Skip to main content
Menu Icon
Close

InfoBytes Blog

Financial Services Law Insights and Observations

Filter

Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.

  • CFPB launches medical-debt inquiry with HHS and Treasury

    Agency Rule-Making & Guidance

    On July 7, the CFPB, Department of Health and Human Services, and the Treasury Department announced they are looking into high-cost specialty financial products such as medical credit cards and installment loans used by patients to pay for health care. These products, the agencies explained, were once primarily used to pay for medical treatments not traditionally covered by health insurance but may now be more widely used even when medical care may be covered by insurance or financial assistance. The agencies released a request for information (RFI) seeking feedback on a range of topics, including costs associated with medical payment products, how prevalent the products are, health care providers’ incentives to offer these products to patients, and whether patients fully understand the risks and consequences associated with medical payment products.

    Specifically, the agencies are soliciting comments “on whether these products may allow health care providers to operate outside of a broad range of patient and consumer protections.” Feedback is also requested on whether use of these products is contributing to health care cost inflation, displacing hospitals’ provision of financial assistance, causing patients to pay inaccurate or inflated medical bills, increasing the amount patients must pay due to financing costs, or otherwise contributing to consumer harm, including through downstream credit reporting and debt collection practices. The agencies also want to know if using these products is creating disparities across different demographic groups, as well as policy options to protect consumers from harm.

    The agencies commented that the RFI will assist in their understanding of consumer harms and financial challenges caused by specialty medical payment products and will serve to guide next steps, including future Bureau actions focusing on credit origination, debt collection, and credit reporting practices of the financial companies that originate and service these products.

    Comments on the RFI are due within 60 days of publication in the Federal Register.

    Additionally, the Bureau is hosting a hearing on July 11 to address medical billing and collection concerns with a focus on medical payment products.

    Agency Rule-Making & Guidance Federal Issues CFPB Department of Health and Human Services Department of Treasury Credit Cards Consumer Finance Installment Loans

  • FTC proposal would ban deceptive reviews

    Agency Rule-Making & Guidance

    On June 30, the FTC introduced a proposed rule to combat deceptive review practices and ensure consumer protection in light of the impact and progression of technology and artificial intelligence. The rule seeks to prohibit the creation and sale of fake consumer reviews, prevent review hijacking, and restrict the manipulation of reviews through incentives. Under the proposed rule, businesses would be prohibited from creating or selling reviews by individuals who do not exist or lack real experience with the product or service. Additionally, the proposed rule prohibits businesses from providing compensation or incentives in exchange for consumer reviews expressing specific sentiments, whether positive or negative. To enhance transparency and integrity, the proposed rule also includes provisions related to insider reviews and testimonials. It also emphasizes the importance of transparency by requiring disclosure of relationships in insider reviews and testimonials. Under these provisions, officers and managers of companies would be required to disclose their relationships when writing reviews or testimonials about their products or services. Businesses would also be obligated to disclose relationships in testimonials written by insiders. Moreover, the FTC's proposed rule targets businesses that create or control websites claiming to provide impartial opinions about a particular category of products or services, including their offerings. Further, it prohibits businesses from using unjustified legal threats, intimidation, or false accusations to prevent or remove negative consumer reviews. This provision aims to preserve the independence and authenticity of consumer reviews, preventing businesses from manipulating public perception through controlled review websites. Considering the widespread influence of social media, the rule would prohibit businesses from selling or buying fake followers or views.

    The FTC is currently seeking public comments on the proposed rule.

    Agency Rule-Making & Guidance Federal Issues FTC Consumer Protection Online Marketplace Deceptive

  • CFPB issues guidance on small business data collection

    Agency Rule-Making & Guidance

    On June 28, the CFPB released additional guidance to help financial institutions comply with the agency’s small-business lending data collection rule. The small business lending rule, which implements Section 1071 of the Dodd-Frank Act, requires financial institutions to collect and provide to the Bureau data on lending to small businesses with gross revenue under $5 million in their previous fiscal year. As previously covered by InfoBytes, the final rule prescribes a tiered compliance date schedule, with the earliest compliance date being October 1, 2024, for financial institutions that originate at least 2,500 covered small business loans in both 2022 and 2023 (financial institutions with lower origination amounts have later compliance dates).

