SlideShare a Scribd company logo

The Legal Perspective: Retaining and Supervising Electronic Communications for Regulatory Compliance

Download as PPTX, PDF
Smarsh
Smarsh

In 2014, FINRA imposed the largest amount of fines since 2008. Now, more than ever, it’s essential to ensure your firm is set up with the best practices and procedures for complying with FINRA’s rules. In addition, the explosive growth in the different types of electronic communications puts financial services firms under pressure to communicate more effectively with their clients while following strict compliance rules.

Law
1 of 24
Retaining and Supervising Electronic Communications for Regulatory Compliance Brian L. Rubin Susan Krawczyk Andrew McCormick Mike Pagani April 14, 2015
©2014 Sutherland Asbill & Brennan LLP 2014 FINRA ACTIONS  Number of 2014 Cases Filed: 1,397  1,535 cases filed in 2013  9% decrease in 2014  The number of cases has declined three straight years  30% increase in the number of cases since 2008
©2014 Sutherland Asbill & Brennan LLP 2014 FINRA ACTIONS  Approximately $135M of fines reported in 2014  This is the most FINRA fines reported since 2005 ($149M); 382% increase in fines since 2008
©2014 Sutherland Asbill & Brennan LLP 2014 FINRA ACTIONS  Approximately $52M of restitution reported in 2014  This is a new FINRA record.
©2014 Sutherland Asbill & Brennan LLP 2014 FINRA ACTIONS Firms Expelled:  The number of firms expelled by FINRA declined from 24 in 2013 to 18 in 2014, a decrease of 25% (following a 20% decrease in the number of firms expelled during the prior year). Individuals Barred/Suspended:  The number of individuals suspended increased from 670 in 2013 to 705 in 2014, an increase of 5%, and the number of individuals barred jumped from 429 in 2013 to 481 in 2014, an increase of 12%.  This is the second year in a row where the number of firms that were expelled decreased significantly, but the number of individuals suspended or barred increased.
©2014 Sutherland Asbill & Brennan LLP 2014 TOP FINRA ENFORCEMENT ISSUES (by total fines) 1. Research Reports/Analysts: $59 million, 19 cases 2. Advertising: $17 million, 31 cases 3. Best Execution: $14 million, 83 cases 4. Anti-Money Laundering: $13 million, 34 cases 5. Trade Reporting: $11 million, 176 cases 2014 FINRA ACTIONS
©2014 Sutherland Asbill & Brennan LLP Electronic Communications: FINRA Case Statistics Fines Reported Percentage Change Percentage of Total FINRA Fines Cases Reported Percentage Change 2008 $2.7M - 10% 24 - 2009 $3.5M 30% 7% 24 0% 2010 $2.4M (31%) 6% 35 46% 2011 $3.3M 38% 5% 57 63% 2012 $6.5M 97% 9% 63 11% 2013 $19.8M 204% 33% 68 8% 2014 $2.7M (86%) 2% 54 (21%)
©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Regulatory Requirements  SEC Rule 17a-4(b): “…shall preserve for a period of not less than three years, the first two years in an easily accessible place…[o]riginals of all communications received and copies of all communications sent…”  SEC Rule 17a-4(f): if a firm uses electronic storage media, must notify SEC and the retention system must be WORM compliant  FINRA Rule 3110.09: “Each member shall retain the internal communications and correspondence of associated persons relating to the member's investment banking or securities business for period of time and accessibility specified in . . . Rule 17a-4”  FINRA Rule 2210: “members must maintain all retail communications and institutional communications for the retention period required by” Rule 17a-4 and in format and media that comply with the rule
©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Types of electronic communications that must be retained:  internal and external emails  emails from DBAs  alternative email addresses  distribution lists  BCC emails  encrypted emails  third-party system emails  IMs, Bloomberg messages, text messages, firm social media posts  websites
©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Technology Best Practices  Archiving solution should feature automation – don’t rely on manual processes that allow for missing or deleted information  Solution should support multiple message/content types: Email, instant messaging, text messaging, websites and social media  Solution should capture/index and render each message type in its original native format – especially important for social media  No silos – your archiving solution should feature a consolidated indexing scheme and search/processing interface across all the content/content types being archived
©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Other types of electronic communications supervision essentials that must be retained
©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Most commonly requested content types 1. Email 2. Website pages 3. Instant messages 4. Bloomberg or Reuters messages 5. Social media 6. Email marketing 7. Text/SMS messages
©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications: Lessons from Enforcement Actions Mobile devices should be configured properly.  A 2014 FINRA case resulted in a $275,000 fine for allegations that emails sent from Blackberry devices to recipients outside the firm were not retained. FINRA also alleged that no Blackberry messages were retained. Firms must also retain instant messages.  A 2013 FINRA case resulted in a $3.75M fine for allegations that the firm did not retain electronic records in a WORM format over a 10-year period, including trade confirmations, email attachments, and 3.3 million Bloomberg instant messages.
©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications: Lessons from Enforcement Actions Retention failures can lead to significant fines.  A 2013 FINRA case resulted in a $7.5M fine for systemic email retention failures. Allegations that the firm could not access hundreds of millions of emails, failed to review tens of millions of emails, and misled FINRA during the investigation. Firm ordered to pay $1.5M to litigants who may have been impacted by these email issues. Unique categories of emails must also be retained.  A 2013 FINRA case resulted in a $1.2M fine for five affiliated firms for allegedly failing to retain unique categories of emails, including BCC emails, emails to distribution lists, emails to/from alternate addresses, and encrypted emails.
©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications: Regulatory requirements for supervision of retail and institutional communications  FINRA Rule 2210 applies  Retail communications  Must be approved by qualified principal before use or filing with FINRA  Institutional communications:  Must have procedures  Appropriate to business, size, structure and customers  For review by qualified principal  Reasonably designed to ensure compliance with applicable standards  If each communication is not reviewed:  Education and training of associated persons  Documentation of education and training  Surveillance and follow-up to ensure compliance
©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications: Regulatory requirements for supervision of correspondence FINRA Rule 3110(b)(4): supervisory procedures must require:  Review of incoming and outgoing written (including electronic) correspondence to properly identify and handle in accordance with firm procedures, customer complaints, instructions, funds and securities and communications that are of a subject matter that require review under FINRA rules and federal securities laws  Review of internal communications to properly identify those communications of a subject matter requiring review under FINRA rules and federal securities laws  Review must be conducted by a registered principal  Review must be evidenced in writing, either electronically or on paper
©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications Risk-based approach permitted  FINRA Rule 3110.06  Must consider whether to adopt additional procedures for the review of matters outside the specified subject matter that are necessary for the firm's business and structure  Must have procedures that provide for:  Education/training about correspondence procedures  Documenting education/training about procedures  Surveillance and follow-up to make sure procedures are implemented and followed
©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications Additional guidance on supervisory reviews of correspondence  FINRA Rule 3110.09  Name of person who prepared correspondence must be in the records  FINRA Rule 3110.07  Evidence of review required must be chronicled electronically or on paper  Evidence must clearly identify the reviewer, the internal communication or correspondence that was reviewed, the date of review, and the actions taken by the member as a result of any significant regulatory issues identified during the review  “Merely opening a communication is not sufficient review.”  FINRA Rule 3110.08:  Supervisor remains ultimately responsible for the performance of all necessary supervisory reviews, irrespective of whether he or she delegates functions related to the review
©2014 Sutherland Asbill & Brennan LLP  Supervisory systems commonly rely on automated tools and systems  Lexicon based reviews  Random reviews  Combination of methods  Ability to review attachments  Need for ongoing evaluation procedures  Identify and address “loopholes” and developments  Know and work around limitations Supervising Electronic Communications
©2014 Sutherland Asbill & Brennan LLP Technology best practices  Look for regulators to expect a more sophisticated approach to supervision beyond basic keywords, including:  Flagging of messages from specific individuals or groups deemed “high risk”  Assigning points to specific types of violations (scoring)  Ensure your lexicon/keywords and groups are reviewed and updated or “fine tuned” on a regular basis to ensure you’re adequately flagging the right messages and optimizing the process  Look for a solution that will automate some of the supervision tasks  Ask your provider what they can do. Many firms are not taking full advantage of the capabilities of their archiving provider. Supervising Electronic Communications
©2014 Sutherland Asbill & Brennan LLP Supervisory Systems Technology Best Practices  Monitor messages with attachments and their contents  Monitor and review of encrypted emails using an email encryption service that works seamlessly with, or is an extension of your overall archiving solution  Communicate any and all changes to your firm’s email hosting or tech configuration to your archiving vendor to avoid any journaling disruption  Perform internal evaluations to ensure all supervision and enforcement activities take place – look for a solution that provides easy activity and audit trail reporting
©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications: Lessons from Enforcement Actions Lexicon search terms should be robust and relevant.  A 2013 FINRA case resulted in a $100,000 fine for allegations that the surveillance software used by the firm did not flag emails containing language such as “no principal risk,” “completely liquid,” and “principal protection.”  A 2012 FINRA case resulted in a $100,000 fine for allegations that the firm did not update its email lexicon to reflect concerns about a representative who was experiencing financial troubles, which caused the firm not to review emails evidencing the representative’s misconduct.
©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications: Lessons from Enforcement Actions Software must be properly configured.  A 2014 FINRA case resulted in a $250,000 fine for allegations that the firm did not subject 12.6M DBA emails to a surveillance review due to technological problems with a software update. FINRA also alleged that the firm did not perform regular testing to make sure the surveillance system was working properly.
©2014 Sutherland Asbill & Brennan LLP Questions? Sutherland Brian L. Rubin brian.rubin@sutherland.com 202.383.0124 Susan Krawczyk susan.krawczyk@sutherland.com 202.383.0197 Andrew McCormick andrew.mccormick@sutherland.com 202.383.0867 @SUTHERLAND_LAW Smarsh Mike Pagani @Mike_Pagani https://www.linkedin.com/pub/mikepagani/1/229/801 @SMARSHINC

