Regulatory: Part 1—Unraveling UDAAP in the consumer financial services industry
In response to the lingering recession of the late-2000s, Congress passed the Dodd-Frank Wall Street Reform and Consumer Protection Act and, among other things, created the Consumer Financial Protection Bureau.
February 20, 2013 at 05:16 AM
9 minute read
The original version of this story was published on Law.com
This article is the first in a series of six articles concerning UDAAP.
In response to the lingering recession of the late-2000s, Congress passed the Dodd-Frank Wall Street Reform and Consumer Protection Act and, among other things, created the Consumer Financial Protection Bureau (CFPB). Congress bestowed upon the up-start Bureau a broad new power to prohibit unfair, deceptive, and abusive acts or practices (UDAAP) across the entire consumer financial services industry. Today, with Dodd-Frank now in force, the bureau serves as the single primary regulator responsible for enforcing the federal consumer financial protection laws across all facets of consumer lending and other consumer-based financial products and services. This includes, of course, UDAAP.
For the unfamiliar, UDAAP is quite easily one of the most vague and amorphous statutes ever written. In essence, Dodd-Frank gives the bureau broad power to prohibit all kinds of consumer lenders, servicers and other consumer financial services market participants (e.g., consumer reporting agencies, prepaid credit cards, debt collectors) from engaging in practices that fall within the loose, barely defined standards of unfairness, deception and abuse. Although no legitimate market actor would knowingly condone or sanction practices that are objectively unfair, deceptive or abusive, it is quite another thing altogether for those in the consumer financial industry to function with these largely unknowable standards.
Prior to Dodd-Frank was just UDAP—unfair and deceptive acts or practices. Unfairness and deception were defined under UDAP in much the same way as they are defined under UDAAP—that is, vaguely. The difference is that, when it came to consumer financial services, there was a ramping up of the understanding of these terms and, ultimately, pronouncements by the principal UDAP enforcer: the Federal Trade Commission (FTC). The bureau is, for consumer financial services companies, however, a much more focused and formidable regulator.
Notably, back in the UDAP days, the industry was not subject to an abusive standard; indeed, abusive was not part of the vernacular, as it is now. That changed when Dodd-Frank took effect. No longer are the FTC or the various prudential banking regulators the focus of UDAP enforcement. Rather, the new sheriff with its proud, shiny new badge took over this piece of turf and is enforcing the new UDAAP standards that came along with it.
Expectations on the CFPB were always very high. The bureau is the brainchild of Elizabeth Warren, former Harvard law professor, consumer activist, past CFPB consultant, and now the junior Senator from Massachusetts. The hope was that with better, more consolidated oversight, openness and transparency, the era of the bureau would usher in an era of a better marketplace for both sides of consumer lending—the consumers and the financial institutions. Indeed, Warren and the CFPB itself are major proponents of these welcome principles. But as it turns out, transparency and openness at the bureau and under Dodd-Frank are largely one-way concepts. The industry must be transparent about its practices with the bureau, but the bureau is not beholden to reciprocate. The most glaring example of this is the bureau's treatment of UDAAP.
Dodd-Frank was enacted on July 21, 2010. One year later, the CFPB obtained its enforcement authority and began most of its regulatory activities. It is now more than two and a half years since Dodd-Frank was passed and one and a half years since the bureau officially opened its doors. Even with all that elapsed time, the CFPB has told the industry virtually nothing in terms of guidance on UDAAP. Although the bureau touts its “Know Before You Owe” programs designed to give consumer borrowers better information about the loans they are undertaking, the CFPB has done next to nothing to help the industry understand the developing risks associated with consumer lending and servicing under the new UDAAP standards. The CFPB has not championed a comparable “Know Before You Loan Program,” designed to provide the industry with insights into the practices the bureau believes violates the tenets of UDAAP. But shouldn't it?
Over the course of the next six articles, I will delve into each of the UDAAP standards—unfair, deceptive, abusive—in an effort to find some shape in these amorphous definitions. With the definitions in mind, vague as they may be, I will make some recommendations about how to adjust compliance programs to mitigate not only the regulatory risks presented by these standards, but the looming civil litigation risks as well. Finally, I will make some recommendations about what we can do as an industry to press the bureau for more clarity about UDAAP. After all, there is no principled or reasoned basis for the bureau not to inform the industry about its view of what conduct falls within the UDAAP standards; unless, that is, the bureau desires to use the imprecision of the standards to make policy after the fact. Let us hope that this is not the case.
This article is the first in a series of six articles concerning UDAAP.