    To aid financial institutions, the Bureau updated several frequently asked questions to provide additional clarity on who is covered by the small business lending rule and to explain that a financial institution that meets the origination threshold in each of the two immediately preceding calendar years is a covered financial institution, regardless of whether the financial institution has a branch or office in a metropolitan statistical area. The FAQs also (i) outline qualified covered credit transactions and exemptions; (ii) provide a detailed breakdown of the types of transactions a financial institution must count when determining whether it satisfies the origination threshold; (iii) discuss whether a financial institution that is not subject to HMDA reporting is required to count HMDA-reportable loans as covered originations; (iv) address how to count a covered origination if multiple financial institutions were involved in originating the covered credit transaction or when a covered credit transaction is extended to multiple borrowers but only one is a small business; and (v) explain methodologies financial institutions can use to calculate estimated covered originations. In conjunction with the FAQs, the Bureau also released a compliance aid providing additional information covered during a recent Bureau presentation.

    Agency Rule-Making & Guidance Federal Issues CFPB Small Business Lending Section 1071

  • 26 state AGs support FTC’s proposal on Negative Option Rule

    State Issues

    On June 26, a coalition of 26 state attorneys general from New York, Pennsylvania, Alabama, Arizona, California, Colorado, Connecticut, Delaware, District of Columbia, Hawaii, Illinois, Maine, Maryland, Massachusetts, Michigan, Minnesota, Nebraska, Nevada, New Jersey, North Carolina, North Dakota, Oklahoma, Oregon, Vermont, Washington, and Wisconsin, submitted a comment letter in support of the FTC’s proposed amendments to its Negative Option Rule. While the Negative Option Rule is intended to combat unfair or deceptive practices related to subscriptions, memberships, and other recurring-payment programs, the FTC maintained that current laws and regulations do not clearly provide a consistent legal framework for these types of programs. (Covered by InfoBytes here.)

    In March, the FTC issued a notice of proposed rulemaking (NRPM), which would apply to all subscription features in all media (including “the internet, telephone, in-print, and in-person transactions”) and would regulate additional types of negative-option practices, including automatic renewals, free trial offers, and continuity plans. The NPRM proposes to add a new “click to cancel” provision making it as easy for consumers to cancel their enrollment as it was to sign up. Sellers would be required to first ask consumers whether they want to hear about new offers or modifications before making a pitch when consumers are trying to cancel their enrollment. Sellers further must provide consumers who are enrolled in negative option programs with an annual reminder involving anything other than physical goods before they are automatically renewed.

    In their letter, the states expressed support for the FTC’s NPRM, in particular, the provisions that would preserve state authority to regulate negative-option marketing and to enact greater protections and stricter laws than those proposed by the FTC. The states also agreed that the NPRM provides additional guidance and clarity on how businesses can comply with existing legal frameworks. However, the states urged the FTC to consider additional clarifications and improvements, including (i) requiring businesses to “clearly and conspicuously inform consumers of any conditions (or lack thereof) concerning cancellation”; (ii) requiring businesses to obtain an additional round of consent before charging a consumer at the end of a free trial; (ii) clarifying businesses’ cancellation mechanisms must be cost effective, timely, simple, and easy to use; (iii) expanding the methods that a consumer may use to cancel a recurring contract and allowing “all consumers to cancel through any medium that the seller uses to sell subscriptions or memberships, regardless of the medium through which that particular consumer signed up”; and (iv) requiring businesses to provide negative option reminders in additional ways—“not only through the same medium that the consumer used to consent to the negative option feature but also through any other medium that the seller uses to communicate with the consumer.”

