Tag: Banking

Categories
Blog

The Roots of Compliance: Trust, Technology, and the Future of Banking

Recently, I had the opportunity to visit with John Byrne, the CEO at Corlytics. You can listen to the podcast here. One of the more interesting topics we discussed is that compliance professionals find themselves at the intriguing crossroads between groundbreaking technological innovation and the timeless, foundational principles of compliance, notably trust and integrity. Nowhere is this more evident than in the banking sector, where the stakes around trust are extraordinarily high. Now, with the Trump Administration actively promoting cryptocurrency to both the US banking industry and the American public, that foundational principle is even more critical.

Historically, banking, with over two and a half centuries of operational legacy, has always relied fundamentally on customer trust. Indeed, long before modern regulatory structures emerged, banks implemented internal policies and compliance-like practices designed explicitly to instill and maintain confidence. Yet despite advancements in regulation and technology, the principle remains unchanged: trust is the lifeblood of banking, and when it falters, the consequences can be catastrophic.

Nothing illustrates this more starkly than the old-fashioned bank run, perhaps the ultimate demonstration of breached trust. In a bank run, customers simultaneously lose faith in the institution’s ability to safeguard their assets, rushing en masse to withdraw funds. This panic-driven action rapidly transforms initial doubt into widespread fear, creating an accelerating cascade effect that can swiftly collapse even seemingly robust institutions.

The recent 2023 examples of Silicon Valley Bank, Signature Bank, and First Republic Bank, all headquartered in California, underscore this timeless truth. Despite occurring in a digitally connected world with instantaneous communication, the root cause was identical to that of traditional bank runs, famously depicted in classic movies like Mary Poppins and It’s a Wonderful Life: a fundamental failure of trust. For today’s compliance professionals, the lesson remains clear and resonant. Even as they harness modern tools like artificial intelligence to enhance compliance processes, they must remain ever-vigilant custodians of trust, recognizing that without it, all technological advances and regulatory structures are ultimately insufficient to protect a bank, and indeed any business, from the devastating impact of lost confidence.

Lesson 1: Trust is the Foundation of Compliance

The essence of compliance has always been rooted in trust. Banking, as a sector with over 250 years of history, exemplifies this principle vividly. Long before the regulatory frameworks we recognize today, banks operated with internal policies designed to cultivate and maintain trust with their customers. Compliance, in its earliest incarnation, was about establishing clear standards and rules internally, ensuring customer confidence and institutional stability.

Today, despite the extensive web of external regulations, trust remains a central concern. The collapse of trust can trigger catastrophic outcomes, vividly illustrated by historical bank runs such as those portrayed in classic films like Mary Poppins and It’s a Wonderful Life. Even as recently as 2023, the failure of Silicon Valley Bank in California, a modern-day bank run accelerated by technology, reminds us starkly how fragile trust can be and how critical it remains for compliance professionals to safeguard it diligently.

Lesson 2: Compliance is Good Business

The notion of compliance as a hindrance to business, often unfairly labeled as the “business prevention unit,” is shifting dramatically. A sound compliance program aligns closely with strong business outcomes —a principle that has been repeatedly emphasized in recent years. Banks and businesses are increasingly recognizing compliance not as an obstacle but as an integral part of strategic business operations.

Good compliance facilitates a trustworthy reputation, ensures customer satisfaction, and establishes long-term business stability. Firms that embody compliance as a core business strategy consistently demonstrate resilience and sustainability. Compliance isn’t merely a regulatory necessity; it is fundamentally good business.

Lesson 3: Regulation Should Complement, Not Replace, Internal Standards

Historically, banks created their internal compliance measures to protect their institutions long before external regulation mandated such frameworks. Over time, regulatory developments have supplemented and formalized these practices, creating a structured external governance model. However, prudent banks continue to adhere to high internal standards irrespective of regulatory mandates.