Recommended

FINRA's Record-Breaking Sanctions of 2015
FINRA's Record-Breaking Sanctions of 2015FINRA's Record-Breaking Sanctions of 2015
FINRA's Record-Breaking Sanctions of 2015Smarsh
 
Navigating the expanding compliance perimeter smarsh 2016_notes_20 04 16_video
Navigating the expanding compliance perimeter smarsh 2016_notes_20 04 16_videoNavigating the expanding compliance perimeter smarsh 2016_notes_20 04 16_video
Navigating the expanding compliance perimeter smarsh 2016_notes_20 04 16_videoSmarsh
 
3 ways to respond to a records request
3 ways to respond to a records request3 ways to respond to a records request
3 ways to respond to a records requestSmarsh
 
Smarsh Archiving for Financial Services: Retaining and supervising electronic...
Smarsh Archiving for Financial Services: Retaining and supervising electronic...Smarsh Archiving for Financial Services: Retaining and supervising electronic...
Smarsh Archiving for Financial Services: Retaining and supervising electronic...Smarsh
 
Chief Audit Execs speak out: Cybersecurity & risk management
Chief Audit Execs speak out: Cybersecurity & risk managementChief Audit Execs speak out: Cybersecurity & risk management
Chief Audit Execs speak out: Cybersecurity & risk managementGrant Thornton LLP
 
Privacy Do's and Don'ts for Customer Service Representatives
Privacy Do's and Don'ts for Customer Service RepresentativesPrivacy Do's and Don'ts for Customer Service Representatives
Privacy Do's and Don'ts for Customer Service RepresentativesArt Hall
 
GAMABrief: When Education Meets Big Data
GAMABrief: When Education Meets Big DataGAMABrief: When Education Meets Big Data
GAMABrief: When Education Meets Big DataChristina Gagnier
 
Privacy Compliance for Law Firms: Moving Beyond Confidentiality
Privacy Compliance for Law Firms: Moving Beyond ConfidentialityPrivacy Compliance for Law Firms: Moving Beyond Confidentiality
Privacy Compliance for Law Firms: Moving Beyond ConfidentialityClio - Cloud-Based Legal Technology
 

Recommended

FINRA's Record-Breaking Sanctions of 2015
FINRA's Record-Breaking Sanctions of 2015FINRA's Record-Breaking Sanctions of 2015
FINRA's Record-Breaking Sanctions of 2015Smarsh
 
Navigating the expanding compliance perimeter smarsh 2016_notes_20 04 16_video
Navigating the expanding compliance perimeter smarsh 2016_notes_20 04 16_videoNavigating the expanding compliance perimeter smarsh 2016_notes_20 04 16_video
Navigating the expanding compliance perimeter smarsh 2016_notes_20 04 16_videoSmarsh
 
3 ways to respond to a records request
3 ways to respond to a records request3 ways to respond to a records request
3 ways to respond to a records requestSmarsh
 
Smarsh Archiving for Financial Services: Retaining and supervising electronic...
Smarsh Archiving for Financial Services: Retaining and supervising electronic...Smarsh Archiving for Financial Services: Retaining and supervising electronic...
Smarsh Archiving for Financial Services: Retaining and supervising electronic...Smarsh
 
Chief Audit Execs speak out: Cybersecurity & risk management
Chief Audit Execs speak out: Cybersecurity & risk managementChief Audit Execs speak out: Cybersecurity & risk management
Chief Audit Execs speak out: Cybersecurity & risk managementGrant Thornton LLP
 
Privacy Do's and Don'ts for Customer Service Representatives
Privacy Do's and Don'ts for Customer Service RepresentativesPrivacy Do's and Don'ts for Customer Service Representatives
Privacy Do's and Don'ts for Customer Service RepresentativesArt Hall
 
GAMABrief: When Education Meets Big Data
GAMABrief: When Education Meets Big DataGAMABrief: When Education Meets Big Data
GAMABrief: When Education Meets Big DataChristina Gagnier
 
Privacy Compliance for Law Firms: Moving Beyond Confidentiality
Privacy Compliance for Law Firms: Moving Beyond ConfidentialityPrivacy Compliance for Law Firms: Moving Beyond Confidentiality
Privacy Compliance for Law Firms: Moving Beyond ConfidentialityClio - Cloud-Based Legal Technology
 
Solving the Encryption Conundrum in Financial Services
Solving the Encryption Conundrum in Financial ServicesSolving the Encryption Conundrum in Financial Services
Solving the Encryption Conundrum in Financial ServicesEchoworx
 
Cyber Facts and Prevention Presentation Gianino
Cyber Facts and Prevention Presentation GianinoCyber Facts and Prevention Presentation Gianino
Cyber Facts and Prevention Presentation Gianino-Gianino Gino Prieto -Dynamic Connector -Insurance Strategist
 
Ethics for Lawyers, Accountants, and CTFAs - May 2018
Ethics for Lawyers, Accountants, and CTFAs - May 2018Ethics for Lawyers, Accountants, and CTFAs - May 2018
Ethics for Lawyers, Accountants, and CTFAs - May 2018Downey Law Group LLC
 
Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...
Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...
Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...PECB
 
TBG Security Mgl93 H 201 CMR17.00 Compliance Service
TBG Security Mgl93 H 201 CMR17.00 Compliance ServiceTBG Security Mgl93 H 201 CMR17.00 Compliance Service
TBG Security Mgl93 H 201 CMR17.00 Compliance Servicegorsline
 
ACEDS-ACFCS Cybersecurity Webcast
ACEDS-ACFCS Cybersecurity WebcastACEDS-ACFCS Cybersecurity Webcast
ACEDS-ACFCS Cybersecurity WebcastLogikcull.com
 
Week5 paper-susbauer
Week5 paper-susbauerWeek5 paper-susbauer
Week5 paper-susbauerKathryn Susbauer
 
5 Ways To Overcome Compliance Challenges In Financial Services
5 Ways To Overcome Compliance Challenges In Financial Services5 Ways To Overcome Compliance Challenges In Financial Services
5 Ways To Overcome Compliance Challenges In Financial ServicesNetDimensions
 
Best Practices In Corporate Privacy & Information Security
Best Practices In Corporate Privacy & Information SecurityBest Practices In Corporate Privacy & Information Security
Best Practices In Corporate Privacy & Information Securitysatyakam_biswas
 
Restoring Your Organization's Reputation after Financial Fraud
Restoring Your Organization's Reputation after Financial FraudRestoring Your Organization's Reputation after Financial Fraud
Restoring Your Organization's Reputation after Financial FraudCBIZ, Inc.
 
