NCUA LTCU 23-CU-08: Resumption of Federal Student Loan Payments

NCUA Letter to Credit Unions 23-CU-08
Resumption of Federal Student Loan Payments

NASCUS Legislative and Regulatory Affairs Department
October 12, 2023

With federal student loan payments slated to resume this month, on October 11, the NCUA issued Letter to Credit Unions 2023-CU-08.  In this letter, the NCUA encourages credit unions to work with borrowers who may be negatively impacted by the increase in total repayment obligations. It also notes that credit unions will not be criticized for their efforts to provide relief to borrowers when such efforts are conducted in a “reasonable manner with proper controls and management oversight consistent with consumer financial protection requirements.

To ensure credit unions remain safe and sound and operate in a fair manner, the NCUA is providing the industry with the following strategies when evaluating exposure to borrowers facing payment stress associated with federal student loan repayment.

Risk Management Principles

The NCUA’s 2023 Supervisory Priorities indicate NCUA examiners will review the safety and soundness of existing lending programs at credit unions, adjustments to underwriting standards, portfolio monitoring practices, and loan workout strategies. Examiners will also review policies and procedures related to the Allowance for Credit Losses.

Risk Assessment

The letter indicates credit unions should assess aggregate exposure to borrowers with federal student loans and provides recommendations for analysis including:

  • Identifying borrowers with large student loan balances relative to income;
  • Reviewing borrowers’ credit bureau information;
  • Querying member transaction history prior to the repayment pause with payments from their credit union account; or
  • Considering other indicators such as the number of members with private student loan payments.

Borrower Outreach

The letter encourages credit unions to consider contacting borrowers to inform them about the credit union’s eligibility standards and processes for requesting loan modifications. It also provides credit unions with various resources to provide borrowers, including researching repayment obligations and applying for loan forgiveness. 

Underwriting and Modifications

The letter states that credit unions should apply prudent underwriting and loss mitigation strategies for borrowers experiencing financial difficulty and struggling to make their loan payments. It encourages credit unions to use well-structured and sustainable loan modifications that are in the best interest of both the credit union and the member.

Portfolio Monitoring

Credit unions should identify and monitor higher-risk portfolio segments and update the board on any relevant risk exposure in the following areas, including, but not limited to:

  • Private Student Loans;
  • Credit card balances or other debt obligations that increased during the student loan repayment pause or that increased after the repayment period resumed;
  • Adjustable-rate loans that have similar payment reset time frames; or
  • Elevated debt-to-income ratios or low credit scores.

Allowance for Credit Losses

Finally, credit unions need to consider whether the risk associated with federal student loan repayment is adequately captured in the Allowance for Credit Losses, as detailed in Accounting Standards Codification Topic 326.

Please select a valid form
The Legislative & Regulatory Affairs Committee (L&R Committee)

Our largest committee, consisting of over 70 members, is comprised of individuals from various segments of our membership, including regulators, credit unions, leagues, and associate members. This committee convenes on the first Wednesday of each month at 3 pm (EST) for a one-hour session to address significant issues facing our system. Additionally, this committee holds in-person meetings during our Annual NASCUS State System Summit (S3).

Furthermore, the committee plays a vital role in reviewing NASCUS comment letters, providing an open forum where any member can raise concerns or issues, and organizing special calls on topics like litigation trends and cryptocurrencies. Importantly, there is no limit on committee membership, and multiple individuals from the same credit union are welcome to participate.

The CDFI, MDI, and LICU Issues Committee

This committee, which is open to all NASCUS members, concentrates on raising awareness about the unique designations within the credit union sector, namely Community Development Financial Institution (CDFI), Minority Depository Institution (MDI), and Low-Income Credit Union (LICU). It also aims to identify advocacy objectives that NASCUS can pursue to enhance the significance of these special designations. The CDFI/MDI/LICU Issues Committee convenes every other month.

The Education Committee

This committee supervises NASCUS’s programs related to professional development, training, and education. It plays a crucial role in suggesting the educational requirements of the credit union system. It assesses NASCUS’s continuous professional development initiatives by examining program agendas, post-conference evaluations, and financial aspects of events. While membership on the Education Committee is available to all membership categories, it is limited to a maximum of eight participants.

If you have additional questions on how to participate with NASCUS Committees, please contact Shellee Mitchell.

NCUA Final Rule Summary

NCUA Rules 701 and 714: Financial Innovation: Loan Participations, Eligible Obligations, and Notes of Liquidating Credit Unions (NCUA-2022-0185)

NASCUS Legislative and Regulatory Affairs Department
September 29, 2023

Background

On September 21, 2023, the NCUA Board[1] approved for publication Final Rule. Published in the Federal Register on September 29, 2023[2], the Final Rule entitled Financial Innovation: Loan Participations, Eligible Obligations, and Notes of Liquidating Credit Unions seeks to amend 12 CFR Parts § 701 and § 714.  The final rule is effective October 30, 2023.

Amendments to the final rule apply to §§701.21, 701.22, 701.23, and 714.9 relating to origination of loans and lines of credit to members; the purchase of loan participations and the purchase, sale, and pledge of eligible obligations (including notes from liquidating credit unions).

The final rule adopts the amendments largely as initially proposed to provide additional flexibility to federally insured credit unions (FICUs) in the use of advanced technologies and other opportunities provided by the financial technology (Fintech) sector.  Further the amendments remove prescriptive limitations and other qualifying requirements relating to eligible obligations in favor of principle-based guidance that allow an institution to establish individual risk tolerance limits and governance policies.

Most significantly, the new rule conforms NCUA’s regulation regarding the definition of indirect lending and indirect leasing arrangements to be consistent with concepts outlined in NCUA Legal Opinion 15-0813, Loan Participations in Indirect Loans – Originating Lender[3].

The majority of the changes apply to FCUs with the exception of amendments to specific sections of §701.22 (participations).  However, amendments within §701.23 would impact transactions between FICUs and FCUs and some amendments could indirectly impact FISCUs in cases where state agencies use similarly constructed state regulations related to the determination of a purchased investment being classified as a loan to member, a participation, or a purchased obligation of a member.  Of particular interest are the amendments found in §701.21.

This summary will highlight the material implications of the changes that directly affect FISCUs and those with the potential to indirectly impact FISCUs through indirect, definitional and/or SSA adoption of NCUA like rules and regulations.

Summary

The following summarizes the material changes to each applicable section of the final rule.

§701.21 (Loans to members and lines of credit to members)
Provisions of § 701.21 apply to FCUs with only the following provisions applying to FICUs:

  • Insider lending restrictions as outlined in (c)(8);
  • Non-preferential treatment requirements to FISCU officials or related parties outlined in (d)(5); and
  • Third-party servicing of indirect vehicle loan limitations found in (h).

