Category: Securities Law

Accounting and Auditing Enforcement Activity Declines Slightly in 2019

Los Angeles—The U.S. Securities and Exchange Commission (SEC) and the Public Company Accounting Oversight Board (PCAOB) publicly disclosed a combined 81 accounting and auditing enforcement actions during 2019, down slightly from the previous year, according to a Cornerstone Research report released today. Monetary settlements totaled approximately $628 million, $626 million of which was imposed by the SEC.

Cornerstone Research’s report, Accounting and Auditing Enforcement Activity—2019 Review and Analysis, examines publicly disclosed SEC and PCAOB enforcement actions that involve accounting and auditing. The most common allegations in 2019 SEC actions involved financial reporting issues, with revenue recognition violations comprising the largest share. The percentage of PCAOB actions involving revenue recognition increased in 2019.

The SEC and PCAOB have highlighted revenue recognition as one of the areas that may present challenges as a result of the economic impact of COVID-19.

Enforcement actions involving announcements of restatements or internal control weaknesses increased by 65%. The percentage of 2019 SEC actions involving announced restatements and/or material weaknesses in internal controls (42%) was nearly double the 2018 percentage (23%).

Highlights

  • In 2019, the SEC initiated 57 enforcement actions involving accounting and auditing allegations, an 11% decline from the 64 actions in 2018, but near the 2014–2018 average. The SEC brought only 5% of accounting and auditing actions as civil actions, the lowest percentage since 2016.

  • The PCAOB publicly disclosed 24 auditing-related enforcement actions in 2019, up 26% compared to 2018, the year in which the PCAOB disclosed its lowest number of actions since 2014.

  • The percentage of SEC and PCAOB actions involving non-U.S. respondents declined, but remained above the 2014–2018 average.

  • At 115, the total number of respondents in 2019 SEC and PCAOB actions was 23% below the 2014–2018 average.

  • The SEC and PCAOB imposed monetary penalties against 84% of firms and 63% of individual respondents. The median penalty the SEC imposed on firms in 2019 was $4.1 million, nearly three times greater than the 2018 median.

 Read Accounting and Auditing Enforcement Activity—2019 Review and Analysis.

Copyright ©2020 Cornerstone Research

For more SEC enforcement actions see the National Law Review Securities Law & SEC news section.

North American Securities Administrators Association Proposes Model State Whistleblower Rewards Legislation

The North American Securities Administrators Association (NASAA) announced it released for public comment a proposed model law to help states incentivize individuals to come forward to report suspected wrongful violations of state securities laws and to protect whistleblowers.  According to NASAA President and Chief of the New Jersey Bureau of Securities Christopher W. Gerold, “The intent of this model legislation is to incentivize individuals who have knowledge of potential securities law violations to report it to state regulators in the interest of investor protection . . . [i]nformation from those with knowledge of securities law violations is a valuable enforcement tool to help regulators detect financial fraud and wrongdoing.”

The SEC whistleblower program that Congress created about 10 years ago in the Dodd-Frank Act has proven effective in combatting securities fraud and protecting investors.  Since the inception of the program, the SEC has paid more than $450 million in awards to whistleblowers.  SEC enforcement actions associated with those awards have resulted in sanctions totaling more than $2 billion.  Whistleblower awards can range from 10 percent to 30 percent of the monetary sanctions collected when the sanctions exceed $1 million.

Proposed Model State Securities Whistleblower Rewards Legislation

The proposed state whistleblower rewards legislation is modeled on the Dodd-Frank Act’s SEC whistleblower rewards provisions. Some of the key features include:

  • A whistleblower could obtain 10 to 30% of the monetary sanctions collected in any related administrative or judicial action stemming from original information that the whistleblower voluntarily provides to a state securities regulator.
  • Factors that would determine the award percentage include:
    • the significance of the original information provided by the whistleblower to the success of the administrative or judicial action;
    • the degree of assistance provided by the whistleblower in connection with the administrative or judicial action; and
    • the programmatic interest of the [Securities Administrator] in deterring violations of the securities laws by making awards to whistleblowers who provide original information that leads to the successful enforcement of such laws.
  • Information that could reasonably be expected to reveal the identity of a whistleblower would be exempt from public disclosure.
  • There are approximately 11 categories of whistleblowers that would be ineligible to receive an award, including (1) a whistleblower convicted of a felony in connection with the administrative or judicial action for which the whistleblower otherwise could receive an award; (2) a whistleblower who acquires the original information through the performance of an audit of financial statements required under the securities laws; (3) a whistleblower who knowingly or recklessly makes a false, fictitious, or fraudulent statement or misrepresentation as part of, or in connection with, the original information provided or the administrative or judicial proceeding for which the original information was provided; and (4) a whistleblower who has a legal duty to report the original information.

The model legislation also includes a whistleblower protection provision that would prohibit an employer from terminating, discharging, demoting, suspending, threatening, harassing, directly or indirectly, or in any other manner retaliating against, a whistleblower because of any lawful act done by the whistleblower:

  • in providing information to the [Securities Division] in accordance with this Act;
  • in initiating, testifying in, or assisting in any investigation or administrative or judicial action based upon or related to such information; or
  • in making disclosures that are required or protected under the Sarbanes-Oxley Act of 2002 (15 U.S.C. 7201 et seq.); the Securities Act of 1933 (15 U.S.C. 77a et seq.); the Securities Exchange Act of 1934 (15 U.S.C. 78a et seq.); 18 U.S.C. 1513(e); any other law, rule, or regulation subject to the jurisdiction of the Securities and Exchange Commission; or [the Securities Act of this State] or a rule adopted thereunder.

