Regulation E requires financial institutions to provide initial disclosures of the terms and conditions of EFT services. They must disclose the consumer’s liability for unauthorized EFTs, the types of EFTs the consumer may make and any limit on the frequency or dollar amount, fees charged by the institution, and the error-resolution procedures. Institutions must also provide a summary of various consumer rights under the regulation.

Regulation E prohibits financial institutions from issuing an access device unless a consumer has requested it either in writing or orally. However, a renewal or substitute access device may be issued to replace an existing one. Also, an unsolicited access device may be issued under certain conditions (for example, if the device is not active when issued).

If a consumer notifies an institution that an error involving an EFT has occurred, the institution must investigate and resolve the claim within specified deadlines. Errors covered by this requirement include unauthorized EFTs, incorrect EFTs, and the omission from an account statement of an EFT that should have been included. The consumer must file an error claim within 60 days of the date of the account statement on which the error appears. The institution must either resolve the error within 10 business days of receiving the claim, or provisionally credit the consumer’s account and complete the process within 45 calendar days. Different time periods apply to POS and foreign-initiated transfers. The regulation limits a consumer’s liability for unauthorized EFTs (such as those arising from a loss or theft of an access device). The consumer’s liability is generally limited to $50, although it can be $500 or unlimited under certain circumstances.

Regulation E requires documentation in two forms: terminal receipts and periodic statements. Terminal receipts must be provided when a consumer initiates an EFT at an electronic terminal and must include the type of EFT, the amount and date of the transaction, the location of the terminal, and other information. Generally, periodic statements must be sent monthly; under a few circumstances, statements may be sent quarterly. Statements must include the same information required on terminal receipts, as well as certain additional information, and disclose any fees imposed.

Preauthorized transfers are EFTs that recur at substantially regular intervals—for example, direct deposits (such as of salary or benefits) and preauthorized bill payments. Regulation E requires the institution to provide some form of notice so that the consumer can determine whether or not a direct deposit occurred as scheduled. For preauthorized bill payments, the regulation requires the consumer’s advance written authorization, sets forth stop-payment rights, and provides for notices of payments varying in amount. Consumers have certain protections against compulsory use of direct deposit and preauthorized bill payment.

Regulation E contains special rules for two types of EFT services: retail POS EFT services offered by retailers that issue debit cards to their customers, and electronic benefit transfer programs set up by local, state, or federal government agencies. It also contains provisions on relation to state laws, record retention, and administrative enforcement. Appendix B lists the administrative enforcement agencies for the various types of institutions.