The final rule adds a new paragraph §701.21(c)(9) clarifying the definition of indirect lending and indirect leasing arrangements.  The application of these indirect arrangement definitions provides a purchasing credit union to consider purchased indirect loans as an originated loan to a member as outlined below.  These changes do not relate directly to state-chartered credit unions but may impact state language similarly adopted or bound by definitions in §701.21.  The new language replaces language formerly found in §701.23(b)(4)(iv).

Under §701.21(c)(9) indirect lending and leasing agreements are defined as written agreements to purchase loans or leases from an originating entity where the purchaser (1) makes the final underwriting decision, and (2) the loan or lease agreement is assigned to the purchaser “very soon after” it is signed by the member and the originating third-party retailer.  It is presumed that loans assigned “very soon after” the agreement between the consumer and the third-party retailer indicate the retailer acts as a facilitator of the loan as opposed to an originating lender.

The length of time that satisfies the “very soon after” is not specifically defined and dependent on the nature of the loan, the practical realities of assigning certain kinds of loans in the current marketplace and in accordance with prevailing industry standards.[4]  The rule maintains that while “very soon after” is generally determined on a case-by-case basis as described above, the longer the period between the formation of the contract and its assignment, the more likely the program will be viewed as involving the purchase of an eligible obligation rather than the origination of a loan.[5]

Presuming such indirect lending or leasing arrangement requirements are met indicates such investments would be classified as loans to members, as authorized by §701.21, and not as the purchase of an eligible obligation of a member as authorized by §701.23.

§701.22 (Loan Participations)

FISCUs must comply with all provisions of §701.22, except (b)(4) which requires a borrower to become a member of one of the participating credit unions before the purchasing federally insured credit unions purchases a participation interest in the loan.

The NCUA final rule provides clarification in the introductory paragraph and codifies NCUA Legal Opinion 15-0813.  This language clarifies that a FICU engaged in an indirect lending relationship can meet the definition of an “eligible organization” under §701.22, provided the FICU meets certain conditions.

Specifically, a FICU would be considered the originating lender and meet the definition of an “eligible organization” if the FICU (1) makes the final underwriting decision regarding the loan, and (2) the loan is assigned to the purchaser very soon after the inception of the obligation to extend credit.  An “originating lender” is defined as a participant with which the borrower initially or originally contracts for a loan and who, thereafter or concurrently with the funding of the loan, sells participations to other lenders.  An originating lender specifically includes a participant that acquires a loan through an indirect lending arrangement as defined under §701.21(c)(9).

The final rule clarifies that a FICU can meet the definition of “originating lender” in certain transactions where the FICU is engaging in indirect lending arrangements with Fintech companies and other third-party loan acquisition channels, such as Credit Union Service Organizations (CUSOs) or other loan-originating retailers.

§701.23 (Purchase, sale, and pledge of eligible obligations)

The final rule provides amendments through certain clarifying and conforming language to the introductory paragraph of §701.23.  No part of §701.23 applies directly to FISCUs.

Proposed amendments include the deletion of §701.23(b)(4) which excludes certain loans acquired through indirect lending and leasing arrangements from the 5-percent limit on the aggregate of the unpaid balance of certain loans purchased under §701.23.  Excluded loans include student loans, real estate loans, and eligible obligations purchased in accordance with §701.23(b)(4)(b)(1)(iii), (iv), or (i) or purchased through indirect lending arrangements defined in §701.23(b)(4)(iv).  These limitations would be removed and instead, such investments may meet the definition of a loan to a member under the proposed language of §701.21(c)(9).  The 5-percent limitation to unimpaired capital and surplus of the FCU purchaser would still apply to purchases of eligible obligations from liquidating FCUs and FICUs under §701.23(b)(1)(ii) and (2)(ii)

This change, in conjunction with the other changes in §701.21, is intended to provide clarification on the long-standing interpretation[6] that credit instruments acquired by an FCU pursuant to an indirect lending arrangement are considered loans made by the FCU under §701.21, if the aforementioned conditions of underwriting and timeliness of assignment are met, rather than eligible obligations purchased under §701.23.

Amendments to §701.23 include removing the CAMELS ratings and well-capitalized requirement found under §701.23(b)(2) for FCU purchases of certain non-member loans from FICUs and add principle-oriented safety and soundness requirements to section §701.23(b)(i)-(vi) concerning the purchase of eligible obligations.  These new safety and soundness requirements offset the removal of the CAMELS/ well-capitalized requirements and the 5-percent limit constraints.

The principled safety and soundness requirements on the purchasing FCU related to eligible obligations or notes from a liquidating credit union include:

  • Establishing written, board-approved policies, risk assessments, and risk management process requirements commensurate with the size, scope, type, complexity, and level of risk posed by the planned purchase activities.
  • Conducting due diligence on the seller prior to purchase.
  • Initiating written loan purchase agreements with provisions established in §701.22.
  • Conducting a legal review and assessment of applicable loan purchase agreements or contracts to protect the FCU’s legal and business interests from undue risk.

Additional safety and soundness requirements to §701.23(c) relate to the selling FCU and include:

  • Obtaining a legal review and assessment of all applicable loan sale agreements on contracts.
  • Identifying the specific loan(s) being sold either directly in the written loan sale agreement or through a document incorporated by reference in the loan sale agreement.

The final rule amends §701.23(b)(5) to broaden the grandfather provision of that section to include purchased obligations where the investments were made in compliance with the former rule so long as updated risk assessments, established concentration limits, and risk monitoring appropriate for safety and soundness are still effective.

Finally, the addition of §701.23(b)(6) implies requirements that purchases of eligible obligations from liquidating credit unions must comply with the purchasing FCUs internal written purchase policies, which must:

  • Require that the purchasing FCU conduct due diligence on the seller of the loans and other counterparties to the transaction prior to purchase.
  • Establish risk assessment and management process requirements that are commensurate with the size, scope, type, complexity, and level of risk posed by the panned loan purchase activities.
  • Establish internal underwriting and ongoing monitoring standards commensurate with the size, scope, type, complexity, and level of risk posed by the activities.
  • Require that the written agreement include (1) the specific loans purchased, the location and custodian of the original loan documents, an explanation of the duties and responsibilities of the seller, servicer, and all parties with respect to all aspects of the loans being purchased, and the circumstances and conditions under which the parties to the agreement may replace the servicer when the seller retains the servicing rights.
  • Establish portfolio concentration limits by loan type and risk category in relation to net worth commensurate with the size, scope, and complexity of the credit unions loan purchases.
  • Address when a legal review of agreements or contracts will be performed to ensure that the legal and business interests of the credit union are protected.