Remedies for a whistleblower prevailing in a retaliation claim include:

  • reinstatement with the same compensation, fringe benefits, and seniority status that the individual would have had, but for the retaliation;
  • two (2) times the amount of back pay otherwise owed to the individual, with interest;
  • compensation for litigation costs, expert witness fees, and reasonable attorneys’ fees;
  • actual damages; or
  • any combination of these remedies.

Role of State Securities Regulators

Although the SEC is the primary securities market regulator and enforces federal securities laws, state securities regulators enforce “blue sky” laws designed to protect investors against fraudulent sales practices and activities that fall outside of the SEC’s jurisdiction, e.g., offerings that are not required to be registered with the SEC.  Most of the state securities laws are based on the Uniform Securities Act, which is intended to prevent the fraudulent sale of securities to investors.

Securities law enforcement at the state level plays a vital role in protecting investors.  According to the NASAA’s 2018 Enforcement Report, in 2017 state securities regulators received 7,988 complaints, took 2,105 enforcement actions, and ordered $486 million returned to investors. Incentivizing whistleblowers to report securities fraud could significantly enhance the ability of state securities regulators to protect investors.

The proposed model act is open for public comment through June 30, 2020.

© 2020 Zuckerman Law

For more on securities laws, see the National Law Review Securities & SEC law section.

SEC Announces Formation of Cross-Divisional COVID-19 Market Monitoring Group

On April 24, the Securities and Exchange Commission (SEC) announced the formation of an internal, cross- division COVID-19 Market Monitoring Group (COVID-19 Group). The COVID-19 Group will be a temporary, senior-level group that will assist various divisions and offices within the SEC with (1) developing staff actions and analysis related to COVID-19’s effect on markets, issuers and investors (including Main Street investors), and (2) responding to requests for information, analysis and assistance from other regulators and public sector partners.

The COVID-19 Group will also assist and support the COVID-19-related efforts of other federal financial agencies and bodies, including, but not limited to, the President’s Working Group on Financial Markets (PWG), the Financial Stability Oversight Council (FSOC) and the Financial Stability Board (FSB).

A copy of the announcement is available here.

©2020 Katten Muchin Rosenman LLP

For more SEC regulations, see the National Law Review Securities & SEC law page.

What to Do Now With Your CARES Act PPP Loan

A Warning

Those who have obtained Paycheck Protection Program (PPP) loans (or have applied or been approved for such loans but not yet received the loan proceeds) have been warned by the U.S. federal government to make sure that they, in fact, qualify for the loans. Secretary Mnuchin exonerated lenders who processed the loans and warned that it is the borrowers themselves who sign the application and make the relevant certifications who face potential criminal action for false certifications. Borrowers have now been given a grace period until May 7, 2020, to repay loans they may have obtained “based on a misunderstanding or misapplication of the required certification standard.” This short — now less than one-week — period gives PPP loan borrowers very little time to act and is aggravated by the ambiguity of applicable regulatory and other guidance as discussed below.

Thinking About What to Do

Borrowers are, and should be, asking, “what do we do about our PPP loan?” They are doing so in a unique moment. Indeed, a former member of a Congressional oversight board following the last financial crisis opined in the Wall Street Journal: “[B]orrower beware! Businesses with flexibility should seriously consider to what extent accepting the terms of federal loans or other support may be a Faustian bargain. The ultimate cost may dramatically outweigh the temporary gain.” Understanding the issues that inform the answer to this question, unfortunately, involves some detailed analysis as discussed below.

Broad Loan Availability Initially Heralded and Broad CARES Act Approach

The signing into law of the Coronavirus Aid, Relief, and Economic Security Act (CARES Act)on March 27, 2020, was heralded as a critical response to the COVID-19 economic crisis. The PPP loan program was enacted to make $349 billion of loan funds broadly available to qualifying businesses so that those businesses could keep their employees employed. In fact, following enactment, the federal government repeatedly encouraged businesses to apply for (and lenders to quickly process) PPP loans. Even as late as April 15, 2020, Secretary Mnuchin announced that “[w]e want every eligible small business to participate and get the resources they need.” In order to broaden its reach, the CARES Act affirmatively took action to cut back eligibility restrictions in the existing Small Business Administration (SBA) loan program through which PPP loans are administered, including:

  • suspending the requirement that borrowers must not be able to obtain credit elsewhere;
  • repealing the requirement that liquid owners contribute capital alongside an SBA loan;
  • creating a presumption that loan applicants were adversely impacted by COVID-19; and
  • reducing the breadth of the complex affiliation rules.

The SBA itself even published guidance allowing borrowers to restructure their governance arrangements to qualify for a loan.

A Continuing Changing Landscape; Making a Decision to Keep a PPP Loan

Since the passage of the CARES Act, the landscape has continued to evolve — sometimes daily — with ongoing guidance from the SBA and Treasury, whether in the form of Interim Final Rules (immediately effective upon publication in the Federal Register without first soliciting public comment due to the emergency nature of the situation), FAQ guidance from the SBA with new questions and answers added frequently over the past month, or mere public statements by public officials. Through the end of April — just a month into the CARES Act — seven formal Interim Final Rules for the CARES Act have been issued and 12 updates to the SBA’s FAQs on the PPP have been published. It has been difficult to find clear guidance and sure footing, even before the most recent government warnings.

