Securities Law Archives - Page 2 of 24

SEC Enforcement Targets Anti-Whistleblower Practices in Financial Firm’s Settlement Agreements with Retail Clients by Imposing Highest Penalty in Standalone Enforcement Action Under Exchange Act Rule 21 F-17(a)

As the year gets underway, the Securities and Exchange Commission (SEC or Commission) is continuing its ongoing enforcement efforts to target anti-whistleblower practices by pursuing a broader range of entities and substantive agreements, including the terms of agreements between financial institutions and their retail clients. The most recent settlement with a financial firm signifies that the SEC is imposing increasingly steep penalties to settle these matters while focusing on confidentiality provisions that do not affirmatively permit voluntary disclosures to regulators. We discuss below the latest SEC enforcement actions in the name of whistleblower protection and offer some practical tips for what firms and companies may do to proactively mitigate exposure.

On 16 January 2024, the SEC announced a record $18 million civil penalty against a dual registered investment adviser and broker-dealer (the Firm), asserting that the use of release agreements with retail clients impeded the clients from reporting securities law violations to the SEC in violation of Rule 21F-17(a) of the Securities Exchange Act of 1934 (Exchange Act).¹

The SEC found that from March 2020 through July 2023, the Firm regularly required its retail clients to sign confidential release agreements in order to receive a credit or settlement of more than $1,000. Under the terms of these releases, clients were required to keep confidential the existence of the credits or settlements, all related underlying facts, and all information relating to the accounts at issue, or risk legal action for breach of the agreement. The agreements “neither prohibited nor restricted” the clients from responding to any inquiries from the SEC, the Financial Industry Regulatory Authority (FINRA), other regulators or “as required by law.” However, the agreements did not expressly allow the clients to initiate voluntary reporting of potential securities law violations to the regulators. The SEC found that this violated Rule 21F-17(a) “which is intended to ‘encourag[e] individuals to report to the Commission.’”²While the Firm did report a number of the underlying client disputes to FINRA, the SEC found this insufficient to mitigate the lack of language in the release agreements that expressly permitted the clients to report potential securities law violations to the SEC.

The SEC initiated a settled administrative proceeding against the Firm, which neither admitted nor denied the SEC’s findings. In addition to the $18 million civil monetary penalty, the settlement requires that the Firm cease and desist from further violations of Rule 21F-17(a). Notably, the SEC credited certain remedial measures promptly undertaken by the Firm, including revising the at-issue release language and affirmatively alerting affected clients that they are not prohibited from communicating with governmental and regulatory authorities.

This enforcement action is significant for several reasons. First, it signals a broader enforcement focus by the SEC with respect to Rule 21F-17(a) in that this is the first action involving the terms of agreements between a financial institution and its retail clients, which are prevalent throughout the financial services industry. Previously, enforcement had focused squarely on restrictive confidentiality provisions involving employees, such as those found in employment or severance agreements or in connection with internal investigation interviews.

Second, the unprecedented magnitude of the penalty in a standalone Rule 21F-17(a) case underscores the SEC’s emphasis on preventing practices that it views as obstructions of whistleblower rights. SEC Enforcement Director Gurbir Grewal’s statement announcing the settlement reflects this position, “Whether it’s in your employment contracts, settlement agreements or elsewhere, you simply cannot include provisions that prevent individuals from contacting the SEC with evidence of wrongdoing.” Companies (public and private), broker-dealers, investment advisers, and other market participants should expect to see continued enforcement investigations in connection with the SEC’s ongoing attention toward compliance with Rule 21F-17(a), as discussed further below.

The SEC’s Whistleblower Protection Program

Established in 2011 pursuant to the Dodd-Frank Wall Street Reform and Consumer Protection Act of 2010, the SEC Whistleblower Program provides monetary awards to individuals who “tip” the SEC with original information that leads to an enforcement action resulting in monetary sanctions that exceed $1 million. Through the end of the SEC’s FY2023, the SEC has awarded almost $2 billion to 385 whistleblowers.³In FY2023 alone, the SEC received over 18,000 whistleblower tips and awarded more than $600 million in whistleblower awards to 68 individuals.⁴

In furtherance of the Whistleblower Program, the SEC also issued Exchange Act Rule 21F-17(a), which provides that “no person may take any action to impede an individual from communicating directly with the Commission staff about a possible securities law violation, including enforcing, or threatening to enforce, a confidentiality agreement . . . with respect to such communications.”⁵

SEC Struck Several Blows in 2023 Against Companies that Failed to Carve out Whistleblower Protections in Their Confidentiality Agreements

The SEC has been aggressively enforcing Rule 21F-17(a) since its first enforcement action in 2015 with respect to that Rule,⁶through several waves of enforcement actions. During 2023, the SEC was especially active with a number of settled enforcement actions asserting violations of Rule 21F-17(a) in which the respondents neither admitted nor denied the SEC’s findings:

In February 2023, the SEC fined a video game development and publishing company $35 million for violating federal securities laws through its inadequate disclosure controls and procedures. The settled action also included a finding that the company had violated Rule 21F-17(a) by executing separation agreements in the ordinary course of its business that required former employees to provide notice to the company if they received a request for information from the SEC’s staff.⁷
In May 2023, the SEC imposed a $2 million fine on an internet streaming company for: (i) retaliating against an employee who reported misconduct to the company’s management prior to and after filing a complaint with the SEC; and, (ii) impeding the reporting of potential securities law violations, by including provisions in employee severance agreements requiring that departing employees waive any potential right to receive a whistleblower award, in violation Rule 21F-17(a).⁸
In September 2023, in another standalone enforcement action for violations of Rule 21F-17(a), the SEC imposed a $10 million civil monetary penalty on a registered investment adviser (RIA) for requiring that its new employees sign employment agreements that prohibited the disclosure of “Confidential Information” to anyone outside of the company, without an exception for voluntary communications with the SEC concerning possible securities laws violations.⁹Further, the RIA required many departing employees to sign a release in exchange for the receipt of certain deferred compensation and other benefits affirming that, among other things, the employee had not filed any complaints with any governmental agency. Although the RIA later revised its policies and issued clarifications to employees that they were not prevented from communicating with the SEC and other regulators, the RIA failed to amend its employment and release agreements to provide the carve out.
Also in September 2023, the SEC charged two additional firms with violations of Rule 21F-17(a). In one case imposing a $375,000 civil penalty, the SEC found that a commercial real estate services and investment firm impeded whistleblowers by requiring its employees, as a condition of receiving separation pay, to represent that they had not filed a complaint against the firm with any federal agency.¹⁰In another case, the SEC imposed a $225,000 civil penalty against a privately-held energy and technology company for requiring certain departing employees to waive their rights to monetary whistleblower awards.¹¹This particular action underscores that Rule 21F-17 applies to all entities, and not only to public companies.

Mr. Grewal, in an October 2023 speech before the New York City Bar Association Compliance Institute, emphasized that potential impediments to the SEC’s Whistleblower Program would be a continued focus of the agency’s enforcement efforts, stating, “we take compliance with Rule 21F-17 very seriously, and so should each of you who work in a compliance function or advise companies. You need to look at these orders and the violative language cited by the Commission and think about how those actions may impact your firms. And if they do, then take the steps necessary to effect compliance.”¹²

Key Take-Aways

The SEC’s recent enforcement actions demonstrate that violations of Rule 21F-17(a) can carry significant fines and reach virtually any confidentiality agreement that does not carve out communications between a firm’s current or former employees or customers and the SEC or other regulators about potential securities violations. Moreover, although many of the enforcement actions relate to language in agreements, Rule 21F-17 is not so limited and can also apply to language in internal policies, procedures, guidance, manuals, or training materials. The message from the SEC is clear: it will continue to enforce Rule 21F-17 with respect to public companies, private companies, broker-dealers, investment advisers, and other financial services entities.

The SEC in its recent orders has provided credit to companies for cooperation as well as for instituting remedial actions.¹³ Being proactive in identifying and correcting potential violations in advance of any investigation by the SEC can result in mitigation of any action or penalties.

Legal and compliance officers may want to consider the following steps in order to evaluate and potentially mitigate any potential exposure to an enforcement action:

Conduct a review of all employee-facing and client-facing documents or contracts with confidentiality provisions and remove or revise any content that may be viewed as impeding (even unintentionally) a person’s ability to report potential securities law violations to the SEC. Depending on the circumstances, this may involve including a reference expressly permitting communications with the SEC and other government or regulatory entities without advance notice or disclosure to the company.
Remove any language from the templates that could be interpreted as hindering an employee’s or client’s ability to communicate with the SEC concerning potential securities law violations, including language threatening disciplinary action against employees for disclosing confidential information in their communications with government agencies when reporting potential violations.
Prepare addenda or updates to current employee- and client-facing agreements that reflect the revised confidentiality clauses.
Include reference in written anti-retaliation policies that employees’ communications and cooperation with the SEC and other government agencies will not result in retaliation from the company.
Conduct trainings for company managers and supervisors regarding appropriate communications to employees regarding their interactions with the government.
Implement policies that prevent any company personnel from taking steps to block or interfere with an employee’s use of company platforms or systems to communicate with the SEC and other government agencies.¹⁴

¹In the Matter of JP Morgan Securities LLC, Admin. Proc. No. 3-21829 (Jan. 16, 2024), https://www.sec.gov/files/litigation/admin/2024/34-99344.pdf.

²Id. (quoting Securities Whistleblower Incentives and Protections Adopting Release, Release No. 34-63434 (June 13, 2011)).

³SEC Office of the Whistleblower Annual Report to Congress for Fiscal Year 2023 (Nov. 14, 2023), https://www.sec.gov/files/2023_ow_ar.pdf; SEC Whistleblower Office Announces Results for FY 2022 (Nov. 15, 2022), https://www.sec.gov/files/2022_ow_ar.pdf; 2021 Annual Report to Congress Whistleblower Program (Nov. 15, 2021), https://www.sec.gov/files/owb-2021-annual-report.pdf; 2020 Annual Report to Congress Whistleblower Program (Nov. 16, 2020), https://www.sec.gov/files/2020_owb_annual_report.pdf.

⁴SEC Office of the Whistleblower Annual Report to Congress for Fiscal Year 2023 (Nov. 14, 2023), https://www.sec.gov/files/2023_ow_ar.pdf.

⁵17 C.F.R. § 240.21F-17.

⁶In the Matter of KBR, Inc., Admin. Proc. No. 3-16466 (Apr. 1 2015), https://www.sec.gov/files/litigation/admin/2015/34-74619.pdf (imposing a US$130,000 fine on a company in a settled enforcement action for requiring that witnesses in certain internal investigations sign confidentiality agreements warning that they could be subject to discipline if they discussed the matters at issue outside the company without prior approval of the company’s legal department).

⁷In the Matter of Activision Blizzard, Inc. Admin. Proc. No. 3-21294 (Feb. 3, 2023), https://www.sec.gov/files/litigation/admin/2023/34-96796.pdf.

⁸In the Matter of Gaia, Inc. et. al., Admin. Proc. No. 3-21438 (May 23, 2023), https://www.sec.gov/files/litigation/admin/2023/33-11196.pdf.

⁹In the Matter of D.E. Shaw & Co., L.P., Admin. Proc. No. 3-21775 (Sep. 29, 2023), https://www.sec.gov/files/litigation/admin/2023/34-98641.pdf.

¹⁰In the Matter of CBRE Inc., Admin. Proc. No. 3-21675 (Sept. 19, 2023), https://www.sec.gov/files/litigation/admin/2023/34-98429.pdf.

¹¹In the Matter of Monolith Res., LLC, Admin. Proc. No. 3-21629 (Sept. 8, 2023), https://www.sec.gov/files/litigation/admin/2023/34-98322.pdf.

¹²Gurbir S. Grewal, Remarks at New York City Bar Association Compliance Institute (Oct. 24, 2023), https://www.sec.gov/news/speech/grewal-remarks-nyc-bar-association-compliance-institute-102423.

¹³See, e.g., In the Matter of CBRE Inc., Admin. Proc. No. 3-21675 (Sept. 19, 2023), https://www.sec.gov/files/litigation/admin/2023/34-98429.pdf (crediting respondent’s remediation program, which included, among other measures, an audit of relevant agreements, updates to policies with respect to Rule 21F-17, and mandatory trainings); In the Matter of Monolith Res., LLC, Admin. Proc. No. 3-21629 (Sept. 8, 2023), https://www.sec.gov/files/litigation/admin/2023/34-98322.pdf (crediting respondent’s prompt remedial acts including revisions to the at-issue release language and affirmatively alerting affected clients that they are not prohibited from communicating with governmental and regulatory authorities.)

¹⁴Cf. In the Matter of David Hansen, Admin Proc. 3-20820 (Apr. 12, 2022), https://www.sec.gov/enforce/34-94703-s (settled SEC enforcement action against former Chief Information Officer of a technology company for violating Rule 21F-17(a) by, among other things, removing an employee’s access to the company’s computer systems after the employee raised concerns regarding misrepresentations contained in the company’s public disclosures).

Top Risks for Businesses in 2024

Just weeks into 2024, it is already clear that uncertainty will be the watchword. Will the economic soft landing of 2023 persist into 2024? Will labor unrest, strong in 2023, settle down as inflation cools? Will inflation remain tamed? Will the U.S. elections bring continuity or a new administration with very different views on the role of the U.S. in the world and in regulating business?

Uncertainty is also fueling a complex risk environment that will require monitoring global developments more so than in the past. As outlined below, geopolitical risks are present, multiple, interconnected and high impact. International relations have traditionally fallen outside the mandate of most C-Suites, but how the U.S. government responds to geopolitical challenges will impact business operations. Beyond additional disruptions to global trade, businesses in 2024 will face risks associated with expanding protectionist economic policies, climate change impacts, and AI-driven disruptors.

Geopolitical Tensions Disrupting Global Trade

The guardrails are coming off the international system that enshrines the ideals of preserving peace and security through diplomatic engagement, respecting international borders (not changing them through military might) and ensuring the free flow of global trade. In 2022, the world was shocked by Russia’s invasion of Ukraine, but it has taken time for the full impact to reverberate through the international system. While political analysts write on a “spillover of conflict,” the more insidious impact is that more leaders of countries and non-state groups are acting outside the guardrails because they are no longer deterred from using military force to achieve political goals, making 2024 ripe for new military conflicts disrupting global trade beyond the ongoing war in Europe.

In October 2023, Hamas launched a war from Gaza against Israel. Thus far, fighting has spread to the West Bank, between Israel and Lebanese Hezbollah in the north, and to the Red Sea, with Iranian-backed Houthis attacking shipping through the strategic Bab al Mandab strait. Container ships and oil tankers, to avoid the risks, are re-routing to the Cape of Good Hope, adding two weeks of extra sailing time, with the associated costs. Insurance premiums for cargo ships sailing in the eastern Mediterranean have skyrocketed, with some no longer servicing Israeli ports. Companies and retailers with tight delivery schedules are switching to airfreight, which is expected to drive up airfreight rates.

Iran, emboldened by its blossoming relationship with Russia as one of Moscow’s new arms suppliers, is activating its proxy armies in Yemen, Iraq, Syria and Lebanon to attack Western targets. In a two-day period in January 2024, the Iran Revolutionary Guards directly launched strikes in Syria, Iraq and Pakistan. Nuclear-armed Pakistan retaliated with a cross border strike in Iran. While there are many nuances to these incidents, it is evident that deterrence against cross-border military conflict is eroding in a region with deep, festering grievances among neighbors. Iran is in an escalatory mode and could resume harassing shipping in the Persian Gulf and the strategic Strait of Hormuz, where about a fifth of the volume of the world’s total oil consumption passes through on a daily basis.

In East Asia, North Korea is also emboldened by the changing geopolitical environment. Pyongyang, too, has become a major supplier of weaponry to Moscow for use in Ukraine. While Russia (and China) in the past have constructively contained North Korean predilection for aggression against its neighbors, Supreme Leader Kim Jong Un may believe the time is ripe to change the status quo. Ominously, in a Jan. 15 speech before the Supreme People’s Assembly (North Korea’s parliament), Kim rejected the policy of reunification with South Korea and proposed incorporating the country into North Korea “in the event of war.” While North Korean leaders frequently revert to brinksmanship and aggressive language, Kim’s speech reflects confidence of a nuclear power, aligned with Russia against a shared adversary – South Korea, which is firmly aligned with the G7 consensus on Russia. A war in the Korean peninsula would be felt around the world because East Asia is central to global shipping and manufacturing, disrupting supply chains, as well as the regional economy.

China is also waiting for the right moment to “unite” Taiwan with the mainland. Beijing has seen the impact of Western sanctions on Russia over Ukraine and has been deterred from aiding the Russian war effort. In many ways, China has benefited from these sanctions and the reorientation of global trade. Also, Russia, with its far weaker economy, has proven surprisingly resilient to sanctions, another lesson for China. Meanwhile, the Taiwanese people voted in January and returned for a third time the ruling party that strongly rejects Chinese territorial claims. Tensions are high, with the Chinese military once again harassing Taiwanese defenses. For Beijing, the “right moment” could fall this year should conflict break out on the Korean peninsula, which would tie the U.S. down because of the Mutual Defense Treaty.