§714.9 (Indirect leasing arrangements subject to the purchase of eligible obligation limit set forth in § 701.23)

The final rule amends certain clarifying and conforming amendments. No part of §714.9 applies to state-chartered credit unions.

Under the final rule §714.9 is removed completely, no longer applying the §701.23(b)(4)(iv) application of the 5-percent limitation to any purchases of eligible obligations.  Further, the definition of indirect leasing arrangements, previously addressed here, is now defined in §701.21(c)(9).

[1] Board agenda available at https://ncua.gov/news/board-meetings-agendas-results/board-agenda-september-21-2023-meeting

[2] 88 FR 67570

[3] NCUA Legal Op. 15-0813 (Aug. 10, 2015) available at https://www.ncua.gov/regulation-supervision/legal-opinions/2015/loan-participations-indirect-loans-originating-lenders

[4] The preamble to the 1998 proposal to amend the eligible obligations rule requested public comment on whether the NCUA should specify a certain number of days as constituting “very soon.” 63 FR 41976, 41977 (Aug. 6, 1998). After considering the comments, however, the NCUA Board determined not to specifically define it because it wanted to provide FCUs with flexibility under various circumstances. The NCUA Board also clarified that assignment of the loan means acceptance of the loan and not necessarily the physical receipt of the loan documentation, recognizing that acceptance and payment are often done electronically. However, physical receipt of the loan documents by the FCU should occur within a reasonable time following acceptance of the loan. 63 FR 70997, 70998 (Dec. 23, 1998); see also NCUA Legal Op. 97-0546 (Aug. 6, 1997) (Concluding that an indirect lending arrangement where the retailer made a loan and assigned it to the purchasing credit union within one business day met the “very soon after” timing requirement.).

[5] 63 FR 41976, 41977 (Aug. 6, 1998).

[6] See, e.g., NCUA Legal Op. 97-0546 (Aug. 6, 1997), available at https://www.ncua.gov/regulation-supervision/legal-opinions/1997/indirect-lending.

Notice of Proposed Rulemaking and Request for Comment

FinCEN: Beneficial Ownership Information Reporting Deadline Extension for Reporting Companies Created or Registered in 2024

NASCUS Legislative and Regulatory Affairs Department
September 28, 2023

The Financial Crimes Enforcement Network (FinCEN) issued a proposed rule and request for comment that would amend the beneficial ownership information (BOI) reporting rule (Reporting Rule) to extend the filing deadline for certain BOI reports. Under the current Reporting Rule, new entities created or registered on or after the January 1, 2024, effective date, must file initial BOI reports with FinCEN within 30 days of notice of their creation or registration.

The proposed amendment would extend the filing deadline from 30 days to 90 days for entities created or registered on or after January 1, 2024, and before January 1, 2025, to give those entities additional time to understand the new reporting obligation and collect the necessary information to complete the filing.

Entities created or registered on or after January 1, 2025, would have 30 days to file their BOI reports with FinCEN, as required under the Reporting Rule.

Comments are due on or before October 30, 2023.

Summary

As required under the Corporate Transparency Act (CTA)[1], FinCEN issued the final Reporting Rule on September 30, 2022. The Reporting Rule requires certain entities, “reporting companies,” to report certain identifying information about the beneficial owners who own or control the entities and the company applicants who form or register them.

Specifically, the Reporting Rule requires reporting companies to report to FinCEN the following information within the prescribed period:

  1. The beneficial owners of the reporting company; and
  2. The company applicants, who are the individuals who filed a document to create the reporting company or register it to do business.

For reporting companies established prior to January 1, 2024, an initial BOI report must be filed by January 1, 2025. However, the Reporting Rule requires an initial BOI report to be filed within 30 days for reporting companies established after January 1, 2024.

Proposed Rule

FinCEN is proposing to extend the period for reporting companies created or registered on or after January 1, 2024, and before January 1, 2025. These reporting companies would have 90 days to submit their initial BOI reports instead of 30 days as required under the Reporting Rule.

FinCEN is issuing this proposed rule to allow entities to understand and comply with the new requirements. FinCEN also believes the extension will provide new reporting companies with additional time to obtain the information necessary to complete the initial BOI reports. Finally, the proposed rule would give reporting companies more time to resolve questions that may arise in the process of completing the initial BOI reports.

FinCEN indicates in the proposed rule they will continue to work actively to develop and issue guidance and education materials such as FAQs, videos, infographics, and compliance guides to help reporting companies, which NASCUS addressed here.

The proposed rule also notes that FinCEN aims to establish a contact center prior to January 1, 2024, to field questions about the BOI reporting requirements. FinCEN believes the proposed extension will also assist them in managing the volume of contact center inquiries while also providing more comprehensive customer service to reporting companies.

The proposed extension would apply to both domestic and foreign entities created or registered in the U.S. for the first year after the effective date. Any entity created or registered after January 1, 2025, would remain subject to the 30-day deadline established in the Reporting Rule.

Comments

FinCEN is seeking comments on:

  1. Whether the proposed rule may provide other benefits to reporting companies, their service providers, or other stakeholders.
  2. Whether any aspects of the proposed rule would result in cost or burden, or whether the proposed rule would affect the estimate of the cost, burden, and impact of the Reporting Rule in the Reporting Rule’s Regulatory Impact Analysis.

[1] 31 U.S.C. 5336

 FinCEN Issues Compliance Guide to Help Small Business Report Beneficial Ownership Information

NASCUS Legislative and Regulatory Affairs Department
September 22, 2023

As the January 1, 2024 compliance deadline looms, FinCEN has published a Small Entity Compliance Guide for the Beneficial Ownership Information (BOI) Reporting Rule (Rule) under the Corporate Transparency Act (CTA) and updated FAQs regarding CTA compliance requirements.

A series of three separate rulemakings is required of FinCEN to fully implement the CTA. The first of the three, the BOI Reporting Rule, requires certain legal entities to file BOI reports with FinCEN. The rule describes who must file BOI reports, the information required to be reported, and when the reports must be filed.

Compliance Guide

The guide includes six chapters addressing specific areas of the final rule to assist small businesses in identifying their obligations under the Rule. The six key areas include:

  1. Determining if a company is a reporting company.
  2. Identifying the beneficial owners of a company.
  3. How to determine if a company is required to report its company applicants.
  4. The specific information a company needs to report.
  5. When and how to file the initial BOI report.
  6. What to do if there are changes to or inaccuracies in the reported information.

To further assist small businesses in determining their requirements for reporting the guide includes a series of fillable questions and answers, checklists, and infographics.

