Month: May 2012

Keynote interview – Working with the SEC

These are my notes from the “Keynote interview – Working with the SEC” session at the Private Fund Compliance Forum 2012.

H. David Kotz, former Inspector General, Office of the Inspector General, United States Securities and Exchange Commission (2007-2012), currently Managing Director, Gryphon Strategies, interviewed by Lois Towers, Principal, Pantheon Ventures

Discussed the Madoff debacle at the SEC. His take was a failure of competence, but Madoff played different examiners in different offices against each other. He does think the SEC has learned its lessons from the failure.

As a result of Madoff, examiners are a bit nervous about failing to catch a bad guy. They take longer to close out cases and issue more deficiency letters.

He recognized that the SEC is in a political vice grip. The Democrats pushed more responsibilities on the SEC under Dodd-Frank. The Republicans failed to give the SEC any budget to tackle the additional responsibilities.

Kotz stated that there are varying levels of competency in the SEC. There are some tremendous, smart, hard-working individuals. But it’s hard for the SEC to weed out under-performing employees.

Kotz gave lots of credit to Carlo di Florio and his new approach to examination. He is concerned that it will take lots of time to move a big bureaucracy like the SEC.

He thinks that examiners get rewarded for finding stuff in exams. Lots of no deficiency letters is an indication that the examiner is just missing the issues, not that there is a lack of issues.

His view was clearly a cynical view of the SEC. He admitted as much.

Mock Audit: Successfully Maneuvering Your Way Through an SEC Exam

These are my notes from the “Mock Audit: Successfully maneuvering your way through an SEC exam” session at the Private Fund Compliance Forum 2012. These are my raw notes, so please excuse the typos and rambling.

Moderator

Panel Members:

There has been a dramatic increase in the SEC’s understanding of private equity and private fund managers. They are developing the internal expertise and understand the business and risks of the business. Of course, it depends on the individual examiner.

It’s a good idea to give them an introduction to the business. You can help frame the exam and their focus. It’s great to run an introductory message to the SEC. You can share the operations, investment strategy, key personnel, and risks.

There has been a push by the SEC headquarters to standardize the exam process. Historically it varied dramatically from SEC Regional Office to Regional Office. The first level of standardization is the document request letter. It has largely been standardized across the country.

An exam can last from a few days to several months. It depends whether they actually come to the office and the type of exam.

The SEC will contact limited partners. As part of the asset verification program, the SEC will compare the firm records to the account records.

How can a firm prepare for a SEC exam?

You are never going to be fully prepared. You are always going to get a deficiency letter. You need to show your compliance program. At least show that you are trying.

One panelist recommended Bates stamping all of the documents. Always keep a duplicate copy and inventory what you give them. One panelist shared an anecdote that a client received a deficiency letter for not delivering a requested document. Even though the client thought they had deliver it, the client had bad records and could not prove that they had given it.

Will an exam address issues for things that occurred before registration? The SEC will likely start from the registration date. If you have the records and information for pre-registration and readily available, then give it to them. If it’s hard, then push back.

Be scrupulously honest. Covering up a problem will often be worse than the underlying problem.

Cooperate. Don’t say no. Try to find what they are looking for and a different way to deliver it or otherwise address the concern.

Do confirm that the exam request came from the SEC. There have been cases of impersonation.

Find a model request list and try to produce all of the information as quickly as possible.

It’s good to have counsel involved in the SEC exam. However, too much lawyer involvement can be a red flag to the SEC. The CCO should always be in the room during an SEC interview.

Make sure you have a point person for the SEC. Best that it be the CCO, but if not available make sure someone else is.

Take time during the day to stop in and ask the examiners if they are getting everything they need and if they are missing something.

Take advantage of an exit interview with the SEC examiners.

Often the SEC examiners will send a draft of the deficiency letter for comment by the firm. You have 30 days to respond to the deficiency letter.

Historically, the typical routine exam will result in a deficiency letter 95+% of the time. The no action letter comes in only1% to 3% of the time.

The most common deficiencies are disclosure issues in the Form ADV, marketing issues, Code of Ethics issues, and the compliance program itself.

Side letter compliance is something unique to private funds.

