Thought Leadership 02.28.18
As cyberattacks increase in frequency and severity, effective oversight by a company’s board of directors is key.
Despite being a quieter year overall with respect to high-profile enforcement actions against private funds, in 2018 the U.S. Securities and Exchange Commission (SEC) made clear its intent to maintain its regulatory focus on the industry. The SEC investigated and brought cases against private funds related to the allocation of expenses, valuation of fund assets and unregistered broker-dealers, making clear that compliance obligations remain a priority.
In its first full year of enforcement under Chairman Jay Clayton and Co-Directors of Enforcement Stephanie Avakian and Steven Peiken, the SEC continued its robust enforcement program. When he succeeded former Chair Mary Jo White, a well-known former prosecutor, commentators suggested Mr. Clayton would represent a significant shift from the prosecutorial-minded White—and, combined with President Trump’s anti-regulatory tendencies, would present a lighter touch with respect to the SEC’s enforcement directives. While Clayton’s legacy remains to be seen, the SEC has thus far continued its serious scrutiny of the private funds industry, and we would expect such scrutiny to continue. The SEC’s enforcement actions and public statements have consistently indicated that the commission will not stand idly by with respect to certain types of issues, including improper disclosures to investors, troublesome fee allocations and conflicts of interest. Private funds should continue to remain vigilant and build upon the improvements many already made with respect to compliance, including updating and improving compliance infrastructure and evaluating internal policies and procedures.
Enforcement Highlights – 2018
According to the SEC’s Enforcement Division report on its annual results for fiscal year ending September 30, 2018, despite enduring a hiring freeze since 2016, the SEC had slightly more overall enforcement actions in fiscal 2018, bringing 821 enforcement actions, the second highest total ever. Actions against investment advisers/companies and broker-dealers comprised the second largest category of cases—in fiscal 2018, stand-alone actions against investment advisers/companies totaled 108, a significant uptick from the 82 such actions in fiscal 2017.
With respect to private funds specifically, in 2018, the SEC continued to bring enforcement actions relating to fees and expenses (e.g., charging accelerated monitoring fees on portfolio company exits without adequate disclosure), conflicts of interest (e.g., undisclosed conflicts of interest relating to compensation paid to the firm’s individual partners, advisors and affiliates), and fraud or other misconduct (e.g., old-fashioned defrauding of clients or stealing of client funds to secure financing for investments). While the SEC did not bring as many headline enforcement actions against private funds as in years past, the SEC continues to devote substantial resources and attention on investment advisers and we do not expect the SEC to avert its watchful gaze in 2019.
Overall, the SEC continues to improve its understanding of private fund advisers and firms, building upon its creation of specialized Asset Management Units (created in 2010), the Office of Compliance, Inspections and Examinations (OCIE) (launched in 2012) and its Private Funds Unit. OCIE will continue to focus exams on specific concerns and put private fund advisers on notice by its stated exam priorities, which recently have included allocation of fees and expenses and valuation of fund assets, along with other internal controls and disclosure obligations. Despite predictions of relaxed oversight from the SEC, there have been no reports of an overall let up with respect to the pace of focus of examinations with respect to private funds. The SEC has reminded private fund sponsors that, despite a new administration, the day-to-day activities of the SEC have changed very little and private equity and investment advisers remain an important oversight priority.
Going Forward – Examination & Enforcement Priorities
In the waning days of 2018, OCIE released its 2019 Examination Priorities, previewing key areas where OCIE intends to focus its resources due to perceived heightened risk to investors or the markets. OCIE’s stated 2019 priorities mirrored many of its 2018 priorities, including a focus on portfolio management, conflicts of interests, fees and expenses, digital assets and cybersecurity, and adding an increased emphasis on cryptocurrencies. In recent years, the number of investment advisers examined by OCIE has increased—and OCIE has stated that, in addition to never-before examined advisers, it will continue to prioritize examinations of certain advisers that have not been examined for a number of years, especially if those advisers have substantially grown or changed business models. We urge investment advisers to review OCIE’s entire report for a more in-depth discussion of key areas where OCIE intends to focus in 2019, keeping in mind that examinations can lead to enforcement referrals.
Continued Focus on Cybersecurity
We expect the SEC to continue to focus enforcement resources on cybersecurity matters in 2019. In 2017, the SEC announced the creation of a Cyber Unit with the goal of combating cyber-related threats. The Cyber Unit’s areas of focus include market manipulation schemes (such as those using social media platforms to spread false information), hacking efforts to obtain material nonpublic information, misconduct on the dark web and violations involving distributed ledger technology. In February 2018, the SEC issued additional interpretive guidance regarding cybersecurity disclosures, policies and procedures—emphasizing the importance of public company disclosures regarding cybersecurity matters, along with the need to design and implement appropriate controls and procedures. The SEC also brought several major cyber-related enforcement actions in 2018, including a failure-to-disclose action and a Safeguards Rule/Identify Theft Red Flags Rule action. The Enforcement Division’s 2018 annual report featured its cybersecurity efforts and SEC Chairman Clayton has further emphasized the SEC’s cybersecurity enforcement efforts during remarks. Private funds should regularly review and update their cyber-related controls and response plans, with an emphasis on protecting investors’ information, and similarly maintain controls over their portfolio companies.
Creation of Retail Strategy Task Force
The SEC has made clear that it will continue to prioritize the protection of retail investors. In fiscal 2018, the Enforcement Division created a retail strategy task force to focus on issues such as disclosures concerning fees and expenses and conflicts of interest for managed accounts, market manipulations, and fraud involving unregistered offerings. This increased protection is particularly important as retail investors become a potentially significant part of the future of investments in private funds.
The SEC has highlighted a number of additional areas of enforcement focus, many of which can impact private funds, including:
We expect the Commission to continue or increase its enforcement efforts in FY 2019 as its cyber and other initiatives gain traction. Recent enforcement actions continue to reflect that the SEC appears to consider the lack of harm to limited partners as irrelevant to liability—i.e., the SEC does not typically consider the fact that investors were not harmed to be a complete defense. Private funds should prepare for an active SEC Enforcement Division by focusing on internal controls and fostering a culture of compliance, including increased oversight at the portfolio company level, to ensure that they accurately and completely disclosed information, particularly about conflicts of interests, to their limited partners and other stakeholders.