It is important to note the Guide does not appear to provide any substantive answers beyond the final rule but rather attempts to provide clarity regarding the existing regulatory requirements.

Reporting Requirements

As a reminder, business members who were created or registered to do business before January 1, 2024, will have one full year, until January 1, 2025, to file their initial BOI report.

Business members who are created or registered to do business after January 1, 2024, will have 30 days after receiving notice of their company’s creation or registration to file their initial BOI report.

Updated Frequently Asked Questions and Rulemaking

As noted above, FinCEN has also updated its FAQs on the CTA. The FAQs were first published in March 2023, along with the launch of FinCEN’s dedicated BOI webpage which NASCUS previously discussed here. The FAQs, like the Guide, do not provide any additional clarification regarding the CTA, but rather review the existing guidance.

FinCEN does indicate the regulation surrounding access to the database for BOI is still forthcoming and mentions that FinCEN is still in the process of revising the reporting form. The FAQs fail to mention amendments to the Customer Due Diligence (CDD) Rule. This proposed rule isn’t expected until sometime in 2024.

FinCEN Alert on Prevalent Virtual Currency Investment Scam Commonly Known as “Pig Butchering”
FIN-2023-Alert005

NASCUS Legislative and Regulatory Affairs Department
September 11, 2023

On September 8, 2023, FinCEN issued an alert FIN-2023-Alert005 regarding the virtual currency investment scam referred to as “pig butchering.” The scams are referred to as “pig butchering” as they resemble the practice of fattening a hog before slaughter. Scammers leverage fictitious identities under the guise of potential relationships with elaborate storylines to “fatten up” the victims into believing they are in trusted partnerships. In many cases, the “butchering” phase involves convincing the victims to invest in virtual currency or “over the counter” foreign exchange schemes, all with the intent of defrauding the victims of their investments.

These scams are largely perpetrated by criminal organizations based in Southeast Asia that use victims of labor trafficking to conduct outreach to millions of unsuspecting victims around the world.

The alert explains the pig butchering scam methodology, provides red flag indicators to identify and report suspicious activity, and reminds financial institutions of their reporting requirements under the Bank Secrecy Act.

Methodology of a Pig Butchering Scam

Initial Contact with Victim

Pig butchering scammers will typically contact a potential victim through text messages, direct messages on social media, professional networking sites, and dating sites, under the guise of accidentally reaching a wrong number or trying to re-establish a connection with an old friend. The scammer, who may claim to be an investor or money manager, may also create a social media profile showcasing wealth and an enviable lifestyle. Once a response is elicited from the victim, the scammer will communicate with them over time to establish trust and build a relationship.

The” Investment” Sales Pitch

Once trust or a relationship has been established, the scammer will introduce the victim to what is portrayed as a “lucrative investment opportunity” in virtual currency and direct them to use virtual currency investment websites or applications designed to appear legitimate, but which are fraudulent and ultimately controlled or manipulated by the scammer. This includes the use of legitimate applications with third-party plugins that allow the scammer to manipulate or falsify information presented to the victim. A scammer may also request remote access to the victim’s devices to register accounts with virtual currency service providers (i.e., virtual asset service providers, or VASPs) on the victim’s behalf, or instruct their victims to take screenshots of their device so that the scammers can walk them through the process of purchasing virtual currency.

Often scammers will leverage high-pressure sales tactics as well as encourage friends and family to invest. Recent cases have even been presented as “play-to-earn” games offering financial incentives to players but in reality, players are playing on fake gaming applications created by scammers to steal virtual currency from the players.

The Promise of Greater Returns

Once the victim invests with the scammer the scammer will show the victim extraordinary returns on the investment that has been fabricated. The scammer may even allow the victim to withdraw a small amount of that investment to further build the victim’s confidence before urging them to invest more. Victims of pig butchering scams have been known to liquidate holdings in tax-advantaged accounts or take out home equity lines of credit and second mortgages on their homes.

The Point of No Return

When a victim’s pace of investment slows or stops, the scammer will use even more aggressive tactics to extract any final payments. The scammer may present the victim with supposed losses on their investments and encourage them to make up the difference with additional deposits. If the victim tries to withdraw their investment, the scammer may demand the victim pay purported taxes or early withdrawal fees. Once a victim is unable or unwilling to pay more into the scam, the scammer will abruptly cease communication and take the entire investment with them.

Red Flag Indicators

FinCEN, in consultation with law enforcement, has identified fifteen red flag indicators to help detect, prevent, and report potential suspicious activity relating to pig butchering. In the alert, FinCEN also reminds financial institutions that no single indicator is illicit, or suspicious activity, and financial institutions should consider several factors including a customer’s (member) financial history. Financial institutions should also, as part of the risk-based approach to compliance with BSA, perform additional due diligence when appropriate.

Behavioral Red Flags

The alert consists of four behavioral red flags including a customer with no history of using or interacting with virtual currency attempting to exchange a high amount of fiat currency to virtual currency.

Financial Red Flags

The alert also consists of six financial red flags including a customer taking out a HELOC, home equity loan, or second mortgage and using the proceeds to purchase virtual currency or wires the proceeds to a VASP for the purchase of virtual currency.

Technical Red Flags

Finally, the alert consists of five technical red flags including system monitoring and logs show that a customer’s account is accessed repeatedly by unique IP addresses, device IDs, or geographies inconsistent with prior access patterns. Additionally, logins to a customer’s online account at a VASP come from a variety of different device IDs and names inconsistent with the customer’s typical logins.

Pig Butchering Fraud Reporting

In addition to filing a SAR, the alert encourages financial institutions to refer their customers who may be victims of pig butchering to the FBI’s IC3: https://www.ic3.gov/, and may also refer their customers to the Securities and Exchange Commission’s tips, complaints, and referrals (TCR) system to report investment fraud: https://www.sec.gov/tcr.

In the case of elder victims of pig butchering, financial institutions may also refer their customers to DOJ’s National Elder Fraud Hotline at 833-FRAUD-11 or 833-372-8311.

Reminder of BSA Obligations

Finally, FinCEN’s alert reminds financial institutions of their BSA obligations and tools for SAR reporting and other BSA reporting under the USA Patriot Act Section 314(b) Information Sharing Authority. When filing a SAR in connection with this alert, FinCEN requests that financial institutions include the key term “FIN-2023-PIGBUTCHERING” in SAR field 2 and select “fraud-other” under SAR field 34(z) with the description “Pig Butchering.”  The SAR narrative should indicate a connection between the suspicious activity reported and the activities outlined in this alert.

