National Futures Association: Proposed Interpretive Notice "NFA Compliance Rule 2-9: CPO Internal Controls Systems "

Similar documents
National Futures Association: Proposed Interpretive Notice: Disclosure Requirements for NFA Members Engaging in Virtual Currency Activities

PROPOSED AMENDMENTS (additions are underscored and deletions are stricken through) FINANCIAL REQUIREMENTS * * *

PROPOSED AMENDMENTS (additions are underscored and deletions are stricken through) INTERPRETIVE NOTICES

NATIONAL FUTURES ASSOCIATON

PROPOSED AMENDMENTS (additions are underscored and deletions are stricken through) INTERPRETIVE NOTICES * * *

December 12, Via Federal Express

Re: National Futures Association: Late Disciplinary Disclosure Fees - Proposed Amendments to NFA Registration Rules 203 and 210*

PROPOSED AMENDMENTS (additions are underscored and deletions are stricken through)) BYLAWS OF NATIONAL FUTURES ASSOCIATION * * * CHAPTER 13

September 7, Via Federal Express

CPO Compliance Series: Conducting Business with Non-NFA Members (NFA Bylaw 1101) (Part One of Three)

PROPOSED AMENDMENTS (additions are underscored and deletions are stricken through) FINANCIAL REQUIREMENTS

PROPOSED AMENDMENTS (additions are underscored and deletions are stricken through) COMPLIANCE RULES * * *

AGENCY: Commodity Futures Trading Commission. SUMMARY: The Commodity Futures Trading Commission (Commission or CFTC) is

PROPOSED AMENDMENTS (additions are underscored and deletions are stricken through)) INTERPRETIVE NOTICES ***

CPO Compliance Series: Registration Obligations of Principals and Associated Persons (Part Three of Three)

Client Update Final CFTC Rules on Aggregation of Positions

August 27, Dear Mr. Stawik:

January 19, CBOE Futures Exchange, LLC Rule Certification Submission Number CFE

May 12, CBOE Futures Exchange, LLC Rule Certification Submission Number CFE

Request for No-Action Relief with Regard to Commodity Exchange Act Sections 4d and 4n and Commission Rule 3.10

Pursuant to its Order of Registration as a Derivatives Clearing Organization, Nadex (formerly HedgeStreet, Inc.)

September 14, Proposed Rulemaking (RIN 3038-AC82) to Create a Separate Account Class for Customer Positions in Cleared OTC Derivatives

LCH Limited Self Certification: Rule changes related to the identification to LCH of a client s backup Clearing Member(s)

New Wash Trade FAQ Submission Pursuant to Section 5c(c)(1) of the Act and Regulation 40.6(a)

K&L GATES LLP 2013 NEW YORK INVESTMENT MANAGEMENT CONFERENCE

December 14, Cboe Futures Exchange, LLC Rule Certification Submission Number CFE Dear Mr. Kirkpatrick:

INVESTMENT POLICY SAN JOAQUIN COUNCIL OF GOVERNMENTS January 22, 2015 I. INTRODUCTION

North American Derivatives Exchange, Inc., 311 South Wacker Drive, Suite 2675, Chicago, IL 60606

June 8, v1

August 5, Via CFTC Portal Submissions

October 31, CBOE Futures Exchange, LLC Rule Certification Submission Number CFE

File Number S ; Custody of Funds or Securities of Clients by Investment Advisers

Re: Request to Division of Market Oversight Staff for Interpretive Guidance or Extension of No-Action Relief re: CDS Clearing-Related Swaps

U.S. COMMODITY FUTURES TRADING COMMISSION

April 24, Re: Interim Final Rule on Swap Data Repositories - Access to SDR Data by Market Participants (RIN 3038-AE14)

Scott Brindley Principal Consultant ACA Compliance Group. Cary J. Meer Partner K&L Gates LLP

Rule Self-Certification

September 14, Dear Mr. Kirkpatrick:

February 22, RIN 3038 AD20 -- Swap Data Repositories. Dear Mr. Stawick:

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II CSE

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II

COMMODITY FUTURES TRADING COMMISSION. Written Acknowledgment of Customer Funds from Federal Reserve Banks

AGENCY: Commodity Futures Trading Commission. SUMMARY: The Commodity Futures Trading Commission (Commission or CFTC) is

