Compliance Bits and Pieces for September 9

These are some compliance-related stories that recently caught my eye:

JP Morgan explains the euro crisis with LEGO/a> by Feliz Salmon

The woman with an oversized carrot and her friend in overalls with a shovel represent the Social Democrats and Greens.

Anti-Corruption Research Paper Competition Open for Submissions

We are asking young scholars from around the world to take up the challenge of providing innovative new ways to understand and fight corruption and are offering the possibility to showcase these approaches to a global audience of corruption researchers, practitioners and policy makers.

Veto, Veto, Pass! New Governor Means New Breach Notification Law in California by Brendon Tavelli in Proskauer’s Privacy Law Blog

On Wednesday, August 31, 2011, California became the third state this year to amend its existing security breach notification law when Governor Jerry Brown signed into law Senate Bill 24 (“SB 24”). Interestingly, the bill also marks the third time (in three years) that a bill attempting to beef up the state’s breach notice law has landed on the Governor’s desk. Former Governor Arnold Schwarzenegger vetoed the previous two.

NLRB Administrative Law Judge: Facebook Firings Illegal by Daniel Schwartz in the Connecticut Employment Law Blog

Now, for the first time, an administrative law judge (in Hispanics United of Buffalo) has found that employees’ comments about their working conditions on Facebook could be protected under federal labor laws.

The SEC Overhaul

On July 11, 2011, the President issued Executive Order 13579, “Regulation and Independent Regulatory Agencies,” which states that independent regulatory agencies should promote the goals set forth in Executive Order 13563 of January 18, 2011 that applies to executive agencies. He is asking the SEC, CFTC and other independent agencies to focus on a regulatory system that protects “public health, welfare, safety, and our environment while promoting economic growth, innovation, competitiveness, and job creation.” The Securities and Exchange Commission responded to Executive Order 13579 by inviting “interested members of the public to submit comments to assist the Commission in considering the development of a plan for the retrospective review of its regulations.”

Before you get too excited and submit a comment about repealing your most hated SEC rule, the SEC’s comment request is only for general comments on what the scope and elements on the development of a plan for retrospective review of existing significant regulations. So it’s just comments on the plan to review existing regulations.

1. What factors should the Commission consider in selecting and prioritizing rules for review?
2. How often should the Commission review existing rules?
3. Should different rules be reviewed at different intervals? If so, which categories of rules should be reviewed more or less frequently, and on what basis?
4. To what extent does relevant data exist that the Commission should consider in selecting and prioritizing rules for review and in reviewing rules, and how should the Commission assess such data in these processes? To what extent should these processes include reviewing financial economic literature or conducting empirical studies? How can our review processes obtain and consider data and analyses that address the benefits of our rules in preventing fraud or other harms to our financial markets and in otherwise protecting investors?
5. What can the Commission do to modify, streamline, or expand its regulatory review processes?
6. How should the Commission improve public outreach and increase public participation in the rulemaking process?
7. Is there any other information that the Commission should consider in developing and implementing a preliminary plan for retrospective review of regulations?

The Commission is not soliciting comment in this notice on specific existing Commission rules to be considered for review. Hopefully, that will come soon.

Sources:

The EU Directive On Alternative Fund Managers Is in Effect

The chaos around the Swiss Franc may be a sign of a coming crisis in the European Union. For private fund managers, a different crisis may be the new European regulatory regimes for private funds. With all of the flux in the United States over the regulation of private funds, it’s been easy to forget that the EU has been trying to put a new regulatory regime in place.

Over the summer, the official text of the Alternative Investment Fund Managers Directive (2011/61/EU)(.pdf 73 pages) was published. The European Parliament adopted the Directive in November, 2010 and the Council of the European Union adopted it in May, 2011. The EU member states will have until July 22, 2013 to update their the national laws, regulations and administrative provisions to give effect to the AIFMD.

