When things go wrong: reducing the risk of FCA enforcement action Birmingham 2016 Insurance and Financial Services Conference Wednesday, 18 June 2016 Jonathan.

Slides:



Advertisements
Similar presentations
2 1.Client protection principles 2.Principle #6 in practice 3.The client perspective 4.Participant feedback 5.Tools for improving practice 6.Conclusion.
Advertisements

Integrity and impartiality
Buying Better Outcomes Workshop 4 Equalities and Contract Management If you do not take it seriously, why should the supplier?
FCA’s latest financial crime risk findings and further proposed guidance Financial Crime Forum- 4 December 2014 By Richard Bostock, FLA.
Code of Corporate Governance for Listed Companies in China
Consumer Vulnerability Consumer & Market Intelligence
Outcomes focused regulation and compliance in practice Peter Scott Peter Scott Consulting
IOR Scottish Chapter Annual Conference Glasgow Caledonian University – 1 st November 2013 Relevance of Operational Risk to the FCA Jill Savager Manager,
PwC David Devlin 23 April 2002 Auditor Independence in a Global Market Place.
Customer Service & Customer Protection in MANSELL
AUDIT COMMITTEE FORUM TM ACF Roundtable IT Governance – what does it mean to you as an audit committee member July 2010 The AUDIT COMMITTEE FORUM TM is.
Chapter 29 Ethics in Accounting
New Markets - New Opportunities?. The Lending Standards Board Money Advice Scotland Conference June 2011.
The Baptist Foundation of Arizona
Code of Conduct for Mobile Money Providers 6 November 2014 All material © GSMA The policy advocacy and regulatory work of the GSMA Mobile Money team.
Session 3 – Information Security Policies
Internal Auditing and Outsourcing
1 CHCOHS312A Follow safety procedures for direct care work.
Measure what matters – to build stronger financial performance and to achieve financial stability under OFR Peter Scott Peter Scott Consulting
ISO Richard Welford CSR Asia © CSR Asia 2011.
8 – 12 December 2008 Bruce Le Bransky MAFC / APEC / AFDC Shanghai Conference: Session 7.2: Challenges to Governance Structures.
EFFECTING CULTURAL CHANGE IN RESEARCH ETHICS AND INTEGRITY Encouraging a culture of research integrity Andrew C. Rawnsley.
Outsourcing Louis P. Piergeti VP, IIROC March 29, 2011.
CORPORATE GOVERNANCE Regulatory expectations and current good practice Charles Cattell The Cattellyst Consultancy.
Finance and Governance Workshop Data Protection and Information Management 10 June 2014.
Implications of the Markets in Financial Instruments Directive (“MIFID”) Richard Thompson.
ISACA Ireland Effective crowd control Managing third party integrity risks 30 April 2014.
Investment Funds Conference “Collective Investment Funds in the Qatar Financial Centre – Confidence and Opportunity” November 26-27, 2007 Michael Webb.
Presentation to Senior Management MiFID for Senior Managers Introduction These slides introduce the big changes for senior management from MiFID.
How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.
Compliance with IOSCO requirements AMEDA Leadership Forum Alexandria Egypt Monday 27 th April 2009 by Dr. Ashraf EL Sharkawy Senior Advisor to the CMA.
Corporate Governance Yoshi Kawai Secretary General, IAIS IAIS-ASSAL Regional Seminar Buenos Aires, Argentina, November 2011 PUBLIC.
PROTECT LEGAL AND REGULATORY REVIEW NOVEMBER 2014.
SUERF Annual Lecture Risk Management – A supervisor’s approach Gabriel Bernardino EIOPA Chairman Helsinki, 22 September 2011.
The UKs Number One! “Treating Customers Fairly” Stuart Johnson Head of Distribution.
UNIT 15 WEEK 9 CLASS 1 LESSON OVERVIEW Pete Lawrence BTEC National Diploma Organisational System Security.
DIRECT WORKS FORUM 10 June 2008 Andy Ballard. COMMON LAW MANSLAUGHTER Effectively – Death by gross negligence Test – (a) was a (common law) duty of care.
© 2011 Grant Thornton International Ltd. All rights reserved Presented by Mr. Yuvraj THACOOR, FCA Chairman of the Financial Reporting Monitoring Panel.
Influencing the ethical context of your organisation Speaker: June Smith, Partner Company: The Argyle Partnership Lawyers Date: 22 November 2006.
Briefing to Portfolio Committee on Public Enterprises On Performance Management of SOE Senior Management 10 November 2009.
TCF and FCF-Online How can help you generate MI you need to satisfy FSA requirementswww.fcf-online.com.
CHO Code of Practice Alternative Dispute Resolution.
International Security Management Standards. BS ISO/IEC 17799:2005 BS ISO/IEC 27001:2005 First edition – ISO/IEC 17799:2000 Second edition ISO/IEC 17799:2005.
PROTECT LEGAL AND REGULATORY REVIEW NOVEMBER 2015.
Sharon Hubber (AMA) Linda Richardson Allegations Management Adviser (AMA) Supporting a Safer Workforce 17 th October 2008.
Data Security & Privacy: Fundamental Risk Mitigation Tactics 360° of IT Compliance Anthony Perkins, Shareholder Business Law Practice Group Data Security.
We Complete Your Success Managing Relationships Governance for SMEs Nigeria.
SOLGM Wanaka Retreat Health and Safety at Work Act 2015 Ready? 4 February 2016 Samantha Turner Partner DDI: Mob:
Safeguarding Adults Care Act 2014.
Jonathan Marsh Hunton & Williams LLP Fraud Risk Management: The FSA’s Expectations.
Current risk and compliance priorities for law firms PETER SCOTT CONSULTING.
PROTECTING THE INTERESTS OF CONSUMERS OF FINANCIAL SERVICES Role of Supervisory Authorities Keynote Address to the FinCoNet Open Meeting 22 April 2016.
Governance, Risk and Ethics. 2 Section A: Governance and responsibility Section B: Internal control and review Section C: Identifying and assessing risk.
Corporate Governance Week 10 BUSN9229D Saib Dianati.
F8: Audit and Assurance. 2 Audit and Assurance Designed to give you knowledge and application of: Section A: Audit Framework and Regulation Section B:
F8: Audit and Assurance. 2 Designed to give you knowledge and application of: Section A: Audit Framework and Regulation Section B: Internal audit Section.
TCF: The Way Forward Nausicaa Delfas Head of Department FSA Freshfields client seminar 26 March 2009.
MyComplianceOffice Managing the Complexity of Conduct Risk and Culture
Philippa Foster Back CBE, Director Institute of Business Ethics
THE INSURANCE INDUSTRY
Katherine Coates, Partner
Optimizing Your Regulatory Compliance Program
OECD - Introduction It is an organisation of those countries which describe themselves as Democratic and have Market economy. Its HQ is in Paris, France.
Vitol’s Compliance systems against bribery and corruption
“AI will become sentient around the same time
Chapter 8 Developing an Effective Ethics Program
Tips on Privacy Audits and Assessments Insurance Consumer Affairs Exchange October 2, 2005 Kirk Herath, CPO & Associate General Counsel, Nationwide Insurance.
Neopay Practical Guides #2 PSD2 (Should I be worried?)
SRO APPROACH TO REGULATION
Operational Risk Management
Presentation transcript:

