How California Escrow Companies Actually Lose Their Licenses

A study of DFPI enforcement actions: the Escrow Law judges your trust account and your records, not your intentions.

A row of trust ledger pages that stops abruptly, with a magnifying glass over the missing records.

If you hold an escrow license in California, the most useful reading you can do this year is free, public, and sitting on the DFPI's website: the enforcement record. Orders taking possession. Accusations to revoke. Orders barring named individuals from ever working in escrow again.

Most operators never read these documents. That's a mistake, because they answer the question every owner should be asking: when a licensed escrow company dies, what actually kills it?

The answer is almost never the headline event. It's what the Department finds afterward.

Case one: fifteen minutes on the phone

Start with a case the DFPI itself chose to publicize. In its February 2025 Escrow Bulletin on social engineering, the Department described a 2023 incident: a licensed escrow company received a call from someone claiming to be an IT employee at the company's bank. The caller asked staff to log into the online trust account for a "data migration." Within fifteen minutes, the company's internet service was cut. When it came back, multiple outgoing wires had been initiated, close to $2 million diverted from the trust and general accounts.

The company couldn't halt all the wires. It couldn't replace the shortage. The DFPI took it over under conservatorship.

Read that sequence carefully. The company didn't lose its business because it was deceived. Plenty of companies get deceived. It lost its business because, once money left trust, there was a shortage it could not cure, and under Financial Code section 17621, a licensee operating in an insolvent or unsafe condition doesn't get a grace period. The Commissioner takes possession.

The fraud took fifteen minutes. The Escrow Law took everything else.

Case two: the shortage nobody could explain

In another order on the Department's books, the Commissioner took possession of the trust accounts of Escrow Technologies, Inc. after identifying a trust shortage of $3,804,686 that the company lacked the funds to cure. Same statute, same outcome: the DFPI demanded and took possession of the trust accounts, the bank records, the escrow records, everything.

Notice what the order seizes alongside the money: the records. When the Department moves, its first act is to take custody of the paper, because the paper is how it reconstructs what the office did. If the office can't produce that reconstruction itself, someone else will do it, with subpoenas, at the office's expense, in the worst possible light.

Case three: when the records stop, the case writes itself

The Grow Escrow matter, which ended in November 2025 with a license revocation and an order barring the owner from any position of employment, management, or control of any escrow agent, is worth studying for a different reason.

The DFPI's accusation alleged unauthorized disbursements and transfers involving an affiliated company, a $150,000 check into the trust account that bounced, and a trust shortage that went uncured despite repeated demands. But read the charging list and count how many counts are about documentation, not theft:

  • Failure to reconcile trust reports at least monthly (10 C.C.R. § 1732.2)
  • Failure to maintain records
  • Failure to produce escrow records for examination
  • Failure to notify the Department of a change of business address

One detail stands out. When examiners went looking for records, the company's own software vendor told the Department the office had stopped using its escrow platform two years earlier, meaning there were simply no documents after that date. The record didn't just fail to defend the office. The absence of a record became part of the case.

This is the pattern across the enforcement file, going back years: Huntington Beach, Torrance, Palmdale, Beverly Hills. Different facts, different people, same anatomy:

  1. Money leaves trust improperly, through fraud, error, or misconduct.
  2. A shortage exists. Under 10 C.C.R. § 1738.1, the shortage itself is the violation. The regulation does not ask for your story first.
  3. The Department demands the cure and the records.
  4. The office can't produce one, the other, or both.
  5. Possession. Conservatorship. Revocation. And for the individuals involved, a personal, career-ending bar under Financial Code section 17423.

What the Escrow Law actually judges

Here is the uncomfortable insight from reading these documents side by side: the enforcement machinery treats the defrauded and the dishonest almost identically at the start.

A trust shortage caused by a wire fraudster and a trust shortage caused by an owner raiding the account arrive at the Department looking the same: money that should be in trust isn't. What separates the office that survives from the office that gets a conservator is what happens in the hours and days after, and what the office can show.

Three things decide it:

Can you cure? An office that can replenish the shortage immediately has a fraud loss: painful, possibly insurable, survivable. An office that can't has a section 17621 problem.

Did you report? Financial Code section 17414 requires immediate reporting of trust shortages to the DFPI, and licensees must also report to the Escrow Agents' Fidelity Corporation. The Department has said plainly that failure to report is itself grounds for a discontinuance order, suspension, or revocation. Silence converts a bad day into a violation.

Can you show what your office did? Reconciliations, instructions, the review that preceded each disbursement. Every accusation in the file is, at bottom, the Commissioner reconstructing an office's decisions from bank statements because the office couldn't produce the reconstruction itself. An office that can't show its work is procedurally indistinguishable from an office hiding something.

And the scrutiny is widening, not narrowing. With SB 825, California clarified that escrow licensees are not shielded from DFPI enforcement for unfair, deceptive, or abusive practices under the Consumer Financial Protection Law, a broader hook with broader remedies layered on top of the Escrow Law.

The operator's takeaway

The fraud environment is industrialized, and we covered INTERPOL's numbers separately. But the regulatory environment has its own logic, and it's this: the Escrow Law doesn't judge your intentions. It judges your trust account and your records.

That means the most valuable asset an office can build isn't another security tool. It's a durable record, made at the moment of decision, of what happened before each disbursement: what changed on the file, what was checked and against what source, what stayed open, who reviewed it, and what the office decided to do. Made every time, on every eligible file, not reconstructed from memory after the Department calls.

The offices in the enforcement file didn't have that record. Some because someone was hiding something. Some because nobody thought they'd ever need it. The Commissioner's orders don't distinguish between the two.

Yours should exist before anyone asks.

Sources and boundaries

Sources: DFPI Escrow Bulletin, "Social Engineering Scams Targeting Licensed Escrow Companies" (February 11, 2025); DFPI enforcement actions and orders published at dfpi.ca.gov, including In re Grow Escrow, Inc. (revocation and bar orders, November 2025) and In re Escrow Technologies, Inc. (order taking possession); DFPI Escrow Law Advisory Committee meeting minutes (December 10, 2025). Figures and allegations are as stated in the Department's published documents.

See a sample Review Record.

One page showing what changed, what was checked, what stayed open, and who reviewed it.