A Sudden Shift in Approach

On April 23, 2020, after significant press reporting and commentary on those participating in the PPP loans, the SBA and Treasury Secretary abruptly shifted course with the publication of a new FAQ (Question 31) stating that the certification each borrower makes in its application that “[c]urrent economic uncertainty makes this loan request necessary to support the ongoing operations of the Applicant” must be made “in good faith, taking into account their current business activity and their ability to access other sources of liquidity sufficient to support their ongoing operations in a manner that is not significantly detrimental to the business” (emphasis supplied). As to specific examples where certification might raise questions or get a closer look, an April 23 FAQ highlighted large public companies and an April 24 Interim Final Rule highlighted Private Equity (PE) portfolio companies. On April 28, Secretary Mnuchin made public comments promising audits of all loan amounts over $2 million, and then — also on April 28 — the SBA updated its FAQs twice to highlight this new certification interpretation as also applicable to private companies and to formalize the $2 million audit threshold requirement. In other words, virtually all borrowers must be cognizant of the certification that they made in their loan application.

What Does the Certification Mean?

Unfortunately, there is no real guidance as to what this certification means. However, one thing is certain — this certification and the question of access to “other sources of liquidity” will be judged in retrospect. It is anyone’s guess how long the “look back” risk will exist. Our experience is that these kinds of after-the-fact examinations have a long life. In this respect, a borrower may legitimately ask how it knows if it has access to liquidity — must a public company try to test the capital markets; must a PE fund owner consider drawing down on undrawn commitments or fund level credit agreements to fund a highly distressed portfolio company; will VC-backed companies be judged poorly in this context if their investors have large amounts of so-called “dry powder” to invest; and will private business owners have to evaluate their own wealth, liquidity positions, and borrowing capacity? These are all questions that have no ready answer through current SBA rules or guidance. The fact that the CARES Act “suspended” the normal requirement that a borrower be unable to obtain credit elsewhere and repealed the requirement of liquid owners to contribute capital has simply not been reconciled with the SBA’s new scrutiny on available liquidity, as the Treasury and SBA have leaned hard into the statutory certification requirement that any loan request must be “necessary.” Borrowers and applicants would be excused from asking what it means for the SBA to require liquidity that is not “significantly detrimental to the business.” Does that mean “significantly detrimental” to the current business owners (whether public company stockholders, PE or VC fund investors, or the owners of private businesses themselves) in terms of dilution or the like, or does this important phrase instead mean just what it says — such alternative available liquidity is not “significantly detrimental to the business” itself (e.g., financing that the business cannot make “work“ for any real period of time and which damages the business as a going concern)? Again, the SBA and Treasury have provided no clear answers.

The Other Key Certification Issue:

As borrowers evaluate their options to return loans before the expiration of the safe harbor on May 7, 2020, they must also focus on compliance with the SBA “affiliation” rules. The affiliation rules are complex and directly impact the question of who may apply for a PPP loan. This is because the way in which the CARES Act defines eligible borrowers largely turns on the number of employees involved, and an applicant must generally (under applicable regulatory guidance and rules, but subject to certain waivers set forth in the CARES Act itself) apply the SBA’s affiliation rules to aggregate its own number of employees with that of all of its affiliates. Thus, the application of the SBA’s affiliation rules is critically important to an applicant’s ability to make another certification in each PPP loan application: that “the Applicant is eligible to receive a loan under the rules in effect at the time this application is submitted that have been issued by the Small Business Administration (SBA) implementing the Paycheck Protection Program ….” So, in addition to the question of necessity for the PPP loan and alternate sources of liquidity, borrowers must ensure that they have considered the application of the affiliation rules (unless otherwise waived) in deciding whether to keep SBA loans.

Who Is an Affiliate Under the CARES Act?

According to the SBA, affiliate status for purposes of determining the number of employees of a business concern for PPP loans works as follows:

  • “Concerns and entities are affiliates of each other when one controls or has the power to control the other, or a third party or parties controls or has the power to control both”;
  • “It does not matter whether control is exercised, so long as the power to control exists. Affiliation under any of the circumstances described [in 13 C.F.R. § 121.301(f)] is sufficient to establish affiliation” for applicants for the PPP; and
  • There are four general bases of affiliation that the SBA will consider when determining the size of an applicant: (1) affiliation based on ownership; (2) affiliation arising under stock options, convertible securities, and agreements to merge; (3) affiliation based on management; and (4) affiliation based on identity of interest.

As noted, these affiliation rules are both subtle and complex. Interestingly, even Congress did not seem to get the affiliation rules quite right in the CARES Act. In this regard, there are two SBA-related affiliation rules — rules set forth in 13 C.F.R. § 121.103 (Section 103) and rules set forth in 13 C.F.R. § 121.301 (Section 301). When Congress exempted certain business concerns from the affiliation rules for the PPP, it did so under the Section 103 rules. Yet, according to the SBA April 3 Interim Final Rule, it is, in fact, the Section 301 rules that govern affiliation for the PPP loan program (though the SBA explained that it would, consistent with the Congressional Section 103 waiver, also make that waiver applicable for Section 301).

