InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
Fed finalizes rule establishing capital requirements for supervised insurers
On October 6, the Fed approved a final rule to implement a rule establishing capital requirements for insurers it supervises. The final rule includes the Building Block Approach (BBA) framework, which is a regulatory framework for assessing capital requirements for insurance companies, tailored to their specific risks by leveraging state-based requirements. It sets a minimum standard comparable to the 8 percent minimum total capital ratio for insured depository institutions (IDIs).
Specifically, the rule requires a Fed-supervised insurance organization (SIO) to aggregate the available capital and required capital of its top-tier company with its subsidiaries to determine whether the aggregate ratio meets the Board’s minimum requirement and “capital conservation buffer.” Among other things, the final rule gives SIOs two options to show compliance with Section 171(b) of Dodd-Frank: (i) demonstrate that it meets, on a fully consolidated basis, the minimum risk-based capital requirements that apply to IDIs; or (ii) demonstrate that it meets the minimum IDI risk-based capital requirements on a partially consolidated basis, excluding the assets and liabilities of certain subsidiary insurers. Should SIOs choose the second option, there are two possible treatments for unconsolidated insurance subsidiaries: (i) “a deduction from qualifying capital of the aggregate amount of the outstanding equity investment in the subsidiary, including retained earnings”; or (ii) “inclusion of the net investment in the subsidiary as an asset subject to a risk weight of 400 percent, consistent with the current treatment of certain equity exposures under the regulatory capital rules applicable to IDIs.”
Governor Michelle Bowman commented that although she supports the final rule, she cannot support the delegation of authority to staff within the current package. Concerned that the package grants broad authority to staff to make various determinations regarding the rule’s application, Bowman argues that the Board should have the opportunity to review specific cases where such authority would be exercised and suggests that it would be more appropriate to establish clear guidelines for the use of delegated authority in the context of actual determinations.
The Fed noted that the final rule is “substantially similar” to the 2019 proposed rule. The final rule is effective on January 1, 2024.
NY proposes amendments of debt collector rules
On September 30, the New York City Department of Consumer and Worker Protection (Department) published proposed amendments to its rules relating to debt collectors. The proposed amendments to its 2020 rules, which require debt collectors to inform consumers about language access services, come in response to the CFPB’s 2020 updates to the FDCPA, and the Department’s 2022 public hearing, among other things. The proposed rule (i) repeals a section requiring debt collection agencies to give consumers certain disclosures when collecting on time-barred debt; (ii) requires debt collection agencies to maintain an annual report identifying certain actions taken by the agency in any language; (iii) expands the list of required records to cover compliance with relevant laws and rules, as well as a monthly log of all debt collection-related communications by any medium between the agency and the consumer; and (iv) adds definitions relating to communications with consumers, such as “attempted communication,” “clear and conspicuous,” “covered medical entity,” “limited-content message,” “original creditor” and “originating creditor.”
FDIC proposes additions to its safety and soundness standards
On October 5, the FDIC issued a notice of proposed rulemaking that would add a new appendix to the agency’s safety and soundness standards. The new appendix, which would be Appendix C, “is intended to promote strong corporate governance and risk management at FDIC-supervised institutions that have total consolidated assets of $10 billion or more by proposing corporate governance and risk management guidelines.” The proposed guidelines would describe the general obligations of the board of directors, requiring the board to be active and involved in protecting the interests of the institution, adopt a code of ethics for the institution’s operations, and form a Risk Committee within the institution’s committee structure. The proposed guidelines would also require institutions to establish a risk management program that includes a “three-line-of-defense model” for risk monitoring and reporting, as well as require institutions to create and maintain a risk profile and risk appetite statements that are communicated to all employees to encourage compliance.
