Enforcement Action Tracker
Our Enforcement Action Tracker keeps you in the know with timely, plain-language summaries of recent enforcement actions from the CFPB, FDIC, OCC, Federal Reserve, and other key regulators. Curated and analyzed by Ncontracts’ regulatory compliance experts, each entry highlights what happened, what went wrong, and — most importantly — what your institution can learn from it.
Use it to benchmark your program, identify emerging compliance trends, and stay proactive in managing risk.
This free resource complements Ncomply, our compliance management solution, by helping you connect regulatory enforcement activity directly to your institution’s policies, controls, and risk assessments — so you’re not just monitoring risk, you’re mitigating it.
Date
Add Date!
Add Date!
Apply
Category
9
21
6
Regulator
7
5
14
2
1
50 Enforcement Actions
Lending Compliance
CFPB
January 5, 2025
CFPB Sues Lender Over Faulty Ability-to-Repay Practices
The CFPB sued a non-bank manufactured-home-financing company for violating Regulation Z by originating loans without a reasonable, good-faith determination of borrowers' ability to repay.
Governance, Risk, and Compliance
CFPB
January 13, 2025
CFPB Sues Bank for Misleading "High-Interest" Savings Claims
The CFPB sued a national bank for deceptive marketing of its flagship high-interest savings account.
Governance, Risk, and Compliance
CFPB
January 15, 2025
CFPB Fines Mobile Payment App for UDAAP Violations
The CFPB issued an order against a mobile payment app operator for failing to provide effective customer service, violating the unfairness prong of UDAAP.
Governance, Risk, and Compliance
OCC
January 15, 2025
OCC Issues Cease and Desist Order Over BSA Compliance Failures
The OCC issued a cease and desist against a bank for failing to develop and maintain a reasonably designed Bank Secrecy Act (BSA) compliance program.
Lending Compliance
CFPB
January 16, 2025
CFPB Sues Mortgage Company for Redlining
The CFPB has filed a complaint against a non-depository mortgage company for allegedly redlining majority-Black and Hispanic neighborhoods in Chicago and Boston, violating the Equal Credit Opportunity Act (ECOA).
Governance, Risk, and Compliance
CFPB
January 29, 2025
CFPB Fines Remittance Provider for Deceptive Fee Disclosures
The CFPB issued an order against a remittance transfer provider for deceptive practices, citing violations of the Consumer Financial Protection Act.
Governance, Risk, and Compliance
OCC
February 19, 2025
OCC Finds Issues with Bank’s Compliance Management and Board-related Activities
The OCC found unsafe or unsound practices regarding a bank’s compliance management, fair lending risk management, insider activities, compensation practices, recordkeeping practices, and compensation limitations.
Governance, Risk, and Compliance
Third-Party Risk Management
OCC
February 19, 2025
OCC Cracks Down on BSA/AML Compliance for Bank’s Prepaid Card Program
The OCC entered into an agreement with a bank after the agency found deficiencies in the institution’s strategic and capital planning, Bank Secrecy Act/ Anti-Money Laundering (BSA/AML) risk management, oversight of payment activities, credit administration, and concentration risk management.
Lending Compliance
FDIC
February 27, 2025
Flood Insurance Failures Lead to FDIC Penalties at Three Banks
The FDIC issued three enforcement actions against banks for violations of the Flood Disaster Protection Act of 1973 (FDPA).
Governance, Risk, and Compliance
Third-Party Risk Management
FDIC
February 27, 2025
FDIC, CDFPI Issues Cease and Desist Order Over BSA Violations
The FDIC, in partnership with the California Department of Financial Protection and Innovation (CDFPI), issued a consent order against a bank for BSA violations related to the institution’s Merchant Services Program and relationships with Independent Sales Organizations (ISOs) and Sub-ISOs.
Governance, Risk, and Compliance
FDIC
February 27, 2025
Oversight and Lending and Collection Policies Lead to FDIC, WDFI Consent Order
The FDIC, in connection with the Washington Department of Financial Institutions (WDFI), issued a consent order against a bank for unsafe or unsound banking practices relating to Board and senior management oversight, credit underwriting and administration, internal audit, and information technology.
Governance, Risk, and Compliance
FDIC
February 27, 2025
Bank to End SBA Loans After FDIC, Rhode Island Department of Business Regulation Action
The FDIC and the Rhode Island Department of Business Regulation, Division of Banking (DBR), issued an enforcement action against a bank for allegedly charging illegal fees for Small Business Administration 7(a) loans.
Governance, Risk, and Compliance
Lending Compliance
CFPB
February 27, 2025
CFPB Continues Prosecution of Lender for Military Lending Act and UDAAP Violations
The lender allegedly violated the Military Lending Act (MLA) by charging military borrowers membership fees that resulted in loan costs exceeding the 36% rate cap, including mandatory arbitration clauses in loan agreements, and failing to provide required disclosures such as the Military Annual Percentage Rate.
Governance, Risk, and Compliance
FDIC
February 27, 2025
Bank with Model Risk Management Deficiencies
The FDIC found a bank was conducting unsafe and unsound banking practices and had capital planning failures.
Lending Compliance
FRB
March 19, 2025
FRB Issues Bank $15K Penalty for Flood Insurance Violations
The FRB issued a civil monetary penalty of $15,500 against a bank for flood insurance violations.
Governance, Risk, and Compliance
OCC
March 19, 2025
OCC Finds Bank Failed to Comply with Prior Order and Had New Unsafe or Unsound Practices
The OCC found a bank had unsafe or unsound practices, including related to interest rate risk, strategic planning, capital, liquidity, and earnings.