This new EU legislation will regulate managers of hedge, private equity
and real estate funds and other alternative investment funds. It covers almost any investment fund except funds regulated under EU legislation on Undertakings for Collective Investment in Transferable
Securities (UCITS).

There are still many moving parts. The EU regulatory regime will need to be in place and there will likely be variations from country to country in the EU.

If you have European investors or operations in Europe, you have more reading to do.

Sources:

No One Would Listen

You can’t really criticize Harry Markopolos. He was right. He had spotted something wrong with Bernie Madoff years before the biggest Ponzi scheme collapsed. Unlike many others, Markopolos contacted the Securities and Exchange Commission about his suspicions. They ignored him. Markopolos went to the press, but no meaningful article came of it.

When Madoff’s scheme collapsed and he  turned himself in, Markopolos became lauded by the press, testified in Congress about the failings of the SEC, and was even offered the job of Chairman of the SEC by an ill-informed Congressman. No One Would Listen is another step in the Markopolos victory lap.

He celebrates his brilliance in discovering the fraud and the incompetence of the SEC for not stopping it. He fills his attacks with similes:

“His returns were as reliable as the swallow returning to Capistrano.”

“As I continued examining the numbers, the problems with them began popping out as clearly as a red wagon in a field of snow.”

Markopolos lays out how he first ran into Madoff and the years he spent trying to figure out how Madoff was generating his returns. Eventually, he came to the conclusion that he couldn’t do it. Since Madoff ran a big trading organization, he could have been front-running orders to generate illicit profits. Effectively, he would be stealing from his brokerage customers and giving it to his money management operations.

The other likely possibility was that Madoff was making up his returns and using new funds coming in to redeem those leaving. Markopolos could not find any footprints of Madoff’s split-strike trading strategy. There didn’t seem to be enough options traded on the markets to support the amount Madoff had under management.

I think it’s important to see why Markopolos was focused on Madoff. The principals at his firm wanted him to reverse engineer Madoff strategy so they could offer a similar product to their clients. Markopolos could not figure out how Madoff was generating his steady returns. He first contacted the SEC as a way to get his boss off his back. If he could prove Madoff was a fraud, his boss would quit demanding that Markopolos duplicate the Madoff strategy.

Markopolos starts off  No One Would Listen by stating that he made five separate submissions to the Securities and Exchange Commission over a nine-year period. So far, I’ve only seen one, his December 22, 2005 letter. Frankly, I found the letter to be a rambling, half-coherent diatribe. It was penned by a competitor who couldn’t figure out the trading strategy of the legendary Bernie Madoff, the founder of NASDAQ.

As Chris MacDonald notes “Markopolos is a bit of a strange cat. He’s a likeable guy, and apparently a man of integrity, but also a bit paranoid-sounding.” (He had seen the new movie, Chasing Madoff, based on the book.)

Clearly the SEC was unable to stop Madoff. Was it their fault?  Yes. They relied on the well-established credentials of Madoff and dismissed the paranoid ramblings of an eccentric analyst. Markopolos’s barbs against the SEC are over-the-top and eventually got distracting. On top of that, I was often distracted by his misuse of “principle” instead of “principal” in the book. You would think that a financial analyst would know the difference.

Compliance Bits and Pieces – UK Edition

The first case under the new Bribery Act in the United Kingdom has come down, so I’m devoting this roundup of posts to that story.

BREAKING: First Bribery Act charges brought in record time in BriberyAct.com

The Press Association is reporting that a court official in London is the first person charged under Section 2 of the Bribery Act following an expose by the Sun Newspaper.

The case is of interest because it is a domestic bribery case and the charges have been brought, not by the SFO, but by the UK Crown Prosecution Service.

First Case Brought Under UK Bribery Act Looks Nothing Like You Expected by Bruce Carton in Enforcement Action

The first-ever action under the UK Bribery Act has now been filed–but it probably doesn’t look anything like what you expected.