Effective compliance frameworks seamlessly integrate internal ethical guidelines and external regulatory requirements, ensuring a unified approach to governance. Organizations shouldn’t solely rely on external regulations to dictate their ethical and operational standards. Instead, compliance professionals should encourage internal benchmarks of ethical behavior and trustworthiness, aligning company culture closely with compliance objectives to achieve sustainable business excellence.

Lesson 4: Technology as an Enabler of Efficient Compliance

One common complaint about compliance is its perceived inefficiency, which businesses argue slows down operations. Here, advanced technology, especially AI, presents transformative possibilities. AI-driven tools can significantly streamline compliance processes, enhancing speed, efficiency, and accuracy.

AI technologies allow compliance teams to swiftly identify risks, maintain comprehensive documentation, provide clear audit trails, and escalate issues rapidly and accurately. Rather than viewing technology as complicating compliance, companies should embrace it as an essential tool enabling compliance professionals to focus on strategic, high-value tasks rather than routine manual processes. This technological enablement does not replace skilled compliance professionals. It enhances their capabilities, ensuring more effective outcomes for the business as a whole.

Lesson 5: Compliance Should Be Proactive, Not Reactive

Compliance practices should always be forward-looking and proactive, anticipating potential issues and acting accordingly. Banks and businesses that are successful in managing risk and maintaining trust have learned not to wait for regulators to dictate ethical standards. They proactively implement robust compliance and governance frameworks because they recognize that doing the right thing is inherently good for business.

Proactive compliance fosters customer trust, internal coherence, and institutional resilience. It positions companies to avoid reputational and financial harm, reducing the likelihood of regulatory actions or scandals. Compliance professionals must champion a proactive approach, integrating ethics and integrity at every organizational level, ensuring firms remain compliant and trustworthy, irrespective of whether regulatory bodies explicitly require it.

Conclusion: A Sustainable Business Model Through Good Compliance

The future of compliance in banking, and indeed all industries, rests at the intersection of timeless principles and modern technology. Trust, always the cornerstone of compliance, remains a foundational element. Technology, particularly artificial intelligence (AI), offers powerful new tools to reinforce and streamline compliance functions, enabling more efficient, accurate, and effective oversight.

Compliance professionals stand at the threshold of an exciting era where they can leverage advanced technologies to reinforce and extend the timeless principle of trust. By returning to the roots of compliance, embedding trust deeply into corporate culture, and embracing technology as a powerful enabler, businesses will not only fulfill regulatory requirements but also establish a resilient, customer-centric, and sustainably profitable business model. Compliance, done right, transcends its role as merely regulatory adherence. It becomes a fundamental pillar of sound business practice.

Categories
Regulatory Ramblings

Regulatory Ramblings: Episode 54 – From Secret Service Agent to Global Financial Crime Fighter: David Caruso’s 30-Year Journey

David Caruso is the founder and managing director of the Dominion Advisory Group, a consulting firm based in Virginia, near the nation’s capital. The firm works with banks facing regulatory enforcement actions across the U.S., Europe, and Asia. David aids institutions and organizations in navigating financial crime risk and compliance modernization globally.

As a former special agent with the US Secret Service and a graduate of George Washington University since 1996, he has been at the forefront of shaping the financial crime risk and compliance profession more generally. Building anti-money laundering (AML) and sanctions compliance programs at banking and financial institutions across the US and internationally, overseeing headline-grabbing corruption and money laundering investigations, and building and selling a RegTech software firm have afforded him an ideal perspective to reflect on every major issue and trend occurring in the financial crime compliance space for the past 25 years.

In this episode of Regulatory Ramblings, David shares his reflections on a nearly three-decade career in AML and financial crime compliance with our host, Ajay Shamdasani. 

He recounts having worked at global institutions like JP Morgan, Riggs Bank, Wachovia, Washington Mutual, and HSBC, to name a few. His notable achievements include his time as Riggs Bank’s chief compliance and AML officer.

