Related provisions for CONC 13.1.5
21 - 40 of 135 items.
IT systems include the computer systems and infrastructure required for the automation of processes, such as application and operating system software; network infrastructure; and desktop, server, and mainframe hardware. Automation may reduce a firm's exposure to some 'people risks' (including by reducing human errors or controlling access rights to enable segregation of duties), but will increase its dependency on the reliability of its IT systems.
A firm should establish and maintain appropriate systems and controls for the management of its IT system risks, having regard to:(1) its organisation and reporting structure for technology operations (including the adequacy of senior management oversight);(2) the extent to which technology requirements are addressed in its business strategy;(3) the appropriateness of its systems acquisition, development and maintenance activities (including the allocation of responsibilities
Failures in processing information (whether physical, electronic or known by employees but not recorded) or of the security of the systems that maintain it can lead to significant operational losses. A firm should establish and maintain appropriate systems and controls to manage its information security risks. In doing so, a firm should have regard to:(1) confidentiality: information should be accessible only to persons or systems with appropriate authority, which may require
In the opinion of the
FCA
, the following factors are to be taken into account in determining whether or not information is generally available, and are indications that it is (and therefore not inside information):(1) whether the information has been disclosed to a prescribed market or a prescribed auction platform3 through a regulatory information service or RIS or otherwise in accordance with the rules of that market;(2) whether the information is contained
(1) In relation to the factors in MAR 1.2.12E it is not relevant that the information is only generally available outside the UK.(2) In relation to the factors in MAR 1.2.12E (1), (3), (4) and (5) it is not relevant that the observation or analysis is only achievable by a person with above average financial resources, expertise or competence.
For example, if a passenger on a train passing a burning factory calls his broker and tells him to sell shares in the factory's owner, the passenger will be acting on information which is generally available, since it is information which has been obtained by legitimate means through observation of a public event.
A firm must ensure that the data series used by its VaR model is reliable. Where a reliable data series is not available, proxies or any other reasonable value-at-risk measurement technique must be used. A firm must be able to demonstrate that the technique is appropriate and does not materially understate the modelled risks.
3The firm's correlation assumptions must be supported by the analysis of objective data in a conceptually sound framework. The approach to capture the incremental risk charge must appropriately reflect issuer concentrations. Concentrations that can arise within and across product classes under stressed conditions must also be reflected.
At least once a year, a firm must conduct, as part of its regular internal audit process, a review of its risk management process. This review must include both the activities of the business trading units and of the independent risk control unit, and must be undertaken by suitably qualified staff independent of the areas being reviewed. This review must consider, at a minimum:(1) the adequacy of the documentation of the risk management system and process;(2) the organisation
(1) In addition to regulatory backtesting programs, testing for model validation should be carried out using additional tests which may include for example:(a) testing carried out using hypothetical changes in portfolio value that would occur were end of day positions to remain unchanged;(b) testing carried out for longer periods than required for the regular backtesting programme (for example, 3 years);(c) testing carried out using confidence intervals other than the 99 percent
At the end of Section 4 of the illustration a statement must be included making clear that changes to any of the information obtained from the customer, and where appropriate to the valuation of the property, could alter the details elsewhere in the illustration and encouraging the customer to ask for a revised illustration in this event.
The entries in the books or other records, in relation to the taking of the article in pawn, must contain the following information:(1) the date and the number or other reference of the agreement under which the article was taken in pawn, and of the pawn-receipt if separate, sufficient to identify it or them;(2) the date on which the article was taken in pawn;(3) the name and a postal address and, where appropriate, other address of the customer;(4) the description that appears
The entries in the books or other records, where the article has become realisable by the firm, in relation to any sale of the article under section 121(1) of the CCA, must contain the following information:(1) the date of the sale;(2) where the article was sold by auction, the name and a postal address of the auctioneer;(3) where the article was not sold by auction, the postal address of the premises at which the sale took place;(4) the gross amount realised;(5) the itemised
(1) The guidance relevant to delegation within the firm is also relevant to external delegation ('outsourcing'). A firm cannot contract out its regulatory obligations. So, for example, under Principle 3 a firm should take reasonable care to supervise the discharge of outsourced functions by its contractor.(2) A firm should take steps to obtain sufficient information from its contractor to enable it to assess the impact of outsourcing on its systems and controls.
