February 2026

• 11004 - Pre-Screened Offers of Credit or Insurance (REDLINED)

January 2026

• Overview of Changes (January 2026)
• 7330 - Residential Real Estate Loans (REDLINED)
• 7351 - Small Creditor Ability to Repay (REDLINED)
• 9200 - Regulation C: Home Mortgage Disclosure Act (REDLINED)
• 9220 – Home Ownership and Equity Protection Act

December 2025

There have been a number of updates in November and December of 2025. The overview document provides additional details on these changes.

• Overview of Changes (November 2025 - December 2025)
• 1520 - Succession Planning (REDLINED)
• 1520.10 - Succession Plan (REDLINED)
• 2210.14 - Health Savings Accounts (REDLINED)
• 2611 - ACH Operations and Management (REDLINED)
• 2612 - ACH Audit (REDLINED)
• 7302 - Real Estate Appraisals (REDLINED)
• 7350 - Ability to Repay (REDLINED)
• 7370 - HOEPA Rule Requirements (REDLINED)
• 9220 - Home Ownership and Equity Protection Act (REDLINED)
• 9420 - Regulation D: Monetary Control Act (REDLINED)
• 1100.12 - Board of Director's Duties (REDLINED)
• 1100.15 - Education and Volunteer Training Guidelines (REDLINED)

November 2025

• 2245 Elder and/or Vulnerable Adult Protections (REDLINED)
• 2290 Wire Transfers (REDLINED)
• 4500 - Artificial Intelligence (REDLINED)
• 7510 - Collection Process (REDLINED)

Quarterly Update (June - October, 2025)

October 2025

•  Overview of Changes (June 2025 - October 2025).docx
•  1615 - Privacy and Confidential Information (REDLINED).docx
•  2225 - Digital Banking (REDLINED2).docx
•  2225.10 - Anti Phishing (REDLINED).docx
•  4120 - Information Security (REDLINED).docx
•  4125 - Incident Response (REDLINED).docx
•  7302.10 - Reconsiderations of Value Final (REDLINED).docx

September 2025

•  1100.15 - Education and Volunteer Training Guidelines (REDLINED).docx
•  2400 - Funds Availability (REDLINED).docx

August 2025

•  2110 - BSA-Anti-Money Laundering Program (REDLINED).docx

June 2025

•  4125.10 - Corporate Account Takeover (REDLINED).docx

Quarterly Update (May, 2025)

May 2025

•  Overview of Changes - May 2025.docx
•  1240 - Enterprise Risk Management (REDLINED).docx
•  1520 - Succession Planning (REDLINED).docx
•  1520.10 - Succession Plan (REDLINED).docx
•  1520.20 - Associate Board Member (NEW).docx
•  2145 - Office of Foreign Assets Control (REDLINED).docx
•  2185 - Vendor Management (REDLINED).docx
•  2205 - Unlawful Internet Gambling (REDLINED).docx
•  2223 - COPPA (REDLINED).docx
•  7140 - Loan Add On Products (REDLINED).docx
•  7244 - Integrated-Mortgage-Disclosures-(REDLINED).docx
•  7303 - Real Estate Appraisals Appendices (REDLINED).docx

November 2025

Section 1673 - Full Cyber Incident Life Cycle was updated to change the NCUA ACET link to the CISA CPG Checklist (recommended)

• 1673 - Full Cyber Incident Life Cycle (REDLINED)

January 2025

The NCUA has new cyber incident reporting requirements and an updated webform to make these reports. Sections 1640 and 1654 were updated in response to the availability of the new webform.

•  January 2025 Overview RecoveryPro.docx
•  1640 - Cyber Incident Contacts (REDLINE).docx
•  1654 - Cyber Incident Reporting (REDLINE).docx

November 2024

Several sections of the Cyber Incident Response content had minor updates due to recent examiner feedback. One new section (1663: NCUA Guidance – SAR Reporting in a Cyber Incident) was added to the Model BCP.

•  November 2024 Overview RecoveryPro.docx
•  1600 - Introduction (REDLINED).docx
•  1640 - Cyber Incident Contacts (REDLINED).docx
•  1663 - NCUA Guidance - SAR Reporting in a Cyber Incident (NEW CONTENT).docx
•  1671 - Cyber Incident Scenario Examples (RECLINED).docx
•  1673 - Full Cyber Incident Life Cycle (REDLINED).docx