#CFPB

CFPB Expands its Reach with Final Rule Establishing Nonbank Registry of Public Settlements, Consent Orders and Enforcement Actions

June 18, 2024 By Nanci Weissgold, Anoush Garakani

What Happened?

On June 3, 2024, the Consumer Financial Protection Bureau (CFPB or Bureau) issued its Registry of Nonbank Covered Persons Subject to Certain Agency and Court Orders Final Rule (the Final Rule), a 486-page rule imposing new obligations on nonbank entities that offer or provide a consumer financial product or service. At a high level, the Final Rule contains three primary requirements.

First, the Final Rule requires certain nonbank entities (Covered Nonbanks) to register with the CFPB’s new nonbank registry (NBR) and provide information about the nonbank and certain public Federal, State, or local written orders imposing obligations on the nonbank based on violations of certain consumer protection laws.

Second, for those Covered Nonbanks subject to the Bureau’s supervisory authority under section 1024(a) of the Consumer Financial Protection Act of 2010 (CFPA), the Final Rule will require such supervised registered entities to annually identify the executive(s) responsible for and knowledgeable of the nonbank’s efforts to comply with the orders identified in the NBR and submit an annual written statement and attestation.

Third, the Final Rule describes the registration information that the Bureau may make public.

The Final Rule takes effect on September 16, 2024 (the Effective Date) but establishes different implementation dates for different categories of Covered Nonbanks. Covered Nonbanks will be required comply with the Final Rule by as early as October 16, 2024.

Why Does it Matter?

The Final Rule represents yet another novel interpretation by the Bureau of its authority under the Dodd-Frank Act. As stated by the Bureau, “the registry will accomplish a number of goals, with a particular focus on monitoring for risks to consumers related to repeat offenders of consumer protection law.” As set forth below, the scope and requirements of the Final Rule are broad and complex, and failing to comply with these new requirements can perpetuate a “repeat offender” label.

The Final Rule Applies to Covered Nonbanks

With certain exceptions, the Final Rule will apply to covered persons as defined in the CFPA, including persons that engage in offering or providing a consumer financial product or service, as defined in the CFPA. Under the CFPA, a “covered person” is (A) any person that engages in offering or providing a consumer financial product or service; and (B) any affiliate of such person if such affiliate acts as a service provider to such person. Among others, consumer financial products and services generally include the following, to the extent they are offered or provided for use by consumers primarily for personal, family, or household purposes:

Extending credit and servicing loans;
Extending or brokering certain leases of personal or real property;
Providing real estate settlement services;
Engaging in deposit-taking activities, transmitting or exchanging funds, or otherwise acting as a custodian of funds;
Selling, providing, or issuing stored value or payment instruments;
Providing check cashing, check collection, or check guaranty services;
Providing payments or other financial data processing products or services to a consumer by any technological means;
Providing financial advisory services;
Collecting, analyzing, maintaining, or providing consumer report information or certain other account information; and
Collecting debt related to any consumer financial product or service.

The Final Rule does not apply to:

An insured depository institution or insured credit union (e.g., an FDIC-insured bank);
A person who is a covered person solely due to being a “related person,” as provided in the Dodd-Frank Act (e.g., controlling shareholders, consultants, and independent contractors, if the person is a covered person only because the person is a “related person” and not a covered person for another reason);
A State, including federally recognized Indian tribes;
A natural person;
Certain motor vehicle dealers;
A person that qualifies as a covered person under the Dodd-Frank Act only because of conduct excluded from the CFPB’s rulemaking authority, such as certain activities related to charitable contributions.

All other covered persons are covered by the Final Rule and are considered “Covered Nonbanks” for purposes of the Final Rule.

Orders Covered by the Final Rule

The Final Rule applies to “Covered Orders.” A Covered Order is a final public order issued by an agency or court (whether or not issued by settlement or consent) that:

Identifies a Covered Nonbank by name as a party subject to the order;
Was issued at least in part in any action or proceeding brough by any Federal Agency, State Agency, or Local Agency;
Contains public provisions that impose obligations on the Covered Nonbank to take certain actions or to refrain from taking certain actions;
Imposes such obligations on the Covered Nonbank “based on” an alleged violation of a “Covered Law”; and
Has an effective date on or later than January 1, 2017.

A “Covered Law” means one of the following laws, to the extent that the violation of law found or alleged “arises out of conduct in connection with the offering or provision of a consumer financial product or service”:

A Federal consumer financial law;
Any other law as to which the Bureau may exercise enforcement authority;
The prohibition on UDAPs under section 5 of the FTC Act or rules or orders issued thereunder;
A State law prohibiting UDAPs/UDAAPs as identified in Appendix A to the Final Rule;
A State law amending or otherwise succeeding a law identified in Appendix A to the Final Rule, to the extent the law is materially similar to its predecessor; or
A rule or order issued by a State agency for the purpose of implementing a State law referenced in the two preceding bullet points.

