GS Logo
The Green Sheet, Inc

Please Log in

A Thing
View Archives

View flipbook of this issue

Care to Share?

Table of Contents

Lead Story

Bitcoin gold rush continues

Ann Train


Industry Update

CFPB urges faster, safer consumer payments

PayPal gets wings, makes mobile play

ETA returns to San Francisco for Transact Tech

Bitcoin exchanges gain traction, dodge VAT

PCI SSC revamps P2PE, device standards


Pitfalls of proliferating payment speak

Serving the connected customer of the future

The Mobile Buzz: Digital wallets face uphill battle


New credit card scam at resort area hotels

Chris O'Donnell
Instabill Corp.

Insider's report on payments: Fighting online scammers

Patti Murphy
ProScribes Inc.

The most valuable merchant portfolio

Adam Hark


Street SmartsSM:
How can I grow my business?

Jeffrey I. Shavitz
TrafficJamming LLC

Staying informed in the payments biz: A sane approach

Jeff Fortney
Clearent LLC

EMV: The clock is ticking

Michael Gavin

The one man show: Selecting ISO partners

John Tucker
1st Capital Loans LLC

Company Profile


New Products

Global payments, localized currencies

Snapcard Inc.

Multifaceted, omnichannel POS technology

Retail Pro Prism
Retail Pro International LLC


The Jurassic world of work


Readers Speak

Resource Guide


A Bigger Thing

The Green Sheet Online Edition

August 10, 2015  •  Issue 15:08:01

previous next

Readers Speak

OCC bulletin to banks

I heard that the OCC issued some kind of guidance in the last couple of years to banks about risk scoring of third parties. Wouldn't this affect payment processors and registered ISOs doing business with merchant acquiring banks? I haven't found anything about it in The Green Sheet.

Marilyn Tarpe, Superlative POS LLC


I found nothing in our archives pertaining to the Office of the Comptroller of the Currency and risk scoring of third parties. The guidance you are referring to is probably Bulletin 2013-29 issued by the OCC on Oct. 30, 2013. The subject of the bulletin is third-party relationships, and it was issued to "Chief Executive Officers and Chief Risk Officers of All National Banks and Federal Savings Associations, Technology Service Providers, Department and Division Heads, All Examining Personnel, and Other Interested Parties." The bulletin defines third-party relationships as "any business arrangement between a bank and another entity, by contract or otherwise."

Registered ISOs, independent payment processing companies, equipment vendors, information technology service providers, data security consultants and many more enterprises within the payments sphere serve as third-party service providers to banks. The bulletin stated that an "effective risk management process throughout the life cycle of the relationship" should include:

The full bulletin is on the web at

The federal government has stepped up scrutiny of our industry on multiple fronts in recent years. If you search our website for Operation Choke Point, for example, you'll find numerous references to one of the most draconian programs to date. Also, "Coming to terms with escalating compliance requirements," which we published Jan. 12, 2015, in issue 15:01:01, describes what payment companies are up against in the current environment and highlights the increased emphasis on "know your customer" best practices. You'll find it at

Thank you for your question. This is an issue vital to all in the payments industry.


How well do you know your customers?

Have actions taken by federal and state governments to regulate or otherwise influence our industry changed the way you run your business? If so, what are you doing differently now? Have any of the regulatory steps been beneficial, or do you see them as mostly a pain in the neck? Do let us know. And please keep your questions, suggestions and insights coming to us at

Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.

previous next

Spotlight Innovators:

USAePay | Impact Paysystems | Electronic Merchant Systems | Inovio | Board Studios, Inc.