Daily Rules, Proposed Rules, and Notices of the Federal Government
In accordance with the requirements of the PRA, the OCC may not conduct or sponsor, and the respondent is not required to respond to, an information collection unless it displays a currently valid Office of Management and Budget (OMB) control number.
The OCC is soliciting comment concerning its information collection entitled, "Bank Secrecy Act/Money Laundering Risk Assessment," also known as the Money Laundering Risk (MLR) System.
Under the PRA, Federal agencies must obtain approval from the Office of Management and Budget (OMB) for each collection of information they conduct or sponsor. “Collection of information” is defined in 44 U.S.C. 3502(3) and 5 CFR 1320.3(c) to include agency requests or requirements that members of the public submit reports, keep records, or provide information to a third party. Section 3506(c)(2)(A) of the PRA requires Federal agencies to provide a 60-day notice in the
The MLR System enhances the ability of examiners and bank management to identify and evaluate Bank Secrecy Act/Money Laundering and Office of Foreign Asset Control (OFAC) sanctions risks associated with banks' products, services, customers, and locations. As new products and services are introduced, existing products and services change, and banks expand through mergers and acquisitions, management's evaluation of potentially new money laundering and terrorist financing risks must evolve as well. Consequently, the MLR risk assessment is an important tool for the OCC's Bank Secrecy Act/Anti-Money Laundering/OFAC supervision activities because it allows the agency to better identify those institutions, and areas within institutions, that pose heightened risk and allocate examination resources accordingly. This risk assessment is critical in protecting financial institutions of all sizes from potential abuse from money laundering or terrorist financing. Absent an appropriate risk assessment, applicable controls cannot be effectively implemented for these lines of business, products, or entities, which would elevate Bank Secrecy Act/Money Laundering and OFAC compliance risks.
The OCC is considering expanding this reporting requirement to include OCC's Midsize and Large Bank populations and, therefore, is seeking OMB approval to include these populations in its information collection.
The OCC recently updated the annual Risk Summary Form. The changes in the 2012 form enhance the assessment process by requiring the reporting of products, services, and customers (PSCs) related to prepaid access or prepaid cards, a growth industry that is receiving increased attention from regulators, law enforcement, and Congress. The form now requires the reporting of the following prepaid card PSCs: (i) Prepaid Cards (Reloadable and Non-Reloadable); (ii) Prepaid Card Programs—Third-Party Sponsored (Reloadable and Non-Reloadable); (iii) Prepaid Card Programs—Bank-Sponsored (Reloadable and Non-Reloadable); (iv) Prepaid Cardholders (Reloadable and Non-Reloadable); and (v) Prepaid Card Program Managers. In addition, the Money Services Business (MSB) section of the form was modified to reflect changes in regulatory definitions. The form now includes MSB customers that are Providers of Prepaid Access and Sellers of Prepaid Access. All of these changes were made within the existing subject headers.
The OCC estimates the burden of this collection of information as follows:
With respect to the following collection of information, the OCC invites comments on these topics:
(a) Whether the collection of information is necessary for the proper
(b) The accuracy of the agency's estimate of the burden of the collection of information;
(c) Ways to enhance the quality, utility, and clarity of the information to be collected;
(d) Ways to minimize the burden of the collection on respondents, including through the use of automated collection techniques or other forms of information technology; and
(e) Estimates of capital or start-up costs and costs of operation, maintenance, and purchase of services to provide information.
All comments will become a matter of public record. Written comments should address the accuracy of the burden estimates and ways to minimize burden including the use of automated collection techniques or the use of other forms of information technology as well as other relevant aspects of the information collection request.