ii) implement a revised, comprehensive written BSA compliance program and system of internal controls to address provisions, including currency transaction reporting, customer identification program, beneficial ownership, and information sharing requirements; (iii) adopt a written Customer Due Diligence Program to assure the reasonable detection of suspicious activity, specifically for money services businesses and privately-owned ATM customers; (iv) implement a process for account transaction monitoring; (v) implement a comprehensive BSA training program for appropriate personnel; (vi) conduct a look back review to ensure certain transactions were appropriately identified and reported; and (vii) revise its internal control programs to correct the identified deficiencies.
11th Circuit: Increased risk of identity theft is sufficient to bring FACTA claims
On April 22, the U.S. Court of Appeals for the 11th Circuit affirmed a district court’s ruling that including too many digits of a consumer’s credit card account number on a receipt was sufficient to constitute a concrete injury even if the consumer’s identity was not stolen. Under the Fair and Accurate Credit Transactions Act (FACTA), merchants are prohibited from including more than the final five digits of a consumer’s credit card number on a receipt. According to the opinion, the consumer filed a class action suit against a chocolate company, alleging that one of its stores printed the first six and last four digits of his account number on a receipt, which exposed the class members “to an elevated risk of identity theft.” When the parties sought approval of a proposed settlement, two unnamed class members contested the settlement on the grounds that, among other things, the consumer/class representative lacked standing to sue because he had not suffered a concrete injury as defined in the U.S. Supreme Court’s decision in Spokeo, Inc. v. Robins. The district court, however, approved the settlement.
On appeal, the 11th Circuit held that an increased risk of identity theft is sufficient to bring claims under FACTA, and that the class representative’s “alleged injury is ‘particularized’ because the heightened risk of identity theft affected him ‘in a personal and individual way’—it was his credit card number that appeared on the receipt.” Moreover, the appellate court noted, “In our view, if Congress adopts procedures designed to minimize the risk of harm to a concrete interest, then a violation of that procedure that causes even a marginal increase in the risk of harm to the interest is sufficient to constitute a concrete injury.”