Archive for category: Compliance

Triangle Background
,

May 2023 Compliance Journal

The May 2023 WBA Compliance Journal is now available. In this edition, readers will find an article covering recently issued guidance by FDIC, CFPB, and OCC, each of which identify activities expected to be a focus of upcoming compliance examinations. Readers will also find an article highlighting an interagency statement and an interim final rule regarding the transition from US LIBOR. The publication also includes a summary of recently published agency rules and notices, other important compliance-related updates, and a WBA Education Calendar which lists upcoming training events.

/by
, ,

Are You Ready For 1071?

By Kristen L. Eustis, Wipfli

Have you and your commercial lending team started preparing for implementation of the long-anticipated Section 1071 small-business lending data collection requirements?

If you currently meet, or expect to meet, the transaction thresholds, the time is now to begin tactical steps for compliance.

Part of the Dodd-Frank Act of 2010, Section 1071 amended the Equal Credit Opportunity Act (ECOA), which will now require financial institutions, FinTech companies and other lenders to begin collecting and reporting small business lending data.

While the implementation date is about a year and a half from now for large lenders and almost three years for small lenders, it will sneak up on everyone pretty quickly.

Here are some important considerations in preparing for the changes:

  • Get your loan application in shape

If your commercial lending team is not currently using a loan application or inquiry form, implementation may become a necessity. If an application is being used, analyze the data being collected to ensure it’s sufficient to meet the new requirements.

Your financial institution will need to capture a lot of information about the application, the action taken, the loan terms, the business and the principal owners.

Some of this information may be available from other sources, but identifying the fields that are not currently captured will help you determine what will need to be collected at application.

Also, consider how your financial institution plans to define an “application,” which will trigger the requirements for data collection, reporting and related requirements.

If your institution allows the opening of online accounts, you’ll need to consider how the required information will be captured in the online application process.

  • Is your data collection process adequate?

Consider your current capacity for capturing this data. Will your current system have the capability to assist with the collection of additional data? If not, contact your vendor to see whether updates will be made or if you will need to consider a manual collection process or even a new loan origination system.

Don’t forget about geocoding. You’ll need to determine whether your system can handle it or if this will also be a manual process.

Be sure you’re set up for the collection of demographic information in the application process, both in person and online, since it must be obtained at the time of application.

Accounting for applications that do not result in a loan

Just as in the Home Mortgage Disclosure Act world, applications that do not result in a loan will need to be reported. Because these require a unique identifier, you’ll need to determine whether the loan origination system will generate a number or  if it will require a manual process.

If your financial institution does not currently keep a pipeline of pending applications, consider how you will be able to ensure all applications that did not result in a loan are accounted for and reported.

Along with applications denied, you’ll need to include those that are withdrawn, incomplete or approved but not accepted. Your institution will need to consider how to capture the approved loan and pricing information. Therefore, you’ll need to determine where the source of this information will be housed.

  • Establish clear source documentation

Consistency is needed in noting where information is coming from. Your institution will need to consider the source documentation for areas such as loan approval information, amount approved, pricing information, guarantors and the date of action taken. Documenting your source of information for each type of action will provide the consistency required and reduce errors.

  • Assess your administrative needs

The process of gathering, inputting and reviewing the loan application register (LAR) will need to be administered by a person or group. The volume of lending activity may determine the needed staffing level.

Prior to submitting the LAR, a determination will need to be made about whether a second review of the information will occur (it’s a good idea) and whether that can be accomplished in house or if it will need to be outsourced.

Simply ensuring the format of the LAR is correct and accepted is not sufficient as a review. Examiners will have procedures to require correction and resubmission based on established error rates, so ensuring your data is accurate will be important.

Training will need to happen sooner rather than later to ensure all staff involved in any part of the process, from gathering to reporting, know what is expected and how to obtain and document the required information.

  • Establish your firewall procedures

The new rules contain a firewall provision, which states that employees or officers of the financial institutions or its affiliates who are involved in making a determination about the application should not have access to the demographic information of the principal owners, including whether the business is minority owned, women owned or LGBTQI+ owned or the ethnicity, race and sex of the principal owners.

To comply with this provision, you will have to determine how you will keep the employees or officers involved in the credit decision from seeing this information, unless you meet the exception, and provide the required notification to the applicant at the time the information is collected. Procedures for handling the firewall provision should be established.

Look at fair lending implications

Fair lending should be considered in every aspect of the lending process. Your institution should consider how or if you are going to analyze the data that is collected for fair lending implications and whether this can be conducted in house or through assistance from a third party.

