On January 12, 2017, the SEC’s Office of Compliance Inspections and Examinations (“OCIE”) announced its examination priorities for 2017. This year’s priorities are focused around three topics: (1) retail investors, (2) senior investors and retirement investments, and (3) market-wide risks. These priorities affect investment advisers, investment companies, broker-dealers, transfer agents, clearing agencies, private fund advisers, national securities exchanges, and municipal advisers.
Protecting retail investors remains a primary concern of OCIE. So it’s no surprise that its detailed areas of focus continue to include: risks related to electronic investment advice (i.e. “robo-advising”), “wrap fee” programs where investors are charged a single fee for bundled advisory and brokerage services, and “Never-Before Examined Investment Advisers,” an initiative started in 2014. OCIE will also continue to focus on its Exchange-Traded Funds (ETFs).
To protect senior investors, OCIE will continue its ReTIRE initiative with focuses on investment … Read More »
SEC Charges Investment Adviser with Failure to Adopt Proper Cybersecurity Policies and Procedures Prior to Cyberattack
On Tuesday, September 22, 2015, the SEC charged an investment adviser with failing to adopt a written policy and procedure reasonably designed to safeguard customer records and information. The charge spawned from a July 2013 cyberattack on the investment adviser’s third party-hosted server, which potentially compromised the personally identifiable information (“PII”) of over 100,000 individuals stored on the server. Without admitting or denying the SEC’s findings, the investment adviser has agreed to settle the charge for approximately $75,000 and cease and desist from committing or causing any future violations of the SEC’s “Safeguards Rule.”
Rule 30(a) of Regulation S-P (the “Safeguards Rule”) requires every investment adviser registered with the SEC to adopt written policies and procedures reasonably designed to safeguard customer records and information. Specifically, the policies and procedures must be reasonably designed to: (1) insure the security and confidentiality of … Read More »