The uncertainty here is not that there are global tensions, but how the U.S. will respond as they develop and how U.S. businesses can navigate external shocks. Will the U.S. be drawn into a new war in the Middle East? Can the U.S. manage multiple conflicts, already deeply involved in supporting Ukraine? Is the U.S. economy resilient enough to withstand trade disruptions? How can businesses strengthen their own resiliency?

Economic Protectionism Increasing Costs and Risks

Geopolitical tensions, the global pandemic and the unequal benefits of globalization are impacting economic policies of the U.S. and the political discourse around the merits of unrestrained free trade. Protectionist economic policies are creeping in, under the nomenclature of “secure supply chains,” “friend-shoring” and “home-shoring.” The U.S. has imposed tariffs on countries (even allies) accused of unfair trade practices and has foreclosed access to certain technologies by unfriendly countries, namely China.

While the response to some of these trade restrictions are new trade agreements with “friends” to regulate access under preferred terms, in essence creating multiple “friends” trade blocs for specific sectors, other responses are retaliatory, including counter tariffs and export restrictions or outright bans. In 2024, the U.S. economy will see the impact of these trade fragmentation policies in acute ways, with upside risks of new business opportunities and downside risks of supply chain disruptions, critical resource competition, increased input costs, compliance risks and increased reputational risks.

Trade with China, which remains significant and important to the stability of the U.S. economy, will pose new risks in 2024. While Washington and Beijing have agreed to some political and security guardrails to manage the relationship, economic competition is unrestrained and stability in the bilateral relations is not guaranteed. The December 2023 bipartisan report by the House Select Committee on the Strategic Competition Between the United States and the Chinese Communist Party, with its 150 recommendations on fundamentally resetting economic and technological competition with China, if even partially adopted, risks reigniting the trade war.

2024 is a presidential election year for the U.S. A change of control of the executive branch could result in many economic and regulatory policy reversals. The definition of “friend” could shift or narrow. Restrictions on trade with China could accelerate.

Impacts of Climate Change and Sustainability Policies

2023 was the hottest year on record, and El Niño conditions are expected to further boost the warming trend. Many regions experienced record-breaking wildfire activity in 2023, including Canada where 18 million hectares of land burned. Extreme storms caused life-threatening flooding in Europe, Asia and the Americas. 2024 is expected to bring even more climate hazards. The impacts will be physical and financial, including growing insurance losses and adverse impacts on operations and value chain. Analysts expect that in 2024, the economic and financial costs of adverse health impacts from climate change will increase, with risks related to the spread of infectious disease, insufficient access to clean water, and physical harm to the elderly and vulnerable. The direct economic effect will be on health systems, but also loss of productivity due to extreme weather incidents and effects of epidemics.

Energy transition to low-carbon emissions is underway in the U.S., but it is uneven and still uncertain. The financial market is investing in an impressive number of startups and large-scale projects revolving around cleantech. Still, there is hesitancy on the opportunity and risks of sustainability. Thus far, progress towards sustainability goals has been private sector-led and government-enabled. There is a risk that government incentive programs encouraging the transition to low-carbon energy could be reversed or curtailed under a new administration.

In 2024, some companies will face more climate disclosure compliance requirements. The Securities and Exchange Commission (SEC) is expected to release its final rule on climate change disclosures. The final action has been delayed several times because of pushback by public companies on some of the requirements, including Scope 3 greenhouse gas emission disclosures (those linked to supply chains and end users). California has not waited for the SEC’s final rule: In October 2023, Gov. Gavin Newsom signed into law legislation that will require large companies to disclose greenhouse gas emissions. The California climate laws go into effect in 2026, but companies will need to start much earlier to build the capabilities to plan, track and report their carbon footprint. For U.S. companies doing business in the European Union, they will need to comply with the EU Corporate Sustainability Reporting Directive, with the rules coming into force mid-2024.

Disruptive Technology

In 2023, generative AI was the talk of the town; in 2024, it will be the walk. Companies are popping up with new tools for every imaginable sector, to increase efficiency, task automation, customization, personalization and cost reduction. Business leaders are scrambling to integrate AI to gain a competitive edge, while navigating the everyday risks related to privacy, liability and security. While there are concerns that AI will displace humans, there is a growing consensus that while some jobs will disappear, people will focus on higher value work. That said, new rounds of labor disruptions linked to workforce transition are likely in 2024.

2024 will also bring AI-generated misinformation and disinformation. Bad actors will spread “synthetic” content, such as sophisticated voice cloning, doctored images and counterfeit websites, seeking to manipulate people, damage companies and economies, and foment dissent.

In 2024, around 2 billion people in more than 50 countries will vote in elections at risk of manipulation by misinformation and disinformation, which could destabilize the real and perceived legitimacy of newly elected governments, risking political unrest, violence, terrorism and erosion of democratic processes. Large democracies will hold elections in 2024, including the U.S., the EU, Mexico, South Korea, India, Pakistan, Indonesia and South Africa. Synthetic content can be very difficult to detect, while easy to produce with AI tools.

This is not a theoretical threat; synthetic content is already being disseminated in the U.S., targeting New Hampshire voters with robocalls that share fake recorded messages from President Biden encouraging people not to vote in the primary election. The U.S. is already polarized with citizens distrustful of the government and media, a ready vulnerability. Businesses are not immune. Notably, CEOs have stood apart, with higher ratings for trustworthiness and risk being called upon to vouch for “truth” (and becoming collateral damage in the fray).

AI-powered malware will make 2023 cyber risks look like child’s play. Attackers can use AI algorithms to find and exploit software vulnerabilities, making attacks precise and effective. AI can help hackers quickly identify security measures and evade them. AI-created phishing attacks will be more sophisticated and difficult to detect because the algorithms can assess larger amounts of piecemeal information and craft messages that mimic communication styles.

The role of states backing cyber armies to spread disinformation or steal information is growing and is part and parcel of the erosion of the existing international order. States face little deterrence from digital cross-border attacks because there are yet to be established mechanisms to impose real costs.

Corporate Transparency Act Requires Disclosure of Information Regarding Beneficial Owners to FinCEN

The new year brings the most expansive disclosure requirements for U.S. business entities since the Depression. Starting January 1, 2024, U.S. companies and foreign companies operating in the United States will be required to report their beneficial owners and principal officers to the U.S. Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) pursuant to the Corporate Transparency Act (CTA) adopted as part of the 2021 National Defense Authorization Act, unless subject to specific exemptions.

Who Is Required to Report?
The CTA’s filing requirements (31 CFR 1010.380(c)(1)) apply to both domestic reporting companies and foreign reporting companies.

Domestic reporting companies are corporations, limited liability companies and any other entity registered to do business in any state or tribal jurisdiction by the filing of a document with the secretary of state or similar official.
Foreign reporting companies are business entities formed under the law of a foreign country that are registered to do business in any state or tribal jurisdiction by the filing of a document with the secretary of state or similar official

The CTA provides 23 categories of exemption. The following types of entities are not required to file reports with FinCEN:

Large Operating Companies
This exemption applies to entities that (1) have 20 people or more full time employees in the United States, (2) have gross revenue (or sales) in excess of $5 million on their prior year’s tax return and (3) have a physical office in the United States.
Securities Reporting Issuers
Governmental Authorities
Banks
Credit Unions
Depository Institution Holding Companies
Money Services Businesses
Brokers and Dealers in Securities
Securities Exchanges and Clearing Agencies
Other Exchange Act Registered Entities

Investment Companies and Investment Advisers
Venture Capital Fund Advisers
Insurance Companies
State-Licensed Insurance Producers
Commodity Exchange Act Registered Entities
Accounting Firms
Public Utilities
Financial Market Utilities
Pooled Investment Vehicles
Tax-Exempt Entities
Entities Assisting a Tax-Exempt Entity
Subsidiaries of Certain Exempt Entities
Inactive Entities

It is worth noting that the definition of reporting companies is not limited to corporations and limited liability companies. Limited partnerships, professional service entities and other entities may qualify as reporting companies and, if so, are required to comply with the CTA’s reporting requirements.

How Does a Company Comply?
FinCEN requires affected companies to file beneficial ownership information reports (BOI Reports) using an electronic filing system. See the BOI E-Filing System.

What Information Should Be Reported?
Reporting companies must identify beneficial owners in their BOI Reports.

Beneficial owners are defined as individuals who directly or indirectly (1) exercise substantial control over a reporting company or (2) own or control at least 25 percent of ownership interests of a reporting company. Ownership interests covered by the CTA may include profits interests, convertible instruments, options and contractual arrangements as well as equity securities. In addition, owners who hold their ownership interests jointly or through a trust, agent or other intermediary are also required to be identified – although minors are generally exempted from reporting obligations.

Senior officers (typically, the president, CEO, CFO, COO and officers who perform similar functions); individuals with the ability to appoint senior officers or a majority of the board of directors or a similar body; and anyone else who directs, determines or has substantial input to other important decisions of a reporting company also need to be identified in BOI Reports as individuals exercising substantial control over reporting companies.

Reporting companies created on or after January 1, 2024, also must identify “company applicants” in their BOI Reports. Company applicants are the individuals who filed the documents creating the reporting company and individuals primarily responsible for directing or controlling the filing of documents creating a reporting company.

BOI Reports must contain the following information regarding the reporting company:

Legal name
Any trade name or d/b/a name
Address of the company’s principal place of business in the United States
Jurisdiction of formation
Taxpayer Identification Number.

BOI Reports must contain the following information regarding each beneficial owner and company applicant:

Full legal name
Date of birth
Current address
Copy of a passport, driver’s license or other identification document.

Every person who files a BOI Report must certify the information contained is true, correct and complete.

Information contained in BOI Reports will not be available to the public. However, FinCEN is authorized to disclose such information to:

U.S. federal agencies engaged in national security, intelligence or law enforcement activity
With court approval, to certain other state or local law enforcement agencies
Non-U.S. law enforcement agencies at the request of a U.S. federal law enforcement agency, prosecutor or judge
With the consent of the reporting company, financial institutions and their regulators
Federal regulators in assessing financial institutions compliance with customer due diligence requirements
The U.S. Department of the Treasury for purposes including tax administration.

Is There a Fee?
No fee is required in connection with filing of BOI Reports.

When Do Companies Need to File?
U.S. and foreign reporting companies that were formed or registered to do business in the United States prior to January 1, 2024, must file their initial BOI Reports no later than January 1, 2025. U.S. and foreign reporting companies formed on or after January 1, 2024, must file their initial BOI Reports within 90 days of receipt of notice of formation.

Reporting companies are required to file updated reports with FinCEN within 30 days of occurrence of a change in any of the information contained in their BOI Reports.

What If There Are Changes or Inaccuracies in the Reported Information?
Inaccuracies in BOI Reports must be corrected within 30 days of the date a reporting company becomes aware of or had reason to know of such inaccuracy. FinCEN has indicated that there will be no penalties for filing inaccurate BOI Reports if such reports are corrected within 90 days of their filing.

What If a Company Fails to File?
The willful failure to report the information required by the CTA or filing fraudulent information under the CTA may result in civil or criminal penalties, including penalties of up to $500 per day as long as a violation continues, imprisonment for up to two years and a fine of up to $10,000. Senior officers of an entity that fails to file a required report may be held accountable for such failure.

If you have questions regarding the provisions of the CTA or its applicability to your company, you may go to the FinCEN website.

2024: The Year of the Spot Bitcoin ETP

The US Securities and Exchange Commission (SEC) is making 2024 a significant year for exchange-traded products (ETPs) by declaring effective the registration statements of ten Bitcoin ETPs, and approving their listing on one of the major stock exchanges. This is a monumental step to bringing access to Bitcoin to a broader retail market in the US For over a decade, the staff of the SEC (Staff) had denied or otherwise blocked applications to list spot Bitcoin ETPs, claiming, in part, that there were insufficient protections against market manipulation in the underlying Bitcoin market. The approvals issued this week unlock – although do not widely open – a previously dead bolted door to registered products offering direct exposure to Bitcoin, providing an opportunity for retail investors to have easier access to exposure to Bitcoin in a regulated product.

The approvals follow the US federal appeals court ruling in August 2023 that the SEC was “arbitrary and capricious” in its decision to reject an application by the NYSE Arca to list shares of the Grayscale Bitcoin Trust. In granting the approvals, Chair Gensler acknowledged that the law had changed following the Grayscale decision stating “we are now faced with a new set of filings similar to those we have disapproved in the past. Circumstances, however, have changed.” Rather than appeal the court ruling, the staff of the SEC chose to engage with the sponsors of proposed spot Bitcoin ETPs to discuss parameters necessary for approval, including the inclusion of additional disclosure and other requirements to provide for investor protection. In approving the listing of the ETPs, the SEC relied, in part, on its confirmation that the “CME bitcoin futures market has been consistently highly correlated with this subset [(Coinbase and Kraken)] of the spot [B]itcoin market throughout the past 2.5 years,”¹ a fact which was heavily leaned upon in the Grayscale decision. Among the requirements insisted upon by the Staff were requirements that the ETPs effect sales and redemptions of ETP creation units solely in cash (rather than in-kind) and hardcoding of key service providers (including Bitcoin custodians) into the listing rule. The SEC’s approved all listing rule applications simultaneously, in an effort to prevent a single ETP from having a first mover advantage.

While this initial round of approvals is promising for the ETP and cryptocurrency industries, it does not signal a general acceptance of all spot cryptocurrency ETPs. Rather, the SEC granted approval only to ETPs investing in Bitcoin, and it is unclear whether it will be receptive to products investing in other crypto assets. Chair Gensler’s statement in announcing the approvals indicated that he and the staff remain skeptical of digital assets generally, including Bitcoin, stating that the approval is not an endorsement of Bitcoin and that investors should remain cautious and aware of the risks. Issuers wishing to offer similar products with other digital asset investments may now have examples to follow, but will still need to undergo a comprehensive review process, and ultimate approval is not guaranteed. Moreover, future exchange-traded products seeking to directly invest other cryptocurrencies or digital assets may have to satisfy a correlation test similar to that which was relied on by the SEC in approving the current products and may not be able to do so.

¹ SEC Release, Order Granting Accelerated Approval of Proposed Rule Changes, as Modified by Amendments Thereto, to List and Trade Bitcoin-Based Commodity-Based Trust Shares and Trust Units, No. 34-99306 (10 January 2024).

Regulatory Update and Recent SEC Actions 2024

REGULATORY UPDATES

RECENT SEC LEADERSHIP CHANGES

Stephanie Allen Named as SEC’s Director of Media Relations and Speechwriting

The Securities and Exchange Commission (the “SEC”) announced the appointment of Stephanie Allen as director of media relations and speechwriting, effective Oct. 1, 2023. Allen served as director of speechwriting and senior adviser to the chair since March 2023, and replaces Aisha Johnson, who recently departed the agency.

Allen will serve as the primary spokesperson for the SEC and for Chair Gensler and will lead media relations for the Office of Public Affairs. Allen was previously the executive director of the Ludwig Institute for Shared Economic Prosperity. Before that, she was the director of strategic communications and marketing at Promontory Financial Group, an IBM company. After working for two senators earlier in her career, she served as Chair Gensler’s speechwriter at the Commodity Futures Trading Commission.

SEC Names Kate E. Zoladz as Regional Director of Los Angeles Office

The SEC named, on November 29, 2023, Kate Zoladz as regional director of the SEC’s Los Angeles Office. Zoladz joined the SEC in 2010 as a staff attorney in the Los Angeles office and later joined the Division of Enforcement’s Asset Management Unit in 2017. Zoladz recently served as acting co-director since June 2023 and the associate regional director for enforcement since October 2019.

Daniel Gregus, Director of the Chicago Regional Office, to Depart the SEC

The SEC announced on December 7, 2023, that Daniel R. Gregus, director of the Chicago Regional Office, would leave the agency at the end of December after more than 30 years of service. Vanessa Horton and Kathryn Pyszka are now the acting co-directors. Horton has been an associate regional director of the Investment Adviser/Investment Company (IA/IC) examination program in the Chicago Regional Office since 2020. She joined the SEC’s Chicago office in 2004 as an accountant and was later an exam manager and an assistant regional director in the Chicago IA/IC examination program. Pyszka has served as an associate regional director for enforcement in the Chicago office since 2017. She began her SEC service in 1997 as a staff attorney and later served in the positions of branch chief, senior trial counsel, and as an assistant director in the Chicago office and the Enforcement Division’s Market Abuse Unit.

SEC Risk Alerts

SEC Announces 2024 Exam Priorities

The SEC’s Division of Examinations (the “Division”) issued its report (the “Report”) on October 16, 2023, regarding exam priorities for the upcoming year concerning investment advisers, broker-dealers, self-regulatory organization, and other market participants.

According to the Report, examination priorities continue to focus on whether investment advisers are adhering to their duty of care and duty of loyalty obligations. Areas of continued focus include:

Investment advice provided to clients (with an emphasis on advice to older clients and those saving for retirement) with regard to products, investment strategies, and account types:
- Complex products, such as derivatives and leveraged exchange-traded funds (“ETFs”);
- High-cost and illiquid products, such as variable annuities and non-traded real estate investment trusts (“REITs”); and
- Unconventional strategies, including those that purport to address rising interest rates.
Processes for determining that investment advice is provided in clients’ best interest, including:
- Making initial and ongoing suitability determinations;
- Seeking best execution;
- Evaluating costs and risks; and
- Identifying and addressing conflicts of interest.

