IRAIC BANK | Regulatory Compliance - Global Banking Standards

Version 3.5 | Applicable to all IRAIC BANK global operations

At IRAIC BANK, regulatory compliance is the cornerstone of our operations. We are committed to maintaining the highest standards of integrity, transparency, and accountability in all our banking activities across the globe.

Our compliance framework is designed to meet or exceed the requirements of all applicable laws, regulations, and international banking standards. We continuously monitor regulatory developments to ensure our practices remain current and effective.

This document outlines our commitment to regulatory compliance, the key regulations we adhere to, and the internal controls we maintain to protect our clients and the integrity of the financial system.

Regulatory Framework

Adherence to global banking regulations and standards.

AML & CFT

Anti-Money Laundering and Counter-Terrorist Financing programs.

Data Protection

GLBA, GDPR, and international privacy standards.

Fair Lending

ECOA and Equal Credit Opportunity compliance.

1. Our Compliance Commitment

IRAIC BANK maintains a comprehensive compliance management system that is proportionate, appropriate, reliable, and sufficient for the nature and scale of our operations. Our commitment includes:

Establishing and maintaining effective governance arrangements and internal control mechanisms.
Appointing qualified compliance officers with clear responsibilities for ongoing monitoring.
Conducting regular risk assessments and internal audits of our compliance programs.
Providing ongoing training to all employees on regulatory requirements and ethical conduct.
Maintaining open communication with regulatory authorities worldwide.

Chief Compliance Officer

Our Chief Compliance Officer oversees all regulatory matters and reports directly to the Board of Directors. The Compliance department operates independently from business lines to ensure objective oversight.

2. Key Regulatory Frameworks

IRAIC BANK complies with all applicable laws and regulations in the jurisdictions where we operate. Key frameworks include:

Regulation	Description
Gramm-Leach-Bliley Act (GLBA)	Protects consumer financial privacy and requires financial institutions to explain their information-sharing practices.
Bank Secrecy Act (BSA) / AML	Requires financial institutions to assist government agencies in detecting and preventing money laundering.
USA PATRIOT Act	Strengthens AML measures and requires customer identification programs (CIP).
Equal Credit Opportunity Act (ECOA)	Prohibits credit discrimination on the basis of race, color, religion, national origin, sex, marital status, or age.
Truth in Savings Act (TISA)	Requires clear disclosure of deposit account terms and fees.
General Data Protection Regulation (GDPR)	Protects personal data of EU residents and regulates cross-border data transfers.
Digital Operational Resilience Act (DORA)	Ensures financial entities can withstand, respond to, and recover from ICT disruptions.
OFAC Sanctions	Compliance with U.S. economic sanctions programs administered by OFAC.

3. Anti-Money Laundering (AML) Program

Our AML program is designed to detect and prevent money laundering, terrorist financing, and other financial crimes. Key components include:

3.1 Know Your Client (KYC) / Customer Due Diligence

Identity verification for all clients using government-issued documents and biometric data.
Beneficial ownership identification for legal entities.
Ongoing monitoring of account activity and risk profiling.

3.2 Transaction Monitoring

AI-powered surveillance systems that detect suspicious patterns in real-time.
Automated generation of Suspicious Activity Reports (SARs) when required.
24/7 monitoring of all cross-border transactions.

3.3 Sanctions and Watchlist Screening

Real-time screening against OFAC, UN, EU, and other global sanctions lists.
PEP (Politically Exposed Persons) screening and enhanced due diligence.

3.4 Regulatory Reporting

Currency Transaction Reports (CTRs) for transactions over $10,000.
Suspicious Activity Reports (SARs) filed within 30 days of detection.

AML Compliance Officer

Our designated AML Compliance Officer is responsible for overseeing all AML-related activities, ensuring timely reporting, and maintaining all required documentation for regulatory inspection.

4. Data Protection and Privacy

We are committed to protecting the confidentiality and security of our clients' personal information. Our data protection framework complies with:

GLBA Privacy Rule: We provide clear privacy notices and respect client opt-out rights.
GDPR: For EU clients, we maintain strict data processing protocols and honor rights of access, rectification, and erasure.
CCPA: California residents have additional rights regarding their personal information.
Quantum Encryption: All client data is protected using quantum-resistant encryption protocols.

5. Fair Lending and Consumer Protection

We are committed to fair and equal treatment of all clients. Our consumer protection policies include:

ECOA/Regulation B: We do not discriminate in any credit transaction and provide adverse action notices when required.
TILA/Regulation Z: Clear disclosure of credit terms, APRs, and finance charges.
EFTA/Regulation E: Protection for electronic fund transfers, including error resolution procedures.
Truth in Savings: Accurate disclosure of deposit account terms, fees, and interest rates.

6. ICT and Digital Operational Resilience

We maintain robust ICT governance frameworks that are proportionate, appropriate, reliable, and sufficient for our digital banking operations. Our policies include:

Information Security Policy: Protects the confidentiality, integrity, and availability of information assets.
Incident Management: Procedures for detecting, responding to, and recovering from ICT incidents.
Access Rights Management: Strict controls on system access based on job functions.
Cyber Resilience: Regular penetration testing and vulnerability assessments.

We comply with the Digital Operational Resilience Act (DORA) requirements for ICT risk management, incident reporting, and digital resilience testing.

7. Internal Control Mechanisms

Our internal control framework ensures ongoing compliance through:

Regular compliance monitoring and testing by the Compliance department.
Independent internal audit function reporting to the Audit Committee.
Annual compliance risk assessments covering all business lines.
Conflict of interest prevention and whistleblower protection programs.

8. Training and Awareness

All employees receive mandatory training on:

AML/CFT detection and reporting obligations.
Data privacy and information security protocols.
Ethical conduct and conflicts of interest.
Regulatory updates and new compliance requirements.

9. Regulatory Reporting

We maintain timely and accurate reporting to all relevant regulatory authorities, including:

Suspicious Activity Reports (SARs) to financial intelligence units.
Periodic financial and prudential reports to banking supervisors.
OFAC blocking and rejection reports within required timeframes.

10. Whistleblower Protection

IRAIC BANK maintains a confidential reporting channel for employees to report suspected compliance violations without fear of retaliation. Reports can be made anonymously and are investigated promptly by the Compliance department.

11. Contact Our Compliance Team

For questions regarding our compliance framework, to report a potential compliance concern, or for regulatory inquiries, please contact:

Global Compliance Office

compliance@iraicbank.com

+1 800 555 9876

Secure Compliance Portal (client access)

For urgent regulatory matters or to report suspicious activity, contact our 24/7 Compliance Hotline: +1 800 555 9999