The Federal Deposit Insurance Corporation (FDIC) is a U.S. government agency that insures deposits at banks and savings institutions, supervises many smaller banking institutions for safety and soundness, and enforces compliance with Bank Secrecy Act (BSA) / anti-money laundering (AML) obligations for those institutions.
While its most public role is deposit insurance, the FDIC also acts as a regulator and examiner for many state-chartered, non-member banks and savings institutions, holding them accountable to AML requirements in line with federal law.
Definition And Legal Basis Of FDIC’s AML Role
In addition to insuring depositors up to statutory limits, FDIC supervision includes oversight of institutions for safety, soundness, and compliance, including AML/BSA compliance. Under Section 8(s) of the Federal Deposit Insurance (FDI) Act, the FDIC is required to prescribe regulations requiring each FDIC-supervised institution to maintain procedures reasonably designed to assure and monitor compliance with the BSA and its implementing regulations.
In its regulatory framework, the FDIC implements 12 CFR Part 326.8, which sets out the requirements for a BSA compliance program for insured institutions under its supervision.
Thus, FDIC-supervised banks must maintain internal controls, independent testing, a designated compliance officer, training programs, and customer identification procedures, all proportionate to their risk.
Why The FDIC Matters In AML Compliance
Though the FDIC often deals with smaller and regional banks compared to federal regulators of large systemic banks, its influence in AML oversight is significant for those institutions it supervises:
Safety and soundness as a lens on AML: The FDIC views AML weaknesses as potential risks to financial stability, reputation, and compliance, thus embedding AML compliance within its broader supervisory mandate.
Examinations and deficiencies: During routine safety-and-soundness examinations, the FDIC incorporates BSA/AML reviews to determine whether a bank’s AML program is commensurate with its risk profile.
Corrective actions and enforcement: If deficiencies are serious or unremediated, the FDIC can issue cease-and-desist orders or require formal corrective action under Section 8(s).
Focus on community and regional banks: Many smaller, local, or community banks fall under FDIC supervision, making its standards and expectations critical in those segments.
Third-party / payment risk oversight: The FDIC monitors how banks engage in payment processing and vendor relationships, particularly in higher-risk merchant services, to ensure banks do not inadvertently facilitate illicit activity.
FDIC’s AML Examination and Supervisory Practices
Here is how the FDIC exercises its AML supervisory responsibilities in practice:
Integration with FFIEC BSA/AML Manual
Like other banking regulators, the FDIC uses the FFIEC BSA/AML Examination Manual as a core technical framework to evaluate the adequacy of institutions’ AML compliance programs.
Scope and Frequency of BSA/AML Examinations
FDIC-supervised banks are assessed on a risk-based schedule. Institutions with higher risk profiles or those in “high intensity financial crime areas” may receive greater scrutiny.
Handling of Deficiencies & Enforcement
When examiners find material weaknesses, they communicate findings in the Report of Examination. If management fails to remediate, the FDIC may escalate to formal enforcement actions under Section 8(s).
Oversight of Payment / Merchant Risk
The FDIC issues supervisory guidance (such as FIL-13043) clarifying expectations for institutions providing or facilitating payment processing services, especially with merchant customers engaged in higher-risk operations.
Limitations & Interplay With Other U.S. Regulators
While the FDIC has meaningful AML oversight, its authority has limits and overlaps with other regulators:
Not national banks: The FDIC does not serve as primary AML supervisor for national banks; that role falls to the OCC.
Shared BSA/AML regime: The underlying AML statute and regulation originate from the U.S. Treasury / FinCEN; the FDIC enforces those rules through supervision, not by writing primary statute.
Interagency coordination: The FDIC coordinates with the Federal Reserve, OCC, FinCEN, and state regulators to maintain consistent AML expectations across the banking sector.
Scale and resources: Because many FDIC-supervised institutions are smaller, their risk exposure, compliance budgets, and system capabilities may differ significantly from larger banks. The FDIC takes this into account via proportional, risk-based expectations.
The Future Of The FDIC’s AML Oversight
As financial crime risks evolve, the FDIC is likely to adapt its supervisory approaches in several ways:
Heightened focus on technology and data analytics: Expect stronger scrutiny of how smaller banks deploy advanced monitoring, AI, and transaction analytics relative to their size.
Stricter vendor and third-party oversight: Given growth in fintech partnerships and outsourcing, the FDIC may increase expectations for due diligence, monitoring, and oversight of third parties.
Greater emphasis on remediation and enforcement: As AML expectations become more defined, even smaller institutions may face stricter enforcement if compliance lapses persist.
Harmonization of AML expectations: The FDIC may push for more alignment across regulators, reducing inconsistencies in AML expectations between state, federal, and bank sizes.
Regulatory updating for digital assets: The FDIC may clarify its supervisory stance on exposure to crypto, stablecoins, or cross-border payment technologies in smaller banks.
Strengthen Your FDIC-Aligned AML Compliance Framework
For banks under FDIC supervision, ensuring AML compliance is not just about avoiding enforcement. It’s a critical component of safety, reputation, and operational integrity. Institutions should adopt risk-based controls, continuous monitoring, and proactive remediation to meet FDIC expectations and reduce exposure to regulatory action.
Contact Us Today To Strengthen Your AML Compliance Framework
