5 - Legal and Regulatory Issues

Question 1

What are the 2 main areas of regulatory responsibility for the FCA, in respect of insurance broking firms?

Answer 1

1. Authorisation.
2. Conduct of business.

Authorisation:
- Referred to as ‘Prudential regulation’ by the FCA.
- The aim is to ensure firms are financially sound.

Conduct of business:
- Referred to as ‘Conduct regulation’ by the FCA.
- The relationship an authorised firm has with its customers.

Question 2

Who must an insurance broking firm be authorised by?

Answer 2

Any firm conducting ‘insurance mediation’ must be authorised directly by the FCA.

Question 3

In terms of insurance mediation, what are the 4 main activities that are regulated by the FCA?

Answer 3

1. Arranging (the purchase of general insurance policies).
2. Advising (on insurance purchases).
3. Dealing (as agent).
4. Assisting (in the administration & performance of insurance policies).

Introducing insurance business, and administrating (i.e. notification of a claim) are also regulated activities.

Question 4

Is the introduction of business to an insurer or an insurance broker a regulated activity?

Answer 4

According to the Insurance: Conduct of Business Sourcebook (ICOBS) - yes.

Question 5

Describe the 6 steps to authorisation that insurance brokers need to follow?

Answer 5

Step 1: Decide the scope of authorisation.

Step 2: Understand the FCA’s Principles for Business.

Step 3: Prepare a business plan that addresses the FCA’s requirements.

Step 4: Calculate the minimum financial requirements for the business to operate.

Step 5: Decide if the firms systems & controls meet the FCA’s requirements & are adequate to manage the business.

Step 6: Decide which people will be ‘authorised persons’ within the firm. They take responsibility for regulated activities.

Question 6

When authorising a firm what does the FCA focus on?

Answer 6

The firm’s:
1. Business model (how it makes its money).

2. Governance (how the firm’s managed, directed, & controlled).
3. Culture (shared values, standards and beliefs).
4. Systems & controls.

Question 7

What does the FCA assess to ensure a firm is ‘treating its customers fairly’?

Answer 7

1. Corporate culture (how effectively a firm identifies, manages, and reduces risk in the way it operates).
2. Sales procedures (how effectively the firms systems & controls in relation to the sales process operate).
3. Product design (whether a firm’s products or services meet customer needs and are targeted accordingly.)

Question 8

Once authorised, what are insurance broking firms subject to?

Answer 8

Ongoing supervision by the FCA.

Question 9

What approach have the FCA adopted to supervision?

Answer 9

A risk-based approach to supervision.

i.e. The FCA directs its resources to firms it believes pose the greatest risk to customers.

Question 10

What is the primary objective of the FCA’s ‘risk-based approach’?

Answer 10

Consumer protection through the fair treatment of customers.

Question 11

How is each firm categorised under the FCA’s ‘risk-based approach’?

Answer 11

According to risk.

Question 12

What were the FCA’s OLD risk categories for insurance broking firms?

Answer 12

Risk categories:

C1: (large banking & insurance groups with a very large number of retail customers).

C4: (smaller firms including most intermediaries).

Question 13

How does the FCA’s NEW model categorise firms?

Answer 13

Firms are categorised as either:

‘Fixed portfolio’ or ‘Flexible portfolio’.

Question 14

What supervision does a ‘Fixed Portfolio’ firm require?

Answer 14

Fixed portfolio firms require the highest level of supervision because they have a significant market presence. They are a small population of firms. They will be subject to firm or group-specific supervision.

They are allocated a named individual supervisor and are supervised using a continuous assessment approach.

Question 15

What supervision does a ‘Flexible Portfolio’ firm require?

Answer 15

Flexible portfolio firms are subject to event-driven reactive supervision. The majority of firms are classified as flexible portfolio firms.

They are supervised through programmes of communication, engagement and education activity aligned with the risks identified for the sector in which the firms operate.

Question 16

Who are the first points of contact for a ‘Fixed Portfolio’ or a ‘Flexible Portfolio’ firm?

Answer 16

‘Fixed Portfolio firms’: Are provided a named individual supervisor.

‘Flexible Portfolio firms’: Their first point of contact with the FCA is the ‘FCA Customer Contact Centre’.

Question 17

What are the 3 subdivisions of insurance brokers?

Answer 17

1. Small firms - around 98% of regulated firms.
2. Medium-sized firms - with higher risk profile.
3. Significant businesses.

Question 18

What are the 3 pillars of the FCA’s ‘supervision model’?

Answer 18

1. Firm Systematic Framework (FSF).
2. Event-driven work.
3. Issues and products.

Question 19

Explain the purpose of each of the FCA’s 3 pillar supervision model?

Answer 19

Firm Systematic Framework (FSF):
- Designed to assess a firms conduct risk.
- i.e. Are the interests of customers at the heart of how business is run?

Event-driven work:
- Supervisory activity in response to issues that are emerging or have recently happened.
- i.e. Higher supervisory attention to firms with a spike in reported complaints.

Issues and products:
- Work on sectors of the market/products in a sector of the market that are putting consumers at risk.

Question 20

What is the name for a firm who deals directly with clients?

Answer 20

A ‘retail firm’.

Question 21

How does the FCA monitor the regulatory position of ‘retail firms’?

Answer 21

The FCA requires them to report on certain activities. Firms do this by completing a ‘Retail Mediation Activities Return (RMAR)’.

Question 22

How often do retail firms produce a ‘Retail Mediation Activities Return (RMAR)’?

Answer 22

(Firms with revenue under £5m): Small firms produce reports every 6 months.

(Firms with revenue over £5m): Produce these reports every 3 months.

Question 23

What did the FCA’s ‘Approved persons’ regime require?
What REPLACED the ‘Approved Persons’ regime?

Answer 23

Requires individuals who conduct controlled functions to be approved by the FCA within an authorised firm.

This is part of the Senior Managers and Certification Regime (SM&CR).

Question 24

What is the aim of ‘The Senior Managers & Certification Regime (SM&CR)’?

Answer 24

Aims to increase individual accountability within firms.

Question 25

What are the 3 key features of (SM&CR)?

Answer 25

1. Senior Managers Regime.
2. Certification Regime.
3. Conduct Rules

Question 26

What does the ‘Senior Managers Regime’ part of (SM&CR) include?

Answer 26

This focuses on the most senior individuals of a firm (SMF’s - senior management functions).

Each senior manager must have a ‘statement of responsibilities’ - setting out the areas for which they are personally accountable.

SMF’s must be assessed for fitness & proprietary at least annually.

These individuals must be FCA approved.

Question 27

What does the ‘Certification Regime’ part of (SM&CR) require?

Answer 27

Applies to individuals in a firm (not SMF’s) whose role could still cause significant harm to the firm.

Must be assessed as fit and proper.

But do NOT need to be FCA approved.

Question 28

What does the ‘Conduct Rules’ part of (SM&CR) require?

Answer 28

Applies to all employees of a firm.

Question 29

Name some discipline and enforcement methods of the FCA?

Answer 29

1. Public censure - issuing mg a public statement of misconduct. Can damage a firms reputation & hinder future success.
2. Financial penalties - on a firm/individual.
3. Prosecution for criminal offences.
4. Civil and less formal remedies - i.e. withdrawing permission/authorisation.

Question 30

When is it a criminal offence to carry on regulated activities?

Answer 30

It is a criminal offence for a firm to carry on regulated activities without authorisation.

Question 31

What are the FCA’s (PRIN)? How many are there?

Answer 31

The FCA has 11 principles for business.

Some include:
1. Integrity.
2. Skill, care & diligence.
3. Market conduct.
4. Conflicts of interest.
5. Client’s assets.
6. Financial prudence.

Question 32

What was ‘TCF’? What does the FCA refer to this concept as now?

Answer 32

The old regulator initiated ‘Treating Customers Fairly’.

FCA refers to the concept as ‘the fair treatment of customers’, which is the key to putting customers at the heart of their business.

Question 33

What is the aim of the FCA’s Consumer Duty?

Answer 33

To achieve a higher level of consumer protection in retail financial markets.

The overarching principle is that firms must act to deliver good outcomes for their clients.

Was thought that too many firms were not meeting their customers needs.

Question 34

How does the FCA define a ‘Vulnerable customer’?

Answer 34

Someone who, due to their personal circumstance, is especially susceptible to harm, particularly when a firm is not acting with appropriate levels of care.

Question 35

Name some examples of vulnerability?

Answer 35

• Poor health
• Recent bereavement
• Poor literacy
• Poor numeracy skills

Question 36

What does the FCA expect in terms of vulnerable customers?

Answer 36

To provide them with an appropriate level of care to ensure they are treated fairly.

Senior managers should create/maintain a culture that reduces potential harm to vulnerable customers.

Question 37

What is in the ‘Insurance: Conduct of Business Sourcebook (ICOBS)’?

Answer 37

The rules and guidance in ICOBS are the specific actions firms should adopt to support the PRIN (principles for business).

Question 38

What are the 3 KEY areas of ‘training and competence’ that all firms need to consider?

Answer 38

1. Assessing competence
2. Maintaining competence
3. Record keeping

Question 39

Explain how the 3 KEY areas of ‘training & competence’ are implemented in the workplace?

Answer 39

Assessing competence:
- Employees must be supervised until assessed to be competent.

Maintaining competency:
- Competency must be maintained through continuing professional development (CPD).
- Competent people added to a list all firms must maintain.

Record keeping:
- Records of training must be kept for at least 3 years.

Question 40

In terms of financial crime, what are the 2 key issues?

Answer 40

1. Money laundering
2. Bribery & corruption

Question 41

What is Money Laundering?

Answer 41

The process by which criminals convert money that has been obtained illegally into legitimate funds.

Question 42

Describe the 3 stages of the Money Laundering process?

Answer 42

1. Placement (purchase of an insurance policy).
2. Layering (to conceal the origins of the money additional transactions are made).
3. Integration (criminal gains the ‘clean’ money legitimately).

Question 43

What act relates to Money Laundering?

Answer 43

POCA: Proceeds of Crime Act (2002):
Make it an offence to:
- Fail to disclose someone else is engaged in money laundering.
- ‘Tipping off’ - let a money launderer know they are under investigation.

Question 44

Who must employees report suspicions of money laundering to within a firm?

Answer 44

The money laundering reporting officer (MLRO).

Question 45

Name the 4 criminal offences under the ‘Bribery Act 2010’?

Answer 45

1. Giving a bribe.
2. Receiving a bribe.
3. Bribing a foreign public official.
4. Failure to prevent a bribe.

Question 46

In what form should client verification be? How long should records be kept for?

Answer 46

Client verification should be photographic.

Records should be kept for 5 years.

Question 47

Why are sanctions imposed?

Answer 47

As a way of controlling the access to funds for regimes, individuals, companies or personas who are felt to be less that desirable.

Question 48

Why was (ELTO) The Employers’ Liability Tracing Office introduced?

Answer 48

ELTO was introduced by the insurance industry to make it easier for employees to search for employers liability insurance policies using a central database.

Question 49

What information does the UK GDPR apply to?

Answer 49

Personal data of an identified living individual.

Question 50

Who does the GDPR apply to?

Answer 50

Data controllers and data processors.