Letter to Credit Unions 23-CU-07
Cyber Incident Notification Requirements

NASCUS Legislative and Regulatory Affairs Department
August 17, 2023 

NCUA issued Letter to Credit Unions 23-CU-07 to provide additional guidance on the agency’s cyber incident notification rule. As a reminder, beginning September 1, 2023, all federally insured credit unions (FICUs) are required to notify NCUA as soon as possible, and no later than 72 hours, after the credit union reasonably believes it has experienced a reportable cyber incident or received a notification from a third party regarding a reportable cyber incident.

The letter summarizes the amendments to part 748 and provides instructions on what and how to report to the NCUA. It also includes examples of reportable (Appendix A) and non-reportable (Appendix B) incidents. To provide further assistance, the NCUA has also included a cyber incident reporting quick reference guide.

Summary

As addressed in NASCUS final rule summary a reportable incident is any “substantial” cyber incident that leads to one or more of the following:

  • A substantial loss of confidentiality, integrity, or availability of a network or member information system that results from the unauthorized access to or exposure of sensitive data, disrupts vital member services or has a serious impact on the safety and resiliency of operational systems and processes.
  • A disruption of business operations, vital member services, or a member information system resulting from a cyberattack or exploitation of vulnerabilities.
  • A disruption of business operations or unauthorized access to sensitive data facilitated through, or caused by, a compromise of a credit union service organization, cloud service provider, or other third-party data hosting provider or by a supply chain compromise.

The guidance indicates that federally insured credit unions may report a cyber incident through one of the following channels:

FICUs who report an incident should be prepared to provide as much of the following information as is known at the time of reporting:

  • Credit union name;
  • Credit union charter number;
  • Name and title of individual reporting the incident;
  • Telephone number and email address;
  • When the credit union reasonably believed a reportable cyber incident took place; and
  • A basic description of the reportable cyber incident, including what functions were, or are reasonably believed to have been affected or if sensitive information was compromised.

At the time of notification, do not send the NCUA:

  • Sensitive personally identifiable information;
  • Indicators of compromise;
  • Specific vulnerabilities; or
  • Email attachments.

If the NCUA requires additional information or clarification, the agency will follow up with the credit union directly.

If not done so already, FICUs should complete the following steps when implementing the final rule.

  • Review and update existing incident response plans;
  • Review contracts;
  • Provide employee training;
  • Monitor and review the credit union reporting process for effectiveness; and
  • Document all cyber incidents, regardless of whether they meet the reporting criteria, and maintain the records in accordance with the credit union’s record retention policy. As part of the documentation process, FICUs should specifically document:
    • Indicators of compromise;
    • Network information or traffic regarding the attack;
    • The attack vector;
    • Information on any exfiltrated data; and
    • Any forensic or other reports about the reportable cyber incident.

Additional information and resources can be found at the NCUA’s Cybersecurity Resources webpage.

Final Rule Summary
NCUA: Federal Credit Union Bylaws

NASCUS Legislative and Regulatory Affairs Department
July 28, 2023

On March 15, 2022, Congress enacted the Credit Union Governance Modernization Act of 2022. Under the statute, the NCUA has 18 months following the date of enactment to develop a policy by which a federal credit union member may be expelled for cause by a two-thirds vote of a quorum of the FCU’s board of directors. On July 20, 2023, the Board issued a final rule to amend the standard Federal Credit Union (FCU) Bylaws, adopting this policy.

The rule is effective August 25, 2023. The final rule can be found here.

Summary

Under the current bylaws, removing a member of an FCU requires a two-thirds majority vote of credit union members present at a meeting specifically called for that purpose or a lack of participation as defined and adopted in a policy approved by the FCU’s board of directors.

The final rule adopts a policy by which an FCU member may be expelled for cause by a vote of two-thirds of a quorum of the FCU’s board of directors. The final rule also makes conforming changes to Article II of the FCU Bylaws regarding members in good standing.

Member Expulsion and Withdrawal

Under the final rule, an FCU member may be expelled for cause by a two-thirds vote or a quorum of the FCU’s board of directors. For cause means the following:

  • A substantial or repeated violation of the FCU’s membership agreement;
  • A substantial or repeated disruption, including dangerous or abusive behavior (including violence, intimidation, physical threats, harassment, or physical or verbal abuse of official or employees of the FUC, members, or agents of the FCU), to the operations of an FCU; or
  • Fraud, attempted fraud, or conviction of other illegal conduct in relation to the FCU, including the FCU’s employees conducting business on behalf of the FCU.

As discussed at the Board meeting upon approval of the final rule and as noted in the preamble to the final rule, the legislative history of the Governance Modernization Act describes an FCU’s need for using this authority to expel a member should be rare and used only for egregious member behavior.

The final rule for member expulsion includes the following:

Notice of the Expulsion Policy

Under the final rule, in accordance with the Governance Modernization Act, an FCU’s directors may expel a member only if the FCU has provided, in written or electronic form, a copy of the NCUA’s expulsion policy or the optional standard disclosure notice[1] to each member of the credit union.

Notice of Pending Expulsion

If a member is subject to expulsion, the member must be notified in writing in advance along with the reason for the expulsion. The final rule provides that relevant dates, sufficient detail for the member to understand the grounds for expulsion, how to request a hearing, the procedures related to the hearing, and, if applicable, a general statement on the effect of expulsion related to the member’s accounts or loans at the credit union must be included in the pending expulsion notice.

The notice must also tell the member that any complaints related to the potential expulsion should be submitted to the Consumer Assistance Center via NCUA’s website if the complaint cannot be resolved directly with the credit union.

The FCU must maintain a copy of the provided notice for its records.

Non-substantial Violations/Disruptions

If an FCU is considering expelling a member due to repeated “non-substantial” violations of the membership agreement or repeated non-substantial disruptions to the FCU’s operations, the FCU must provide written notice to the member at least once prior to the notice of expulsion, and the violation or conduct must be repeated within two years after the member was notified of the violation. The written notice must state the specific nature of the violation or conduct and that if the violation or conduct occurs again, the member may be expelled from the FCU.

Hearing

Under the final rule, a member has 60 calendar days from the date of receipt of notification of pending expulsion to request a hearing from the board of directors of the FCU. A member is not entitled to attend the hearing in person, but they must be provided a meaningful opportunity to present their case orally to the FCU’s board of directors through a videoconference hearing.

The member may also elect to provide a written submission to the board of directors instead of a hearing with oral statements.

If the member does not request a hearing or provide a written submission, the member shall be deemed expelled after the end of the 60-day period after receipt of the notice. If a member requests a hearing, the FCU board must provide the member with a hearing. At the hearing, the board may not raise any rationale for expulsion that is not explicitly included in the notice to the member.

