Chapter 7 - Regulatory processes, systems and controls

Question 1

What management tools are used by businesses to comply with regulations?

Answer 1

Systems and controls

Question 2

Who do the FCA and PRA regulate?

Answer 2

The whole UK insurance industry - not just the London Market

Question 3

What are directives? Who has to follow them?

Answer 3

Centralised legislation on the insurance industry from the FCA. They affect all countries in the EU.

Question 4

Who updates the insurance industry on regulations? Lloyd’s and other means.

Answer 4

In Lloyd’s, it is a centralised department within the Corporation which focuses on relations with the UK Government. Otherwise, bodies such as the LMA, IUA, LIIBA also send info to members.

Question 5

Who reports to the regulators on behalf of Lloyd’s? Where do they get this info? What info is it?

Answer 5

Lloyd’s reporting to regulators is managed centrally. However they get their information through data from managing agents. This includes info such as non-life, solvency, insurance mediation, reinsurance and accounting.

Question 6

Why do Lloyd’s use codes? What do they show (4)?

Answer 6

Use codes as it is easier to review the various information. In Lloyd’s, codes show (i) location of broker (ii) location of risk (iii) tax payable (iv) whether direct/reinsurance

Question 7

What does level of solvency mean?

Answer 7

The balance between how much your assets weigh out your liabilities

Question 8

How does the PRA apply solvency to different classes of insurance?

Answer 8

Some insurers have to pad out the extent assets exceed liabilities depending on the class. This is to avoid impact of large claims.

Question 9

What is Solvency II? Where does it apply? Why was it created?

Answer 9

Solvency II is an EU regulation which introduces economic risk-based solvency requirements across all EU states. Its aim is to enable better coverage of the real risks run by insurers.

Question 10

What are the aims of Solvency II (5)?

Answer 10

• Better regulation
• Deeper integration of EU insurance market
• Enhanced policyholder protection
• Improve competition amongst EU insurers
• Standardise the existing 14 directives with 1 legislation

Question 11

What company-level measures form the system and controls to enforce regulation (6)?

Answer 11

Training
Easily accessible info for employees
Operating controls, warnings, blocks
Peer reviews
System reports
Authority limits

Question 12

Why might sanctions be imposed (4)?

Answer 12

Political pressure
Enforce respect for democracy
Enforce human rights
Maintain peace in a country

Question 13

What are the types of bans that can be imposed?

Answer 13

Financial and trade embargoes

Question 14

What are the types of financial sanctions?

Answer 14

• Prohibiting transfer of funds
• Freezing assets of a company/government/individual

Question 15

What is the Office of Financial Sanctions Implementation (OFSI)? What are its responsibilities?

Answer 15

OFSI is part of the HM Treasury. Responsible for implementation and administration of UK’s financial sanctions. It posts info on its website to alert users to sanctions imposed by the EU, UN and UK.

Responsibilities
- domestic legislation
- operational advice
- implementation of international financial sanctions
- working with the Foreign and Commonwealth Office
- working with international partners
- licensing exemptions to sanctions where permitted

Question 15

What is the Office of Financial Sanctions Implementation (OFSI)? What are its responsibilities?

Answer 15

OFSI is part of the HM Treasury. Responsible for implementation and administration of UK’s financial sanctions. It posts info on its website to alert users to sanctions imposed by the EU, UN and UK.

Responsibilities
- domestic legislation
- operational advice
- implementation of international financial sanctions
- working with the Foreign and Commonwealth Office
- working with international partners
- licensing exemptions to sanctions where permitted

Question 16

What entity monitors trade sanctions?

Answer 16

Department for Business Energy and Industrial Strategy (BEIS).

Question 17

What are trade sanctions?

Answer 17

Travel bans and bans on import/exports of goods

Question 18

What’s the USA’s position on ransoms?

Answer 18

USA issued executive order that banned any entity with US links from making ransom payments if listed as a Specially Designated National (SDN)

Question 19

Which entities (UK and USA) provide sanctions info?

Answer 19

OFAC (USA), OFSI (UK) , HM Treasury and US Treasury

Question 20

What did the Export Control Order do? What are the 3 categories? What’s the rules for each?

Answer 20

Updated previous legislation on export controls relating to military goods. Need licenses for three categories.

Cat A - electric chairs, gallows, guillotines
Cat B - Rocket / missile launchers / grenades (3 or fewer people)
Cat C - Military goods that do not fall into A or B

Cat A - require license from UK gov if to be insured
Cat B & C - only license if going to an embargoed country.

