Skip to content
veetso.
Jurisdiction · United States

The US market, under the partner-bank pattern.

The United States is one of Veetso's areas served. The San-Francisco-based engineering team carries the US-facing product work; regulated services are delivered through partnerships with US-chartered institutions under the federal and state frameworks that apply to each service. Veetso itself is not a chartered US financial institution.

Operating presence
San Francisco
Federal regulators
FinCEN · OCC · CFPB · FTC
State regulators
NYDFS and other state DFS / DBO equivalents
Key statutes
BSA · GLBA · ECOA · Reg E · UDAAP
Privacy
CCPA / CPRA in California; state by state elsewhere
Time zone
Pacific Time (San Francisco)
  1. Regulatory framework

    Federal and state, in parallel.

    US financial services sit under a parallel federal-and-state supervisory structure. At the federal level, the Financial Crimes Enforcement Network (FinCEN) supervises anti-money-laundering compliance under the Bank Secrecy Act; the Office of the Comptroller of the Currency (OCC) supervises nationally-chartered banks; the Consumer Financial Protection Bureau (CFPB) supervises consumer financial products under federal consumer-protection statutes; and the Federal Trade Commission (FTC) supervises unfair-or-deceptive practices.

    At the state level, each state has its own banking or financial-services regulator (the New York Department of Financial Services is the most consequential for fintech; California, Massachusetts, Illinois, and Texas all matter too) and its own money-transmitter and lender-licensing regimes. Working in the US under the partner-bank pattern means engaging with both the federal regulators that supervise the partner and the state regulators that govern the customer-facing activity.

    Veetso AI governanceAI in payments compliance (essay)
  2. Partner pattern

    US-chartered institutions hold the regulated permission.

    The partner-bank pattern is now the dominant model for non-chartered fintech firms operating in the US. Regulated services (deposit accounts, payments, debit and credit card programmes, money transmission) are provided by a US-chartered institution; the fintech operates the customer-facing technology layer; the supervisory responsibility for the regulated activity sits with the bank.

    The OCC, Federal Reserve, and FDIC have published interagency guidance on third-party risk management that governs how partner-bank arrangements are supervised. Veetso's controls system was designed against that guidance.

  3. AI-specific framework

    Federal AI orders and the state patchwork.

    US AI policy is a moving target. The federal executive actions on AI (the 2023 Executive Order, the 2025 revisions, and the NIST AI Risk Management Framework) set the supervisory expectations at the federal level; state-level AI bills (notably Colorado's AI Act, California's SB 1047 successors, and New York's AI legislation) layer additional obligations on top.

    Veetso's governance posture (six gates, hash-chained audit log, vendor due diligence, source attribution) maps to the NIST AI RMF and to the patterns the OCC and CFPB have signalled in their model-risk and consumer-protection guidance.

    The six gates (essay)Security
Working with us

Operating in Pacific Time from San Francisco.

US enquiries reach the San Francisco team fastest during West Coast business hours. Press to press@veetso.com; general enquiries to info@veetso.com.

San Francisco officeLeadership