FHFA OIG report reveals Federal Home Loan banks did not meet credit risk expectations
On September 21, FHFA Office of Inspector General (OIG) released a report on Federal Home Loan Bank Supervisory Activities in 2023 in Response to Market Disruptions (report), to evaluate the Division of Federal Home Loan Bank Regulation (DBR) risk assessment. DBR is responsible for supervising the Federal Home Loan (FHL) Bank System “to ensure the safe and sound operation of FHL banks.” The OIG addressed March bank failures and how the DBR scrutinized the FHL banks’ member credit risk management practices and, more broadly, into the system’s role in lending to troubled members. The report found that DBR examiners, in response to the increased risk environment, adjusted its supervisory activities and examination planning. Additionally, the OIG noted that DBR intends to conduct a comprehensive assessment of credit risk management across the entire FHL bank system to address concerns regarding systemic vulnerabilities. The report also revealed that in the review of examiner compliance, although DBR mostly followed procedure and requirements, “in certain instances, examiners did not describe primary worksteps in their pre-examination analysis memoranda, as required by DBR procedures.”
According to the report, FHFA also ordered an assessment of six FHL banks during or after the March market disruption, “in response to the abrupt increase in demand for FHLBank advances and the collapse of several member banks.” The report notably revealed that home loan banks’ credit risk management “fail[ed] to meet existing expectations.” As a result, DBR is preparing a supervisory letter for all the FHL banks and an advisory bulletin on member credit risk.
FCC updates rules to curb robocallers
On September 21, the FCC adopted rules that would strengthen and modernize the requirements that providers under the Voice over Internet Protocol (VoIP) need to abide by to obtain direct access to telephone numbers. The rules impose guardrails to make it more difficult for those who make illegal robocalls to access telephone numbers, which the FCC stated helps to protect national security and law enforcement, safeguard the nation’s finite numbering resources, reduce the opportunity for regulatory arbitrage, and further promote public safety. The FCC finalized the rules after the FCC sought comment in 2021 under the Telephone Robocall Abuse Criminal Enforcement and Deterrence (TRACED) Act, which directed the FCC to examine its rules regarding direct access to telephone numbers.
The rules require an applicant seeking direct access to telephone numbers to:
- Provide certifications regarding its compliance with FCC robocall rules, FCC interconnected VoIP provider rules, and timely filing of FCC Forms 477 and 499.
- Submit disclosures on and continue to update its ownership structure, including related foreign entities, to reduce the risk that U.S. numbering resources reach bad actors abroad.
- Comply with applicable business-related state laws and registration requirements.
The rules codify the FCC’s role in completing direct access application review and rejection and the authorization revocation process.
Additionally, the rules instruct the North American Numbering Council to study numbering use to inform the FCC’s future rulemaking. The rules also seek comments on a variety of topics, including further reforms on new direct access applications, duties of existing direct access authorization holders, and whether direct access applicants should disclose a list of states where they will provide initial services.
The rules will take effect 30 days after publication in the Federal Register.
CFPB announces consumer reporting rulemaking
On September 21, the CFPB announced the beginning of its anticipated rulemaking regarding consumer reporting, including a proposal to remove medical bills from credit reports. This announcement builds upon a hearing the CFPB held in July 2023 on medical billing and collections, highlighting its range of negative impact on marginalized communities (covered by InfoBytes here). In the CFPB’s announcement, Director Rohit Chopra emphasized the inconsequential “predictive value” of medical bills in credit reports despite their prevalence in American households, thus the agency's goal is to alleviate the burden on individuals facing medical debt. The Bureau’s press release highlighted components to its outline of proposals and alternatives under consideration, such as (i) prohibiting consumer reporting companies from including medical bills in consumers’ credit reports; (ii) prohibiting creditors from relying on medical bills for underwriting decisions; and (iii) prohibiting debt collectors from leveraging the credit reporting system to pressure consumers into paying their debts. The rule would not prevent creditors from accessing medical bill information, such as validating need for medical forbearances, or evaluating loan applications for paying medical debt.