 

The Role of Social Media in the Compliance World

These are the speaking notes from this session at PEI’s Private Fund Compliance Forum 2012.

Panelists:

  • Me
  • Gerry Esposito, Managing Director, CFO & CCO Newbury Partners LLC


Audience Polls

  • Registered with the SEC as investment advisers?
  • How many just registered in the last few months (been Dodd-Franked)?
  • Also registered as broker-dealers?
    (We are not covering FINRA Rules)
  • Retail customers as well as funds?
    (Rules on Supervised persons)

Social Media and Fund Marketing

Investment Advisers Act

  • (Assuming most of the audience is recently registered) the Investment Advisers Act permits marketing and advertising, as long as it is not fraudulent, deceptive or manipulative.
  • Not going to address the SEC rules in advertising in any detail.
  • Assume that publication of information through social media is likely to be considered advertising.


Rule 506

  • Even though advertising permitted under Advisers act, sales of LP interests in your funds are subject to the private placement rules. That means private and no “general solicitation or advertisement.”
  • Twitter, Facebook, or blog posts mentioning your fundraising could violate the ban and blow your private placement.


JOBS Act

  • Orders the SEC to lift the ban on general solicitation and advertisement.
  • July 4 deadline for the new SEC rule revising the Rule 506 limitation
  • Also says the ban should apply to all federal securities laws so the nonpublic limitations under IC 3(c)(1) and 3(c)(7) should also be raised


You can, but should you?

  • Expect to attract investors through social media
  • Expect to source deals through social media
  • Examples:
    • Fred Wilson of Union Square Ventures,  A VC blog: http://www.avc.com
    • Beacon uses Facebook and Twitter for retail property level marketing
  • SEC use of social media – Use twitter to send out updates.

Fraud

  • First SEC case involving IA and social media was Anthony Fields
    http://www.sec.gov/news/press/2012/2012-3.htm
  • Used LinkedIn to make multiple fraudulent offers of fictitious bank guarantees
  • That uncovered lots of other deception

Social Media and Employees

SEC Rules

  • SEC National Examination Risk Alert – Investment Adviser Use of Social Media
    http://www.sec.gov/about/offices/ocie/riskalert-socialmedia.pdf
  • Ban on testimonials
    • Linkedin Recommendations could act as a testimonial
    • Facebook Like button could be considered a testimonial
    • Re-tweeting – is it an endorsement of the message


Recordkeeping Requirements

  • SEC’s recordkeeping requirements are media neutral, so social media is subject to the SEC’s recordkeeping requirements.
  • Unlike email, records are in the cloud and subject to the whims of the platform. They don’t care that you have recordkeeping requirements
  • Third party provider to capture if need to meet record keeping
  • If marketing – need to keep a copy for six years. If sent to 10 or more people
  • If investment advice to a client – need to keep a copy for six years. Not applicable to funds.


Social Media and General Employment Issues

  • NLRB rulings
    • limits ability to discipline employees  for comments made on social media.
    • Example of complaining about company on Facebook – company was wrong to fire
  • Respect of confidentiality
  • Conflicts with fund communications to investors

 

 

Improving your compliance program through the use of technology

These are my notes from the Improving your compliance program through the use of technology session at the Private Fund Compliance Forum 2012.

ModeratorGraham Winfrey, Staff Writer, PEI Media
Panel Members:
Jeff Faber, Chief Financial Officer, Trafelet & Company, LLC
Stephen Marsh, Founder & CEO, Smarsh
Scott Ring, General Counsel, Bessemer Venture Partners

Based on an audience poll, only 10% are archiving and monitoring employees’ use of social media. A surprising number were looking to cloud computing as a viable option for storage.

Any repetitive function is a good candidate for a technology solution. Can it create efficiency and create value? A manual process can limit the access to information, not just take extra time.

One panelist uses Salesforce to have employees input conflicts and other compliance reporting information.

Technology for Form PF? Depends on your reporting level. If you are big and have to report at the high level of reporting then yes, you will need technology. There are some players that claim to be able to integrate with your data warehouse to help with reporting. This is still an evolving area.

