Skip to content

Scam Calls:

We’ve received reports that scammers are spoofing our phone number (844-277-8860) and posing as one of our team members. We will never ask for account numbers, card numbers, PINs, passwords, or online banking credentials. If you receive a suspicious call, hang up and contact your local branch directly. If you shared personal information, please call us immediately.

Closings:

All Security First Bank and Insurance locations will be closed on Monday, February 16th in observance of Presidents’ Day. For access to your account, please use our Online and Mobile Banking, ATMs, and night drop boxes. Regular business hours will resume on Tuesday, February 17th.

Posted November 13, 2025 in Banking Updates

ACH Rules for Originators

ACH Rules for Originators

Upcoming 2026 ACH Rule Updates: What Businesses Need to Know

As part of Security First Bank’s ongoing commitment to helping your business stay informed and compliant, we want to make you aware of upcoming changes to the ACH Network Rule that may affect how your company processes payments through ACH Origination.

The National Automated Clearing House Association (NACHA) has announced several amendments that will take effect in 2026, with the goal of enhancing transparency, security, and fraud prevention across the ACH Network.

Although these changes are more than a year away, preparing early will help ensure a smooth transition and continued compliance for your business.

Key Rule Changes for 2026

  1. Origination Fraud Monitoring

Effective Dates:

  • March 20, 2026 – Applies to companies originating 6 million or more ACH transactions in 2023.
  • June 19, 2026 – Applies to all companies, regardless of origination volume.

This new rule requires ACH Originators to implement risk-based processes and procedures to identify potentially unauthorized payments or payments authorized under false pretenses.

Examples of fraud schemes targeted by this rule include:

  • Business Email Compromise (BEC)
  • Vendor or Payroll Impersonation
  • Social Engineering or Payment Redirection

While the ACH Rules do not mandate a specific type of monitoring, businesses are expected to take reasonable steps to detect suspicious activity and to review and update their procedures regularly.

2. Standard Company Entry Descriptions 

Effective Date: March 20, 2026

To promote consistency and clarity for recipients, NACHA now requires specific language in the Company Entry Description field for certain transaction types:

  • PAYROLL – Required for wage and salary payments (PPD credits)
  • PURCHASE – Required for online or e-commerce retail transactions (WEB debits)

Updating systems and staff procedures in advance will help ensure compliance when these new standards take effect.

What You Can Do to Prepare

To get ready for these upcoming changes, we recommend that your business:

  • Review and update ACH origination procedures.
  • Educate employees on recognizing and responding to potential fraud attempts.
  • Implement or enhance monitoring and dual control processes for ACH payments.
  • Coordinate with your software provider or internal IT department to ensure systems can accommodate the new entry description requirements.

Learn More

To read the full summary of NACHA’s 2025 ACH Rules Update, download the official publication below:

2025 ACH Rules Update for Corporate Originators and Third-Party Senders (EPCOR PDF)

For additional guidance or to discuss how these changes may impact your business, please contact our CorpLink Banking Team at 844-277-8860.