Per the Report, assessments will look at the factors that advisers consider in light of the clients’ investment profiles, including investment goals and account characteristics. Examinations will review how advisers address conflicts of interest, including: (i) mitigating or eliminating the conflicts of interest, when appropriate, and (ii) allocating investments to accounts where investors have more than one account (e.g., allocating between accounts that are adviser fee-based, brokerage commission-based, and wrap fee, as well as between taxable and non-taxable accounts).

Additionally, examinations will focus on the economic incentives and conflicts of interest associated with advisers that are dually registered as broker-dealers, use affiliated firms to perform client services, and have financial professionals servicing both brokerage customers and advisory clients to identify, among other things: (i) investment advice to purchase or hold onto certain types of investments (e.g., mutual fund share classes) or invest through certain types of accounts when lower cost options are available; and (ii) investment advice regarding proprietary products and affiliated service providers that result in additional or higher fees to investors. Exams will include review of disclosures made to investors and whether they include all material facts relating to conflicts of interest associated with the investment advice sufficient to allow a client to provide informed consent to the conflict.

Specific areas of focus will include:

Marketing Rule and whether advisers, including advisers to private funds, have:
- Adopted and implemented reasonably designed written policies and procedures to prevent violations of the Advisers Act and the rules thereunder including reforms to the Marketing Rule;
- Appropriately disclosed their marketing-related information on Form ADV;
- Maintained substantiation of their processes and other required books and records; and
- Disseminated advertisements that include any untrue statements of a material fact, are materially misleading, or are otherwise deceptive and, as applicable, comply with the requirements for performance (including hypothetical and predecessor performance), third-party ratings, and testimonials and endorsements.
Compensation arrangements:
- Fiduciary obligations of advisers to their clients, including registered investment companies, particularly with respect to the advisers’ receipt of compensation for services or other material payments made by clients and others;
- Alternative ways that advisers try to maximize revenue, such as revenue earned on clients’ bank deposit sweep programs; and
- Fee breakpoint calculation processes, particularly when fee billing systems are not automated.
Valuation assessments regarding advisers’ recommendations to clients to invest in illiquid or difficult to value assets, such as commercial real-estate or private placements.
Disclosure review for the accuracy and completeness of regulatory filings, including Form CRS, with a particular focus on inadequate or misleading disclosures and registration eligibility.
Policies and procedures with respect to:
- Selecting and using third-party and affiliated service providers;
- Overseeing branch offices when advisers operate from numerous or geographically dispersed offices; and
- Obtaining informed consent from clients when advisers implement material changes to their advisory agreements.

Investment Advisers to Private Funds

According to the Report, examinations will prioritize specific topics, such as:

Portfolio management risks in connection with exposure to recent market volatility and higher interest rates and effects on funds experiencing poor performance, significant withdrawals, and valuation issues for private funds with more leverage and illiquid assets.
Adherence to contractual requirements regarding limited partnership advisory committees or similar structures (e.g., advisory boards), including adhering to any contractual notification and consent processes.
Accurate calculation and allocation of private fund fees and expenses (both fund-level and investment-level), including valuation of illiquid assets, calculation of post commitment period management fees, adequacy of disclosures, and potential offsetting of such fees and expenses.
Due diligence practices for consistency with policies, procedures, and disclosures, particularly with respect to private equity and venture capital fund assessments of prospective portfolio companies.
Conflicts, controls, and disclosures regarding private funds managed side-by-side with registered investment companies and use of affiliated service providers.
Compliance with Advisers Act requirements regarding custody, including accurate Form ADV reporting, timely completion of private fund audits by a qualified auditor, and the distribution of private fund audited financial statements.
Policies and procedures for reporting on Form PF, including upon the occurrence of certain reporting events.

Registered Investment Companies (including Mutual Funds and ETFs)

Per the Report, exam focus may include the following assessments:

Compliance programs and fund governance practices—review boards’ processes for assessing and approving advisory and other fund fees, particularly for funds with weaker performance relative to their peers;
Disclosures to investors and accuracy of reporting to the SEC;
Valuation practices, particularly for those addressing fair valuation practices (e.g., implementing board oversight duties, setting recordkeeping and reporting requirements, and overseeing valuation designees), and, as applicable, the effectiveness of registered investment companies’ derivatives risk management and liquidity risk management programs;
Fees and expenses and whether registered investment companies have adopted effective written compliance policies and procedures concerning the oversight of advisory fees and implemented any associated fee waivers and reimbursements. Areas of particular focus include:
- Charging different advisory fees to different share classes of the same fund;
- Identical strategies offered by the same sponsor through different distribution channels but that charge differing fee structures;
- High advisory fees relative to peers; and
- High registered investment company fees and expenses, particularly those of registered investment companies with weaker performance relative to their peers.
- Examinations will also review the boards’ approval of the advisory contract and registered investment company fees.
Derivatives risk management and whether registered investment companies and business development companies have adopted and implemented written policies and procedures reasonably designed to prevent violations of the SEC’s fund derivatives rule (Investment Company Act of 1940 (the “Investment Company Act”) Rule 18f-4). Review of compliance with the derivatives rule may include:
- Review of the adoption and implementation of a derivatives risk management program;
- Board oversight, and whether disclosures concerning the registered investment companies’ or business development companies’ use of derivatives are incomplete, inaccurate, or potentially misleading; and
- Procedures for, and oversight of, derivative valuations.

Division staff will also focus on the following areas:

Cybersecurity
Cryptocurrency assets (focus on a range of activities surrounding crypto assets and related products, including offering, selling, recommending, trading, and providing advice on such assets); and
Anti-Money Laundering (“AML”) programs.

Cybersecurity: With respect to cybersecurity, the Division noted that “operational disruption risks remain elevated due to the proliferation of cybersecurity attacks, firms’ dispersed operations, intense weather-related events, and geopolitical concerns.” According to the release, the examination staff will focus on firms’ policies and procedures, internal controls, governance practices, oversight of third-party vendors, and responses to “cyber-related incidents” such as ransomware attacks. Reviews will consider how firms train staff on issues including identity theft prevention and customer records and information protection. Staff will also place a particular focus on “the concentration risk associated with the use of third-party providers, including how registrants are managing this risk and the potential impact to the U.S. securities markets.”

Crypto Assets and Emerging Financial Technology: The release highlights concerns based on the continued growth and popularity of crypto assets (and their associated products and services) and the increase in automated investment tools, artificial intelligence, and trading algorithms or platforms. The Division’s goal is twofold: (1) to ensure that registrants meet their fiduciary duties when recommending or advising about crypto assets; and (2) that compliances, risk disclosures, and operational resiliency practices are routinely reviewed and updated to account for the unique challenges crypto assets provide.

For crypto assets that are funds or securities, this includes ensuring that crypto assets are complying with the custody requirements under the Investment Advisers Act of 1940 (the “Advisers Act”) and whether policies and procedures are reasonably designed, and accurate disclosures are made, relating to technological risks associated with blockchain and distributed ledger technology.

Anti-Money Laundering: The Division will continue to focus on whether broker-dealers and certain registered investment companies have proper AML programs as required by the Bank Secrecy Act. Specifically, the Division will examine whether broker-dealers and investment companies are appropriately tailoring AML programs, conducting independent testing, establishing an adequate customer identification program, and meeting their filing obligations.

SEC Rulemaking

SEC Adopts Amendments to Rules Governing Beneficial Ownership Reporting

The SEC adopted rule amendments governing beneficial ownership reporting under Sections 13(d) and 13(g) of the Securities Exchange Act of 1934 (the “Exchange Act”) on October 10, 2023, requiring market participants to provide more timely information on their positions.

Exchange Act Sections 13(d) and 13(g), along with Regulation 13D-G, require an investor who beneficially owns more than five percent of a covered class of equity securities to publicly file either a Schedule 13D or a Schedule 13G, as applicable. An investor with control intent files Schedule 13D, while “Exempt Investors” and investors without a control intent, such as “Qualified Institutional Investors” and “Passive Investors,” file Schedule 13G.

The adopted amendments (among other things): i) shorten the deadline for initial Schedule 13D filings from 10 days to five business days and require that Schedule 13D amendments be filed within two business days; ii) generally accelerate the filing deadlines for Schedule 13G beneficial ownership reports (the filing deadlines differ based on the type of filer); iii) clarify the Schedule 13D disclosure requirements with respect to derivative securities; and iv) require that Schedule 13D and 13G filings be made using a structured, machine-readable data language.

In addition, the adopting release provides guidance regarding the current legal standard governing when two or more persons may be considered a group for the purposes of determining whether the beneficial ownership threshold has been met, as well as how, under the current beneficial ownership reporting rules, an investor’s use of certain cash-settled derivative securities may result in the person being treated as a beneficial owner of the class of the reference equity securities.

The amendments were published in the Federal Register on November 7, 2023, effective on February 5, 2024. Compliance with the revised Schedule 13G filing deadlines will be required beginning on September 30, 2024. Compliance with the structured data requirement for Schedules 13D and 13G will be required on December 18, 2024. Compliance with the other rule amendments will be required upon their effectiveness.

“Today’s adoption updates rules that first went into effect more than 50 years ago. Frankly, these deadlines from half a century ago feel antiquated,” said SEC Chair Gary Gensler. “In our fast-paced markets, it shouldn’t take 10 days for the public to learn about an attempt to change or influence control of a public company. I am pleased to support this adoption because it updates Schedules 13D and 13G reporting requirements for modern markets, ensures investors receive material information in a timely way, and reduces information asymmetries.”

SEC Adopts Rule to Increase Transparency in the Securities Lending Market

The SEC adopted on October 13, 2023, new Rule 10c-1a, which will require certain persons to report information about securities loans to a registered national securities association (“RNSA”) and require RNSAs to make publicly available certain information that they receive regarding those lending transactions. According to the SEC, the rule is intended to increase transparency and efficiency of the securities lending market.

Rule 10c-1a will require certain confidential information to be reported to an RNSA to enhance the RNSA’s oversight and enforcement functions. The new rule requires that an RNSA make certain information it receives, along with daily information pertaining to the aggregate transaction activity and distribution of loan rates for each reportable security, available to the public. The Financial Industry Regulatory Authority (“FINRA”) is currently the only RNSA.

The adopting release was published in the Federal Register on November 3, 2023. The compliance dates for the new rule are as follows: (1) an RNSA is required to propose rules within four months of the effective date; (2) the proposed RNSA rules are required to be effective no later than 12 months after the effective date; (3) covered persons are required to report information required by the rule to an RNSA starting on the first business day 24 months after the effective date; and (4) RNSAs are required to publicly report information within 90 calendar days of the reporting date.

SEC Adopts Rule to Increase Transparency Into Short Selling and Amendment to CAT NMS Plan for Purposes of Short Sale Data Collection

The SEC adopted, on October 13, 2023, new Rule 13f-2 to provide greater transparency to investors and other market participants by increasing the public availability of short sale related data. Specifically, Rule 13f-2 will require institutional investment managers that meet or exceed certain thresholds to report on Form SHO specified short position data and short activity data for equity securities. The Commission will aggregate the resulting data by security, thereby maintaining the confidentiality of the reporting managers, and publicly disseminate the aggregated data via EDGAR on a delayed basis. This new data will supplement the short sale data that is currently publicly available.

Relatedly, the Commission also adopted an amendment to the National Market System Plan (“NMS Plan”) governing the consolidated audit trail (“CAT”). The amendment to the NMS Plan governing the CAT (“CAT NMS Plan”) will require each CAT reporting firm that is reporting short sales to indicate when it is asserting use of the bona fide market making exception in Rule 203(b)(2)(iii) of Regulation SHO.

The adopting release for Rule 13f-2 and related Form SHO, as well as the notice of the amendment to the CAT NMS Plan, was published in the Federal Register on November 1, 2023. The final rule, Form SHO, and the amendment to the CAT NMS Plan will become effective 60 days after publication of the adopting release in the Federal Register. The compliance date for Rule 13f-2 and Form SHO will be 12 months after the effective date of the adopting release, with public aggregated reporting to follow three months later, and the compliance date for the amendment to the CAT NMS Plan will be 18 months after the effective date of the adopting release.

Clearing Agency Governance and Conflicts of Interest

On November 16, 2023, the SEC adopted Rule 17Ad-25 and related rules under the Exchange Act to improve clearing agency governance to mitigate conflicts of interest that may influence the board of directors or equivalent governing body of a registered clearing agency. The rules identify certain responsibilities of the board of a clearing agency, increase transparency into board governance, and, more generally, improve the alignment of incentives among owners and participants of a registered clearing agency. The rules establish new requirements for board and committee composition, independent directors, management of conflicts of interest, and board oversight.

The adopted rules:

Define independence in the context of a director serving on the board of a registered clearing agency and require that a majority of the board—or 34 percent—be independent directors;
Establish independent director requirements for the compensation of certain other board committees and identify circumstances that would preclude a director from being an independent director;
Require a clearing agency to establish a nominating committee and a written evaluation process for evaluating board nominees and the independence of nominees and directors and specify requirements with respect to its composition, director fitness standards, and documentation of the outcome of the written eval practice;
Require a clearing agency to establish a risk management committee, specify requirements with respect to the committees’ purpose and composition, and include an annual re-evaluation of such composition;
Require policies and procedures for the management of risks from relationships with service providers for core services that directly support the delivery of clearance or settlement functionality or any other purpose material to the business of the registered clearing agency, with delineated roles for senior management and the board; and
Require policies and procedures for the board to solicit, consider, and document its consideration of the views of participants and other relevant stakeholders regarding material developments in the registered clearing agency’s risk management and operations.

The final rule was published in the Federal Register on December 5, 2023, with an expected compliance 12 months after such publication for all requirements except for the independence requirement for the board and board committees, for which the compliance date is 24 months after publication.

SEC Defends Voting Disclosure Changes Before Fifth Circuit

In July of 2022, the SEC adopted amendments to its rules governing proxy voting advice. Specifically, the rule requires mutual funds, ETFs and certain other registered funds to disclose more information about how they cast votes on behalf of investors. (See Blank Rome’s Investment Management Regulatory Update dated October 2022, “SEC Adopts Amendments to Proxy Rules Governing Proxy Voting Advice,” for further discussion). The rule is set to become effective July 1, 2024.

Since passing the rule, four states (Texas, Louisiana, Utah, and West Virginia) have challenged the SEC’s authority to require fund managers to disclose additional information about votes they cast. Their argument to the Fifth Circuit is that the real purpose of the voting disclosure change is to empower corporate activities rather than the investing public. The SEC maintains, however, that the amendments fall within its authority under the Investment Company Act and that the SEC reasonably concluded that the changes would facilitate investors’ ability to access information important to investment decisions and mitigate conflicts of interest.

SEC Adopts Rule to Prohibit Conflicts of Interest in Certain Securitizations

On November 27, 2023, the SEC adopted Dodd-Frank rules against trader conflicts. Securities Act Rule 192 implements Section 27B of the Securities Act of 1933 (the “Securities Act”), a provision added by the Dodd-Frank Act. The Rule seeks to prevent the sale of asset-backed securities (“ABS”) that pose a material conflict of interest. Specifically, it prohibits a securitization participant, for a period of time, from engaging, directly or indirectly, in any transaction that would involve or result in any material conflict of interest between the participant and an investor in the relevant ABS. Rule 192 provides exceptions for risk-mitigating hedging activities, liquidity commitments, and bona fide market-making activities of a securitization participant.

Under new Rule 192, conflicted transactions include a short sale of the relevant ABS, the purchase of a credit default swap or other credit derivative that entitles the securitization participant to receive payments upon the occurrence of specified credit events in respect of the ABS, or a transaction that is substantially the economic equivalent of the aforementioned transactions, other than any transaction that only hedges general interest rate or currency exchange risk.

SEC Adopts Rules to Improve Risk Management in Clearance and Settlement and Facilitate Additional Central Clearing for the U.S. Treasury Market

The SEC adopted rules on December 13, 2023, to enhance risk management practices for central counterparties in the U.S. Treasury market and facilitate additional clearing of U.S. Treasury securities transactions. The rule changes update the membership standards required of covered clearing agencies for the U.S. Treasury market with respect to a member’s clearance and settlement of specified secondary market transactions. Additional rule changes are designed to reduce the risks faced by a clearing agency and incentivize and facilitate additional central clearing in the U.S. Treasury market.

According to the release, the amendments require that covered clearing agencies in the U.S. Treasury market adopt policies and procedures designed to require their members to submit for clearing certain specified secondary market transactions. These transactions include: (i) all repurchase and reverse repurchase agreements collateralized by U.S. Treasury securities entered into by a member of the covered clearing agency, unless the counterparty is a state or local government or another clearing organization or the repurchase agreement is an inter-affiliate transaction; (ii) all purchase and sale transactions entered into by a member of the clearing agency that is an interdealer broker; and (iii) all purchase and sale transactions entered into between a clearing agency member and either a registered broker-dealer, a government securities broker, or a government securities dealer.

Further, the amendments permit broker-dealers to include customer margin required and on deposit at a clearing agency in the U.S. Treasury market as a debit in the customer reserve formula, subject to certain conditions. In addition, the amendments require covered clearing agencies in this market to collect and calculate margin for house and customer transactions separately. Finally, the amendments require policies and procedures designed to ensure that the covered clearing agency has appropriate means to facilitate access to clearing, including for indirect participants. The amendments also include an exemption for transactions in which the counterparty is a central bank, sovereign entity, international financial institution, or natural person.