Court employee faces first prosecution under Bribery Act in the Blog of the Crown Prosecution Service.

We have decided that Munir Yakub Patel should be prosecuted under the Bribery Act 2010 in relation to allegations of misconduct during his employment at Redbridge Magistrates’ Court, Ilford, London. He is the first person to be prosecuted under the new Act.

Patel, an administrative clerk, faces a charge under Section 2 of the Act for requesting and receiving a bribe intending to improperly perform his functions.

Court clerk becomes first person charged under Bribery Act by Owen Bowcott in The Guardian

The first person to be charged under the new Bribery Act will be a magistrates court clerk who allegedly accepted £500 for fixing a motoring offence, according to the Crown Prosecution Service (CPS).

Limiting Redemptions by Limited Partners

part of the money

Hedge funds usually give their limited partners an ability to redeem their interests at certain periods during the investment period. That ability is often subject to a “gates provision” that limits a quick outflow of capital. The provision is general there to avoid a liquidity crisis in the hedge fund which could hurt the remaining investors in the fund.

The ability to use a gates provision was recently fought over in the Delaware Chancery Court. The facts are bit strange. The fund had one investor. The apparent intent was for this first investor to be the seed investor and the the fund manager would go out and get addition investor for the fund. The seed investor would also get a share of the revenue from later the management fees and incentive fees paid by later investors. In exchange, the seed investor agreed not to redeem its capital for three years. With only one investor, the gates provision sticks out like a sore thumb.

The fund was set up in late 2007; a bad time to start investing. The manager deployed little of the funds capital and had no success raising funds from other investors. By early 2009, the seed investor let the fund manager know that they would be redeeming their capital at the end of the three year lock-up.  The relationship turned sour.

[You] should remember that our right to raise the [G]ates ensures that we will continue to manage your money throughout the litigation….

[W]e are fully prepared to litigate this matter to the bitter end because we will continue to manage your money, and collect management and incentive fees, until this matter is resolved many years hence.

Sure enough, on the three year anniversary the fund manager returned only the 20% required under the gates provision to the seed investor.

The perceived problem was that the seed money agreement did not address the gates provision in the partnership agreement of the fund.  The investor argued that the seed money agreement acted as a waiver of the manager’s ability to apply the gates restriction on the third anniversary. The manager argued that it merely supplemented the gates provision by adding additional limitations on withdrawal.

There is some arguing over how the contract provisions work together, but the court also piles on a fiduciary duty on the fund manager. After all, the fund is a partnership and the manager is the general partner.

The gates provision had an outlet that allowed the general partner to waive or modify the conditions relating to withdrawals for certain large or strategic investors.

The fund manager never identified a justification for using the Gates in view of the Hedge Fund’s investment portfolio. The only motivation for raising the Gates was to enable the Paiges to continue to receive the management fees payable under the Seeder Agreement for a longer period.

The court found that it was the self-interest of the general partner rather than the good of the limited partner in the fund that kept the gate up.  The Delaware’s Revised Uniform Limited Partnership Act permits the waiver of fiduciary duties, but the waiver must be set forth clearly. [6 Del. C. § 17-1101(f)] The court found no provision in the Partnership Agreement that says that general partner does not owe fiduciary duties to the Fund and its investors.

Sources:

Image: PART OF THE MONEY.jpg by Damien du Toit

Enforcement of the Massachusetts Data Privacy Law

It’s been almost 18 months since the Massachusetts Data Privacy Law went into effect. Belmont Savings Bank has become one of the first charged with violating the law.

Belmont Savings Bank maintained personal information on an unencrypted backup data tape and then lost the tape. According to surveillance footage the tape was likely discarded inadvertently by the overnight clearing crew and sent to the incinerator.

There were several rounds of changes between the first version of 201 CMR 17.00 and the final one. One central element was the requirement that there be written information security plan in place if your company has “personal information” on a Massachusetts resident. Obviously, you need to comply with the plan.

