-
Regulators are looking more closely at the way banks choose and manage their vendors. One insider tip: clue the regulators in to new projects ahead of time.
June 19 -
Recent enforcement actions indicate banks must get better at evaluating the risks associated with their third-party service providers.
April 4 -
Federal regulators are reviewing banks' growth plans, particularly those that include third-party companies. To avoid excessive scrutiny, industry experts advise banks to proactively discuss such relationships with examiners.
October 19
Banking regulators have increased their attention of third-party service providers and debt collectors as they seek to prevent consumers from unfair, deceptive and abusive conduct. Already, they have levied hefty fines on financial institutions for violations by such third parties.
Recent scrutiny of
Banks must demonstrate that service providers are appropriately trained, address and resolve customer complaints promptly, establish and adhere to privacy policies and disclosures and confirm appropriateness of compensation programs.
As for these vendors, many now come under federal supervision for the first time. Who's covered? The Dodd-Frank Act
The challenge is vendor management is not a core competency of banks, nor should it be. The industry and consumers will be better served if banks stick to banking, and not waste valuable resources on developing vendor management standards to meet UDAAP rules.
In order to achieve consistency, the industry needs organizations that have missions similar to the Committee of Sponsoring Organizations of the Treadway Commission or the International Organization for Standardization to create a standardized industry framework for certifying and managing financial industry vendors.
Industry-accepted standards would reduce friction and costs in satisfying regulatory compliance for banks and their vendors. With such standards, banks could require vendors to be certified compliant with key regulations and consumer finance laws by an independent third-party before engaging in contractual work.
What would such a standard look like?
An industry standard would require a qualitative approach that goes beyond traditional metrics such as Service Level Agreements and production targets. The industry standard would provide guidelines with a uniform vocabulary that can be used to develop comprehensive vendor management programs as well as industry benchmarks. It might be wise for the standards to emulate the Consumer Financial Protection Bureau's tactics, including formal and informal customer complaint analysis, social media monitoring and secret shopping.
If the benefits of reducing costs and contractual SLA friction for both vendors and banks are not convincing enough of an argument for standardization and certification, the
Examiners are seeking affirmative proof that vendors are not engaging in practices that could harm the consumer as regulatory oversight of lenders' third-party relationships has grown increasingly broad, customer-centric, and complex. The stakes are high for noncompliance and vendors recognize that regulators are eyeing them. As the Wild West of vendor management comes to its culmination, an industry vendor management standard to certify banks' vendors is the next logical step to achieve objectives of all involved stakeholders.
Christopher Sicuranza is a managing director and Jonathan Shiery is an associate director in Navigant's