  • Get a change management system in place

To manage regulatory change, especially one as impactful as 1071, financial institutions should have an effective change management system. You need to analyze and understand how the new requirements affect your existing processes and make modifications as appropriate.

This level of change is difficult to handle alone, making a team approach advisable.

The first step is determining who should be part of that team. Members of compliance, operations, small business lending and potentially information technology should likely be part of your team. Every institution’s structure varies, so selecting the team based on the roles and implementation needs is key.

Next, you’ll want to look at your product offerings to determine the scope of impact. Determine what lines and products this new rule will affect. You don’t want to realize too late that you missed someone or something.

Analyze your current systems. What pitfalls are there to hinder the data collection process? Make sure you are keeping up with what your vendor has in their pipeline to facilitate your data collection and reporting.

Finally, perform a gap analysis. Evaluate your covered transactions and data collection process against the requirements of Section 1071 to determine what areas are not working and where enhancements are still needed.

How Wipfli can help

While 1071 is similar to HMDA rules in some respects, the requirements constitute a significant change. Don’t navigate this complex process alone. Wipfli professionals can guide you through the implementation process to help ensure you are in compliance.

Content Sponsored by Wipfli, a WBA Silver Associate Member.

/by
, ,

Loan Review Best Practices: Key to Combatting Credit Risk in Stressful Times

By David Ruffin

Uncertainty seems to be the only constant on the economic horizon these days.

Despite benign risk metrics across the country’s credit portfolios, there is an almost industry-wide sentiment that credit stress looms ahead. According to the Risk Management Association (RMA) Annual Community Bank Survey, 84% of community bankers indicated that credit risk was a top concern.

One thing we do know is that effective and efficient loan reviews can help you understand your portfolio and identify potential risk exposures. And — more importantly — risk that’s already emerging. It’s this early detection that helps institutions minimize losses. Also encouraging is that automated technology is making it possible to achieve these goals with amazing agility.

Now is the time for community banks to move from a sluggish, decades-old loan review process to an approach that will help you proactively identify potential credit weaknesses, gain deep knowledge about the subsegments of your portfolio, learn where the vulnerabilities exist, and act to mitigate risk at the earliest opportunity.

It’s time to consider credit review approaches that facilitate an expansive range of best practices:

1. Trust your reviews to professionals with deep credit experience — not just junior CPAs.

Your reviewers should be seasoned experts skilled in the qualitative and quantitative axioms of credit, with hands-on experience in lending and risk management. Because their experience will drive better reviews and deliverables, it’s a good idea to ask for bios of people assigned to your institution.

2. Confirm your review includes paralegal professionals to conduct separate documentation reviews.

With growing evidence of degradation in back-shop support, it is essential that your loan reviews include specialists with technical expertise in regulatory/legal compliance, lending policy adherence, policies, collateral conveyances, servicing rules, etc. — working in tandem with seasoned credit professionals.

3. Insist on smart, informed sampling.

Relying solely on random samples and reviewing only the largest credits is insufficient today. To uncover vulnerabilities in specific segments of your portfolio, rely on a selection process that helps you choose very informed samples indicating possible emerging risk.

4. Segregate and differentiate exceptions in documentation, credits and policy.

These exception types all have diverse characteristics, and they need to be quantified separately in order to correct the various deviations effectively.

5. Quantify both pre- and cleared exceptions.

In the best of times, many loan reviews show almost no bottom-line degradation in loan quality for the portfolio as a whole. But on close examination, you may find significant numbers of technical and credit exceptions indicating that the quality of your lending process itself may need to be tweaked.

6. Understand your own bank’s DNA.

In this complex economic environment, it is imperative for institutions to analyze their own idiosyncratic loan data. Arm your loan review team with the ability to automatically drill down into your portfolio and easily examine trends and borrower types — to inform risk gradings, assess industry and concentration risk, etc. Seasoned reviewers will be incredibly valuable in this area.

7. Observe pricing based on risk grades, collateral valuations, and loan vintages.

Common risk characteristics are shared by loans originating around the same time and credits that tend to migrate as a group. Isolating and analyzing those can answer the important question, “Are you being paid for the risk you’re taking?”

8. Pair loan reviews with companion stress testing.

Lately, regulators are encouraging stress tests as a way to learn where risk may be embedded. Companioning the tests with loan reviews is a productive way to gain this knowledge. Start at the portfolio level and do loan-level tests where indicated.

9. Transparently report and clear exceptions in real time.

Benefit from using FinTech efficiency to remove huge amounts of time, team meetings and staff intrusions from the traditional approach to reviewing loans. Using an online loan review solution, teams can see exception activities and clearances as they happen.