Cyber Security breakfast briefing - Bournemouth
Cyber Security breakfast briefing - BournemouthCyber Security breakfast briefing - Bournemouth
Cyber Security breakfast briefing - BournemouthPKF Francis Clark
 
Presentation: Compliance & Third Party Due Diligence
Presentation: Compliance & Third Party Due DiligencePresentation: Compliance & Third Party Due Diligence
Presentation: Compliance & Third Party Due DiligenceethiXbase
 
Verizon's DBIR-A look into each industry
Verizon's DBIR-A look into each industryVerizon's DBIR-A look into each industry
Verizon's DBIR-A look into each industrySOCRadar Inc
 
Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...
Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...
Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...Ben Allen
 
Cyber Security breakfast briefing - Exeter
Cyber Security breakfast briefing - ExeterCyber Security breakfast briefing - Exeter
Cyber Security breakfast briefing - ExeterPKF Francis Clark
 
When is a Duplicate not a Duplicate? Detecting Errors and Fraud
When is a Duplicate not a Duplicate? Detecting Errors and FraudWhen is a Duplicate not a Duplicate? Detecting Errors and Fraud
When is a Duplicate not a Duplicate? Detecting Errors and FraudJim Kaplan CIA CFE
 
What is data protection and why it is important for business
What is data protection and why it is important for businessWhat is data protection and why it is important for business
What is data protection and why it is important for businessSameerShaik43
 
Cyber risks and liabilities February 2017
Cyber risks and liabilities February 2017Cyber risks and liabilities February 2017
Cyber risks and liabilities February 2017Gary Chambers
 
EAI Compliance Infographic
EAI Compliance InfographicEAI Compliance Infographic
EAI Compliance InfographicIdeba
 
Cyber risks and liabilities newsletter jan feb 2017
Cyber risks and liabilities newsletter jan feb 2017Cyber risks and liabilities newsletter jan feb 2017
Cyber risks and liabilities newsletter jan feb 2017Kieren Windsor
 
D&B onboard.pdf
D&B onboard.pdfD&B onboard.pdf
D&B onboard.pdfWilson Kao
 
mplementing and Auditing GDPR Series (10 of 10)
mplementing and Auditing GDPR Series (10 of 10) mplementing and Auditing GDPR Series (10 of 10)
mplementing and Auditing GDPR Series (10 of 10) Jim Kaplan CIA CFE
 

More Related Content

What's hot

Solving the Encryption Conundrum in Financial Services
Solving the Encryption Conundrum in Financial ServicesSolving the Encryption Conundrum in Financial Services
Solving the Encryption Conundrum in Financial ServicesEchoworx
 
Ethics for Lawyers, Accountants, and CTFAs - May 2018
Ethics for Lawyers, Accountants, and CTFAs - May 2018Ethics for Lawyers, Accountants, and CTFAs - May 2018
Ethics for Lawyers, Accountants, and CTFAs - May 2018Downey Law Group LLC
 
Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...
Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...
Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...PECB
 
TBG Security Mgl93 H 201 CMR17.00 Compliance Service
TBG Security Mgl93 H 201 CMR17.00 Compliance ServiceTBG Security Mgl93 H 201 CMR17.00 Compliance Service
TBG Security Mgl93 H 201 CMR17.00 Compliance Servicegorsline
 
ACEDS-ACFCS Cybersecurity Webcast
ACEDS-ACFCS Cybersecurity WebcastACEDS-ACFCS Cybersecurity Webcast
ACEDS-ACFCS Cybersecurity WebcastLogikcull.com
 
5 Ways To Overcome Compliance Challenges In Financial Services
5 Ways To Overcome Compliance Challenges In Financial Services5 Ways To Overcome Compliance Challenges In Financial Services
5 Ways To Overcome Compliance Challenges In Financial ServicesNetDimensions
 
Best Practices In Corporate Privacy & Information Security
Best Practices In Corporate Privacy & Information SecurityBest Practices In Corporate Privacy & Information Security
Best Practices In Corporate Privacy & Information Securitysatyakam_biswas
 
Restoring Your Organization's Reputation after Financial Fraud
Restoring Your Organization's Reputation after Financial FraudRestoring Your Organization's Reputation after Financial Fraud
Restoring Your Organization's Reputation after Financial FraudCBIZ, Inc.
 
Cyber Security breakfast briefing - Bournemouth
Cyber Security breakfast briefing - BournemouthCyber Security breakfast briefing - Bournemouth
Cyber Security breakfast briefing - BournemouthPKF Francis Clark
 
Presentation: Compliance & Third Party Due Diligence
Presentation: Compliance & Third Party Due DiligencePresentation: Compliance & Third Party Due Diligence
Presentation: Compliance & Third Party Due DiligenceethiXbase
 
Verizon's DBIR-A look into each industry
Verizon's DBIR-A look into each industryVerizon's DBIR-A look into each industry
Verizon's DBIR-A look into each industrySOCRadar Inc
 
Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...
Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...
Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...Ben Allen
 
Cyber Security breakfast briefing - Exeter
Cyber Security breakfast briefing - ExeterCyber Security breakfast briefing - Exeter
Cyber Security breakfast briefing - ExeterPKF Francis Clark
 
When is a Duplicate not a Duplicate? Detecting Errors and Fraud
When is a Duplicate not a Duplicate? Detecting Errors and FraudWhen is a Duplicate not a Duplicate? Detecting Errors and Fraud
When is a Duplicate not a Duplicate? Detecting Errors and FraudJim Kaplan CIA CFE
 
What is data protection and why it is important for business
What is data protection and why it is important for businessWhat is data protection and why it is important for business
What is data protection and why it is important for businessSameerShaik43
 
Cyber risks and liabilities February 2017
Cyber risks and liabilities February 2017Cyber risks and liabilities February 2017
Cyber risks and liabilities February 2017Gary Chambers
 
EAI Compliance Infographic
EAI Compliance InfographicEAI Compliance Infographic
EAI Compliance InfographicIdeba
 
Cyber risks and liabilities newsletter jan feb 2017
Cyber risks and liabilities newsletter jan feb 2017Cyber risks and liabilities newsletter jan feb 2017
Cyber risks and liabilities newsletter jan feb 2017Kieren Windsor
 

What's hot (20)

Solving the Encryption Conundrum in Financial Services
Solving the Encryption Conundrum in Financial ServicesSolving the Encryption Conundrum in Financial Services
Solving the Encryption Conundrum in Financial Services
 
Cyber Facts and Prevention Presentation Gianino
Cyber Facts and Prevention Presentation GianinoCyber Facts and Prevention Presentation Gianino
Cyber Facts and Prevention Presentation Gianino
 
Ethics for Lawyers, Accountants, and CTFAs - May 2018
Ethics for Lawyers, Accountants, and CTFAs - May 2018Ethics for Lawyers, Accountants, and CTFAs - May 2018
Ethics for Lawyers, Accountants, and CTFAs - May 2018
 
Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...
Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...
Anti-Bribery Forensics and Compliance on a Multi-National Scale: Challenges a...
 
TBG Security Mgl93 H 201 CMR17.00 Compliance Service
TBG Security Mgl93 H 201 CMR17.00 Compliance ServiceTBG Security Mgl93 H 201 CMR17.00 Compliance Service
TBG Security Mgl93 H 201 CMR17.00 Compliance Service
 
ACEDS-ACFCS Cybersecurity Webcast
ACEDS-ACFCS Cybersecurity WebcastACEDS-ACFCS Cybersecurity Webcast
ACEDS-ACFCS Cybersecurity Webcast
 
Week5 paper-susbauer
Week5 paper-susbauerWeek5 paper-susbauer
Week5 paper-susbauer
 
5 Ways To Overcome Compliance Challenges In Financial Services
5 Ways To Overcome Compliance Challenges In Financial Services5 Ways To Overcome Compliance Challenges In Financial Services
5 Ways To Overcome Compliance Challenges In Financial Services
 
Best Practices In Corporate Privacy & Information Security
Best Practices In Corporate Privacy & Information SecurityBest Practices In Corporate Privacy & Information Security
Best Practices In Corporate Privacy & Information Security
 
Restoring Your Organization's Reputation after Financial Fraud
Restoring Your Organization's Reputation after Financial FraudRestoring Your Organization's Reputation after Financial Fraud
Restoring Your Organization's Reputation after Financial Fraud
 
Cyber Security breakfast briefing - Bournemouth
Cyber Security breakfast briefing - BournemouthCyber Security breakfast briefing - Bournemouth
Cyber Security breakfast briefing - Bournemouth
 
Presentation: Compliance & Third Party Due Diligence
Presentation: Compliance & Third Party Due DiligencePresentation: Compliance & Third Party Due Diligence
Presentation: Compliance & Third Party Due Diligence
 
Verizon's DBIR-A look into each industry
Verizon's DBIR-A look into each industryVerizon's DBIR-A look into each industry
Verizon's DBIR-A look into each industry
 
Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...
Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...
Navigating Privacy Laws When Developing And Deploying Location Tracking Appli...
 
