US Financial Services Regulatory Framework

The US financial services regulatory framework is a layered system of federal and state oversight governing banks, securities firms, insurance carriers, mortgage lenders, investment advisers, and emerging fintech entities. Understanding how these authorities interact — and where jurisdictional boundaries conflict — is essential for firms seeking licensure, compliance professionals managing examinations, and consumers evaluating whether a provider is operating legally. This page covers the structural architecture of that framework, the agencies and statutes that define it, the classifications that determine which rules apply, and the tensions that make compliance a dynamic rather than static exercise.

Definition and scope

The US financial services regulatory framework is the aggregate body of statutes, rules, and supervisory mechanisms that govern entities engaged in accepting deposits, extending credit, trading securities, providing investment advice, underwriting insurance, transmitting money, or offering derivative products within or from the United States. The framework is not a single unified code. It distributes authority across at least 10 distinct federal agencies and 50 state-level regulatory bodies, each with jurisdiction defined by the type of activity, the charter of the institution, and the geographic scope of operations.

The statutory foundation rests on landmark legislation including the National Bank Act of 1864, the Securities Act of 1933, the Securities Exchange Act of 1934, the Bank Holding Company Act of 1956, the Investment Advisers Act of 1940, and the Dodd-Frank Wall Street Reform and Consumer Protection Act of 2010 (Public Law 111-203). Dodd-Frank alone created or restructured 5 major regulatory bodies and added more than 400 rulemakings to the federal agenda. The scope extends to entities chartered under state law as well as those holding federal charters — meaning the same financial product can be subject to dual regulatory review depending on the issuer's legal structure.

For an orientation to how these services are categorized by activity type, see Types of Financial Services.

Core mechanics or structure

The framework operates through three interlocking mechanisms: chartering authority, examination and supervision, and enforcement power.

Chartering authority determines who can legally constitute a financial institution. The Office of the Comptroller of the Currency (OCC) charters national banks and federal savings associations under 12 U.S.C. § 1. The Federal Reserve Board of Governors charters state member banks and bank holding companies under 12 U.S.C. § 321. State banking departments charter state-chartered institutions under their own enabling statutes, with 50 separate frameworks.

Examination and supervision involves periodic on-site and off-site reviews that assess capital adequacy, asset quality, management competence, earnings, liquidity, and sensitivity to market risk — a framework known by the CAMELS rating system (Capital, Assets, Management, Earnings, Liquidity, Sensitivity), used by federal bank examiners as the primary supervisory scorecard (FFIEC Examination Handbook).

Enforcement power allows agencies to impose civil money penalties, issue cease-and-desist orders, bar individuals from the industry, and refer criminal matters to the Department of Justice. Under 12 U.S.C. § 1818, the FDIC and OCC can assess Tier 1 civil money penalties up to $10,000 per day per violation, Tier 2 up to $25,000 per day, and Tier 3 up to $1 million per day (FDIC Enforcement Actions).

Securities regulation operates through a parallel but distinct structure. The Securities and Exchange Commission (SEC) registers broker-dealers, investment advisers, and securities exchanges, delegating self-regulatory organization (SRO) authority to FINRA (FINRA) for broker-dealer conduct. The Commodity Futures Trading Commission (CFTC) governs futures, options on futures, and swaps under the Commodity Exchange Act (7 U.S.C. § 1 et seq.).

For a detailed treatment of federal agencies and their jurisdictional lanes, see Federal Financial Regulators.

Causal relationships or drivers

The regulatory framework's current architecture reflects direct legislative responses to systemic failures. The Banking Act of 1933 — commonly called Glass-Steagall — arose from the collapse of more than 9,000 US banks between 1930 and 1933 (Federal Reserve History). The Securities Acts of 1933 and 1934 followed the 1929 stock market crash and disclosure failures that preceded it. The FDIC was created the same year to provide deposit insurance, now covering up to $250,000 per depositor per insured institution per ownership category (FDIC deposit insurance rules).

The Financial Crisis of 2007–2009 drove the most comprehensive restructuring since the New Deal. The Financial Stability Oversight Council (FSOC), created by Dodd-Frank, was given authority to designate non-bank financial companies as Systemically Important Financial Institutions (SIFIs), subjecting them to Federal Reserve supervision and enhanced prudential standards. Dodd-Frank also created the Consumer Financial Protection Bureau (CFPB), consolidating consumer protection authority previously fragmented across 7 federal agencies.