Governance, Risk, and Compliance
FRB
March 19, 2025
Deficiencies Found with Bank Holding Company's Oversight of Controlled Bank
The FRB found a bank holding company had deficiencies with respect to operations and failing to serve as a source of strength for an institution it had ownership and control over.
Third-Party Risk Management
FDIC
March 19, 2025
Bank has Various Safety and Soundness Concerns
FDIC finds a bank with safe and unsound banking practices related to deficiencies and weaknesses in the supervision and direction of management, earnings, capital planning, interest rate risk, liquidity, and internal audit, information technology, and strategic planning.
Governance, Risk, and Compliance
FRB; FDIC
April 17, 2025
FRB and FDIC Find Issues with Bank’s Decades-Long Credit Card Interchange Fees
The FDIC and FRB teamed up against a large bank for significant deficiencies related to the classification and assessment of interchange fees for credit cards.
Lending Compliance
FDIC
April 24, 2025
FDIC Issues Several Flood Insurance-Related Violations
Four institutions violdated the Flood Disaster Protection Act for various compliance violations related to obtaining sufficient flood insurance coverage.
Governance, Risk, and Compliance
Third-Party Risk Management
FDIC
May 29, 2025
FDIC Issues Enforcement Actions Against Two FIs for BSA Violations
The FDIC issued enforcement actions against two institutions for Bank Secrecy Act (BSA) violations related to Anti-Money Laundering/Countering the Financing of Terrorism Programs (AML/CFT program). Both institutions had deficiencies in internal controls, customer due diligence (CDD), suspicious activity reports (SARs), and risk assessment processes.
Lending Compliance
FDIC
May 29, 2025
FDIC Issues More Flood Insurance-Related Violation
The FDIC issued enforcement actions against three institutions for Flood Disaster Protection Act of 1973 (FDPA) violations. One institution failed to follow forced placed flood insurance procedures, two failed to obtain flood insurance on a building securing a designated loan at the time of the origination, and all three failed to obtain flood insurance or lacked adequate coverage at or before making, increasing, renewing or extending a loan. All three institutions also failed to provide borrowers with a Notice of Special Flood Hazard and Availability of Federal Disaster Relief assistance when making, increasing, extending or renewing loans.
Governance, Risk, and Compliance
OCC
June 17, 2025
OCC Issues Enforcement Action Against FI for Concentration Risk Management Issues
The OCC issued an enforcement action against this institution for unsafe or unsound practices related to strategic and capital planning, liquidity risk management, and notably concentration risk management.
Governance, Risk, and Compliance
Third-Party Risk Management
FDIC
June 26, 2025
FDIC Issues Enforcement Action Against Bank for AML/CFT Program Deficiencies
The FDIC issued an enforcement action against a bank addressing significant deficiencies in the bank's Anti-Money Laundering/Countering the Financing of Terrorism (AML/CFT) Program and Bank Secrecy Act (BSA) compliance. The action highlights critical issues with third-party relationship management and regulatory oversight.
Lending Compliance
FDIC
June 26, 2025
FDIC Issues Enforcement Actions for Flood Disaster Protection Act Violations
The FDIC issued enforcement actions against two institutions for violations of the Flood Disaster Protection Act (FDPA). Both institutions failed to follow force-placed flood insurance requirements.
Governance, Risk, and Compliance
Third-Party Risk Management
CFPB
August 20, 2025
CFPB Issues Enforcement Action Against Fintech Provider for Record-Keeping Failures
The CFPB issued an enforcement action against a company that facilitated relationships between nonbank financial technology entities and partner banks and provided material services to fintech platforms that offered banking services to consumers. The company was a “service provider” under the Consumer Financial Protection Act and failed to maintain adequate records of the location of consumers’ funds.
Governance, Risk, and Compliance
Lending Compliance
FDIC
September 25, 2025
FDIC Orders Institution to End Overdraft-as-Credit Practices
The FDIC and the South Dakota Division of Banking found unsafe and unsound banking practices at an institution, including capital deficiencies, liquidity risks, and improper overdraft practices. The institution must cease using overdrafts as a customer financing method and will have 30 days to revise its written overdraft policy.
Governance, Risk, and Compliance
FDIC
September 25, 2025
FDIC Issues Enforcement Action for AML/CFT Violations
The FDIC issued an enforcement action against an institution for numerous AML/CFT violations. The institution has 90 days to: (1) review its AML/CFT program to reflect its money laundering (ML), terrorist financing (TF), and other illicit financial activities, and risk profile; and (2) implement a periodic monitoring program of adherence to the AML/CFT Program.
Governance, Risk, and Compliance
FDIC
September 25, 2025
FDIC Finds Gap in FI's Board Oversight and Risk Management Practices
The FDIC identified unsafe and unsound practices related to deficiencies and weaknesses in an institution’s board of directors' oversight and in its liquidity risk management, capital planning, strategic planning, and profitability.
Demo the Industry’s Best Enterprise Risk Management Tools
Prevent your institution from falling into the same types of violations as other institutions with our compliance, risk, and vendor management software.
.png?width=1100&height=477&name=Industry%20Page%20Graphics%20(2).png)
Latest Enforcement Action
Check out our latest Enforcement Action Roundup. Catch up on the financial regulators’ enforcements over the prior month!
The Top Four Credit Union Member Complaints in 2025
.jpg)
The Top Four Credit Union Member Complaints in 2025
October 30, 2025
6
min read
Your Ncontracts Tools Got an Update with New Compliance & Risk Content
.png)
Your Ncontracts Tools Got an Update with New Compliance & Risk Content
October 30, 2025
4
min read
October 2025 Vendor Management News
October 2025 Vendor Management News
October 30, 2025
11
min read