The biggest mistake a company can make when it comes to record-keeping is to do nothing. A panelist pointed out that it is important to understand the differences between archiving and back-ups.

It is important that IT understand the compliance requirements. It’s important to test the message retrieval system to make sure you can quickly produce the records.

There is plenty of cheap technology that compliance can use that saves time and can replace manual processes. In 2012, technology is relatively cheap. On the other hand, you want to be careful of a proliferation of tools, especially those outside the firm’s servers and physical boundaries. You still need to comply with the SEC record-keeping requirements.

The issues around mobile devices have not changed recently. The issue is that the mobile devices are able to hold more information and applications. The biggest concern is losing a device that is not fully secure if lost.

How does a company monitor social media? That depends on policy. You can always block access and monitor website usage. It gets more challenging when it comes to “supervised persons.” Social media lives in the cloud that does not give you the right to access. One solution is to put a proxy in between users and a social media site. The other option is to use an API that pulls information from the sites. The third is just relying on an application on computer or device. You probably will need to rely on a combination of technologies to meet their compliance demands.

Firms will first need to balance the use of social media and the risks associated with them. It may be best for fund managers to not use social media. Employee education is key.

Policy AND technology is key. Even banning the use of social media, you need to check compliance. Employees amy inadvertently say something through social media.

(I left before the end of the panel. I had to get ready for my panel.)

Update on the new regulations and how they will impact you going forward

These are my notes from the “Update on the new regulations and how they will impact you going forward” session at the Private Fund Compliance Forum 2012. Excuse the typos and rambling nature. They are just my raw notes.

Moderator:

  • Karen Barr, General Counsel, Investment Adviser Association

Panel Members:

  • Jason E. Brown, Partner, Ropes & Gray LLP
  • Jason Mulvihill, General Counsel, Private Equity Growth Capital Council

Form PF

Should you be thinking about Form PF now? Depends. The reporting deadlines and substantive information varies depending on the type of fund and the size of the fund. If you filled out 7B1 in the Form ADV Part 1 then you need to file a Form PF.

Distinguishing between a hedge fund and private equity fund is a key to the reporting. It’s very technical. Can you charge a carry based on unrealized gains? Can you sell short? You may be a hedge fund. If you have different types of funds, you could be consolidated together to be a large hedge fund and have increased reporting obligations.

Good news. The filing of Form PF no longer has the “signing under penalty of perjury standard.” The SEC realized it’s more of an art than a science.

Focus on section 16 that asks for characterizations of investors. The SEC has made it clear that you need to gather the information on investors starting in March 2012. This is for new fund raising and transfers.
Is the Form PF information confidential? Supposedly. SEC says it will be confidential. Congress will have access. You can avoid listing the name of your fund.

Volker Rule

We are still waiting on the final wording of the Volker Rule. The Devil is in the details. The rule could limit the types of investors in private equity firms and limit the amount an investor could commit to a fund. There is lots of crafting going on. The final rule could be materially different from the proposed rule. There is a statutory compliance deadline starting on July 21, 2012. How do you become compliant with a rule that does not yet exist? Lots of uncertainty. Wait and see.

Incentive Compensation Rules

Section 956 of Dodd-Frank requires some disclosure and rule around executive compensation. The regulators issued a proposed rule. Firms will need to disclose compensation structure to regulators. Not the dollar amount, but how the compensation is calculated. Firms will need to analyze whether the compensation resulted in increased risk taking.

The level is $1 billion of asset. Not assets under management, but assets on the balance sheet. That would seem to exclude most private equity fund managers. You should expect some more clarification under the final rule. The proposed rule works well for banks, but gets murky when applied to fund managers. Look at question 1.O on Form ADV. If you checked that box, you are subject to this rule.
There is some concern that carried interest could be pulled into the 3 year holdback requirements under the proposed rule. That would seem strange since the carried interest has already been subject to a realization and usually lengthy investment period.

Treasury Regulations

There are treasury forms that have been on the books for years that nobody fills out.
Form SLT is the new form and the Treasury has used that as a tool to make firms aware of the other forms. Form SLT is based on foreign investments. The form is looking for more than $1 billion in foreign investments and more than $1 billion of foreign investors. There is an exclusion for direct investments.

