Related provisions for IFPRU 4.8.18

1 - 20 of 95 items.
Results filter

Search Term(s)

Filter by Modules

Filter by Documents

Filter by Keywords

Effective Period

Similar To

To access the FCA Handbook Archive choose a date between 1 January 2001 and 31 December 2004 (From field only).

REC 2.5.1UKRP

Schedule to the Recognition Requirements Regulations, paragraph 3

2(1)

The [UK RIE] must ensure that the systems and controls used in the performance of its [relevant functions] are adequate, and appropriate for the scale and nature of its business.

(2)

Sub-paragraph (1) applies in particular to systems and controls concerning -

(a)

the transmission of information;

(b)

the assessment, mitigation and management of risks to the performance of the [UK RIE'srelevant functions];

(c)

the effecting and monitoring of transactions on the [UK RIE];

(ca)

the technical operation of the [UK RIE], including contingency arrangements for disruption to its facilities;

(d)

the operation of the arrangements mentioned in paragraph 4(2)(d); and

(e)

(where relevant) the safeguarding and administration of assets belonging to users of the [UK RIE's] facilities.

REC 2.5.3GRP
In assessing whether the systems and controls used by a UK recognised body in the performance of its relevant functions are adequate and appropriate for the scale and nature of its business, the FCA3 may have regard to the UK recognised body's:3(1) arrangements for managing, controlling and carrying out its relevant functions, including: (a) the distribution of duties and responsibilities among its key individuals and the departments of the UK recognised body responsible for performing
REC 2.5.4GRP
The following paragraphs set out other matters to which the FCA3 may have regard in assessing the systems and controls used for the transmission of information, risk management, the effecting and monitoring of transactions, the operation of settlement arrangements (the matters covered in paragraph 4(2)(d) of the Schedule to the Recognition Requirements Regulations) and the safeguarding and administration of assets .33
REC 2.5.8GRP
In assessing a UK RIE's systems and controls for the effecting and monitoring of transactions, and for the operation of settlement arrangements, the FCA3 may have regard to the totality of the arrangements and processes through which the UK RIE's transactions are effected, cleared,3 and settled, including:333(1) a UK RIE's arrangements under which orders are received and matched, its arrangements for trade and transaction reporting, and (if relevant) its arrangements with another
REC 2.5.9GRP
In assessing a UK recognised body's systems and controls for the safeguarding and administration of assets belonging to users of its facilities, the FCA3 may have regard to the totality of the arrangements and processes by which the UK recognised body: 3(1) records the assets held and the identity of the owners of (and other persons with relevant rights over) those assets; (2) records any instructions given in relation to those assets;(3) records the carrying out of those instructions;(4)
REC 2.5.12GRP
REC 2.5.13 G to REC 2.5.16 G set out the factors to which the FCA3 may have regard in assessing a UK recognised body's systems and controls for managing conflicts of interest.3
REC 2.5.14GRP
The FCA3 may also have regard to the systems and controls intended to ensure that confidential information is only used for proper purposes. Where relevant, recognised bodies will have to comply with section 348 (Restrictions on disclosure of confidential information by the FCA3 etc.) and regulations made under section 349 (Exemptions from section 348) of the Act.33
REC 2.5.17GRP
A UK recognised body's arrangements for internal and external audit will be an important part of its systems and controls. In assessing the adequacy of these arrangements, the FCA3 may have regard to: 3(1) the size, composition and terms of reference of any audit committee of the UK recognised body'sgoverning body;(2) the frequency and scope of external audit; (3) the provision and scope of internal audit; (4) the staffing and resources of the UK recognised body's internal audit
REC 2.5.18GRP
Information technology is likely to be a major component of the systems and controls used by any UK recognised body. In assessing the adequacy of the information technology used by a UK recognised body to perform or support its relevant functions, the FCA3 may have regard to:3(1) the organisation, management and resources of the information technology department within the UK recognised body;(2) the arrangements for controlling and documenting the design, development, implementation
REC 2.5.20GRP
The FCA3 may have regard to the arrangements made to keep clear and complete audit trails of all uses of information technology systems and to reconcile (where appropriate) the audit trails with equivalent information held by system users and other interested parties.3
SYSC 3.2.6EGRP
5The FCA, when considering whether a breach of its rules on systems and controls against money laundering has occurred, will have regard to whether a firm has followed relevant provisions in the guidance for the UK financial sector issued by the Joint Money Laundering Steering Group.
SYSC 3.2.6IRRP
5A firm must:(1) appoint an individual as MLRO, with responsibility for oversight of its compliance with the FCA'srules on systems and controls against money laundering; and(2) ensure that its MLRO has a level of authority and independence within the firm and access to resources and information sufficient to enable him to carry out that responsibility.
SYSC 3.2.16GRP
