On the 17 December 2020, the Jersey Financial Services Commission (“JFSC”) published a detailed feedback paper on the results of its pre-COVID-19 on-site themed examination. The examination looked at how firms undertake compliance monitoring, resulting in negative findings being identified in 10 out of the 11 Registered Persons that were examined.
The themed examination paper spells out very clearly the views of the regulator in relation to compliance monitoring. “Effective compliance monitoring is an invaluable process that enables senior management to demonstrate that they have implemented and maintained adequate and effective systems and controls (including policies and procedures), that they are being complied with, and that timely action is being taken to remedy any deficiencies brought to their attention”. Despite such importance being placed upon compliance monitoring, which was introduced in 2008, it comes as something of a surprise that 41 findings were categorised as non-compliant with the Money Laundering (Jersey) Order 2008, or a statutory obligation or regulatory requirement described in the regulators AML/CFT Handbook, or the Codes of Practice, or was relevant to all three regulatory requirements. Unsurprisingly, given the results, the JFSC has declared that it intends to make compliance monitoring one of their areas of focus in 2021.
Jersey Financial Services Commission Compliance Monitoring Plans Thematic Review
The report highlights some of the main failings identified;
It is not all doom and gloom however, as the JFSC noted many good practices including;
The JFSC has issued a warning to all businesses concerning CMPs, particularly since the same findings were also highlighted in the last review undertaken in 2013.
The JFSC stipulate that “All Registered Persons should consider their own arrangements in relation to the Guidance Note and the findings of this paper and where necessary, consider enhancing systems and controls, so that they are able to demonstrate full compliance with the regulatory framework”.
Compliance monitoring should be an integral part of a Registered Person’s risk management framework. When executed effectively and in conjunction with other activities, an effective CMP enables the Registered Person to evidence that risk is being proactively and appropriately managed. In 2021 businesses need to be able to demonstrate that their CMP has been revisited and where necessary updated, thereby avoiding the failings identified in the feedback paper.