Starting an online bank in the United States requires either obtaining your own banking charter or partnering with an existing chartered bank through a Banking-as-a-Service (BaaS) arrangement. The path you choose determines your regulatory burden, startup costs, timeline, and how much control you have over the customer experience. Either way, you’re looking at a multimillion-dollar undertaking that involves federal regulators, complex technology infrastructure, and ongoing compliance obligations.
Two Paths: Bank Charter or BaaS Partnership
The first decision you’ll make is whether to become a fully chartered bank or operate as a fintech company that offers banking products through a licensed partner bank. This choice shapes everything else about your business.
A full banking charter, issued by either the Office of the Comptroller of the Currency (OCC) for a national charter or a state banking regulator for a state charter, makes you an independent bank. You can offer FDIC-insured deposit accounts and lending products under your own license. You control the entire operation, from the ledger to the customer relationship. The tradeoff is a rigorous, expensive, and slow approval process. Varo, one of the few neobanks to obtain a national charter, spent three years and multiple rounds of applications before receiving FDIC approval.
The BaaS model is far more common among digital banking startups. A BaaS platform connects your company to a chartered bank through APIs, letting you build financial products on top of the bank’s regulated infrastructure. You handle the customer-facing experience, compliance implementation, and end-user support, while the partner bank provides the license, deposit insurance, and settlement capabilities. Companies like Chime and many other neobanks launched this way. It’s faster to market and requires less capital upfront, but you’re dependent on a third party for core banking functions, and regulators have been increasing scrutiny of these partnerships.
Capital Requirements for a New Charter
If you pursue your own charter, the FDIC does not set a single minimum dollar amount for initial capital. Instead, it evaluates each application individually based on your business plan, management team, market competition, anticipated size, and the complexity of your activities. A proposal with a specialty or limited business model will face higher capital requirements than a conventional community bank.
What the FDIC does require is that your initial capital be sufficient to maintain a Tier 1 capital-to-assets leverage ratio of at least 8 percent throughout your first three years of operation. In practical terms, if you project $100 million in assets by year three, you need at least $8 million in Tier 1 capital to support that. Most de novo (newly chartered) banks raise between $10 million and $30 million in initial capital, though online banks with ambitious growth plans often raise significantly more to cover technology development, marketing, and the inevitable early-year losses before reaching profitability.
For the BaaS route, your capital needs are different. You’re not meeting banking capital ratios, but you still need venture funding or other investment to build your technology platform, hire a team, cover partner bank fees, and sustain operations until revenue catches up. Most fintech banking startups raise a seed round of $1 million to $5 million to get to launch, with larger rounds following as they scale.
The Charter Application Process
Applying for a national bank charter through the OCC is a multiphase process that typically takes 12 to 18 months at minimum, though it can stretch much longer. The OCC’s Comptroller’s Licensing Manual lays out the policies and procedures for each stage, and applications are submitted through the Central Application Tracking System (CATS).
Before filing a formal application, the OCC expects you to schedule a prefiling meeting where you present your business plan, proposed management team, and capitalization strategy. This meeting lets examiners flag issues early and gives you a chance to refine your proposal before committing to the full application.
The formal application itself requires extensive documentation: a detailed three-to-five-year business plan with financial projections, biographical and financial information on all proposed directors and officers, proof of capital commitments, your compliance management framework, and your technology and cybersecurity plans. You’ll also need to demonstrate that your proposed management team has the banking experience and qualifications regulators expect. A team of fintech entrepreneurs with no banking veterans will face an uphill battle.
If you’re applying for a national charter, you’ll simultaneously apply to the FDIC for federal deposit insurance. The FDIC conducts its own independent review using the same six criteria it weighs for all deposit insurance applications: financial history and condition, capital adequacy, future earnings prospects, management quality, community convenience and needs, and risk to the Deposit Insurance Fund.
Building the Technology Stack
An online bank’s technology infrastructure replaces the branch network of a traditional bank. Your core banking system is the foundation. It manages the ledger for every customer account, processes transactions, calculates interest, and feeds data to your compliance and reporting systems.