According to the Bureau, “an obligation is ‘based’ on alleged violation where the order identifies the covered law in question, asserts or otherwise indicates that the covered nonbank has violated it, and imposes the obligation on the covered nonbank at least in part as a result of the alleged violation, even where the order contains provisions clearly stating that the entity does not concede or admit liability.” While the Bureau clarifies the meaning of “based on,” the Bureau declines to provide clarity “for determining the circumstances under which violations of covered laws arise out of conduct ‘in connection with the offering or provision of a consumer financial product or service.’”

It is also noteworthy, that the CFPB declined to narrow the definition of Covered Orders to those involving consumer harm. As a result, even orders of a clerical, technical, or administrative nature could be in scope.

Initial Registration Requirements

During each implementation submission period (discussed below), for all Covered Orders that (1) have an effective date from January 1, 2017, through the start of the Covered Nonbank’s submission period, and (2) for Covered Orders issued prior to September 16, 2024, remains effective as of September 16, 2024, each Covered Nonbank that is identified as a party to such Covered Order must register with the NBR and provide the following information, in the format provided by the Bureau (such filing instructions have not yet been released) within 90 days from the applicable implementation date or after the effective date of the applicable Covered Order:

A fully executed, accurate and complete copy of the Covered Order (except nonpublic portions may be omitted);
The name of the agency(ies) and court(s) that issued or obtained the Covered Order, as applicable;
The effective date of the Covered Order;
The expiration date of the Covered Order, if any;
All Covered Laws found to have been violation, or for orders issued upon the parties’ consent, alleged to have been violated;
Any docket, case, tracking, or similar identifying number(s) assigned to the Covered Order by the applicable agency(ies) or court(s); and
The name and title of the attesting executive with respect to the Covered Order, if the registered entity is a supervised registered entity.

Annual Supervisory Reports for Supervised Registered Entities

Supervised Registered Entity

The annual reporting requirements apply to an “supervised registered entity” defined to mean a registered entity that is subject to supervision and examination by the Bureau. The definition includes:

An entity that qualifies as a larger market participant for consumer financial products or services, as defined in the CFPA;
An entity subject to an order by the Bureau exercising supervisory authority over certain nonbanks based on a risk determination in accordance with the CFPA; and
An affiliate of an insured depository institution and insured credit unions with more than $10 billion in total assets.

The definition excludes:

A service provider that is subject to Bureau examination and supervision solely in its capacity as a service provider and that is not otherwise subject to Bureau supervision and examination;
A motor vehicle dealer that is predominantly engaged in the sale and servicing of motor vehicles, the leasing and servicing of motor vehicles, or both, with limited exception;
Persons with less than $5 million in annual receipts resulting from offering or providing all consumer financial products or services;
A person that qualifies as a covered person based solely on conduct that is the subject of, and that is not otherwise exempted from, an exclusion from the Bureau’s supervisory authority under the CFPA; and
An affiliate of an insured depository institutions and insured credit unions with less than $10 billion in total assets.

Designation of Attesting Executive

A supervised registered entity subject to a Covered Order is required to annually designate one attesting executive for each Covered Order and all submissions related to that order who is “its highest-ranking duly-appointed senior executive officer (or, if the supervised registered entity does not have any duly appointed officers, the highest-ranking individual charged with managerial or oversight responsibility for the supervised registered entity) whose assigned duties include ensuring the supervised registered entity’s compliance with Federal consumer financial law, who has knowledge of the entity’s systems and procedures for ensuing compliance with the covered order, and who has control over the entity’s efforts to comply with the covered order.”

While the Bureau expects that under most circumstances the supervised registered entity would designate one single individual as its attesting executive for all of the Covered Orders to which it is subject, the Final Rule does not include such a requirement as the Bureau recognizes that there may be situations where there is no one executive with the requisite knowledge for all Covered Orders.

The entity must authorize the attesting executive to perform the duties of an attesting executive on behalf of the supervised registered entity with respect the Covered Order, including providing prompt access to all documents and information related to the supervised registered entity’s compliance with all applicable Covered Orders to make the required annual statement, as described below.

Annual Statement

The Annual Statement requirement applies prospectively to Covered Orders with an effective date after the Nonbank Registry Implementation Date. The Bureau states that it will treat the written statement submitted by the supervised registered entity as confidential supervisory information but does intend to publish the name and title of the attesting executive as it believes that publication of the executive’s name “will provide an incentive to pay more attention to covered orders.”

On or before March 31^st of each calendar year, the supervised registered entity must submit to the NBR a written statement for each Covered Order signed by the attesting executive. Such statement must include:

A general description of the steps that the attesting individual has undertaken to review and oversee the supervised registered entity’s activities applicable to the Covered Order for the preceding calendar year; and
Attest whether to the attesting executive’s knowledge, the supervised registered entity during the preceding calendar year identified any violations or instances of noncompliance with any public provisions of the Covered Order.