FCU Board Vote

After the hearing, the FCU board must hold a vote within 30 calendar days on expelling the member. If a member is expelled, either through the expiration of the 60-day period or a vote to expel the member after a hearing, a written notice of the expulsion must be provided to the member in person, by mail to the member’s address, or, electronically, if the member has elected to receive communications electronically.

Notice of Expulsion

The written notice of expulsion must provide information on the effect of the expulsion, including information related to account access and any withdrawals by the FCU related to amounts due. Specifically, the notice should include pertinent information to the member, including that the expulsion does not relieve a member of any liability to the FCU and that the FCU will pay all the member’s shares upon their expulsion, less any amounts due. The notice should include a line-by-line accounting of any deductions related to amounts due. It should also include when and how the member will receive any money in their accounts.

Reinstatement

The final rule requires that if the FCU addresses a request for reinstatement through an annual meeting, this meeting must occur within 90 days of the reinstatement request. The NCUA Board believes a previously expelled member should not have to wait up to one year for a resolution to their reinstatement request. The rule also clarifies that an in-person vote is not required if the FCU holds a meeting of the members to vote on the reinstatement request. The final rule does not include automatic reinstatement if the conviction is overturned. Each FCU board could take this into consideration if a member requests reinstatement. The overturning of a conviction might cause the FCU to reconsider its expulsion decision, but the underlying conduct that led to expulsion may still be relevant. In this area, the Board believes that FCUs should exercise sound judgment and consult with counsel if they need further guidance.

Record Retention

The final rule requires an FCU to retain all documentation relating to the expulsion of a member for six years.

Implementation by FCUs

After the effective date of this final rule, FCUs have the option to amend their bylaws to provide their boards of directors with the authority to expel members for cause. FCUs seeking to adopt these changes must amend their bylaws through a two-thirds vote of their boards of directors.

FCUs seeking to make these changes do not need to submit the amendment to the NCUA for its approval provided the amendment is identical to the language included in this final rule or only includes additional language on hearing procedures as discussed in the final rule. FCUs may adopt amendments immediately after the effective date of the final rule or at any point in the future.

This amendment is optional and FCUs do not need to amend their bylaws or take any other action in response to this final rule. FCUs electing to not make changes to their bylaws in response to the final rule could expel a member solely through a special meeting of the members or based on a violation of a nonparticipation policy.

[1] The optional disclosure has been added to the end of the FCU Standard Bylaws.

Letter to Credit Unions 23-CU-06
Importance of Contingency Funding Plans

NASCUS Legislative and Regulatory Affairs Department
August 1, 2023

On July 28, 2023, the NCUA issued Letter to Credit Unions (LTCU) 23-CU-06 upon joining with the FDIC, Federal Reserve, and the OCC to issue Addendum to the Interagency Policy Statement on Funding and Liquidity Risk Management: Importance of Contingency Funding Plans. The agencies expect all depository institutions to maintain actionable contingency funding plans that consider a range of possible stress scenarios.

Summary

LTCU 23-CU-06 and the supporting addendum serve as a reminder to credit unions about the importance of a strong and viable contingency funding plan as previously addressed in Supervisory Letter 14-03 and LTCUs 10-CU-14.

The events of the first half of 2023 further highlight the importance of having such plans in place. Specifically, depository institutions should:

  • Assess the stability of their funding and maintain a broad range of funding sources that can be accessed should circumstances arise.
  • Remain aware of the operational steps required to obtain funding from contingency sources, including knowledge of contact details, and availability of collateral.
  • Test plans to ensure staff understand the process and engage in appropriate planning; and
  • Review and revise plans periodically dependent upon market conditions and strategic initiatives.

The addendum also provides information on available funding sources through the Federal Reserve Discount Window and the Central Liquidity Facility for state and federally chartered credit unions.

Information regarding the discount window can be found here. Information regarding the Central Liquidity Facility can be found here.

Proposed Interagency Guidance with Request for Comment
Interagency Guidance on Reconsiderations of Value of Residential Real Estate Valuations

NASCUS Legislative and Regulatory Affairs Department
July 25, 2023

On July 21, 2023, the Federal Reserve Board, CFPB, FDIC, OCC, and NCUA (the Agencies) issued proposed guidance highlighting risks associated with deficient residential real estate valuations. The guidance also describes how financial institutions may incorporate reconsiderations of value (ROV) processes and controls into existing risk management functions. The proposed guidance also highlights examples of policies and procedures that a financial institution may choose to establish to help identify, address, and mitigate the risk of discrimination impacting residential real estate valuations.

Comments on the proposed guidance are due on or before September 19, 2023.

Summary

The Federal Reserve Board, FDIC, OCC, and NCUA issued guidance in 2010 that describes actions financial institutions may take to correct deficiencies identified in collateral valuations. The current guidance includes ordering a second appraisal or evaluation or resolving the deficiency through the original appraiser or preparer of the evaluation.

The agencies do not have existing guidance specific to ROV processes and have received questions from financial institutions and other industry stakeholders on ROVs, highlighting the uncertainty in the industry on how ROVs intersect with appraisal independence requirements and compliance with consumer protection laws, including those related to non-discrimination.

A financial institution’s use of third parties in the valuation review process does not diminish its responsibility to comply with applicable laws and regulations.

Description of Proposed ROV Guidance

The proposed guidance addresses the following:

  1. Describes the risks of deficient collateral valuations;
    • Prevent individuals, families, and neighborhoods from building wealth through homeownership;
    • Prevent prospective buyers from purchasing homes;
    • Make it harder for homeowners to sell or refinance their homes and increase the risk of default.
  2. Outlines applicable statutes, regulations, and existing guidance that govern ROVs and collateral valuations;
    • Fair Housing Act
    • Equal Credit Opportunity Act
    • Truth in Lending Act
  3. Explains how ROV processes and controls can be incorporated into existing risk management functions such as appraisal review and complaint management; and
    • Financial institutions can capture feedback regarding potential deficiencies through existing complaint resolution processes.
    • Data collected can be an important indicator of potential risks and risk management weaknesses.
  4. Provides examples of ROV policies, procedures, and controls that financial institutions may choose to adopt that:
    • Consider ROVs as a possible resolution for consumer complaints related to residential property valuations.
    • Consider whether any information or other process requirements related to a consumer’s request for a financial institution to initiate an ROV create unreasonable barriers or discourage consumers from requesting an ROV.
    • Establish a process that provides for the identification, management, analysis, escalation, and resolution of valuation-related complaints across all relevant lines of business, from various channels and sources (such as letters, phone calls, in-person, regulators, third-party service providers, emails, and social media).
    • Establish a process to inform consumers how to raise concerns about the valuation sufficiently early enough in the underwriting process for any errors or issues to be resolved before a final credit decision is made. This may include suggesting to consumers the type of information they may provide when communicating with the financial institution about potential valuation deficiencies.
    • Identify stakeholders to clearly outline each business unit’s roles and responsibilities for processing an ROV request;
    • Establish risk based ROV systems that route the request to the appropriate business unit;
    • Establish standardized processes to increase the consistency of consideration of requests for ROVs;
      1. Use clear, plain language in notices to consumers of how they may request the ROV;
      2. Use clear, plain language in ROV policies that provide a consistent process for the consumer, appraiser, and internal stakeholders.
      3. Establish guidelines for the information the financial institution may need to initiate the ROV process
      4. Establish timelines in the complaint or ROV process for when milestones need to be achieved
      5. Establish guidelines for when a second appraisal could be ordered and who assumes the cost; and
      6. Establish protocols for communicating the status of the complaint or ROV and results to consumers.
    • Ensure relevant lending and valuation-related staff, including third parties (e.g., appraisal management companies, fee-appraisers, mortgage brokers, and mortgage servicers) are trained to identify deficiencies (inclusive of prohibited discriminatory practices) through the valuation process.

