“The Office of the Comptroller of the Currency (OCC), in collaboration with the other members of the Federal Financial Institutions Examination Council (FFIEC), today published in the Federal Register final supervisory guidance titled Social Media: Consumer Compliance Risk Management Guidance. Technological advancements allow financial institutions to use social media in a variety of ways, including marketing; facilitating applications for new accounts, products, or services; and engaging with existing and potential customers. Because this form of customer interaction tends to be both informal and dynamic, and may occur in a less secure environment, it can present unique risks to financial institutions. This guidance is meant to help financial institutions identify potential risks to ensure they are aware of their responsibilities to address these risks within their overall risk management program. Highlights:
The guidance -
- addresses the applicability of consumer protection and compliance laws, regulations, and policies to activities conducted via social media.
- identifies potential risk areas including consumer compliance and legal risks, as well as related risks, such as reputation and operational risks, associated with the use of social media.
- outlines compliance risk management expectations that allow financial institutions to identify, measure, monitor, and control risks related to social media. An effective risk management program includes
- a governance structure with clear roles and responsibilities and appropriate reporting to senior management and the board.
- policies and procedures on the use and monitoring of social media and compliance with all applicable laws and regulations.
- processes for selecting and managing third-party relationships and monitoring information posted to proprietary social media sites.
- employee training.”