WHAT is it?
Senior Manager’s and Certification regime (SM & CR) is a series of measures aimed at improving standards of financial services through increasing accountability of the most senior individuals within banks and financial institutions.
WHO will it affect?
During 2017 the FCA has proposed to extend the scope of the regime to cover all regulated firms in the UK. More specifically, it will affect all senior individuals in those firms and all ‘significant harm individuals’. Certification regime rules also apply to the branches of foreign banks.
Currently, most regulated financial sector firms must apply to have any individuals conducting regulated activity added to the FCA register under the Controlled Functions regime.
WHEN does it come into force?
WHAT are the key focus areas?
The new regime consists of three main parts: Senior Manager’s regime, Certification regime and Conduct Rules
Senior manager’s regime
Focus: the most senior individuals in firms, those who hold key roles and responsibilities for whole areas
Firms will need to prepare and submit a Statement of Responsibilities for all persons who will be Senior Managers (SMs), this applies to Board members and senior individuals who run the organisation. These individuals need to be chosen before the SM regime commencement, however SMs remain subject to prior approval by the FCA. These individuals will include existing SMs who will ‘grandfather’ into the new regime.
Firms must map out all responsibilities across the firm and show what those Senior individuals are responsible for. In practise, this means SMs will expect increased scrutiny from the regulators.
Focus: applies to all material risk takers, or those who could potentially cause ‘significant harm’ to the organisation where they belong. (The FCA provides a definition on a Significant Harm Function here)
In order to prevent ‘significant harm’ to the firm and its customers, these individuals will need to be tested for fitness and propriety. Firms can issue a certificate to the relevant persons if it finds them fit and proper for their function. Once certified, these individuals will be listed on the The FCA Guidance dictates that the certificates issued are only valid for 12 months, which means firms will need to certify their Significant harm individuals on an annual basis.
There is no requirement for pre-approval of these persons by the FCA, this puts more responsibility on the firms to ensure all relevant persons are fit and proper. Previously such individuals would have normally registered as CF30 (the “customer function”) as these individuals would be performing regulated activity for clients. As these individuals are likely to pose the most serious harm to the organisation in the case of misconduct, it is likely that there will be significant crossover between a firm’s existing CF30s and individuals coming under the scope of the Certification regime.
Under Section 63F of the Financial Services and Markets Act , firms must have regard to whether Significant Harm person:
(1) has obtained a qualification;
(2) has undergone, or is undergoing, training;
(3) possesses a level of competence; or
(4) has the personal characteristics,
required by general rules made by the FCA.
Regulatory reference will be of higher importance, since the rules dictate that firms must request a reference from all previous employees in the last six years for candidates. Firms must also disclose any information relevant to the fitness and propriety assessment covering the previous six years of their career.
This regime is replacing existing Statements of Principles for Approved Persons. The key change here is the widened scope of Conduct rules who now apply to almost all staff with a few exceptions (ancillary staff, eg.: catering staff), in the past these persons had to be approved. Conduct rules include “Individual Conduct Rules”, which apply across the whole industry. Firms must ensure that staff who are subject to the rules are aware of them and how they apply to their jobs.
First Tier: Individual conduct rules.
1 You must act with integrity
2 You must act with due skill, care and diligence
3 You must be open and cooperative with the FCA, the PRA and other regulators
Second Tier: Senior management conduct rules.
1 SMs must take reasonable steps to ensure that the business of the firm is controlled effectively
2 SMs must take reasonable steps to ensure that the business complies with relevant requirements and standards of the regulatory system
3 SMs must take reasonable steps to ensure that any delegation of their responsibilities is to an appropriate person and that they oversee the discharge of the delegated responsibility effectively
4 SMs must disclose appropriately any information of which the FCA or PRA would reasonably expect notice
Firms must make all staff aware of these rules, as all relevant persons should be notified in advance of the commencement of the regime. Training of staff must be tailored appropriately to their role.
Breaches of Conduct Rules must be reported to the FCA (or PRA if appropriate) within seven days.
WHAT do firms need to do to comply?
WHAT can we do to help?
The FinTech Compliance team have considerable expertise in Fitness and Propriety issues and would be delighted to assist your firm with SM & CR implementation. In particular, we can help with:
Please do not hesitate to contact us to via telephone at +44 (0) 207 100 4058, or visit our Contact page on our website if you require more information on SM&CR or you would like to engage our assistance.