Form S is also there for foreign investments and foreign investors. Add in Form SH.

BEA filings come out of the Department of Commerce, but Treasury helped publicize it. The BEA form is triggered if you own more than 10% of a foreign company. It requires lots of information. (The instructions say it will take 84 hours to complete the form and are required quarterly.)

FBAR is if you have control over a non-US account. Fortunately, it’s a short form. Add in FATCA and the proposed rules coming out on reporting for foreign accounts.

CFTC Regulations on swaps

The CFTC definitions are very broad. Trading even a small amount of commodities pulls you into the definition of a commodity fund. Dodd-Frank includes swaps into the definition of a commodity. The rules are not final yet. However, the CFTC has begun changing lots of other rules that get affected by the change in definition.

The CFTC has removed the broad exemption if you had all sophisticated investors, analogous to 3(c)(7). The other common exemption is a de minimis exemption. The broad exemption has been eliminated. There is a December 31, 2012 deadline for compliance. It’s tricky because a swap is not yet a commodity. There are lots of interpretive issues.

If you register as a commodity pool operator do the rules harmonize with the SEC’s investment adviser rules? No. The NFA (equivalent to FINRA) requires lots of information.

If you can fit under the de minimis exception, there is an annual filing requirement. For most private equity firms, you should be able to meet the de minimis exception. The threshold is 5% and 100% notional. The biggest footfall is likely to be hedging a credit facility before there is much investing.

JOBS Act

What happened? It was surprise that there was such bi-partisan support for this bill.

The law repeals the ban on general solicitation and advertising. This is still subject to SEC rule making. Don’t start advertising yet.

Keep in mind that two of the SEC commissioners sent letters to Congress that they were opposed to the bill and may take a harsh view in implementing the rules.

The change to 12(g) raising the limit of holders of record above 500 to 2000 allows for bigger funds. Although it be unusual to have a private fund with so many LPs.

Best practices for addressing anti-corruption issues

These are my notes from the “Best practices for addressing anti-corruption issues” session at the Private Fund Compliance Forum 2012.
Moderator:

  •  Douglas N. Greenburg, Partner & Vice Chair of the Global Litigation Department, Latham & Watkins LLP

Panel Members:

  • Edina Cavalli, Director, Global Head of Private Equity and Principal Investments Compliance, Barclays
  • Paul Golding, General Counsel, Citi Infrastructure Investors
  • Kelly Nash, Compliance Counsel, General Atlantic
  • Paul Winters, General Counsel & Chief Compliance Officer, Denham Capital

There are continuing challenges. Sure, the DOJ has recently lost a few cases and the Chamber of Commerce keeps pushing for FCPA reform. But FCPA will continue to be an enforcement priority.

Its not just a US law, the UK Bribery Act is probably more stringent, depending on enforcement. You also need to be aware of other local laws.

On the front-end, you should focus on the anti-corruption issues for the target. However, you are unlikely to be able to do a deep dive into a target’s finances. At least, you should look for red flags associated with the target.

  • Do business with a government official?
  • Partly owned by government official?
  • Engaged in an issue with history of corruption?
  • Does the business operate in high risk countries?
  • What do their procedures and controls look like?

One view is that in acquiring a portfolio company, someone from the private equity firm may end up on the board of directors for the company. That means potential libaility for serving on the board of company that commits violations of the FCPA or Bribery Act. That gets the attention of senior people at the firm. Everyone hates personal liability.

A key is documenting that you focused on the issues and what you did. If you can;t actually unearth bribery, you want to at least show that you conducted a reasonable amount of due diligence.

Personal libility is a concern. Business risk a bigger risk. If someone is engaged in bribery, they are engaged in illegal activity and may be involved in other shortcuts. Reputational risk is problably a bigger risk. The taint of corruption could severly impair the firm’s ability to sources and exit deals.

The tone for the portfolio company is set during the diligence phase. You are letting the target know that anti-corruption is important and will continue to be a focus post-acquisition.

Require management of acquired firms go through anti-corruption training. Do it even if the firm has an exisitng program. Get certification from top executives regarding bribery and corruption. Do you micro-manage the portfolio company?You need to let them know that you are concerned. Certainly, you want to make sure the fund management involved with the portfolio company is aware of the issues. Surprise audits are a great idea, but may be hard if you only have a minority interest.

