How to Comply with the FDIC’s 2024 Brokered Deposits Rule When Using Fintech Deposit Sweep Programs in California
California banks and fintech partners must reassess deposit sweep programs under the FDIC’s 2024 brokered deposits rule, which expands and clarifies when third-party facilitated deposits are “brokered.” In California’s fintech-heavy market, sweep structures (including FBO accounts and app-based cash management) can trigger brokered deposit treatment if the facilitator is deemed a “deposit broker” or a “third party that matches depositors with insured depository institutions.” This article explains the rule’s key tests, California-specific compliance steps, contract controls, and examination-ready documentation for sweep programs.
Why the FDIC’s 2024 brokered deposits rule matters for California fintech sweep programs
Fintech deposit sweep and “cash management” programs are common in California, where consumer and SMB financial apps routinely place customer funds at one or more FDIC-insured banks. These structures can lower funding costs, diversify deposits, and provide higher customer yields. They also create a regulatory question that has become more consequential: are the swept deposits “brokered deposits” because a fintech (or another intermediary) is acting as a “deposit broker”?
The FDIC’s 2024 brokered deposits rule (the “Final Rule”) refines and reorganizes the framework in 12 C.F.R. § 337.6, including how the FDIC evaluates third-party arrangements, exceptions, and the “primary purpose exception” (PPE). For California institutions and fintech partners, the practical impact is that sweep programs must be re-documented and re-tested against the revised definitions and conditions—especially where the fintech controls customer experience, directs placements, or receives fees tied to balances.
Regulatory baseline: what counts as a brokered deposit
1) The statutory concept
Federal law restricts “brokered deposits,” primarily by limiting acceptance by undercapitalized insured depository institutions (IDIs) and imposing heightened scrutiny and reporting for others. The core idea is that deposits obtained through a third party—who is in the business of placing deposits or facilitating the placement of deposits—can be more rate-sensitive and less stable.
2) The FDIC’s functional test
Under the FDIC’s rule, a deposit is generally “brokered” if it is obtained, directly or indirectly, from or through the mediation or assistance of a “deposit broker.” A “deposit broker” typically includes a person or entity engaged in:
- Placing deposits with IDIs;
- Facilitating the placement of deposits; or
- Facilitating the acquisition of deposits by an IDI.
Fintech sweep programs often implicate “facilitation,” particularly when the app markets the deposit product, onboards users, accepts funds, maintains an FBO structure, allocates deposits among multiple banks, or provides a user interface that effectively “matches” depositors to banks.
Where fintech sweep programs trigger brokered deposit risk
Common sweep patterns in California
In California, three structures are especially common:
- Single-bank program with a fintech front end: Customer funds are held at one partner bank (often in an FBO account or omnibus account) and the fintech provides the app and customer experience.
- Multi-bank sweep network: Funds are allocated across a panel of banks to increase aggregate FDIC insurance capacity; allocation is automated based on rules.
- Broker-dealer or RIA cash sweep: Customer cash is swept from a brokerage platform to deposit accounts at IDIs (often via a deposit placement agent).
Red flags that increase the likelihood of “deposit broker” status
Even where the fintech does not call itself a “broker,” the FDIC’s analysis is substance over labels. Risk indicators include:
- Customer acquisition and marketing: The fintech advertises APY and promotes the ability to hold insured deposits at partner banks.
- Account onboarding or KYC handled by the fintech: Especially if the bank’s role is largely back-end.
- Deposit allocation discretion: The fintech (or its program manager) decides which bank receives deposits, changes the bank panel, or rebalances funds.
- Compensation linked to balances: Fees calculated as a percentage of deposits or spread-based economics can look like “placing” or “facilitating” deposits.
- “Matching” functionality: Routing deposits to one of many banks based on rate, capacity, geography, or program criteria may resemble matching depositors to IDIs.
Key exceptions and pathways to avoid brokered deposit treatment
Not every third-party-facilitated deposit is brokered. The FDIC framework includes exceptions that are often central to sweep program design.
