Scott Snyder, Sr. Director, Product Marketing | June 25, 2018
The development of a comprehensive strategy for compliance monitoring and reporting data room activity requires ongoing extensive planning and preparation, especially when dealing across industries, lines-of-business, geography-specific standards, and complex global regulatory requirements.
In 1934, the SEC enacted the Securities and Exchange Act. The act was in response to the financial practices that many believed caused the 1929 stock market crash. The act is a set of laws that require companies to make and keep records that can be used for reviewing and auditing securities transactions.
In May 2003, the SEC enacted an amendment to primary rule 17a-4 to allow broker-dealers to store records electronically, including communications and messaging such as email and instant messages for at least six years. Organizationally, these rules generally apply to banks, securities firms, stock brokerage firms, and any financial institutions that deal in the trading of securities of any type that are governed by the SEC. It also includes any entities that fall under the jurisdiction of the National Association of Securities Dealers (NASD).
Practically, what this means is that e-communications for these firms must be retained and supervised to meet the requirements:
Ensuring compliance with regulatory requirements
Compliance professionals recognize that recordkeeping requirements apply not only to internal e-communications, but also to technologies outside their organization where e-communications take place, including due diligence applications.
With the introduction of Merrill DatasiteOne, the only SaaS app for due diligence, our product engineers have taken steps to ensure comprehensive records of these communications are available to the compliance department. In addition, they have added tools to deliver complete data room activity transparency across an organization’s employee base.
1. Regulatory compliance data feed – Regulatory compliance continues to be an ongoing concern for many companies. This is especially true for compliance departments at banker/advisor organizations where even the hint of impropriety between the deal side of the business, and the trading side of the business, can earn the ire of federal regulators that are on the lookout for unethical business practices. Two new tools assist with this challenge.
2. Domain activity reporting – DatasiteOne projects often involve dozens, if not hundreds, of individuals from a given organization. The compliance office requires the ability to track and report on user log-in activity on each project. They must also have visibility to track which user IDs are active to make sure employees who have left the organization don’t use outdated credentials to access projects or share information. This new reporting mitigates these challenges.
Keeping you ahead of the storm
To meet the specific challenges of an ever-evolving global regulatory compliance landscape, Merrill is continuously developing and introducing features and functionality to DatasiteOne that are designed to address the requirements of corporate governance and regulatory compliance.
Merrill’s half-century of global expertise, and commitment to forward-thinking technology, provides the resources to make the high-stress, high-risk world of due diligence more manageable. Aligning that technology with industry-leading customer service, including 24/7/365 expert service available in 14 languages by phone, email, chat, and in-person, helps our customers secure success.