When things go wrong: reducing the risk of FCA enforcement action Birmingham 2016 Insurance and Financial Services Conference Wednesday, 18 June 2016 Jonathan Newbold, Partner Adam Edwards, Associate

Outcomes 1.Gain insight into what the FCA can do when faced with serious regulatory failings 2.Understand why appropriate systems and controls are more important than ever before 3.Learn about the relevant systems and controls the FCA will expect you to have in place now 4.Take away practical tips to consider if things do go wrong

“FCA finds small firms need to manage financial crime risks more effectively” FCA Press Release from November 2014 “Firms must take their responsibility to reduce the risk of financial crime seriously. Significant improvements are still required in this area.” Most intermediaries’ controls failed to manage bribery and corruption risk effectively

Personal accountability Focus on: –Meeting the spirit of the rules rather than narrow focus on what the letter of the law requires –Focus on outcomes rather than precisely defining what conduct falls within a particular rule –Good business behaviour, from the top down embedded into the culture of firms –Taking ownership of roles and responsibilities

Systems & controls: the principles and approach Principle 3: –“A firm must take reasonable care to organise and control its affairs responsibly and effectively, with adequate risk management systems.” Principle 6: –“A firm must pay due regard to the interests of its customers and treat them fairly.”

Systems & controls: the principles and approach SYSC 3 & 4: –A firm must take reasonable care to establish and maintain such systems and controls as are appropriate to its business. –A firm must have:  Robust governance arrangements  Clear organisational structure  Transparent and consistent lines of responsibility Proportionate and risk based approach according to nature, scale and complexity of business.

Data Security: effective systems & controls? Why is data security so important in financial services? –Financial services firms by their nature hold a great deal of sensitive personal/confidential data on customers –The FCA will take action against firms even where there is no evidence of actual compromise of customer information – Merchant Securities Group Ltd A broad issue: –Not just a question of data protection – TCF and financial crime as well –Data security should be treated as a key specific risk subject to own governance, policies and procedures and risk assessment

Data Security: effective systems and controls in practice Some initial questions firms should be asking themselves: –How is responsibility for data security apportioned? –Are systems and controls backed up by senior manager accountability? –How does the firm keep track of its digital assets? Governance: managing systems and controls –Open and honest culture of reporting data security incidents and issues –Are incident response plans clear? –Written policies and procedures – even within small firms

Data Security: effective systems and controls in practice Staff: –Recruitment and vetting at all levels – junior employees are as much a risk as more senior members of firms –Ongoing vetting during employment –Training and awareness Third party suppliers: –Cleaners, security guards, IT contractors etc. –Give consideration to their systems and controls.

Data Security: effective systems and controls in practice Access to customer data: –Access rights – “least-privilege” basis –Access profiles for specific roles in business –To be considered at recruitment, change of role and exit –Passwords and user accounts –Monitoring access to customer data –Back-up, physical security and disposal

Financial crime: effective systems and controls? Same overriding principles and approach apply FCA’s financial crime guide – emphasis on senior management involvement/responsibility Some questions for firms to be asking: –What risks apply? –Who has ultimate responsibility? –Are there clear reporting lines? –Resources – are they adequate? –Alpari case

Financial crime: effective systems and controls in practice Management Information –Sufficient to understand risks –Regular and ad hoc –Impact of legal/regulatory developments –Effectiveness of systems & controls –Staff expenses, gifts etc. –Business relationships – new, terminations & sanctions Quality of oversight –Senior management should challenge financial crime efforts. –Smaller firms – external support

Financial crime: effective systems and controls in practice Risk assessment: –Business-wide –Proportionate and targeted –Individual relationships –Regular review/continuous – currency –Coutts & Company case

What might increase the risk of FCA enforcement? Lack of co-operation and transparency Misleading the regulator Fail to identify the issue yourself Bank of Beirut example

How to minimise the risk of FCA enforcement Co-operation Transparency The Aviva Investors example Robust systems and controls that identify problems Pro-activity

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.