The Bureau does not establish any minimum procedures or steps the attesting executive must take in order to review and oversee the entity’s activities. With that said, the Bureau declined “to impose a reasonableness, good faith or other standards regarding the steps that the attesting executive has undertaken to review and oversee the supervised registered entity’s activities subject to the applicable covered order.” The Bureau also declined to impose materiality requirements as to the types of violations that must be declared – even minor ones are important to the Bureau.

Recordkeeping

Supervised registered entities are required to maintain documents and other records to provide reasonable support for its written statement for 5 years after its submission is required.

Optional One-Time Registration of NMLS-Published Covered Orders

In lieu of requiring compliance with the registration and annual reporting requirements, a Covered Nonbank that is identified by name with respect to an NMLS-published Covered Order may elect to comply with a one-time registration option. The CFPB will specify what information the Covered Nonbank must provide to the NBR for purposes of identifying the NMLS-published Covered Order and for coordinating with the NMLS. Upon supplying this information, the Covered Nonbank will have no further reporting obligations with respect to that Covered Order. A Covered Nonbank may avail itself of this one-time registration for all or some of its NMLS-published orders, which are those orders published on the NMLS Consumer Access website. However, “no covered order issued or obtained at least in part by the Bureau shall be an NMLS-published covered order.” Thus, if the applicable Covered Order was issued either by a court or the Bureau itself, or brought at least in part by the Bureau, this optional one-time registration is not available to such order. That is because the Bureau is requiring such orders to be included in the NBR so that the CFPB can monitor and enforce its own orders as well as obtaining the annual written statement regarding CFPB orders.

Termination of Registration Requirements

Covered Orders are subject to ongoing registration requirements until it is deemed to expire under the Final Rule, or all relevant provisions are fully terminated by an agency or court or under its own terms on a date expressly provided for in the Covered Order.

The Final Rule provides that a Covered Order that does not expressly provide for a termination date and is not otherwise terminated earlier is deemed to expire 10 years after its effective date. Alternatively, if a Covered Order provides for a termination date that is longer than 10 years, the Covered Order is not deemed to have terminated until the longer period provided for in the order.

The Final Rule requires that Covered Nonbanks notify the Bureau within 90 days from the date any Covered Order is modified, terminated, or abrogated.

If a Covered Order expires, is terminated, or is otherwise modified such that it is no longer a Covered Order, then the Covered Nonbank is relieved of ongoing registration and written statement obligations with respect to such order after the Covered Nonbank files a final notice with the Bureau. That is not to say, however, that the Covered Order would be removed from the CFPB’s registry. Subject to the Bureau’s discretion, the CFPB may maintain information on Covered Orders and the Covered Nonbanks subject to them on the NBR indefinitely.

Publication and Correction of Submissions to the NBR

Publication of NBR Information

The Final Rule provides that the CFPB may publish certain information about registered Covered Nonbanks and Covered Orders on its website. However, the written statement will be treated as confidential supervisory information. In addition, at its discretion, the CFPB may also publish aggregations or summary reports using the information submitted to the CFPB’s NBR.

Corrections of Submissions

If any information submitted to the NBR was inaccurate when submitted and remains inaccurate, a Covered Nonbank must file a corrected report in the form and manner specified by the Bureau within 30 days after the date on which the Covered Nonbank becomes aware or has reason to know of the inaccuracy. In addition, the Bureau may at any time and in its discretion direct a Covered Nonbank to correct errors or other non-compliant submissions to the NBR.

Implementation Submission Periods and Ongoing Registration

Implementation Submission Periods

The Final Rule provides for phased implementation dates that vary depending on the type of Covered Nonbank. As reflected in the below table, the Final Rule provides the following 90-day registration window for each category of Covered Nonbank to register all Covered Orders with effective dates from January 1, 2017, until the start of that implementation submission period:

Covered Nonbank Type	Registration Submission Period*	Registration Deadline*
Larger Participant CFPB-Supervised Covered Nonbanks Covered Nonbanks that are larger participants of a market for consumer financial products or services described under 12 U.S.C. 5514(a)(1)(B) as defined by one or more rules issued by the Bureau	October 16, 2024 through January 14, 2025	January 14, 2025
Other CFPB-Supervised Covered Nonbanks Covered Nonbanks described under any other provision of 12 U.S.C. 5514(a)(1)	January 14, 2025 through April 14, 2025	April 14, 2025
All other Covered Nonbanks	April 14, 2025 through July 14, 2025	July 14, 2025

* The Final Rule requires any dates that fall on a Saturday, Sunday, or Federal holiday be converted to the next day that is not a Saturday, Sunday, or Federal holiday. The Bureau has adjusted the above implementation submission period dates accordingly.