Cyber Security breakfast briefing - Exeter
Cyber Security breakfast briefing - ExeterCyber Security breakfast briefing - Exeter
Cyber Security breakfast briefing - Exeter
 
When is a Duplicate not a Duplicate? Detecting Errors and Fraud
When is a Duplicate not a Duplicate? Detecting Errors and FraudWhen is a Duplicate not a Duplicate? Detecting Errors and Fraud
When is a Duplicate not a Duplicate? Detecting Errors and Fraud
 
What is data protection and why it is important for business
What is data protection and why it is important for businessWhat is data protection and why it is important for business
What is data protection and why it is important for business
 
Cyber risks and liabilities February 2017
Cyber risks and liabilities February 2017Cyber risks and liabilities February 2017
Cyber risks and liabilities February 2017
 
EAI Compliance Infographic
EAI Compliance InfographicEAI Compliance Infographic
EAI Compliance Infographic
 
Cyber risks and liabilities newsletter jan feb 2017
Cyber risks and liabilities newsletter jan feb 2017Cyber risks and liabilities newsletter jan feb 2017
Cyber risks and liabilities newsletter jan feb 2017
 

Similar to The Legal Perspective: Retaining and Supervising Electronic Communications for Regulatory Compliance

D&B onboard.pdf
D&B onboard.pdfD&B onboard.pdf
D&B onboard.pdfWilson Kao
 
mplementing and Auditing GDPR Series (10 of 10)
mplementing and Auditing GDPR Series (10 of 10) mplementing and Auditing GDPR Series (10 of 10)
mplementing and Auditing GDPR Series (10 of 10) Jim Kaplan CIA CFE
 
Charitable Solicitation Compliance: What Does It Take To Be Compliant?
Charitable Solicitation Compliance: What Does It Take To Be Compliant?Charitable Solicitation Compliance: What Does It Take To Be Compliant?
Charitable Solicitation Compliance: What Does It Take To Be Compliant?Bloomerang
 
Consensus Policy Resource CommunityEmail PolicyFree Use .docx
Consensus Policy Resource CommunityEmail PolicyFree Use .docxConsensus Policy Resource CommunityEmail PolicyFree Use .docx
Consensus Policy Resource CommunityEmail PolicyFree Use .docxbobbywlane695641
 
Implementing and Auditing GDPR Series (9 of 10)
Implementing and Auditing GDPR Series (9 of 10) Implementing and Auditing GDPR Series (9 of 10)
Implementing and Auditing GDPR Series (9 of 10) Jim Kaplan CIA CFE
 
Top Regulatory Insights for Fintechs & Financial Institutions
Top Regulatory Insights for Fintechs & Financial InstitutionsTop Regulatory Insights for Fintechs & Financial Institutions
Top Regulatory Insights for Fintechs & Financial InstitutionsExperian
 
Implementing and Auditing General Data Protection Regulation
Implementing and Auditing General Data Protection Regulation Implementing and Auditing General Data Protection Regulation
Implementing and Auditing General Data Protection Regulation Jim Kaplan CIA CFE
 
IT6701-Information Management Unit 5
IT6701-Information Management Unit 5IT6701-Information Management Unit 5
IT6701-Information Management Unit 5SIMONTHOMAS S
 
Whistleblower Best Practices: What Do Compliance and Business Leaders Need to...
Whistleblower Best Practices: What Do Compliance and Business Leaders Need to...Whistleblower Best Practices: What Do Compliance and Business Leaders Need to...
Whistleblower Best Practices: What Do Compliance and Business Leaders Need to...Ethisphere
 
Email Marketing Workshop Part 5: Deliverability, Compliance and Trust
Email Marketing Workshop Part 5: Deliverability, Compliance and TrustEmail Marketing Workshop Part 5: Deliverability, Compliance and Trust
Email Marketing Workshop Part 5: Deliverability, Compliance and TrustVivastream
 
Enhanced Regulatory Regime for Corporate Service Providers in Singapore
Enhanced Regulatory Regime for Corporate Service Providers in SingaporeEnhanced Regulatory Regime for Corporate Service Providers in Singapore
Enhanced Regulatory Regime for Corporate Service Providers in SingaporeCorporate Registers Forum
 
FTC overview on glba final rule on safeguards 2010 Compliance Presentation
FTC overview on glba final rule on safeguards 2010 Compliance PresentationFTC overview on glba final rule on safeguards 2010 Compliance Presentation
FTC overview on glba final rule on safeguards 2010 Compliance PresentationBrent Hillyer
 
LHand PLI ppt 2015 final-edited-2
LHand PLI ppt 2015 final-edited-2LHand PLI ppt 2015 final-edited-2
LHand PLI ppt 2015 final-edited-2Lesley Hand
 
Sapient Catelas The New Regulatory Paradigm
Sapient Catelas The New Regulatory ParadigmSapient Catelas The New Regulatory Paradigm
Sapient Catelas The New Regulatory ParadigmEddie Cogan
 
Using Data Analytics to Find and Deter Procure to Pay Fraud
Using Data Analytics to Find and Deter Procure to Pay FraudUsing Data Analytics to Find and Deter Procure to Pay Fraud
Using Data Analytics to Find and Deter Procure to Pay FraudFraudBusters
 
5 Things Your Intake Strategy Needs to Take on More Clients With Ease
5 Things Your Intake Strategy Needs to Take on More Clients With Ease5 Things Your Intake Strategy Needs to Take on More Clients With Ease
5 Things Your Intake Strategy Needs to Take on More Clients With EaseClio - Cloud-Based Legal Technology
 
Charitable Solicitation: What Does it Take to be Compliant?
Charitable Solicitation: What Does it Take to be Compliant?Charitable Solicitation: What Does it Take to be Compliant?
Charitable Solicitation: What Does it Take to be Compliant?Bloomerang
 
Implementing and Auditing General Data Protection Regulation
Implementing and Auditing General Data Protection RegulationImplementing and Auditing General Data Protection Regulation
Implementing and Auditing General Data Protection RegulationJim Kaplan CIA CFE
 

Similar to The Legal Perspective: Retaining and Supervising Electronic Communications for Regulatory Compliance (20)

D&B onboard.pdf
D&B onboard.pdfD&B onboard.pdf
D&B onboard.pdf
 
mplementing and Auditing GDPR Series (10 of 10)
mplementing and Auditing GDPR Series (10 of 10) mplementing and Auditing GDPR Series (10 of 10)
mplementing and Auditing GDPR Series (10 of 10)
 
Charitable Solicitation Compliance: What Does It Take To Be Compliant?
Charitable Solicitation Compliance: What Does It Take To Be Compliant?Charitable Solicitation Compliance: What Does It Take To Be Compliant?
Charitable Solicitation Compliance: What Does It Take To Be Compliant?
 
Ravi Ravani CV.
Ravi Ravani CV.Ravi Ravani CV.
Ravi Ravani CV.
 
Consensus Policy Resource CommunityEmail PolicyFree Use .docx
Consensus Policy Resource CommunityEmail PolicyFree Use .docxConsensus Policy Resource CommunityEmail PolicyFree Use .docx
Consensus Policy Resource CommunityEmail PolicyFree Use .docx
 
Implementing and Auditing GDPR Series (9 of 10)
Implementing and Auditing GDPR Series (9 of 10) Implementing and Auditing GDPR Series (9 of 10)
Implementing and Auditing GDPR Series (9 of 10)
 
Top Regulatory Insights for Fintechs & Financial Institutions
Top Regulatory Insights for Fintechs & Financial InstitutionsTop Regulatory Insights for Fintechs & Financial Institutions
Top Regulatory Insights for Fintechs & Financial Institutions
 
Implementing and Auditing General Data Protection Regulation
Implementing and Auditing General Data Protection Regulation Implementing and Auditing General Data Protection Regulation
Implementing and Auditing General Data Protection Regulation
 
IT6701-Information Management Unit 5
IT6701-Information Management Unit 5IT6701-Information Management Unit 5
IT6701-Information Management Unit 5
 
Whistleblower Best Practices: What Do Compliance and Business Leaders Need to...
Whistleblower Best Practices: What Do Compliance and Business Leaders Need to...Whistleblower Best Practices: What Do Compliance and Business Leaders Need to...
Whistleblower Best Practices: What Do Compliance and Business Leaders Need to...
 