In addition to the proposed removal of medical debt from consumer reports, the Bureau’s outline includes other notable proposals regarding consumer reports. The Bureau’s proposals include:
- As previously covered by InfoBytes, applying the FCRA to data brokers by altering the FCRA definitions of “consumer report” and “consumer reporting agency”, to “address whether and how the FCRA applies to newer actors and practices in the credit reporting marketplace, including questions such as coverage of data brokers and certain consumer reposting agency practices regarding marketing and advertising.” In particular, the Bureau is also considering a proposal that would provide that data brokers selling “consumer reports” containing consumers’ payment history, income, and criminal records would be considered a consumer reporting agency. The Bureau is also exploring clarifications on when data brokers qualify as consumer reporting agencies and furnish consumer reports.
- Clarifying whether “credit header data” qualifies as a consumer report, which could limit the disclosure or sale of credit header data without valid reasoning.
- Clarifying that certain targeted marketing activities that do not directly share information with a third party nevertheless are subject to the FCRA.
- Proposing a definition of the terms “assembling” and “evaluating” to include intermediaries or vendors that “transmit consumer data electronically between data sources and users.”
- Clarifying whether and when aggregated or anonymized consumer report information constitutes or does not constitute a consumer report. Specifically, the Bureau contemplates providing that a data broker’s sale of particular data points such as “payment history, income, and criminal records” would “generally be a consumer reports, regardless of the purpose for which the data was actually used or collected, or the expectations of that data broker
- Establishing the steps that a company must take to obtain a consumer’s written instructions to a obtain a consumer report.
- Addressing a consumer reporting agency’s obligation under the FCRA to protect consumer reports from a data breach or unauthorized access.
SEC adopts truth-in-advertising rule enhancements for funds
On September 20, the SEC adopted amendments (as set forth in the final rule and as discussed in the fact sheet) to the Investment Companies Act rule that requires investment companies whose names suggest a focus in a particular type of investment to adopt a policy to invest not less than 80 percent of the value of their assets in those investments (the “Names Rule”). The agency said amendments to the Names Rule will enhance its protections by addressing gaps in the current requirements and will “help ensure that a fund’s portfolio aligns with a fund’s name.”
The Names Rule promotes truth-in-advertising by ensuring that a fund whose name accurately suggests a focus on a particular type of investment adopt a policy to align its portfolio to put 80 percent of its assets toward the cause suggested by its name (the “80 percent investment policy”).
The SEC said, “the amendments will enhance the rule’s protections by requiring more funds to adopt an 80 percent investment policy, including funds with names suggesting a focus in investments with particular characteristics, for example, terms such as 'growth' or 'value,' or certain terms that reference a thematic investment focus, such as the incorporation of one or more Environmental, Social, or Governance factors.”
The amendments will expand the requirement to adopt an 80 percent investment policy to more funds, including those with names suggesting a focus in investments with particular characteristics (e.g., “growth” or “value”), or certain terms that reference the incorporation of one or more ESG factors. The amendments will also (i) require that a fund conduct a quarterly review of its portfolio assets’ treatment under its 80 percent investment policy; (ii) establish deadlines for getting back into compliance if a fund departs from its 80 percent investment policy; (iii) enhanced prospectus disclosure requirements to require that terminology used in fund names that suggest an investment focus must be consistent with the plain English meaning or established industry use of such terms.
The amendments will become effective 60 days after publication in the Federal Register. Fund groups with more than $1 billion in assets under management will have two years to comply with the rule. Funds that manage less than $1 billion will be given 30 months to comply with the rule.
SEC approves final Privacy Act rules
On September 20, the SEC announced the approval of its revised Privacy Act rules, which govern the handling of personal information in the federal government. Among other things, the final rule will update, clarify, and streamline the SEC’s Privacy Act Regulations by (i) clarifying the purpose and scope of the regulations; (ii) updating definitions to plainly describe regulation processes; (iii) allowing for electronic methods to verify requesters identities and submit Privacy Act requests; and (iv) providing for a shorter response time to Privacy Act requests. The final rule will also update fee provisions and eliminate unnecessary provisions. The SEC last updated its Privacy Act rules in 2011, and due to the extent of the provisions, the final rule will replace the commission’s current Privacy Act regulations entirely.
