If your organization qualifies as an ACH Third-Service Provider, including a Third-Party Sender, you are required to conduct an annual ACH Audit by NACHA.
NACHA Operating Rules & Guidelines Subsection 1.2.2 Audits of Rules Compliance: “A Third-Party Service Provider, including a Third-Party Sender, that has agreed with a Participating DFI to process Entries must annually conduct, or have conducted, an audit of its compliance with these Rules in accordance with Appendix Eight (Rule Compliance Audit Requirements).
NACHA Operating Rules & Guidelines Appendix Eight- Rule Compliance Audit Requirements: “Participating DFIs, Third-Party Service Providers, and Third-Party Senders must comply with all provisions of these Rules and conduct an audit of compliance on an annual basis. This audit obligation is not limited to compliance with any specific rule or group of rules, and the descriptions of rules contained within this Appendix Eight are not intended to modify or limit the language of the Rules themselves or the obligation of Participating DFIs, Third-Party Service Providers or Third-Party Senders to comply with, or to audit compliance with, such rules… For Third-Party Service Providers and Third-Party Senders, these audit requirements apply only to the ACH functions that they perform on behalf of a Participating DFI and the performance of any obligations of an ODFI under these Rules. References in this Appendix Eight to audit of an ODFI or RDFI performance therefore also apply to Third-Party Service Providers and Third-Party Senders acting on behalf of a Participating DFI.”
GACHA has been performing third-party service provider audits for over 20 years. As a Regional Payments Association, GACHA is uniquely positioned to provide your organization with the highest quality of audit and advisory services.
Request a Proposal Learn More About Consulting Services