In that role, he was hired to address some program weaknesses cited by the US Treasury Department’s Office of the Comptroller of the Currency (OCC). While at Riggs, David’s team uncovered two notorious international corruption schemes involving the government of Equatorial Guinea and former Chilean dictator Augusto Pinochet. The team’s work led to investigations by the Department of Justice and the U.S. Senate Permanent Subcommittee on Investigations. 

The cases drew worldwide media attention from justice authorities in the US, UK, Spain, and Chile. The facts uncovered by David at Riggs shook US lawmakers and regulators, kicking off 10 years of active regulatory and law enforcement action against banks across the US. 

After Riggs, David founded The Dominion Advisory Group in 2005. From his ringside seat near Washington, DC, he works closely with executive management, boards, and outside counsel to craft responses and build entire financial crime risk and compliance programs to address regulatory concerns—of which there has been no shortage in recent years. 

David also discusses the allure of AML and financial crime compliance and what brought him to the professional path he has been on for over three decades. Methodologically speaking, he recounts what has changed in AML and financial crime in that time and what has remained the same. 

He concurs that since 1970, so many additional requirements and expectations have been created that AML teams still need to catch up on their primary mission. Reflecting on the impact of the Bank Secrecy Act (1970), the USA PATRIOT Act (2001), the Foreign Account Tax Compliance Act (2010), or FATCA, and the more recent Anti Money Laundering Act (2020), he shares his views on how the impact of regulatory action has distracted from compliance professionals’ more critical tasks—with an eye towards how the regulatory exam-focused mindset of money laundering reporting officers (MLROs) affects operations and innovation. 

David also depicts the pervasive and ongoing discrepancies between what domestic and international/supernational policy-setting organizations, like the Financial Action Task Force (FATF), based in Paris, say and what they do. He says, “No one wants to ask if new rules and regulations are working and whether they prevent crime or have the unintended consequence of reducing [economic] growth?” 

He acknowledges the degree of geopolitical hypocrisy when it comes to AML and financial crime compliance, as well as when it comes to fighting bribery, fraud, and corruption internationally. Washington, New York, London, and Brussels all too often regulated the financial world. Yet, while the US and UK, and increasingly the EU, are some of the most aggressive jurisdictions regarding financial crime enforcement actions, their regulatory apparatus is often used to further their geopolitical goals. It is a view that many outside the West hold. 

The conversation concludes with David’s views on why sanctions against Russia stemming from its 2022 invasion of Ukraine have largely been unsuccessful, how technologies such as artificial intelligence can help AML/KYC/FCC compliance, and what policy recommendations he suggests moving forward. 

We are bringing you the Regulatory Ramblings podcasts with assistance from the HKU Faculty of Law, the University of Hong Kong’s Reg/Tech Lab, HKU-SCF Fintech Academy, Asia Global Institute, and HKU-edX Professional Certificate in Fintech.

Useful links in this episode:

  • Connect or follow David Caruso on LinkedIn

  • Dominion Advisory Group: Webpage

You might also be interested in:

Connect with RR Podcast at:

LinkedIn: https://hk.linkedin.com/company/hkufintech 
Facebook: https://www.facebook.com/hkufintech.fb/
Instagram: https://www.instagram.com/hkufintech/ 
Twitter: https://twitter.com/HKUFinTech 
Threads: https://www.threads.net/@hkufintech
Website: https://www.hkufintech.com/regulatoryramblings 

Connect with the Compliance Podcast Network at:

LinkedIn: https://www.linkedin.com/company/compliance-podcast-network/
Facebook: https://www.facebook.com/compliancepodcastnetwork/
YouTube: https://www.youtube.com/@CompliancePodcastNetwork
Twitter: https://twitter.com/tfoxlaw
Instagram: https://www.instagram.com/voiceofcompliance/
Website: https://compliancepodcastnetwork.net/