9(1) Depending on the nature, scale and complexity of its business, it may be appropriate for a firm to delegate much of the task of monitoring the appropriateness and effectiveness of its systems and controls to an internal audit function. An internal audit function should have clear responsibilities and reporting lines to an audit committee or appropriate senior manager, be adequately resourced and staffed by competent individuals, be independent of the day-to-day activities
SYSC 12.1.18GRP
Assessment of the adequacy of a group's systems and controls required by this section will form part of the appropriate regulator's risk management process.
SYSC 12.1.21GRP
SYSC 12.1.8R (1) deals with the systems and controls that a firm should have in respect of the exposure it has to the rest of the group. On the other hand, the purpose of SYSC 12.1.8R (2) and the rules in this section that amplify it is to require groups to have adequate systems and controls. However a group is not a single legal entity on which obligations can be imposed. Therefore the obligations have to be placed on individual firms. The purpose of imposing the obligations
SYSC 12.1.22GRP
If both a firm and its parent undertaking are subject to SYSC 12.1.8R (2), the appropriate regulator would not expect systems and controls to be duplicated. In this case, the firm should assess whether and to what extent it can rely on its parent's group risk systems and controls.
DEPP 6.2.1GRP
The FCA4 will consider the full circumstances of each case when determining whether or not to take action for a financial penalty or public censure. Set out below is a list of factors that may be relevant for this purpose. The list is not exhaustive: not all of these factors may be applicable in a particular case, and there may be other factors, not listed, that are relevant.4(1) The nature, seriousness and impact of the suspected breach, including:(a) whether the breach was deliberate
DEPP 6.2.5GRP
In some cases it may not be appropriate to take disciplinary measures against a firm for the actions of an approved person (an example might be where the firm can show that it took all reasonable steps to prevent the breach). In other cases, it may be appropriate for the FCA4 to take action against both the firm and the approved person. For example, a firm may have breached the rule requiring it to take reasonable care to establish and maintain such systems and controls as are
IFPRU 2.2.16GRP
A firm should carry out assessments of the sort described in the overall Pillar 2 rule and IFPRU 2.2.13 R at least annually, or more frequently if changes in the business, strategy, nature or scale of its activities or operational environment suggest that the current level of financial resources is no longer adequate. The appropriateness of the internal process, and the degree of involvement of senior management in the process, will be taken into account by the FCA when reviewing
IFPRU 2.2.60RRP
Compliance with the obligations in IFPRU 2.2.59 R must enable the FCA consolidation group or the non-EEA sub-group to have arrangements, processes and mechanisms that are consistent, well integrated and ensure that data relevant to the purpose of supervision can be produced.[Note: article 109(2) of CRD]
IFPRU 2.2.87GRP
A firm should satisfy itself that the systems (including IT) of the FCA consolidation group or the non-EEA sub-group of which it is a member are sufficiently sound to support the effective management and, where applicable, the quantification of the risks that could affect the FCA consolidation group or the non-EEA sub-group, as the case may be.
LR 8.6.5RRP
The FCA will approve a person as a sponsor only if it is satisfied that the person :4(1) is 4an authorised person or a member of a designated professional body;(2) is 4competent to provide8sponsor services4 in accordance with LR 88; and8(3) has appropriate 4systems and controls in place to carry out its role as a sponsor in accordance with LR 884.488
LR 8.6.5BGRP
7Situations when the FCA may impose restrictions or limitations on the services a sponsor can provide include (but are not limited to) where it appears to the FCA that: (1) the employees of the person applying to be a sponsor whom it is proposed will perform sponsor services have no or limited relevant experience and expertise of providing certain types of sponsor services or of providing sponsor services to certain types of company; or(2) the person applying to be a sponsor
SYSC 6.3.5GRP
The FCA, when considering whether a breach of its rules on systems and controls against money laundering has occurred, will have regard to whether a firm has followed relevant provisions in the guidance for the United Kingdom financial sector issued by the Joint Money Laundering Steering Group.1
SYSC 6.3.9RRP
A firm (with the exception of a sole trader who has no employees)21 must:12(1) appoint an individual as MLRO, with responsibility for oversight of its compliance with the FCA'srules on systems and controls against money laundering; and(2) ensure that its MLRO has a level of authority and independence within the firm and access to resources and information sufficient to enable him to carry out that responsibility.
SUP 15.3.20GRP
In addition, the firm may have suffered significant financial losses as a result of the incident, or may suffer reputational loss, and the appropriate regulator35 will wish to consider this and whether the incident suggests weaknesses in the firm'sinternal controls.35
REC 5.2.6GRP
Under section 289 of the Act (Applications: supplementary) or (for an RAP applicant) regulation 2 of the RAP regulations,3 the FCA5 may require the applicant to provide additional information, and may require the applicant to verify any information in any manner. In view of their likely importance for any application, the FCA5 will normally wish to arrange for its own inspection of an applicant's information technology systems.55
REC 5.2.14GRP

Information and supporting documentation (see REC 5.2.4 G).