    State Issues Agency Rule-Making & Guidance State Attorney General FTC Negative Option

  • FTC notifies online marketplaces on INFORM compliance

    Agency Rule-Making & Guidance

    On June 20, the FTC sent 50 letters to online marketplaces nationwide notifying them of their obligation to comply with the INFORM Consumers Act (the “Act”) set to take effect on June 27. The Act “imposes obligations on online marketplaces regarding the collection, verification, safeguarding, and disclosure of certain identifying information of ‘high-volume third party sellers’ that sell, offer to sell, or contract to sell new or unused consumer products in the United States through marketplaces’ platforms.” The Act also requires that online marketplaces make reporting of certain suspicious marketplace activity available. The letter warns that the FTC will enforce the Act to its fullest extent, and therefore encourages online vendors to prepare for the Act’s imposition, including by communicating with and informing third party sellers about the information the Act requires to be collected, verified, and disclosed. The FTC also emphasizes the civil penalties for violations of the Act, which are north of $50,000, in the letter. According to the FTC, the Act is designed to protect consumers from unsafe, stolen, and counterfeit goods by verifying the identity of their third-party sellers and simplifying the avenues for consumers to report suspicious activity.

    Agency Rule-Making & Guidance FTC Federal Legislation Consumer Protection Online Marketplace

  • CFPB looking at privacy implications of worker surveillance

    Agency Rule-Making & Guidance

    On June 20, the CFPB released a statement announcing it will be “embarking on an inquiry into the data broker industry and issues raised by new technological developments.” The Bureau requested information in March about entities that purchase information from data brokers, the negative impacts of data broker practices, and the issues consumers face when they wish to see or correct their personal information. (Covered by InfoBytes here.) The findings from this inquiry will help the Bureau understand how employees’ personal information can find its way into the data broker market.

    With similar intentions, the White House Office of Science and Technology Policy (OSTP) released a request for information (RFI) to learn more about the automated tools employers use to monitor, screen, surveil, and manage their employees. The OSTP blog post cited to an increase in the use of technologies that handle employees’ sensitive information and data. The OSTP also highlighted the Biden administration’s Blueprint for an AI Bill of Rights (covered by InfoBytes here), which underscored the importance of building in protections when developing new technologies and understanding associated risks. Responses to the RFI will be used to “inform new policy responses, share relevant research, data, and findings with the public, and amplify best practices among employers, worker organizations, technology vendors, developers, and others in civil society,” the OSTP said.

    The CFPB’s response to the RFI described the agency’s concerns regarding risks to employees’ privacy, noting that it has long received complaints from the public about the lack of transparency and inaccuracies in the employment screening industry. Specifically mentioned are FCRA protections for consumers and guidelines around the sale of personal data. The Bureau also commented that employees may not be at liberty to determine how their information is used, or sold, and have no opportunity for recourse when inaccurately reported information affects their earnings, access to credit, ability to rent a home or buy a car, and more.

    Agency Rule-Making & Guidance Federal Issues Privacy, Cyber Risk & Data Security CFPB Consumer Finance Consumer Protection Privacy Data Brokers Biden FCRA

  • McHenry objects to FSOC’s proposed designation framework

    Agency Rule-Making & Guidance

    On June 15, House Financial Services Committee Chairman Patrick McHenry sent a letter to Treasury Secretary Janet Yellen urging the Financial Stability Oversight Council (FSOC), which Yellen chairs, to “revisit” its proposals on nonbank financial firm risks. As previously covered by InfoBytes, in April, FSOC released a proposed analytic framework for financial stability risks to provide greater public transparency on how it identifies, assesses, and addresses potential risks “regardless of whether the risk stems from activities or firms.” The same day, FSOC also released for public comment proposed interpretive guidance relating to procedures for designating systemically important nonbank financial companies for Federal Reserve supervision and enhanced prudential standards.