Uncertainty in Application

As questions have arisen under these affiliation tests, borrowers who relied on them in submitting their application would be well advised to “double check” their analysis with appropriate counsel given the heightened scrutiny that will most certainly be applied in retrospective audits of PPP loan recipients. And, it is not just the application of the four bases of control that have given rise to questions of how the affiliation rules work, but the actual language of the CARES Act itself. In this regard, while the CARES Act clearly waives affiliation rules for “any business concern with not more than 500 employees that, as of the date on which the loan is disbursed, is assigned a North American Industry Classification System [(NAICS)] code beginning with 72,” the CARES Act itself has a separate and more expansive provision for NAICS code 72 companies allowing for more than 500 aggregate employees and which provides: “During the covered period, any business concern that employs not more than 500 employees per physical location of the business concern and that is assigned a North American Industry Classification System code beginning with 72 at the time of disbursal shall be eligible to receive a covered loan.” This seems to be clear and self-executing language. Indeed, both applicable House and Senate publicly available explanations of the CARES Act suggest as much, explaining that a qualifying borrower is “Any business concern that employs not more than 500 employees per physical location of the business concern and that is assigned a North American Industry Classification System code beginning with 72, for which the affiliation rules are waived” (emphasis supplied). But, nowhere has the SBA specifically addressed the question of how these two specific NAICS code 72 provisions of the CARES Act are to be applied in conjunction with one another. Even the SBA FAQs seem to intentionally avoid addressing this issue head-on, leaving borrowers at risk for after-the-fact second-guessing.

The Criminal Issue

Secretary Mnuchin referenced criminal liability for a reason. During the past two decades, for every major crisis this country has witnessed, from the Financial Crisis to Hurricane Katrina, high levels of fraud were identified and addressed post-crisis. From the experience gained in prior disasters, the Department of Justice and other enforcers are well aware that fraud may occur under the CARES Act as well. They almost certainly realize that a strong way to prevent such fraud is to take an early, aggressive stance against misconduct. We would predict that U.S. law enforcement will seek to make extreme examples of the individuals who exploited COVID-19-related government assistance improperly and precluded the assistance from helping those actually in need.

The underlying criminal issues relating to PPP loans are relatively straightforward. The loan application itself makes clear that applicants are required to state they qualify, and advises that there are criminal penalties for knowingly making false certifications. Each applicant, by signing the loan application, makes the following statements:
I further certify that the information provided in this application and the information provided in all supporting documents and forms is true and accurate in all material respects. I understand that knowingly making a false statement to obtain a guaranteed loan from SBA is punishable under the law, including under 18 USC 1001 and 3571 by imprisonment of not more than five years and/or a fine of up to $250,000; under 15 USC 645 by imprisonment of not more than two years and/or a fine of not more than $5,000; and, if submitted to a federally insured institution, under 18 USC 1014 by imprisonment of not more than thirty years and/or a fine of not more than $1,000,000.

This certification is essentially the same certification generally applicable to forms and information required by a bank or the government that involve applications for loans, grants or other financial assistance. The certification provides that if you knowingly mislead or lie on the application, you have committed a felony. However, the one completing such an application should endeavor in good faith to provide correct information. This means not simply guessing or blindly answering to expedite processing of the loan application or superficially making the certifications in question. In short, if you mislead in order to receive a PPP loan or lie to receive forgiveness, there is a material risk that the government will believe a felony has been committed.

As stated above, because of the intense pressure to protect the integrity of the PPP loan program and to deter widespread fraud, government enforcers may well use additional criminal statutes to prevent fraud on the United States and the banks. PPP-related prosecutions may involve the usual bank fraud, wire fraud and other common financial fraud statutes. These specific laws all have the common requisite element of deceit. Further, the government will clearly feel free to use whatever remedies possible to recover ill-gotten PPP money and assess related fines to make the U.S. taxpayers whole through various civil enforcement remedies. To avoid such criminal consequences, borrowers need to exercise their best efforts to provide the government with accurate information. There is no criminal liability for mistakes or inadvertent omissions, but when actions are judged retrospectively, trying to prove a lack of intent is not a situation any borrower would want to face. Of course, possible criminal prosecution is not the only redress or negative consequence that wrongful borrowers may face. There are, for example, civil penalties and actions that can be pursued by regulatory or government authorities, qui tam actions, and possible stockholder or equity holders claims against boards or managers, not to mention the potential negative press.

In Sum – This Much is Clear – Double Check, Document and Be Careful Either Way

It would not be surprising or unreasonable for business owners to ask how they are supposed to act with any comfort as to PPP loans given all the uncertainty noted above, with the Treasury Secretary highlighting criminal penalties in relation to improper applications, and with a new “safe harbor” loan “give back” period running only until May 7. It also would not be surprising to see those borrowers who can find a way to make it without the PPP loan decide to return PPP loan proceeds (or not accept funds that have been approved but not yet been received) — even when they have been truly harmed by the COVID-19 pandemic, even when they have always intended to use the loan to keep employees paid exactly as intended by the CARES Act, and even when they believe they qualify for the PPP loan. What is clear from all of the above is that not much is truly clear with respect to the eligibility criteria and certification requirements for PPP loans. What also seems clear — including from the most recent SBA rules issued April 30 stating that the maximum loan amount for a related corporate group will be limited to $20 million — is that loans (even big loans) for qualifying firms are legitimate.

Some Practical Points

Finally, those borrowers who ultimately elect to keep their loans should strongly consider working with counsel to create a contemporaneous, written record to support their certifications or their current decisions to keep those loans based on the certifications that were made at the time of the loan application. There are two key inquiries. First, the borrower should review compliance with the affiliation rules to support the eligibility certification. Second, the borrower should review support for its “necessity” certification, considering (for example) the following questions:

  • What were the specific facts and circumstances showing that the applicant bore financial hardship and faced material economic uncertainty?
  • Did the applicant consider its ability to access capital, including conducting discussions with those who were in a position to provide capital such as the applicant’s current lender(s) and equity holders?
  • Did the applicant prepare a forecast projecting its liquidity position and effect on the operations of not obtaining a PPP loan and that would demonstrate that the loan was necessary to support the ongoing operations of the borrower? Alternatively, did the borrower conduct any other financial review in connection with such certification?

