Newsroom
December 16, 2013
FFIEC social media guidance final
Dec. 16, 2013 – Potential consumer compliance, legal, reputation and operational risks to financial institutions through social media activities are detailed in guidance released last week and put into effect immediately by the Federal Financial Institutions Examination Council.
NAFCU, in its official comment letter on the proposed guidance issued in January, warned against a one-size-fits-all approach, and FFIEC says it has attempted to address such concerns in its final guidance. For example, it says the revised guidance "clarifies and points to the longstanding principle that financial institutions are expected to assess and manage the risks particular to the individual institution, taking into account factors such as the institution's size, complexity, activities, and third party relationships."
FFIEC says the guidance imposes no new requirements on financial institutions, but it adds that institutions are expected to use the guidance in seeking to ensure their own policies and procedures "provide oversight and controls commensurate with the risks pose by their involvement in social media."
The guidance was adopted substantially as proposed, with some changes, mostly for clarification. In addition to the preceding clarification, the guidance notes that traditional emails and text messages, standing alone, are not considered social media unless they are sent through social media channels.
The guidance will be discussed by regulators during a Dec. 19 teleconference; representatives from all FFIEC member agencies, including NCUA, will participate. Advance registration is required.
For more on the guidance, see the NAFCU Compliance Blog.
NAFCU, in its official comment letter on the proposed guidance issued in January, warned against a one-size-fits-all approach, and FFIEC says it has attempted to address such concerns in its final guidance. For example, it says the revised guidance "clarifies and points to the longstanding principle that financial institutions are expected to assess and manage the risks particular to the individual institution, taking into account factors such as the institution's size, complexity, activities, and third party relationships."
FFIEC says the guidance imposes no new requirements on financial institutions, but it adds that institutions are expected to use the guidance in seeking to ensure their own policies and procedures "provide oversight and controls commensurate with the risks pose by their involvement in social media."
The guidance was adopted substantially as proposed, with some changes, mostly for clarification. In addition to the preceding clarification, the guidance notes that traditional emails and text messages, standing alone, are not considered social media unless they are sent through social media channels.
The guidance will be discussed by regulators during a Dec. 19 teleconference; representatives from all FFIEC member agencies, including NCUA, will participate. Advance registration is required.
For more on the guidance, see the NAFCU Compliance Blog.
Share This
Related Resources
Add to Calendar 2024-06-26 14:00:00 2024-06-26 14:00:00 Gallagher Executive Compensation and Benefits Survey About the Webinar The webinar will share trends in executive pay increases, annual bonuses, and nonqualified benefit plans. Learn how to use the data charts as well as make this data actionable in order to improve your retention strategy. You’ll hear directly from the survey project manager on how to maximize the data points to gain a competitive edge in the market. Key findings on: Total compensation by asset size Nonqualified benefit plans Bonus targets and metrics Prerequisites Demographics Board expenses Watch On-Demand Web NAFCU digital@nafcu.org America/New_York public
Gallagher Executive Compensation and Benefits Survey
preferred partner
Gallagher
Webinar
Add to Calendar 2024-06-21 09:00:00 2024-06-21 09:00:00 The Evolving Role of the CISO in Credit Unions Listen On: Key Takeaways: [01:30] Being able to properly implement risk management decisions, especially in the cyber age we live in, is incredibly important so CISOs have a lot of challenges here. [02:27] Having a leader who can really communicate cyber risks and understand how ready that institution is to deal with cyber events is incredibly important. [05:36] We need to be talking about risk openly. We need to be documenting and really understanding what remediating risk looks like and how you do that strategically. [16:38] Governance, risk, compliance, and adherence to regulatory controls are all being looked at much more closely. You are also seeing other technology that is coming into the fold directly responsible for helping CISOs navigate those waters. [18:28] The reaction from the governing bodies is directly related to the needs of the position. They’re trying to help make sure that we are positioned in a way that gets us the most possibility of success, maturing our postures and protecting the institutions. Web NAFCU digital@nafcu.org America/New_York public
The Evolving Role of the CISO in Credit Unions
preferred partner
DefenseStorm
Podcast
AI in Action: Redefining Disaster Preparedness and Financial Security
Strategy
preferred partner
Allied Solutions
Blog Post
Get daily updates.
Subscribe to NAFCU today.