While it may be Easier for Investment Advisors to Utilize Texting to Communicate with Clients, it is Important to Remember that Many of the “Old Rules” Still Apply…
Technology makes it easy for investment advisers to communicate with clients. However, it is important to remember that many of the “old” rules still apply. In a recent National Exam Program Risk Alert, the Securities and Exchange Commission’s (SEC) Office of Compliance Inspections and Examinations (OCIE) reminded the regulated community that the Investment Advisers Act of 1940 (Advisers Act) often applies to electronic messages, such as text messages, instant messages, and social media posts.
OCIE conducted a limited-scope examination initiative of registered investment advisers (advisers) designed to obtain an understanding of the various forms of electronic messaging used by advisers and their personnel, as well as the risks of such use. The resulting Risk Alert “reminds” advisers of their obligations under the Advisers Act that may apply to electronic messages and provides “examples of practices that the staff believes may assist advisers” to improve their relevant systems, policies and procedures. Before examining the SEC’s guidance, the Advisers Act “Books and Records Rule,” Advisers Act Rule 204-2 is summarized.
The “Books and Records Rule,” Advisers Act Rule 204-2, requires advisers to make and keep certain books and records relating to their investment advisory business. For example, Rule 204-2(a)(7) requires advisers to make and keep “[o]riginals of all written communications received and copies of all written communications sent by such investment adviser relating to (i) any recommendation made or proposed to be made and any advice given or proposed to be given, (ii) any receipt, disbursement or delivery of funds or securities, (iii) the placing or execution of any order to purchase or sell any security, or (iv) the performance or rate of return of any or all managed accounts or securities recommendations,” subject to certain limited exceptions.
Additionally, Rule 204-2(a)(11) requires advisers to make and keep a copy of each notice, circular, advertisement, newspaper article, investment letter, bulletin or other communication that the investment adviser circulates or distributes, directly or indirectly, to ten or more persons. The SEC previously advised that, “regardless of whether information is delivered in paper or electronic form, broker-dealers and investment advisers must reasonably supervise firm personnel with a view to preventing violations.” Additionally, Advisers Act Rule 206(4)-7 (the “Compliance Rule,”) requires advisers to adopt and implement written policies and procedures reasonably designed to prevent violations of the Advisers Act and its rules.
OCIE Electronic Messaging Risk Alert Provides Guidance to Advisers – Expansive Definition of Electronic Communications:
Usage developments in the way mobile and personally owned devices are used pose challenges for advisers in meeting their obligations under both the Books and Records Rule and the Compliance Rule. OCIE broadly defines “electronic messaging” or “electronic communication” to include written business communications conveyed electronically using, text/SMS messaging, instant messaging, personal email, and personal or private messaging. OCIE included communications when conducted on the adviser’s systems, third-party applications, platforms or sent using the adviser’s computers, mobile devices issued by advisory firms, or personally owned computers or mobile devices used by the adviser’s personnel in the adviser’s business.
Examples of practices OCIE identified as helpful to advisers in meeting their record retention obligations under the Books and Records Rule and implementation and design of policies and procedures under the Compliance Rule:
Policies and Procedures
Prevent Misuse: Prohibiting business use of apps and other technologies that can be readily misused by allowing an employee to send messages or otherwise communicate anonymously, allowing for automatic destruction of messages, or prohibiting third-party viewing or back-up.
Surveillance of Electronic Communications: If advisers permit their personnel to use social media, personal email accounts, or personal websites for business purposes, adopting and implementing policies and procedures for the monitoring, review, and retention of such electronic communications.
Sanctions Policy Notice: Including a statement in policies and procedures informing employees that violations may result in discipline or dismissal.
Employee Training and Attestations
Training Program: Requiring personnel to complete training on the adviser’s policies and procedures regarding prohibitions and limitations placed on the use of electronic messaging, electronic apps, and the adviser’s disciplinary consequences of violating these policies and procedures. Obtaining signed/dated attestations from employees documenting (i) completion of the required training on electronic messaging, (ii) compliance with all such requirements, and (iii) commitment to do so in the future (i.e., annual updates).
Periodic “Reminders”: Providing reminders to employees of what is permitted and prohibited under the adviser’s policies and procedures with respect to electronic messaging.
Feedback Request: Soliciting feedback from personnel as to the various forms of messaging requested by clients and service providers in order for the adviser to (1) assess their risks and (2) how those forms of communication may be incorporated into the adviser’s updated policies/procedures.
