How will the FCA expectations on call recording in the remote-working world affect your firm?

 

The Headlines

Covid-19 is still firmly with us, and, at time of writing, the figures are getting better. Vaccine delivery is up and infection rates going down.

The world has changed, however, and the ‘New Normal’ is starting to become just that. Many financial service firms have stepped down their business continuity teams and are starting to develop processes that rely more on home working.

The FCA, too, is preparing us for a return to the ‘Old Normal’, one where firms are expected to fully meet the requirements of the FCA sourcebook and the ‘Covid-19’ excuse just won’t cut it when a firm is found to be in breach of regulation.

The recent announcement from the FCA on call recording is a case in point. An announcement from the FCA saying that regulated firms should follow their regulations would be surprising normally, but these aren’t normal times. When you start to lose access to your Starbucks benefits because you haven’t visited them for a year, it’s not normal. (at least for me)

Call Recording Reminder - A Hint of Things to Come?

The ’Market Watch 66’ communication from the FCA explains what they expect in relation to call recording at regulated firms. What’s surprising is that this is nothing new, but only tells firms to follow the rules, no matter where the staff are working.

A few months ago, on the FCA’s ‘Coronavirus (Covid-19): Information for firms’ page, they made clear that they expect firms to meet the normal recording obligations detailed in SYSC 10A while staff are working remotely.

This is a formal acknowledgement that we should no longer be operating under business continuity conditions but should accept that business models need to be adapted to service clients properly, protect staff and meet regulatory requirements.

It’s the very nature of the unusual circumstances, combined with its long-term nature, that heightens the risks from misconduct increased by homeworking. The use by some staff of unmonitored or encrypted communication apps such as WhatsApp for sharing potentially sensitive information has already led to fines being imposed by the regulator.

Firms need to make sure they can effectively monitor communications with clients and ensure that the only channels being used are approved by the firm. 

Firms need to be able to review the communications, verbal and electronic, and be able to tie them back to any sale or application, as well as an individual.

What do the FCA Expect?

In this case, the FCA are simply seeking compliance with the current rules. By flagging it, they are telling firms that as time goes on, and more and more customers could be affected by a sub-standard service, the risk to the firms increase too. The risk of financial loss or regulatory censure, both with the associated reputational risk.

All firms need to have effective, up to date recording policies and procedures, and they must be able to demonstrate to the FCA their management oversight regime meets the standard expected. Most obviously, this includes policies and procedures adopted for home working arrangements.

The FCA do indicate that where new or amended recording policies are needed, these should be properly signed off under appropriate governance arrangements- effectively making this business-as-usual.

Where firms haven’t currently got robust policies relating to the use of privately owned devices to access work-related systems and potentially sensitive or confidential data, steps will be required to ensure that these are effectively recorded and are secure. Where this isn’t possible, the use of privately owned devices should not allowed. 

What is the Future?

This FCA communication is only one of the many we can expect. The ‘New Normal’ will be anything but, for a long time to come. What the FCA does expect is for firms to consider their current situation and find ways to ensure that all regulatory requirements are met, even if this means changing staff responsibilities, teams, and working practices.

In many cases, firms have now outsourced building security to a five-year-old that tells mummy there’s someone at the door. This may be a feeble attempt at humour but is a reality for many working families.

Sensitive data that used to be held in locked rooms and accessible only to certain staff is now sitting on a kitchen table, perhaps next to someone from a rival company. Many couples originally met at work, in the same section of the same industry, and now work for competitor firms. I, personally, am aware of at least three couples in exactly this situation.

This conflict needs to be acknowledged within firms, and practical solutions put in place to minimise the risk from even the most trustworthy staff, such as locking down the ability to home print, or copy data from a laptop to memory sticks.

In Conclusion

This situation is new to all of us, and there are going to be accidental data losses, broken breadcrumb trails in client records and deliberate fraud.

Just as the advent of computers was expected to change working practices decades ago, the true arrival of the home office is now on the horizon. This means different procedures, different regulations and different team relationships. We will learn, but there is going to be pain along the way- the FCA are already flagging it- Comply or Die.