Email Marketing Workshop Part 5: Deliverability, Compliance and Trust
Email Marketing Workshop Part 5: Deliverability, Compliance and TrustEmail Marketing Workshop Part 5: Deliverability, Compliance and Trust
Email Marketing Workshop Part 5: Deliverability, Compliance and Trust
 
Enhanced Regulatory Regime for Corporate Service Providers in Singapore
Enhanced Regulatory Regime for Corporate Service Providers in SingaporeEnhanced Regulatory Regime for Corporate Service Providers in Singapore
Enhanced Regulatory Regime for Corporate Service Providers in Singapore
 
FTC overview on glba final rule on safeguards 2010 Compliance Presentation
FTC overview on glba final rule on safeguards 2010 Compliance PresentationFTC overview on glba final rule on safeguards 2010 Compliance Presentation
FTC overview on glba final rule on safeguards 2010 Compliance Presentation
 
LHand PLI ppt 2015 final-edited-2
LHand PLI ppt 2015 final-edited-2LHand PLI ppt 2015 final-edited-2
LHand PLI ppt 2015 final-edited-2
 
Sapient Catelas The New Regulatory Paradigm
Sapient Catelas The New Regulatory ParadigmSapient Catelas The New Regulatory Paradigm
Sapient Catelas The New Regulatory Paradigm
 
Using Data Analytics to Find and Deter Procure to Pay Fraud
Using Data Analytics to Find and Deter Procure to Pay FraudUsing Data Analytics to Find and Deter Procure to Pay Fraud
Using Data Analytics to Find and Deter Procure to Pay Fraud
 
5 Things Your Intake Strategy Needs to Take on More Clients With Ease
5 Things Your Intake Strategy Needs to Take on More Clients With Ease5 Things Your Intake Strategy Needs to Take on More Clients With Ease
5 Things Your Intake Strategy Needs to Take on More Clients With Ease
 
Charitable Solicitation: What Does it Take to be Compliant?
Charitable Solicitation: What Does it Take to be Compliant?Charitable Solicitation: What Does it Take to be Compliant?
Charitable Solicitation: What Does it Take to be Compliant?
 
Satisfaction with IR 2015
Satisfaction with IR 2015Satisfaction with IR 2015
Satisfaction with IR 2015
 
Implementing and Auditing General Data Protection Regulation
Implementing and Auditing General Data Protection RegulationImplementing and Auditing General Data Protection Regulation
Implementing and Auditing General Data Protection Regulation
 

More from Smarsh

Social Media Policy Essentials for Lenders and Brokers
Social Media Policy Essentials for Lenders and BrokersSocial Media Policy Essentials for Lenders and Brokers
Social Media Policy Essentials for Lenders and BrokersSmarsh
 
Social Media and Mortgage Regulation: What's Next?
Social Media and Mortgage Regulation: What's Next?Social Media and Mortgage Regulation: What's Next?
Social Media and Mortgage Regulation: What's Next?Smarsh
 
Smarsh social media in investment banking
Smarsh social media in investment bankingSmarsh social media in investment banking
Smarsh social media in investment bankingSmarsh
 
Solving Compliance Issues for Office365/Exchange Online Environments
Solving Compliance Issues for Office365/Exchange Online EnvironmentsSolving Compliance Issues for Office365/Exchange Online Environments
Solving Compliance Issues for Office365/Exchange Online EnvironmentsSmarsh
 
Social Media for Lenders Webinar featuring Lee Negroni
Social Media for Lenders Webinar featuring Lee NegroniSocial Media for Lenders Webinar featuring Lee Negroni
Social Media for Lenders Webinar featuring Lee NegroniSmarsh
 
Smarsh social media trends, insights, and best practices from 2015 compliance...
Smarsh social media trends, insights, and best practices from 2015 compliance...Smarsh social media trends, insights, and best practices from 2015 compliance...
Smarsh social media trends, insights, and best practices from 2015 compliance...Smarsh
 
The Regulatory Landscape: Recordkeeping, Advertising, and Social Media
The Regulatory Landscape: Recordkeeping, Advertising, and Social MediaThe Regulatory Landscape: Recordkeeping, Advertising, and Social Media
The Regulatory Landscape: Recordkeeping, Advertising, and Social MediaSmarsh
 
ValMark Chooses Smarsh to Archive for Compliance and E-Discovery
ValMark Chooses Smarsh to Archive for Compliance and E-DiscoveryValMark Chooses Smarsh to Archive for Compliance and E-Discovery
ValMark Chooses Smarsh to Archive for Compliance and E-DiscoverySmarsh
 
Financial Advisor's Guide To Social Media Policy and Strategy
Financial Advisor's Guide To Social Media Policy and StrategyFinancial Advisor's Guide To Social Media Policy and Strategy
Financial Advisor's Guide To Social Media Policy and StrategySmarsh
 
The Social Advisor : Social Media Secrets for Savvy Advisors
The Social Advisor : Social Media Secrets for Savvy AdvisorsThe Social Advisor : Social Media Secrets for Savvy Advisors
The Social Advisor : Social Media Secrets for Savvy AdvisorsSmarsh
 
Successful Social Media for Mortgage Lenders: Engage With Your Audience While...
Successful Social Media for Mortgage Lenders: Engage With Your Audience While...Successful Social Media for Mortgage Lenders: Engage With Your Audience While...
Successful Social Media for Mortgage Lenders: Engage With Your Audience While...Smarsh
 
Social Media for Advisors: Use Storytelling to Create Content
Social Media for Advisors: Use Storytelling to Create ContentSocial Media for Advisors: Use Storytelling to Create Content
Social Media for Advisors: Use Storytelling to Create ContentSmarsh
 
Social Media for Advisors: Is Anyone Listening?
Social Media for Advisors: Is Anyone Listening?Social Media for Advisors: Is Anyone Listening?
Social Media for Advisors: Is Anyone Listening?Smarsh
 
Heron Financial Grows Business with Social Media
Heron Financial Grows Business with Social Media Heron Financial Grows Business with Social Media
Heron Financial Grows Business with Social Media Smarsh
 
Social Media for Advisors: Understand your Audience Understand your Platform
Social Media for Advisors: Understand your Audience Understand your PlatformSocial Media for Advisors: Understand your Audience Understand your Platform
Social Media for Advisors: Understand your Audience Understand your PlatformSmarsh
 
3 Ways to Accelerate Social Selling for Regulated Organizations
3 Ways to Accelerate Social Selling for Regulated Organizations3 Ways to Accelerate Social Selling for Regulated Organizations
3 Ways to Accelerate Social Selling for Regulated OrganizationsSmarsh
 
Value proposition and social media voice
Value proposition and social media voiceValue proposition and social media voice
Value proposition and social media voiceSmarsh
 
Smarsh Presents The Real Business Value of Social Media
Smarsh Presents The Real Business Value of Social MediaSmarsh Presents The Real Business Value of Social Media
Smarsh Presents The Real Business Value of Social MediaSmarsh
 
Managing Digital Communications in a Big Data World Presented by Smarsh VP, R...
Managing Digital Communications in a Big Data World Presented by Smarsh VP, R...Managing Digital Communications in a Big Data World Presented by Smarsh VP, R...
Managing Digital Communications in a Big Data World Presented by Smarsh VP, R...Smarsh
 
Enterprise Social: Fad or Foundational?
Enterprise Social: Fad or Foundational? Enterprise Social: Fad or Foundational?
Enterprise Social: Fad or Foundational? Smarsh
 

More from Smarsh (20)

Social Media Policy Essentials for Lenders and Brokers
Social Media Policy Essentials for Lenders and BrokersSocial Media Policy Essentials for Lenders and Brokers
Social Media Policy Essentials for Lenders and Brokers
 
Social Media and Mortgage Regulation: What's Next?
Social Media and Mortgage Regulation: What's Next?Social Media and Mortgage Regulation: What's Next?
Social Media and Mortgage Regulation: What's Next?
 
Smarsh social media in investment banking
Smarsh social media in investment bankingSmarsh social media in investment banking
Smarsh social media in investment banking
 
Solving Compliance Issues for Office365/Exchange Online Environments
Solving Compliance Issues for Office365/Exchange Online EnvironmentsSolving Compliance Issues for Office365/Exchange Online Environments
Solving Compliance Issues for Office365/Exchange Online Environments
 
Social Media for Lenders Webinar featuring Lee Negroni
Social Media for Lenders Webinar featuring Lee NegroniSocial Media for Lenders Webinar featuring Lee Negroni
Social Media for Lenders Webinar featuring Lee Negroni
 
Smarsh social media trends, insights, and best practices from 2015 compliance...
Smarsh social media trends, insights, and best practices from 2015 compliance...Smarsh social media trends, insights, and best practices from 2015 compliance...
Smarsh social media trends, insights, and best practices from 2015 compliance...
 