ENFORCEMENT ACTIONS AND CASES

SEC Charges Investment Adviser with Failing to Properly Disclose Investments by Publicly Traded Fund

The SEC charged an investment adviser, on October 24, 2023, for failing to accurately describe investments in the entertainment industry that comprised a significant portion of a publicly traded fund it advised. The investment adviser settled the charges and agreed to pay a $2.5 million penalty.

According to the SEC’s order, from 2015 to 2019, one of the investment adviser’s trusts made significant investments, through a lending facility, in Aviron Group, LLC, a company that developed print and advertising plans for one to two films per year. According to the SEC’s order, the investment advisor inaccurately described Aviron as a “Diversified Financial Services” company in many of the trust’s annual and semi-annual reports. In addition, according to the order, the investment adviser stated that Aviron paid a higher interest rate than was actually the case, and in 2019, the investment adviser identified these inaccuracies and the trust accurately reported the Aviron investment in reports going forward.

Per the SEC’s order, the investment adviser willfully violated fraud-based disclosure prohibitions under Section 34(b) of the Investment Company Act and Section 206(4) of the Advisers Act and related Rule 206(4)-8. Without admitting or denying the SEC’s findings, the investment adviser agreed to a cease-and-desist order and a censure in addition to a monetary penalty.

Previously, in 2022, the SEC charged and then resolved its action against William Sadleir, the founder of Aviron, for misappropriating the trust’s funds invested in Aviron.

“Retail and institutional investors rely on accurate disclosures of the companies that make up a closed-end or mutual fund’s portfolio to evaluate a current or prospective investment in the fund,” said Andrew Dean, co-chief of the Enforcement Division’s Asset Management Unit. “Investment advisers have a responsibility to provide this vital information, and [the adviser here] failed to do so with the Aviron investment.”

SEC Charges President/CCO of Asset Management Advisory Firm with Fraud

The SEC charged a president and chief compliance officer of registered investment adviser, Prophecy Asset Management LP (“Prophecy”), on November 2, 2023, for his involvement in a multi-year fraud that concealed losses of hundreds of millions of dollars from investors.

Prophecy advised multiple hedge funds and reported more than $500 million in assets under management. The SEC’s complaint alleged that the president and Prophecy misled the funds’ investors, auditors, and administrator about the funds’ trading practices, risk, and performance—all while collecting more than $15 million in fees.

According to the SEC’s complaint, the president led investors to believe that their investments were protected from loss, telling them the funds’ capital was shared among dozens of sub-advisers who traded in liquid securities and posted cash collateral to offset any trading losses they incurred. However, the SEC alleged that in reality, most of the funds’ capital went to one sub-adviser, who incurred massive trading losses that far exceeded the cash collateral he had contributed. In addition, the complaint alleged that the president caused the funds to invest in highly illiquid investments, which also resulted in substantial losses to the funds, concealed these losses by fabricating documents and engaging in a series of sham transactions, and deceived investors about the diversification and trading strategies in two other funds. The complaint pleads by 2020, after losses in funds that Prophecy managed amounted to more than $350 million, the president and Prophecy indefinitely suspended redemptions by investors.

The SEC’s complaint charged the president with violations of Section 17(a) of the Securities Act, Rule 10b-5, Section 206(1) and (2) of the Advisers Act, and Rule 206(4)-8 of the Advisers Act.

SEC Announces Enforcement Results for FY23

The SEC announced on November 14, 2023, its enforcement results for fiscal year 2023. The SEC filed 784 total enforcement actions in fiscal year 2023, a three percent increase over fiscal year 2022. These included 501 original, or “stand-alone,” enforcement actions, an eight percent increase over the prior fiscal year; 162 “follow-on” administrative proceedings seeking to bar or suspend individuals from certain functions in the securities markets based on criminal convictions, civil injunctions, or other orders; and 121 actions against issuers who were allegedly delinquent in making required filings with the SEC.

The stand-alone enforcement actions ranged from billion-dollar frauds to emerging market investments involving crypto asset securities and cybersecurity. The pool of charged individuals or entities included a diverse array of market participants from public companies and investment firms to gatekeepers (such as auditors and lawyers) to social media influencers. Notably, fiscal year 2023 was record-breaking for the SEC’s Whistleblower Program with awards totaling nearly $600 million and more than 18,000 whistleblower tips, which is nearly 50 percent more tips than in the previous fiscal year.

In total, the SEC obtained orders for $4.949 billion in financial remedies, second only to the record-setting $6.439 billion in fiscal year 2022. Of this $4.949 billion, $3.369 billion was obtained in disgorgement and prejudgment interests and $1.580 billion in civil penalties. The SEC also obtained orders barring 133 individuals from serving as officers and directors of public companies, the highest number of bars obtained in a decade.

Crypto Currency Exchange Agrees to pay $4.3 Billion in Fines for Violations of the Bank Secrecy Act

On November 21, 2023, the largest Crypto Currency Exchange (the “Exchange”) in the world agreed to pay a historic $4.3 billion fine for failing to register as a money-transmitting business and allowing users to evade U.S. sanctions against Iran. The Exchange’s founder pled guilty to failing to maintain an effective anti-money laundering program in violation of the Bank Secrecy Act. This agreement marks the end of the Department of Justice’s yearlong investigation over alleged money laundering, bank fraud, and sanctions violations.

The Exchange also agreed to pay several other penalties to resolve enforcement actions by the CFTC and Treasury Department. Under the CFTC’s proposed orders, the Exchange will pay $2.7 billion, the founder will pay $150 million, and former CCO will pay $1.5 million for ignoring potential money launder and terrorists financing on its platform and for failing to register with the CFTC.

Additionally, the FinCEN settlement will require the Exchange to pay $3.4 billion in civil money penalty and will be subject to a five-year monitorship. Office of Foreign Assets Control will require the Exchange to pay a $968 million penalty. The Treasury will also retain access to the company’s books, records, and systems for the five-year monitorship.

SEC Charges Real Estate Fund Adviser with $35 Million Fraud

The SEC filed a complaint in the U.S. District Court for District of Arizona, on November 28, 2023, charging an adviser, his investment company, and related entities controlled by the adviser with violating the antifraud provisions of the federal securities laws.

The SEC alleged that the adviser misappropriated more than $35 million from private real estate funds and other investment vehicles by using a substantial portion of the funds to pay for his family members’ personal expenses and to fund private jets, yachts, and expensive residences. Further, the adviser issued a press release from another wholly owned LLC that stated the company’s intention to purchase 51 percent of all minority shares in an unrelated public company, at $9 a share, more than nine times the company’s then-current trading price. The shares jumped over 150 percent in after-hours trading shortly after the press release was issued. The adviser had purchased more than 72,000 call options in the company at a price far below the stock price in the days leading up to the press release, hoping to exercise the options at a profit after manipulating the stock price.

Global Bank and Affiliated Entities to Pay $10 Million for Providing Prohibited Mutual Fund Services

The SEC announced, on December 13, 2023, that a global bank and two affiliated entities (“Entities”) agreed to pay $10 million to settle the SEC’s charges that they provided prohibited underwriting and advising services to mutual funds.

In October 2022, the Superior Court of New Jersey entered a consent order that resolved a case alleging that the Entities violated the antifraud provisions of the New Jersey securities laws in connection with its role as underwriter to residential mortgage-backed securities. According to the SEC’s order, the global bank and its affiliates were prohibited from serving as a principal underwriter or investment adviser to mutual funds or employees’ securities companies pursuant to the Investment Company Act unless an exemptive order was received. The SEC order found, however, that the Entities continued serving in these prohibited roles until the SEC granted them time-limited exemptions on June 7, 2023. Without admitting or denying the SEC’s findings, the Entities agreed to pay more than $6.7 million in disgorgement and prejudgment interest and civil penalties totaling $3.3 million.

“Today’s action holds the [Entities] accountable for not complying with eligibility requirements,” said Corey Schuster, Asset Management Unit co-chief. “This action reinforces the need for entities to properly monitor for events that may cause disqualification and proactively seek and obtain waivers from the Commission before becoming disqualified, or refrain from performing prohibited services.”

BarnBridge DAO Agrees to Stop Unregistered Offer and Sale of Structured Finance Crypto Product

The SEC announced on December 22, 2023, that BarnBridge DAO (“BarnBridge”), a purportedly decentralized autonomous organization, and its two founders will pay more than $1.7 million to settle charges that they failed to register BarnBridge’s offer and sale of structured crypto asset securities known as SMART Yield bonds. The SEC also charged the respondents with violations stemming from operating BarnBridge’s SMART Yield pools as unregistered investment companies.

According to the SEC’s orders, the respondents compared the SMART Yield bonds to asset-backed securities and marketed them broadly to the public. Investors could purchase “Senior” or “Junior” SMART Yield bonds through BarnBridge’s website application. SMART Yield pooled crypto assets deposited by the investors and used those assets to generate fixed or variable returns to pay investors. A BarnBridge white paper, published by one of the founders, claimed that SMART Yield bonds would “mirror the safety and security of highly rated debt instruments offered by traditional finance…while still providing the outsized return” through its smart contract protocols. According to the orders, SMART Yield attracted more than $509 million in investments from investors, and BarnBridge was paid fees by the investors based on the size of their investment and their choice of yield.

To settle the SEC’s charges, BarnBridge agreed to disgorge nearly $1.5 million of proceeds from the sales, and its two founders each agreed to pay $125,000 in civil penalties.

Without admitting or denying the SEC’s findings, BarnBridge and its two founders agreed to cease-and-desist orders prohibiting them from violating and causing violations of the registration provisions of the Securities Act and the Investment Company Act. The SEC orders referenced remedial actions initiated by the founders.

SEC BuyBack Disclosure Rule Vacated by Appeals Court

The Fifth U.S. Circuit Court of Appeals in New Orleans, on December 19, 2023, granted a motion filed by business groups to vacate the SEC’s new rule that required companies to provide timelier disclosures on stock buybacks. Prior to this ruling, on October 31, 2023, the court found that the SEC “acted arbitrarily and capriciously” and in so doing violated the Administrative Procedure Act by failing to conduct a proper cost-benefit analysis when drafting the rule. The SEC was given 30 days to “correct the defects in the rule” but did not file a new draft. On December 7, 2023, business groups filed a motion for the court to vacate the rule.

The SEC’s finalized rule in May 2023 required companies to disclose daily stock buyback information either quarterly or semiannually to include the number of shares repurchased each day and the average price paid on that day. In addition, the rule required companies to indicate whether certain directors or officers traded the relevant securities within four days before or after public announcement of an issuer’s buyback plan or program.

2024 Regulatory Update for Investment Advisers

In 2023, the Securities and Exchange Commission issued various proposed rules on regulatory changes that will affect SEC-registered investment advisers (RIAs). Since these rules are likely to be put into effect, RIAs should consider taking preliminary steps to start integrating the new requirements into their compliance policies and procedures.

1. Updates to the Custody Rule

The purpose of the custody rule, rule 206(4)-2 of the Investment Advisers Act of 1940 (Advisers Act), is to protect client funds and securities from potential loss and misappropriation by custodians. The SEC’s recommended updates to the custody rule would:

Expand the scope of the rule to not only include client funds and securities but all of a client’s assets over which an RIA has custody
Expand the definition of custody to include discretionary authority
Require RIAs to enter into written agreements with qualified custodians, including certain reasonable assurances regarding protections of client assets

2. Internet Adviser Exemption

The SEC also proposed to modernize rule 203A-2(e) of the Advisers Act, whose purpose is to permit internet investment advisers to register with the SEC even if such advisers do not meet the other statutory requirements for SEC registration. Under the proposed rule:

Advisers relying on this exemption would at all times be required to have an operational interactive website through which the adviser provides investment advisory services
The de minimis exception would be eliminated, hence requiring advisers relying on rule 203A-2(e) to provide advice to all of their clients exclusively through an operational interactive website

3. Conflicts of Interest Related to Predictive Data Analytics and Similar Technologies

The SEC proposes new rules under the Adviser’s Act to regulate RIAs’ use of technologies that optimize for, predict, guide, forecast or direct investment-related behaviors or outcomes. Specifically, the new rules aim to minimize the risk that RIAs could prioritize their own interest over the interests of their clients when designing or using such technology. The new rules would require RIAs:

To evaluate their use of such technologies and identify and eliminate, or neutralize the effect of, any potential conflicts of interest
To adopt written policies and procedures to prevent violations of the rule and maintain books and records relating to their compliance with the new rules

4. Cybersecurity Risk Management and Outsourcing to Third Parties

The SEC has yet to issue a final rule on the 2022 proposed new rule 206(4)-9 to the Adviser’s Act which would require RIAs to adequately address cybersecurity risks and incidents. Similarly, the SEC still has to issue the final language for new rule 206(4)-11 that would establish oversight obligations for RIAs that outsource certain functions to third parties. A summary of the proposed rules can be found here: 2023 Regulatory Update for Investment Advisers: Miller Canfield

Despite Record Year, SEC Must Improve Whistleblower Program to Align with White House Anti-Corruption Initiative

SEC Chair Gary Gensler announced on October 25th that in the 2023 fiscal year, the Commission received a record number of 18,000 whistleblower tips.

The SEC Whistleblower Program has grown rapidly and effectively since its inception in 2010 – the 2022 Fiscal Year set a record of 12,300 whistleblower tips. This was a near doubling of the 2020 tips, which set a record of 6,911.

The SEC transnational whistleblower program responds to individuals who voluntarily report original information about potential misconduct. If tips lead to a successful enforcement action, the whistleblowers are entitled to 10-30% of the recovered funds. The programs have created clear anti-retaliation protections and strong financial incentives for reporting securities and commodities fraud.

The U.S. Strategy on Countering Corruption is a White House initiative from December of 2021 that establishes the fight against corruption as a core tenant of national security interests. It outlines strategic pillars and objectives within each. The recommendations on improving the SEC’s whistleblower provisions as outlined below have the same goal of creating stronger processes to combat corruption.

Since the SEC Whistleblower Program was created in 2010, whistleblowers have played a crucial role in the SEC’s enforcement efforts. Overall, since the whistleblower program was established in 2010, “[e]enforcement actions brought using information from meritorious whistleblowers have resulted in orders for more than $6.3 billion in total monetary sanctions, including more than $4.0 billion in disgorgement of ill-gotten gains and interest, of which more than $1.5 billion has been, or is scheduled to be, returned to harmed investors,” according to the 2022 annual report.

This $6.3 billion recovered via sanctions is money that is put back into the pockets of investors and everyday Americans.

The SEC does not credit related enforcement actions to award notifications and sanctions in order to maintain the anonymity and confidentiality of whistleblowers, award notifications don’t tie to underlying enforcement action. The $6.3 billion does not include DOJ enforcement actions, which combined would show a much larger number.

Non-U.S. citizens who blow the whistle on potential securities frauds committed by publicly traded companies outside the United States are eligible to receive awards, as well as those whistleblowers who report violations of the Foreign Corrupt Practices Act. This anti-corruption legislation prohibits the payment of anything of value to foreign government officials in order to obtain a business advantage.

Whistleblowers from over 130 countries have used the SEC Whistleblower Program to report fraud in their workplace.

Despite the massive growth of tips received, many whistleblowers’ cases are dismissed by the SEC due to insubstantial filing errors and strict time parameters on forms, or reported to the news media, other U.S. government agencies, or international government workers in roles that are public abroad but private in the U.S.

Considering these narrow qualifications and to ensure that the process for qualifying as a whistleblower aligns with U.S. anti-corruption priorities, the National Whistleblower Center recommends that the program be improved by expanding the definition of voluntary, further the provisions of identity protection and rewards. These recommendations align with the White House drafted United States Strategy on Countering Corruption.

Whistleblowers identified in case investigations should be automatically eligible for rewards, rather than mandated to meet technical form requirements.

The SEC should maintain their “Three Conditions” qualifications standards and expand the definition of “voluntary.” The current language disqualifies whistleblowers who report fraud to the media, other government agencies, foreign law enforcement, or a U.S. embassy before the SEC, considering them “involuntary.” These restrictions dissuade potential whistleblowers from engaging with the program and thus interfere with federal anti-corruption objectives. The agency must ensure that whistleblowers who file complaints internally before coming to the SEC maintain award eligibility.

The SEC should not incentivize or require whistleblowers to report internally before filing claims with the agency, as this exposes them to retaliation. If a whistleblower was removed from their position, they could no longer provide the Commission with the most updated information, which would harm the investigation.

By establishing a consistent inter-agency protocol concerning whistleblowers who have participated in the crime they report, the SEC can further protect the confidentiality and anonymity of whistleblowers in all ongoing federal investigations surrounding their disclosures.

Whistleblowers must receive the full force of related action provisions and rewards if the company or agency they report is simultaneously being investigated by another branch of government.

SEC regulations should contain strict deadlines for paying awards. These regulations should be premised on the fact that the SEC and Justice Department investigators and prosecutors will know the identity and contributions of all whistleblowers who would qualify for a reward in a particular case.

In the IRS (Internal Revenue Service) Whistleblower Program, procedures require that their investigators file whether or not there was a whistleblower involved in the case at the time the case file is closed. Agents thus know who the whistleblowers are, and the agency can process a claim quickly. The integration of affidavits and statements from front-line investigators into the decision-making process accelerates the reward payout.

