InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
FinCEN provides timing on CTA rulemaking
On October 12, FinCEN acting Director Himamauli Das provided timelines on recent agency efforts to combat financial crime. Speaking during the ACAMS AML Conference, Das pointed to actions taken by bad actors to hide assets behind shell/front companies and evade U.S. sanctions, and highlighted measures, including beneficial ownership information reporting, suspicious activity reporting, and geographic targeting, designed to combat illicit activity. Das also provided an update on recent rulemakings mandated by the Corporate Transparency Act (CTA), including (i) the beneficial ownership reporting rule (which takes effect January 1, 2024, and is covered by InfoBytes here); (ii) the access rule, which would establish protocols for accessing the beneficial ownership database by law enforcement and financial institutions (FinCEN is currently working on the notice of proposed rulemaking and expects to issue it in the near term); and (iii) the Customer Due Diligence rule, which Das said will be revised “no later than one year after the effective date of the reporting rule” as required by the CTA. He added that FinCEN is also developing an “infrastructure to build a secure and confidential database that meets the highest security standards” to ensure only authorized users can access information. This system is expected to be operational by the time the beneficial ownership reporting rule takes effect. Additionally, FinCEN will, among other things, develop guidance and educational materials to assist companies when preparing their beneficial ownership information reports and will continue to regularly update its dedicated resource page on this subject.
CFPB seeks comments on mortgage refinance and forbearance standards
On September 27, the CFPB issued a notice in the Federal Register requesting input from the public regarding (i) the availability of refinance loans for borrowers with smaller mortgage loan balances, and (ii) options for mortgage forbearance. Specifically, the Bureau sought ways to: (i) “facilitate mortgage refinances for consumers who would benefit from refinancing, especially consumers with smaller loan balances”; and (ii) “reduce risks for consumers who experience disruptions in their financial situation that could interfere with their ability to remain current on their mortgage payments.” The Bureau also noted that some stakeholders have suggested that changes to the Bureau’s ability-to-repay/qualified mortgage rule (ATR–QM rule) may play a role in facilitating beneficial refinances through targeted and streamlined programs, noting that the current rule references “frictions” in the refinance process tied to QM standards. Comments are due by November 28.
FHA seeks to increase small balance mortgages
On October 4, FHA announced a request for information (RFI) seeking input on ways to facilitate greater origination of small balance mortgages for FHA insurance. FHA will use feedback received in response to the RFI to help identify barriers to the origination of small mortgages in its program. The agency will also consider the development of policies and programs to better support and expand affordable homeownership opportunities in underserved markets with lower housing prices and to close the racial homeownership gap. According to the announcement, the RFI seeks input on topics related to “the current availability of small mortgage financing, barriers and disincentives to small mortgage lending transactions, changes to policies or processes that would encourage origination of more FHA-insured small balance mortgages, and considerations regarding liquidity provided through securitization.” Comments on the RFI are due December 5.
In conjunction with the RFI, HUD released a report assessing factors that limit the supply of small mortgage loans and highlighting challenges facing borrowers who need loans to purchase lower-priced homes. The report, titled Financing Lower-Priced Homes: Small Mortgage Loans, found that mortgage loans having an original principal obligation of $70,000 or less represent less than 3.5 percent of originations in 2020. Many of these loans secure properties valued at more than $70,000—an indication that the purchases included substantial down payments, HUD said. Among other things, the report also found that FHA disproportionately insures loans for lower-priced homes compared to the rest of the mortgage market and has loan insurance programs for financing property improvements and manufactured homes that are particularly targeted to lower loan amounts. Additionally, the report flagged the fixed costs of loan origination and servicing as a significant barrier to small mortgage lending, noting that this makes small mortgage loans less profitable and may necessitate additional incentives for lenders, such as reducing costs or providing additional lender or loan originator compensation.