The Regulatory Landscape: Recordkeeping, Advertising, and Social Media
The Regulatory Landscape: Recordkeeping, Advertising, and Social MediaThe Regulatory Landscape: Recordkeeping, Advertising, and Social Media
The Regulatory Landscape: Recordkeeping, Advertising, and Social Media
 
ValMark Chooses Smarsh to Archive for Compliance and E-Discovery
ValMark Chooses Smarsh to Archive for Compliance and E-DiscoveryValMark Chooses Smarsh to Archive for Compliance and E-Discovery
ValMark Chooses Smarsh to Archive for Compliance and E-Discovery
 
Financial Advisor's Guide To Social Media Policy and Strategy
Financial Advisor's Guide To Social Media Policy and StrategyFinancial Advisor's Guide To Social Media Policy and Strategy
Financial Advisor's Guide To Social Media Policy and Strategy
 
The Social Advisor : Social Media Secrets for Savvy Advisors
The Social Advisor : Social Media Secrets for Savvy AdvisorsThe Social Advisor : Social Media Secrets for Savvy Advisors
The Social Advisor : Social Media Secrets for Savvy Advisors
 
Successful Social Media for Mortgage Lenders: Engage With Your Audience While...
Successful Social Media for Mortgage Lenders: Engage With Your Audience While...Successful Social Media for Mortgage Lenders: Engage With Your Audience While...
Successful Social Media for Mortgage Lenders: Engage With Your Audience While...
 
Social Media for Advisors: Use Storytelling to Create Content
Social Media for Advisors: Use Storytelling to Create ContentSocial Media for Advisors: Use Storytelling to Create Content
Social Media for Advisors: Use Storytelling to Create Content
 
Social Media for Advisors: Is Anyone Listening?
Social Media for Advisors: Is Anyone Listening?Social Media for Advisors: Is Anyone Listening?
Social Media for Advisors: Is Anyone Listening?
 
Heron Financial Grows Business with Social Media
Heron Financial Grows Business with Social Media Heron Financial Grows Business with Social Media
Heron Financial Grows Business with Social Media
 
Social Media for Advisors: Understand your Audience Understand your Platform
Social Media for Advisors: Understand your Audience Understand your PlatformSocial Media for Advisors: Understand your Audience Understand your Platform
Social Media for Advisors: Understand your Audience Understand your Platform
 
3 Ways to Accelerate Social Selling for Regulated Organizations
3 Ways to Accelerate Social Selling for Regulated Organizations3 Ways to Accelerate Social Selling for Regulated Organizations
3 Ways to Accelerate Social Selling for Regulated Organizations
 
Value proposition and social media voice
Value proposition and social media voiceValue proposition and social media voice
Value proposition and social media voice
 
Smarsh Presents The Real Business Value of Social Media
Smarsh Presents The Real Business Value of Social MediaSmarsh Presents The Real Business Value of Social Media
Smarsh Presents The Real Business Value of Social Media
 
Managing Digital Communications in a Big Data World Presented by Smarsh VP, R...
Managing Digital Communications in a Big Data World Presented by Smarsh VP, R...Managing Digital Communications in a Big Data World Presented by Smarsh VP, R...
Managing Digital Communications in a Big Data World Presented by Smarsh VP, R...
 
Enterprise Social: Fad or Foundational?
Enterprise Social: Fad or Foundational? Enterprise Social: Fad or Foundational?
Enterprise Social: Fad or Foundational?
 

Recently uploaded

如何办理美国加州大学欧文分校毕业证(本硕)UCI学位证书
如何办理美国加州大学欧文分校毕业证(本硕)UCI学位证书如何办理美国加州大学欧文分校毕业证(本硕)UCI学位证书
如何办理美国加州大学欧文分校毕业证(本硕)UCI学位证书Fir L
 
如何办理(MSU文凭证书)密歇根州立大学毕业证学位证书
如何办理(MSU文凭证书)密歇根州立大学毕业证学位证书 如何办理(MSU文凭证书)密歇根州立大学毕业证学位证书
如何办理(MSU文凭证书)密歇根州立大学毕业证学位证书Sir Lt
 
Key Factors That Influence Property Tax Rates
Key Factors That Influence Property Tax RatesKey Factors That Influence Property Tax Rates
Key Factors That Influence Property Tax RatesHome Tax Saver
 
Constitutional Values & Fundamental Principles of the ConstitutionPPT.pptx
Constitutional Values & Fundamental Principles of the ConstitutionPPT.pptxConstitutional Values & Fundamental Principles of the ConstitutionPPT.pptx
Constitutional Values & Fundamental Principles of the ConstitutionPPT.pptxsrikarna235
 
如何办理佛蒙特大学毕业证学位证书
如何办理佛蒙特大学毕业证学位证书 如何办理佛蒙特大学毕业证学位证书
如何办理佛蒙特大学毕业证学位证书Fir sss
 
如何办理(Rice毕业证书)莱斯大学毕业证学位证书
如何办理(Rice毕业证书)莱斯大学毕业证学位证书如何办理(Rice毕业证书)莱斯大学毕业证学位证书
如何办理(Rice毕业证书)莱斯大学毕业证学位证书SD DS
 
如何办理(UNK毕业证书)内布拉斯加大学卡尼尔分校毕业证学位证书
如何办理(UNK毕业证书)内布拉斯加大学卡尼尔分校毕业证学位证书如何办理(UNK毕业证书)内布拉斯加大学卡尼尔分校毕业证学位证书
如何办理(UNK毕业证书)内布拉斯加大学卡尼尔分校毕业证学位证书SD DS
 
Vanderburgh County Sheriff says he will Not Raid Delta 8 Shops
Vanderburgh County Sheriff says he will Not Raid Delta 8 ShopsVanderburgh County Sheriff says he will Not Raid Delta 8 Shops
Vanderburgh County Sheriff says he will Not Raid Delta 8 ShopsAbdul-Hakim Shabazz
 
定制(WMU毕业证书)美国西密歇根大学毕业证成绩单原版一比一
定制(WMU毕业证书)美国西密歇根大学毕业证成绩单原版一比一定制(WMU毕业证书)美国西密歇根大学毕业证成绩单原版一比一
定制(WMU毕业证书)美国西密歇根大学毕业证成绩单原版一比一jr6r07mb
 
如何办理(ISU毕业证书)爱荷华州立大学毕业证学位证书
如何办理(ISU毕业证书)爱荷华州立大学毕业证学位证书如何办理(ISU毕业证书)爱荷华州立大学毕业证学位证书
如何办理(ISU毕业证书)爱荷华州立大学毕业证学位证书SD DS
 
John Hustaix - The Legal Profession: A History
John Hustaix - The Legal Profession: A HistoryJohn Hustaix - The Legal Profession: A History
John Hustaix - The Legal Profession: A HistoryJohn Hustaix
 
国外大学毕业证《奥克兰大学毕业证办理成绩单GPA修改》
国外大学毕业证《奥克兰大学毕业证办理成绩单GPA修改》国外大学毕业证《奥克兰大学毕业证办理成绩单GPA修改》
国外大学毕业证《奥克兰大学毕业证办理成绩单GPA修改》o8wvnojp
 
如何办理伦敦南岸大学毕业证(本硕)LSBU学位证书
如何办理伦敦南岸大学毕业证(本硕)LSBU学位证书如何办理伦敦南岸大学毕业证(本硕)LSBU学位证书
如何办理伦敦南岸大学毕业证(本硕)LSBU学位证书FS LS
 
Legal Alert - Vietnam - First draft Decree on mechanisms and policies to enco...
Legal Alert - Vietnam - First draft Decree on mechanisms and policies to enco...Legal Alert - Vietnam - First draft Decree on mechanisms and policies to enco...
Legal Alert - Vietnam - First draft Decree on mechanisms and policies to enco...Dr. Oliver Massmann
 
如何办理密德萨斯大学毕业证(本硕)Middlesex学位证书
如何办理密德萨斯大学毕业证(本硕)Middlesex学位证书如何办理密德萨斯大学毕业证(本硕)Middlesex学位证书
如何办理密德萨斯大学毕业证(本硕)Middlesex学位证书FS LS
 
昆士兰科技大学毕业证学位证成绩单-补办步骤澳洲毕业证书
昆士兰科技大学毕业证学位证成绩单-补办步骤澳洲毕业证书昆士兰科技大学毕业证学位证成绩单-补办步骤澳洲毕业证书
昆士兰科技大学毕业证学位证成绩单-补办步骤澳洲毕业证书1k98h0e1
 
Test Identification Parade & Dying Declaration.pptx
Test Identification Parade & Dying Declaration.pptxTest Identification Parade & Dying Declaration.pptx
Test Identification Parade & Dying Declaration.pptxsrikarna235
 