(1) 25A firm's arrangements should be such as to furnish its governing body with the information it needs to play its part in identifying, measuring, managing and controlling risks of regulatory concern. Three factors will be the relevance, reliability and timeliness of that information.(2) Risks of regulatory concern are those risks which relate to the fair treatment of the firm'scustomers, to the protection of consumers, to effective competition and to the integrity of the UK
It is the responsibility of the firm to decide what information is required, when, and for whom, so that it can organise and control its activities and can comply with its regulatory obligations. The detail and extent of information required will depend on the nature, scale and complexity of the business.
1(1) 1In taking reasonable care to ensure the suitability of advice on a payment protection contract or a pure protection contract a firm should:(a) 1establish the customer's demands and needs. It should do this using information readily available and accessible to the firm and by obtaining further relevant information from the customer, including details of existing insurance cover; it need not consider alternatives to policies nor customer needs that are not relevant to the
1In taking reasonable care to ensure the suitability of advice on a policy included in a packaged bank account, a firm must:(1) establish the customer's demands and needs by using information readily available to the firm and by obtaining further relevant information from the customer, including details of existing insurance cover; it need not consider alternatives to policies nor customer needs that are not relevant to the type of policy in which the customer is interested;(2)
4A request to the FCA to authorise the omission of specific information in a particular case must:(1) be made in writing by the listed company;(2) identify the specific information concerned and the specific reasons for the omission; and(3) state why in the listed company's opinion one or more grounds in LR 13.1.7 G apply.
Where there is a dispute as to the identity of the borrower or hirer or as to the amount of the debt, it is for the firm (and not the customer) to establish, as the case may be, that the customer is the correct person in relation to the debt or that the amount is the correct amount owed under the agreement.[Note: paragraphs 3.9j of DCG and 7.11 (box) of ILG]
(1) Before significantly increasing:(a) the amount of credit to be provided under a regulated credit agreement; or(b) a credit limit for running-account credit under a regulated credit agreement;the lender must undertake an assessment of the customer's creditworthiness. [Note: section 55B(2) of CCA](2) A firm carrying out the assessment in (1) must consider: (a) the potential for the commitments under the regulated credit agreement to adversely impact the customer's financial
In
determining whether or not an approved person's conduct
under APER 4.4.4 E complies with Statement of Principle 4,
the following are factors which, in the opinion of the appropriate
regulator,3 are to be taken into account:3(1) the
likely significance to the regulator concerned (as defined in APER 4.4.4 E)3 of the information which it was
reasonable for the individual to assume;3(2) whether
the information related to the individual himself or to his firm;(3) whether
any decision
In
determining whether or not an approved person's conduct
under APER 4.4.7 E complies with Statement of Principle 4,3 the following are factors which, in
the opinion of the appropriate
regulator,3 are to be taken into account:3(1) the
likely significance of the information to the regulator concerned (as defined
in APER 4.4.4 E)3 which it was reasonable for the approved person to assume;(2) whether
any decision not to inform the regulator concerned (as defined in APER 4.4.4 E)3
Where a master UCITS and a feeder UCITS have different auditors, those auditors must enter into an information-sharing agreement in order to ensure the fulfilment of their respective duties, including the arrangements taken to comply with COLL 11.5.3 R and COLL 11.5.4 R (Preparation of the audit report).[Note: article 62(1) first paragraph of the UCITS Directive]
(1) The information-sharing agreement referred to in COLL 11.5.1 R must include:(a) identification of the documents and categories of information which are to be routinely shared between both auditors;(b) whether the information or documents referred to in (a) are to be provided by one auditor to the other or made available on request;(c) the manner and timing, including any applicable deadlines, of the transmission of information by the auditor of the master UCITS to the auditor
In appropriate circumstances, it may be cost effective for the appropriate regulator2 to nominate or approve the appointment of, or appoint itself,2 a skilled person who has previously acted for, or advised, the person in SUP 5.2.1 G or SUP 5.2.2 G.2 For example, the appropriate regulator2 may nominate or approve the appointment of, or appoint,2 the auditor of a person in SUP 5.2.1 G or SUP 5.2.2 G2 to prepare a report or collect or update the information2 taking into account,