In response to the lingering recession of the late-2000s, Congress passed the Dodd-Frank Wall Street Reform and Consumer Protection Act and, among other things, created the Consumer Financial Protection Bureau (CFPB). Congress bestowed upon the up-start Bureau a broad new power to prohibit unfair, deceptive, and abusive acts or practices (UDAAP) across the entire consumer financial services industry. Today, with Dodd-Frank now in force, the bureau serves as the single primary regulator responsible for enforcing the federal consumer financial protection laws across all facets of consumer lending and other consumer-based financial products and services. This includes, of course, UDAAP.
For the unfamiliar, UDAAP is quite easily one of the most vague and amorphous statutes ever written. In essence, Dodd-Frank gives the bureau broad power to prohibit all kinds of consumer lenders, servicers and other consumer financial services market participants (e.g., consumer reporting agencies, prepaid credit cards, debt collectors) from engaging in practices that fall within the loose, barely defined standards of unfairness, deception and abuse. Although no legitimate market actor would knowingly condone or sanction practices that are objectively unfair, deceptive or abusive, it is quite another thing altogether for those in the consumer financial industry to function with these largely unknowable standards.
Prior to Dodd-Frank was just UDAP—unfair and deceptive acts or practices. Unfairness and deception were defined under UDAP in much the same way as they are defined under UDAAP—that is, vaguely. The difference is that, when it came to consumer financial services, there was a ramping up of the understanding of these terms and, ultimately, pronouncements by the principal UDAP enforcer: the Federal Trade Commission (FTC). The bureau is, for consumer financial services companies, however, a much more focused and formidable regulator.
Notably, back in the UDAP days, the industry was not subject to an abusive standard; indeed, abusive was not part of the vernacular, as it is now. That changed when Dodd-Frank took effect. No longer are the FTC or the various prudential banking regulators the focus of UDAP enforcement. Rather, the new sheriff with its proud, shiny new badge took over this piece of turf and is enforcing the new UDAAP standards that came along with it.
Expectations on the CFPB were always very high. The bureau is the brainchild of Elizabeth Warren, former Harvard law professor, consumer activist, past CFPB consultant, and now the junior Senator from
Dodd-Frank was enacted on July 21, 2010. One year later, the CFPB obtained its enforcement authority and began most of its regulatory activities. It is now more than two and a half years since Dodd-Frank was passed and one and a half years since the bureau officially opened its doors. Even with all that elapsed time, the CFPB has told the industry virtually nothing in terms of guidance on UDAAP. Although the bureau touts its “Know Before You Owe” programs designed to give consumer borrowers better information about the loans they are undertaking, the CFPB has done next to nothing to help the industry understand the developing risks associated with consumer lending and servicing under the new UDAAP standards. The CFPB has not championed a comparable “Know Before You Loan Program,” designed to provide the industry with insights into the practices the bureau believes violates the tenets of UDAAP. But shouldn't it?
Over the course of the next six articles, I will delve into each of the UDAAP standards—unfair, deceptive, abusive—in an effort to find some shape in these amorphous definitions. With the definitions in mind, vague as they may be, I will make some recommendations about how to adjust compliance programs to mitigate not only the regulatory risks presented by these standards, but the looming civil litigation risks as well. Finally, I will make some recommendations about what we can do as an industry to press the bureau for more clarity about UDAAP. After all, there is no principled or reasoned basis for the bureau not to inform the industry about its view of what conduct falls within the UDAAP standards; unless, that is, the bureau desires to use the imprecision of the standards to make policy after the fact. Let us hope that this is not the case.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View All
What to Know About the New 'Overlapping Directorship' Antitrust Development
4 minute read
Turning Over Legal Tedium to AI Requires Lots of Unglamorous Work on Front End
6 minute read
Khan Defends FTC Tenure, Does Not Address Post-Inauguration Plans
Best Practices for Adopting and Adapting to AI: Mitigating Risk in Light of Increasing Regulatory and Shareholder Scrutiny
7 minute readTrending Stories
- 1'It's Not Going to Be Pretty': PayPal, Capital One Face Novel Class Actions Over 'Poaching' Commissions Owed Influencers
- 211th Circuit Rejects Trump's Emergency Request as DOJ Prepares to Release Special Counsel's Final Report
- 3Supreme Court Takes Up Challenge to ACA Task Force
- 4'Tragedy of Unspeakable Proportions:' Could Edison, DWP, Face Lawsuits Over LA Wildfires?
- 5Meta Pulls Plug on DEI Programs
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
