CUNA Regulatory Comment Call




November 9, 2000

Freddie Mac Requests Comment on E-mortgage Guidelines

(Important for Mortgage Lenders that Participate in the Secondary Market)

EXECUTIVE SUMMARY

Comments on the guidelines are due by November 30, 2000. Please submit your comments to CUNA by November 28, 2000. Please feel free to fax your responses to CUNA at 202-371-8240; e-mail them to Associate General Counsel Mary Dunn at mdunn@cuna.com or to Assistant General Counsel Jeffrey Bloch at jbloch@cuna.com; or mail them to Mary or Jeff in c/o CUNA's Regulatory Advocacy Department, 805 15th Street, NW, Suite 300, Washington, DC 20005. You may also contact us if you would like a copy of the guidelines or you may access it on the Internet at the following address:




http://www.freddiemac.com/singlefamily/elm/

BACKGROUND

The recent enactment of the E-Sign Act and UETA will facilitate use of electronic mortgages. The E-Sign Act is the federal law permitting the use of electronic signatures and records and became effective on October 1, 2000. UETA is a model state law that has already been passed by many states and has provisions similar to the E-Sign Act.

Freddie Mac is now evaluating the purchasing of mortgage loans using electronic loan documentation instead of written loan documents. However, before proceeding further, Freddie Mac is developing appropriate guidelines and requirements to ensure integrity, authentication, and security. A draft of these guidelines has been completed and Freddie Mac is now requesting comments. A revised draft is expected to be available in December, and a final version is expected to be completed early in 2001.

DESCRIPTION OF THE GUIDELINES

Consent

Each party participating in a real estate mortgage loan transaction must expressly consent to the use of electronic records, which must be voluntary and based on accurate information. Incentives to obtain consent may be used. However, coercion, deceptive practices, or misrepresentations are prohibited. Consent must be obtained prior to the first receipt or delivery of electronic records that would otherwise be required in writing.

Those who must consent are parties who: 1) actively participate in the closing of the loan; or 2) will either be executing, relying on, or delivering electronic records. This may include the borrower, property owner, real estate agent or broker, title insurer, flood insurer, hazard insurer, appraiser, home inspector, pest inspector, mortgage insurer, loan aggregator, mortgage broker, originating lender, noteholders, escrow company, title company or closing agent/attorney, seller, servicer, contractor for repairs, credit reporting companies, well inspector, water lab, septic inspector, attorneys for buyer and seller, rent loss insurance carrier, surveyor, credit life insurer, notary, and subordinate lienholders.

Consent from the following parties is not required:

Consent by consumers must be obtained electronically. (The term "consumer" generally means an individual who obtains a product or service for personal or household purposes.) Consent by non-consumers may be obtained electronically or in writing. The seller is responsible for obtaining the consents. For parties other than consumers who regularly use the electronic record system, the seller may obtain blanket consent for all transactions conducted with the other person.

Consent by a consumer, property owner, or borrower must include the following elements:

The disclosures described above must be "conspicuous," meaning that they meet all legal requirements, as well as the following minimum requirements:

The following are elements of consent for those participants who must provide consent but who are not consumers, property owners, or borrowers:

If permitted by law, a power of attorney may provide for another person to provide the necessary consent. The seller is responsible for ensuring that the power of attorney is sufficient.

The description of the requirements and procedures must provide enough detail that is reasonably necessary in order to understand the requirements and to comply with the procedures. Descriptions of hardware requirements must include the same type of information provided by mass-market software vendors regarding minimum hardware requirements. General or boilerplate descriptions that refer to other documents are unacceptable.

Execution

The process used to execute, or create, an electronic signature must address the following:

If a person is signing on behalf of another, the electronic signature must reflect the name of the person signing, the represented person, and the signer's title or capacity. If permitted by law, the documents establishing the authority to sign on behalf or another may also be in the form of an electronic record and may be signed using an electronic signature.

In addition to other legal or commercial requirements, establishing the authority to sign must also include the following:

The electronic signature process must be designed to demonstrate that the person intended to sign the document. To accomplish this, the signature process must be designed to provide notice to the signer that the electronic signature has been or is about to be affixed to the electronic record. There must also be evidence of the signer's intent to affix the electronic signature on the record.