如何办理新加坡南洋理工大学毕业证(本硕)NTU学位证书
如何办理新加坡南洋理工大学毕业证(本硕)NTU学位证书如何办理新加坡南洋理工大学毕业证(本硕)NTU学位证书
如何办理新加坡南洋理工大学毕业证(本硕)NTU学位证书Fir L
 
如何办理(SFSta文凭证书)美国旧金山州立大学毕业证学位证书
如何办理(SFSta文凭证书)美国旧金山州立大学毕业证学位证书如何办理(SFSta文凭证书)美国旧金山州立大学毕业证学位证书
如何办理(SFSta文凭证书)美国旧金山州立大学毕业证学位证书Fs Las
 
Arbitration, mediation and conciliation in India
Arbitration, mediation and conciliation in IndiaArbitration, mediation and conciliation in India
Arbitration, mediation and conciliation in IndiaNafiaNazim
 

Recently uploaded (20)

如何办理美国加州大学欧文分校毕业证(本硕)UCI学位证书
如何办理美国加州大学欧文分校毕业证(本硕)UCI学位证书如何办理美国加州大学欧文分校毕业证(本硕)UCI学位证书
如何办理美国加州大学欧文分校毕业证(本硕)UCI学位证书
 
如何办理(MSU文凭证书)密歇根州立大学毕业证学位证书
如何办理(MSU文凭证书)密歇根州立大学毕业证学位证书 如何办理(MSU文凭证书)密歇根州立大学毕业证学位证书
如何办理(MSU文凭证书)密歇根州立大学毕业证学位证书
 
Key Factors That Influence Property Tax Rates
Key Factors That Influence Property Tax RatesKey Factors That Influence Property Tax Rates
Key Factors That Influence Property Tax Rates
 
Constitutional Values & Fundamental Principles of the ConstitutionPPT.pptx
Constitutional Values & Fundamental Principles of the ConstitutionPPT.pptxConstitutional Values & Fundamental Principles of the ConstitutionPPT.pptx
Constitutional Values & Fundamental Principles of the ConstitutionPPT.pptx
 
如何办理佛蒙特大学毕业证学位证书
如何办理佛蒙特大学毕业证学位证书 如何办理佛蒙特大学毕业证学位证书
如何办理佛蒙特大学毕业证学位证书
 
如何办理(Rice毕业证书)莱斯大学毕业证学位证书
如何办理(Rice毕业证书)莱斯大学毕业证学位证书如何办理(Rice毕业证书)莱斯大学毕业证学位证书
如何办理(Rice毕业证书)莱斯大学毕业证学位证书
 
如何办理(UNK毕业证书)内布拉斯加大学卡尼尔分校毕业证学位证书
如何办理(UNK毕业证书)内布拉斯加大学卡尼尔分校毕业证学位证书如何办理(UNK毕业证书)内布拉斯加大学卡尼尔分校毕业证学位证书
如何办理(UNK毕业证书)内布拉斯加大学卡尼尔分校毕业证学位证书
 
Vanderburgh County Sheriff says he will Not Raid Delta 8 Shops
Vanderburgh County Sheriff says he will Not Raid Delta 8 ShopsVanderburgh County Sheriff says he will Not Raid Delta 8 Shops
Vanderburgh County Sheriff says he will Not Raid Delta 8 Shops
 
定制(WMU毕业证书)美国西密歇根大学毕业证成绩单原版一比一
定制(WMU毕业证书)美国西密歇根大学毕业证成绩单原版一比一定制(WMU毕业证书)美国西密歇根大学毕业证成绩单原版一比一
定制(WMU毕业证书)美国西密歇根大学毕业证成绩单原版一比一
 
如何办理(ISU毕业证书)爱荷华州立大学毕业证学位证书
如何办理(ISU毕业证书)爱荷华州立大学毕业证学位证书如何办理(ISU毕业证书)爱荷华州立大学毕业证学位证书
如何办理(ISU毕业证书)爱荷华州立大学毕业证学位证书
 
John Hustaix - The Legal Profession: A History
John Hustaix - The Legal Profession: A HistoryJohn Hustaix - The Legal Profession: A History
John Hustaix - The Legal Profession: A History
 
国外大学毕业证《奥克兰大学毕业证办理成绩单GPA修改》
国外大学毕业证《奥克兰大学毕业证办理成绩单GPA修改》国外大学毕业证《奥克兰大学毕业证办理成绩单GPA修改》
国外大学毕业证《奥克兰大学毕业证办理成绩单GPA修改》
 
如何办理伦敦南岸大学毕业证(本硕)LSBU学位证书
如何办理伦敦南岸大学毕业证(本硕)LSBU学位证书如何办理伦敦南岸大学毕业证(本硕)LSBU学位证书
如何办理伦敦南岸大学毕业证(本硕)LSBU学位证书
 
Legal Alert - Vietnam - First draft Decree on mechanisms and policies to enco...
Legal Alert - Vietnam - First draft Decree on mechanisms and policies to enco...Legal Alert - Vietnam - First draft Decree on mechanisms and policies to enco...
Legal Alert - Vietnam - First draft Decree on mechanisms and policies to enco...
 
如何办理密德萨斯大学毕业证(本硕)Middlesex学位证书
如何办理密德萨斯大学毕业证(本硕)Middlesex学位证书如何办理密德萨斯大学毕业证(本硕)Middlesex学位证书
如何办理密德萨斯大学毕业证(本硕)Middlesex学位证书
 
昆士兰科技大学毕业证学位证成绩单-补办步骤澳洲毕业证书
昆士兰科技大学毕业证学位证成绩单-补办步骤澳洲毕业证书昆士兰科技大学毕业证学位证成绩单-补办步骤澳洲毕业证书
昆士兰科技大学毕业证学位证成绩单-补办步骤澳洲毕业证书
 
Test Identification Parade & Dying Declaration.pptx
Test Identification Parade & Dying Declaration.pptxTest Identification Parade & Dying Declaration.pptx
Test Identification Parade & Dying Declaration.pptx
 
如何办理新加坡南洋理工大学毕业证(本硕)NTU学位证书
如何办理新加坡南洋理工大学毕业证(本硕)NTU学位证书如何办理新加坡南洋理工大学毕业证(本硕)NTU学位证书
如何办理新加坡南洋理工大学毕业证(本硕)NTU学位证书
 
如何办理(SFSta文凭证书)美国旧金山州立大学毕业证学位证书
如何办理(SFSta文凭证书)美国旧金山州立大学毕业证学位证书如何办理(SFSta文凭证书)美国旧金山州立大学毕业证学位证书
如何办理(SFSta文凭证书)美国旧金山州立大学毕业证学位证书
 
Arbitration, mediation and conciliation in India
Arbitration, mediation and conciliation in IndiaArbitration, mediation and conciliation in India
Arbitration, mediation and conciliation in India
 

The Legal Perspective: Retaining and Supervising Electronic Communications for Regulatory Compliance