The Access Group’s industry-leading governance, risk and compliance regulatory content for financial services is produced, updated and maintained in partnership with our regulatory experts UK Finance, FSTP (Financial Services Training Providers) and Chartered Insurance Institute (CII).

Discover more about our Introduction to the FCA and Senior management arrangements, systems and controls eLearning courses in our GRC eLearning for Financial Services training suite, to support compliance with FCA regulations.

Mind The Compliance Gap Guide

In our latest guide, we shed a light on the current regulatory changes in the financial services sector and how you can leverage data-rich training solutions to ensure that your people and business remain protected against both new and emerging risks.
Find out more

Explore our resources

Compliance training and beyond: Four steps to success

This short guide is perfect for any senior leader looking to build a solid business case to take their regulatory training and learning culture to the next level.
Getting your firm’s CPD on course in 2021

An in-depth look at how to get your employees CPD compliant in 2021.
InFocus update - the last 2 months in the regulatory landscape

Covering the hot topics in the financial services regulatory landscape
On-demand webinar: the regulatory landscape

Our webinar takes a look forward to what's on the horizon for firms in FY21

Check out our latest interviews and blogs

The FCA Consultation On Consumer Duty 500X363 (1) Min

Your consumer needs you! We take a look at the FCA Consultation on Consumer Duty

With more financial decisions now in consumers’ hands, the FCA has decided that now is the time for an even higher standard of consumer protection. We take a look at the FCA Consultation on Consumer Duty.

Read more

The Financial Services Act 2021 Blog Thumbnail 500X363 Px Min

What is The Financial Services Act 2021? Changes to PDMRs, Market Abuse Regulation and Duty of Care

The Financial Services Act 2021 is noteworthy as it will change the underlying structure of regulation and the control of financial services in the UK. This is quite a statement, but this is going to be the foundation for considerable change across the industry for years to come.

Read more

Vulnerability And Mental Health During COVID 19 Blog 500X363 Px Min

Vulnerability and Mental Health in Financial Services: Looking after your customers, and your employees

Everyone in financial services knows the impact of COVID-19 on their business. Lost income, changes in investment patterns, lower footfall. Sometimes, however, we need to take a bit of a step back and stop looking at the bottom line. It’s time to start thinking about the stuff that’s a lot harder than balance sheets, prudential requirements and market abuse regulations.

Read more

Evolving Regulatory Expectations Blog 500X363 Px Min

Evolving Regulatory Expectations – How to Embed Positive Conduct in Your Firm

It looks as though some at the FCA have discovered that they have some time on their hands and have started to indicate a return to ‘normality’. Although there is no doubt that there are real strains in certain aspects of interaction with the regulator, they have, just like in the olden days, started to flag the areas where they will be focusing attention.

Read more

What Is Non Financial Misconduct

Not all about the money: What is non-financial misconduct? Could you certify all staff as ‘fit and proper’?

The regulator is actively using its powers to hold to account those who carry out activities that result in the requirements, values and expectations of regulatory regimes being compromised.

Read more

AML Complying With The 6Th Money Laundering Directive (6 MLD) In A Post Brexit And Remote Working World 445 X 350Px

AML: Complying with the 6th Money Laundering Directive (6 MLD) in a Post-Brexit and Remote-Working World

In this short article, we would like to give you a short horizon-scanning piece for what will be expected of you and your firm in the international world of financial crime and punishment through 2021. (And what we haven’t yet done from 5 MLD).

Read more

Under Surveillance Complying With The FCA’S Market Abuse Regulation 445 X 350Px

Under surveillance: Complying with the FCA’s Market Abuse regulation

In a speech given by Mark Steward, Executive Director of Enforcement and Market Oversight, the FCA gave an overview of the market abuse scrutiny that has taken place in the past turbulent year. With this speech, the FCA have drawn attention to where they might see industry falling behind their own initiatives.