You have three options for core banking technology. Most neobanks rely on established providers like FIS, Fiserv, or Jack Henry, which offer cloud-based core banking platforms designed for digital-first institutions. A smaller number use newer fintech-focused platforms like Mambu or Thought Machine, which were built specifically for modern architectures. Only a handful of neobanks, such as Current and Stash, have built their own core banking systems from scratch. Building your own gives you maximum flexibility but requires a large engineering team and significantly more time and money.
Beyond the core, you’ll need to assemble several other technology layers:
- Payment processing: A card issuer processor like Marqeta or Galileo that powers debit card transactions and connects to card networks like Visa or Mastercard.
- Identity verification and KYC: Tools that verify customer identities when they open accounts, using document scanning, database checks, and biometric matching to meet Know Your Customer requirements.
- Fraud detection: Real-time transaction monitoring that flags suspicious activity before losses occur.
- Customer-facing apps: Mobile and web applications that customers actually use to check balances, send money, and manage their accounts.
- Data infrastructure: Systems for storing, securing, and analyzing customer and transaction data in compliance with privacy regulations.
The more operations you can control directly, the less you expose yourself to third-party risk. Regulators have been paying close attention to this. The OCC has ordered banks to better monitor their fintech partnerships and manage the risks those relationships create for customers.
Compliance Framework
Whether you hold your own charter or partner with a bank, you’ll operate under a web of federal compliance requirements. Getting this wrong can shut down your business, so compliance infrastructure needs to be built alongside your product, not bolted on afterward.
Federal regulators jointly published guidance outlining six due diligence areas for digital banking operations: business experience and qualifications, financial condition, legal and regulatory compliance, risk management and controls, information security, and operational resilience. These categories apply both to the bank itself and to any third-party fintech relationships the bank maintains.
Privacy rules under Regulation P require you to disclose how you collect, share, and protect customers’ nonpublic personal information. You need a clear privacy policy, and you must give customers the ability to opt out of certain information sharing.
If your customers sign agreements or receive disclosures electronically, the E-Sign Act governs how that works. You must follow a six-step consumer consent process before delivering required documents electronically rather than on paper. Skipping steps in this process can invalidate the electronic records.
Anti-money laundering compliance requires a robust program for monitoring transactions, filing suspicious activity reports, and verifying the identities of account holders. You’ll need dedicated compliance staff or outsourced compliance support from day one, and your systems must be able to flag unusual patterns across potentially millions of transactions.
Costs and Timeline to Launch
The total cost to launch an online bank varies dramatically based on your chosen model. A BaaS-powered neobank can reach market in 6 to 12 months with $2 million to $10 million in funding, though scaling will require additional rounds. A chartered bank will take three or more years from initial planning to accepting its first deposit, with total costs that can easily reach $20 million to $50 million when you factor in capital reserves, legal and consulting fees, technology development, and pre-revenue operating expenses.
Legal costs alone for a charter application typically run $500,000 to $1 million or more, covering regulatory attorneys, application preparation, and ongoing counsel during the review period. Technology buildout for the core platform, mobile apps, and compliance systems can range from $1 million for a BaaS integration to $10 million or more for a proprietary stack.
Staffing is another major line item. You’ll need experienced bankers for your executive team and board, compliance officers, engineers, product managers, and customer support staff. Regulators specifically evaluate management quality, so hiring seasoned banking professionals for key roles isn’t optional.
Choosing the Right Path for Your Situation
If your goal is to test a banking concept quickly and you have a strong technology team, the BaaS partnership model lets you reach customers faster with less capital. You’ll sacrifice some control over the banking infrastructure, and your margins will be thinner because you’re paying partner bank fees, but you avoid the years-long charter process.
If you’re building for long-term independence, a full charter gives you direct control over your products, pricing, and compliance. It also gives you the ability to hold deposits and lend directly, which creates a fundamentally different (and potentially more profitable) business model. The barrier is high: regulators want to see experienced leadership, substantial capital, and a credible plan for reaching profitability within a few years.
Many successful online banks started with a BaaS partnership and later pursued their own charter once they had proven their model and built the operational maturity regulators expect. That hybrid approach lets you generate revenue and build a track record while laying the groundwork for eventual independence.