Best practices would then have the foregoing crisply documented and reviewed and approved by the borrower’s board or other governing body. The written record should demonstrate that a bona fide, good-faith effort was undertaken to support the certifications truthfully. If this exercise cannot produce a defensible written record, then the prudent decision may be to return the loan proceeds, ideally before elapse of the grace period for doing so.

Authored by: Trevor J. Chaplick, Peter H. Lieberman & Nathan J. Muyskens  of Greenberg Traurig, LLP

 

©2020 Greenberg Traurig, LLP. All rights reserved.

The COVID-19 Pandemic and Your Company’s Corporate Disclosures: Key Takeaways from the SEC’s Recently Issued Guidance

The SEC Division of Corporation Finance (the “Division”) recently issued guidance to highlight some of the COVID-19 pandemic-related considerations companies need to bear in mind as they prepare their corporate disclosures. The guidance included three main topics: (1) disclosing the ways COVID-19 may affect the company, both now and in the future; (2) refraining from trading on material, non-public information about the company until that information is publicly disclosed; and (3) reporting company financial information when GAAP financial measures are unavailable. The guidance emphasizes that health and safety are the first priority and should not be compromised to meet reporting requirements.

Takeaways from each topic are outlined below. The full guidance is available here on the SEC website.

Assessing and Disclosing the Evolving Impact of COVID-19

Companies should disclose the effects and risks of COVID-19 as part of their upcoming disclosures. Disclosure of COVID-19-related effects and risks could be included in management’s discussion and analysis, the business section, risk factors, legal proceedings, disclosure controls and procedures, internal control over financial reporting, and the financial statements.

The guidance includes questions designed to encourage companies to consider all the possible ways COVID-19 affects their current and future operations. Generally, companies are asked to assess and disclose the effects COVID-19 has had on a company, what management expects its future impact will be, how it is responding to evolving events, and how it is planning for COVID-19-related uncertainties. A company should disclose if COVID-19 is expected to impact future operations differently than how it affected the current period.

Before assembling COVID-19-related disclosures, management should read through and analyze the full set of questions included in the guidance. Companies are encouraged to provide disclosures that allow investors to evaluate the current and expected impact of COVID-19 through the eyes of management.  Additionally, companies should proactively revise and update disclosures as facts and circumstances change.

Need to Refrain from Trading Prior to Dissemination of Material Non-Public Information

Where COVID-19 has affected a company in a way that would be material to investors or where a company has become aware of a risk related to COVID-19 that would be material to investors, the company, its directors and officers, and other corporate insiders who are aware of these matters should refrain from trading in the company’s securities until such information is disclosed to the public. Further, companies need to consider whether they may need to revisit, refresh, or update previous disclosures to the extent that the information has become materially inaccurate.

Reporting Earnings and Financial Results

The Division recognizes that the impact of COVID-19 may present a number of novel or complex accounting issues that may take time to resolve. These complexities may make it necessary to present a non-GAAP financial measure in company reporting. Companies should not use non-GAAP financial measures or metrics to present a more favorable view of the company. Disclosures should only include those non-GAAP financial measures a company is using to report financial results to the Board of Directors.

Companies should reconcile any non-GAAP financial measures to preliminary GAAP results that either include provisional figures based on a reasonable estimate, or a reasonable range of GAAP results. A non-GAAP financial measure should not be disclosed more prominently than the most directly comparable GAAP financial measure or range of GAAP measures. Companies should additionally disclose why the line item or accounting is incomplete, and what additional information or analysis may be needed to complete the accounting. In filings where GAAP financial statements are required, such as filings on Form 10-K or 10-Q, companies should reconcile to GAAP results and not include provisional amounts or a range of estimated results.

Copyright © 2020 Ryley Carlock & Applewhite. A Professional Association. All Rights Reserved.

For more on the SEC’s COVID-19 response, please see the National Law Review Coronavirus News page.

SEC Emphasizes Anti-Fraud Protections During COVID-19 Pandemic

On March 23, 2020, the co-directors of the Division of Enforcement of the U.S. Securities and Exchange Commission (SEC) issued a statement regarding market integrity during the COVID-19 pandemic[1].  Specifically, the statement serves to remind public companies of their obligations to maintain disclosure controls and procedures regarding material nonpublic information. The SEC has worked to accommodate disclosure filing deadlines due to the extenuating circumstances. This nonpublic information may be even more valuable now than during times of regular business operations. Because of this, the statement explains, public disclosures that normally occur through filings may be delayed[2], which could give rise to the potential to abuse the nonpublic information due the extended filing period.

The obligation to maintain the confidentiality of nonpublic information, giving rise to what is commonly called “insider trading”, has been heightened recently with allegations that some members of Congress may have sold stocks after early briefings on the business impact of COVID-19. This is not the only time in recent history where members of government have been accused of profiting based on classified or nonpublic briefings. As a result, the SEC has emphasized its commitment to robust investigation and enforcement of its rules and regulations.

It is important to note that the antifraud provisions of securities laws and regulations apply not only to publicly-held companies, but also privately-held “exempt” securities offerings. Additionally, this covers not just equity (stock or partnership/LLC ownership) but debt securities offerings as well. Private companies offering securities during this time of economic uncertainty need to ensure that any disclosures made to potential investors are straightforward and truthful. The SEC has broad investigative powers to investigate false or misleading statements made by private issuers of securities. This applies to statements made orally or in writing and to omission of material information from communications relating to offerings (in addition to the making of false or misleading statements). Keep in mind that the SEC’s antifraud rules carry steep civil and criminal penalties for violation of these rules.