Here are some examples of acceptable signature processes:

The signer must be provided notice as to the purpose that the signature will serve. These purposes may include the signer's agreement to the terms of the electronic record, the signer's receipt of the electronic record, that the signer had a chance to review the record, or that the signer is the person sending the record.

Each electronic record must be separately presented to the signer for signature. This may include the separate signing of each document or by creating the electronic signature once and then requiring some affirmative act by the signer confirming the intention to sign each electronic record.

When reviewing the signed electronic record, it must be possible to determine the existence of the electronic signature, the type of electronic signature symbol or process used, and the identity of the signer. Here are some possible methods:

An electronic signature must take the form of either a symbol or a process. Audio recordings or oral statements do not qualify. Examples of symbols include a typed name, a digitized signature, and an e-mail address. Examples of processes include fingerprint or retinal scan; dual key encryption; and use of a personal identification number (PIN), password, token, or other secure procedure along with an affirmation of consent of the record after an opportunity for review.

There must be sufficient evidence that the electronic signature can be attributed to the person that is purported to have signed the document. The following are examples of possible methods to ensure this attribution:

These procedures regarding electronic signatures may also be used for notarizations, as long as all information with regard to notarizations is included in the electronic record. Tokens, such as stamps and seals, are not required but the information in these tokens must be in the record. The notary function requires the personal appearance by the signer and this requirement will not change. The notary must also verify that any certificates used in connection with a digital signature are current and enforceable.

Document Format and Delivery

The legal requirements concerning the content, display, or format of written information must be observed with respect to the electronic display and printing of the electronic record. Requirements that must be followed include the use of specific fonts, specific type sizes and styles, the physical location of information, and any requirements regarding the segregation of certain information.

The software file formats, computer operating systems, and printing capabilities must be able to accurately reproduce the fonts, styling, margins, pagination, line spacing, paragraph formatting, numbering, and other physical features. On screen viewing must be possible either through programs such as an Internet browser, or other programs without charge.

The file formats for electronic records must either be non-proprietary or through a non-exclusive license that can be sub- assigned to others who must maintain or view the records. The electronic record must contain all the information necessary so that the record and signatures may be reproduced in order to verify the contents, the method used to sign the record, and the persons signing the record, along with the capacity in which it was signed.

In addition to meeting the current legal requirements regarding the timing and method of delivery, this system of electronic mortgages should be designed to track delivery of records with the ability to prevent completion of the transaction or provide an alert to the responsible parties if the required information has not been delivered. If mailing or hand delivery is required, this must be provided as required by current law, unless it qualifies as an electronic delivery under the E-Sign Act. If mailing or hand delivery is not required, any commercially reasonable method is permitted. Some examples include:

Document Integrity

The electronic records system must track changes or the different versions of the records that are used in the mortgage transaction. The system must be structured so that changes may only be made by those given access to the records and have the authority to make the changes. Histories reflecting the date and time of revisions should be maintained. The content of the revisions does not need to be included in these histories.

Unauthorized alterations must be prevented. Here are possible methods to prevent such alterations:

A loan document, converted to electronic form, may be comprised of more than one electronic record. These must be "associated" so that they are identifiable and accessible as part of the same transaction, although they need not be physically stored on the same storage device, server, or at the same physical location. Here are possible methods to "associate" these documents:

Back-up copies of the "authoritative copy" of an electronic record must be maintained and identified as the back-ups. The authoritative copy is defined as the controlling reference copy of the record. The replacement of a back-up must require the verified authorization of a representative of the noteholder.

There must be a designation of the "authoritative copy." Here are possible methods for making this designation:

Records Management

There must be a high degree of security regarding the protection of the data, and this should meet or exceed the guidelines contained in the Federal Financial Institutions Examinations Council's Information Systems Examination Handbook. The Freddie Mac Guidelines also refer users to the Electronic Banking Safety and Soundness Examination Procedures published by the Federal Deposit Insurance Corporation.

The physical environment for the electronic records should provide the following:

The processing environment for ensuring authenticity of the records should include the following.

The technical environment must provide a stable and open platform in order to promote interoperability, connectivity, and performance. This includes the following:

Mortgage loan transactions may involve a combination of electronic and written records that comprise the mortgage file. In such hybrid transactions, the servicer is responsible for providing the cross references to and from the written and electronic records. The part of the file containing the electronic records must include a listing of the written records, the location of these records, and instructions on how to contact the document custodian. The part of the file containing the written records must include a listing of the electronic records and the process for accessing these records.