Request for Comment

The agencies are seeking comments on all aspects of the proposed guidance as well as specific comments on the following:

  1. To what extent does the proposed guidance describe suitable considerations for a financial institution to take into account in assessing and potentially modifying its current policies and procedures for addressing ROVs?
    • What, if any, additional examples of policies and procedures related to ROVs should be included in the guidance?
    • Which, if any, of the policies and procedures described in the proposed guidance could present challenges?
  2. What model forms, or model policies and procedures, if any, related to ORVs would be helpful for the agencies to recommend?
  3. What other guidance may be helpful to financial institutions regarding the development of ROV processes?
  4. To what extent, if any, does the proposed ROV guidance conflict, duplicate, or complement the existing Interagency Appraisal Evaluation Guidelines or a financial institution’s policies and procedures to implement those Guidelines?

Additional comments are invited on:

  • Whether the collections of information are necessary for the proper performance of the agencies’ functions, including whether the information has practical utility;
  • The accuracy of the estimate of the burden of the information collections, including the validity of the methodology and assumptions used;
  • Ways the enhance the quality, utility and clarity of the information to be collected;
  • Ways to minimize the burden of the information collections on respondents, including through the use of automated collection techniques or other forms of information technology; and
  • Estimates of capital or start-up costs and costs of operation, maintenance, and purchase of services to provide information.
Minority Depository Institution Preservation Program Proposed Interpretive Ruling and Policy Statement
National Credit Union Administration

NASCUS Legislative and Regulatory Affairs Department
July 28, 2023

In 2015, the NCUA Board approved IRPS 13-1 establishing the Minority Depository Institution Preservation Program (MDI program), to encourage the preservation of MDIs as well as the establishment of new MDI credit unions.  On June 22, 2023, the NCUA Board issued proposed revisionstoInterpretive Ruling and Policy Statement (IRPS) 13-1, regarding the agency’s Minority Depository Institution Preservation Program for credit unions

In 2018 the Board restructured the Agency. This restructuring included establishing the Office of Credit Union Resources and Expansion (CURE). CURE subsequently assumed administration of the MDI Program from the agency’s Office of Minority and Women Inclusion.

The proposed changes to IRPS 13-1 summarized below are intended to reflect the changes in NCUA’s structure, provide several updates to the MDI program’s features, and clarify the requirements for a credit union to receive and maintain an MDI designation.

Comments are due to NCUA on the proposed changes on or before August 28, 2023.

Summary

The NCUA is proposing the following amendments to IRPS 13-1.

  1. Incorporate recent program initiatives such as the consulting and support program for MDIs, and provide examples of technical assistance an MDI may receive. Technical assistance includes:
    • Providing guidance in resolving examination concerns;
    • Helping MDIs locate new sponsors, mentors, or merger partners;
    • Assisting with field of membership expansions;
    • Supporting management in setting up new programs and services;
    • Attempting to preserve the minority character of failing institutions during the resolutions process; and
    • Assisting groups that are interested in chartering a new MDI.
  2. Include subsections on engagement with MDIs, technical assistance, examination of MDIs, Community Development Revolving Loan Fund grants and loans, training and education, and preservation of MDIs.
    • The NCUA expects examiners to recognize the distinctive characteristics and differences in core objectives of each financial institution and consider these when evaluating. Examiners can evaluate an MDI using peer metrics such as through the FPR.
    • MDIs without the low-income designation are now eligible for CDRLF grants and loans.
  3. Establish a new standard for MDIs to assess their designation. The standard states, a credit union is eligible to receive the MDI designation if it meets all the following criteria:
    • A majority (greater than 50%) of its current members are from any eligible minority groups;
    • A majority of the members of its board of directors are from any of the eligible minatory groups; and
    • A majority of the community it services, as designated in its field of membership, are from any of the eligible minority groups.

A credit union defined as a “small credit union” [1]by NCUA may self-certify greater than 50% representation among current members, within the community it serves (potential members), based solely on knowledge of those members. A credit union not defined as a “small credit union” by the NCUA may rely on one of the following methods to determine the minority composition of its current membership.

    • Demographic data from the U.S. Census Bureau
    • Home Mortgage Disclosure Act (HMDA) data
    • Collect data from members who voluntarily choose to participate in such collection about their racial identity and the use of the data to determine minority representation among the credit union’s members; or
    • Any other reasonable form of data, such as membership address lists or an employer’s demographic analysis of employees.

An MDI credit union must assess whether it continues to meet the required definition of an MDI whenever there is a significant change in its board of directors, or it changes its field of membership and update its designation, if necessary, in the NCUA Credit Union Profile.

  1. Update how the NCUA will review an MDI’s designation status to reflect it will be part of the examination process.
  2. Simplify “community it services, as designated in its charter” to refer to an MDI’s field of membership.
  3. Specify that “Asian American” includes Native Hawaiian or Other Pacific Islander, and “Native American” includes American Indian and Alaskan Natives.
  4. Clarify that “small entity” means a “small credit union” as defined by the NCUA, and the simplified process for a small credit union to determine whether it qualifies as an MDI.
  5. Add new sections that address comments to the agency, the agency’s annual congressional reporting on MDIs, and the availability of the list of MDIs from the NCUA’s website.

NCUA invites comments on all aspects of the proposed amendments to the IRPS. Additionally, the agency is seeking comments on any other aspects of the IRPS and what additional information the agency could provide to help MDIs, and how best to deliver the information.

[1] [1] 80 FR 57512: Under the Regulatory Flexibility Act, NCUA currently defines a small credit union as a credit union with total assets of less than $100 million.