Entrepreneurship and start-up activity has recently been growing at a healthy pace, and there is no doubt that the challenges presented by COVID-19 will spur new start-ups and economic activity relating to the pandemic in a variety of market sectors, from medical and consumer devices to services. At the same time, the pandemic will also present challenges to many existing early stage business ventures. During this extraordinary time, businesses should be careful to check the validity and accuracy of information disclosed to potential investors. We will continue to work with clients to ensure that accurate and complete material information is disclosed to investors.

________________________

[1] https://www.sec.gov/news/public-statement/statement-enforcement-co-direc….

[2] https://www.sec.gov/rules/other/2020/34-88318.pdf.

© 2020 Davis|Kuelthau, s.c. All Rights Reserved

Under Siege from the SEC, Steven Seagal Ponies Up to Settle Charges for Promoting an Initial Coin Offering

Steven Seagal just learned the hard way that, unlike the title of his 1988 police action movie, he is not Above the Law. Unfortunately for the prolific action movie star, the SEC took notice of his recent actions and was Out for Justice. In order to avoid a Maximum Conviction, the SEC recently announced that Seagal made the Executive Decision to settle charges brought by the agency related to the actor’s failure to disclose the nature, scope, and amount of compensation he received for promoting an investment in an initial coin offering (ICO) conducted by Bitcoiin2Gen.

The SEC has taken the position that cryptocurrency coins/tokens may qualify as “securities,” and celebrities or other individuals who promote cryptocurrency may run afoul of the federal securities laws if they fail to make adequate disclosures of the compensation they received in exchange for the promotion. One could think of this as a Code of Honor, but the SEC calls it the anti-touting provisions of the Securities Act of 1933. Specifically, Section 17(b) states:

It shall be unlawful for any person . . . to publish, give publicity to, or circulate any notice . . . or communication which, though not purporting to offer a security for sale, describes such security for a consideration received or to be received, directly or indirectly, from an issuer, underwriter, or dealer, without fully disclosing the receipt, whether past or prospective, of such consideration and the amount thereof.

This broad language makes the anti-touting provision The Perfect Weapon for the SEC to go after issuers who seek to use well-known individuals to promote risky cryptocurrency products to vulnerable populations. Indeed, the SEC has previously used this provision to go after other celebrities for similar conduct, including boxer Floyd Mayweather Jr. and music producer DJ Khaled.

Seagal found himself in the Belly of the Beast when he promoted the ICO on his social media accounts and issued a press release titled “Zen Master Steven Seagal Has Become the Brand Ambassador of Bitcoiin2Gen.” He also permitted the company to issue a press release that included a quote demonstrating his strong endorsement. In exchange for this publicity, Seagal was promised $250,000 in cash and $750,000 of the company’s coins.

As a result of the settlement, Seagal was ordered to pay over $330,000 in disgorgement, civil penalties, and interest. Seagal also agreed not to promote any security for a period of three years. With Exit Wounds this severe for the well-known movie star, this case should serve as a stark reminder that the SEC is committed to examining all aspects of ICOs and cryptocurrencies with a careful eye. If the SEC catches wind of similar conduct by other celebrities, future cases could be Hard to Kill.

© 2020 Faegre Drinker Biddle & Reath LLP. All Rights Reserved.

For more on the SEC Segal settlement see the National Law Review Securities & SEC law section.

SEC Examiners Release Cyber Observations: What You Need To Know

On January 27, 2020, the SEC’s Office of Compliance Inspections and Examinations (OCIE) announced its most recent Cybersecurity and Resiliency Observations. This report highlights specific practices that have been, and can be taken to enhance cybersecurity preparedness and incident response. The release of these observations is the latest move by the SEC demonstrating its increased attention to corporate cybersecurity practices. If you are a market participant supervised by OCIE, you may want to consider this report a benchmark to help navigate the SEC’s expectations when reviewing internal cybersecurity programs. The SEC has indicated that cybersecurity compliance and procedures remain a top priority—and they should be for you too.

OCIE Cybersecurity and Resiliency Observations

The OCIE, which reviews the effectiveness of market participants’ compliance programs, focused on seven areas in the cybersecurity report: governance and risk management; access rights and controls; data loss prevention; mobile security; incident response and resiliency; vendor management; and training and awareness. OCIE explained that it “felt it was critical to share these observations in order to allow organizations the opportunity to reflect on their own cyber-security practices.”

OCIE made clear that the most effective cybersecurity programs were those with proactive senior leaders committed to improving their organization’s cyber posture before an incident occurs. “Devoting appropriate board and senior leadership attention to setting strategy of and overseeing the organization’s cybersecurity and resiliency programs,” was a key observation.

Preventing data loss is a perennial focus of cybersecurity programs. OCIE observed a variety of tools and practices to ensure that sensitive data, including client information, was not lost, misused, or accessed by unauthorized users. These included frequent vulnerability scans of software and devices, utilizing encryption, keeping software patched with the latest updates, and monitoring for insider threats. On that last point, OCIE observed companies creating insider threat programs to identify specious behaviors, including escalating issues to senior leadership as appropriate.

Consistent with cybersecurity guidance from other sources but relatively new from the SEC, the report highlighted the risks associated with mobile devices, urging the implementation of security measures to prevent unauthorized access to sensitive systems. As corporate employees increasingly rely on mobile devices for work, the amount of sensitive data stored on those devices continues to grow, creating unique security concerns. OCIE observed companies implementing security measures that prevent users from saving sensitive information to personally owned devices and maintaining the ability to remotely clear data on employees’ devices, if necessary.

