Our Take: financial services regulatory update – October 27, 2023

Climate risk management principles

On October 24th, the Fed, FDIC and OCC jointly finalized a set of principles for climate-related risk management for financial institutions with over $100 billion in total consolidated assets, or combined U.S. operations in the case of foreign banking organizations. The final principles are largely similar to drafts proposed separately by the three agencies in December 2022, April 2022, and December 2021, respectively. Republican Fed Governors Christopher Waller and Michelle Bowman as well as FDIC board members Travis Hill and Jonathan McKernan voted against the finalization. The principles cover expectations in six areas:

1. Governance. The final principles include the expectation that the board and management understand the evolution of climate-related risk and their institution’s exposures to those risks over time horizons that “extend beyond the bank’s typical strategic planning horizon.” Relative to the proposed principles, they further clarify the roles of the board and management in overseeing and executing climate risk management, respectively. They also remove discussion of compensation policies, noting that they are covered in other interagency guidance.
2. Policies, procedures, and limits. The principles call on management to incorporate climate-related risks into policies, procedures and limits in line with the strategy and risk appetite set by the board.
3. Strategic planning. They also state that the board should consider climate-related risks in setting and monitoring the institution’s business strategy, risk appetite, financial, capital and operational plans. In doing so, they should consider the impact of climate risk on financial condition, operations and business objectives over various time horizons.
4. Risk management. The principles guide management to design processes to identify, measure, monitor and control climate-related risks within existing risk management frameworks. They also note the importance of obtaining input from and reporting to various internal stakeholders.
5. Data, risk measurement and reporting. The principles acknowledge the importance of effective reporting of relevant, accurate and timely data and urge management to develop climate risk data aggregation and reporting capabilities.
6. Scenario analysis. As an important component of forward-looking analysis, the principles support the development of scenario analysis frameworks with clear objectives, oversight, validation and quality control standards.

The principles also cover management of risk areas including credit, liquidity, operational, legal/compliance, and other financial and non-financial risks. Regarding credit risk, the draft principles include examples of effective practices such as conducting sectoral, geographic and single-name concentration analyses, and suggest that they should include monitoring changes in correlations across exposures or asset classes. Other financial risk recommendations include monitoring interest rate risk for climate-related volatility and using the “best measurement methodologies reasonably available” to measure climate price risk. On the non-financial risk front, the principles discuss considering climate-related impacts on all business lines and operations, including third parties, and considering the risk of climate-related activities prompting reputational damage, liability or litigation.

SEC climate risk disclosures update

On October 26th, SEC Chair Gary Gensler discussed the SEC’s climate risk disclosure proposal at a U.S. Chamber of Commerce event. He described his comments as a “pitch to corporate America,” making a case that a U.S. disclosure regime would benefit companies that operate in the EU as its Corporate Sustainability Reporting Directive (CSRD) begins to take effect in January 2024. He also noted that nearly every rule the SEC has finalized under his tenure has been adjusted in response to feedback and cited “a lot of questions and doubts and concern” about the proposal’s requirement to report Scope 3 emissions (i.e., indirect emissions such as financed emissions). He also acknowledged legal challenges the SEC has faced in response to other rules.

Our Take

After climate risk took a back seat to bank stress and traditional risk management for much of this year, these final principles confirm that the regulators still expect banks to incorporate climate considerations into every aspect of their risk management and strategy ‒ with the onus for action on the board and senior management. Although these are principles and therefore not a direct basis for enforcement actions, examiners may increasingly consider the management of core risk stripes (e.g., liquidity, credit and market) inadequate if each does not consider and mitigate potential climate related impact. They will also continue to ask banks about their climate risk management capabilities and make comparisons across peer institutions of which are leading and which are falling behind the curve. This comparison will become a matter of public and investor scrutiny due to mandatory disclosure requirements, particularly once the SEC’s climate risk disclosure regime goes into effect. Based on Gensler’s comments this week, we expect that some proposed requirements will be softened in the final rule, particularly those concerning Scope 3 emissions. However, many large companies will not escape Scope 3 emissions disclosure if they are subject to the recently enacted California laws or looming EU requirements. Accordingly, banks should not wait for formal rulemaking from the U.S. banking regulators to ramp up their climate risk management programs. Given the emphasis on the board throughout the final principles, bank boards should be getting smart on the potential short and long term impacts of both physical and transition risks on their business. They should also ask questions about where their institutions fall short of the expectations outlined in the final principles ‒ before those questions come from examiners and investors.