10. Ensure that reviewers interpret risk grade parameters according to your institution’s definitions.

Measures used to qualify credits in the “pass” risk-grade category are specific to your institution. Reviewers should use only this touchstone to interpret pass grade requirements for any credit — without interjecting personal biases.

11. Comply with workout plan requirements prescribed by interagency regulators.

Workout plans are typically designed to rehabilitate a troubled credit or to maximize the repayment collected. Regulators now require institutions to examine these plans independently as a standard loan review procedure that reflects a healthy degree of objectivity.

12. Deliver comprehensive management reports and appropriate high-level board reports with public/peer data.

Management should receive prompt and thorough loan review reports and board members should be provided high-level reports with appropriate, but less detailed, information. Public data or analyses of your institution’s performance as compared to peers should accompany reporting.

13. Conduct loan reviews as a highly collaborative and consultative exercise — counter to “just another audit.”

An effective loan review is not an internal audit experience. It’s an advisory process, and this approach is extremely important to its ultimate success. Substantive dialogue among participants with differences of opinion is key to favorable outcomes for the institution.

14. Take advantage of a technology platform to automate every possible aspect of the loan review process.

Best practices call for the efficiency that comes with automating the loan review process to the maximum extent possible, without sacrificing substance or quality. Today, technology drives the race against loan risk, making early detection of vulnerabilities faster, easier, and more complete.

In Summary

Loan reviews that adhere to industry best practices are critical to an institution’s risk-management strategy and should be regarded as such. It’s a one-two punch: (1) deeply qualified reviewers and (2) automated technology that, when combined, deliver a more efficient, less intrusive loan review process that will help combat the looming credit stress ahead.

David Ruffin is Principal of IntelliCredit, a division of QwickRate — a WBA Associate Member. He has extensive experience in the financial industry including a long and pronounced emphasis on credit risk in a variety of roles that range from bank lender and senior credit officer to the co-founder of IntelliCredit and its technology that is revolutionizing a decades-old loan review process.

/by
, , , , , , ,

May/June 2023 Wisconsin Banker

From the WBA Associate Member Directory to partnering with Wisconsin’s oldest Black-owned bank, the May/June Wisconsin Banker is sure to feature something of interest for every member of the bank.

Learn more about the 2023–2024 BOLT Section Chair, the requirements for flood insurance force placement, and how you can make a difference by getting involved with the Association.

Featured inside are the chair’s column by Dan Peterson, current WBA chair and president and CEO of The Stephenson National Bank & Trust, Marinette; the Community Advocate, Emily Dahl, executive vice president, chief financial officer at Bank of Ontario; and Ashley Clemons, vice president – marketing at The Peoples Community Bank in Mazomanie.

/by
,

April 2023 Compliance Journal

The April 2023 WBA Compliance Journal is now available. In this edition, readers will find an article summarizing key components of the final Section 1071 rule. Readers will also find summaries of recently published agency rules and notices, and other important compliance-related updates for bankers.
/by
Triangle Background
, ,

Bankers Continue Their Education, Remain Compliant

Stand-alone BSA/AML conference returns on May 10–11!

Back again in 2023 as its own conference, the Wisconsin Bankers Association is excited to offer its BSA/AML Conference in person at the Chula Vista Resort in Wisconsin Dells this spring!

In order to maintain the credentials required for managing, auditing, or implementing the portion of their institution’s compliance function that relates to money laundering, terrorist financing, or national security, banks are required to provide ongoing training for those responsible for BSA and AML compliance.

The WBA BSA/AML Conference provides bankers with the opportunity to hear and interact with regulators — at both the state and federal functional regulatory agencies — and gain instruction in BSA/AML compliance issues. While the conference curriculum changes each year, bankers return year after year to ensure they remain up to date on issues, topics, and guidance related to their compliance responsibility.

The two-day event will cover topics including:

  • AML Software Identifications, & Proposals, Payments, and Compliance Update
  • SAR Trends and Updates
  • Keys to Completing the SAR Narrative
  • Elder/Vulnerable Adult Exploitation
  • AMLA Update
  • Beneficial Ownership Identification Reporting (BOIR)

In addition to the various networking opportunities WBA events are known for, attendees will receive two full days of instruction from speaker Mark Dever of ProBank Austin and Nick Bonnema of Wipfli LLP.

“In this rapidly changing BSA environment, attendees will get the latest status on a variety of topics and issues that are evolving, along with feedback and guidance from the examiners, and of course, the opportunity to network with their peers,” highlights Dever. “Attendees can make the most out of their attendance by coming armed with questions on BSA, and the willingness to actively participate in the various sessions.”

