Key takeaways
- Approval is a snapshot, not a verdict (2026). Under the federal Customer Due Diligence rule, a bank verifies you at opening (31 CFR 1010.230) and then monitors the relationship on an ongoing basis (31 CFR 1020.210). An account approved one week can be reviewed — and closed — later, because the check never really stops.
- "De-risking" is the mechanism, and it's structural. The Financial Action Task Force (FATF) term describes institutions dropping whole categories of customers to avoid risk rather than manage it. A newly formed, non-resident-owned LLC can fall inside such a category — which is how a clean, low-activity account still ends up shut.
- Your "bank" may be a fintech, with two risk appetites stacked (2026). Platforms like Mercury state plainly that they are fintech companies, not FDIC-insured banks themselves, with deposits held at partner banks. So both the fintech's onboarding and the partner bank's compliance can end the relationship. (Mercury received OCC conditional approval for a charter in April 2026, but as of writing it is still in organization — not yet an operating bank.)
- They may not be allowed to tell you why. If a bank filed a Suspicious Activity Report, federal law (31 CFR 1020.320) bars it from revealing that the report exists. "No reason given" can be the law talking, not indifference — though not every silent closure is a SAR.
- Regulators discourage wholesale de-risking but don't ban it. A July 2022 interagency statement told banks that "no customer type presents a single level of uniform risk," yet said it created no new requirements. In what we found, no rule entitles a customer to keep an account open. What you actually control is records, substance, and redundancy.
Why does a bank close an account it already approved?
Because approval was never permanent — the review runs continuously, and the institution can decide the relationship no longer fits its risk appetite. When that decision is made by cutting loose a whole type of customer rather than judging you individually, it has a name: de-risking.
That word is the center of this whole story, and it explains the shock founders keep describing: passed the identity checks, sat clean for months or years, never triggered a dispute — and then a closure notice arrives with no explanation. It reads as personal. Structurally, it usually isn't. Below is what is actually moving underneath, in four parts, followed by the part nobody's page connects to it: what keeps the next account open.
What "de-risking" actually means
The FATF — the body that coined the term — describes de-risking as financial institutions terminating or restricting relationships with clients, or with entire categories of clients, to avoid risk rather than manage it. It is the opposite of the risk-based approach regulators say they want, where a bank weighs each customer case-by-case instead of exiting a whole group at once.
The Treasury Department's 2023 De-risking Strategy (written under Section 6215 of the Anti-Money Laundering Act of 2020) lays out why institutions do it: thin profitability on the segment, reputational risk, a lowered appetite for the category, unclear or burdensome supervisory expectations, and sanctions exposure. The groups it names as most affected — small money-services businesses, nonprofits in high-risk jurisdictions, low-volume foreign financial institutions — share a trait with a non-resident-owned LLC: from a distance, they cost more to monitor than they earn, so the cheapest compliance move is to not bank them at all.
The check never really ends
Founders assume the hard part is getting in. But the CDD rule — the beneficial-owner check at 31 CFR 1010.230 and, separately, the ongoing-monitoring pillar at 31 CFR 1020.210(a)(2)(v)(B) — read with the FFIEC BSA/AML manual, requires more than a one-time gate at opening. It requires ongoing monitoring — to identify and report suspicious activity, and, on a risk basis, to keep customer information current. That's why an approval isn't a lifetime pass. If the picture the bank holds on you drifts from the risk profile it first accepted, the account can be re-reviewed.
The trigger most commonly cited by practitioners is a mismatch the bank can't reconcile — the name or address on your LLC's formation documents not matching the EIN letter, the account application, or the address the IRS has on file. None of that is fraud. It's the kind of paperwork drift that's ordinary for a company run from another country, and it's exactly what an automated monitoring flag is built to catch.
Your "bank" may be a fintech — and that stacks two risk appetites
Here's the structural fact most closure stories miss. Many of the accounts non-resident founders open are not, strictly, bank accounts. They're fintech accounts riding on a partner bank. Mercury, for one, discloses it in its own words: "Mercury is a fintech company, not an FDIC-insured bank. Banking services provided through Choice Financial Group and Column N.A., Members FDIC." Your deposits sit at the partner bank; the fintech is the interface and the onboarding layer.