There was a stern warning about the extra-terratorial reach of the UK Bribery Act. It also reaches beyond political bribery to commercial bribery. You also don’t need to have bad intentions. You should focus on your gifts and entertainment policies. Adapt the policies to facts and circumstances of the giving and the fund’s lifecycle. Could it look like you are trying to buy business. What is lacking under the UK Bribery Act is a history of enforcement. You don’t know what they are looking for and what they are going to do when they find bad acts.

Who should be doing bribery due diligence? Compliance or Acquisition teams? Both. Although it’s likely to end with compliance.

 

A view from the SEC

These are my notes from the “A view from the SEC” session at the Private Fund Compliance Forum 2012.

This session will provide you with in-depth analysis of how the SEC is dealing with new registrants. SEC officials will answer your most pressing questions to help you ensure an efficient compliance program.

Carlo V. di Florio, Director, United States Securities and Exchange Commission, Office of Compliance Inspections and Examinations interviewed by Nicholas Donato, Editor, Private Equity Manager

Mr. di Florio started off with some post-registration statistics:

  • 3100 private funds with 8 trillion dollars in the funds.
  • 4000 registered private fund advisers
  • 37 of the 50 world’s biggest private equity fund managers are now registered.
  • 48 of 50 world’s biggest hedge fund managers are now registered.

OCIE is working on a letter to the industry this summer on what it means to be registered and what is the SEC expected. OCIE is getting ready to do targeted inspections this fall on new registrants. After the examinations, OCIE plans to come back and let the industry know hwat tey found as the biggest concerns and what the industry is doing well. OCIE wants to share information so that compliance can do a better job.

OCIE has been focused on getting new examiners with specific skills in the industry. They want real world insights, not just general examiners. OCIE wants to know where the risks are.

What makes the SEC happy?

  • The firm has the talent and understanding of what it means to be registered.
  • The firm has the tone at the top and acceptance from senior management. That also means the resources.
  • They want to see the compliance to be tailored to the firm and training focused on the individuals in the firm.
  • OCIE wants to see some good monitoring and testing.

Performance advertising is a hot button. It needs to fairly disclosed and fully disclosed.

Some things that are unique to private funds. Fees and expenses are a critical area. Throughout the life cycle of the fund. He noted that some funds seem to be extending their duration merely to keep collecting fees.

(Mr. di Florio seemed to be well versed on how private funds work and the issues specific to private funds. It sounds like the SEC has quickly gotten up to speed on the issues particular to to private funds and how they operate differently from retail investment advisers.)

OCIE has a solid focus on senior management. They want to see the firm’s view on complaince and want to reinforce that compliance should be important to the firm.

Culture of compliance includes asking the CCO if they have the resources they need.
Mr. di Florio surprisingly noted that compensation is an important part of the culture of compliance. Paychecks are critical decision points.

Will the SEC be visiting exempt, reporting advisers? (VC firms and mid-sized private fund managers) Yes.
How to get the SEC out the door as quickly as possible?

First, figure out why they decided to come. They are staying away from routine regular checklist exams and doing mostly risk based focused exams. When they show up or announce the exam, ask the examiner why they decidded to spend their time with your firm. Tips, complaints, and referrals is a common source. This has been beefed up in recent years. (Post-Madoff) Tips, complaints, and referrals are also a way for the industry to self-police. Another source is the whistleblower program under Dodd-Frank and the financial incentive for whistleblowers.

Once they arrive. They are going to dive into the area of risk that brought them to the firm. Be prepared. Have the documents ready. Have the people available to talk with the SEC examiners. Some of the biggest impediments are waiting for documents and waiting for people to be available.

Valuations is a focus for OCIE when looking at private equity. In particular is the use of valuation in performance advertising and fee calculation.

How can the CCO let the SEC know that they do not have enough resources? (Passing notes saying “HELP ME”?) THe SEC will have its own point of view and has a broader view of the industry and what is expected of the CCOs in the industry. SEC an be an amplifying voice. They want to support the CCO, not undercut the CCO.