As noted above, during each of the above Registration Submission Periods, the Covered Nonbank must register all Covered Orders that: (1) have an effective date from January 1, 2017, through the start of the Covered Nonbank’s Registration Submission Period, and (2) for Covered Orders issued prior to September 16, 2024, the Covered Order remains effective as of September 16, 2024.

By way of example, assume an Other CFPB-Supervised Covered Nonbank has the following orders (that otherwise meet the definition of a Covered Order): (1) an order that took effect on January 1, 2016, and that expires on January 1, 2026, (2) an order that took effect on January 1, 2017, and that expires on October 30, 2025, and (3) an order that becomes effective on January 1, 2025, and that expires on January 1, 2031. During the applicable Registration Submission Period (noted above), the Other CFPB-Supervised Covered Nonbank:

Would not register the first order (effective January 1, 2016) because it took effect before January 1, 2017.
Must register the second order (effective January 1, 2017) because it took effect on or after January 1, 2017 (and prior to the start of the applicable submission period) and remained in effect as of September 16, 2024.
Must register the third order (effective January 1, 2025) because it took effect on or after September 16, 2024, and prior to the start of the applicable submission period.

Ongoing Registration

After the start of a Covered Nonbank’s implementation submission period, a Covered Nonbank must begin complying with the Final Rule’s ongoing registration timing requirements to register new Covered Orders and to submit changes or updates related to previously registered Covered Orders. Generally, a Covered Nonbank must return to the NBR and make a registration submission within the identified 90-day window for each of the following events:

Any updates or changes to the nonbank’s identifying information or administrative information, within 90 days after the date of that change.
Any amendments to previously registered Covered Orders, including changes to submitted order information, within 90 days after the date the amendments are made.
Any new Covered Orders applicable to the Covered Nonbank (with effective dates on or after the start of the applicable implementation period), within 90 days after the effective date of the new Covered Order.
A revised filing if there is any termination or expiration (as discussed above) of a previously registered Covered Order, within 90 days after the effective date of that termination or expiration.

Enforcement / Penalties for Noncompliance with Final Rule

General Enforcement

The Bureau declined to establish special rules or remedies for violation of the Final Rule. With that said, the Preamble to the Final Rule clearly states that the Final Rule is a Federal consumer financial law under the CFPA and that “[v]iolation of the [F]inal [R]ule would be an independent violation of Federal consumer financial law subject to enforcement as provided in the CFPA, and applicable remedies under law, including potential civil money penalties.”

Additional Enforcement Considerations for Supervised Registered Entities

With respect to supervised registered entities, the Final Rule clarifies that the obligation to designate an attesting executive or to submit a written statement when required to do so, belongs to the supervised registered entity, and not to any particular individual. Accordingly, the Bureau states that “[i]f a supervised registered entity failed to designate an attesting executive or to submit a written statement when required to do so, the supervised registered entity – not a particular individual – would potentially be subject to an enforcement action.”

Notwithstanding the foregoing, the Bureau stated its expectation that the requirement to designate a single attesting executive for a Covered Order will prompt the executive to focus greater attention on ensuring compliance, which in turn will increase the likelihood of compliance. The Bureau also indicated that it intends to use the information submitted under § 1092.204 to facilitate its efforts to assess compliance with any Covered Orders that may be enforced by the Bureau, and to make determinations regarding any potential Bureau supervisory or enforcement actions related to the Covered Order or any other identified risks to consumers. For example, “where information obtained under proposed 1092.204 indicates that a high-ranking executive has knowledge of (or has recklessly disregarded) violations of legal obligations falling within the scope of the Bureau’s jurisdiction, and has authority to control the violative conduct, the Bureau may use that information in assessing whether an enforcement action should be brought not only against the nonbank covered person, but also against the individual executive.” However, the Final Rule itself does not impose any legal obligation on the attesting executive to ensure compliance with any Covered Order.

Finally, with respect to the attestation required to be submitted as part of the annual written statement, the Bureau notes that Final Rule “does not purport to interpret provisions of criminal law . . . or to identify particular circumstances under which an attesting executive would become criminally liable for false statements,” however the Bureau indicates that it “expects attesting executives to submit truthful statements under the Final Rule and believes that the existence of other laws like 18 USC 1001 provides incentives in that regard.” Notably, however, 18 USC 1001 makes it a crime to make any false statements in any matter within the jurisdiction of the executive, legislative, or judicial branch of the U.S. government. Therefore, the Bureau appears to suggest that making a false attestation under the Final Rule may also constitute a crime under 18 USC 1001 or other applicable law.

What Do I Need to Do?