Read more

Thumbnail FS Hub 7 445X350 (1)

Four key compliance considerations for UK financial services firms in 2021

We take a look at just four influences likely to have an impact on the financial services sector that are expected to feature in our newsfeeds – and compliance considerations - over the coming year.

Read more

Thumbnail FS Hub 445X330 (2)

Post-Brexit impact on investment firms: How might regulatory divergence affect competitiveness?

With the regulatory challenges for firms already becoming apparent in a post-Brexit UK, we’re taking a look at the imminent changes to investment regulation for both EU and UK companies, and the difficulties arising from variable timelines.

Read more

Thumbnail FS Hub 4 445X330 (1)

Responding to financially vulnerable customers

Ensuring staff have the right skills to deliver positive outcomes for vulnerable consumers has always been critical, but Covid-19 brings with it new challenges.

Read more

Thumbnail FS Hub 5 445X350 (1)

Six ways to embed Green Finance into your firm

If you’re not familiar with the term ‘green finance’, it’s the use of financial products - for example loans, insurance, investments - in eco-friendly projects. So ultimately it’s about stopping climate change….and saving the planet. Pretty ambitious stuff.

Read more

Thumbnail FS Hub 8 446X350 (1)

What Does The Brexit Trade Deal Mean For Financial Services?

We look at how eLearning can deliver rapid and targeted training as post-Brexit regulatory requirements change.

Read more

Nick West Picture (2)

Five Minutes With Nick West, Head of Learning, Innovation and Delivery at UK Finance

Recently, we caught up with Nick West, Head of Learning, Innovation and Delivery, to find out what’s in store for 2021.

Read more

Blog 1 Compliancecultures 640X480 (1)

Compliance cultures within financial institutions: Are whistleblowing cases on the rise?

It’s clear that some financial institutions deem it acceptable to allow money laundering as a normal part of their operations. Questions need to be asked, but when the rewards far exceed the sanctions that regulators would ever levy on them, is it any wonder that such behaviour is seen as just a cost of doing business?

Read more

Blog 1 Fincenfiles 640X480 (1)

Money laundering and the FinCEN papers - how the UK has been impacted

First, it was the Panama Papers in 2016, which involved the leak of 11.5 million financial and legal records exposing a system that enabled crime and corruption through hidden offshore companies. Today, it is the FinCEN files that reveal the role of global banks in money laundering on a massive scale.

Read more

Blog 1 Whistleblowingregime 640X480 (2)

Whistleblowing – is the regime working in the financial services sector?

In the UK, the government defines whistleblowing as reporting certain types of wrongdoing, with whistleblowers being protected by law. We look at whether the whistleblowing regime is working within the financial sector and if it has any credibility amongst those who would be most likely to use it.

Read more

Blog 1 Mlfinesdeterrent 640X480 (1)

Are money laundering fines in the financial services sector a good enough deterrent?

We explore some of the fines imposed on financial institutions for active involvement in money laundering and whether such fines act as an effective deterrent to those thinking of engaging in money laundering activity. We also discuss the fines levied for not employing effective anti-money laundering systems and processes.

Read more

Conduct Rules Webinar 445 X 350 (3)

The Conduct Rules: what they are and how to implement them

Find out what is required of your firm by attending our latest webinar with Simon Hills, Director, Prudential Policy at UK Finance.

Read more

Blog 1 Whistleblowingregime 640X480 (3)

What does the extension of the SM&CR implementation period mean for solo-regulated firms?

In the UK, the government defines whistleblowing as reporting certain types of wrongdoing, with whistleblowers being protected by law. We look at whether the whistleblowing regime is working within the financial sector and if it has any credibility amongst those who would be most likely to use it.

Read more

Splashfor HCM Cybersecurity Blogbanner 1300X366 (1) (1) (1)

Why knowledge is your best weapon against cyber-attacks and data breaches in financial services firms

As custodians of sensitive personal and financial data, financial services firms have always been an obvious target for cyber-attackers, but the pandemic has brought fresh security challenges.

Read more