Post-registration update: Where are we now?

These are my notes from the “Post-registration update: Where are we now? ” session at the Private Fund Compliance Forum 2012.

Moderator:
Roman A. Bejger, Chief Compliance Officer, Providence Equity Partners L.L.C.
Panel Members:
Christian McGrath, General Counsel & Chief Compliance Officer, GTCR LLC
Adam J. Reback, Chief Compliance Officer, J. Goldman & Co., L.P.
David Smolen, Chief Compliance Officer, Silver Lake

One example of a difficulty is employees who have been subject to identity theft. The panelist physically walked the employee to his office and showed the employee the lock files where the monitoring information is kept.

CCO needs to be a high level position and involved in the firm’s operations. The CCO can’t be effective and work in a bubble. That also means you need to be able to offer resources to them. Sit on key meetings and ask questions. In particular, focus on sources of information and the development of products.

One aspect in defining the role is drawing responsibilities between legal and compliance. There are natural alliances between the repsonsibiliites.

What do you do if you find a “smoking gun” email? First, you have to address it. Then you need to start an investigation. It need not be formal at the onset, but you should document the review. If suspicion seems to be true, then you should formalize the investigation. If it looks like it could create liability for the firm or employee, then you should get outside counsel involved.

Email surrveillance is often fruitless and not a good use of time. Targeted email search when a problem comes to light is important. Confidentiality is VERY important. You should only discuss the email with that person. Gossiping will destroy credibility.

There is no SEC rule on email surveillance. It’s a red flag that the examiners use. They expect it as part of an effective complaince program. Lack of email surveillance can cause them to look closer at the firm. Warn them that a personal email account used for business purposes can be subpoenad by the SEC.

The big struggle post-registration is putting the complaince manual to work and creating the records.

Outside help? The CCO should be able to pick up the phone and call an attorney to help with a problem or legal intepretation. Consulants are very helpful for providing a third party review in a gap analyis or mock audit. On the other hand, you need to avoid a proliferation of outside help. Consultants are better for nuts and bolts questions. A goal of the complaince program should be to reduce the spend on outside counsel and consultants. A eriodic outside review is very important. You avoid self-bias. Look for a consultant who has worked with similar firms. You don’t want to be an outlier. You want to be in the middle of the pack.

 

PEI’s Private Fund Compliance Forum

I’m attending Private Equity International’s Private Fund Compliance Forum. This is the third edition of forum. Last year focused on the steps leading up to registration with SEC as an investment adviser. This year, the forum is supposed to focus on what to expect in the first year of SEC registration and beyond.

I’m part of a session on Wednesday morning and another on Thursday afternoon. If you are one of the 200 or so attendees, stop me and say hello.

I may try to turn some of my notes from the sessions into blog posts.

Day One: Wednesday, May 2, 2012
8:45 – 9:00 PEI welcome & Chairman’s introduction
9:0010:00
 Expert panel: Post-registration update: Where are we now?

• Adjusting to the evolving role of a CCO
• Effectively managing the resources of your compliance program
• How are reporting requirements impacting you?
• Potential liability for a CCO

Moderator: Roman A. Bejger, Chief Compliance Officer, Providence Equity Partners L.L.C.
Panel Members:
Christian McGrath, General Counsel & Chief Compliance Officer, GTCR LLC
Adam J. Reback, Chief Compliance Officer, J. Goldman & Co., L.P.
David Smolen, Chief Compliance Officer, Silver Lake
10:0010:30
 A view from the SEC

This session will provide you with in-depth analysis of how the SEC is dealing with new registrants. SEC officials will answer your most pressing questions to help you ensure an efficient compliance program.Carlo V. di Florio, Director, United States Securities and Exchange Commission, Office of Compliance Inspections and Examinations

Interviewed by Nicholas Donato, Editor, Private Equity Manager
10:3011:00 Networking Coffee Break
11:0011:50
 Best practices for addressing anti-corruption issues

• How are the SEC and the DOJ handling recent anti-corruption cases?
• UK Bribery Act
– How will it apply to US foreign offices?
– What impact will it have on entertaining requirements
• FCPA
– Knowing who you’re doing business with?
– Handling the increased due diligence requirements
• AML
– What to expect when they go into effect