The Final Rule is complicated – some might say unnecessarily so – with lots of opportunities for missteps. Between the Final Rule and the Bureau’s recent apparent strategy to issue consent orders with indefinite terms, companies will need to be extra vigilant to avoid the scarlet letter designation of a repeat offender. Now is the time to double down on compliance. This also holds true for Covered Nonbanks that are not subject to CFPB supervision as the Final Rule also coincides with the CFPB’s increased use of its so-called “dormant authority,” which empowers the Bureau to designate nonbanks for supervision based on certain risks to consumers. Covered Nonbanks that are designated for CFPB supervision must also comply with the additional reporting and attestation requirements applicable to supervised registered entities.

While the Final Rule does not establish any minimum procedures nor otherwise specify the steps an entity must take to comply with the Final Rule, failure to implement steps in accordance with the CFPB’s expectations will not be viewed positively by the Bureau. As a result, now is the time for nonbanks to work with counsel to understand and implement the Final Rule, as applicable, into their compliance management systems once the filing instructions are released.

CFPB Issues Credit Card Penalty Fee Final Rule, Reduces Late Fees to $8

March 28, 2024 By Aldys London, Gloria Han

What Happened?

On March 5, 2024, the Consumer Financial Protection Bureau (“CFPB”) issued the Credit Card Penalty Fees Final Rule (“Final Rule”), which reduces the safe harbor for the maximum late fee that large credit card issuers may charge to $8. This rule is effective on May 14, 2024.

Why Is It Important?

Background

The Credit Card Accountability Responsibility and Disclosure Act of 2009 provided that any penalty fee imposed on a consumer in connection to an omission or violation of a cardholder agreement under an open-end consumer credit plan must be “reasonable and proportional” to the omission and violation.[1] To implement this provision, Regulation Z provided that card issuers may not impose a fee for violating the terms of a credit card account under an open-end consumer credit plan (“Penalty Fee”) unless the issuer (1) undergoes a cost analysis and determines that the fee is reasonably proportional to the total costs incurred by the issuer for such violation, or (2) complies with the safe harbor provisions, which provide set amounts for Penalty Fees that card issuers may charge.[2]

Previously, the safe harbor for Penalty Fees were $30 for an initial violation and $41 for each subsequent violation of the same type that occurs during the same billing cycle or in one of the next six billing cycles. These thresholds were adjusted annually to reflect changes to the Consumer Price Index (“CPI”).[3]

Final Rule

Under the Final Rule, the safe harbor threshold for late fees is limited to $8 and the annual adjustments to reflect changes in the CPI no longer apply to the $8 threshold. This new threshold only applies to “Large Card Issuers,” which are card issuers that have one million or more open credit card accounts.

The new late fee safe harbor threshold does not apply to Smaller Card Issuers. To qualify as a “Smaller Card Issuer,” the issuer, together with its affiliates, must have fewer than one million “open credit card accounts” from January through December of the preceding year.[4] If an issuer has one million or more open credit card accounts at any point in the current calendar year, it loses its status as a Smaller Card Issuer.[5] If the card issuer chooses to use the Regulation Z safe harbor provisions, the late fee safe harbor threshold of $8 is applicable to the issuer starting the 60^th day after it meets or exceeds the threshold.[6] It will not qualify as a Smaller Card Issuer again until it has fewer than one million open credit card accounts in an entire preceding calendar year.

For other violations, the safe harbor amounts, adjusted to reflect changes to the CPI, are now $32 for an initial violation and $43 for subsequent violations of the same type that occurs during the same billing cycle or in one of the next six billing cycles.[7] Large Card Issuers may charge Penalty Fees pursuant to these safe harbors for other violations of the terms or requirements of an account.[8] Smaller Card Issuers may continue to charge fees, including late fees, under the current safe harbor provisions.

Alternatively, if not relying on the safe harbor provisions, a card issuer may impose penalties on consumers for violations of their credit card account if the issuer undergoes a cost analysis and determines that the fee is reasonably proportional to the total costs incurred by the issuer for such violation. However, the Final Rule provides that when determining penalty fees, card issuers may not include any collection costs incurred after an account is charged-off in accordance with loan loss provisions.[9] These restrictions and challenges in demonstrating that the fee is reasonably proportional to the total costs incurred by the issuer for violations make it difficult for card issuers to deviate from the safe harbors.

The U.S. Chamber of Commerce (the “USCC”) indicated that it would sue “immediately” to prevent the Final Rule from going into effect, arguing that the Final Rule will result in fewer card offerings and limit access to affordable credit for many consumers.[10] On March 7, 2024, two days after the CFPB issued its Final Rule, the USCC filed a lawsuit in the Northern District of Texas seeking an injunction to stop the CFPB from implementing the Final Rule.[11] Most recently, in an order on March 18, 2024, the U.S. District Judge Mark Pittman expressed concern over the choice of venue and has ordered briefing regarding the choice to determine whether the case should be transferred to another venue.[12]

What Do I Need to Do?