CFPB Summary re: Interagency proposal on quality control standards for automated valuation models

The OCC, Board, FDIC, NCUA, CFPB, and FHFA invite comment on a proposed rule to implement the quality control standards mandated by the Dodd-Frank Wall Street Reform and Consumer Protection Act for the use of automated valuation models (AVMs) by mortgage originators and secondary market issuers in determining the collateral worth of a mortgage secured by a consumer’s principal dwelling.  Under the proposal, the agencies would require institutions that engage in certain credit decisions or securitization determinations to adopt policies, practices, procedures, and control systems to ensure that AVMs used in these transactions to determine the value of mortgage collateral adhere to quality control standards designed to ensure a high level of confidence in the estimates produced by AVMs; protect against the manipulation of data; seek to avoid conflicts of interest; require random sample testing and reviews; and comply with applicable nondiscrimination laws.

Comments must be received by August 21, 2023, and the proposal can be found here.

Summary

Section 1473(q) of the Dodd-Frank Act amended Title XI of FIRREA to add new section 1125 relating to the use of automated valuation models (AVMs) in valuing real estate collateral securing mortgage loans.  The proposal would require that mortgage originators and secondary market issuers adopt policies, practices, procedures, and control systems to ensure that AVMs used in certain credit decisions or covered securitization determinations adhere to quality control standards designed to meet specific quality control factors.

The proposed rule would not set specific requirements for how institutions are to structure these policies, practices, procedures and control systems.

Scope of the Proposed Rule

The proposal would implement the statute by applying the quality control standards when an AVM is being used to make a determination of collateral value, as opposed to other uses such as monitoring value over time or validating an already completed valuation.

The agencies are proposing that the rule would not cover the use of AVMs in the development of an appraisal by a certified or licensed appraiser, nor in the review of the quality of already completed determinations of collateral value.  The proposed rule would cover the use of AVMs in preparing evaluations required for certain real estate transactions that are exempt from the appraisal requirements under the appraisal regulations issued by the OCC, Board, FDIC, and NCUA, such as transactions that have a value below the exemption thresholds in the appraisal regulations.

Section 1125 defines an AVM as “any computerized model used by mortgage originators and secondary market issuers to determine the collateral worth of a mortgage secured by a consumer’s principal dwelling.  The quality control standards proposed in this rule are applicable only to AVMs used in connection with making credit decisions or covered securitization determinations regarding a mortgage as defined in the proposal.

Section 1125 directs the agencies to promulgate regulations to implement quality control standards regarding AVMs. Section 1125 requires that AVMs as defined in the statute, adhere to quality control standards designed to (i) ensure a high level of confidence in the estimates produced by AVMs; (ii) protect against the manipulation of data; (iii) seek to avoid conflicts of interest; (iv) require random sample testing and reviews; and (v) account for any other such factor that the agencies determine to be appropriate.  The agencies consulted with the staff of the Appraisal Subcommittee (ASC) and the Appraisal Standards Board of the Appraisal Foundation (ASB) as part of promulgating this rule.

Section 1125(c)(1) provides that compliance with regulations issued under Section 1125 shall be enforced “with respect to a financial institution, or subsidiary owned and controlled by a financial institution and regulated by a Federal financial institution regulatory agency, the Federal financial institution regulatory agency acts as the primary Federal supervisor of such financial institution or subsidiary.” Section 1125(c)(1) applies to a subsidiary of a financial institution only if the subsidiary is (i) owned and controlled by a financial institution, and (2) regulated by a Federal financial institution regulatory agency.

Application to use of AVMs

The proposed rule would apply to AVMs used in connection with making a credit decision.  The rule would define a “credit decision” in part to include a decision regarding whether and under what terms to originate, modify, terminate or make other changes to a mortgage.   The scope of the proposal would include decisions regarding originating a mortgage, modifying the terms of an existing loan or renewing the terms of an existing loan, or renewing, increasing or terminating a line of credit.  The use of AVMs solely to monitor a creditor’s mortgage portfolio would not be a credit decision under the proposed rule because the lending institution has already made the credit decision.

The language of Section 1125 includes not only mortgage originators but also secondary market issuers.  Given that the statute refers to secondary market issuers and the primary business of secondary market issuers is to securitize mortgage loans and to sell those mortgage-backed securities to investors, the proposed rule would cover AVMs used in securitization determinations.

The proposed rule would define “covered securitization determination” to include determinations regarding, among other things, whether to waive an appraisal requirement for a mortgage origination.  Under the proposal, a secondary market issuer that used AVMs in connection with making appraisal waiver decisions would be required to have policies, practices, procedures, and control systems in place to ensure that the AVM supporting those appraisal waiver decisions adheres to the rule’s quality control standards.

The proposed rule would not cover the use of an AVM by a certified or licensed appraiser in developing an appraisal. While appraisers may use AVMs in preparing appraisals, they must achieve credible results in preparing an appraisal under the Uniform Standards of Professional Appraisal Practice (USPAP) and its interpreting opinions.

The proposal would not cover AVMs used in reviews of completed collateral value determinations, given that the underlying appraisal or evaluation determines the value of the collateral.

  • Covered Securitization Determination
    • The proposed rule would define “covered securitization determination” to mean a determination regarding (1) whether to waive an appraisal requirement for a mortgage origination in connection with its potential sale or transfer to a secondary market issuer, or (2) structuring, preparing disclosures for, or marketing initial offerings of mortgage-backed securitizations.
  • Secondary Market Issuer
    • The agencies are proposing to define a secondary market issuer as any party that creates, structures, or organizes a mortgage-backed securities transaction. The agencies propose to define a secondary market issuer in this manner due to the statutory focus in Section 1125 on “issuers” and “determining the collateral worth” of a mortgage.  This type of determination would typically take place in the secondary market in connection with the creation, structuring, and organization of a mortgage-backed security.

Proposed Implementation Period

The agencies propose an effective date of the first day of a calendar quarter following the 12 months after publication in the Federal Register of any final rule based on this proposal.  This extended effective date would give institutions time to come into compliance with the rule.

Request for Comments:

The agencies invite comments on all aspects of the proposed rulemaking.  The agencies have also specified a number of questions throughout the proposal requesting feedback on a number of topics, such as:

  • The quality control factor on nondiscrimination
  • The implementation period
  • Loan modifications under the proposal
  • Appraisal Waivers
  • Secondary Market Issuers
  • AVM uses covered and not covered by the rule
  • Reviews of completed collateral valuation determinations
  • Control Systems
  • Covered Securitization Determinations
  • Credit Decisions
  • Mortgages/Mortgage Originators