Wait times for awards received are another disincentivizing factor for blowing the whistle. The SEC should establish and abide by a strict deadline for paying awards to ensure that whistleblowers are compensated fully and promptly. Rewards should not have a cap limit.

Such changes reinforce the White House Strategy’s objective to “bolster the ability of civil society, media, and private sector actors to safely detect and expose corruption,” “curb illicit finance,” and “enhance enforcement efforts” in the name of “modernizing, coordinating, and resourcing U.S. Government efforts to fight corruption.”

Enhancing the program ensures that whistleblowers whose information successfully leads to enforcement action on money laundering crimes are rewarded, no matter how they provide the information.

Such provisions will demonstrate to international whistleblowers that the risk of blowing the whistle on fraud is worth taking and the United States will support them through the process.

This article was authored by Sophie Luskin.

Rise in VCM Business May Trigger CFTC Oversight on Sales of Carbon Offset Credits

Many major companies have announced a blueprint to minimize their carbon footprint. Some companies have gone so far as to proclaim that they will achieve “net zero” emissions in the near future. To accomplish their climate goals, many have turned to purchasing products called “carbon offset credits.”

Offset credits are defined as tradable “rights ” or certificates linked to activities that lower the amount of carbon dioxide (CO2) in the atmosphere. These offsets are purchased and sold on what is commonly referred to as “voluntary carbon markets” (VCMs), where owners of carbon-reducing projects can sell or trade their carbon offsets to emitters who wish to offset the negative effects of their emissions.^[1] The VCMs, however, have been subject to criticism and concern due to lack of effective regulation to combat potential fraud. In response, the US Commodity Futures Trading Commission (CFTC) has announced its intent to increase enforcement resources and expertise to police the carbon markets.

How It Works

The owner of the carbon-reducing project applies to an independent (and largely unregulated) registry for carbon offsets. The registry then evaluates the project, often relying on complex information submitted by the project owner, to determine whether and how much atmospheric carbon the project will reduce. If the registry determines the project will reduce atmospheric carbon, it will issue a carbon offset credit to the project owner.

Typically, one offset credit represents one metric ton of carbon dioxide removed or kept out of the atmosphere. The price of offset credits will vary depending on different project types, different levels of benefits, and the markets in which they are traded. Once the registry issues the offset credit, the project owner can sell it to whomever it wants on a VCM. It is not uncommon for profit-seeking entities such as brokers or investors to purchase the offset credit and then sell it to the “end user,” which is the entity that wants to take credit for the carbon reduction. Once the “end user” purchases the offset credit, the credit is “retired” to ensure that it cannot be sold again.

Although voluntary carbon markets have been around for decades, they have taken off in recent years amid a deluge of corporate climate commitments. From 2018 to 2021, the VCM’s value grew from $300 million to $2 billion. Global management consultancy company McKinsey estimates that the value of VCMs may reach as high as $180 billion by 2030, while Research and Markets has projected a global value of $2.68 trillion by 2028.

Yet, the voluntary carbon market is fragmented and largely unregulated, suffers from varying accounting standards, and has been described as “the Wild West” for fraud. An investigation by The Guardian found that 90% of offsets issued by one of the largest registries for rainforest preservation projects were worthless because they did not represent legitimate carbon reductions. The voluntary carbon market is largely unregulated in the United States, and carbon offsets are almost exclusively issued by nongovernmental entities. Perhaps not surprisingly, regulators have started to look at the voluntary carbon markets more closely. In particular, the CFTC has shown an increasing interest in carbon in recent years.

Road Ahead

In September 2020, the CFTC’s Climate-Related Market Risk Subcommittee issued a report, “Managing Climate Risk in the U.S. Financial System,” that concluded climate change poses a major risk to the stability and integrity of the US economy and presented several dozen recommendations to mitigate climate risks. Less than a year later, CFTC Chairperson Rostin Behnam created the Climate Risk Unit to focus on the role of derivatives “in climate-related risk and transitioning to a low carbon economy.”

In June 2022, the CFTC held the first ever Voluntary Carbon Markets Convening to discuss issues related to a potential carbon offset market and to solicit input from industry participants in the CFTC’s potential role. After the Convening, the CFTC issued an RFI asking whether and how the CFTC should be involved in creating and regulating a voluntary carbon market. The responses to the RFI reflected that, while most industry participants agreed on the need for additional transparency and standardization in the voluntary carbon markets, they disagreed on the role the CFTC should play in such a market. A group of seven United States senators, including Sens. Cory Booker (D-NJ) and Elizabeth Warren (D-MA), argued that the CFTC should establish a robust regime governing the carbon market. Others argued that it is too soon for the CFTC to create rules and a registration mechanism, expressing concern that those actions might stifle industry innovation and progress.

At a keynote speech in January 2023, Chair Behnam stated that the CFTC “can play a role in voluntary [carbon] markets.” CFTC Commissioner Goldsmith Romero echoed the sentiment a month later in another speech and gave proposals for the CFTC to “promote resilience to climate risk.” Among those was a proposal that the “Commission should promote market integrity by increasing enforcement resources and expertise to combat greenwashing and other forms of fraud.”

The voluntary carbon market, Goldsmith Romero noted, “carr[ies] particular concerns of greenwashing, fraud, and manipulation” which “can lead to serious harm, distort market pricing, seriously damage a company’s reputation, and undermine the integrity of the markets.” This is particularly true with an esoteric commodity such as carbon offsets. For tangible commodities such as soybeans or oil, verifying delivery of the goods is relatively easy. But for carbon offsets, the offset purchaser often cannot verify that the promised greenhouse gas reduction is actually occurring; instead, the purchaser must rely on the promises made by the project owner or independent registry.

At present, the CFTC has limited enforcement jurisdiction over carbon offsets because only a limited number of carbon derivatives are traded on regulated futures markets. Carbon, as well as carbon and other environmental offsets or credits, are generally considered “commodities” as defined by § 1a(9) of the Commodity Exchange Act of 1936 (CEA). As a regulated commodity, transactions involving carbon credits or offsets are subject to the CFTC’s anti-fraud and anti-manipulation enforcement jurisdiction.

As VCMs continue to grow, it is likely that offerings of carbon derivatives such as futures, options, and swaps will grow with them, which may provide the jurisdictional catalyst for the CFTC to get more involved. The CFTC has exclusive jurisdiction over the regulation of futures markets, including oversight of the listing of new contracts on futures exchanges. Currently, a limited number of carbon futures are available to trade, and most trade on already regulated exchanges such as the Global Emissions Offset (GEO) futures contracts traded at the Chicago Mercantile Exchange (CME). The price of CME’s GEO futures contract is based on CORSIA-eligible (Carbon Offsetting and Reduction Scheme for International Aviation) offset credits issued through specific independent registries.

But given the varying standards and methodologies for these registries, combined with an increasing number of investigations that have found significant issues with offset credits, it is reasonable to expect that the CFTC may eventually seek to engage in more oversight of the registries to ensure that futures contracts are not being manipulated and the offset credits are actually delivering the carbon reductions promised. Given that offsets are widely traded as commodities, that demand for offset-based derivatives products is growing, and that fraud may be a widespread problem throughout the marketplace, it seems like a matter of when, not if, the CFTC begins to regulate VCMs more heavily.

FOOTNOTES

^[1] Although often used interchangeably, voluntary carbon markets are different from compliance carbon markets. Compliance carbon markets are regulated markets set by “cap-and-trade” regulations at the state, national, or international governmental organizations. Governmental organizations set a cap on carbon emissions and then provide members with credits that act as a “permission slip” for a company to emit up to the cap. Voluntary carbon markets, on the other hand, involve trading of carbon credits between companies to reduce their own carbon footprint.

For more Environmental Law news, click here to visit the National Law Review.

Regulatory Update and Recent SEC Actions

REGULATORY UPDATES

Recent SEC Leadership Changes

On January 10, 2023, the Securities and Exchange Commission (the “SEC”) announced the appointment of Cristina Martin Firvida as director of the Office of the Investor Advocate, effective January 17, 2023. Ms. Martin Firvida was most recently the vice president of financial security and livable communities for government affairs at the American Association of Retired Persons (“AARP”). As the investor advocate, Ms. Martin Firvida will lead the office that assists retail investors in interactions with the SEC and with self-regulatory organizations (“SROs”), analyzing the impact on investors of proposed rules and regulations, identifying problems that investors have with financial service providers and investment products, and proposing legislative or regulatory changes to promote the interests of investors.

On January 11, 2023, the SEC announced that Paul Munter has been appointed as chief accountant. He has served as acting chief accountant since January 2021. In addition to continuing to lead the Office of the Chief Accountant (“OCA”), he will also assist the SEC in its oversight of the Financial Accounting Standards Board (“FASB”) and the Public Company Accounting Oversight Board (“PCAOB”). Mr. Munter joined the SEC in 2019 as deputy chief accountant in charge of OCA’s international work. Before joining the agency, Mr. Munter was a senior instructor of accounting at the University of Colorado Boulder. He had previously retired from KPMG, where he served as the lead technical partner for the U.S. firm’s international accounting and International Financial Reporting Standards (“IFRS”) activities and served on the firm’s panel responsible for establishing firm positions on the application of IFRS.

On January 13, 2023, the SEC announced that Renee Jones, director of the Division of Corporation Finance, departed the agency and was replaced by Erik Gerding, effective February 2, 2023. Mr. Gerding previously served as the Division’s deputy director. Mr. Gerding joined the SEC in October 2021 and led the Legal and Regulatory Policy in the Division of Corporation Finance. He has taught as professor of law and a Wolf-Nichol Fellow at the University of Colorado Law School, where he has focused in the areas of securities law, corporate law, and financial regulation. Mr. Gerding previously taught at the University of New Mexico School of Law. He also practiced in the New York and Washington, D.C., offices of Cleary Gottlieb Steen & Hamilton LLP, representing clients in the financial services and technology industries in an array of financial transactions and regulatory matters.

Boards File Comment Letters Asking SEC to Withdraw Swing Pricing Rule Proposal

Over thirty (30) fund boards have submitted comment letters to the SEC with respect to the controversial swing pricing rule proposal. Industry participants have noted that this level of direct board participation in the comment process for a rule proposal of this type is unprecedented in recent SEC history. Many of the letters call for a withdrawal of the rule proposal, with some arguing that millions of American investors will not get the best price for their trades. Many letters also stated that requiring swing pricing would burden fund complexes and harm mutual fund investors without solving the liquidity problems that the SEC aimed to resolve. A vast majority of the comment letters indicated that swing pricing is not needed and that current tools for managing liquidity worked well, even during the volatile 2020 markets.

The comment letters also noted that investors who hold fund shares through intermediaries may have to place their orders earlier as a result of the proposed hard close requirement, which would put them at a disadvantage over the investors who buy shares directly from a fund. Several commenters also expressed concern that the hard close could cause intermediaries to drop mutual funds from their offerings in favor of less-regulated investment vehicles, such as collective investment trusts (“CITs”). Some letters pointed out that one of the justifications the SEC raises for the new rule is the market volatility during the early part of the COVID-19 pandemic and its impact on fund liquidity risk management, yet the SEC then goes on to say that it did not have specific data about fund dilution during that period. Letters also alleged that the SEC did not provide an accurate cost benefit analysis, and noted that the SEC states in the rule proposal that it “cannot predict the number of investors that would choose to keep their investments in the mutual fund sector nor the number of investors that would exit mutual funds and instead invest in other fund structures such as ETFs, close-end funds, or CITs.”

SEC Proposes Rule to Prohibit Conflicts of Interest in Certain Securitizations

The SEC issued a proposed rule (the “proposed rule”) to prohibit material conflicts of interest in the sale of asset-backed securities (“ABS”). The proposed rule, Rule 192 under the Securities Act of 1933 (the “Securities Act”), was issued on January 25, 2023, to implement Section 27B of the Securities Act, a provision added by the Dodd-Frank Wall Street Reform and Consumer Protection Act (“Dodd-Frank Act”). Specifically, the proposed rule would prohibit securitization participants from engaging in certain transactions that could incentivize a securitization participant to structure an ABS in a way that would put the securitization participant’s interests ahead of those of ABS investors. The SEC originally proposed a rule to implement Section 27B in September 2011. If adopted, the proposed rule would prohibit an underwriter, placement agent, initial purchaser, or sponsor of an ABS, including affiliates or subsidiaries of those entities, from engaging, directly or indirectly, in any transaction that would involve or result in any material conflict of interest between the securitization participant and an investor in such ABS. Under the proposed rule, such transactions would be considered “conflicted transactions” and include, for example, a short sale of the ABS or the purchase of a credit default swap or other credit derivative that entitles the securitization participant to receive payments upon the occurrence of specified credit events in respect of the ABS.

The prohibition on conflicted transactions would commence on the date on which a person has reached, or has taken substantial steps to reach, an agreement that such person will become a securitization participant with respect to an ABS, and it would end one year after the date of the first closing of the sale of the relevant ABS. The proposed rule would provide certain exceptions for risk-mitigating hedging activities, bona fide market-making activities, and certain commitments by a securitization participant to provide liquidity for the relevant ABS. The public comment period will remain open for 60 days following publication of the proposing release on the SEC’s website or 30 days following publication of the proposing release in the Federal Register, whichever period is longer.

Division of Examinations Publishes Risk Alert on Regulation Best Interest

On January 30, 2023, the Division of Examinations published a Risk Alert (the “Risk Alert”) to highlight observations from examinations related to Regulation Best Interest, which had a June 30, 2020, compliance date and to assist broker-dealers in reviewing and enhancing their compliance programs related to Regulation Best Interest. The Risk Alert discusses deficiencies noted during examinations conducted, as well as examples of weak practices that could result in deficiencies. Regulation Best Interest established a new, enhanced standard of conduct under the Securities Exchange Act of 1934 (the “Exchange Act”) for broker-dealers (“broker-dealers” or “firms”) and associated persons that are natural persons (“financial professionals”) of a broker-dealer when making recommendations of securities transactions or investment strategies involving securities (including account recommendations) to retail customers. Regulation Best Interest requires compliance with four component obligations: (1) providing certain prescribed disclosure, before or at the time of the recommendation, about the recommendation and the relationship between the retail customer and the broker-dealer (“Disclosure Obligation”); (2) exercising reasonable diligence, care, and skill in making the recommendation to, among other things, understand the potential risks, rewards, and costs associated with a recommendation, and having a reasonable basis to believe that the recommendation is in the best interest of a retail customer (“Care Obligation”); (3) establishing, maintaining, and enforcing written policies and procedures reasonably designed to identify and address conflicts of interest; and (4) establishing, maintaining, and enforcing written policies and procedures reasonably designed to achieve compliance with Regulation Best Interest. The Risk Alert set out specific examples of practices, policies, and procedures that were deficient in complying with requirements under the Regulation, including:

Policies and Procedures Relating to the Disclosure Obligation. Some broker-dealers did not have written policies and procedures reasonably designed to achieve compliance with the Disclosure Obligation. The SEC noted that examples of policies and procedures that may contain deficiencies or weaknesses include policies and procedures that did not specify when or how disclosures should be created or updated.
Policies and Procedures Relating to the Care Obligation. Examples of policies and procedures that may contain deficiencies or weaknesses include policies and procedures that directed financial professionals to consider reasonably available alternatives without providing any guidance as to how to do so; directed financial professionals to consider costs without providing any guidance as to how to do so; or created systems that allowed financial professionals to evaluate costs or reasonably available alternatives but did not mandate their use or, in some instances, could not determine whether or not financial professionals used the systems.
Conflict of Interest. The SEC observed a number of deficiencies related to the requirement that broker-dealers have written policies and procedures reasonably designed to address conflicts of interest associated with their recommendations to retail customers. For example: some broker-dealers did not have written policies and procedures reasonably designed to specify how conflicts are to be identified or addressed; some broker-dealers limited the identified conflicts to conflicts associated with prohibited activities (e.g., churning) or used high-level, generic language that did not identify the actual conflict (e.g., “we have conflicts related to compensation differences”) and did not reflect all conflicts of interest associated with the recommendations made by the firm or its financial professionals; and some broker-dealers inappropriately relied on disclosure to “mitigate” conflicts that appeared to create an incentive for the financial professional to place its interest ahead of the interest of the retail customer, and did not establish any mitigation measures.

SEC Releases Staff Guidance on Differential Advisory Fee Waivers

The staff of the Division of Investment Management (“Staff”) issued guidance (“Guidance”) on February 2, 2023, to mutual funds, their boards of directors/trustees (“Boards”), and their legal counsel about the implications under the Investment Company Act of 1940, as amended (the “Investment Company Act”), regarding fee waiver and expense reimbursement arrangements that result in different advisory fees being charged to different share classes of the same fund. The Guidance noted that Rule 18f-3 permits fee waivers and expense reimbursements provided that such arrangements do not result in cross-subsidization of fees among classes. The Staff stated that whether a differential advisory fee waiver presents a prohibited means of cross-subsidization between classes is a facts-and-circumstances determination that a mutual fund’s board, in consultation with the investment adviser and legal counsel, should consider making and documenting after considering all relevant factors.

