The SEC’s OCIE recently issued a Risk Alert focusing on compliance issues related to Regulation S-P, the primary SEC rule governing compliance practices for privacy notices and safeguard policies for investment advisers and broker-dealers. The Risk Alert summarizes the OCIE’s findings from two-year’s worth of issues identified in deficiency letters to assist investment advisers and broker-dealers in adopting and implementing effective policies and procedures for safeguarding customer records and information pursuant to Regulation S-P.
In this alert, partner Jim Lundy outlines the Regulation S-P requirements, the OCIE’s Regulation S-P findings and key takeaways for SEC registrants.
Last month the SEC’s Office of Compliance Inspections and Examinations (OCIE) issued its “2019 Examination Priorities.” The release of OCIE’s 2019 Priorities this year was earlier than in years past. In retrospect, the date of issuance being the last day before the vast majority of the SEC staff was furloughed may just be coincidental, but the federal government shutdown allowed the industry more time to study OCIE’s 2019 Priorities for compliance planning for the upcoming year. Another impact of the shutdown and furloughs in an area directly related to OCIE’s first priority is that the SEC’s efforts and the timing of the finalization of the Reg BI proposals have very likely been slowed as well. The recent ending of the SEC furloughs and OCIE’s continuing prioritization of retail and retirement regulatory issues presents us with an opportune time to re-visit these important topics.
Continue reading “The Continuing Convergence of Retail and Retirement Regulatory Oversight”
In August 2017, the SEC’s Office of Compliance Inspection and Examinations (OCIE) issued a Risk Alert outlining observations from its “Cybersecurity 2 Initiative,” which was built upon its 2014 “Cybersecurity 1 Initiative.” Notably, this alert offered a rare industry compliment, describing “an overall improvement” in cybersecurity practices and processes since the Cybersecurity 1 Initiative. Below we summarize the OCIE staff’s observations, certain criticisms and their descriptions of robust policies, procedures and practices.
Continue reading “The SEC’s 2017 Cybersecurity Alert and New Cyber Unit”