On October 25th, the Fed issued a proposed rule to decrease the maximum interchange fee large debit card issuers (those with consolidated assets of more than $10 billion) can charge under Regulation II as well as codify the approach for making such updates going forward based on the Fed’s biennial survey of covered issuers. When Regulation II was adopted in 2011, it implemented the statutory provision called the Durbin Amendment which allows the Fed to ensure the amount of any interchange fee received by a debit card issuer is reasonable and proportional to the cost incurred by the issuer with respect to the debit card transaction and then adjust it accordingly. However, the fee cap has not been adjusted since the regulation was adopted.

Under the current rule, the interchange fee cap comprises (a) 21 cents (the “base component”), (b) 5 basis points multiplied by the value of the transaction (the “ad valorem component”), and (c) a “fraud-prevention adjustment” of 1 cent per transaction for debit card issuers that meet certain fraud-prevention standards. Under the proposal, the base component would decrease from 21.0 cents to 14.4 cents, the ad valorem component would decrease from 5.0 basis points to 4.0 basis points, and the fraud-prevention adjustment would increase from 1.0 cents to 1.3 cents. It is anticipated that the net effect of the rule would be to lower swipe fees for debit cards by about 28%. Furthermore, the proposed revisions would codify in Regulation II an approach for updating the three components of the interchange fee cap every other year going forward based on the latest data reported to the Board by covered issuers.

The proposal will remain open for comment for 90 days after being published in the Federal Register.

Out Take

Since the interchange fee cap was adopted over 12 years ago, it has never been adjusted despite significant changes to the cost of doing business, including decreased transaction processing costs and issuer fraud losses and increased fraud prevention costs. This proposal attempts to address changes in the market but debit card issuers will agree with Governor Bowman’s dissenting argument that it does not fully reflect the actual state of covered debit card issuers today and may have unintended consequences for consumers, particularly those in LMI communities, due to potential changes to pricing and benefits. For example, the proposal could reduce issuers’ economic incentives to offer free checking as well as services like real-time fraud prevention and mitigation.

The proposal could also impact the competitive landscape in which consumers pay for goods and services. For example, it could drive issuers to make credit card rewards more attractive, thereby incentivizing consumers to purchase goods on credit ‒ amidst the CFPB’s most recent biennial report to Congress on the consumer credit card market showing that consumers were charged more than $105 billion in interest and more than $25 billion in fees in 2022. As such, the proposal could benefit banks with large credit card businesses as well as those below the $10 billion dollar threshold which would be able to continue to partner with nonbanks (e.g., fintechs) to grow their market share of debit swipes. Debit card issuers should diligently analyze the economic impact of this proposal and make an evidenced case demonstrating the potential upstream and downstream impacts during the comment period.

These notable developments hit our radar this week:

• OCC to hold symposium on the tokenization of real-world assets and liabilities. On October 20th, the OCC announced that it will hold a symposium on the tokenization of real-world assets and liabilities on February 8, 2024 in Washington D.C.
• FDIC releases proposed rule making on hiring. On October 24th, the FDIC released a notice of proposed rulemaking amending its section 19 regulations to conform with the Fair Hiring in Banking Act (FHBA). Among other provisions, the FHBA excluded or exempted categories of otherwise-covered offenses from the scope of section 19, including certain older offenses, offenses committed by individuals 21 or younger, and “certain lesser offenses.” Comments will be accepted for 60 days after publication in the Federal Register.
• CFTC to meet next week on proposed rule. On October 25th, the CFTC announced that it will hold a meeting on November 1st to discuss a proposed rule on investment of customer funds by futures commission merchants and derivatives clearing organizations.
• Barr speaks on payments. On October 27th, Fed Vice Chair for Supervision, Michael Barr spoke on the Fed’s July release of its FedNow instant payments service, the importance of Stablecoin oversight, exploration of central bank digital currencies (CBDCs) and encouraged comments on the new interchange fee cap proposed revisions (as noted above).
• FSOC to meet next week. On Friday November 3rd, the Financial Stability Oversight Council (FSOC) will meet to discuss its proposed analytic framework for financial stability risk and nonbank financial institution (NBFI) designation guidance.