The Bank of Beirut was fined GBP 2.1 million (approximately US $3.16 million) by the Financial Conduct Authority for not fixing issues related to its anti-money laundering program in a timely fashion after being told by FCA to address the issues, and for misleading FCA that it had fixed the issues when it had not.
In addition, Anthony Wills, the bank’s former compliance officer (equivalent to a Commodity Futures Trading Commission-regulated chief compliance officer), was fined GPB 19,600 (approximately US $29,500), for providing incorrect information to FCA on a number of occasions, claiming that the bank had completed its requirements to improve its AML program when this was not accurate.
Finally, Michael Allin, the bank’s sole internal auditor, was also fined GBP 9,900 (approximately US $14,900) for preparing writings given to FCA that suggested that the bank had completed its FCA-mandated action points, when it failed to do so. Mr. Allin has been employed in a part-time capacity since January 2012.
Following visits in 2010 and 2011, FCA (including its predecessor, the Financial Services Authority) initially advised the bank to improve its AML program through implementation of a number of “remediation plan action points,” including addressing various AML deficiencies in customer files.
FCA charged that Mr. Wills affirmatively provided FCA incorrect or misleading information “on a number of occasions” when he had an obligation to deal with FCA in an “open and cooperative way and to disclose any information of which FCA would reasonably expect notice.” Indeed, said FCA, it identified one email where Mr. Wills expressly conceded that he had been “fairly guarded” during a conversation with FCA.
Mr. Wills claimed that he had insufficient resources to conduct his role as compliance officer and felt pressured from senior management to be “careful” in his communications with FCA. FCA did not accept this defense:
While the [FCA] recognizes that Mr. Wills’ actions were influenced by comments made by senior management, this does not excuse his misconduct. As Compliance Officer with responsibility for communicating with the [FCA], Mr. Wills’ role at the Bank was particularly significant. Mr. Wills was uniquely placed to understand the full position in relation to Bank of Beirut’s regulatory compliance and as such should have resisted any senior management influence in this regard. As a [regulated] person, he remained personally bound by his own regulatory responsibilities.
In addition to its fine, Bank of Beirut agreed not to open accounts for new customers that are resident or incorporated in high-risk jurisdictions for 126 days.
The FCA has evidenced a penchant among international regulators for naming compliance officers in its enforcement actions. (Click here, for an example, in the article, "Compliance Officers Are in the Cross Hairs Once Again of the UK FCA and the US SEC," in the September 30 to October 4 and October 7, 2013 edition of Bridging the Week.)
My View: Although this matter involving the Bank of Beirut and Mr. Wills was handled by a non-US regulator applying non-US rules, the action may cause pause for chief compliance officers with express, enumerated responsibilities under CFTC rules who wonder what their potential liability might be if something goes wrong at their institution. Among the many responsibilities for CCOs of future commission merchants, swap dealers and major swap participants is “tak[ing] reasonable steps to ensure compliance with the Act and Commission regulations relating to the swap dealer’s or major swap participant’s swaps activities, or to the futures commission merchant’s business as a futures commission merchant.” What this means practically is unclear. However, in adopting its CCO rules, the CFTC expressly rejected industry requests to confirm that the CCO role was solely advisory and suggested that their role is something more. According to the Commission:
[i]n response to comments advocating a purely advisory role for the CCO, the Commission observes that the role of the CCO required under the [Commodity Exchange Act], as amended by the Dodd-Frank Act, goes beyond what has been represented by commenters as the customary and traditional role of a compliance officer. While the Commission does not believe, as some commenters have suggested, that the CCO’s duties under the CEA or [CFTC Rule] § 3.3 requires that the CCO be granted ultimate supervisory authority by a registrant, it is the Commission’s expectation that the CCO will, at a minimum, be afforded supervisory authority over all staff acting at the direction of the CCO. Recent events have demonstrated the importance of the active compliance monitoring duties required of the CCO under the Dodd-Frank Act, as implemented through these regulations.
This is puzzling language at best and leaves CCOs in the United States wondering if they are effective guarantors of their firm’s compliance with laws and rules. It would be helpful for the CFTC to better articulate its expectations for CCOs, considering, again, some of the arguments made by the industry in the lead-up to the adoption of the CCO rules and now the experience of CCOs after a few years. CCOs should ordinarily never be held responsible for the conduct of persons they do not supervise. (Click here to access the CFTC’s discussion of CCO responsibilities in the Federal Register release in connection with adoption of CFTC Rule § 3.3, at pages 20159-20163.)