Fintech proliferation since 2010 has created pressure points at the boundary between state money transmitter licensing and proposed federal frameworks. The OCC's proposed Special Purpose National Bank (SPNB) charter for fintech companies — challenged in court in Vullo v. OCC (2d Cir. 2019) — illustrates how technological change forces jurisdictional adjudication.

Classification boundaries

What regulatory regime applies depends primarily on four classification variables:

  1. Activity type — deposit-taking, lending, securities dealing, investment advice, insurance underwriting, money transmission, or derivatives trading each triggers a distinct regulatory framework.
  2. Charter type — federal charter (OCC, NCUA, or SEC-registered) versus state charter determines the primary regulator and which state laws are preempted.
  3. Institutional size and systemic importance — banks with assets exceeding $100 billion face Federal Reserve oversight under the Enhanced Prudential Standards rule (12 CFR Part 252). Banks below $10 billion in assets face lighter examination cycles.
  4. Customer classification — retail clients, accredited investors (defined under SEC Rule 501 of Regulation D as individuals with net worth exceeding $1 million excluding primary residence or income exceeding $200,000), and institutional investors each receive different levels of regulatory protection.

Dual registration is common. A firm registered as both a broker-dealer with FINRA and an investment adviser with the SEC operates under the Investment Advisers Act fiduciary standard for advisory functions and the suitability/Regulation Best Interest standard under SEC Reg BI for brokerage recommendations. Understanding those boundary conditions is central to Fiduciary Standards in Financial Services.

State-level insurance regulation remains almost entirely non-federal. The McCarran-Ferguson Act of 1945 (15 U.S.C. § 1011) expressly reserves insurance regulation to the states, and the National Association of Insurance Commissioners (NAIC) coordinates but does not supersede state authority.

Tradeoffs and tensions

Regulatory arbitrage is the persistent structural tension in the dual federal-state system. An entity can choose a charter type to minimize regulatory burden — a practice that drove growth of state-chartered non-bank lenders before the CFPB was granted supervisory authority over non-bank entities with more than $10 billion in assets (12 U.S.C. § 5514).

Preemption conflicts arise when federal rules displace state consumer protections. The OCC's 2004 preemption rule for national banks was challenged and partially narrowed by the Supreme Court in Cuomo v. Clearing House Association (2009), which held that states retain enforcement authority over federal fair lending standards even when preempted from issuing their own regulations.

Prudential regulation versus market access creates a direct tradeoff: capital requirements that make institutions safer also reduce the volume of credit available and increase its cost. The Basel III capital framework — implemented in the US through the Federal Reserve's Regulation Q and the OCC's 12 CFR Part 3 — requires the largest banks to maintain Common Equity Tier 1 (CET1) ratios of at least 4.5% of risk-weighted assets, with additional buffers that can push the effective minimum above 7% (Federal Reserve Basel III Overview).

Speed of innovation versus supervisory capacity creates a persistent lag. The CFPB issued its Section 1033 Personal Financial Data Rights rule in 2024, a framework for open banking that fintech firms had operated outside of for more than a decade without a formal federal standard (CFPB 1033).

Common misconceptions

Misconception: The FDIC regulates all banks.
The FDIC is the primary federal regulator for state-chartered banks that are not members of the Federal Reserve System. For national banks, the OCC is the primary regulator. The Federal Reserve supervises state member banks and bank holding companies. The FDIC provides deposit insurance across all three categories but is not the examination authority for all of them.

Misconception: SEC registration means a firm has been vetted for quality or honesty.
SEC registration is a disclosure-based system. Registration means a firm has filed required disclosure forms (Form ADV for advisers, Form BD for broker-dealers); it does not constitute an endorsement of the firm's investment strategies, competence, or character. The SEC's Investment Adviser Public Disclosure (IAPD) database allows verification of registration status and disciplinary history.

Misconception: State licensing is redundant once a firm has federal registration.
Federal registration does not eliminate state obligations. Investment advisers managing less than $100 million in regulatory assets under management are generally required to register with state securities regulators rather than the SEC under 15 U.S.C. § 80b-3A. Even federally registered advisers must file notice with states where they have more than 5 clients.

