Electronic Communications: Trending Fines in the Industry
“Finance, ultimately, depends on trust. By failing to honor their recordkeeping and books-and-records obligations, the market participants we have charged today have failed to maintain that trust.” Securities and Exchange Commission Chair, Gary GenslerOver the past two years there has been a resounding increase in violations surrounding the Securities and Exchange Commission's ongoing recordkeeping initiative due to failure to preserve electronic communications. September 2024's release, twelve firms were charged $88 million for electronic communication deficiencies following August 2024's release of twenty-six firms were charged with longstanding failures by the firms and their personnel to maintain and preserve electronic communications totaling $392.75 million in civil penalties. September 2023' release announced ten firms charged for widespread and longstanding failures to maintain and preserve electronic communications, totaling $79 million in fines and penalties. September's release came on the tailwind of August 2023's release where the SEC charged eleven firms with penalties totaling $289 million. The fines and penalties from 2024 and 2023, in conjunction with the total fines and penalties from 2022, brings the tally to over $2.1 billion and over 80 enforcement actions. In reviewing these enforcement actions, the commonalities are:
- Failure to reasonably supervise, with a view to prevent and detect violations of federal securities laws.
- Failure to maintain and preserve business communications, whether it be internal or external communications.
- Inadequate policies, procedures, and controls that are compliant and designed to detect and prevent violations.
- The Advisor opts to completely ban the use of personal devices and/or other various off-channel communication applications. Examples of certain control measures that can be put into place regarding this policy are:
- Written policies and procedures stating that personal devices and other various off-channel communication applications can not be used for business purposes, and have supervised person’s attest to those policies.
- Enhance review of supervised electronic communications (i.e email) to ensure that off-channel communication is not occurring with clients or members of the firm alike.
- Provide training for all supervised person’s of the Advisor regarding what is and is not acceptable, and the ramifications for violations.
- The Advisor opts to allow for the use of text-messaging and other electronic communication methods with appropriate policies and procedures in place. Examples of certain control measures that can be put into place regarding this policy are:
- Written policies and procedures regarding personal devices and/or electronic communication applications may be utilized on an approved basis by the Chief Compliance Officer.
- Advisors undergo a due diligence process for vendors they seek to utilize as part of the firm’s communication platform. This includes the reviewing the messaging platform for supervised person use, ensuring there are supervisory capabilities, and understanding the archiving set up.
- Provide training for the supervised persons who use the platform and compliance reviewers who supervise the platform, and the ramifications for violations.