Compliance Flashcards

1
Q

What does the term ‘compliance’ describe?

A

The term compliance describes the ability to act according to an order, set of rules or request.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Describe the two levels, in the context of financial services businesses, at which compliance operates.

A

Level 1 - compliance with the external rules that are imposed upon an organisation as a whole

Level 2 - compliance with internal systems of control that are imposed to achieve compliance with the externally imposed rules.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What duty, objective and responsibility does a Compliance Officer fulfill?

A

DUTY - The Compliance Officer has a duty to his employer to work with management and staff to identify and manage regulatory risk.

OBJECTIVE - the overriding objectives of a compliance officer should be to ensure that an organization has systems of internal control that adequately measure and manage the risks that it faces.

RESPONSIBILITY - The general responsibility of the Compliance Officer is to provide an in-house compliance service that effectively supports business areas in their duty to comply with relevant laws and regulations and internal procedures.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the five key functions of a Compliance Department?

A
  1. Identification: To identify the risks that an organisation faces and advise on them
  2. Prevention: To design and implement controls to protect an organisation from those risks
  3. Monitoring and detection: To monitor and report on the effectiveness of those controls in the management of an organisations exposure to risks
  4. Resolution: To resolve compliance difficulties as they occur
  5. Advisory: To advise the business on rules and controls
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is Corporate Governance?

A

Corporate governance is a highly inclusive concept that covers a number of different aspects about the way in which an organisation is managed, directed and governed.

It can be described as a set of relationships between a company’s management, board, shareholders, and other stakeholders, which provides the structure through which the objectives of the company are set. Furthermore it provides the means of attaining and monitoring performance against those objectives.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What does the term ‘regulation’ mean?

A

The term ‘regulation’ generally refers to a set of binding rules issued by a private or public body with the necessary authority to supervise compliance with them and apply sanctions in response to violation of them.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are five generally accepted key core objectives of financial services regulation?

A

Although there is no unified theory of financial services the key objectives of regulation is as follows:

  1. The protection of investors/consumers
  2. Ensuring that the markets are fair, efficient and transparent
  3. The reduction of systemic risk
  4. The reduction of financial crime
  5. The maintenance of consumer confidence in the financial system
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are three key attributes of effective regulation?

A

Effective regulation is regulation that:

  1. Contributes to the fulfillment of one or more of the core objectives of financial services regulation.
  2. Maintains an open market that can be participated in by the widest range of appropriate participants with no unnecessary barriers to entry and exit; and
  3. Provides an equal regulatory burden on all participants that meet minimum criteria.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is primary legislation?

A

Primary legislation refers to the Law, Act or Ordinance passed by the legislative of a particular jurisdiction.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is secondary legislation?

A

The legislature in many jurisdictions has the power to delegate or subordinate law making powers to other agencies that may then make delegated or subordinate legislation often referred to as “secondary” legislation.

In the context of financial services, secondary legislation is generally legislation that has been drafted by a regulatory body empowered to do so pursuant to the primary law by which it is established.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are regulatory codes or rules?

A

Codes generally set out the broad principles by which a regulated business is expected to conduct its business.

Rules are generally very detailed and relate to every regulated activity and function.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are regulatory guidance notes?

A

Guidance can either be in the form of a statement of best practice or a statement of minimum best practice.

Occasionally a regulatory authority will feel compelled to issue detailed guidance to regulated businesses on how it expects them to actually discharge their legal and regulatory obligations.

Anti money laundering and terrorist financing is one area where most regulators around the World have issued guidance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What seven functions does a regulator usually fulfill?

A

In broad terms regulators fulfill the following seven functions:

  1. They lay down rules or principles that determine who can conduct financial services business
  2. They authorise financial services businesses
  3. They lay down the rules by which regulated financial services businesses must conduct their business (both prudential and conduct of business rules)
  4. They supervise compliance with the rules either through desk based supervision or onsite inspections or a mixture of the two
  5. They conduct investigations into suspected breaches of the rules sometimes in conjunction with other law enforcement bodies
  6. They enforce the rules
  7. They co-operate and exchange information with other regulators
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What four steps does a regulator utilize in it’s supervisory process?

A

Many regulators adopt a risk-based approach to supervision and follow a process of supervision that can be divided into the following four steps:

Step 1. Defining the objectives

Step 2. Obtaining information from regulated businesses

Step 3. Assessing the risk that regulated businesses face and pose

Step 4. Taking action in response to the risk assessment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What two key methods does the regulator utilize in supervising regulated businesses?

A

There are essentially two methods by which compliance with regulatory rules is monitored – Onsite supervision and Offsite desk based supervision.

  1. On site supervision: entails visits by the staff of a regulator to the offices of a regulated entity, with the objective of satisfying etc
  2. Offsite desk based supervision: requires regulated financial services businesses to provide relevant information by means of ‘supervisory returns’ normally prescribed within legislation and or license conditions.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What are the two commonly accepted objectives of prudential regulation?