The appropriate regulator2 may enter into a dialogue with the skilled person, and is ready to discuss matters relevant to the report or the collection or updating of the relevant information2 with him, during the preparation of the report or the collection or updating of the relevant information.2 Such discussions may2 involve or be through the person in SUP 5.2.1 G or SUP 5.2.2 G.222
(1) Before a P2P agreement is made, a firm must undertake an assessment of the creditworthiness of the prospective borrower.(2) A firm carrying out the assessment in (1) must consider: (a) the potential for the commitments under the P2P agreement to adversely impact the prospective borrower's financial situation, taking into account the information of which the firm is aware at the time the P2P agreement is to be made; and (b) the ability of the prospective borrower to make repayments
The documents in CASS 11.12.3 R that a CASS debt management firm must include within its CASS 11 resolution pack are:(1) a master document containing information sufficient to retrieve each document in the firm'sCASS 11 resolution pack;(2) a document which identifies all the approved banks with whom client money may be deposited;(3) a document which identifies each appointed representative, field representative or other agent of the firm which may receive client money in its capacity
(1) An authorised fund manager of a feeder UCITS is responsible for communicating to the depositary of the scheme any information about the master UCITS which is required for the completion of the depositary's regulatory obligations.(2) Where a master UCITS and its feeder UCITS have different depositaries, the depositaries must enter into an information-sharing agreement in order to ensure fulfilment of their respective duties.[Note: article 61(1) first and fourth paragraphs of
(1) The information-sharing agreement referred to in COLL 11.4.1R (2) must include:(a) identification of the documents and categories of information which are to be routinely shared between both depositaries, and whether that information or those documents are provided by one depositary to the other or made available on request;(b) the manner and timing, including any applicable deadlines, of the transmission of information by the depositary of the master UCITS to the depositary
A company2 must ensure that any temporary document of title (other than one issued in global form) for a share4:24(1) is serially numbered;(2) states where applicable:(a) the name and address of the first holder and names of joint holders (if any);(b) the pro rata entitlement;(c) the last date on which transfers were or will be accepted for registration for participation in the issue;(d) how the shares4 rank for dividend or interest;4(e) the nature of the document of title and
A company2 must ensure that any definitive document of title for a share4 (other than a bearer security) includes the following matters on its face (or on the reverse in the case of (5) and (7)):24(1) the authority under which the company2 is constituted and the country of incorporation and registered number (if any);2(2) the number or amount of shares4 the certificate represents and, if applicable, the number and denomination of units (in the top right-hand corner);4(3) a footnote
A benchmark submitter who maintains an establishment in the United Kingdom must: (1) appoint a benchmark manager with responsibility for the oversight of its compliance with this chapter; and(2) ensure that its benchmark manager has a level of authority and access to resources and information sufficient to enable him to carry out that responsibility.
The information provided to the benchmark administrator in accordance with MAR 8.2.10R (2) should include: (1) a description of the methodology used to establish the benchmark submission; and(2) if applicable, an explanation of how any quantitative and qualitative criteria were used to establish the benchmark submission.
A firm must not:(1) claim to be able to remove negative but accurate information from a customer's credit file, including entries concerning adverse credit information and court judgments; or[Note: paragraph 3.47ai of DMG](2) mislead a customer about the length of time that negative information is held on the customer's credit file or any official register; or[Note: paragraph 3.47aii of DMG](3) claim that a new credit file can be created, such as by the customer changing address.
It is likely to be a contravention of the Principles, for example Principles 6 and Principle 7, where a firm:(1) claims in a communication to a customer to be able to remove negative but accurate entries from a customer's credit file, but where the customer enquires about this service the customer is offered instead the firm's service as a lender or a credit broker; or (2) fails to inform a customer that a credit reference agency will not respond to the firm taking steps in relation