    McHenry’s letter raised concerns with FSOC’s decision to evaluate risks based on an entity’s size and not its activities. According to McHenry, FSOC’s April proposals will essentially undo changes it made in 2019, which incorporated principles considering a financial institution’s systematic risk rather than merely its size. In his announcement accompanying the letter, McHenry elaborated on his concerns, stating that “allowing FSOC to extend its supervisory reach beyond prudential institutions to nonbank entities in this way could pose significant regulatory consequences for our financial system.” McHenry claimed these institutions may engage in different activities, thus presenting different risks, and said the proposals do not take this into account. McHenry also argued that expanding the Fed’s oversight jurisdiction is not a “panacea for financial stability.”

    Agency Rule-Making & Guidance Federal Issues FSOC Department of Treasury Nonbank House Financial Services Committee Supervision

  • Fed publishes master accounts database

    Federal Issues

    On June 16, the Federal Reserve Board published the Master Account and Services Database, which provides comprehensive, searchable information on which financial institutions have access to Federal Reserve Bank master accounts and financial services. The Fed explained that a master account is an account with a Reserve Bank, in which the Reserve Bank receives deposits for a financial institution. The Reserve Bank also provides financial services to financial institutions, similar to that of banks that provide services for its customers, like collecting checks, electronically transferring funds, and distributing and receiving cash and coin.

    In the press release, the Fed explained the two components of the database: “The first component consists of financial institutions that currently have access to Reserve Bank master accounts and services. The second component consists of financial institutions that have requested access to master accounts and services after December 23, 2022, or had a request pending on that date, as well as the status of each request.” Both components of the database—the existing account database and the access requests database—will be updated quarterly.

    Federal Issues Agency Rule-Making & Guidance Federal Reserve Bank Regulatory

  • FCC launches Privacy and Data Protection Task Force

    Privacy, Cyber Risk & Data Security

    On June 14, FCC Chairwoman Jessica Rosenworcel announced the establishment of the Commission’s new Privacy and Data Protection Task Force. According to the announcement, the task force will coordinate efforts across the FCC on rulemaking, enforcement, and public awareness needs in the privacy and data protection sectors. These coordinated measures, Rosenworcel said, are intended to protect against and respond to data breaches involving telecommunications providers and those related to cyber intrusions. Measures will also address supply chain vulnerabilities involving third-party vendors that service regulated communications providers. Speaking to the Center for Democracy and Technology Forum on Data Privacy, Rosenworcel commented that data monetization is big business and that “market incentives to keep our data and slice and dice it to inform commercial activity are enormous” and only increasing. She provided examples of data aggregators selling individual geolocation data and said this demonstrates how information can be monetized. Rosenworcel further explained that the task force will also provide input on Commission efforts to modernize the FCC’s data breach rules. As previously covered by InfoBytes, the FCC issued a notice of proposed rulemaking in January to launch a formal proceeding for strengthening the Commission’s rules for notifying customers and federal law enforcement of breaches of customer proprietary network information.

    Privacy, Cyber Risk & Data Security Agency Rule-Making & Guidance Federal Issues FCC Enforcement

  • CFPB releases regulatory agenda

    Agency Rule-Making & Guidance

    The Office of Information and Regulatory Affairs recently released the CFPB’s spring 2023 regulatory agenda. Key rulemaking initiatives that the agency expects to initiate or continue include:

    • Overdraft fees. The Bureau is considering whether to engage in pre-rulemaking activity in November to amend Regulation Z with respect to special rules for determining whether overdraft fees are considered finance charges.
    • FCRA rulemaking. The Bureau is considering whether to engage in pre-rulemaking activity in November to amend Regulation V, which implements the FCRA. In January, the Bureau issued its annual report covering information gathered by the Bureau regarding certain consumer complaints on the three largest nationwide consumer reporting agencies (CRAs). CFPB Director Rohit Chopra noted that the Bureau “will be exploring new rules to ensure that [the CRAs] are following the law, rather than cutting corners to fuel their profit model.” (Covered by InfoBytes here.)
    • Insufficient funds fees. The Bureau is considering whether to engage in pre-rulemaking activity in November regarding non-sufficient fund (NSF) fees. The Bureau commented that while NSF fees have been a significant source of fee revenue for depository institutions, recently some institutions have voluntarily stopped charging such fees.
    • Amendments to FIRREA concerning automated valuation models. On June 1, the Bureau issued a joint notice of proposed rulemaking (NPRM) with the Federal Reserve Board, OCC, FDIC, NCUA, and FHFA to develop regulations to implement quality control standards mandated by the Dodd-Frank Act concerning automated valuation models used by mortgage originators and secondary market issuers. (Covered by InfoBytes here.) Previously, the Bureau released a Small Business Regulatory Enforcement Fairness Act (SBREFA) outline and report in February and May 2022 respectively. (Covered by InfoBytes here.)
    • Section 1033 rulemaking. Section 1033 of Dodd-Frank provides that covered entities, such as banks, must make available to consumers, upon request, transaction data and other information concerning consumer financial products or services that the consumer obtains from the covered entity. Over the past several years, the Bureau has engaged in a series of rulemaking steps to prescribe standards for this requirement, including the release of a 71-page outline of proposals and alternatives in advance of convening a panel under the SBREFA and the issuance of a final report examining the impact of the Bureau’s proposals to address consumers’ personal financial data rights. (Covered by InfoBytes here.) Proposed rulemaking may be issued in October.
    • Property Assessed Clean Energy (PACE) financing. The Bureau issued an NPRM last month to extend TILA’s ability-to-repay requirements to PACE transactions. (Covered by InfoBytes here.) The proposed effective date is at least one year after the final rule is published in the Federal Register (“but no earlier than the October 1 which follows by at least six months Federal Register publication”), with the possibility of a further extension to ensure compliance with a TILA timing requirement.
    • Supervision of Larger Participants in Consumer Payment Markets. The Bureau is considering whether to engage in pre-rulemaking activity next month to define larger participants in consumer payment markets and further the scope of the agency’s nonbank supervision program.
    • Nonbank registration. The Bureau announced its intention to identify repeat financial law offenders by establishing a database of enforcement actions taken against certain nonbank covered entities. (Covered by InfoBytes here.) The Bureau anticipates issuing a final rule later this year.
    • Terms and conditions registry for supervised nonbanks. At the beginning of the year, the Bureau issued an NPRM that would create a public registry of terms and conditions used in non-negotiable, “take it or leave it” nonbank form contracts that “claim to waive or limit consumer rights and protections.” Under the proposal, supervised nonbank companies would be required to report annually to the Bureau on their use of standard-form contract terms that “seek to waive consumer rights or other legal protections or limit the ability of consumers to enforce or exercise their rights” and would appear in a publicly accessible registry. (Covered by InfoBytes here.) The Bureau anticipates issuing a final rule later this year.
    • Credit card penalty fees. The Bureau issued an NPRM in February to solicit public feedback on proposed changes to credit card late fees and late payments and card issuers’ revenue and expenses. (Covered by InfoBytes here.) Under the CARD Act rules inherited by the Bureau from the Fed, credit card late fees must be “reasonable and proportional” to the costs incurred by the issuer as a result of a late payment. A final rule may be issued later this year.
    • LIBOR transition. In April, the Bureau issued an interim final rule, amending Regulation Z, which implements TILA, to update various provisions related to the LIBOR transition. Effective May 15, the interim final rule further addresses LIBOR’s sunset on June 30, by incorporating references to the SOFR-based replacement—the Fed-selected benchmark replacement for the 12-month LIBOR index—into Regulation Z. (Covered by InfoBytes here.)

    Agency Rule-Making & Guidance Federal Issues CFPB Fintech Payments Dodd-Frank Overdraft FCRA Consumer Reporting Agency NSF Fees FIRREA AVMs Section 1033 PACE Nonbank Supervision Credit Cards LIBOR Consumer Finance

Pages

Upcoming Events