Large Card Issuers should ensure that their policies, procedures, and controls are updated to ensure compliance with the Final Rule by May 14^th, pending the outcome of any litigation against the CFPB challenging the Final Rule. Smaller Card Issuers should monitor the number of open accounts that they and their affiliates have to ensure that they still qualify as Smaller Card Issuers and that they are charging the correct late fee penalties depending on their status.

[1] 15 USC § 1665d(a).

[2] 12 CFR § 1026.52(b)(1).

[3] 12 CFR §1026.52(b)(1)(ii)(D).

[4] 12 CFR § 1026.52(b)(3). “Affiliate” means any company that controls, is controlled by, or is under common control with another company, as set forth in the Bank Holding Company Act of 1956 (12 U.S.C. §§ 1841 et seq.). Id. “Open credit card accounts” are credit card accounts under an open end (not home secured) consumer credit plan where either (1) the cardholder can obtain extensions of credit on the account or (2) there is an outstanding balance on the account that has not been charged off. 12 C.F.R. § 1026.52(b)(6). An account that has been suspended temporarily is considered an open credit card account. Id.

[5] 12 CFR § 1026.52(b)(3).

[6] Id.

[7] 12 CFR §1026.52(b)(1)(ii)(A), (B).

[8] 12 CFR §1026.52(b)(1)(ii).

[9] 12 CFR §1026.52(b)(1)(i), Comment 2.i

[10] U.S. Chamber of Commerce, U.S. Chamber Opposes New CFPB Credit Card Late Fees Rule That Limits Access to Affordable Consumer Credit (March 5, 2024), https://www.uschamber.com/finance/u-s-chamber-opposes-new-cfpb-credit-card-late-fees-rule-that-limits-access-to-affordable-consumer-credit.

[11] U.S. Chamber of Commerce, U.S. Chamber Files Lawsuit Against Consumer Financial Protection Bureau to Protect Credit Card Users (March 7, 2024), https://www.uschamber.com/finance/u-s-chamber-files-lawsuit-against-consumer-financial-protection-bureau-to-protect-credit-card-users.

[12] Order, Doc. 45 at 1, Mar. 18, 2024, No. 4:24-cv-00213-P, https://fingfx.thomsonreuters.com/gfx/legaldocs/dwvkeqowrvm/03192024cfpb_venue.pdf.

CFPB’s War on Mortgage Fees Continues

March 18, 2024 By Nanci Weissgold, Melissa Malpass

What Happened?

Immediately following President Biden’s State of the Union Address announcing plans to lower homebuyer and refinancing costs, the CFPB issued a blog post seeking public input on how mortgage closing costs impact consumers. The CFPB also announced that it will work to monitor closing costs and, “as necessary, issue rules and guidance to improve competition, choice and affordability.” Significantly, the CFPB also signaled that it will continue to use its supervision and enforcement tools for companies that fail to comply with the law.

Why Is It Important?

The CFPB is putting companies on notice that the Bureau will be taking a close look at the total loans costs for originating a residential mortgage loan, including origination fees, appraisal fees, credit report fees, title insurance, discount points, and other fees. In particular, the CFPB is paying “significant attention to the recent rise in discount points,” and seems concerned with the lack of competition in connection with certain fees, such as lender’s title insurance and credit reports. The CFPB also has expressed concerns with how companies may charge lender credits and fees that are financed into the loan amount (through higher interest rates or mortgage insurance payments).

While the CFPB’s blog post does not identify any specific laws, it does provide some clues. First, the Bureau is concerned that some closing costs are high and increasing due to lack of competition. According to the Bureau, “[b]orrowers are required to pay for many of the costs associated with closing a home loan but cannot pick the provider and do not benefit from the service.” Taking unreasonable advantage of the inability of a consumer to protect their interests in selecting or using a consumer financial product or service could be construed as abusive under the Dodd-Frank Act’s UDAAP statute.

Because certain fees are fixed and don’t fluctuate with the loan size or interest rate, the Bureau is concerned that such fees could disproportionately impact borrowers with smaller loans, such as low-income borrowers, first-time borrowers, or Black or Hispanic borrowers. This could present a fair lending problem under the Equal Credit Opportunity Act. Indeed, the CFPB already has announced that, pursuant to its authority to prevent unfair, deceptive, and abusive acts or practices (“UDAAPs”), the Bureau will begin examining institutions for alleged discriminatory conduct that the Bureau deems to be unfair.

Of course, Congress passed the Dodd-Frank Act to address many of the above concerns, and the TRID Rule already attempts to ensure that consumers are provided with greater and more timely information on the nature and costs of the residential real estate settlement process and are protected from unnecessarily high settlement charges.

What Do I Need to Do?

The CFPB is sending a strong message to the industry that closing fees will be receiving scrutiny from the CFPB. And knowing that the CFPB has been on a hiring spree in its enforcement division, now is a good time to take a close look at the fees being charged from both a UDAAP and fair lending perspective. The team at Alston & Bird has deep knowledge on mortgage fees and is happy to assist with such a review.

