News & Analysis


September 20, 2017 | Compliance Alert, Article

ACA Compliance Group recently hosted the webcast briefing Regulatory Investment in Trade Surveillance – What You Should Know.

September 15, 2017 | Compliance Alert

If the idea of hashtags, interactive posts, and social media presence isn’t scary enough, the SEC is now interested in knowing how advisers are managing and monitoring the risks that social media platforms present. As part of broader Form ADV updates that will begin influencing advisers on October 1, 2017, advisers will be required to disclose the links to company level social media sites. 

September 13, 2017 |
Threat Summary

Researchers discovered a new attack vector, “BlueBorne,” along with eight zero-day Bluetooth vulnerabilities, four of which are critical, that could allow an attacker to remotely control Bluetooth-enabled devices and install malware that can rapidly jump from one device to another on the same network.

Mobile device manufacturers were notified of the Bluetooth vulnerabilities in April of this year, so the vulnerabilities have been patched in the majority of new phones. However, devices with older software may be at risk.

September 12, 2017 | Article

Following the SEC’s recent commentary on Initial Coin Offerings, some investment adviser firm employees will now need to report the personal trades they make in certain types of virtual currency tokens.

September 8, 2017 | White Paper

The need to implement cyber security and other information security controls has become the new business reality. Organizations that are technology and data dependent, regardless of size, need to evaluate their exposure and formulate an information security program, as well as contemplate their potential breach response. Such a program must include third party service providers, include cloud-based providers, and organizations must recognize that their third party providers’ program in many ways become part of their information security programs.

September 8, 2017 | Cyber Alert
Threat Summary

On September 7, 2017, Equifax announced that personally identifiable information for 143 million customers may have been compromised in a breach that occurred between May and July of 2017. The data includes names, social security numbers, birth dates, addresses, and driver's license numbers. Equifax set up a website so customers can determine whether their data was impacted. The company is also offering free identify theft protection and credit file monitoring services.

September 6, 2017 |

Are you interested in how your firm's approach to valuation of client assets compares to your peers? Ever wonder what controls other private fund managers have implemented around their selection of trading counterparties or allocations of co-investment opportunities?  Are you curious as to what practices or controls peer firms have implemented surrounding conflicts of interest?

August 29, 2017 | Press Release

ACA Technology Solutions, a division of ACA Compliance Group and a leading provider of investment management and regulatory compliance technology solutions, has seen rapid adoption of its ComplianceAlpha platform, signing over 30 new clients in the first six months of 2017.

August 22, 2017 | Compliance Alert
August 22, 2017 | Compliance Alert

The SEC's Boston Regional Office is conducting unannounced examinations of investment advisers.

August 18, 2017 | Cyber Alert
Threat Summary

Locky, which has been one of the first and most successful forms of ransomware historically, has returned with new variants, Diablo and Lukitus. The email-based campaign started earlier this month and thus far has infected tens of thousands of people.

August 16, 2017 | Compliance Alert

The blending of two businesses comes with its own set of unique challenges. From the melding of different company cultures to the adoption of new operational procedures it’s easy to end up with multiple products and platforms that perform the same function.

August 15, 2017 | Cyber Alert

The British government confirmed their intention on August 7 to introduce a new Data Protection Bill which is set to transfer the European Union’s General Data Protection Regulation (GDPR) into UK Law. Digital Minister, Matt Hancock, who is leading the changes has said that the bill will provide the UK with ‘one of the most robust, yet dynamic, sets of data laws in the world’.

August 14, 2017 | Compliance Alert

Last week, the Alternative Investment Management Association (“AIMA”) released the text of a letter it received from Stephen Hanks, Head of Market Policy at the FCA. The letter was dated July 19, 2017, but sent a week ago. The letter is a response to one sent by AIMA back in April, asking the FCA to clarify their position on how MiFID II requirements should be extended to non-European Union ("EU") delegates (e.g., those acting as sub-advisers), including its new rules on paying for research.