Addressing vendor management, OCIE underscored the increased risk related to vendor use of cloud services and the importance of due diligence when selecting vendors. Lastly, and arguably the most important topics addressed were incident response and training. OCIE stressed that market participants should be consistently testing and updating their incident response plans and training employees to identify and respond to cyber threats. These seven areas of focus provide important guidance for market participants regarding the expectations of OCIE examiners when conducting reviews.

Takeaways

With the release of the 2020 observations, the SEC continues to send the clear message that it expects market participants to not only respond timely and responsibly to cyber incidents, but also to proactively implement mitigation policies to reduce threats. Importantly, OCIE recognized that there is no one-size-fits-all approach.

Every organization should develop incident response plans that are tailored to their unique circumstances. Regulators continue to emphasize that is not enough to simply have policies on the books—companies must routinely update and practice those plans. Senior leaders should be involved in that process and should be prepared for the SEC and other regulators to closely examine their plans and other internal security protocols. Failure to do so is not only a regulatory issue, but creates private litigation risk.

The SEC is paying attention to and reiterating a common cybersecurity compliance roadmap: develop and implement cybersecurity plans to reduce risks, be prepared for regulatory scrutiny that may follow a cybersecurity incident, conduct staff training, and be prepared to respond to cybersecurity incidents.

© 2020 Bracewell LLP

Securities Class Action Filings Reach Record Levels in 2019

Securities fraud class action filings accelerated in 2019, according to a report released today by Cornerstone Research and the Stanford Law School Securities Class Action Clearinghouse. The report, Securities Class Action Filings—2019 Year in Reviewfinds that filing activity remains elevated well above historical levels by several key measures.

For the third year in a row, plaintiffs filed more than 400 securities class actions. In 2019, there were 428 securities class actions across federal and state courts—the highest number on record—with 268 core filings and 160 M&A filings. This marks a historic high for core filings, surpassing even 2008 when class actions peaked in response to financial market volatility. Market capitalization losses in 2019 eclipsed $1 trillion for the second consecutive year.

The combined number of filings with 1933 Act claims in federal and state courts reached unprecedented levels.

The likelihood of core filings targeting companies listed on U.S. exchanges was also at its highest in 2019. This measure reached new levels due to the record number of filings, as well as an extended decline in the number of public companies over the last 15 years.

The impact of the U.S. Supreme Court’s 2018 decision in Cyan Inc. v. Beaver County Employees Retirement Fund continues to reverberate. The report, which includes expanded data on state court filings from 2010 to 2019, found that Securities Act of 1933 claims in state courts rose to 49 in 2019, a 40% increase from the previous year. Almost half of these had parallel actions in federal court.

“The increase in state court Section 11 filings under the 1933 Act has caused a sharp jump in the cost of D&O insurance for companies going public,” said Joseph A. Grundfest, director of the Stanford Law School Securities Class Action Clearinghouse. “Many IPO issuers have adopted rules that would move this litigation back to federal courts where these claims have traditionally been resolved. The enforceability of these provisions, however, has been challenged, and the IPO market is awaiting a decision by the Delaware Supreme Court that will likely define the contours of federal securities fraud litigation for years to come. That decision will likely be handed down before the end of April.”

Key Trends

  • Both Disclosure Dollar Loss (DDL) and Maximum Dollar Loss (MDL) decreased in 2019. DDL fell by 14% to $285 billion, and MDL by 9% to $1,199 billion as the size of the typical filing decreased.
  • Combined core federal filings in the Technology and Communication sectors grew by almost a third from 2018 and have more than doubled since 2017.
  • Second Circuit core federal filings increased to 103, the highest number on record. The Ninth Circuit’s core federal filings decreased by 25% to 52 filings.
  • Core federal filings against companies headquartered outside the United States increased to 57, the highest total on record. The likelihood of a core federal filing against a non-U.S. company increased from 4.8% to 5.6% from 2018 to 2019.
  • Beginning in the latter part of 2018, companies with connections to the cannabis industry were increasingly the target of federal class action filings. There were six such filings in 2018 and 13 in 2019.

Cyan Inc. v. Beaver County Employees Retirement Fund

In March 2018, the U.S. Supreme Court issued a unanimous opinion allowing plaintiffs to assert claims under the Securities Act of 1933 (1933 Act) in state courts. Under the 1933 Act, Section 11 allows investors to pursue damages for alleged misrepresentations or omissions in securities registration statements. It is generally believed that the ruling will lead to more securities class action filings in state courts based on this claim.

Read an excerpt of the report on 1933 Act Filings.

Read the report, Securities Class Action Filings—2019 Year in Review.

Figure 4 Securities Class Action Cornerstone Research

Copyright ©2020 Cornerstone Research

For more SEC litigation & regulation, see the National Law Review Securities & SEC section.

Are Culpable Whistleblowers Eligible to Receive SEC Whistleblower Awards?

Yes. In many circumstances, culpable whistleblowers are eligible to receive SEC whistleblowers awards (see limitations below). The final rules of the SEC Whistleblower Program recognize that culpable whistleblowers enhance the SEC’s ability to detect violations of the federal securities laws, increase the effectiveness and efficiency of the SEC’s investigations, and provide critical evidence for the SEC’s enforcement actions. In fact, a speech by the former Director of the SEC’s Division of Enforcement highlighted the importance of culpable whistleblowers to the agency’s enforcement efforts:

Finally, I want to say a word about participants in wrongdoing and their ability to be whistleblowers. It is important for participants in misconduct to understand that, in many circumstances, they are eligible for awards and we would like to hear from them. Obviously, culpable insiders with first-hand knowledge of misconduct can provide valuable information and assistance in identifying participants in, transactions relating to, and proceeds of, fraudulent schemes. And, while there are safeguards built into the program to ensure that whistleblowers do not profit from their own misconduct…culpable whistleblowers can still get paid for eligible information they report that falls outside of these limitations.