Moderator: Douglas N. Greenburg, Partner & Vice Chair of the Global Litigation Department, Latham & Watkins LLP
Panel Members:
Edina Cavalli, Director, Global Head of Private Equity and Principal Investments Compliance, Barclays
Paul Golding, General Counsel, Citi Infrastructure Investors
Kelly Nash, Compliance Counsel, General Atlantic
Paul Winters, General Counsel & Chief Compliance Officer, Denham Capital
11:5012:50 Update on the new regulations and how they will impact you going forward• How will new Treasury Department requirements impact the private funds community?
• Dissecting the Volker Rule
• How the evolving landscape will impact the PE community in the years ahead

Moderator: Karen Barr, General Counsel, Investment Adviser Association
Panel Members:
Jason E. Brown, Partner, Ropes & Gray LLP
Jason Mulvihill, General Counsel, Private Equity Growth Capital Council
12:50 – 2:15 Networking luncheon
2:15 – 3:00 Improving your compliance program through the use of technologyModerator: Graham Winfrey, Staff Writer, PEI Media
Panel Members:
Jeff Faber, Chief Financial Officer, Trafelet & Company, LLC
Stephen Marsh, Founder & CEO, Smarsh
Scott Ring, General Counsel, Bessemer Venture Partners
3:00 – 3:45
Workshop A: The role of social media in the compliance worldParticipants:
Doug Cornelius, Chief Compliance Officer, Beacon Capital Partners, LLC
Gerry Esposito, Managing Director, CFO & CCO Newbury Partners LLC

 Workshop B: Post-Registration Impact on Foreign offices and doing business abroadParticipants:
Edina Cavalli, Director, Global Head of Private Equity and Principal Investments Compliance, Barclays
Alan K. Halfenger, Chief Compliance Officer, Bain Capital LLC
Greg Pusch, SVP, Director of Global Regulatory Compliance & CCO, HarbourVest Partners, LLC
3:45 – 4:00 Networking refreshments break
4:00 – 5:00 Mock Audit: Successfully maneuvering your way through an SEC exam

• What is the SEC looking for?
• How do you prepare for the SEC exam?
• Effectively communication with examiners
• Best practices for record keepingModerator: Ted Eichenlaub, Partner, ACA Compliance Group
Panel Members:
John P. Malfettone, Senior Managing Director, Chief Operating Officer & Chief Compliance Officer, Clayton, Dubilier & Rice LLC
Jim O’Connor, Chief Compliance Officer, Golden Gate Capital
Joel A. Wattenbarger, Partner, Ropes & Gray
5:00 – 6:30 Cocktail Reception and end of Day One

 

Day Two: Thursday, May 3, 2012
8:30 – 8:45
Continental breakfast CCO Think Tank (invite only)

This closed door session will allow CCOs to speak candidly about the issues impacting their office. Attendees can benchmark ideas and share best practices to help you gain solutions for common compliance concerns

Moderators:
James Gaven, Senior Compliance Counsel, Welsh, Carson, Anderson & Stowe
Jarlyth Gibson, Director of Risk Management and Compliance, Advent International
Alan K. Halfenger, Chief Compliance Officer, Bain Capital LLC
Jim O’Connor, Chief Compliance Officer, Golden Gate Capital
8:50 – 9:00 Chairman’s welcome
9:00 – 9:30
 Keynote interview – Working with the SEC
H. David Kotz, former Inspector General, Office of the Inspector General, United States Securities and Exchange Commission (2007-2012), currently Managing Director, Gryphon Strategies

Interviewed by Lois Towers, Principal, Pantheon Ventures
9:30 – 10:10 Conducting an effective annual review

• What does the SEC want you to look at?
• Reviewing your firms valuation policies and processes
• Conducting your review throughout the year versus all at once

