Rules

Rules

 

NEACH is your source for information on recent and upcoming changes to the NACHA Operating Rules. Stay informed about ACH payment requirements, review current and upcoming Rules, including each Rule’s impact and details, as well as quickly access additional information from NACHA – The Electronic Payments Association, from one convenient location.

Jan 5
2023
Micro-Entries (Phase 2)

The Micro-Entry Rule defines and standardizes practice and formatting of Micro-Entries, which are used by some ACH Originators as a method of account validation.

Phase 2 of this Rule will be effective March 17, 2023

Originators of Micro-Entries will be required to use commercially reasonable fraud detection, including the monitoring of Micro-Entry forward and return volumes

Sep 2
2022
Third-Party Sender Roles and Responsibilities

This Rule clarifies the roles and responsibilities of Third-Party Senders (TPS) in the ACH Network by addressing the existing practice of Nested Third-Party Sender relationships, and making explicit and clarifying the requirement that a TPS conduct a Risk Assessment.

The Rule is effective September 30, 2022, with a 6-month grace period for certain aspects of each topic.

Sep 1
2022
Micro-Entries (Phase 1)

This Rule defines and standardizes practices and formatting of Micro-Entries, which are used by some ACH Originators as a method of account validation. The term Micro-Entry is defined, and Originators are required to use the standard Company and Description and follow origination practices.

May 1
2022
Supplementing Data Security Requirements

This rule supplements previous ACH Security Framework data protection requirements by explicitly requiring large, non-FI Originators, Third-Party Service Providers (TPSPs) and Third-Party Senders (TPSs) to protect deposit account information by rendering it unreadable when it is stored electronically.

Beginning June 30, 2022, this rule applies to those with ACH volume of 2 million transactions or greater annually.

Dec 18
2021
Account Information Security Requirements (Phase 2)

This rule supplements previous ACH Security Framework data protection requirements by explicitly requiring large, non-FI Originators, Third-Party Service Providers (TPSPs) and Third-Party Senders (TPSs) to protect deposit account information by rendering it unreadable when it is stored electronically.

Implementation began with Phase 1 which applies to those with ACH volume of 6 million transactions or greater annually. Phase 2 applies to those with ACH volume of 2 million transactions or greater annually.

12345

Theme picker