CFPB and FTC Amicus Brief Signals Stance on “Pay-to-Pay” Fees under FDCPA

March 11, 2024 By Sam Bragg, Stephan Harris

What Happened?

On February 27, the Consumer Finance Protection Bureau (CFPB) and the Federal Trade Commission (FTC) filed an amicus brief in the 11th Circuit case Glover and Booze v. Ocwen Loan Servicing, LLC arguing that certain convenience fees charged by mortgage servicer debt collectors are prohibited by the Fair Debt Collection Practices Act (FDCPA). This brief comes on the heels of an amicus brief Alston & Bird LLP filed on behalf of the Mortgage Bankers Association (MBA). In its brief, the MBA urged the 11th Circuit to uphold the legality of the fees at issue.

While litigation surrounding convenience fees has spiked in recent years, there is no consensus on whether convenience fees violate the FDCPA. Federal courts split on the issue, as there is little guidance at the circuit court level, and the issue before the 11th Circuit is one of first impression. Consequently, the 11th Circuit’s ruling could significantly impact what fees a debt collector is permitted to charge, both within that circuit and nationwide.

Why is it Important?

Convenience fees or what the agencies refer to as “pay-to-pay” fees are the fees charged by servicers to borrowers for the use of expedited payment methods like paying online or over the phone. Borrowers have free alternative payment methods available (e.g., mailing a check) but choose to pay for the convenience of a faster payment method.

Section 1692f(1) of the FDCPA provides that a “debt collector may not use unfair or unconscionable means to collect or attempt to collect any debt,” including the “collection of any amount (including any interest, fee, charge, or expense incidental to the principal obligation) unless such amount is expressly authorized by the agreement creating the debt or permitted by law.” The CFPB and FTC argues that Section 1692f(1)’s prohibition extends to the collection of pay-to-pay fees by debt collectors unless such fees are expressly authorized by the agreement creating the debt or affirmatively authorized by law.

First, the agencies contend that pay-to-pay fees fit squarely with the provision’s prohibition on collecting “any amount” in connection with a debt and that charging this fee constitutes a “collection” under the FDCPA. Specifically, the agencies attempt to counter Ocwen’s argument that the fees in question are not “amounts” covered by Section 1692f(1) because the provision is limited to amounts “incidental to” the underlying debt. They argue that fees need not be “incidental to” the debt in order to fall within the scope of Section 1692f(1). In making this point, the agencies claim the term “including” as used is the provision’s parenthetical suggests that the list of examples is not an exhaustive list of all the “amounts” covered by the provision. Further, the agencies attempt to counter Ocwen’s argument that a “collection” under the FDCPA refers only to the demand for payment of an amount owed (i.e., a debt). They argue that Ocwen’s understanding of “collects” is contrary to the plain meaning of the word; rather, the scope of Section 1692f(1) is much broader and encompasses collection of any amount , not just those which are owed.

Next, focusing on the FDCPA’s exception for fees “permitted by law,” the agencies contend that a fee is not permitted by law if it is authorized by a valid contract (that implicitly authorizes the fee as a matter of state common law). The agencies suggest if such fees could be authorized by any valid agreement, the first category of collectable fees defined by Section 1692(f)(1)—those “expressly authorized by the agreement creating the debt”—would be superfluous. Lastly, the Agencies argue neither the Electronic Funds Transfer Act nor the Truth in Lending Act – the two federal laws Ocwen relies on in its argument – affirmatively authorizes pay-to-pay fees.

What Do You Need to Do?

Stay tuned. The 11th Circuit has jurisdiction over federal cases originating in Alabama, Florida, and Georgia. Its ruling is likely to have a significant impact on whether debt collectors may charge convenience fees to borrowers in those states, and it could be cited as persuasive precedent in courts nationwide.

CFPB’s Proposed Insufficient Fund Fee Rule – Narrow in Scope with Potential for Greater Impact

February 23, 2024 By Nanci Weissgold, Anoush Garakani, Melissa Malpass

What Happened?

On January 24, 2024, the Consumer Financial Protection Bureau (CFPB or Bureau) issued a proposed rule that would prohibit covered financial institutions from imposing a nonsufficient funds (NSF) fee when consumers initiate transactions that are instantaneously or near instantaneously declined (the Proposed Rule). According to the CFPB, such fees are not based on the transaction amount or processing cost and take unreasonable advantage of a consumer’s lack of understanding of the material risk, costs or conditions of the product or service. In the Preamble to the Proposed Rule, the CFPB recognizes that “currently covered financial institutions rarely charge NSF fees on covered transactions” and, thus, the “CFPB is proposing this rule primarily as a preventive measure.” With that said, the Proposed Rule is significant in that the Bureau also clarifies its approach to assessing abusive practices.

Why is it Important?