Moderator:
Charles Lerner, Editor, The US Private Equity Fund Compliance Guide and The US Private Equity Fund Compliance Companion & Principal, Fiduciary Compliance Associates LLC
Panel Members
Nicholas Denton-Clark, Managing Director & Chief Compliance Officer, PineBridge Investments LLC
Kelly S. Hale, Compliance Officer, TA Associates
Danielle M. Perfetuo, Chief Compliance Officer & Counsel, Alcion Ventures
Robert E. Phay, Jr., Associate General Counsel & CCO, Commonfund
10:10 – 11:00 Insider trading and restricted lists

• Why every fund needs to have a restricted list?
• Overview of recent cases and its impact on the private funds community
• Usage of expert networks

Moderator: John Sampson, Senior Executive, Ernst & Young LLP
Panel Members:
Paula Bosco, Chief Compliance Officer, New Mountain Capital, L.L.C.
James V. Gaven, Senior Compliance Counsel, Welsh, Carson, Anderson & Stowe
Jarlyth Gibson, Director of Risk Management and Compliance, Advent International
Jason Ment, Partner, General Counsel & Chief Compliance Officer, StepStone Group LLC
11:00 – 11:15 Coffee Break
11:15 – 12:15 A new era of fundraising and marketing

• Assessing what rules apply and how they are applicable to your firm
• Effectively displaying performance: How do you display performance data in your advertising?
• Gaining pre-clearance for political contributions
• When and where you can advertise?
• Best practices for addressing gifts and entertainment
• Reporting and pre-clearance obligations for personal trading
• How should you be reporting performance: net vs gross
• How state and local lobbying laws are impacting your office

Panel Members:
Julia D. Corelli, Partner, Pepper Hamilton LLP
Kurt A. Krieger, Legal Director, Huntsman Gay Global Capital, LLC
Jason Ment, Partner, General Counsel & Chief Compliance Officer, StepStone Group LLC
Helane L. Morrison, General Counsel & Chief Compliance Officer, Hall Capital Partners LLC
12:15 – 12:20 Closing remarks
12:20 – 1:20 Closing Luncheon
12:30 3:30 Master Class: Effectively updating and maintaining your compliance programNow that the registration deadline is a thing of the past, many in the private funds compliance community are wondering what’s next. With greater requirements, comes greater responsibility. The maintenance and updating of compliance policies and procedures are vital to the success of every compliance program.

This master class will provide and in-depth overview of how to create and implement a successful and efficient compliance program from start to finish.

Nuts & bolts of putting together a compliance program
• Creating and updating a compliance manual to meet the needs of
the regulators, and also your firm
• Training your staff to ensure consistent application of compliance
policies and procedures
• Preparing for your annual review
• Formalizing the code of ethics

Effective recordkeeping
• Developing a uniform recordkeeping process throughout your firm
• Utilizing technology to ensure compliance
• Working with your LPs to attain proper documentation
• Maintaining the integrity of your reporting process

Ensuring compliance
• Establishing an internal culture of compliance
• Getting buy-in from senior management
• Effectively managing and delegating your resources
• Compliance best practices
• Establishing risk management tools to ensure greater compliance

For more master class information, and to register, visit: www.peimedia.com/pfcmasterclass

Data Breaches in Massachusetts

Through September 30, 2011, the largest share of breaches was not in the financial sector, but in the retail and healthcare industries, along with government. On October 31, 2007, the Commonwealth’s Data
Security Breach Law, Mass. Gen. Law c. 93H, went into effect. On March 1, 2010, the Office of Consumer Affairs and Business Regulation’s Data Security Regulations, 201 CMR 17.00, went into effect.

The Office of Consumer Affairs and Business Regulation has been tracking the data breach notifications it has received under the law. As of Sept. 30, 2011, there had been 1,833 notifications of security breaches. The number of Massachusetts residents affected by the reported incidents since November 1, 2007 now totals 3,166,031. (I’m not sure if the report is double counting “resident” who may be involved in more than one data breach. After all, there are fewer than 7 million residents in Massachusetts.)

The biggest breach in 2011 was the Sony Playstation network incident which affected 560,990 residents. The second largest came from the state itself when 245,000 residents were affected by a large malware data breach in the Department of Unemployment Assistance. That puts entertainment and state government into the top two slots for breach types in 2011 and the third and fourth place for breaches since 2007. Health care and financial services are the leading industry for breaches.

Sources: