May 02, 2022
On April 26, 2022, the Division of Examinations (the “Division”) of the Securities and Exchange Commission issued a Risk Alert listing notable examples of deficiencies that its staff has identified regarding investment advisers’ obligations to establish, maintain and enforce written policies and procedures to prevent the misuse of material nonpublic information (“MNPI”), as required by Section 204A of the Investment Advisers Act of 1940, as amended (the “Act”) and Rule 204A-1 thereunder (the “Code of Ethics Rule”).
Section 204A requires investment advisers to establish, maintain and enforce written policies and procedures reasonably designed to prevent misuse of MNPI by advisers and their associated persons. The Code of Ethics Rule requires investment advisers that are, or are required to be, registered under the Act to establish, maintain and enforce a written code of ethics that, among other things, (i) sets forth the standard(s) of business conduct expected of an adviser’s “supervised persons” (e.g., its employees, officers, partners, directors and other persons subject to its supervision and control), (ii) requires the adviser’s supervised persons to comply with federal securities laws and (iii) includes provisions requiring certain supervised persons (an adviser’s so-called “access persons”) to report, and requiring the adviser to review, periodically the personal securities transactions and holdings of such persons.
The Division staff identified a number of examples of deficiencies related to investment advisers’ obligations under Section 204A:
The Division staff also identified the following examples of deficiencies related to investment advisers’ obligations under the Code of Ethics Rule and their supervised persons’ failure to adhere to their code of ethics:
The Division’s Risk Alert addresses a mix of relatively old and relatively new concerns. Expert network issues were very much front and center during the peak period of insider trading criminal enforcement several years ago, leading many firms to seek advice and beef up their compliance policies and procedures around expert networks. The Division’s observations may reflect that those efforts have been attenuated as expert networks have been less prominent as an enforcement focus. The Risk Alert also references newer (and legally more complicated) concerns about the use of alternative data. While there has been some enforcement in this area where there is a clear legal violation (e.g., selling employer credit card aggregation data without authorization), there is less clarity around other data types. In any event, the SEC continues to aggressively pursue alleged violations of 204A, including an $18 million settlement with a registered investment adviser in November 2021 and several enforcement actions in the first quarter of 2022.
With the Risk Alert signaling that the Division staff is highly focused on advisers’ policies and procedures regarding preventing the misuse of MNPI, advisers may wish to consider whether this is an opportune time to perform a review of their related policies and procedures and/or to conduct related employee training.