Question 21

What is the Data Protection Act 2018?

Answer 21

UK only Act accompanying the EU’s GDPR for how UK makes provisions to the GDPR

Question 22

What is the aim of the General Data Protection Act 2018?

Answer 22

EU regulation to replace existing regulation. Modernises data protection laws to keep them relevant for years to come.

Question 23

What does the DPA 2018 say on
- Data processing
- Regulation and Enforcement

Answer 23

Data processing
Sensitive data can continued to be processed on a confidential basis
Restrictions on rights to access/delete/hold data
Sets age for parental consent

Regulation and Enforcement
Powers to Information Commissioner who regulates data protection laws
Allows the Commissioner to fine on data controllers/bring criminal proceedings

Question 24

What is the Information Commissioner’s role?

Answer 24

To fine/take criminal proceedings to those in the UK breaching data protection regulation

Question 25

What 2 parties does GDPR apply to? What’s the difference?

Answer 25

Controllers and processors

Controllers - says how/why personal data is processed
Processors - acts on controllers behalf

Question 26

What data does GDPR apply to?

Answer 26

Personal data (including tech data eg IP address)

Question 27

What are the data protection principles?

Answer 27

Process data lawfully
Collect data for purposes only
Limited and relevant data
Accurate and up to date data
Permits use of data for period of time
Appropriate security on data

Question 28

What does GDPR say about consent?

Answer 28

Consent must be freely given - positive opt-in, not preticked boxes or inferred from silence

Question 29

What rights does the GDPR give individuals?

Answer 29

Right to
be informed
access
rectification
erasure
restrict processing
data portability
to object
not have automated decision making/profiling

Question 30

What’s a System Access Request (SAR)?

Answer 30

What an individual uses to request to see their personal data on file on a company

Question 31

Where does an individual complain if they do not get a response to a SAR?

Answer 31

FIRST: the organisation. SECOND: The Information Commissioner

Question 32

Who does an organisation report a data breach to?

Answer 32

The relevant supervisory authority and perhaps the individuals involved

Question 33

What are the risks to firms if they breach data protection under GDPR?

Answer 33

Fines to pay compensation & reputational damage

Question 34

What is money laundering?

Answer 34

Laundering money through the financial system to make illegitimate funds look legal

Question 35

What are the 3 stages of money laundering?

Answer 35

1. Placement - putting cash into the system and converting cash into other assets
2. Layering - creating a series of complex transactions to hide its origin
3. Integration - accessing ‘clean’ money. Creating a company/drawing a salary etc

Question 36

What are the 3 types of laws/regulation concerning money laundering?

Answer 36

1. Acts which are for general application
2. Specific money laundering regulation
3. FCA rules & guidance which applies differently to different types of firms

Question 37

What are the two UK money laundering legislations?

Answer 37

Illegal to launder money in respect of

Criminal Justice Act 1988 - re drug trafficking and terrorism
Criminal Justice Act 1993 - re other serious crimes

Question 38

What is the Proceeds of Crime Act 2002 (POCA)?

Answer 38

An act to extend the range of offences for money laundering. It first establishes the principal offences but added two new ones:

(1) offences for failing to report suspected money laundering
(2) tipping off people about money laundering investigations

Question 39

What entity is in charge of recovering proceeds of criminal activity relating to money laundering?

Answer 39

the National Crime Agency NCA

Question 40

What did the Money Laundering, Terrorist Financing and Transfer of Funds Regulations 201 do?

Answer 40

Money laundering prevention regulation. Requires creation & maintenance of systems to prevent money laundering in the UK financial system

Question 41

What’s the FCA’s role in financial crime? What authority does it have?

Answer 41

Identifying current and emerging crime threats, ensuring systems in place to mitigate them. Uses thematic reviews and tests whether companies are meeting their legal/regulatory requirements.

It can impose penalties for market abuse/manipulation

Question 42

Who in a company is responsible for money laundering? How often do they report?

Answer 42

The Money Laundering Reporting Officer (MLRO)
Reports annually on systems
Appointed under the FCA rules

Question 43

Whats the MRLO role?

Answer 43

Responsibility for the firms AML activity
Reports to the NCA

Question 44

What did the Bribery Act 2010?

Answer 44

UK legislation harmonising existing legislation on the topic. Two new offences - bribing a foreign official and failure to prevent bribary

Question 45

What does the US legislation Foreign and Corrupt Practices Act 1977 do?

Answer 45

prohibits bribery of government officials