Background

In January 2022, the CFPB launched an initiative to reduce certain fees charged by banks and other companies under its jurisdiction, by issuing a Request for Information (Fee RFI) seeking public comment regarding fees that are not “subject to competitive processes that ensure fair pricing.” The CFPB continues to focus on these so-called “junk fees,” which the Bureau described in its Fee RFI, in part, as “fees that far exceed the marginal cost of the service they purport to cover, implying that companies are not just shifting costs to consumers, but rather, taking advantage of a captive relationship with the consumers to drive excess profits.” The Bureau’s attention is now on NSF fees.

The Proposed Rule

The Proposed Rule may be narrow in scope, but much broader in potential impact. It would prohibit a “financial institution” from charging an NSF fee to a consumer who attempts to withdraw, debit, pay, or transfer funds from their “account” that is declined instantaneously or near instantaneously by the “financial institution.” For purposes of the Proposed Rule, the term “account” and “financial institution” are defined consistent with Regulation E. Thus, a financial institution includes a bank, savings association, credit union, or any other person that directly or indirectly holds an account belonging to a consumer, or that issues an access device and agrees with a consumer to provide electronic fund transfer services. An account is defined equally broad to include: (i) checking, savings, or other consumer asset account held by a financial institution (directly or indirectly), including certain club accounts, established primarily for personal, family or household purposes, and (ii) a prepaid account. An account would not include, among others, escrow accounts for real estate taxes or insurance or an occasional or incidental credit balance in a credit plan. It is also worth noting that, according to the CFPB, checks and ACH transactions are not covered by the rule unless they evolve in a way to be cleared instantaneously.

While the scope of the Proposed Rule is narrow, the Bureau’s interpretation of abusiveness as articulated in the Proposed Rule is not. By way of background, Section 1031 of the Consumer Financial Protection Act (CFPA) prohibits unfair, deceptive, or abusive acts or practices (UDAAPs) under Federal law in connection with any transaction with a consumer for a consumer financial product or service, or the offering of a consumer financial product or service. The Proposed Rule finds that charging an NSF fee in instantaneously or near instantaneously declined transactions violates the “lack of understanding” prong of the abusiveness standard. Under the CFPB’s Policy Statement on Abusive Acts or Practices, the “lack of understanding on the part of the consumer of the material risks, costs, or conditions of the product or service” concerns gaps in understanding affecting consumer decision making.

The Proposed Rule attempts to fine tune the “lack of understanding” analysis by distinguishing prior comments the Bureau made in its 2020 Payday Lending Rule, by clarifying that:

“[L]ack of understanding under the abusiveness standard of UDAAP is not synonymous with reasonable avoidability under the unfairness standard.”
Magnitude and risk of harm are distinct and should have no bearing on a “lack of understanding” analysis.
A consumer’s lack of understanding should not be characterized as general or specific as such framework is unhelpful in determining whether consumers understand the material risks, costs or conditions of a financial product or service.

Under the Proposed Rule, the Bureau has preliminarily determined that the charging of such fee is abusive under Section 1031(d) of the CFPA as it would take “unreasonable advantage of consumers’ lack [of] understanding of the material risks, costs, or conditions associated with their deposit accounts” and that “covered financial institutions that charge NSF fees on covered transactions would be benefiting from negative consumer outcomes that result from…a consumer’s lack of understanding.”

The Bureau summarily dismissed that such risks could be mitigated, as disclosure would be too costly, too unfeasible, and unlikely to eliminate the risk. Rather, “[d]rawing on its experience and expertise regarding consumer behavior, the CFPB believes that if a transaction entails material risks or costs and consumers derive minimum or no benefit from the transaction, it is generally reasonable to conclude that consumers who nonetheless went ahead with the transaction did not understand the material risks, costs or the conditions to those risks or costs.”

In other words, the CFPB appears to believe that no consumer would initiate a transaction knowing that they have insufficient funds and that a fee could be charged if their transaction is declined, despite the fact that (1) the vast majority of consumers have readily available access to their bank account balances, (2) such fees are generally disclosed to consumers, and (3) consumers contractually agree to pay such fees.

What Do You Need to Do?

While the Proposed Rule has limited application, the Bureau’s interpretation of the abusiveness standard could have far broader implications, as the Bureau could deem as abusive any fee which it determines provides little to no consumer benefit. For example, it is unclear what would stop the Bureau from prohibiting other fees as abusive, based on a determination that such fees provide little to no consumer benefit and that financial institutions are “benefiting from negative consumer outcomes that result from…a consumer’s lack of understanding,” given that the Bureau’s rationale appears to give little regard to consumer disclosures or contract law.

Therefore, given the potential downstream implications of the CFPB’s broad interpretation of abusiveness, companies subject to the CFPB’s jurisdiction should carefully review the Proposed Rule and consider submitting a comment letter, even if the Proposed Rule itself would not directly apply to the company. The Proposed Rule’s comment period expires on March 25, 2024.