CFTC Staff Responds to FAQs Regarding Rescission/Modification of CPO/CTA Registration Exemptions

COMMODITY FUTURES TRADING COMMISSION. Commission Merchants and Derivatives Clearing Organizations; Correction

LCH Aldgate House 33 Aldgate High Street London EC3N 1EA T: +44 (0) F: +44 (0) lch.com

Securities Industry Association. June 5, 2006 VIA FEDERAL EXPRESS

Rule Self-Certification

U.S. COMMODITY FUTURES TRADING COMMISSION

Significant Changes to CFTC Regulations Impacting Registered Investment Companies

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II

NFA Self-Exam Checklist - Futures Commission Merchants (FCMs Only)

INTRODUCTION REQUIRED DISCLOSURES AND HELPFUL INFORMATION

January 24, To Our Clients and Friends:

CBOE Futures Exchange, LLC Rule Certification Submission Number CFE

COMMODITY FUTURES TRADING COMMISSION. Order Exempting the Federal Reserve Banks from Sections 4d and 22 of the

FOCUS REPORT (FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT) PART II 11

September 12, CBOE Futures Exchange, LLC Rule Certification Submission Number CFE Dear Mr. Kirkpatrick:

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II CSE

Rule Self-Certification

NFA Self-Exam Checklist - General (All Firms Complete)

CFTC Part 4 Exemption Easy Reference Guide. Click on the exemption type for more information on how to file and requirements for each exemption.

Proposed Guidance for Certain Natural Gas and Electric Power Contracts (RIN3235-AL93)

January 5, CBOE Futures Exchange, LLC Rule Certification Submission Number CFE

Re: RIN 3038 AD51 - Notice of Proposed Rulemaking - Customer Clearing Documentation and Timing of Acceptance for Clearing (76 Fed. Reg.

Walid Khuri, Robert M. McLauglin, David S. Mitchell and David W. Selden

FOCUS REPORT (FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT) PART II 11

Chapter 5. Commodity Pools

August 13, De Minimis Exception to the Swap Dealer Definition (RIN 3038 AE68)

An investment organization dedicated to managing

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II CSE

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II CSE

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II CSE

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II CSE

Re: Request for Division of Market Oversight to No-action Relief for SDR Reporting Requirements for Swaps Cleared by Exempt and No-Action DCOs

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II CSE

SUPPLEMENT TO FINANCIAL AND OPERATIONAL COMBINED UNIFORM SINGLE REPORT PART II CSE

Investment Management Alert

Revision date: September 21, 2018 Responsible Agent(s): Controller and Treasurer Original effective date: Scope: All Campuses

Dave Banerjee, CPA. Speaker Media Kit July 2015

Request for Relief Relating to Certain Foreign Exchange Transactions

CPO/CTA Capital Requirement and Customer Protection Measures

FIA Webinar: Understanding Regulation AT December 16, 2015

U.S. COMMODITY FUTURES TRADING COMMISSION

U.S. COMMODITY FUTURES TRADING COMMISSION

December 19, Dear Mr. Kirkpatrick:

and ) NFA Case No. 08-BCC-021 LEILI (NFA ld #382384), Respondents. ) 1. At all times relevant to this Complaint, Washington Asset was an NFA Member

Value This! Hot Topics in Valuation for Investment Advisers. Fall 2017

17 CFR Part 45. Dear Mr. McGonagle:

Safeguarding the Integrity of the Derivatives Markets

POWERSHARES DB US DOLLAR INDEX BULLISH FUND (A Series of PowerShares DB US Dollar Index Trust) (Exact name of Registrant as specified in its charter)

POWERSHARES DB US DOLLAR INDEX BULLISH FUND (A Series of PowerShares DB US Dollar Index Trust) (Exact name of Registrant as specified in its charter)

Securities and Derivatives Examination Procedures

Petty Cash Policies and Procedures

Transcription:

December 10, 2018 Via Federal Express Mr. Christopher J. Kirkpatrick Secretary Office of the Secretariat Commodity Futures Trading Commission Three Lafayette Centre 1155 21st Street, N.W. Washington, DC 20581 Re: National Futures Association: Proposed Interpretive Notice "NFA Compliance Rule 2-9: CPO Internal Controls Systems " Dear Mr. Kirkpatrick: Pursuant to Section 17(j) of the Commodity Exchange Act ("CEA"), as amended, National Futures Association ( NFA ) hereby submits to the Commodity Futures Trading Commission ( CFTC or Commission ) the proposed adoption of the Interpretive Notice entitled NFA Compliance Rule 2-9: CPO Internal Controls Systems ("Interpretive Notice"). NFA s Board of Directors ( Board ) unanimously approved the adoption of this Interpretive Notice on November 15, 2018. NFA is invoking the "ten-day" provision of Section 17(j) of the CEA and plans to make this Interpretive Notice effective ten days after receipt of this submission by the Commission unless the Commission notifies NFA that the Commission has determined to review the proposed Interpretive Notice for approval. PROPOSED INTERPRETIVE NOTICE (additions are underscored) NATIONAL FUTURES ASSOCIATON * * * INTERPRETIVE NOTICES * * * NFA COMPLIANCE RULE 2-9: CPO INTERNAL CONTROLS SYSTEM

INTRODUCTION NFA Compliance Rule 2-9 places a continuing responsibility on every Member to diligently supervise its employees and agents in all aspects of their commodity interest activities. For those Members that have control over customer funds, these supervisory obligations include developing a framework that deters errors and fraudulent activity by employees, management and third parties in order to safeguard customer funds, produces financial reports that are timely, accurate and reliable and maintains full compliance with all regulatory requirements addressing the control of those funds. Since an adequate internal controls system is the foundation for building that framework, NFA's Board of Directors (Board) believes that it is essential for CPO Members, which handle customer funds, to have an adequate system of internal controls in order to meet their supervisory obligations under Compliance Rule 2-9. Therefore, the Board has determined that each CPO Member must implement an internal controls system that is designed to deter fraudulent activity by employees, management, and third parties in order to address the safety of customer funds and provide reasonable assurance that a CPO's commodity pool's financial reports are reliable and that the Member is in compliance with all CFTC and NFA requirements. NFA recognizes that, given the differences in the size and complexity of the operations of CPO Members, including the number of persons employed by the CPO, there must be some degree of flexibility in determining what constitutes an adequate internal controls system. NFA also recognizes that some CPO Members are subject to related requirements of other regulators and have designed processes and controls in accordance with those Requirements. Compliance with those requirements by a CPO Member, and in some instances the CPO's pool and/or service provider, may satisfy a CPO Member's supervisory obligations under Compliance Rule 2-9 to have an adequate system of internal controls. The purpose of this Notice is to provide CPO Members with guidance on designing and implementing an adequate internal controls system and the minimum components that must be included. Each CPO Member, however, must conduct its own review to identify any other areas that should be included in the CPO's internal controls system based on the CPO's size, operations and activities. INTERNAL CONTROLS SYSTEM In order to implement an adequate internal controls system, the CPO must have a strong control environment. As a starting point, the CPO must adopt and implement written policies and procedures reasonably designed to ensure the CPO's operations are in compliance with applicable NFA rules and CFTC regulations. Additionally, management must demonstrate its commitment to integrity and ethical values and 2

emphasize the importance of establishing and following the internal controls. 1 The CPO should also have written policies and procedures that fully explain the CPO's internal controls framework, and describe the CPO's supervisory system, which should be reasonably designed to ensure that the policies and procedures are diligently followed by all employees. No employee, including senior management, should inappropriately circumvent the firm's internal controls system. Each firm should have an escalation policy in place for employees to report to the CPO's senior management if they believe individuals have attempted to improperly override the CPO's internal controls system in any respect. The firm's escalation procedures should also address whether and when a matter should be reported to the firm's regulator. In developing and implementing the particular controls, the CPO should conduct a risk assessment to see where its most critical risks arise, and then design and implement controls to address those risks. This is not a one-time assessment and should be completed periodically to take into account new risks that may arise especially with any changes in the firm's business or operations. Moreover, the CPO should monitor the effectiveness of implemented controls to ensure that the controls function properly and make adjustments where necessary. There is one internal controls procedure that is widely accepted as a key control activity regardless of the risk area and that is separation of duties. Separation of Duties A CPO's internal controls system should require, when possible, appropriate segregation of duties designed to ensure that no single employee is in a position to carry out and conceal errors or fraud or have control over any two phases of a transaction or operation that are covered by this Interpretive Notice. To the extent possible, persons who perform the day-to-day functions in areas involving the handling of pool funds, trade execution activities, financial records and risk management should be different from the persons who supervise those functions. In those instances where supervisors also handle day-to-day functions, one of the CPO's principals or other appropriate supervisory person should periodically review the supervisor's work in material areas. Generally, in order to ensure proper segregation of duties, whenever possible, the CPO should require that: 1 The internal controls system should be supported by strong information technology controls operating within the firm's Information Systems Security Program (ISSP). NFA Interpretive Notice 9070 NFA Compliance Rules 2-9, 2-36 and 2-49: Information Systems Security Programs requires all NFA Members to establish and implement a governance framework that supports the firm in identifying and managing information security risks and to adopt and enforce a written ISSP, appropriate to its circumstances, to secure customer data and access to the firm's electronic systems. 3