A written record that is part of the loan file may be scanned and digitized by the servicer. (Exceptions are the promissory note and any associated modifications, indorsements, allonges containing indorsements, and any unrecorded security instrument or other document filed in the public records.) This must then be noted as an imaged copy, added to the electronic file, and the written record may then be discarded. The note (and any modifications), indorsements, or allonges must never be destroyed without the expressed, signed permission of the noteholder, unless all the obligations under the note have been satisfied.

Document Access

The system for electronic records should control, track, and monitor access. There should be different levels of access for each party that may request such access. The borrower should have access to all the documents while the seller's access could be restricted after the sale. Here are possible access levels, along with the parties that would have access at each level:

Access must be provided to all parties who are necessary in order to complete the mortgage transaction. Borrowers must have access before, during, and after closing. After closing, the borrower, noteholder, and servicer must be given access to the authoritative copy or to copies of the authoritative copy. Access includes the ability to view and print the record. This access may be provided by way of the Internet or by direct dial access. Requiring the borrower to travel is not acceptable.

To facilitate access, the records system must provide real-time onscreen help features, as well as instructions and tutorials on using the system. At different stages in the transaction, different parties will be responsible for ensuring access, as follows:

Subcontractors may be used for purposes of providing access, although the designated party will still be responsible. Subcontractors must also enter into the necessary agreement regarding their role as a document custodian, as required by Freddie Mac.

Borrowers must have access from the time the application for a loan is approved until the loan is paid in full or foreclosed, plus seven years. The servicer and noteholder must also have access until the loan is paid in full or foreclosed, plus seven years. Other parties must have access at the time they become associated with the transaction.

The record system and file formats should ensure that the data can be stored on multiple types of media, as well as mass storage devices. The file formats should allow the data to be converted and viewed across multiple operating system platforms. The software and system licenses should include the obligation to support conversion if the software is upgraded.

Representations, Warranties, and Contract Terms

Each vendor providing software or hardware must provide representations and warranties to their contracting party that:

Each seller must provide representations and warranties to Freddie Mac and future servicers that:

A system administrator or document custodian of electronic records must agree to all requirements that are contained in the Freddie Mac Single-Family Seller-Service Guide.

Regardless of any dispute with a servicer or Freddie Mac, or a dispute between a servicer and Freddie Mac, the system administrator or document custodian must agree to deliver to Freddie Mac, on demand, control over the authoritative copies of the electronic records. Failure to do so may be subject to the legal remedy of specific performance.

If there is a dispute with a servicer of Freddie Mac, the system administrator or document custodian cannot prevent a party from obtaining access and printing the electronic record if he or she is entitled to such access. The system administrator and document custodian must agree that they have no property interest in the data and will not use, rent, lease, or sell the data.

Transferable Record

As mentioned above, a transferable record serves as an electronic equivalent of a negotiable promissory note. The electronic record system must be designed so that the debt obligation is evidenced by a note that meets the requirements of a transferable record under the E-Sign Act or applicable state law, such as UETA. The transferable record must contain only the terms and conditions permitted in a paper note, must be signed, and the borrowers must agree that it can be treated as a transferable record under the E-Sign Act or applicable state law.

The transferable record must be created, stored, and assigned in the following manner:

The current ownership and servicer of the debt obligation must be determined either from the electronic record or from a registry associated with the electronic record that is accessible to the servicer, the noteholder, and the borrower. A transfer of ownership rights must require an affirmative action by the noteholder. The noteholder must have access and authority in order to change the identity of the servicer.

QUESTIONS TO CONSIDER REGARDING


THE FREDDIE MAC GUIDELINES

Eric Richard • General Counsel • (202) 508-6742 • erichard@cuna.com


Mary Mitchell Dunn • SVP & Associate General Counsel • (202) 508-6736 • mdunn@cuna.com


Jeffrey Bloch • Assistant General Counsel • (202) 508-6732 • jbloch@cuna.com


Catherine Orr • Senior Regulatory Counsel • (202) 508-6743 • corr@cuna.com