(Worth noting, because these tiers move: Mercury received OCC conditional approval to establish Mercury Bank, N.A. in April 2026, but as of this writing it is in the bank-organization stage — not yet an operating bank. Structures like this change; confirm the current status before you rely on it.)
Why this matters for closures: a fintech-plus-partner-bank arrangement carries two risk appetites, not one. The fintech decides who it onboards and monitors. The partner bank carries the BSA/AML exam risk for every account booked on its charter — and if a category starts to look expensive to supervise, the partner bank can pull back, which cascades to the fintech's customers in that category. A platform that markets heavily to non-resident founders is, by that same logic, a classic de-risking target: it aggregates exactly the customer type a partner bank may later decide to shed.
This is also why the "closed right after approval, with no deposit ever made" version circulates. Founders on communities like r/llc_life describe fintechs — Slash among the names that come up — approving a non-resident LLC and then closing it within days. We'd treat any specific platform's policy as unconfirmed; those are founder reports, not company statements. What isn't in dispute is the structure: when your account lives on a fintech-and-partner-bank stack, two separate parties can each decide your category is one they'd rather not carry.
They may not be allowed to tell you why
The most maddening part — the silence — often has a legal reason. If a bank filed a Suspicious Activity Report, federal law forbids it from telling you. 31 CFR 1020.320(e) is blunt: "No bank ... shall disclose a SAR or any information that would reveal the existence of a SAR." Even where a disclosure is otherwise permitted, the rule requires that "no person involved in any reported suspicious transaction is notified that the transaction has been reported." The statute behind it is 31 U.S.C. 5318(g)(2).
So "we're unable to share the reason" can be a compliance officer following the law, not brushing you off. Read carefully, though: this cuts one way, not both. A SAR can explain a no-reason closure — but it does not mean every unexplained closure involved one. Plenty of accounts are closed for ordinary risk-appetite reasons that carry no filing at all. The honest read is may be, not must be.
Regulators discourage cutting whole categories — but don't guarantee your account
If de-risking is the opposite of what regulators say they want, why doesn't a rule stop it? Because the guidance is aimed at banks, and it stops short of an entitlement for customers.
In July 2022, five agencies — the FDIC, Federal Reserve, FinCEN, NCUA, and OCC — issued a joint statement reminding banks that "no customer type presents a single level of uniform risk," and encouraging them to manage relationships case-by-case rather than declining service to entire categories. It's the clearest signal yet that blanket exits are disfavored. But the same statement says it does not change existing BSA/AML requirements and does not create new supervisory expectations — in other words, it carries encouragement, not enforcement.
That's the tension worth internalizing. In what we found, there is no safe harbor that requires a bank to keep a specific customer, and a standard deposit-account agreement typically lets a bank close an account at its discretion, often without stating a reason. Regulators would prefer institutions manage your risk rather than avoid it. Whether a given institution actually does is its own call — which is why the practical answer lives in what you control, not in the guidance.
Why the non-resident LLC ends up in the crosshairs
Stack the signals and it's easy to see how a perfectly legitimate company lands in a "higher-risk" bucket: no US physical presence, a registered-agent address used as the business address, and an owner and transaction flow based offshore. Each is normal for a founder building into the US from abroad. Together they read, to a monitoring system, as a profile that's harder and costlier to verify over time.
Two of those signals are addressable, and they're where the companion pieces come in. The identity check that decides your first account — the beneficial-ownership certification a bank runs under 31 CFR 1010.230 — is a separate obligation we take apart in the beneficial-ownership brief on opening your first US account. And the address problem — a bank asking for a real location, not a legal one — is its own trap, covered in using a registered agent address as your business address. Closure is the mirror image of opening: the same profile that made the gate hard is the one a monitoring system keeps re-scoring after you're in.
This is general information about US financial-regulation and anti-money-laundering rules and common banking practice — not legal, tax, or banking advice. Whether a specific institution opens, keeps, or closes your account turns on that institution's own policies and your circumstances. Confirm both with the provider and a US cross-border professional before you rely on any of this.
What actually saves the account
Since you can't compel a bank to keep you, the useful question is what lowers the odds of a re-review going against you — and what to do the moment one does. Four moves, in order of leverage.