A
  1. To maintain a low probability of insolvency and any consequential loss to an organisation’s ultimate customers; and
  2. To ensure the resolution of the position of any organisation whose viability is impaired, while protecting the interests of their customers to the maximum possible extent.
17
Q

What are conduct of business rules?

A

Conduct of business rules:

  • govern the manner in which a business conducts itself in its relationships with consumers.
  • impose minimum standards of acceptable conduct upon regulated businesses.
18
Q

What nine aspects of the activity of a financial services business would be subject to the conduct of business rules?

A
  1. Advertising
  2. Customer communications
  3. Customer agreements
  4. Conflicts of interest
  5. Customer understanding and suitability
  6. Customer dealings
  7. Customer due diligence
  8. Client assets and money
  9. Breaches, errors and/or near misses.
19
Q

What is regulatory enforcement?

A

Enforcement is:

  • a necessary product of the process of authorisation and supervision, in the sense that a regulator must enforce compliance with rules.
  • as much about investigating, gathering and sharing information as it is about imposing penalties.
20
Q

What five processes does regulatory enforcement normally entail?

A

Enforcement generally entails the following:

  1. Inspection
  2. Investigation powers
  3. Surveillance powers
  4. The imposition of corrective or remedial action
  5. The imposition of penalties
21
Q

What are the seven common enforcement powers of a regulator?

A
  1. Power to inspect and request information
  2. Power to seek orders to compel a business to comply
  3. Power to remove directors and auditors;
  4. Power to appoint an administrator
  5. Power to impose administrative sanctions and / or to seek orders from courts or tribunals;
  6. Power to initiate or to refer matters for criminal prosecution;
  7. Power to suspend operations or trading
22
Q

What six basic factors should you consider when looking at risks in your organisation?

A
  1. The nature of the operation
  2. The diversity of its operations
  3. The complexity of its business
  4. The scale of its business
  5. The volume of transactions
  6. The size of the transactions
23
Q

What are four possible compliance strategies?

A
  • Policies, standards and awareness
  • Reporting hotline
  • Audits and assessments
  • Tone at the top (leadership backing compliance)
24
Q

What is the Sarbanes-Oxley Act (SOX)

A

The Sarbanes-Oxley Act of 2002 is a federal law that established sweeping auditing and financial regulations for public companies.

Lawmakers created the legislation to help protect shareholders, employees and the public from accounting errors and fraudulent financial practices.

Additionally, the legislation, commonly referred to as SOX, established penalties for noncompliance with its provisions.

25
Q

Who enforces the Sarbanes-Oxley Act (SOX)?

A

The Securities and Exchange Commission (SEC) enforces SOX.

26
Q

Does the Sarbanes-Oxley Act (SOX) only affect publicly traded companies?

A

SOX primarily sought to regulate financial reporting and other business practices at publicly traded companies.

However, some provisions apply to all enterprises, including private companies and not-for-profit organizations.

27
Q

What are the two key provisions of the Sarbanes-Oxley Act (SOX)?

A

Two sections of particular note are Section 302 and Section 404.

  • Section 302: pertains to “Corporate Responsibility for Financial Reports.” It established, in part, that CEOs and CFOs must review all financial reports and that the reports are “fairly presented” and don’t contain misrepresentations. This section also established that CEOs and CFOs are responsible for the internal accounting controls.
  • Section 404: deals with “Management Assessment of Internal Controls” and requires companies to publish details about their internal accounting controls and their procedures for financial reporting as part of their annual financial reports. Section 404 requires corporate executives to personally certify the accuracy of their company’s financial statements and makes them individually liable if the SEC finds violations.
28
Q

What are more general provisions under SOX?

A

Other key provisions under SOX include:

  • mandated disclosure of transactions and relationships that are off-balance sheet that could impact financial status;
  • near-ubiquitous prohibition of personal loans from a corporation to executives;
  • establishment of fines and terms of imprisonment for tampering or destroying documents in events of investigations or court action; and
  • requirements for attorneys who represent public companies before the SEC to report security violations to the CEO.
  • Protection for whistleblowers (Whistleblower Protection Act). SOX states that employees (and even contractors) who report fraud and/or testify about fraud committed by their employers are protected against retaliation, including dismissal and discrimination.
  • New requirements for corporate auditing practices, such as: SOX requires public corporations to hire independent auditors to review their accounting practices.
  • Rules for separation of duties by detailing a number of nonaudit services that a company’s auditor cannot perform during audits. These rules are designed to further guard against fraudulent financial practices.
29
Q

What is the PCAOB?

A

The Public Company Accounting Oversight Board (PCAOB) sets standards and rules for audit reports and investigates and enforces compliance at the registered accounting firms.

Under SOX, all accounting firms that audit public companies are required to register with the PCAOB.