Supervisory Review
Contract/Agreement Diligence: Contracting with software vendors to assure functionality: (i) monitor the social media posts, emails, or websites, (ii) archive such business communications to ensure compliance with record retention rules, and (iii) ensure that they have the capability to identify any changes to content and compare postings to a lexicon of key words and phrases.
Social Media Site Review: Regularly reviewing popular social media sites to identify if employees are using the media in a way not permitted by the adviser’s policies.
Internet Searches: Running regular Internet searches or setting up automated alerts to notify the adviser when an employee’s name or the adviser’s name appears on a website to identify potentially unauthorized advisory business being conducted online.
Control Over Devices
Prior Approval of Firm Required: Requiring employees to obtain prior approval from the adviser’s information technology or compliance staff before they are able to access firm email servers or other business applications from personally owned devices. This may help advisers create an inventory list of devices and understand each employee’s use of mobile devices to engage in advisory activities.
Security Apps Required: Loading certain security apps or other software on company-issued or personally owned devices prior to allowing them to be used for business communications. Software is available that enables advisers to (i) “push” mandatory cybersecurity patches to the devices to better protect the devices from hacking or malware.
(ii) monitor for prohibited apps, and (iii) “wipe” the device of all locally stored information if the device were lost or stolen.
Access Restrictions: Allowing employees to access the adviser’s email servers or other business applications only by virtual private networks or other security apps to segregate remote activity to help protect the adviser’s servers from hackers or malware.
Key Takeaways
One of the keys to compliance program success is a continuous assessment of Company risks and improvements to existing policies/procedures as determined to be necessary. With respect to electronic messaging, it is important to remain current with emerging technology. Lastly, monitoring regulatory developments provides useful guidance for the Company’s Compliance and Legal departments.
If you have questions, please contact us
If you have any questions or if you would like to discuss the matter further, please contact me, Paul Lieberman, or the Scarinci Hollenbeck attorney with whom you work, at 201-806-3364.
Breach of Contract Explained: Types and Consequences
Breach of contract disputes are the most common type of business litigation. Therefore, nearly all New York and New Jersey businesses will likely have to deal with a contract dispute at least once. Understanding when to file a breach of contract lawsuit and how long you have to sue for breach of contract is essential […]
How to Dissolve a Corporation in New Jersey: A Step-by-Step Guide
Closing your business can be a difficult and challenging task. For corporations, the process includes formal approval of the dissolution, winding up operations, resolving tax liabilities, and filing all required paperwork. Whether you need to understand how to dissolve a corporation in New York or New Jersey, it’s imperative to take all of the proper […]
Gross Lease vs. Net Lease: Understanding the Key Differences
Commercial leases can take a variety of forms, which is often confusing for both landlords and tenants. Understanding the different types, especially the gross lease structure, is important when selecting the lease that best suits your needs. One key distinction between lease types is how rent is calculated and paid. This article addresses the two […]
What to Do If You Are Impacted by a Retailer Bankruptcy Part 2
Over the past year, brick-and-mortar stores have closed their doors at a record pace. Fluctuating consumer preferences, the rise of online shopping platforms, and ongoing economic uncertainty continue to put pressure on the retail industry. When a retailer seeks bankruptcy protection, a myriad of other businesses are often impacted. Whether you are a supplier, customer, […]
The Current Administration's Proposals for the Financial Services and Banking Industries Will Affect Your Business
Since his inauguration two months ago, Donald Trump’s administration and the Congress it controls have indicated important upcoming policy changes. These changes will impact financial services policies and priorities. The changes will particularly affect cryptocurrency, as well as banking rules and regulations. Key Regulatory Changes in Cryptocurrency For example, in the burgeoning cryptocurrency business environment, […]
Tips for Commercial Landlords Impacted by Wave of Retailer Bankruptcies Part 1
The retail sector has experienced a wave of bankruptcy filings over the last year. Brick-and-mortar businesses in financial distress include big-name brands like Big Lots, Party City, The Container Store, and Vitamin Shoppe. When large retailers seek bankruptcy protection, they are not the only businesses impacted. Landlords can be particularly hard hit. While commercial landlords […]
No Aspect of the advertisement has been approved by the Supreme Court. Results may vary depending on your particular facts and legal circumstances.
Sign up to get the latest from our attorneys!
Explore What Matters Most to You.
Consider subscribing to our Firm Insights mailing list by clicking the button below so you can keep up to date with the firm`s latest articles covering various legal topics.
Stay informed and inspired with the latest updates, insights, and events from Scarinci Hollenbeck. Our resource library provides valuable content across a range of categories to keep you connected and ahead of the curve.
Let`s get in touch!
Sign up to get the latest from the Scarinci Hollenbeck, LLC attorneys!
