On November 7, the Consumer Financial Protection Bureau (CFPB) issued a proposed rule with request for public comment to amend existing regulations defining “larger participants” the CFPB supervises by adding a new section to define larger participants that offer digital wallets, payment applications, and similar services.
On October 30, President Biden issued a sweeping Executive Order calling on Congress to enact privacy laws and directing federal agencies to review existing rules and potentially explore new rulemakings governing the use of artificial intelligence (AI) across various sectors of the U.S. economy. Among other things, the Executive Order will require AI system developers to submit safety test results to the federal government, establish standards for detecting AI-generated content to fight consumer fraud, and develop AI tools to identify and fix vulnerabilities in critical software. According to the White House fact sheet, the stated goal of the Executive Order is to “ensure that America leads the way in seizing the promise and managing the risks of [AI].” To that end, the Executive Order focuses on national security, privacy, discrimination and bias, healthcare safety, workplace surveillance, innovation, and global leadership.
On October 27, the Federal Trade Commission (FTC) announced a final rule amending the Standards for Safeguarding Customer Information (Safeguards Rule) under the Gramm-Leach-Bliley Act. The Safeguards Rule requires nonbanking financial institutions to develop, implement, and maintain a comprehensive information security program to keep their customers’ information safe. The amendment will require financial institutions to notify the FTC no later than 30 days after discovery of a security breach involving the information of 500 or more consumers. The amendment will go into effect 180 days after publication of the final rule in the Federal Register.
On October 24, the Federal Trade Commission (FTC) and the Wisconsin Department of Justice announced a settlement with Wisconsin auto dealer group Rhinelander Auto Center, Inc. (Rhinelander), its current and former owners, and general manager. The lawsuit was brought under the FTC Act, the Equal Credit Opportunity Act (ECOA), the Wisconsin Deceptive Trade Practices Act, and the Wisconsin Consumer Act.
On October 19, the Consumer Financial Protection Bureau (CFPB) issued its highly anticipated notice of proposed rulemaking under Section 1033 of the Consumer Financial Protection Act of 2010 (CFPA). The proposed Personal Financial Data Rights Rule would require depository and nondepository entities to make available to consumers and authorized third parties certain data relating to consumers’ accounts, establish obligations for third parties accessing a consumer’s data, and provide basic standards for data access. Notably, the proposed rule only provides for narrow exceptions, such as community banks and credit unions that have no digital interface with their customers. The CFPB is currently accepting comments on the proposed rule until December 29, 2023.
A new enforcement action provides more detail on the expectations of the Consumer Financial Protection Bureau (CFPB) and Federal Trade Commission (FTC) (collectively, the agencies) for the content of tenant screening reports.
On October 11, the Consumer Financial Protection Bureau (CFPB or Bureau) issued an advisory opinion regarding § 1034(c) of the Consumer Financial Protection Act (CFPA), which requires large banks and credit unions to comply in a timely manner with consumer requests for information concerning their accounts. This advisory opinion follows a June 2022 request for information where the CFPB asked for public input on customer service obstacles encountered when interacting with large financial institutions. According to the CFPB, this initiative is in response to large financial institutions moving away from “relationship banking.”
Yesterday, the U.S. Department of Justice (DOJ) and the Consumer Financial Protection Bureau (CFPB) (collectively, the agencies) issued a joint statement on the subject of creditors’ use of immigration status for eligibility for credit transactions, an issue that has been kicking around in private litigation for years, but as to which the federal regulators have been silent. The joint statement warns lenders that “unnecessary or overbroad” reliance on immigration status in the credit decisioning process may violate the Equal Credit Opportunity Act (ECOA) and other federal laws. According to the agencies, the joint statement was issued in response to consumers reportedly being rejected for credit cards and loans because of their immigration status, even when they have strong credit histories and are otherwise qualified to receive the loans.
On October 11, the Consumer Financial Protection Bureau (CFPB or Bureau) published a special edition of its Supervisory Highlights report. This report serves as a “victory lap” for the Bureau, which highlights the relief it has obtained for consumers since the release of its March 2023 Special Fees Edition, discussed here. According to the Bureau, its supervisory efforts have led to institutions refunding over $140 million to consumers, including $120 million in overdraft and non-sufficient funds (NSF) fees.
The Third Circuit Court of Appeals overruled a district court’s reading of an exception into §1681s-2(b) of the Fair Credit Reporting Act (FCRA) that would allow a furnisher discretion to refuse to investigate an indirect dispute it deems frivolous or irrelevant. Instead, the Third Circuit held that a furnisher must investigate even frivolous indirect disputes — disputes submitted by a consumer first to a consumer reporting agency (CRA) that are then transmitted by the CRA to the furnisher. A copy of the decision can be found here.