(1)

Details of the applicant's constitution, structure and ownership, including its memorandum and articles of association (or similar or analogous documents ) and any agreements between the applicant, its owners or other persons relating to its constitution or governance (if not contained in the information listed in REC 5.2.3A G)1. An applicant for RAP status must provide details of the relationship between the governance arrangements in place for the UK RIE and the RAP.3

(2)

Details of all business to be conducted by the applicant, whether or not a regulated activity (if not contained in the information listed in REC 5.2.3A G)1.

(3)

Details of the facilities which the applicant plans to operate, including details of the trading platform or (for an RAP) auction platform,3 settlement arrangements, clearing facilitation services5 and custody services which it plans to supply. An applicant for RAP status must provide details on the relationship between the auction platform and any secondary market in emissions auction products4 which it operates or plans to operate.3

54

(4)

Copies of the last three annual reports and accounts and, for the current financial year, quarterly management accounts.

(5)

Details of its business plan for the first three years of operation as a UK recognised body (if not contained in the information listed in REC 5.2.3A G)1.

(6)

A full organisation chart and a list of the posts to be held by key individuals (with details of the duties and responsibilities) and the names of the persons proposed for these appointments when these names are available (if not contained in the information listed in REC 5.2.3A G)1.

(7)

Details of its auditors, bankers, solicitors and any persons providing corporate finance advice or similar services (such as reporting accountants) to the applicant.

(8)

Details of any relevant functions to be outsourced or delegated, with copies of relevant agreements.

(9)

Details of information technology systems and of arrangements for their supply, management, maintenance and upgrading, and security.

(10)

Details of all plans to minimise disruption to operation of its facilities in the event of the failure of its information technology systems.

(11)

Details of internal systems for financial control, arrangements for risk management and insurance arrangements to cover operational and other risks.

(12)

Details of its arrangements for managing any counterparty risks.

5

(13)

Details of internal arrangements to safeguard confidential or privileged information and for handling conflicts of interest.

(14)

Details of arrangements for complying with the notification rules and other requirements to supply information to the FCA5.

5

(15)

Details of the arrangements to be made for monitoring and enforcing compliance with its rules and with its clearing, settlement and default arrangements.

(16)

A summary of the legal due diligence carried out in relation to ascertaining the enforceability of its rules (including default rules) and the results and conclusions reached.

5

(17)

Details of the procedures to be followed for declaring a member in default, and for taking action after that event to close out positions, protect the interests of other members and enforce its default rules.

(18)

Details of membership selection criteria, rules and procedures, including (for an RAP) details of how the rules of the UK RIE will change in order to reflect RAP status.3

(19)

Details of arrangements for recording transactions effected by, or cleared through, its facilities.

(20)

Details of arrangements for detecting financial crime and market abuse , including arrangements for complying with money laundering law.

(21)

Details of criteria, rules and arrangements for selecting specified investments to be admitted to trading on (or cleared by) an RIE and, where relevant, details of how information regarding specified investments will be disseminated to users of its facilities.

5

(22)

Details of arrangements for cooperating with the FCA5 and other appropriate authorities, including draft memoranda of understanding or letters.

5

(23)

Details of the procedures and arrangements for making and amending rules, including arrangements for consulting on rule changes.

(24)

Details of disciplinary and appeal procedures, and of the arrangements for investigating complaints.

