Skip to content

The letter addresses the following notable topics:

  • Scope of permissible custodial activities.  The letter primarily addresses the activity of a bank holding cryptographic keys associated with a customer’s cryptocurrency assets.  It notes that digital currencies exist only on the blockchain or a distributed ledger, meaning that no party has physical possession of the asset.  As such, a bank “holding” digital currencies on behalf of a customer will actually be taking possession of the cryptographic access keys to a unit of cryptocurrency, either through “hot” wallets (i.e., internet-connected devices) or “cold” wallets (i.e., non-internet connected devices such as paper or hardware wallets that can be stored in a physical vault).  The letter also states that a bank may provide “related” custodial services, and in a footnote, lists the examples of facilitating a customer’s cryptocurrency and fiat currency exchange transactions, transaction settlement, trade execution, recording keeping, valuation, tax services, reporting, or other appropriate services.
  • Types of charters covered.  The letter describes the authority of a bank to engage in cryptocurrency custody services as being within both the business of banking and incidental powers (with respect to non-fiduciary custody) and fiduciary powers (with respect to fiduciary-related custody).  Accordingly, the letter concludes that providing cryptocurrency custody services is permissible for a bank acting in both non-fiduciary and fiduciary capacities, meaning that a national trust company or trust-only federal savings association should likewise have authority to provide such services to fiduciary clients pursuant to its fiduciary powers.  The letter notes that a bank would be subject to the OCC’s fiduciary regulations when providing cryptocurrency custody services in a fiduciary capacity.
  • Risk management processes and controls.  The OCC expects a bank to conduct its activities pursuant to appropriate risk management processes and controls.  For example, the letter directs banks to OCC Bulletin 2017-43, which addresses risk management principles in the context of offering new, modified, or expanded products and services.
    • Use of custody agreements.  The letter notes that custody agreements are an important risk management tool and should clearly establish the custodian’s duties and responsibilities.  Additionally, the handling, treatment, and servicing of cryptocurrencies held in custody may raise unique issues that should be addressed in the agreement, such as the treatment of “forks” or splits in the code underlying the cryptocurrency being held.
    • Use of sub-custodians.  The letter also permits a bank acting as custodian to engage a sub-custodian for cryptocurrency it holds on behalf of customers, but states that the custodian bank should develop processes to ensure that the sub-custodian’s operations have proper internal controls to protect the customer’s cryptocurrency.
  • Supervisory consultation.  The letter does not require a bank to make a filing with the OCC to engage in cryptocurrency custody activities, but states that a national bank should consult with OCC supervisors “as appropriate” prior to engaging in the activities.
  • Other laws and regulations.  The letter notes that cryptocurrencies that are considered “securities” under the federal securities laws may be subject to the OCC’s regulations governing recordkeeping and confirmation requirements for securities transactions, 12 C.F.R. Part 12, as well as the federal securities laws.
Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Randy Benjenk Randy Benjenk

Randy Benjenk is a partner in Covington’s industry-leading Financial Services Group and focuses his practice on regulatory advice and advocacy. He represents domestic and foreign banks, fintech companies, and trade associations on compliance issues, corporate transactions, and public policy matters.

Chambers USA says…

Randy Benjenk is a partner in Covington’s industry-leading Financial Services Group and focuses his practice on regulatory advice and advocacy. He represents domestic and foreign banks, fintech companies, and trade associations on compliance issues, corporate transactions, and public policy matters.

Chambers USA says Randy has received “widespread praise” from clients, who describe him as “an outstanding bank regulatory lawyer” and say that “the quality of his legal work and his writing abilities were incredible” and “he’s very easy to work with, knowledgeable and efficient.”

Randy regularly advises clients on a wide range of regulatory matters, including:

  • Bank Activities and Prudential Regulation. Complex bank activities, structure, licensing, and prudential matters, often involving issues of first impression at the federal and state banking agencies.
  • Corporate Transactions. Mergers and acquisitions, spinoffs, charter conversions, debt and equity issuances, investments, strategic partnerships, de novo bank formations, and related regulatory applications and disclosures.
  • ESG and Anti-ESG Laws. Strategies for confronting the growing thicket of laws addressing the financial services industry’s Environment, Social, and Governance positions.
  • Private Equity Investments. Private equity investments in banks, bank investments in private funds, and fund structuring related to the Volcker Rule and Bank Holding Company Act.
  • Public Policy Matters. Regulatory and legislative policy matters, with an emphasis on changes arising out of U.S. banking legislation and international standards.
  • Crisis Response. Navigating extraordinary events, such as the COVID-19 pandemic and related governmental responses, and firm-specific matters.
  • Supervisory and Enforcement Matters. Compliance and safety and soundness issues that arise in the examination and enforcement contexts.