For example, a fund’s Board may be able to conclude that a long-term waiver of an advisory fee for one class of shares, but not other classes of shares, does not provide a means for cross subsidization in contravention of Rule 18f-3 if the Board finds that (1) shareholders in the waived class pay fees to the adviser at the investing fund level in a funds-of-funds structure for advisory services, and (2) that such fees, when added to the advisory fees that are paid by the waived class, after giving effect to the waiver, are at least equal to the amount of advisory fees paid by the other classes, such that the waiver for the waived class is demonstrably not being subsidized by other classes. For a fund that already has such differential advisory fee waivers in place, the Staff said the fund’s board may wish to consider, specifically within the context of Rule 18f-3, whether: (i) such waivers present a means for cross-subsidization, (ii) the steps they are taking to monitor such waivers to guard against cross-subsidization are (and continue to be) effective, and/or (iii) alternative fee arrangements may be appropriate. Relatedly, the Staff suggested that a fund should consider the extent to which the Board’s consideration of these issues under Rule 18f-3 should be disclosed to its shareholders.

SEC Division of Examinations Announces 2023 Priorities

On February 7, 2023, the SEC’s Division of Examinations (the “Division”) announced its 2023 examination priorities. The Division publishes its examination priorities annually to provide insights into its risk-based approach, including the areas it believes present potential risks to investors and the integrity of the U.S. capital markets. The following are a selection of the Division’s 2023 priorities:

New Investment Adviser and Investment Company Rules:The Division will focus on the new Marketing Rule (Rule 206(4)-1 under the Investment Advisers Act of 1940, as amended (the “Advisers Act)) and whether registered investment advisers (“RIAs”) have adopted and implemented written policies and procedures that are reasonably designed to prevent violations by the advisers and their supervised persons of the new Marketing Rule and whether RIAs have complied with the substantive requirements.
The Division will also focus on new rules applicable to investment companies (“funds”), including the Derivatives Rule (Rule 18f-4 under the Investment Company Act) and the Fair Valuation Rule (Investment Company Act Rule 2a-5). If a fund relies on the Derivatives Rule, the Division will, among other things: (1) assess whether registered investment companies, including mutual funds (other than money market funds), exchange-traded funds (“ETFs”) and closed-end funds, as well as business development companies (“BDCs”), have adopted and implemented policies and procedures reasonably designed to manage the funds’ derivatives risks and to prevent violations of the Derivatives Rule pursuant to Investment Company Act Rule 38a-1; and (2) review for compliance with Rule 18f-4, including the adoption and implementation of a derivatives risk management program, board oversight, and whether disclosures concerning the fund’s use of derivatives are incomplete, inaccurate, or potentially misleading.

Under the new Fair Valuation Rule, the Division will, among other things: (1) assess funds’ and fund boards’ compliance with the new requirements for determining fair value, implementing board oversight duties, setting recordkeeping and reporting requirements, and permitting the funds’ board to designate valuation designees to perform fair value determinations; and (2) review whether adjustments have been made to valuation methodologies, compliance policies and procedures, governance practices, service provider oversight, and/or reporting and recordkeeping.
RIAs to Private Funds – Examinations will include a review of issues under the Advisers Act, including an adviser’s fiduciary duty, and will assess risks, focusing on compliance programs, fees and expenses, custody, the new Marketing Rule, conflicts of interest, and the use of alternative data. The Division will also review private fund advisers’ portfolio strategies, risk management, and investment recommendations and allocations, focusing on conflicts and disclosures around these areas. In addition, the Division will focus on RIAs to private funds with specific risk characteristics, including highly leveraged private funds and private funds managed side-by-side with BDCs.
Retail Investors and Working Families – Examinations will focus on how registrants are satisfying their obligations under Regulation Best Interest and the Advisers Act fiduciary standard to act in the best interests of retail investors and not to place their own interests ahead of the interests of retail investors.
Registered Investment Companies ̶ The Division will review compliance programs and governance practices, disclosures to investors, and accuracy of reporting to the SEC of the registered investment companies, including ETFs and mutual funds. The Division will also focus on funds with specific characteristics, such as: (1) turnkey funds, to review their operations and assess effectiveness of their compliance programs; (2) mutual funds that converted to ETFs, to assess governance and disclosures associated with the conversion to an ETF; (3) non-transparent ETFs, to assess compliance with the conditions and other material terms of their exemptive relief; (4) loan-focused funds, such as leveraged loan funds and funds focused on collateralized loan obligations, for liquidity concerns and to review whether the funds have been significantly impacted by, and have adapted to, elevated interest rates; and (5) medium and small fund complexes that have experienced excessive staff attrition, to focus on whether such attrition has affected the funds’ controls and operations. The Division will also monitor the proliferation of volatility-linked and single-stock ETFs, and may review such funds’ disclosures, marketing, conflicts, and compliance with portfolio management disclosures, among other things. In addition, the Division will focus on adviser compensation, practices and processes for assessing and approving advisory and other fund fees, the effectiveness of derivatives risk management and liquidity risk management programs.
Environmental, Social, and Governance (“ESG”) – The Division will focus on ESG-related advisory services and fund offerings, including whether funds are operating in the manner set forth in their disclosures, whether ESG products are appropriately labeled, and whether recommendations of such products for retail investors are made in the investors’ best interests.
Information Security and Operational Resiliency – The Division will review broker-dealers’, RIAs’, and other registrants’ practices to prevent interruptions to mission-critical services and to protect investor information, records, and assets. Reviews of broker-dealers and RIAs will include a focus on the cybersecurity issues associated with the use of third-party vendors, including registrant visibility into the security and integrity of third-party products and services and whether there has been an unauthorized use of third-party providers.
Emerging Technologies and Crypto-Assets – The Division will conduct examinations of broker-dealers and RIAs that are using emerging financial technologies or employing new practices, including technological and on-line solutions to meet the demands of compliance and marketing and to service investor accounts. Examinations of registrants will focus on the offer, sale or recommendation of, or advice regarding trading in, crypto or crypto-related assets and include whether the firm (1) met and followed its standard of care when making recommendations, referrals, or providing investment advice; and (2) routinely reviewed, updated, and enhanced its compliance, disclosure, and risk management practices.

As in recent past years, the Division noted that it prioritizes RIAs and investment companies that have never been examined, including recently registered firms or investment companies, and those that have not been examined for a number of years.

“Our priorities reflect the changing landscape and associated risks in the securities market and are the product of a risk-based approach to examination selection that balances our resources across a diverse registrant base. We will emphasize compliance with new SEC rules applicable to investment advisers and investment companies as well as continue our focus on emerging issues and rules aimed at protecting retail investors,” said Division of Examinations’ Director Richard R. Best. “Our examination program continues moving forward and remains committed to furthering investor protection through high-quality examinations and staying abreast of the latest industry trends and emerging risks to investors and the markets.”

SEC Reopens Comment Period for Proposed Cybersecurity Risk Management Rules and Amendments for Registered Investment Advisers and Funds

The SEC reopened the comment period on proposed rules and amendments related to cybersecurity risk management and cybersecurity-related disclosure for registered investment advisers, registered investment companies, and BDCs that were proposed by the SEC on February 9, 2022. The initial comment period ended on April 11, 2022. Per the SEC’s March 15, 2023, announcement, the reopened comment period will allow interested persons additional time to analyze the issues and prepare comments in light of other regulatory developments, including whether there would be any effects of other SEC proposals related to cybersecurity risk management and disclosure that the SEC should consider. The comment period will remain open until 60 days after the date of publication of the reopening release in the Federal Register.

SEC Finalizes Rules to Reduce Broker-Dealer Settlement Cycle from (T+2) to (T+1)

The SEC adopted rule changes to shorten the standard settlement cycle for most broker-dealer transactions in securities from two business days after the trade date (“T+2”) to one (“T+1”). The SEC indicates that the final rules, adopted on February 15, 2023, are designed to reduce the credit, market, and liquidity risks in securities transactions faced by market participants. The final rules will: (i) require a broker-dealer to either enter into written agreements or establish, maintain, and enforce written policies and procedures reasonably designed to ensure the completion of allocations, confirmations, and affirmations as soon as technologically practicable and no later than the end of the trade date; (ii) require registered investment advisers to make and keep records of the allocations, confirmations, and affirmations for certain securities transactions; (iii) add a new requirement to facilitate straight-through processing, which applies to certain types of clearing agencies that provide central matching services; and (iv) require central matching service providers to establish, implement, maintain, and enforce new policies and procedures reasonably designed to facilitate straight-through processing and require them to submit an annual report to the SEC that describes and quantifies progress with respect to straight-through processing. The final rules will become effective 60 days after publication in the Federal Register. The compliance date for the final rules is May 28, 2024.

SEC Proposes Enhanced Custody Rule for Registered Investment Advisers

The SEC proposed rule changes to enhance protections of customer assets managed by registered investment advisers. If adopted, the changes would amend and redesignate rule 206(4)-2, the SEC’s current custody rule (the “custody rule”), as new rule 223-1 under the Advisers Act (the “proposed rule”) and amend certain related recordkeeping and reporting obligations. According to the SEC’s announcement on February 15, 2023, the SEC exercised its authority under the Dodd-Frank Act in broadening the application of the custody rule. The proposed rule would change the current rule’s scope in two important ways. First, it would expand the types of investments covered by the rule. The proposed rule would extend the rule’s coverage beyond client “funds and securities” to client “assets” so as to include additional investments held in a client’s account, e.g. digital assets, including crypto assets. Second, an adviser would be deemed to have “custody” of client assets whenever the adviser has discretionary authority to trade client assets.

The proposed rule would also require qualified custodians to provide certain standard custodial protections when maintaining an advisory client’s assets and additional protections for certain securities and physical assets that cannot be maintained by a qualified custodian. The proposed rule would also provide exceptions to the surprise examination requirement in instances in which the adviser’s sole reason for having custody is because it has discretionary authority or because the adviser is acting according to a standing letter of authorization. In addition, the proposed rule would expand the scope of who can satisfy the custody rule’s surprise examination requirement through financial statement audits. Finally, the proposed rule would update related recordkeeping requirements for advisers and amend Form ADV to align reporting obligations with the proposed rule and to improve the accuracy of custody-related data available to the SEC, its staff, and the public. The comment period on the proposal will remain open for 60 days following publication of the proposing release in the Federal Register.

“I support this proposal because, in using important authorities Congress granted us after the financial crisis, it would help ensure that advisers don’t inappropriately use, lose, or abuse investors’ assets,” said SEC Chair Gary Gensler. “In particular, Congress gave us authority to expand the advisers’ custody rule to apply to all assets, not just funds or securities. Further, investors would benefit from the proposal’s changes to enhance the protections that qualified custodians provide. Thus, through this expanded custody rule, investors working with advisers would receive the time-tested protections that they deserve for all of their assets, including crypto assets, consistent with what Congress envisioned.”

Republican Leaders Request Information from Gensler on Climate Disclosure Proposal

On February 22, 2023, the chairman of the House Financial Services Committee, Patrick McHenry (R-NC); the ranking member of the Senate Committee on Banking, Housing, and Urban Affairs, Tim Scott (R-SC); and the chairman of the Subcommittee on Oversight and Investigations, Bill Huizenga (R-MI), sent a letter to the SEC Chair Gary Gensler demanding records and other information related to the proposed climate disclosure rule, including responses to previous requests by numerous members of both the House and the Senate that Chair Gensler had failed to provide. The Republican leaders argued that the proposed rule exceeds the SEC’s mission, expertise, and authority and—if finalized in any form—will unnecessarily harm consumers, workers, and the U.S. economy. In addition, the Republican members of the House Appropriations subcommittee pushed to cut the agency’s budget and requested that the SEC expand its enforcement efforts, reduce the pace of its rulemaking, and refrain from regulation. According to the opening statement of Steve Womack (R-Ark.), chair of the Financial Services and General Government subcommittee, who opened the March 29, 2023, hearing, the SEC budget is too big, the agency costs too much to run, and it focuses too much on the implementation and enforcement of new regulations rather than on trying to encourage the flow of investment capital into markets.

“The blistering pace of the SEC rulemaking is a cause for concern,” Womack wrote, “especially when the SEC is wading into areas that are not within their expertise and constitutionally questionable, such as requiring public companies to report on greenhouse gas emissions while claiming private enterprises won’t be impacted.”

SEC Fee Rate Advisories

The SEC announced that, starting on February 27, 2023, the fee rates applicable to most securities transactions would be set at $8.00 per million dollars. Per the January 23, 2023, announcement, the then-current rate of $22.90 per million dollars would remain in effect on charge dates through February 26, 2023. The assessment on security futures transactions remained unchanged at $0.0042 for each round-turn transaction. Subsequently, on March 1, 2023, the SEC announced that a mid-year adjustment to the fee rate for fiscal year 2023 was not required. As a result, the fiscal 2023 fee rate will remain at $8.00 per million dollars until September 30, 2023, or 60 days after the enactment of a regular FY 2024 appropriation, whichever occurs later. Similarly, the SEC confirmed that the Section 31 assessment on round-turn transactions in security futures also would remain at $0.0042 per transaction.

SEC Proposes Changes to Reg S-P to Enhance Protection of Customer Information

The SEC proposed amendments to Regulation S-P (“Reg S-P”) that would, among other things, require broker-dealers, investment companies, registered investment advisers, and transfer agents (collectively, “covered institutions”) to provide notice to individuals affected by certain types of data breaches that may put them at risk of identity theft or other harm. Reg S-P currently requires broker-dealers, investment companies, and registered investment advisers to adopt written policies and procedures for the protection of customer records and information (the “safeguards rule”). Reg S-P also requires the proper disposal of consumer report information (the “disposal rule”). If adopted, the SEC’s proposal, which was announced on March 15, 2023, would (i) update current requirements to address the expanded use of technology and corresponding risks since the SEC originally adopted Reg S-P in 2000; (ii) require covered institutions to adopt written policies and procedures for an incident response program to address unauthorized access to or use of customer information; (iii) require, with certain limited exceptions, covered institutions to provide notice to individuals whose sensitive customer information was or is reasonably likely to have been accessed or used without authorization; (iv) require a covered institution to provide such notice as soon as practicable, but not later than 30 days after the covered institution becomes aware that an incident involving unauthorized access to or use of customer information has occurred or is reasonably likely to have occurred; and (v) make a number of additional changes to Reg S-P, including:

(a) broadening and aligning the scope of the safeguards rule and disposal rule to cover “customer information,” a new defined term which would extend the protections of the safeguards and disposal rules to both nonpublic personal information that a covered institution collects about its own customers and nonpublic personal information that a covered institution receives about customers of other financial institutions;

(b) extending the safeguards rule to transfer agents registered with the SEC or another appropriate regulatory agency, and expanding the existing scope of the disposal rule to include transfer agents registered with another appropriate regulatory agency rather than only those registered with the SEC; and

(c) conforming Reg S-P’s existing provisions regarding the delivery of an annual privacy notice with a statutory exception created by the U.S. Congress in 2015.

The public comment period for the proposed amendments will remain open until 60 days after the date of publication of the proposing release in the Federal Register.

SEC Proposes New Requirements to Address Cybersecurity Risks to the U.S. Securities Markets

The SEC proposed requirements (the “proposal”) for broker-dealers, clearing agencies, major security-based swap participants, the Municipal Securities Rulemaking Board, national securities associations, national securities exchanges, security-based swap data repositories, security-based swap dealers, and transfer agents (collectively, “Market Entities”) to address their cybersecurity risks. In its March 15, 2023, announcement of the proposal, the SEC noted that Market Entities increasingly rely on information systems to perform their functions and provide their services and that the interconnectedness of Market Entities increases the risk that a significant cybersecurity incident can simultaneously impact multiple Market Entities causing systemic harm to the U.S. securities markets.

Proposed new Rule 10 under the Exchange Act would require all Market Entities to (i) establish, maintain, and enforce written policies and procedures that are reasonably designed to address their cybersecurity risks, (ii) review and assess, at least annually, the design and effectiveness of their cybersecurity policies and procedures, including whether they reflect changes in cybersecurity risk over the time period covered by the review, and (iii) provide the SEC with immediate written electronic notice of a significant cybersecurity incident upon having a reasonable basis to conclude that the significant cybersecurity incident has occurred or is occurring. The proposal includes additional requirements for Market Entities other than certain types of small broker-dealers (collectively, “Covered Entities”), including the requirement that Covered Entities utilize a proposed new Form SCIR to (a) report and update information about any significant cybersecurity incident and (b) publicly disclose summary descriptions of their cybersecurity risks and the significant cybersecurity incidents they experienced during the current or previous calendar year. The public comment period for the proposal will remain open until 60 days after the date of publication of the proposing release in the Federal Register.

SEC Proposes to Expand and Update Regulation SCI

The SEC proposed amendments to expand and update Regulation Systems Compliance and Integrity (“Regulation SCI”). Regulation SCI requires certain U.S. securities markets entities (“SCI entities”) to take corrective action with respect to systems disruptions, systems compliance issues, and systems intrusions and to notify the SEC of such events. In the SEC’s March 15, 2023, announcement of the proposed amendments, the SEC explained that trading and technology have evolved since Regulation SCI’s adoption in 2014 and that the growth in electronic trading allows ever-increasing volumes of securities transactions in a broader range of asset classes at increasing speed by competing trading platforms, including those offered by broker-dealers that play multiple roles in the markets. The proposed amendments would expand the scope of SCI entities covered by Regulation SCI to include registered security-based swap data repositories, all clearing agencies that are exempt from registration, and certain large broker-dealers (in particular, those that exceed a total assets threshold or a transaction activity threshold in national market system stocks, exchange-listed options contracts, U.S. Treasury Securities, or Agency Securities).

