- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Aaron Nicodemus2024-05-16T19:10:00
The Securities and Exchange Commission (SEC) will require broker-dealers and registered investment advisers to adopt written policies and procedures for handling data breaches of customer data and notify affected customers within 30 days.
On Thursday, the SEC approved amendments to Regulation S-P, known as the safeguards rule. The rule requires covered entities to have policies and procedures in place to safeguard and dispose of sensitive customer data, as well as provide privacy notices and opt out procedures.
The amendments widen obligations for broker-dealers, funding portals, registered investment advisers, investment companies, and transfer agents to create and implement a data breach incident response program.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
Erik Gerding, director of the Securities and Exchange Commission’s Division of Corporation Finance, issued a statement addressing early inconsistencies observed under the agency’s new cybersecurity incident disclosure rule.
The protection of customer personal data by branch offices of broker-dealers and investment advisers should be just as robust—and as well-coordinated—as protocols used by the firm’s home office, according to the Securities and Exchange Commission.
The Securities and Exchange Commission proposed amendments to its regulation requiring broker-dealers, investment companies, and registered investment advisers to establish policies and procedures to safeguard customer records and information.
The U.S. Supreme Court extended the statute of limitations for businesses attempting to challenge some federal regulations, allowing regulated entities a longer timeline to appeal a decision.
The Supreme Court of the United States overturned a long-held precedent in which courts deferred to federal agencies in interpreting complex or ambiguous regulations–a decision that could make thousands of federal regulations more vulnerable to legal challenges.
Financial institutions would be required to conduct more thorough risk assessments on their anti-money laundering/countering the financing of terrorism programs under a new rule proposed by the Treasury Department’s Financial Crimes Enforcement Network.