SEC Whistleblower Awards to Culpable Whistleblowers

The SEC Whistleblower Program’s decision to work with, and award, culpable whistleblowers has proven to be effective in enabling the SEC to discover fraud and protect investors. To date, the SEC has issued several awards to whistleblowers who had some culpability in the violations, including:

  • On August 30, 2016, the SEC announced a $22 million award to a whistleblower who helped the agency “halt a well-hidden fraud” at the company where the whistleblower worked. The accompanying order states that the Commission considered several factors mitigating the whistleblower’s culpability in determining the appropriate percentage, but the whistleblower did not financially benefit from the misconduct.
  • On July 27, 2017, the SEC announced a $1.7 million award to a whistleblower who helped the Commission stop a “serious, multi-year fraud that would have otherwise been difficult to detect.” There were a few mitigating factors in the Commission’s determination of the whistleblower’s final award, including the fact that the whistleblower did not comply with one of the SEC’s rules, an omission which normally requires an award denial. The order stated that “certain unusual circumstances” governed this case, thus the Commission decided to waive that requirement. In determining the award amount, the Commission considered, too, the fact that the whistleblower unreasonably delayed in reporting and ultimately bore “some, albeit limited, culpability” in the fraud.
  • On September 14, 2018, the SEC announced it had reduced a whistleblower’s award to $1.5 million because the Commission found that the whistleblower unreasonably delayed in reporting the fraud, the whistleblower “received a significant and direct financial benefit,” and was culpable in the scheme. The order further details these determining factors, and explains that the whistleblower waited more than a year after learning of the facts to report the fraud and reported to the Commission only after learning of the ongoing investigation.

See additional SEC whistleblower cases that have resulted in multi-million dollar awards.

Limitations on SEC Whistleblower Awards to Culpable Whistleblowers

While the SEC has been clear that it welcomes information from culpable whistleblowers, the SEC Whistleblower Program has specific rules that could disqualify certain whistleblowers from receiving SEC whistleblower awards. In addition, the program has rules that could limit the size of a culpable whistleblower’s future SEC whistleblower award. Importantly, whistleblowers who are concerned about potential liability should consult with experienced SEC whistleblower attorneys before reporting information to the SEC Office of the Whistleblower. Once information is submitted to the SEC, it cannot be withdrawn.

Whistleblowers Cannot Be Convicted of a Criminal Violation

The SEC Office of the Whistleblower will not issue awards to whistleblowers who are convicted of a criminal violation in relation to an action for which they would otherwise be eligible for an award. Moreover, the SEC Whistleblower Program does not provide amnesty to whistleblowers who provide information to the SEC. The fact that a whistleblower reports information to the SEC and assists in an SEC investigation and enforcement action does not preclude the SEC from bringing an action against the whistleblower based upon their own conduct in connection with violations of the federal securities laws. If such an action is determined to be appropriate, however, the SEC will take the whistleblower’s cooperation into consideration. As noted in the speech of the former Director of the SEC’s Division of Enforcement: “There are also other potential benefits for culpable whistleblowers — in appropriate circumstances, we will take their cooperation under the whistleblower program and in our investigation into consideration in deciding what remedies, if any, are appropriate in any action we determine should be brought against the whistleblowers for their role in the scheme.”

Culpable Whistleblowers Cannot Benefit from Their Own Misconduct

Under the SEC Whistleblower Program, the SEC will issue awards to whistleblowers who provide original information that leads to enforcement actions with total monetary sanctions in excess of $1 million. A whistleblower may receive an award of between 10-30 percent of the monetary sanctions collected. Since 2011, the SEC Whistleblower Office has issued nearly $400 million in awards to whistleblowers. The largest SEC whistleblower awards to date are a $50 million award, a $39 million award, and a $37 million award.

While the SEC is permitted to issue awards to culpable whistleblowers, the rules of the SEC Whistleblower Program do not allow whistleblowers to benefit from their own misconduct. Specifically, for purposes of determining whether the $1 million threshold has been satisfied or calculating the amount of an award, the SEC will not count any monetary sanctions that the whistleblower is ordered to pay or that are ordered to be paid against any entity whose liability is based substantially on conduct that the whistleblower directed, planned, or initiated.

Culpability May Decrease the Size of an Award

In determining the percentage of monetary sanctions to award a whistleblower, the SEC considers various factors that may increase or decrease the size of a whistleblower’s award. One of the factors that may decrease the size of an award is the whistleblower’s culpability in the securities law violation. When making this determination, the SEC may consider the following factors:

  • the whistleblower’s position or responsibility at the time the violations occurred;
  • if the whistleblower acted with scienter, both generally and in relation to others who participated in the violations;
  • if the whistleblower is a recidivist;
  • the egregiousness of the fraud committed by the whistleblower;
  • whether the whistleblower financially benefitted from the scheme; and
  • whether the whistleblower knowingly interfered with the SEC’s investigation.

Notably, while culpability may reduce a whistleblower’s award percentage, any whistleblower who qualifies for an award under the SEC Whistleblower Program – including culpable whistleblowers – will receive at least 10% of the monetary sanctions collected in the enforcement action.

© 2020 Zuckerman Law

For more on whistleblower rules, see the National Law Review Securities & SEC laws section.