§ 934.15 - Bank requests for information.  

This section governs the procedure by which a Federal Home Loan Bank will request and receive Confidential Information, as defined in paragraph (a)(4) of this section, pursuant to section 22 of the Federal Home Loan Bank Act.

(a) Definitions. As used in this section:

(1) Board means the Federal Housing Finance Board.

(2) Bank means a Federal Home Loan Bank, including its directors, officers, employees or agents.

(3) Financial Regulatory Agency means any of the following:

(i) The Department of the Treasury, including either the Office of the Comptroller of the Currency or the Office of Thrift Supervision;

(ii) The Board of Governors of the Federal Reserve System;

(iii) The National Credit Union Administration; or

(iv) The Federal Deposit Insurance Corporation.

(4) Confidential Information means any record, data, or report, including but not limited to examination reports, or any part thereof, that is non-public, privileged or otherwise not intended for public disclosure which is in the possession or control of a Financial Regulatory Agency and which contains information regarding members of a Bank or financial institutions with which a Bank has had or contemplates having transactions under the Bank Act.

(5) Third party means any person or entity except a director, officer, employee or agent of either:

(i) A Bank in possession of any particular confidential information; or

(ii) The Financial Regulatory Agency that supplied the particular confidential information to such Bank.

(b) Request for confidential information. A bank shall make all requests for confidential information to a Financial Regulatory Agency, or to a regional office of such Agency if mutually agreeable, in accordance with the procedures contained in this section as well as any procedures of general applicability for requesting information promulgated by such Financial Regulatory Agency. This section and its procedures may be supplemented by a confidentiality agreement between a Bank and a Financial Regulatory Agency.

(c) Form of Request. A request by a Bank to a Financial Regulatory Agency for confidential information shall be made in writing or by such other means as may be agreed upon between the Bank and the Financial Regulatory Agency. The request shall reference section 22 of the Bank Act, as amended, and this regulation, and shall describe the confidential information requested and identify its intended use pursuant to the Bank Act. The request shall be signed or otherwise made by any duly authorized Bank officer or employee.

(d) Storage of Confidential Information. Each Bank will store all identified confidential information in secure storage areas or filing cabinets or other secured facilities generally used by such Bank and limit access thereto in the same manner as it maintains the confidentiality of its own members’ privileged or non-public information. Each Bank shall have in place a written set of procedures and policies designed to insure the confidentiality of confidential information in its possession, and shall establish an internal review of its procedures for storing confidential information and maintaining its confidentiality, as a part of its internal audit process.

(e) Access to Confidential Information. A Bank will insure that access to the Confidential Information stored at its facility is limited to those with a need to know such information and that employees with access maintain the confidentiality of the confidential information in accordance with the Bank's own procedures for maintaining the confidentiality of its members’ privileged or non-public information.

(f) Third party requests for Confidential Information—(1) In general. In the event a Bank receives a request for confidential information in its possession from any third party, the Bank shall forward such requests to the Financial Regulatory Agency from which the confidential information was obtained.

(2) By subpoena. In the event a Bank receives a subpoena for confidential information issued by a Federal, state or local government department, agency, court or bureau, the Bank shall give timely written notice of such subpoena to the Financial Regulatory Agency from which the confidential information was obtained, unless such notice is prohibited by applicable law.

(i) The Financial Regulatory Agency gives written approval to the disclosure; or

(ii) A binding order to produce the confidential information has become final with all rights of appeal either exhausted or lapsed.

(3) Nondisclosure to third parties. Except as provided in paragraph (f)(2) of this section, a Bank shall not disclose confidential information to any third party. A Bank shall refer all third party requests for such confidential information to the Financial Regulatory Agency that released the confidential information to the Bank.

(4) Disclosure to Board. (i) Neither this section nor any confidentiality agreement executed between a Bank and a Financial Regulatory Agency shall prevent a Bank from disclosing confidential information in its possession to the Board whenever disclosure is necessary to accomplish the Board's supervision of Bank membership applications or Bank director eligibility issues, or disclosing any confidential information in its possession if such disclosure is made pursuant to an audit conducted pursuant to paragraph (d) of this section or section 20 of the Bank Act.

(ii) The Board shall keep all confidential information received under paragraph (f)(4) of this section in strict confidence.

(g) Computer data. This section shall not preclude a bank from arranging with any Financial Regulatory Agency to transmit or allow access to confidential information with the consent of such agency by means of an electronic computer system. Any such arrangement shall insure the security of the computerized data stored in a bank's computer and restrict access to such data in order to preserve confidentiality in a manner agreed upon by the bank and the Financial Regulatory Agency.