1. Reconcile every record before it's checked. The closure trigger practitioners cite most is a mismatch the bank can't square. So square it yourself, in advance: the legal name and address on your LLC's formation documents, the EIN confirmation letter (CP 575), the address on the bank application, and the address the IRS has should all say the same thing. Drift between them is ordinary for a company run remotely — and it's precisely what an automated monitoring flag exists to surface. Fixing it is free and it's the single highest-leverage thing on this list.
2. Give the account a reason to exist. A dormant, zero-balance account owned from offshore reads as higher-cost-to-monitor than one with steady, explainable activity. Fund it. Keep invoices and contracts that describe what the business does. You're not gaming anything — you're giving a monitoring system the context that turns an anomaly into a normal small business.
3. Don't run on one rail. The most damaging part of a closure isn't losing a provider; it's the funds sitting frozen while you scramble to open somewhere new. A second banking relationship — ideally not on the same partner-bank stack — means one provider exiting your category is an inconvenience, not a shutdown. Redundancy is the cheapest insurance against a decision you can't appeal.
4. Have a closure-response plan. If a notice arrives, move quickly: closures often come with a short window before the account is frozen, so transfer funds and export statements immediately. Then keep your tax filings consistent — the same LLC's Form 5472 and any 1099s ride on the same identity and address that just got flagged, so a mismatch there compounds the banking one. Treat the closure as a records problem to clean up before the next application, not a personal verdict to argue with.
Threaded through all four is one stable layer that no rule change touches: an address you actually monitor. A US business address that's consistent across your formation docs, your bank, and the IRS removes one of the mismatch signals in move one — and it's where the mail from a closed account (final statements, tax notices, the next bank's correspondence) has to land so you can act on the short timelines above. On the US side, our partner SaveOffice handles that address layer — Auteur doesn't run the US service directly — and you can see how it works on the US virtual office page. To be exact about what it does and doesn't do: an address won't stop a bank from de-risking your category, and it won't stand in for the beneficial-owner identity check. It solves the address signal and keeps the paper trail reaching you — the parts of this that genuinely run on a location.
FAQ
Why do US fintechs close non-resident LLC accounts? Usually because of de-risking — the practice of dropping a whole category of customer to avoid risk rather than manage it case-by-case. Two things make non-resident LLCs a common target. First, the check is ongoing, not one-time: under the CDD rule's ongoing-monitoring pillar (31 CFR 1020.210) a bank keeps monitoring after opening, so an account can be re-reviewed and closed if the profile no longer fits. Second, many "bank" accounts are actually fintech accounts on a partner bank, which stacks two risk appetites — the fintech's and the partner bank's — either of which can decide your category costs more to supervise than it's worth. It's typically a structural decision about a customer type, not a judgment about you specifically.
Can a bank close your account without giving a reason? Commonly, yes. A standard deposit-account agreement usually lets a bank close an account at its discretion, often without stating why. On top of that, if the bank filed a Suspicious Activity Report, 31 CFR 1020.320 legally bars it from revealing that the report exists — so "we can't share the reason" may be the law rather than rudeness. Two cautions: this doesn't mean every unexplained closure involved a SAR (many don't), and it doesn't mean you have no recourse — you can still move funds, request final records, and open elsewhere.
What should I do if my LLC's US bank account was closed? Move fast on the mechanics, slow on the conclusions. Transfer any balance and download statements before the account is frozen. Make sure your LLC's name and address are identical across your formation documents, EIN letter, and IRS records before you apply anywhere else, since a mismatch is a common re-review trigger. Open a second account on a different stack so you're never single-threaded again. And keep your tax filings — Form 5472, any 1099s — consistent with the identity that was just flagged. Don't assume it was personal; de-risking is usually about a category, not a person.
Bottom line
An approved account is a snapshot, not a lifetime verdict. The CDD rule keeps the review running after you're in, "de-risking" is the structural reason a clean account still gets cut, your provider may be a fintech carrying two risk appetites, and SAR confidentiality can legally seal the reason shut. Regulators discourage banks from exiting whole categories — but, in what we found, nothing entitles a customer to keep the account.
So you can't force a bank to hold you. What you can do is remove the mismatch signals, give the account a reason to exist, keep a second rail ready, and anchor the whole thing to a US address you actually monitor — the one layer under all of this that no rule change moves. Auteur can't stop a bank from de-risking your category, but for US-facing founders our partner SaveOffice can hold that address steady on the US virtual office page, so the stable part is handled while the rules — and the risk appetites — keep shifting around it.