Those interested in attending the event on May 10–11 should visit wisbank.com/BSA-AML to learn more or to register.

/by
,

Executive Letter: CFPB Releases Final Section 1071 Business Data Collection Rule

Rose Oswald PoelsBy Rose Oswald Poels

Last Thursday, the Bureau of Consumer Financial Protection (CFPB) issued its long-awaited final Section 1071 business data collection rule. The Wisconsin Bankers Association (WBA) has been engaged in the rulemaking process since the proposal’s inception. While I know the general requirements for this rule came directly from the Dodd-Frank Act, CFPB chose to add in many more data points than what the law required which have made this rule very burdensome for the banking industry and intrusive for banks’ small business customers.

Just this past fall, I, along with several Wisconsin bankers, shared specific concerns of the proposal directly with CFPB Director Rohit Chopra. I am disappointed our concerns were largely disregarded given the requirements within the final rule. Our concerns of data privacy for small business customers remain.

Given the low threshold for rule applicability, the amount of data to be collected and reported, and the changes in process that will need be implemented, the rule will be burdensome to implement. While I and the WBA Legal team are currently working through the final rule and accompanying resources, below are highlights of the final Section 1071 rule. WBA will certainly be hosting educational events and will be creating resources around the final rule in the forthcoming months.

Highlights

  • The final rule applies to banks that originated at least 100 covered originations in both of the two previous years.
  • “Small business” means one with gross revenue of $5 million or less in the preceding fiscal year.
  • Small businesses will be able to self-identify as women-, minority-, or LGBTQI+ owned.
  • Lenders will be able to rely on financial and other information provided by the small business applicant.
  • Mandatory compliance dates are staggered based upon the number of covered originations made by each bank, in particular:
    • A bank must begin collecting data and otherwise complying with the final rule on October 1, 2024, if it originated at least 2,500 covered originations in both 2022 and 2023.
    • A bank must begin collecting data and otherwise complying with the final rule on April 1, 2025, if it:
      • Originated at least 500 covered originations in both 2022 and 2023;
      • Did not originate 2,500 or more covered originations in both 2022 and 2023; and
      • Originated at least 100 covered originations in 2024.
  • A bank must begin collecting data and otherwise complying with the final rule on January 1, 2026, if it originated at least 100 covered originations in both 2024 and 2025.

As mentioned above, the CFPB has created resources which accompany the final rule. The resources include an executive summary, quick reference guides, and a data point chart.

View the Final Rule and Related CFPB Resources
/by

Trust Professionals Reconvene in Madison This Spring

On May 25, 2023, WBA will once again host its annual Trust Conference at the Wisconsin Bankers Association (WBA) headquarters in Madison. The one-day event, designed specifically to aid trust officers, wealth managers, and trust administrators in enhancing their operations, will provide attendees with the resources to utilize in their adoption of various changes in regulations, the economy, and overall trust department functions.

In addition to various networking opportunities, the conference will feature several topics critical to those involved with trust and estate planning.

Victor Schultz, president and chief fiduciary officer at Prairie Trust, will provide attendees with an update on the Trust Code and Trailer Bill. This presentation will cover all the improvements, fixes, and benefits of this bill, designed to update Wisconsin’s Trust Code.

Trust professionals will also have the opportunity to hear from Mike Burke of SHAZAM regarding the importance of recognizing elder financial abuse throughout the institution. As fraudsters become more sophisticated, it is important that bankers know the signs, understand their rights, and feel confident in approaching the situation.

Bankers are encouraged to register for the upcoming event at wisbank.com/Trust in order to take advantage of this opportunity to stay ahead of upcoming regulatory changes, earn continuing education credits, and gain insight on how to better serve their communities.

Questions regarding this year’s event can be directed to Miranda Gustafson, WBA assistant director – education.

Register Now
/by
,

March 2023 Compliance Journal

As spring arrives, so does the March 2023 WBA Compliance Journal. In this edition, WBA Legal covers upcoming changes to FDIC’s deposit insurance rules, FinCEN’s alert on the nationwide surge in mail theft-related check fraud schemes, and a Wisconsin Supreme Court decision which upheld Wisconsin’s long-established rules for priority under receivership rules. The publication also includes a summary of recently published agency rules and notices and other important compliance-related updates for bankers, including links to FRB’s Bank Term Funding Program resources and changes made to FDIC’s Section 19 rules as a result of the Fair Hiring in Banking Act.

/by
WBA logo

questions@wisbank.com

608-441-1200

4721 S Biltmore Ln.
Madison, WI 53718

Get our Newsletter!
Subscribe