Compliance Documentation Gap Report

Prepared for Fayette County School Employees CU | April 02, 2026 | Generated by FinCompliance

0/100
Compliance Documentation Score
14
Errors (must fix)
15
Warnings (should fix)
3
Suggestions

Detailed Findings

[ERROR] DocumentMetadata: Missing required metadata: 'Effective Date'. All compliance documents must include an effective date.
[ERROR] DocumentMetadata: Missing required metadata: 'Last Reviewed'. Examiners check that policies are reviewed regularly.
[ERROR] DocumentMetadata: Missing required metadata: 'Next Review Date'. Demonstrates commitment to ongoing review.
[ERROR] DocumentMetadata: Missing required metadata: 'Approved By'. Documents must show who authorized the policy.
[ERROR] DocumentMetadata: Missing required metadata: 'Version'. Version control is required for audit trail.
[ERROR] BSA_FivePillars: BSA/AML policy is missing required pillar: 'Internal Controls'. FFIEC BSA/AML Examination Manual requires all five pillars. (FFIEC BSA/AML Manual, Core Overview)
[ERROR] BSA_FivePillars: BSA/AML policy is missing required pillar: 'Independent Testing'. FFIEC BSA/AML Examination Manual requires all five pillars. (FFIEC BSA/AML Manual, Core Overview)
[ERROR] BSA_FivePillars: BSA/AML policy is missing required pillar: 'Designated BSA Compliance Officer'. FFIEC BSA/AML Examination Manual requires all five pillars. (FFIEC BSA/AML Manual, Core Overview)
[ERROR] BSA_FivePillars: BSA/AML policy is missing required pillar: 'Customer Due Diligence'. FFIEC BSA/AML Examination Manual requires all five pillars. (FFIEC BSA/AML Manual, Core Overview)
[WARNING] BSA_SARRequirements: SAR section may be missing: 'SAR filing threshold'. Per 31 CFR 1020.320. (31 CFR 1020.320)
[WARNING] BSA_SARRequirements: SAR section may be missing: 'SAR filing deadline'. Per 31 CFR 1020.320. (31 CFR 1020.320)
[WARNING] BSA_SARRequirements: SAR section may be missing: 'SAR confidentiality'. Per 31 CFR 1020.320. (31 CFR 1020.320)
[WARNING] BSA_SARRequirements: SAR section may be missing: 'SAR retention'. Per 31 CFR 1020.320. (31 CFR 1020.320)
[WARNING] BSA_SARRequirements: SAR section may be missing: 'FinCEN filing'. Per 31 CFR 1020.320. (31 CFR 1020.320)
[SUGGESTION] Line 3: Credit union terminology: Use 'credit union' instead of 'Bank' in credit union documents.
[WARNING] Line 3: Use 'within [X] business days' instead of 'as soon as possible' for regulatory precision.
[ERROR] Line 3: Risky language in BSA/AML document: 'when resources permit'. Examiners interpret this as non-compliance.
[ERROR] Line 5: Risky language in BSA/AML document: 'under development'. Examiners interpret this as non-compliance.
[ERROR] Line 5: Risky language in BSA/AML document: 'we plan to implement'. Examiners interpret this as non-compliance.
[WARNING] Line 5: Use 'within [X] business days' instead of 'in a timely manner' for regulatory precision.
[WARNING] Line 9: Unassigned responsibility: 'We will'. Name the role responsible (e.g., 'The BSA Officer shall...').
[WARNING] Line 9: Vague regulatory reference: 'per applicable regulations'. Include specific section/part numbers (e.g., '31 USC 5311', '12 CFR 1020.220').
[WARNING] Line 9: Use 'at least [quarterly/monthly/annually]' instead of 'periodically' for regulatory precision.
[WARNING] Line 13: Use 'when [specific trigger condition]' instead of 'as needed' for regulatory precision.
[ERROR] Line 13: Risky language in BSA/AML document: 'budget permitting'. Examiners interpret this as non-compliance.
[ERROR] Line 13: Risky language in BSA/AML document: 'if staffing allows'. Examiners interpret this as non-compliance.
[WARNING] Line 15: Use 'customer information' instead of 'Customer Info' for regulatory precision.
[SUGGESTION] Line 15: Credit union terminology: Use 'member' instead of 'Customer' in credit union documents.
[WARNING] Line 17: Use 'customer information' instead of 'customer info' for regulatory precision.
[SUGGESTION] Line 17: Credit union terminology: Use 'member' instead of 'customer' in credit union documents.
[WARNING] Line 17: Vague regulatory reference: 'per federal regulations'. Include specific section/part numbers (e.g., '31 USC 5311', '12 CFR 1020.220').
[WARNING] Line 19: Date format appears inconsistent. Use YYYY-MM-DD or Month DD, YYYY consistently.

What These Findings Mean

Each error represents a gap that NCUA or OCC examiners are likely to cite as a finding during your next examination. Errors include missing required policy elements, prohibited language suggesting incomplete compliance, and structural issues that prevent examiner review.

Warnings are issues that weaken your documentation but may not result in a formal finding. These include vague language, unspecified timeframes, and unassigned responsibilities that make policies harder to enforce and audit.

Recommended Next Steps

  1. Address all errors before your next examination cycle
  2. Review warnings with your compliance officer or committee
  3. Consider a full documentation suite review across all compliance policies

Want a full compliance documentation audit?

FinCompliance checks your entire policy suite against BSA/AML, SOX, PCI-DSS, GLBA, and NCUA requirements. Get a complete gap analysis with specific remediation steps.

Contact: bipinrimal314@gmail.com | github.com/BipinRimal314/comply

This report was generated by FinCompliance v0.1.0 — the first open-source compliance documentation linter for financial institutions. The analysis covers document structure, regulatory language, required elements, and policy completeness. It is not a substitute for legal or compliance advice.

Report generated: 2026-04-02 11:47:35 UTC