  • 1. Retaining and Supervising Electronic Communications for Regulatory Compliance Brian L. Rubin Susan Krawczyk Andrew McCormick Mike Pagani April 14, 2015
  • 2. ©2014 Sutherland Asbill & Brennan LLP 2014 FINRA ACTIONS  Number of 2014 Cases Filed: 1,397  1,535 cases filed in 2013  9% decrease in 2014  The number of cases has declined three straight years  30% increase in the number of cases since 2008
  • 3. ©2014 Sutherland Asbill & Brennan LLP 2014 FINRA ACTIONS  Approximately $135M of fines reported in 2014  This is the most FINRA fines reported since 2005 ($149M); 382% increase in fines since 2008
  • 4. ©2014 Sutherland Asbill & Brennan LLP 2014 FINRA ACTIONS  Approximately $52M of restitution reported in 2014  This is a new FINRA record.
  • 5. ©2014 Sutherland Asbill & Brennan LLP 2014 FINRA ACTIONS Firms Expelled:  The number of firms expelled by FINRA declined from 24 in 2013 to 18 in 2014, a decrease of 25% (following a 20% decrease in the number of firms expelled during the prior year). Individuals Barred/Suspended:  The number of individuals suspended increased from 670 in 2013 to 705 in 2014, an increase of 5%, and the number of individuals barred jumped from 429 in 2013 to 481 in 2014, an increase of 12%.  This is the second year in a row where the number of firms that were expelled decreased significantly, but the number of individuals suspended or barred increased.
  • 6. ©2014 Sutherland Asbill & Brennan LLP 2014 TOP FINRA ENFORCEMENT ISSUES (by total fines) 1. Research Reports/Analysts: $59 million, 19 cases 2. Advertising: $17 million, 31 cases 3. Best Execution: $14 million, 83 cases 4. Anti-Money Laundering: $13 million, 34 cases 5. Trade Reporting: $11 million, 176 cases 2014 FINRA ACTIONS
  • 7. ©2014 Sutherland Asbill & Brennan LLP Electronic Communications: FINRA Case Statistics Fines Reported Percentage Change Percentage of Total FINRA Fines Cases Reported Percentage Change 2008 $2.7M - 10% 24 - 2009 $3.5M 30% 7% 24 0% 2010 $2.4M (31%) 6% 35 46% 2011 $3.3M 38% 5% 57 63% 2012 $6.5M 97% 9% 63 11% 2013 $19.8M 204% 33% 68 8% 2014 $2.7M (86%) 2% 54 (21%)
  • 8. ©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Regulatory Requirements  SEC Rule 17a-4(b): “…shall preserve for a period of not less than three years, the first two years in an easily accessible place…[o]riginals of all communications received and copies of all communications sent…”  SEC Rule 17a-4(f): if a firm uses electronic storage media, must notify SEC and the retention system must be WORM compliant  FINRA Rule 3110.09: “Each member shall retain the internal communications and correspondence of associated persons relating to the member's investment banking or securities business for period of time and accessibility specified in . . . Rule 17a-4”  FINRA Rule 2210: “members must maintain all retail communications and institutional communications for the retention period required by” Rule 17a-4 and in format and media that comply with the rule
  • 9. ©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Types of electronic communications that must be retained:  internal and external emails  emails from DBAs  alternative email addresses  distribution lists  BCC emails  encrypted emails  third-party system emails  IMs, Bloomberg messages, text messages, firm social media posts  websites
  • 10. ©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Technology Best Practices  Archiving solution should feature automation – don’t rely on manual processes that allow for missing or deleted information  Solution should support multiple message/content types: Email, instant messaging, text messaging, websites and social media  Solution should capture/index and render each message type in its original native format – especially important for social media  No silos – your archiving solution should feature a consolidated indexing scheme and search/processing interface across all the content/content types being archived
  • 11. ©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Other types of electronic communications supervision essentials that must be retained
  • 12. ©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications Most commonly requested content types 1. Email 2. Website pages 3. Instant messages 4. Bloomberg or Reuters messages 5. Social media 6. Email marketing 7. Text/SMS messages
  • 13. ©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications: Lessons from Enforcement Actions Mobile devices should be configured properly.  A 2014 FINRA case resulted in a $275,000 fine for allegations that emails sent from Blackberry devices to recipients outside the firm were not retained. FINRA also alleged that no Blackberry messages were retained. Firms must also retain instant messages.  A 2013 FINRA case resulted in a $3.75M fine for allegations that the firm did not retain electronic records in a WORM format over a 10-year period, including trade confirmations, email attachments, and 3.3 million Bloomberg instant messages.
  • 14. ©2014 Sutherland Asbill & Brennan LLP Retaining Electronic Communications: Lessons from Enforcement Actions Retention failures can lead to significant fines.  A 2013 FINRA case resulted in a $7.5M fine for systemic email retention failures. Allegations that the firm could not access hundreds of millions of emails, failed to review tens of millions of emails, and misled FINRA during the investigation. Firm ordered to pay $1.5M to litigants who may have been impacted by these email issues. Unique categories of emails must also be retained.  A 2013 FINRA case resulted in a $1.2M fine for five affiliated firms for allegedly failing to retain unique categories of emails, including BCC emails, emails to distribution lists, emails to/from alternate addresses, and encrypted emails.
  • 15. ©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications: Regulatory requirements for supervision of retail and institutional communications  FINRA Rule 2210 applies  Retail communications  Must be approved by qualified principal before use or filing with FINRA  Institutional communications:  Must have procedures  Appropriate to business, size, structure and customers  For review by qualified principal  Reasonably designed to ensure compliance with applicable standards  If each communication is not reviewed:  Education and training of associated persons  Documentation of education and training  Surveillance and follow-up to ensure compliance
  • 16. ©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications: Regulatory requirements for supervision of correspondence FINRA Rule 3110(b)(4): supervisory procedures must require:  Review of incoming and outgoing written (including electronic) correspondence to properly identify and handle in accordance with firm procedures, customer complaints, instructions, funds and securities and communications that are of a subject matter that require review under FINRA rules and federal securities laws  Review of internal communications to properly identify those communications of a subject matter requiring review under FINRA rules and federal securities laws  Review must be conducted by a registered principal  Review must be evidenced in writing, either electronically or on paper
  • 17. ©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications Risk-based approach permitted  FINRA Rule 3110.06  Must consider whether to adopt additional procedures for the review of matters outside the specified subject matter that are necessary for the firm's business and structure  Must have procedures that provide for:  Education/training about correspondence procedures  Documenting education/training about procedures  Surveillance and follow-up to make sure procedures are implemented and followed
  • 18. ©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications Additional guidance on supervisory reviews of correspondence  FINRA Rule 3110.09  Name of person who prepared correspondence must be in the records  FINRA Rule 3110.07  Evidence of review required must be chronicled electronically or on paper  Evidence must clearly identify the reviewer, the internal communication or correspondence that was reviewed, the date of review, and the actions taken by the member as a result of any significant regulatory issues identified during the review  “Merely opening a communication is not sufficient review.”  FINRA Rule 3110.08:  Supervisor remains ultimately responsible for the performance of all necessary supervisory reviews, irrespective of whether he or she delegates functions related to the review
  • 19. ©2014 Sutherland Asbill & Brennan LLP  Supervisory systems commonly rely on automated tools and systems  Lexicon based reviews  Random reviews  Combination of methods  Ability to review attachments  Need for ongoing evaluation procedures  Identify and address “loopholes” and developments  Know and work around limitations Supervising Electronic Communications
  • 20. ©2014 Sutherland Asbill & Brennan LLP Technology best practices  Look for regulators to expect a more sophisticated approach to supervision beyond basic keywords, including:  Flagging of messages from specific individuals or groups deemed “high risk”  Assigning points to specific types of violations (scoring)  Ensure your lexicon/keywords and groups are reviewed and updated or “fine tuned” on a regular basis to ensure you’re adequately flagging the right messages and optimizing the process  Look for a solution that will automate some of the supervision tasks  Ask your provider what they can do. Many firms are not taking full advantage of the capabilities of their archiving provider. Supervising Electronic Communications
  • 21. ©2014 Sutherland Asbill & Brennan LLP Supervisory Systems Technology Best Practices  Monitor messages with attachments and their contents  Monitor and review of encrypted emails using an email encryption service that works seamlessly with, or is an extension of your overall archiving solution  Communicate any and all changes to your firm’s email hosting or tech configuration to your archiving vendor to avoid any journaling disruption  Perform internal evaluations to ensure all supervision and enforcement activities take place – look for a solution that provides easy activity and audit trail reporting
  • 22. ©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications: Lessons from Enforcement Actions Lexicon search terms should be robust and relevant.  A 2013 FINRA case resulted in a $100,000 fine for allegations that the surveillance software used by the firm did not flag emails containing language such as “no principal risk,” “completely liquid,” and “principal protection.”  A 2012 FINRA case resulted in a $100,000 fine for allegations that the firm did not update its email lexicon to reflect concerns about a representative who was experiencing financial troubles, which caused the firm not to review emails evidencing the representative’s misconduct.
  • 23. ©2014 Sutherland Asbill & Brennan LLP Supervising Electronic Communications: Lessons from Enforcement Actions Software must be properly configured.  A 2014 FINRA case resulted in a $250,000 fine for allegations that the firm did not subject 12.6M DBA emails to a surveillance review due to technological problems with a software update. FINRA also alleged that the firm did not perform regular testing to make sure the surveillance system was working properly.
  • 24. ©2014 Sutherland Asbill & Brennan LLP Questions? Sutherland Brian L. Rubin brian.rubin@sutherland.com 202.383.0124 Susan Krawczyk susan.krawczyk@sutherland.com 202.383.0197 Andrew McCormick andrew.mccormick@sutherland.com 202.383.0867 @SUTHERLAND_LAW Smarsh Mike Pagani @Mike_Pagani https://www.linkedin.com/pub/mikepagani/1/229/801 @SMARSHINC

Editor's Notes

  1. Mike will jump in a comment on advertising
  2. (NOTE: no change from last year) Email (still #1, but % of overall is declining)
  3. Mention Smarsh Professional Services
  4. This is part of an overall cyber-security program.