OFAC issues guidance on instant payment systems sanctions compliance
On September 30, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) published Sanctions Compliance Guidance for Instant Payment Systems, which emphasizes the importance of taking a risk-based approach to managing sanctions risks in the context of new payment technologies, such as instant payment systems, and highlights considerations relevant to managing those risks. According to OFAC, the guidance “encourages developers of instant payment systems to incorporate sanctions compliance considerations and features as they develop these systems.” The guidance, among other things, describes: (i) risk factors and considerations for instant payment systems; (ii) domestic vs. cross-border payment system; (iii) availability of emerging sanctions compliance technologies and solution; (iv) nature and value of payment; and (v) OFAC engagement and resources.
Democrats urge FTC to update COPPA
On September 29, Senator Edward J. Markey (D-MA), along with three other Congressional Democrats, sent a letter to FTC Chair Lina Khan requesting that the Commission update its regulations under the Children’s Online Privacy Protection Act (COPPA). The Senators encouraged the FTC to use its regulatory authority to update COPPA to implement additional protections addressing online threats to children as their use of technology increases. They laid out several areas for the FTC’s consideration, including (i) “expanding the definition of ‘personal information’ covered under COPPA”; (ii) “implementing rules to effectuate COPPA’s prohibition on conditioning a child’s participation in an online activity on the child sharing more data than is reasonably necessary”; (iii) “implementing rules to effectuate COPPA’s requirement that platforms protect the confidentiality, security, and integrity of children’s data”; (iv) “ensuring that COPPA’s requirements protect children on the platforms they actually use by updating COPPA’s regulations defining platforms that are directed to children and updating regulations defining platforms that have actual knowledge they are collecting data from children”; (v) “implementing regulatory protections that reflect the increased use of online platforms for educational purposes”; and “(vi) implementing regulatory protections that reflect changes in online advertising practices.”
The Senators also applauded the FTC’s recently issued advanced notice of proposed rulemaking requesting feedback on questions related to a wide range of concerns about commercial surveillance practices (covered by InfoBytes here), including those involving children and teens, and advised the Commission to closely review and consider expert responses when crafting its rules aimed at the protection of children’s privacy.
Fed finalizes debit card transaction requirement changes
On October 3, the Federal Reserve Board adopted a final rule amending Regulation II, which implements Section 920 of the EFTA, to require that each debit card transaction, including “card-not-present” transactions, must be able to be processed on at least two unaffiliated payment card networks. The final rule, which is substantially similar to the Fed’s notice of proposed rulemaking issued in May 2021 (covered by InfoBytes here), also clarified that the debit card issuer is responsible for ensuring at least two unaffiliated networks have been enabled to process a debit card transaction, and standardizes and clarifies the use of certain terminology in the Fed’s Official Board Commentary on Regulation II. The Fed noted that when the rule was initially issued in 2011, the market had not yet developed solutions to broadly support multiple networks for card-not-present debit card transactions. Claiming technology has since evolved to address these challenges, the Fed said the final rule includes changes to make it easier for debit card issuers to determine whether they are in compliance and encourages competition between networks. The Fed noted, however, that the final rule does not modify interchange fee requirements. The agency said it will continue to review these requirements in light of recently collected debit card industry cost data, and may propose to modify these requirements in the future. The final rule is effective July 1, 2023.
Federal Reserve Governor Michelle W. Bowman voted against adopting the final rule. “During the public comment process, community banks raised substantial concerns with the proposal,” she said. “Although the Board has attempted to identify the likely effects of the proposed rule based on available information, I believe that significant questions remain about how the rule will affect banks, and particularly community banks, with respect to both fraud and the cost of compliance. Given this continued uncertainty, I do not support the final rule.”
