Privacy

Firms should consider their entire organization, including branch offices, when implementing written policies and procedures for the safeguarding of customer records and information to ensure ...

This new proposal from the SEC would revise Reg S-P to require IAs, ICs and B-Ds to "adopt written policies and procedures for incident response ...

The letter focuses on e-communications and sheds more light onto authorities’ interest in firms’ use of new communications platforms

Sources assert this is an SEC enforcement letter that went to a broker-dealer in the agency's investigation of the business use of e-commmunications channels

Eliminating sensitive computer data can be as stubborn as a tempestuous two-year-old. But failing to do so, can come with a high cost

The current Reg S-P requires firms to alert customers how they will use their information. The SEC proposed amending Reg S-P in 2008 but it ...

"Today’s proposed amendments are a mixed bag of practical improvements and potentially conflicting requirements"

Given cyber breaches, "we must do everything in our power to enhance cybersecurity practices by market participants and to protect investors’ sensitive personal information"

"When personal information or assets are stolen, the results can be calamitous. It can lead to identity theft, stolen savings, ruined credit, and other effects ...

"Recent recordkeeping charges settled by Morgan Stanley Smith Barney speak to how important it is that market participants properly safeguard customer information"