Duties are assigned to different employees in a manner, or there are appropriate automated controls, that ensure that there is regular cross-checking of the work performed in material areas; Operational functions relating to the custody of pool assets should be separated from financial reporting functions such as recordkeeping/accounting for the assets; and In the pool funds area (e.g., subscriptions, transfers and redemptions), no one person should be responsible for initiating a transaction, approving the transaction, recording the transaction and reconciling the account to third party documentation and information. Risk Assessment Although each CPO Member should conduct its own risk assessment, there are a number of risk areas that are generally applicable to the business operations of most CPOs. Set forth below is a discussion of those risk areas and control activities that would form the basis of an adequate internal control system. A. Pool Subscriptions, Redemptions and Transfers A strong internal controls system should be designed to provide reasonable assurance that the CPO is continually in compliance with the requirements related to pool subscriptions, redemptions and pool transfers and has appropriate controls in place to safeguard participant and pool assets. Among other things, these controls should include: Verification that pool investments are held in accounts properly titled with the pool's name and are not commingled with the assets of any other person (this is also an appropriate control for risk management and investment and valuation of pools funds); Reconciliation (on a periodic basis) of transactions between the pool's general ledger, banks and other third party depositories (this is also an appropriate control for risk management and investment and valuation of pools funds); Authorization of redemptions, including verification that the request is made by a participant, adequate funds are available, the proper Net Asset Value has been calculated (e.g., fee calculations and profit and loss allocations) and amount of funds is released, and timely payment is made to a pool participant or authorized third party; and 4

Verification that transactions involving pool funds do not violate NFA Compliance Rule 2-45, Prohibition of Loans by Commodity Pools to CPOs and Affiliated Entities. B. Risk Management and Investment and Valuation of Pool Funds The investment activity carried out by the firm and the pools it operates is also a high risk area. The CPO should have a risk management program that emphasizes the importance of the firm's business principals or trading principals playing a direct and primary role in assessing and monitoring the risks posed by their particular areas. Important control activities include: Approval of investments to ensure that each type of investment is authorized and is consistent with the pool's strategy; Verification that the CPO values investments in accordance with the CPO's valuation policies; Ongoing due diligence of counterparties and other third party depositories that includes reviewing the depository's or counterparty's reputation, trading strategy, past performance and any actions taken by regulators; Ongoing monitoring of the risks associated with investments held at third parties utilized by the pool(s) including market risk and credit risk; and Ongoing monitoring of pool liquidity to ensure the pool is able to satisfy redemption requests, margin calls and other financial obligations. C. Use of Administrators CPOs often use a third-party administrator to facilitate the preparation of pool financial records and account statements or assist in certain areas, including subscription and redemption processing, valuation, reconciling and reporting balances, or issuance of pool account statements. In those situations, an adequate internal controls system would include controls designed to ensure that the CPO performs adequate due diligence related to the use of the administrator. Among other things, these controls should include: Initial and ongoing due diligence on the administrator 2 ; and 2 Initial due diligence of an administrator may include the consideration of several factors including the administrator's costs, reputation, expertise, timeliness of work and attention to detail, responsiveness, 5

