December 7, 2022
What happened?
The Division of Examinations (“EXAMS”) issued a Risk Alert to assist firms with identity theft prevention programs required under Regulation S-ID. Financial institutions (including broker-dealers and registered investment advisors) must determine whether they offer “covered accounts” and are subject to this regulation. Generally, a covered account is either an account that a financial institution offers or maintains, primarily for personal, family, or household purposes, that involves or is designed to permit multiple payments or transactions; or is any other account that poses a reasonably foreseeable risk to customers of identity theft. The most frequently observed compliance issues were:
What does this mean for me?
This risk alert follows perennial warnings about data security and the importance of safeguarding client accounts and personal identifiable information. If you haven’t assessed your identity theft program or failed to take ever-evolving cybersecurity risks into account, now is the time to close that gap.
Fairview® provides full-service compliance support for registered investment advisers by creating and implementing comprehensive, sustainable compliance programs, including ongoing testing and evaluations to ensure firms are remaining compliant with SEC regulations. We make sure that internal controls are built into your operations processes and the latest cybersecurity threats, making compliance features inherent to the culture of your firm. Contact us today for additional information about maintaining your compliance program.
If you have any questions on how to comply with identity theft program requirements under Regulation S-ID or need support managing service providers, Fairview Cyber can help. We support firms in complying with SEC expectations by offering comprehensive cyber and data security solutions for businesses focused on protecting client data. Contact us today to learn more.