This article was developed using publicly available responses submitted to Requests for Information issued by banking regulators. It summarizes and synthesizes themes, perspectives, and information reflected in those public submissions for informational purposes only. The article does not represent the views of any regulator, respondent, institution, or the Firm, and should not be interpreted as legal, regulatory, or compliance advice.
Executive Summary
A slight majority of respondents favor applying the proposed standard for issuing Matters Requiring Attention (MRAs) to violations of law, but views diverge on how to treat serious or technical breaches. Most support using MRAs for actual, substantive legal violations while reserving formal enforcement for more serious cases. Others argue that violations should be enforced under existing authorities without relying on MRAs. The challenge is to align clarity and consistency with proportionate responses to legal breaches.
Key takeaways:
- Supporters say MRAs can be issued for actual violations of banking laws and regulations.
- Many emphasize a materiality screen: only substantive, not isolated or immaterial, violations should warrant MRAs.
- Some argue violations should be addressed via formal enforcement rather than MRAs.
- Respondents warn against imposing a higher standard for MRAs than statute requires.
- Concerns persist about inconsistent MRA issuance and vague standards, calling for clearer criteria and documentation in MRAs.
- Several note that failure to implement MRAs cannot itself be the basis for enforcement.
- Other commenters caution that narrowing to material harm could unduly limit supervisory oversight.
Bottom line:
Apply the proposed MRA standard to violations of law when they are actual and substantive, while escalating serious violations to formal enforcement. Avoid using MRAs for technical, isolated issues and do not impose a higher bar for MRAs than the law requires.
The Question (Ref #17)
Should the proposed standard for issuing MRAs also apply to issuing violations of law? Why or why not? If a different standard should apply, please describe the standard and explain why. If the agencies did not use MRAs for violations of law, how should the agencies approach violations of law?
Direct Response to the Catalog Question
A narrow majority supports applying the MRA standard to violations of law, with multiple commenters affirming that actual legal violations may ground MRAs and cautioning against a higher MRA threshold than statute requires.
Proponents consistently qualify this with materiality: only substantive violations tied to banking or banking-related laws should trigger MRAs; isolated and immaterial violations should not.
Others argue for a different standard: “A violation is a violation,” urging that legal breaches be addressed through enforcement authorities rather than via MRAs.
Several emphasize that MRAs are not a basis for enforcement by themselves, underscoring the need to separate supervisory remediation from legal penalties.
If agencies did not use MRAs for violations of law, commenters suggest pursuing formal enforcement actions for legal breaches and reserving MRAs for supervisory remediation of practices and risks.
Introduction
Question 17 asks whether the proposed standard for issuing MRAs should also apply to issuing violations of law, and if not, what different standard should govern and how agencies should address legal violations. The responses weigh clarity and accountability against proportionality, balancing MRAs for remediation with formal enforcement for serious breaches.
Historic Lessons in the Evidence
Respondents’ reasoning converges on proportionality and clarity: use MRAs to drive remediation when there is an actual, substantive legal violation and rely on formal enforcement for more serious breaches. They also stress avoiding vague standards, ensuring consistent application, and preventing technical or immaterial violations from becoming MRAs.
The Challenge
Inputs highlight practical hurdles: inconsistent MRA issuance, ambiguous materiality thresholds, and the risk that over-narrowing to “material harm” could undercut oversight. At the same time, commenters warn that conflating MRAs with enforcement or imposing a higher-than-statutory MRA bar would erode accountability and clarity.
Evolving Metrics
Respondents assess applicability using terms like “actual violation,” “substantive,” and “material harm,” contrasted with “isolated,” “immaterial,” or “merely possible” harms. Some call for MRAs to include a concise factual summary and the specific standard applied, reinforcing transparent, objective criteria.
A Framework Inspired by the Inputs
An implicit two-path approach emerges: apply the same core MRA standard to actual, substantive legal violations for remediation, but escalate serious violations to formal enforcement. Gate MRAs with a materiality screen focused on banking-related laws, reject higher-than-statutory thresholds, and document specifics in each MRA.
Case Study
Across comments, a representative pattern is: when an institution commits an actual, substantive legal violation, agencies issue an MRA with clear remediation steps, timelines, and governance expectations; if the violation is serious, agencies pursue formal enforcement; and where violations are isolated or immaterial, neither an MRA nor enforcement is pursued.
Recommendations
- Apply the proposed MRA standard to actual, substantive violations of banking-related laws while rejecting any higher MRA threshold than statute requires.
- Institute a materiality screen: exclude isolated, immaterial, or technical violations from MRAs.
- Establish an escalation pathway: use formal enforcement for serious legal violations; use MRAs for supervisory remediation.
- Clarify documentation: each MRA should state a concise factual summary and the specific standard applied.
- Separate supervisory and enforcement tracks: acknowledge that failure to implement MRAs is not, by itself, an enforcement basis.
- Avoid over-narrowing: do not limit oversight only to harms already materialized; maintain capacity to address actual violations promptly.
- Tailor application: focus MRAs and enforcement on banking and banking-related laws, aligning expectations with institutional risk profiles.
Conclusion
On balance, the record supports applying the proposed MRA standard to violations of law when those violations are actual and substantive, paired with escalation to formal enforcement for serious breaches. This approach promotes clarity and proportionality, avoids overreach on technical issues, and preserves the distinction between supervisory remediation and legal penalties. It directly addresses the question by endorsing one standard for MRA issuance, coupled with a clear enforcement track.
Follow us, stay informed, stay secure, and let’s navigate the risk landscape together.