The revised rule will take effect 30 days after publication in the Federal Register.
CFPB issues guidance on adverse action reasons by creditors using AI
On September 19, the CFPB issued guidance about legal requirements that creditors must follow when using artificial intelligence and other complex models.
In prior guidance, the agency stated that lenders must provide specific and accurate reasons for adverse actions against consumers. The latest guidance expanded upon that prior guidance to clarify that lenders cannot simply use CFPB sample adverse action forms and checklists when taking adverse actions against consumers, but must explain the reasons for such adverse actions to help improve consumers’ chances for future credit, and protect consumers from illegal discrimination.
In its announcement of the updated guidance, the CFPB discussed the potential that consumers may be denied credit as a result of the increased use of complex, predictive decision-making technologies to analyze large datasets that may include consumer surveillance data or other information that the consumer may not believe is relevant to their finances. The agency confirmed that creditors must disclose the specific reasons for adverse action, even if consumers may be surprised, upset, or angered to learn their credit applications were being graded on data that may not intuitively relate to their finances. According to the guidance, a creditor is not absolved from the requirement to specifically and accurately inform consumers of the reasons for adverse actions because the use of predictive decision-making technologies in their underwriting models makes it difficult to pinpoint the specific reasons for such adverse actions.
CFPB adjusts annual dollar amount thresholds under TILA, HMDA regulations
On September 18, the CFPB released a final rule revising the dollar amounts for provisions implementing TILA and its amendments that impact loans under the Home Ownership and Equity Protection Act of 1994 (HOEPA) and qualified mortgages (QM). The Bureau is required to make annual adjustments to dollar amounts in certain provisions in Regulation Z, and has based the adjustments on the annual percentage change reflected in the Consumer Price Index for Urban Wage Earners and Clerical Workers (CPI-W) in effect on June 1, 2023. The following thresholds are effective January 1, 2024:
- For HOEPA loans the adjusted total loan amount threshold for high-cost mortgages will be $26,092, and the adjusted points-and-fees dollar trigger for high-cost mortgages will be $1,305;
- For qualified mortgages under the General QM loan definition, the thresholds for the spread between the annual percentage rate and the average prime offer rate will be: “2.25 or more percentage points for a first-lien covered transaction with a loan amount greater than or equal to $130,461; 3.5 or more percentage points for a first-lien covered transaction with a loan amount greater than or equal to $78,277 but less than $130,461; 6.5 or more percentage points for a first-lien covered transaction with a loan amount less than $78,277; 6.5 or more percentage points for a first-lien covered transaction secured by a manufactured home with a loan amount less than $130,461; 3.5 or more percentage points for a subordinate-lien covered transaction with a loan amount greater than or equal to $78,277; or 6.5 or more percentage points for a subordinate-lien covered transaction with a loan amount less than $78,277”; and
- For all QM categories, the adjusted thresholds for total points and fees will be “3 percent of the total loan amount for a loan greater than or equal to $130,461; $3,914 for a loan amount greater than or equal to $78,277 but less than $130,461; 5 percent of the total loan amount for a loan greater than or equal to $26,092 but less than $78,277; $1,305 for a loan amount greater than or equal to $16,308 but less than $26,092; and 8 percent of the total loan amount for a loan amount less than $16,308.”
With respect to credit card annual adjustments, the Bureau noted that its 2024 annual adjustment analysis on the CPI-W in effect on June 1, did not result in an increase to the current minimum interest charge threshold (which requires “creditors to disclose any minimum interest charge exceeding $1.00 that could be imposed during a billing cycle”).