The “primary purpose exception” (PPE)
The PPE is frequently the most relevant for fintech arrangements. In simplified terms, it can apply where the third party’s primary purpose in placing or facilitating deposits is not to place deposits (e.g., the deposits are incidental to providing another service). For fintechs, this may include situations where deposit placement is ancillary to payments, custody, payroll, merchant services, or another core product.
Practical implication: PPE analysis is evidence-driven. Banks should be prepared to document why the intermediary’s primary purpose is something other than deposit placement and how the program’s fee model, marketing, and customer journey support that conclusion.
The IDI exception (where applicable)
The rule also recognizes circumstances where an entity is not treated as a “deposit broker,” including certain insured depository institutions acting in a capacity that fits within the regulatory exception. In a sweep chain that includes affiliates or bank-owned service providers, this exception may be relevant, but it is highly fact-specific and must be analyzed carefully to avoid misclassification.
Other exclusions that may come up in sweep programs
Depending on program structure, additional exclusions may be relevant (for example, where the arrangement resembles a traditional trust or fiduciary relationship, or where the intermediary’s role is limited and does not rise to “facilitation”). Because the Final Rule is technical, counsel typically maps each program function—marketing, onboarding, fund flows, allocation, servicing—against the definitions and exclusions before taking a position.
California-specific compliance lens: what changes in practice
Federal brokered deposit rules apply nationwide, but California adds practical complexity:
- High concentration of fintech program managers: California-based intermediaries may operate nationally, increasing examination scrutiny and the need for uniform controls.
- UDAP/UDAAP and “financial product” marketing sensitivity: California’s consumer protection environment increases the importance of clear disclosures about FDIC insurance, pass-through coverage conditions, and sweep mechanics.
- State-chartered banks and multi-regulator exams: Programs can face overlapping reviews (FDIC, FRB/OCC depending on charter, plus state banking regulator for state-chartered institutions).
As a result, California banks should treat brokered deposit classification as part of an integrated governance package: vendor management, third-party risk, consumer disclosures, and liquidity/rate risk management.
Step-by-step compliance plan for sweep programs under the 2024 rule
Step 1: Create a program “deposit map” and role matrix
Start with a written inventory that follows the deposit from customer to bank:
- Who markets the product and sets customer expectations?
- Who owns the customer relationship?
- Who performs CIP/KYC/OFAC screening?
- Who controls the FBO/omnibus account and sub-ledger?
- Who decides bank allocation, rebalancing, and bank panel changes?
- Who receives fees, and how are fees calculated?
This map becomes the foundation for determining whether any party is “facilitating” deposit placement and whether an exception applies.
Step 2: Determine brokered vs. non-brokered status—and document the rationale
Banks should prepare an internal legal memorandum (or equivalent compliance analysis) that:
- Identifies potential “deposit broker” actors (fintech, program manager, affiliate, broker-dealer, custodian).
- Applies the Final Rule definitions to each function.
- Analyzes each claimed exception (especially PPE) with specific evidence.
- Concludes how the deposits should be reported (brokered, non-brokered, or mixed population if multiple channels).
Tip for examinations: Avoid generic conclusions. Examiners typically expect a fact-based record: screenshots of marketing, fee schedules, flow charts, and customer agreements.
Step 3: Rework contracts to align incentives and control “facilitation” risk
Sweep program contracts often determine the regulatory outcome. Consider provisions that address:
- Marketing controls: bank approval rights; prohibitions on rate-only marketing; clear FDIC insurance language; limits on “shop the best bank” messaging.
- Allocation governance: define who controls allocation, when, and under what constraints; require bank consent for panel changes.
- Compensation design: avoid balance-based “placement” fees where feasible; document that fees are for operational services (e.g., payments processing) rather than deposit placement.
- Data and sub-ledger integrity: requirements for pass-through deposit insurance records, daily reconciliation, and audit rights.
- Regulatory cooperation: examination support clauses; right to obtain information needed for call report treatment; notice of regulator inquiries.
Step 4: Align operational controls with the classification position
If the program relies on an exception like PPE, operational reality must match the narrative. Examples include:
- Customer journey: ensure the product is framed as a broader service (payments, treasury, custody) and not primarily as a rate vehicle.
- Staff training: sales/support scripts must not























