All Regulation S-P articles
-
News Brief
SEC amends Reg S-P to require data breach notification within 30 days
The Securities and Exchange Commission will require broker-dealers and registered investment advisers to adopt written policies and procedures for handling data breaches of customer data and notify affected customers within 30 days.
-
News Brief
SEC risk alert flags branch office cybersecurity controls
The protection of customer personal data by branch offices of broker-dealers and investment advisers should be just as robust—and as well-coordinated—as protocols used by the firm’s home office, according to the Securities and Exchange Commission.
-
News Brief
SEC proposes Reg S-P updates on incident response, breach notifications
The Securities and Exchange Commission proposed amendments to its regulation requiring broker-dealers, investment companies, and registered investment advisers to establish policies and procedures to safeguard customer records and information.
-
Article
Morgan Stanley unit fined $35M for mishandling customer data
Morgan Stanley Smith Barney agreed to pay $35 million to settle Securities and Exchange Commission charges it repeatedly disregarded the safeguarding of clients’ personal data in decommissioning local storage devices.
-
Article
Gensler says SEC to consider new rules for cybersecurity, data privacy disclosures
The Securities and Exchange Commission is kicking the tires on new cybersecurity and data privacy disclosure requirements for investment companies, investment advisers, broker-dealers, and public companies, according to agency Chair Gary Gensler.
-
Article
Roisman: SEC should consider stricter cyber reporting for public companies, advisers
SEC Commissioner Elad Roisman says the agency should mull over whether to require public companies and investment advisers to perform the same kind of reporting, preparation, and planning for cyber incidents that FINRA requires of registered broker-dealers.
-
Article
SEC sanctions 8 over email breaches
The Securities and Exchange Commission penalized eight firms across three separate actions for breaches of employee email accounts that exposed the personal information of thousands of customers in each case.
-
Article
OCIE issues risk alert on Regulation S-P
The SEC’s Office of Compliance Inspections and Examinations has issued a risk alert on Regulation S-P describing the most common deficiencies it has uncovered in recent examinations of both registered investment advisers and broker-dealers.