Agencies say “living will” guidance for large banks is forthcoming
On September 30, the FDIC and Federal Reserve Board jointly announced that resolution plan guidance for Category II and Category III banking organizations is forthcoming. Large banks that fall withing these categories are generally those with more than $250 billion in total assets but that are not global systemically important banks (G-SIBs). “Larger and more complex banks are already subject to guidance from the agencies,” the agencies said, explaining that Category II and III banks have not received resolution plan guidance yet. These plans—commonly known as “living wills”—outline a bank’s strategy for rapid and orderly resolution under bankruptcy in the event of financial distress or failure. An opportunity for public comment on the guidance will be provided before it is finalized.
CFPB updates education loan servicing examination procedures
On September 28, the CFPB updated the education loan examination procedures in its Supervision and Examination Manual. According to the Bureau, the update to the education loan servicing examination procedures clarifies that when determining its authority to supervise a private student lender, the Bureau “look[s] only to the definition of private education loan in the Truth in Lending Act and not also to Regulation Z.” The Bureau noted that depending on the scope of an examination, “and in conjunction with the compliance management system and consumer complaint response review procedures,” an examination will cover at least one of the following modules: (i) advertising, marketing, and lead generation; (ii) customer application, qualification, loan origination, and disbursement; (iii) student loan servicing; (vi) borrower inquiries and complaints; (v) collections, accounts in default, and credit reporting; (vi) information sharing and privacy; and (vii) examination conclusion and wrap-up.
FinCEN releases final rule on beneficial ownership reporting
On September 29, FinCEN issued a final rule establishing a beneficial ownership information reporting requirement, pursuant to the bipartisan Corporate Transparency Act. According to FinCEN, the final rule will require most corporations, limited liability companies, and other entities created in or registered to do business in the U.S. to report information about their beneficial owners to FinCEN. FinCEN noted that the final rule is designed to protect national security and strengthen the integrity and transparency of the U.S. financial system. FinCEN also released a Fact Sheet clarifying the final rule. The final rule is effective January 1, 2024. Reporting companies created or registered before January 1, 2024, will have until January 1, 2025, to file their initial reports, while reporting companies created or registered after January 1, 2024, will have 30 days after creation or registration to file their initial reports. Once the initial report has been filed, both existing and new reporting companies will have to file updates within 30 days of a change in their beneficial ownership information, according to FinCEN. The same day, Treasury Secretary Janet L. Yellen released a statement, noting that the final rule is “a major step forward in giving law enforcement, national security agencies, and other partners the information they need to crack down on criminals, corrupt individuals, and other bad actors who seek to take advantage of America’s financial system for illicit purposes.”
FCC proposes rulemaking to combat unlawful text messages
On September 27, the FCC announced a notice of proposed rulemaking (NPRM) to target and eliminate unlawful text messages. According to the FCC, the number of consumer complaints received related to unwanted text messages has increased by 146 percent between 2019 and 2020, and continues to grow in 2022. The Commission warns that these text messages present harms beyond that of unwanted phone calls, as text messages can include phishing and malware links. More than $86 million was stolen in 2020 through spam texting fraud schemes, the FCC reports. The NPRM seeks feedback on several topics, including whether providers should follow the STIR/SHAKEN authentication protocols for text messages as they do for phone calls, whether providers should block texts from invalid phone numbers, and how it can ensure that emergency text messages or other appropriate texts are not erroneously blocked. The NPRM also proposes requiring providers to block texts that appear to originate from phone numbers that are invalid, unallocated, or unused as well as numbers on the “Do-Not-Originate” list.
The Commission is also seeking input on the extent to which spoofing is a problem in texting, and if caller ID authentication standards should be applied to texting. Spoofing is when a sender deliberately disguises their number to trick a recipient into thinking the message is trustworthy. A working group of the Internet Engineering Task Force is currently considering a draft standard that would apply parts of the STIR/SHAKEN framework to text messages, the FCC stated, adding that it is asking stakeholders for suggestions on an ideal timeline and feedback on whether the current framework’s governance system would be able to accommodate authentication for text messages or if the framework would require more comprehensive technology network upgrades.
Comments on the NPRM are due 30 days after publication in the Federal Register.