REC 2.3.17GRP
4The financial risk assessment should be based on a methodology which provides a reasonable estimate of the potential business losses which a UK RIE might incur in stressed but plausible market conditions. The FCA5 would expect a UK RIE to carry out a financial risk assessment at least once in every twelve-month period, or more frequently if there are material changes in the nature, scale or complexity of the UK RIE's operations or its business plans that suggest such financial
REC 2.3.20GRP
4The FCA5 would expect to consider the financial risk assessment, any proposal with respect to an operational risk buffer and, if applicable, the consolidated balance sheet, in formulating its guidance on the amount of eligible financial resources it considers to be sufficient for the UK RIE to hold in order to meet the recognition requirements. In formulating its guidance, the FCA5 would, where relevant, consider whether or not the financial risk assessment makes adequate provision
LR 8.7.2BGRP
10Situations when the FCA may impose restrictions or limitations on the services a sponsor can provide include (but are not limited to) where it appears to the FCA that: (1) the sponsor has no or limited relevant experience and expertise of providing certain types of sponsor services or of providing sponsor services to certain types of company; or(2) the sponsor does not have systems and controls in place which are appropriate for the nature of the sponsor services which the sponsor
LR 8.7.8RRP
A sponsor must notify the FCA in writing as soon as possible if:(1) 8(a) 8the sponsor ceases to satisfy the criteria for approval as a sponsor set out in LR 8.6.5 R or becomes aware of any matter which, in its reasonable opinion, would be relevant to the FCA in considering whether the sponsor continues to comply with LR 8.6.6 R; or(b) 8the sponsor becomes aware of any fact or circumstance relating to the sponsor or any of its employees engaged in the provision of sponsor services
REC 3.16.1GRP
The purpose of REC 3.16 is to ensure that the FCA1receives a copy of the UK recognised body's plans and arrangements for ensuring business continuity if there are major problems with its computer systems. The FCA1does not need to be notified of minor revisions to, or updating of, the documents containing a UK recognised body's business continuity plan (for example, changes to contact names or telephone numbers). 11
REC 3.16.2RRP
Where a UK recognised body changes any of its plans for action in the event of a failure of any of its information technology systems resulting in disruption to the operation of its facilities, it must immediately give the FCA1notice of that event, and a copy of the new plan. 1
REC 3.16.3RRP
Where any reserve information technology system of a UK recognised body fails in such a way that, if the main information technology system of that body were also to fail, it would be unable to operate any of its facilities during its normal hours of operation, that body must immediately give the FCA1notice of that event, and inform the FCA:111(1) what action that UK recognised body is taking to restore the operation of the reserve information technology system; and (2) when it
SYSC 19C.3.6GRP
  1. (1)

    In the FCA's view:

    1. (a)

      a firm's staff includes its employees;

    2. (b)

      a person who performs a significant influence function for, or is a senior manager of, a firm would normally be expected to be part of the firm'sBIPRU Remuneration Code staff;

    3. (c)

      the table in (2) provides a non-exhaustive list of examples of key positions that should, subject to (d), be within a firm's definition of staff who are risk takers;

    4. (d)

      firms should consider how the examples in the table in (2) apply to their own organisational structure;

      1
    5. (e)

      firms may find it useful to set their own metrics to identify their risk takers based, for example, on trading limits; and

    6. (f)

      a firm should treat a person as being BIPRU Remuneration Code staff in relation to remuneration in respect of a given performance year if they were BIPRU Remuneration Code staff for any part of that year.

    [Note: The FCA has published guidance on the application of particular rules on remuneration structures in relation to individuals who are BIPRU Remuneration Code staff for only part of a given performance year. This guidance is available at

    http://www.fca.org.uk/firms/markets/international-markets/remuneration-code

    .]

  2. (2)

    High-level category

    Suggested business lines

    Heads of significant business lines (including regional heads) and any individuals or groups within their control who have a material impact on the firm's risk profile

    Fixed income

    Foreign exchange

    Commodities

    Securitisation

    Sales areas

    Investment banking (including mergers and acquisitions advisory)

    Commercial banking

    Equities

    Structured finance

    Lending quality

    Trading areas

    Research

    Heads of support and control functions and other individuals within their control who have a material impact on the firm's risk profile

    Credit/market/operational risk

    Legal

    Treasury controls

    Human resources

    Compliance

    Internal audit

LR 7.2.1RRP

The Listing Principles are as follows:

Listing3 Principle 1

A listed company must take reasonable steps to establish and maintain adequate procedures, systems and controls to enable it to comply with its obligations.3

3

Listing3 Principle 2

A listed company must deal with the FCA in an open and co-operative manner.3

3

Principle 3

[deleted]3

3

Principle 4

[deleted]3

3

Principle 5

[deleted]3

3

Principle 6

[deleted]3

3
LR 7.2.2GRP
Listing Principle 13 is intended to ensure that listed companies have adequate procedures, systems and controls to enable them to comply with their obligations under the listing rules, disclosure rules, transparency rules and corporate governance rules.3 In particular, the FCA considers that listed companies should place particular emphasis on ensuring that they have adequate procedures, systems and controls in relation to, where applicable:333(1) identifying whether any obligations
SYSC 13.7.9GRP
Operating processes and systems at separate geographic locations may alter a firm's operational risk profile (including by allowing alternative sites for the continuity of operations). A firm should understand the effect of any differences in processes and systems at each of its locations, particularly if they are in different countries, having regard to:(1) the business operating environment of each country (for example, the likelihood and impact of political disruptions or
IFPRU 11.2.7RRP
If a firm is not a significant IFPRU firm its recovery plan must include:(1) a summary of the key elements of the recovery plan;(2) information on the governance of the firm, including: (a) how the recovery plan is integrated into the corporate governance of the firm; and (b) the firm's overall risk management framework;(3) a description of the legal and financial structures of the firm, including:(a) the core business lines; and(b) critical functions;(4) recovery options, including:(a)