In this case, Belmont Savings Bank has the plan. But they failed to comply with it. The data tape should have been locked-up overnight and not left on a desk.

The Massachusetts’ Attorney General entered into an Assurance of Discontinuance with Belmont Savings Bank. As part of the settlement, the bank has to

  • encryp, to the extent technically feasible, all personal information stored on backup data tapes
  • store backup data tapes containing personal information in a secure location
  • effectively train its workforce on the policies and procedures with respect to maintaining the security of personal information

There is no evidence indicating that any customer’s personal information has been acquired or used by an unauthorized person or used for an unauthorized purpose. The Assurance of Discontinuance states that if actual harm to customers results, the Attorney General’s Office will reopen discussions to determine appropriate restitution.

Sources:

More from FINRA on Social Media and Mobile Devices

In January 2010, FINRA issued Regulatory Notice 10-06 in an attempt to provide guidance on the application of FINRA rules governing communications with the public to social media sites. The guidance did not provide much that was new. Largely, FINRA pointed out that the existing communication and record-keeping rules applied. Too bad that the site did not allow you to take the steps needed to comply with the existing rules.

Apparently, the guidance raised enough questions that FINRA decided to provide some additional guidance. It is not intended to alter the principles or the guidance provided in Regulatory Notice 10-06. Anyone expecting something new or innovative will be disappointed.

Q1: Does determining whether a communication is subject to the recordkeeping requirements of SEA Rule 17a-4(b)(4) depend on whether an associated person uses a personal device or technology to make the communication?

A1: SEA Rule 17a-4(b)(4) requires a firm to retain records of communications that relate to its “business as such.” Whether a particular communication is related to the business of the firm depends upon the facts and circumstances. This analysis does not depend upon the type of device or technology used to transmit the communication, nor does it depend upon whether it is a firm-issued or personal device of the individual; rather, the content of the communication is determinative. For instance, the requirement would apply if the electronic communication was received or sent by an associated person through a third-party’s platform or system. A firm’s policies and procedures must include training and education of its associated persons regarding the differences between business and nonbusiness communications and the measures required to ensure that any business communication made by associated persons is retained, retrievable and supervised.

The FINRA rules came first and they are in place for a good reason. It’s up to the firm to find a may to meet the compliance standards if they want to use third-party websites to publish information, communicate with the public, or communicate with clients.  If cloud providers want to take over company-hosted communications they need to but more effort into the record-keeping and compliance requirements of the business world.

Sources:

Compliance Bits and Pieces for August 26

These are some compliance related stories that recently caught my attention:

Does the SEC’s Revolving Door Raise Conflicts of Interest? by Bruce Carton in Securities Docket

Every year about four percent of the employees working at the Securities and Exchange Commission decide for various reasons to voluntarily leave the agency and seek greener pastures. Having spent years gaining experience and connections at the nation’s top financial regulator, these lawyers, accountants, economists, and others are often in high demand when they return to the private sector.

O’Donohoe on Potato Chips and Salty Snacks on EconTalk

Should the United States be making computer chips or potato chips? In a 1992 presidential debate, then-candidate Ross Perot stated “you make more making computer chips than potato chips.”  Russ Robert takes a long look at the potato chip manufacturing and distribution process. Well worth an hour of your time

Survey Finds Compliance Chiefs Doing Little Compliance-Related Work by Samuel Rubenfeld in WSJ.com’s Corruption Currents

A survey of corporate compliance professionals in the financial services industry found that 41% of them spend less than half of their time on compliance-related issues. Conducted by National Regulatory Services, the survey found that chief compliance officers spend the least amount of time on compliance-related tasks out of all compliance professionals. Overall, 59% of a chief’s day is spent on such tasks, a slight decline since 2008. Only 25% of them spend more than 90% of their day on compliance issues, a five-point drop since 2008.