FDIC Proposes GENIUS Act Rule for Stablecoin Issuers and Banks

Reference: FIL-11-2026

Official publication: Read the full FIL-11-2026 on the agency website

On April 7, 2026, the FDIC Board of Directors approved a notice of proposed rulemaking that would implement the Guiding and Establishing National Innovation for U.S. Stablecoins Act by establishing standards for FDIC-supervised permitted payment stablecoin issuers and insured depository institutions engaged in payment stablecoin-related activities. The agency’s notice, issued as FIL-11-2026, is available on the FDIC’s website here. The source material confirms Board approval on April 7, 2026 and a 60-day comment period after publication in the Federal Register, but it does not state in the provided materials the actual Federal Register publication date.

Executive Summary

The proposal is consequential because it does more than acknowledge stablecoin activity at the supervisory perimeter. It would create an express FDIC regulatory framework for FDIC-supervised permitted payment stablecoin issuers, define authorized and prohibited activities, impose reserve, capital, risk management, custody, and safekeeping requirements, and establish a general redemption standard requiring payment stablecoins to be redeemed within two business days.

The proposal also addresses a point of immediate legal significance for banks, fintech firms, and customers: FDIC deposit insurance treatment for reserve deposits supporting payment stablecoins. According to the FDIC’s summary, deposits held as reserves backing a payment stablecoin would not be insured to payment stablecoin holders on a pass-through basis. That clarification matters for product design, customer disclosures, contractual allocation of rights, and any public-facing statements about safety and insurance.

Finally, the proposal addresses tokenized deposits and states that deposit insurance analysis does not depend on the technology or recordkeeping method used to record an insured depository institution’s deposit liabilities. That position signals that the FDIC is attempting to separate core deposit-insurance treatment from technological form, while simultaneously imposing specific standards when a bank or FDIC-supervised entity engages in payment stablecoin activity.

What the FDIC Issued

The FDIC issued a notice of proposed rulemaking, not a final rule. On the record provided, the proposal would implement the GENIUS Act for two categories of supervised entities: FDIC-supervised permitted payment stablecoin issuers and insured depository institutions that engage in payment stablecoin-related activities. The statement of applicability in the source material indicates that the FIL applies to all FDIC-supervised financial institutions and all FDIC-insured financial institutions.

The FDIC’s published highlights identify several core components of the proposal.

• The rule would set out authorized and prohibited activities for permitted payment stablecoin issuers.
• It would require a PPSI to maintain identifiable reserve assets.
• It would impose capital and risk management requirements tailored to the size, complexity, and risk profile of the PPSI.
• It would generally require a PPSI to redeem a payment stablecoin within two business days.
• It would implement custodial and safekeeping requirements applicable to FDIC-supervised PPSIs and IDIs.
• It would provide that reserve deposits backing a payment stablecoin are not insured to stablecoin holders on a pass-through basis.
• It would address tokenized deposits and state that deposit insurance treatment does not turn on the technology or recordkeeping used to evidence deposit liabilities.

Those items should be read carefully. Each one carries distinct operational and legal consequences. “Identifiable reserve assets” suggests a segregation, traceability, and records discipline problem, not merely a balance-sheet sufficiency question. “Tailored” capital and risk management requirements suggest that the FDIC is reserving supervisory discretion rather than proposing a one-size-fits-all standard. The two-business-day redemption requirement introduces a measurable liquidity and operations obligation. The rejection of pass-through insurance for reserve deposits speaks directly to customer risk allocation and to the limits of deposit-insurance representations.

The source excerpt also notes related materials, including a Federal Register notice, a document concerning approval requirements for issuance of payment stablecoins by subsidiaries of FDIC-supervised insured depository institutions, and an extension of comment period reference. The excerpt provided here does not describe the contents of those attachments in detail, so any finer points beyond the FDIC’s published highlights would require review of the full attachments themselves.

Why It Matters

For FDIC-supervised institutions, the proposal is important because it moves payment stablecoin activity further into a defined supervisory framework. Institutions considering issuance, custody, reserve management, or other payment stablecoin-related activity should assume that governance, controls, liquidity, and customer disclosure will be examined as integrated regulatory questions rather than as isolated technology initiatives.

The deposit-insurance clarification is especially important. If reserve deposits are not insured to payment stablecoin holders on a pass-through basis, product structures and communications must be tested against that rule from the outset. A bank, issuer, program manager, or distribution partner that implies the stablecoin holder enjoys FDIC insurance by virtue of reserve placement would create immediate legal and supervisory risk if the final rule adopts the proposal as summarized by the FDIC.

The proposal also matters for bank-fintech contracting. Where a bank supports a stablecoin arrangement through reserve accounts, custody, safekeeping, or tokenized deposit infrastructure, agreements will need to allocate responsibility for redemption operations, reserve identification, data integrity, customer-facing disclosures, sanctions and AML controls, incident response, and audit rights. A proposed two-business-day redemption standard cannot be satisfied by legal drafting alone; it requires tested operational capacity, contingency funding assumptions, and clear responsibility mapping across affiliated and third-party actors.

The tokenized deposit portion of the proposal is equally significant. The FDIC’s position, as summarized, is that deposit insurance should not vary based on the technology used to record deposit liabilities. That helps reduce conceptual uncertainty around tokenized deposits, but it does not eliminate supervisory scrutiny. A tokenized deposit program still implicates ordinary deposit law, funds availability, recordkeeping, vendor oversight, information security, customer disclosures, and resolution-readiness questions. The proposal appears to preserve the legal character of a deposit while refusing to let novel recordkeeping obscure insurance analysis.

More broadly, the proposal signals continued federal insistence that stablecoin-related banking activity be judged through existing prudential lenses: safety and soundness, custodial integrity, redemption discipline, and truthful treatment of insurance status. For institutions that have treated stablecoin activity as a product-development issue, the message is that the FDIC views it as a supervisory framework issue.

Practical Action Checklist

1. Inventory every current or proposed payment stablecoin touchpoint, including issuance, reserve accounts, custody, safekeeping, settlement, tokenized deposit functionality, and marketing support.
2. Identify whether the institution could be treated as an FDIC-supervised PPSI, an IDI engaging in payment stablecoin-related activity, or a service provider to one of those entities, and document the basis for that conclusion.
3. Map all reserve arrangements account by account. Confirm title, control, beneficial-interest representations, sweep mechanics, investment permissions, and whether reserve assets are operationally identifiable at all times.
4. Review all customer disclosures, website copy, FAQs, onboarding flows, and partner scripts for any statement that could imply pass-through FDIC insurance for payment stablecoin holders.
5. Test whether redemption can in fact be completed within two business days under normal and stressed conditions, including weekends, holidays, cyber incidents, vendor outages, and elevated redemption volume.
6. Revise board and management reporting so that stablecoin-related activity is separately visible through liquidity, operational risk, compliance, vendor management, and complaint metrics.
7. Update custody and safekeeping controls to document asset segregation, reconciliation cadence, exception handling, access controls, and evidentiary records sufficient for examination review.
8. Review third-party contracts for express allocation of responsibility over reserve management, redemptions, customer disclosures, suspicious activity escalation, information security incidents, and regulator access to records.
9. Analyze tokenized deposit programs separately from payment stablecoin programs. Do not assume identical insurance or operational treatment merely because both rely on distributed or tokenized recordkeeping.
10. Prepare a comment letter only after identifying concrete implementation points that the proposal leaves unresolved, particularly around reserve asset standards, custody expectations, and treatment of mixed bank-fintech operating models.

Open Questions and Watch Items

Several issues remain open on the source record provided. First, the excerpt confirms a 60-day comment period after Federal Register publication, but not the publication date itself. Institutions tracking comment deadlines should confirm the actual Federal Register publication date rather than relying on the April 7, 2026 Board approval date.

Second, the FDIC summary states that capital and risk management requirements would be tailored to the size, complexity, and risk profile of a PPSI, but the excerpt does not provide the proposed calibration methodology. That means institutions should be cautious about assuming how burdensome the final framework will be for smaller or less complex programs.

Third, the phrase “identifiable reserve assets” is central, but the excerpt does not supply the precise proposed mechanics. Questions remain about permissible asset composition, intraday movement controls, treatment of omnibus structures, evidentiary standards for identification, and examination expectations for reconciliation.

Fourth, the proposal addresses tokenized deposits, but the excerpt does not disclose the full boundaries of that treatment. The legal distinction between a tokenized deposit and a payment stablecoin product, while directionally addressed, may still require line-drawing in practice where programs blend deposit, custody, and payment functionality.

My Law Tampa publishes this memorandum as part of its banking and financial services regulatory analysis for the firm’s website.

This memorandum is informational only, is not legal advice, and does not create an attorney-client relationship.