Compliance and Legal Risks

Compliance and legal risk arise from the potential for violations of, or non conformance with, laws, rules, regulations, prescribed practices, internal policies and procedures, or ethical standards. These risks also arise in situations in which the financial institution's policies and procedures governing certain products or activities may not have kept pace with changes in the marketplace. This concern is particularly pertinent to an emerging medium like social media. Further, the potential for defamation or libel risk exists where there is broad distribution of information exchanges. Failure to adequately address these risks can expose an institution to enforcement actions and/or civil lawsuits.

The laws and regulations discussed in this Guidance do not contain exceptions regarding the use of social media. Therefore, to the extent that a financial institution uses social media to engage in lending, deposit services, or payment activities, it must comply with applicable laws and regulations as when it engages in these activities through other media. Financial institutions should remain aware of developments involving such laws and regulations.

The following laws and regulations may be relevant to a financial institution's social media activities. This list is not all-inclusive. Each financial institution should ensure that it periodically evaluates and controls its use of social media to ensure compliance with all applicable federal, state, and local laws and regulations, and incorporation of guidance, as appropriate.

Source: FFIEC

The Highlights:

Compliance and legal risks include:

  • The potential for violations of laws, regulations, internal policies and procedures, or ethical standards.
  • The potential for outdated company P&P materials in an everchanging social media landscape.
  • Potential defamation or libel risks and the failure to adequately address these risks can expose lenders to enforcement actions and/or civil lawsuits.