Inadequate Supervision and Communication Review Procedures Result in Fines
RIAs
Compliance Operations
January 31, 2024
The Case
The firm failed to establish and maintain a supervisory system, including written procedures, to comply with the firm’s obligation to review correspondence and internal communications.
The firm’s written procedures failed to set forth the necessary steps to add accounts to the review queue, identify the departments or personnel responsible for those steps, or identify any requirements for when personnel should take those steps.
The lack of reasonable written procedures caused miscommunications between multiple departments about whether email accounts had been placed in the queue and which department was responsible for carrying out particular steps required to place an account in the queue.
Why Does This Matter?
The action reflects a continued focus on off-channel communication (including emails, chats, SMS messages, social media posts, and other ad hoc, person-to-person communications). It is a cautionary tale for FINRA members who may not fully comply with Rule 3110 covering the examination, documentation, and retainment of electronic correspondence.
Importantly, this follows expanded guidance on e-communications recordkeeping and supervision rules published in September 2021 during the pandemic. Given this regulatory environment, fintechs should remain aware of the report’s baseline electronic communications rules and emerging expectations to ensure comprehensive program design and implementation.
InnReg's Experience
InnReg has over a decade of experience developing effective supervisory frameworks for fintechs based on a systematic approach to identifying risks, implementing effective controls, and enhancing internal documentation to reduce regulatory burdens. InnReg’s compliance consulting services empower fintechs to enhance policies, processes and technologies used for e-communications compliance.
Learn More About This Topic
For additional insights, read InnReg’s detailed Fintech Compliance Checklist to understand key compliance risks governing how firms manage and monitor e-communications, amongst others.
Blockchain
On December 30, 2024, the US Department of the Treasury and the IRS issued final regulations focused on decentralized finance (DeFi) platforms and their role in digital asset transactions.
RIAs
The Securities and Exchange Commission announced charges against nine investment advisors and three broker-dealers for failures by the firms and their personnel to maintain and preserve electronic communications in violation of recordkeeping provisions of the federal securities laws.
RIAs
The SEC’s order finds that, from at least October 2018 until January 2022, an investment advisory firm stated in its offering materials and other documents provided to prospective and existing private fund investors that it was voluntarily complying with AML due diligence laws despite those laws not applying to investment advisors.