The proposed amendments would require that an SCI entity’s policies and procedures include the maintenance of a written inventory and classification of all SCI systems and a program for life cycle management; a program to prevent unauthorized access to such systems and information therein; and a program to manage and oversee certain third-party providers, including cloud service providers, of covered systems. The proposed amendments would also expand the types of SCI events experienced by an SCI entity that would trigger immediate notification to the SEC, update the rule’s annual SCI review and business continuity and disaster recovery testing requirements, and update certain of the Regulation’s recordkeeping provisions. The public comment period for the proposed amendments will remain open until 60 days after the date of publication of the proposing release in the Federal Register.

The SEC Issues Frequently Asked Questions for Registration of Municipal Advisors

On March 20, 2023, the SEC updated its Registration of Municipal Advisors Frequently Asked Questions (“FAQs”) page which provides general interpretive staff guidance on various aspects of the SEC’s municipal advisor registration rules. The updated page provides answers to questions across several categories, including the following topics: (i) independent registered municipal advisor exemption; (ii) registered investment adviser exclusion; (iii) issuance of municipal securities/post-issuance advice; (iv) completion of Form MA, Form MA-I, and Form MA-NR; (v) withdrawal from municipal advisor registration; and (vi) investment strategies and proceeds of municipal securities.

SEC Issues Statement Regarding Risk Legend Used by Non-Transparent ETFs

Under the terms of the SEC’s exemptive relief granted to actively managed ETFs that do not provide daily portfolio transparency (“non-transparent ETFs”), each non-transparent ETF is required to include in its prospectus, fund website, and any marketing materials a risk legend highlighting the differences between the non-transparent ETF and fully transparent actively managed ETFs, as well as certain costs and risks unique to non-transparent ETFs. Recognizing that the standardized risk legend required by the exemptive orders may be difficult to place in certain digital advertisements (e.g., banner advertisements) due to space limitations, the SEC issued new disclosure language on March 29, 2023, which may be used in digital advertisements by non-transparent ETFs in place of the standardized risk legend currently provided in the exemptive orders. Requirements relating to placement of the risk legend or new disclosure language in a prominent location remain as prescribed in the exemptive orders.

SEC ENFORCEMENT ACTIONS

SEC Charges Former Investment Adviser Managing Director and Co-Portfolio Manager with Undisclosed Conflict of Interest

The SEC charged a former managing director (the “defendant”) of a New York-based investment adviser (the “Adviser”), with failing to disclose a conflict of interest arising from his relationship with a film distribution company in which the fund he managed for the Adviser invested millions of dollars. The SEC’s order, issued on January 5, 2023, found that, from 2015 to 2019, a closed-end publicly traded fund (the “fund”), invested in Aviron Group, LLC subsidiaries by loaning the subsidiaries, which were in the business of funding advertising budgets of motion pictures, as much as $75 million. The defendant, a co-portfolio manager of the fund, had a significant role in recommending and overseeing the fund’s loans to the Aviron subsidiaries. At the same time, the defendant asked Aviron to help advance his daughter’s acting career. Aviron helped defendant’s daughter obtain a small role in a film produced in 2018. The defendant did not disclose to the fund’s board of trustees or the Adviser’s compliance and legal teams that he asked Aviron to help advance his daughter’s acting career or that Aviron helped his daughter obtain a film role. The defendant consented to the entry of the SEC’s order finding that he violated Section 206(2) of the Advisers Act. Without admitting or denying the SEC’s findings, the defendant agreed to a cease-and-desist order, a censure, and a $250,000 penalty.

SEC Charges Former SPAC CFO for Orchestrating Fraud Scheme

The SEC announced fraud charges against Cooper J. Morgenthau, the former CFO of African Gold Acquisition Corp. (“African Gold”), a special purpose acquisition company (“SPAC”), alleging that he stole more than $5 million from African Gold and from investors in two other SPACs that he incorporated. The SEC’s January 3, 2023, complaint alleged that from June 2021 through July 2022, Morgenthau embezzled money from African Gold and stole funds from another SPAC series to pay for his personal expenses and to trade in crypto assets and other securities; concealed unauthorized withdrawals by falsifying African Gold’s bank account statements; and raised money from the other SPAC’s investors based on misrepresentations. The SEC’s complaint alleged that Morgenthau violated antifraud provisions of the federal securities laws, lied to African Gold’s auditor and accountants in violation of the Exchange Act, knowingly falsified African Gold’s books and records, and filed false certifications with the SEC. Morgenthau consented to a judgment enjoining him from further federal securities laws violations and barring him from serving as an officer or director of a publicly traded company, with monetary remedies to be determined at a later date. In a parallel action, the U.S. Attorney’s Office for the Southern District of New York, on the same day the SEC issued its complaint, announced criminal charges against Morgenthau.

In a related matter, on February 22, 2023, the SEC announced that it settled charges against African Gold for internal controls, reporting, and recordkeeping violations. Per the SEC, it was due to these failures that Morgenthau was able to embezzle money from the company’s operating bank account as discussed in the above complaint. The SEC noted that African Gold made materially false filings with the SEC and maintained inaccurate books and records. According to the SEC’s order, African Gold’s only liquid asset was the money held in its operating bank account, and thus potential fraud by management posed one of the company’s most significant risks of material misstatements in its financial statements. The SEC’s order alleged that, despite this risk, African Gold gave Morgenthau control over nearly all aspects of its operating bank account and financial reporting process with little to no oversight. The SEC’s order found that African Gold violated Exchange Act provisions relating to internal controls, reporting, and recordkeeping. Without admitting or denying the SEC’s findings, African Gold agreed to a cease-and-desist order and to pay a $103,591 civil monetary penalty.

SEC Settles Charges Against Investment Adviser for Alleged Conflicts of Interest Arising Out of Revenue Sharing and Incentive Arrangements

The SEC issued an order instituting and settling administrative and cease-and-desist proceedings against Moors & Cabot, Inc. (“Moors & Cabot”), a registered investment adviser and broker-dealer. Per the January 19, 2023, order, between at least February 2017 and September 2021, Moors & Cabot failed to fully and fairly disclose material facts and conflicts of interest associated with certain revenue-sharing payments and financial incentives that Moors & Cabot received from two unaffiliated clearing brokers. According to the order, Moors & Cabot also failed to implement written compliance policies and procedures reasonably designed to prevent violations of the Advisers Act in connection with the disclosure of revenue sharing, fee markups, financial incentives, and associated conflicts of interest, as well as disciplinary histories. Moors & Cabot is charged with willfully violating Sections 206(2) and 206(4) of the Advisers Act and Rule 206(4)-7 thereunder.

Company to Pay $5 Million for Misleading Disclosures About Its Valuation Methodologies for Fixed Income Securities

The SEC announced settled charges against a privately held financial, software, data and media company headquartered in New York (the “Company”) for misleading disclosures relating to its paid subscription service, which provides daily price valuations for fixed income securities to financial services entities. The SEC’s January 23, 2023, order found that from at least 2016 through October 2022, the Company failed to disclose to its subscription service customers that the valuations for certain fixed income securities could be based on a single data input, such as a broker quote, which did not adhere to methodologies it had previously disclosed. The order found that the Company was aware that its customers, including mutual funds, may utilize subscription service prices to determine fund asset valuations, including for valuing fund investments in government, supranational, agency, and corporate bonds, municipal bonds, and securitized products, and that subscription service prices, therefore, can have an impact on the price at which securities are offered or traded. The SEC’s order found that the Company violated section 17(a)(2) of the Securities Act. Without admitting or denying the findings, the Company agreed to cease and desist from future violations and to pay a $5 million penalty. The SEC’s order noted that the Company voluntarily engaged in remedial efforts to improve its subscription service line of business.

Twenty-five States File Lawsuit to Block DOL’s ESG Rule

Twenty-five states are suing the Biden Administration in an attempt to block the Department of Labor (“DOL”) rule that allows fiduciaries to consider ESG factors when choosing retirement investments (“DOL ESG Rule”). According to the lawsuit filed in Texas federal court on January 26, 2023, the attorneys general claim that the DOL ESG Rule violates Employment Retirement Income Security Act (“ERISA”), which requires that retirement plans invest solely for financial gain, and runs afoul of the Administrative Procedure Act (“APA”) as arbitrary and capricious because the DOL failed to assess either the harm it poses for plan participants and beneficiaries or the advantage of superseding the 2020 DOL rule effectively banning ESG considerations in plan investment selections. Among the twenty-five states are Alabama, Alaska, Arkansas, Florida, Georgia, Indiana, Idaho, and Iowa. In addition to the states, listed plaintiffs include two energy companies, an energy industry trade group, and an individual participant in an unnamed workplace plan.

The claimants argue that the DOL is deviating from prior policy because its 2020 DOL rule still required that financial factors take precedence. It is argued in the complaint that the DOL justified the 2022 rule by noting that it would cure a “chill” or “confusion” allegedly caused by the 2020 rule. Per the claimants, the DOL never identified who was confused, what the source of confusion was, or whether the alleged confusion caused a reduction in the financial returns for plan participants. Claimants further allege that the DOL did not consider alternatives and failed to consider that the solution to the purported concerns caused by the 2020 rules would be to issue clarifying sub-regulatory guidance. The claimants request the court to postpone the DOL ESG Rule’s effective date and to impose a preliminary injunction and declare the DOL ESG Rule in violation of the APA and ERISA.

SEC Charges Options Clearing Corporation with Rule Failures

The SEC announced that The Options Clearing Corporation (“OCC”) will undertake remedial efforts and pay $17 million in penalties to settle charges that it failed to comply with its own SEC-approved stress testing and clearing fund methodology rule during certain times between October 2019 and May 2021. According to the SEC’s February 16, 2023, order, Chicago-based OCC’s failure to implement and comply with its own rule was the result of its failure to properly establish, implement, and enforce written policies and procedures reasonably designed to manage certain operational risks. The SEC’s order further found that OCC failed to modify its comprehensive stress testing system and did not provide timely notification to the SEC of this failure as required by Regulation SCI. The SEC also found that OCC failed to comply with its margin methodology, margin policy, and stress testing and clearing fund methodology relating to specific wrong way risk and holiday margin.

According to the SEC, in addition to the $17 million penalty, OCC has undertaken several remedial measures, including revising its model validation policies and procedures; enhancing its approach to risk data governance; implementing changes to elements of its control environment, including processes, procedures, and controls; and conducting appropriate training on the changes. This is the SEC’s second enforcement action against OCC. In a September 2019 settled action, the SEC charged OCC with failure to establish and enforce policies and procedures involving financial risk management, operational requirements, and information-systems security, and imposed remedial measures and a $15 million penalty.

Republican Attorney-Generals Ask Court to Set Aside SEC Proxy Voting Disclosure Rules

Texas Attorney General Ken Paxton and three other Republican attorneys general filed a petition on February 21, 2023, against the SEC in the federal appeals court opposing the new proxy voting disclosure rules. Among other changes, the new rules amend Form N-PX by expanding the number of voting categories to include information about votes in certain standardized categories, including various ESG-related topics such as environment or climate, and diversity, equity and inclusion. Though the petition does not detail the states’ legal arguments against the proxy voting disclosure rules, Attorney General Paxton claimed in a statement that the rules are politically motivated. According to the office of Utah’s attorney general, the rules “will put shareholders at increased risk of loss, encouraging political activism and raising administrative costs.” The SEC’s two Republican commissioners, Hester Peirce and Mark Uyeda, both voted against adopting the rules, which the SEC’s three Democrats supported.

SEC Charges a Church and Its Investment Management Company for Disclosure Failures and Misstated Filings

The SEC announced charges against an exempt investment adviser (the “Adviser”), a non-profit entity operated by a religious organization (the “Church”) to manage the Church’s investments, for failing to file forms that would have disclosed the Church’s equity investments, and for instead filing forms for shell companies that obscured the Church’s portfolio and misstated the Adviser’s control over the Church’s investment decisions. The SEC also announced charges against the Church for causing these violations. To settle the charges, the Adviser agreed to pay a $4 million penalty and the Church agreed to pay a $1 million penalty. The SEC’s order, issued on February 21, 2023, found that from 1997 through 2019, the Adviser failed to file Forms 13F. According to the SEC’s order, the Church was concerned that disclosure of its portfolio, which by 2018 had grown to approximately $32 billion, would lead to negative consequences and in order to obscure the amount of the Church’s portfolio, and with the Church’s knowledge and approval, the Adviser filed Forms 13F in the names of shell LLCs which it had created rather than in the Adviser’s name.

The order found that the Adviser maintained investment discretion over all relevant securities, that it controlled the shell LLCs, and that it directed nominee “business managers,” most of whom were employed by the Church, to sign the SEC filings. The SEC found that the shell LLCs’ Forms 13F misstated, among other things, that the LLCs had sole investment and voting discretion over the securities, when in reality the Adviser retained control over all investment and voting decisions. The Adviser agreed to settle the SEC’s allegation that it violated Section 13(f) of the Exchange Act and Rule 13f-1 thereunder by failing to file Forms 13F and by misstating information in these forms. The Church also agreed to settle the SEC’s allegation that it caused the Adviser’s violations through its knowledge and approval of the Adviser’s use of the shell LLCs.

SEC Charges Private Fund Auditor and Audit Engagement Partner with Improper Professional Conduct

The SEC announced settled charges against Spicer Jeffries LLP, an audit firm based in Denver, and an audit engagement partner Sean P. Tafaro, for their improper professional conduct in connection with audits of two private funds. According to the SEC’s March 29, 2023, order, during the audit planning stages, Spicer Jeffries and Tafaro assessed that valuation of investments was a significant fraud risk but did not implement the planned audit approach to respond to the risk. The order further finds that Spicer Jeffries and Tafaro failed to obtain sufficient audit evidence about the method of measuring fair value, the valuation models, and whether alternative valuation assumptions were considered. According to the order, due to these failures and others, Spicer Jeffries and Tafaro did not exercise due care, including professional skepticism. The order also found that Spicer Jeffries’ deficient system of quality control led to failures to adhere to professional auditing standards. Without admitting or denying the findings, Spicer Jeffries and Tafaro consented to the SEC’s order finding that they engaged in improper professional conduct. Spicer Jeffries agreed to be censured and to implement undertakings to retain an independent consultant to review and evaluate certain of its audit, review, and quality control policies and procedures. Tafaro agreed to be suspended from appearing and practicing before the SEC as an accountant. The SEC’s order permits Tafaro to apply for reinstatement after one year.

Cyber Fraud and Crypto Asset Enforcement Actions

The SEC brought charges against various individuals and entities relating to cyber fraud and crypto assets, including blockchain and lending programs. For example, these include:

The SEC charged five individuals and three entities for their involvement in a fraudulent investment scheme named CoinDeal that raised more than $45 million from sales of unregistered securities to tens of thousands of investors worldwide. According to the SEC’s complaint filed on January 4, 2023, the five individuals allegedly disseminated false and misleading statements to investors about extravagant returns from investing in a blockchain technology called CoinDeal; the purported value of CoinDeal; the parties involved in the supposed sale of CoinDeal; and the use of investment proceeds. The complaint further alleged that no sale of CoinDeal ever occurred and no distributions were made to CoinDeal investors, and that the defendants collectively misappropriated millions of dollars of investor funds for personal use. In June 2022, the U.S. Department of Justice indicted one of the individuals on three counts of wire fraud and two counts of monetary transaction in unlawful proceeds for his involvement in CoinDeal. The SEC’s complaint charged each party with different violations of the antifraud and registration provisions of the Securities Act and Exchange Act; and aiding and abetting under the antifraud provisions of the Exchange Act; and under the antifraud and registration provisions of the Securities Act and Exchange Act.
The SEC charged a crypto asset-related financial products and services corporation (the “Corporation”), with failing to register the offer and sale of its retail crypto asset lending product. To settle the SEC’s charges, the Corporation agreed to pay a $22.5 million penalty and cease its unregistered offer and sale of its product to U.S. investors. In parallel actions announced the same day, the Corporation agreed to pay an additional $22.5 million in fines to settle similar charges by state regulatory authorities. The SEC’s January 19, 2023, order found that the Corporation marketed its product as a means for investors to earn interest on their crypto assets, and that the Corporation exercised its discretion to use investors’ crypto assets in various ways to generate income for its own business and to fund interest payments to investors. The order also found that the Corporation’s product is a security and that the offer and sale of the Corporation’s product did not qualify for an exemption from SEC registration. Without admitting or denying the SEC’s findings, the Corporation agreed to a cease-and-desist order prohibiting it from violating the registration provisions of the Securities Act.
The SEC charged Avraham Eisenberg with orchestrating an attack on a crypto asset trading platform, Mango Markets, by manipulating the MNGO token, a so-called governance token that was offered and sold as a security. Eisenberg is facing parallel criminal and civil charges in the Southern District of New York brought by the U.S. Department of Justice and the Commodities Futures Trading Commission (“CFTC”). The SEC’s complaint alleged that beginning on October 11, 2022, Eisenberg engaged in a scheme to steal approximately $116 million worth of crypto assets from the Mango Markets platform. The SEC’s complaint, filed in federal district court in Manhattan, charged Eisenberg with violating antifraud and market manipulation provisions of the securities laws and sought permanent injunctive relief, a conduct-based injunction, disgorgement with prejudgment interest, and civil penalties.
The SEC charged Singapore-based Terraform Labs PTE Ltd and Do Hyeong Kwon with orchestrating a multibillion-dollar crypto asset securities fraud involving an algorithmic stablecoin and other crypto asset securities. According to the SEC’s complaint filed on February 16, 2023, from April 2018 until the scheme’s collapse in May 2022, Terraform and Kwon raised billions of dollars from investors by offering and selling an inter-connected suite of crypto asset securities, many in unregistered transactions. The complaint charged the defendants with violating the registration and antifraud provisions of the Securities Act and the Exchange Act.
The SEC announced charges against former NBA player Paul Pierce for touting EMAX tokens, crypto asset securities offered and sold by EthereumMax, on social media without disclosing the payment he received for the promotion and for making false and misleading promotional statements about the same crypto asset. The SEC’s February 17, 2023, order found that Pierce violated the anti-touting and antifraud provisions of the federal securities laws. Without admitting or denying the SEC’s findings, Pierce agreed to settle the charges and pay over $1.4 million in penalties, disgorgement, and interest. Pierce also agreed not to promote any crypto asset securities for three years.
The SEC charged the former co-lead engineer (the “defendant”) of an Antigua- and Barbuda-based company that operated a global crypto asset trading platform (the “Company”), for his role in a multiyear scheme to defraud equity investors. According to the SEC’s complaint, issued on February 28, 2023, the defendant created software code that allowed Company customer funds to be diverted to a quantitative trading firm specializing in crypto assets (a “crypto hedge fund”) owned by co-founders and officers of the Company, despite false assurances to investors that the Company was a safe crypto asset trading platform with sophisticated risk mitigation measures to protect customer assets and that the crypto hedge fund was just another customer with no special privileges. The complaint alleged that the defendant knew or should have known that such statements were false and misleading, and that the defendant actively participated in the scheme to deceive the Company’s investors
The SEC’s complaint charged the defendant with violating the antifraud provisions of the Securities Act and the Exchange Act. The defendant consented to a bifurcated settlement, subject to court approval, which would permanently enjoin him from violating the federal securities laws, a conduct-based injunction, and an officer and director bar. In a parallel action, the U.S. Attorney’s Office for the Southern District of New York and the Commodity Futures Trading Commission (“CFTC”) announced charges against the defendant on the same day the SEC’s complaint was filed.
The SEC charged the crypto asset trading platform beaxy.com (the “Beaxy Platform”) and its executives for failing to register as a national securities exchange, broker, and clearing agency. The SEC also charged the founder of the platform, Artak Hamazaspyan, and a company he controlled, Beaxy Digital, Ltd., with raising $8 million in an unregistered offering of the Beaxy token (“BXY”) and alleged that Hamazaspyan misappropriated at least $900,000 for personal use, including gambling. Finally, the SEC charged market makers operating on the Beaxy Platform as unregistered dealers. Pursuant to the Consents filed on March 29, 2023, the charged market makers have agreed to perform certain undertakings, including ceasing all activities as an unregistered exchange, clearing agency, broker, and dealer; shutting down the Beaxy Platform; providing an accounting of assets and funds for the benefit of customers; transferring all customer assets and funds to each respective customer; and destroying any and all BXY in possession.

Thomas R. Westle and Stacy H. Louizos would like to thank Margaret M. Murphy and Hiba Hassan for their contributions to this update.

For more Financial and Securities legal news, click here to visit the National Law Review

The Future of Stablecoins, Crypto Staking and Custody of Digital Assets

In the wake of the collapse of cryptocurrency exchange firm FTX, the Securities and Exchange Commission (SEC) has ratcheted up its oversight and enforcement of crypto firms engaged in activities ranging from crypto staking to custody of digital assets. This is due in part to concerns that the historically free-wheeling and largely unregulated crypto marketplace may adversely impact U.S. investors and contaminate traditional financial systems. The arguments that cryptocurrencies and digital assets should not be viewed as securities under federal laws largely fall on deaf ears at the SEC. Meanwhile, the state of the crypto economy in the United States remains in flux as the SEC, other regulators and politicians alike attempt to balance competing interests of innovation and investment in a relatively novel and untested asset class.

Is Crypto Staking Dead?

First, what is crypto staking? By way of background, it’s necessary to understand a bit about blockchain technology, which serves as the underpinning for all cryptocurrency and digital asset transactions. One of the perceived benefits of such transactions is that they are decentralized and “peer-to-peer” – meaning that Person A can transact directly with Person B without the need for a financial intermediary to approve the transaction.

However, in the absence of a central authority to validate a transaction, blockchain requires other verification processes or consensus mechanisms such as “proof of work” (which in the case of Bitcoin mining ensures that transactions are valid and added to the Bitcoin blockchain correctly) or “proof of stake” (a network of “validators” who contribute or “stake” their own crypto in exchange for a chance to validate a new transaction, update the blockchain and earn a reward). Proof of work has come under fire by environmental activists for the enormous amounts of computer power and energy required to solve complex mathematical or cryptographic puzzles to validate a transaction before it can be recorded on the blockchain. In contrast, proof of stake is analogous to a shareholder voting their shares of stock to approve a corporate transaction.

Second, why has crypto staking caught the attention of the SEC? Many crypto firms and exchanges offer “staking as a service” (SaaS) whereby investors can stake (or lend) their digital assets in exchange for lucrative returns. This practice is akin to a person depositing cash in a bank account in exchange for interest payments – minus FDIC insurance backing of all such bank deposits to protect investors.

Recently, on February 9, 2023, the SEC charged two crypto firms, commonly known as “Kraken,” for violating federal securities laws by offering a lucrative crypto asset SaaS program. Pursuant to this program, investors could stake their digital assets with Kraken in exchange for annual investment returns of up to 21 percent. According to the SEC, this program constituted the unregistered sale of securities in violation of federal securities laws. Moreover, the SEC claims that Kraken failed to adequately disclose the risks associated with its staking program. According to the SEC’s Enforcement Division director:

“Kraken not only offered investors outsized returns untethered to any economic realities but also retained the right to pay them no returns at all. All the while, it provided them zero insight into, among other things, its financial condition and whether it even had the means of paying the marketed returns in the first place.”¹

Without admitting or denying the SEC’s allegations, Kraken has agreed to pay a $30 million civil penalty and will no longer offer crypto staking services to U.S. investors. Meanwhile, other crypto firms that offer similar programs, such as Binance and Coinbase, are waiting for the other shoe to drop – including the possibility that the SEC will ban all crypto staking programs for U.S. retail investors. Separate and apart from potentially extinguishing a lucrative revenue stream for crypto firms and investors alike, it may have broader consequences for proof of stake consensus mechanisms commonly used to validate blockchain transactions.

NY DFS Targets Stablecoins

In the world of cryptocurrency, stablecoins are typically considered the most secure and least volatile because they are often pegged 1:1 to some designated fiat (government-backed) currency such as U.S. dollars. In particular, all stablecoins issued by entities regulated by the New York Department of Financial Services (NY DFS) are required to be fully backed 1:1 by cash or cash equivalents. However, on February 13, 2023, NY DFS unexpectedly issued a consumer alert stating that it had ordered Paxos Trust Company (Paxos) to stop minting and issuing a stablecoin known as “BUSD.” BUSD is reportedly the third largest stablecoin by market cap and pegged to the U.S. dollar.

The reasoning behind the NY DFS order remains unclear from the alert, which merely states that “DFS has ordered Paxos to cease minting Paxos-issued BUSD as a result of several unresolved issues related to Paxos’ oversight of its relationship with Binance in regard to Paxos-issued BUSD.”²The same day, Paxos confirmed that it would stop issuing BUSD. However, in an effort to assuage investors, Paxos stated “All BUSD tokens issued by Paxos Trust have and always will be backed 1:1 with U.S. dollar–denominated reserves, fully segregated and held in bankruptcy remote accounts.”³

Separately, the SEC reportedly issued a Wells Notice to Paxos on February 12, 2023, indicating that it intended to commence an enforcement action against the company for violating securities laws in connection with the sale of BUSD, which the SEC characterized as unregistered securities. Paxos, meanwhile, categorically denies that BUSD constitute securities, but nonetheless has agreed to stop issuing these tokens in light of the NY DFS order.

It remains to be seen whether the regulatory activity targeting BUSD is the beginning of a broader crackdown on stablecoins amid concerns that, contrary to popular belief, such coins may not be backed by adequate cash reserves.

Custody of Crypto Assets

On February 15, 2023, the SEC proposed changes to the existing “custody rule” under the Investment Advisers Act of 1940. As noted by SEC Chair Gary Gensler, the custody rule was designed to “help ensure that [investment] advisers don’t inappropriately use, lose, or abuse investors’ assets.”⁴The proposed changes to the rule (referred to as the “safeguarding rule”) would require investment advisers to maintain client assets – specifically including crypto assets – in qualified custodial accounts. As the SEC observed, “[although] crypto assets are a relatively recent and emerging type of asset, this is not the first time custodians have had to adapt their practices to safeguard different types of assets.”⁵

A qualified custodian generally is a federal or state-chartered bank or savings association, certain trust companies, a registered broker-dealer, a registered futures commission merchant or certain foreign financial institutions.⁶ However, as noted by the SEC, many crypto assets trade on platforms that are not qualified custodians. Accordingly, “this practice would generally result in an adviser with custody of a crypto asset security being in violation of the current custody rule because custody of the crypto asset security would not be maintained by a qualified custodian from the time the crypto asset security was moved to the trading platform through the settlement of the trade.”⁷

Moreover, in a departure from existing practice, the proposed safeguarding rule would require an investment adviser to enter into a written agreement with the qualified custodian. This custodial agreement would set forth certain minimum protections for the safeguarding of customer assets, including crypto assets, such as:

Implementing appropriate measures to safeguard an advisory client’s assets⁸
Indemnifying an advisory client when its negligence, recklessness or willful misconduct results in that client’s loss⁹
Segregating an advisory client’s assets from its proprietary assets¹⁰
Keeping certain records relating to an advisory client’s assets
Providing an advisory client with periodic custodial account statements¹¹
Evaluating the effectiveness of its internal controls related to its custodial practices.¹²

The new proposed, cumbersome requirements for custodians of crypto assets appear to be a direct consequence of the collapse of FTX, which resulted in the inexplicable “disappearance” of billions of dollars of customer funds. By tightening the screws on custodians and investment advisers, the SEC is seeking to protect the everyday retail investor by leveling the playing field in the complex and often murky world of crypto. However, it still remains to be seen whether, and to what extent, the proposed safeguarding rule will emerge after the public comment period, which will remain open for 60 days following publication of the proposal in the Federal Register.

¹ SEC Press Release 2023-25 (Feb. 9, 2023).

²NY DFS Consumer Alert (Feb. 13, 2023) found at https://www.dfs.ny.gov/consumers/alerts/Paxos_and_Binance.

³ Paxos Press Release (Feb. 13, 2023) found at https://paxos.com/2023/02/13/paxos-will-halt-minting-new-busd-tokens/.

⁴ SEC Press Release 2023-30 (Feb. 15, 2023).

⁵ SEC Proposed Rule, p. 79.

⁶ SEC Fact Sheet: Proposed Safeguarding Rule.

⁷ SEC Proposed Rule, p. 68.

⁸For instance, per the SEC, this could require storing crypto assets in a “cold wallet.”

⁹ Per the SEC, “the proposed indemnification requirement would likely operate as a substantial expansion in the protections provided by qualified custodians to advisory clients, in particular because it would result in some custodians holding advisory client assets subject to a simple negligence standard rather than a gross negligence standard.” See SEC Proposed Rule, p. 89.

¹⁰ Per the SEC, this requirement is intended to “ensure that client assets are at all times readily identifiable as client property and remain available to the client even if the qualified custodian becomes financially insolvent or if the financial institution’s creditors assert a lien against the qualified custodian’s proprietary assets (or liabilities).” See SEC Proposed Rule, p. 92.

¹¹ Per the SEC, “[in] a change from the current custody rule, the qualified custodian would also now be required to send account statements, at least quarterly, to the investment adviser, which would allow the adviser to more easily perform account reconciliations.” See SEC Proposed Rule, p. 98.

¹² Per the SEC, the proposed rule would require that the “qualified custodian, at least annually, will obtain, and provide to the investment adviser a written internal control report that includes an opinion of an independent public accountant as to whether controls have been placed in operation as of a specific date, are suitably designed, and are operating effectively to meet control objectives relating to custodial services (including the safeguarding of the client assets held by that qualified custodian during the year).” See SEC Proposed Rule, p. 101.

Article By Anjali C. Das of Wilson Elser Moskowitz Edelman & Dicker LLP

For more cryptocurrency and finance legal news, click here to visit the National Law Review.

The SEC’s Whistleblower Protection Program

SEC Struck Several Blows in 2023 Against Companies that Failed to Carve out Whistleblower Protections in Their Confidentiality Agreements

Key Take-Aways

Share this:

Like this:

Geopolitical Tensions Disrupting Global Trade

Economic Protectionism Increasing Costs and Risks

Impacts of Climate Change and Sustainability Policies

Disruptive Technology

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

REGULATORY UPDATES

RECENT SEC LEADERSHIP CHANGES

Stephanie Allen Named as SEC’s Director of Media Relations and Speechwriting

SEC Names Kate E. Zoladz as Regional Director of Los Angeles Office

Daniel Gregus, Director of the Chicago Regional Office, to Depart the SEC

SEC Risk Alerts

SEC Announces 2024 Exam Priorities

Investment Advisers to Private Funds

Registered Investment Companies (including Mutual Funds and ETFs)

SEC Rulemaking

SEC Adopts Amendments to Rules Governing Beneficial Ownership Reporting

SEC Adopts Rule to Increase Transparency in the Securities Lending Market

SEC Adopts Rule to Increase Transparency Into Short Selling and Amendment to CAT NMS Plan for Purposes of Short Sale Data Collection

Clearing Agency Governance and Conflicts of Interest

SEC Defends Voting Disclosure Changes Before Fifth Circuit

SEC Adopts Rule to Prohibit Conflicts of Interest in Certain Securitizations

SEC Adopts Rules to Improve Risk Management in Clearance and Settlement and Facilitate Additional Central Clearing for the U.S. Treasury Market

ENFORCEMENT ACTIONS AND CASES

SEC Charges Investment Adviser with Failing to Properly Disclose Investments by Publicly Traded Fund

SEC Charges President/CCO of Asset Management Advisory Firm with Fraud

SEC Announces Enforcement Results for FY23

Crypto Currency Exchange Agrees to pay $4.3 Billion in Fines for Violations of the Bank Secrecy Act

SEC Charges Real Estate Fund Adviser with $35 Million Fraud

Global Bank and Affiliated Entities to Pay $10 Million for Providing Prohibited Mutual Fund Services

BarnBridge DAO Agrees to Stop Unregistered Offer and Sale of Structured Finance Crypto Product

SEC BuyBack Disclosure Rule Vacated by Appeals Court

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

How It Works

Road Ahead

Share this:

Like this:

Boards File Comment Letters Asking SEC to Withdraw Swing Pricing Rule Proposal

SEC Proposes Rule to Prohibit Conflicts of Interest in Certain Securitizations

Division of Examinations Publishes Risk Alert on Regulation Best Interest

SEC Releases Staff Guidance on Differential Advisory Fee Waivers

SEC Division of Examinations Announces 2023 Priorities

SEC Reopens Comment Period for Proposed Cybersecurity Risk Management Rules and Amendments for Registered Investment Advisers and Funds

SEC Finalizes Rules to Reduce Broker-Dealer Settlement Cycle from (T+2) to (T+1)

SEC Proposes Enhanced Custody Rule for Registered Investment Advisers

Republican Leaders Request Information from Gensler on Climate Disclosure Proposal

SEC Fee Rate Advisories

SEC Proposes Changes to Reg S-P to Enhance Protection of Customer Information

SEC Proposes New Requirements to Address Cybersecurity Risks to the U.S. Securities Markets

SEC Proposes to Expand and Update Regulation SCI

The SEC Issues Frequently Asked Questions for Registration of Municipal Advisors

SEC Issues Statement Regarding Risk Legend Used by Non-Transparent ETFs

SEC ENFORCEMENT ACTIONS

SEC Charges Former Investment Adviser Managing Director and Co-Portfolio Manager with Undisclosed Conflict of Interest

SEC Charges Former SPAC CFO for Orchestrating Fraud Scheme

SEC Settles Charges Against Investment Adviser for Alleged Conflicts of Interest Arising Out of Revenue Sharing and Incentive Arrangements

Company to Pay $5 Million for Misleading Disclosures About Its Valuation Methodologies for Fixed Income Securities

Twenty-five States File Lawsuit to Block DOL’s ESG Rule

SEC Charges Options Clearing Corporation with Rule Failures

Republican Attorney-Generals Ask Court to Set Aside SEC Proxy Voting Disclosure Rules

SEC Charges Private Fund Auditor and Audit Engagement Partner with Improper Professional Conduct

Cyber Fraud and Crypto Asset Enforcement Actions

Share this:

Like this:

Is Crypto Staking Dead?

NY DFS Targets Stablecoins