Obtaining evidence of a test of controls and security measures conducted at the administrator by an internal audit department or independent specialist. 3 The CPO should also consider whether its own independent financial records (i.e., shadow books) are necessary as a control to ensure that the CPO's records and financial statements are in agreement with those of the administrator's records and financial statements. If the CPO does not prepare shadow books, it should consider periodic reconciliation of its internal records with the records of banks, carrying brokers and other third parties. RECORDKEEPING In addition to establishing an internal controls system and developing written policies and procedures that fully describe it 4, each CPO must maintain records that support the implementation and effectiveness of its internal controls system in accordance with NFA Compliance Rule 2-10. CONCLUSION NFA recognizes that the particulars of a CPO's internal controls system will vary based on the Member's size and complexity of operations. There is no one-size-fits-all internal controls system, and processes that differ from those described above can be used to develop an adequate internal controls system. In designing and implementing an internal controls system, however, each CPO should assess its areas of risk and implement controls that deter fraudulent activity by employees, including management, and third parties in order to address the safety of customer funds and provide reasonable assurance that the books and records of a CPO's commodity pool(s) are current and accurate so that the pool's financial reports are reliable and that the Member is in compliance with all CFTC and NFA requirements. work history with the firm or senior members of the firm, technological tools, income tax expertise and cybersecurity system. A CPO's ongoing due diligence may include regular communications with the administrator and other processes and procedures that provide some assurance that the CPO continues to be comfortable with the administrator, its services and personnel. 3 For example, the administrator may engage an independent third party to conduct a System and Organization Controls examination under the Statement on Standards for Attestation Engagements for service organizations issued by the American Institute of Certified Public Accountants or similar examination under the Assurance Reports on Controls at a Service Organization standard issued by the International Auditing and Assurance Standards Board. 4 The internal controls policies and procedures may be documented in a single document or in documents maintained throughout a Member's various departmental areas so long as the internal controls policies and procedures can be made available upon appropriate requests by NFA and the CFTC. 6

EXPLANATION OF PROPOSED INTERPRETIVE NOTICE NFA's Board has adopted an Interpretive Notice to provide CPOs with guidance on designing and implementing an adequate system of internal controls. Over the last several years, NFA has turned greater attention to the internal controls systems used by FCM Members, particularly with respect to control activities related to handling and safekeeping customer funds and financial reporting. Based on this experience, the Board believes that an internal control system is the foundation for building a framework that deters errors and fraudulent activity by employees, management and third parties and for producing reliable financial statements. Therefore, the Board determined that it would be beneficial for CPOs, which accept, hold and redeem customer funds, to have an internal control framework that addresses the safeguarding of customer funds. Specifically, the Interpretive Notice requires that each CPO Member implement an internal controls system that is designed to protect customer funds, provide reasonable assurance that the books and records of a CPO's commodity pools are reliable and that the CPO is in compliance with all CFTC and NFA requirements. In order to demonstrate an adequate system of internal controls, the Interpretive Notice also requires that CPOs have a strong control environment, which includes adopting and implementing written policies and procedures that are reasonably designed to ensure that the operations of the CPO are in compliance with applicable NFA rules and CFTC regulations. The Interpretive Notice further requires that CPOs must also have written policies and procedures fully explaining the CPO's internal controls system and maintain records that support the implementation and effectiveness of its internal controls system. Although the internal controls systems of CPOs will vary according to the size and complexity of a CPO's operations, the Board believes that certain key components must be present in all CPO internal control systems. Therefore, the Interpretive Notice indicates that an adequate system of internal controls should, when possible, include a separation of duties as a key control activity to ensure that no single employee is in a position to carry out or conceal errors or fraud or have control over any two phases of a transaction or operation. The Interpretive Notice also indicates that the CPO should conduct a risk assessment to identify its most critical risks and then design and implement controls that address those risks. The Interpretive Notice acknowledges that the risks identified during the risk assessment will vary among CPOs, but identifies three risk areas that are generally applicable to the business operations of most CPOs: pool subscriptions, redemptions and transfers; risk management and investment and valuation of pool funds; and use of administrators. The Interpretive Notice also provides guidance on appropriate control activities for each of these areas. 7

The CPO/CTA Advisory Committee supported the proposed Interpretive Notice, which was unanimously approved by NFA's Board. As mentioned earlier, NFA is invoking the "ten-day" provision of Section 17(j) of the CEA. NFA intends to make the proposed Interpretive Notice entitled NFA Compliance Rule 2-9: CPO Internal Controls Systems effective ten days after receipt of this submission by the Commission, unless the Commission notifies NFA that the Commission has determined to review the proposal for approval. Respectfully submitted, Carol A. Wooding Vice President and General Counsel 8

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback