The Federal Reserve has terminated a decade-old enforcement action against Citigroup that focused on deficiencies tied to the banking giant’s anti-money laundering (AML) practices.
On Oct. 1, the central bank announced the termination of the 2013 action — one that had not carried a fine. But the action does discuss several changes to various bank-wide efforts to monitor and address risk, and to report its findings periodically to regulators.
In terms of the consent order itself, the Fed had brought its action against Citi and its former Banamex unit (since split off from the company’s corporate and investment operations) and its Citigroup NA unit. As detailed here, Citi said in May of 2023 that it planned to pursue an initial public offering (IPO) for Banamex, after exiting the consumer banking market in Mexico.
The order had mandated that Citigoup to beef up its safeguards in the wake of deficiencies that had been alleged by the Federal Deposit Insurance Corporation (FDIC) and the Office of the Comptroller of the Currency.
In the Oct. 1 documentation, the Fed said that Citigroup has “adopted a firmwide compliance risk management program designed to identify and manage compliance risks across the consolidated organization related to compliance with all applicable laws, rules, and regulations,” and that the consent order does not constitute an admission or denial by the allegations made as part of the enforcement action.
The Tuesday order notes that within 60 days of the order, Citigroup’s board of directors shall submit to the Reserve Bank “an acceptable written plan to continue ongoing enhancements to the board’s oversight of Citigroup’s firmwide compliance risk management program with regard to compliance with BSA/AML Requirements.” That plan shall detail funding for personnel and systems, among other resources to be deployed — and details about how the policies will be “proactive” in scope. Citigroup has also consented to present measures that would ensure the resolution of Bank Secrecy Act (BSA)/AML-related audit compliance.
Within 90 days, Citigroup shall complete a review of the effectiveness of Citigroup’s firmwide BSA/AML compliance program and prepare a written report of findings and recommendations to the Fed, including transaction monitoring and suspicious activity reporting.