Misconception: Suitability and fiduciary are the same standard.
Suitability required that recommendations be suitable at the time made. SEC Regulation Best Interest, effective June 2020, elevated the standard for broker-dealers to act in the best interest of retail customers but does not impose the ongoing fiduciary duty that applies to registered investment advisers under the Investment Advisers Act of 1940.

Checklist or steps (non-advisory)

The following sequence describes the structural steps an entity typically navigates when entering regulated financial services in the United States. This is a descriptive framework, not legal guidance.

Phase 1: Activity classification
- Identify all financial activities to be conducted (deposit-taking, lending, advisory, dealing, insurance, money transmission).
- Map each activity to the applicable federal and state statutory definitions.
- Determine whether activities trigger multiple regulatory regimes simultaneously.

Phase 2: Charter and license identification
- Identify available charter types (national bank, state bank, federal savings association, credit union, non-bank).
- Identify state licenses required per activity type in each state of operation (money transmitter licenses, mortgage lender licenses, insurance producer licenses).
- Consult Financial Services Licensing Requirements for a breakdown of license categories.

Phase 3: Federal registration
- File with the SEC (Form ADV or Form BD), CFTC (via NFA), or FINRA (for broker-dealer membership) as applicable.
- Satisfy net capital requirements: broker-dealers must maintain minimum net capital under SEC Rule 15c3-1; the standard method requires net capital of $250,000 for firms holding customer funds.

Phase 4: State registration and notice filing
- File notice or register in each state where clients or operations are located.
- Obtain state-specific surety bonds, if required (amounts vary by state and license type).

Phase 5: Ongoing compliance infrastructure
- Establish written supervisory procedures (WSPs) as required by FINRA Rule 3110 for broker-dealers.
- Implement BSA/AML program under 31 U.S.C. § 5318 if subject to the Bank Secrecy Act.
- Appoint a Chief Compliance Officer and register as required under applicable SRO rules.

Phase 6: Examination readiness
- Maintain books and records per applicable retention schedules (SEC Rule 17a-4 requires broker-dealer records retention of 3 to 6 years depending on record type).
- Monitor FFIEC, CFPB, and state regulatory examination manuals for current examination priorities.

For tools on verifying whether a provider has completed these steps, see How to Verify a Financial Services Provider.

Reference table or matrix

Regulatory Body Primary Jurisdiction Enabling Statute Key Supervised Entities
Office of the Comptroller of the Currency (OCC) National banks, federal savings associations National Bank Act (12 U.S.C. § 1) ~1,100 national banks as of 2023 (OCC)
Federal Reserve (Fed) Bank holding companies, state member banks, SIFIs Federal Reserve Act (12 U.S.C. § 221) ~850 state member banks (Federal Reserve)
FDIC State non-member banks; deposit insurance Federal Deposit Insurance Act (12 U.S.C. § 1811) ~3,000 state non-member institutions (FDIC)
Securities and Exchange Commission (SEC) Investment advisers, broker-dealers, exchanges Securities Acts 1933/1934; Investment Advisers Act 1940 ~15,000 registered investment advisers (SEC IAPD)
FINRA Broker-dealer conduct, registered representatives Exchange Act § 15A (SRO authority) ~3,400 broker-dealer firms (FINRA)
CFTC Futures, options, swaps Commodity Exchange Act (7 U.S.C. § 1) FCMs, swap dealers, CPOs
CFPB Consumer financial products and services Dodd-Frank Act, Title X (12 U.S.C. § 5491) Banks >$10B assets; non-bank lenders
NCUA Federal credit unions Federal Credit Union Act (12 U.S.C. § 1751) ~4,700 federally insured credit unions (NCUA)
State banking departments State-chartered institutions State enabling statutes (50 variations) State banks, money transmitters, mortgage lenders
State insurance departments Insurance carriers, producers McCarran-Ferguson Act; state codes All insurance entities; coordinated by NAIC

References

📜 34 regulatory citations referenced  ·  ✅ Citations verified Feb 25, 2026  ·  View update log

Explore This Site

Regulations & Safety Regulatory References Tools & Calculators Compound Interest Calculator