Title 17

SECTION 39.10

39.10 Compliance with core principles.

§ 39.10 Compliance with core principles.

(a) To be registered and to maintain registration as a derivatives clearing organization, a derivatives clearing organization shall comply with each core principle set forth in section 5b(c)(2) of the Act and any requirement that the Commission may impose by rule or regulation pursuant to section 8a(5) of the Act; and

(b) Subject to any rule or regulation prescribed by the Commission, a registered derivatives clearing organization shall have reasonable discretion in establishing the manner by which it complies with each core principle.

(c) Chief compliance officer - (1) Designation. Each derivatives clearing organization shall establish the position of chief compliance officer, designate an individual to serve as the chief compliance officer, and provide the chief compliance officer with the full responsibility and authority to develop and enforce, in consultation with the board of directors or the senior officer, appropriate compliance policies and procedures, to fulfill the duties set forth in the Act and Commission regulations.

(i) The individual designated to serve as chief compliance officer shall have the background and skills appropriate for fulfilling the responsibilities of the position. No individual who would be disqualified from registration under sections 8a(2) or 8a(3) of the Act may serve as a chief compliance officer.

(ii) The chief compliance officer shall report to the board of directors or the senior officer of the derivatives clearing organization or, if the derivatives clearing organization engages in substantial activities not related to clearing, the senior officer responsible for the derivatives clearing organization's clearing activities. The board of directors or the senior officer shall approve the compensation of the chief compliance officer.

(iii) The chief compliance officer shall meet with the board of directors or the senior officer at least once a year.

(iv) A change in the designation of the individual serving as the chief compliance officer of the derivatives clearing organization shall be reported to the Commission in accordance with the requirements of § 39.19(c)(4)(x).

(2) Chief compliance officer duties. The chief compliance officer's duties shall include, but are not limited to:

(i) Reviewing the derivatives clearing organization's compliance with the core principles set forth in section 5b of the Act, and the Commission's regulations thereunder;

(ii) In consultation with the board of directors or the senior officer, resolving any conflicts of interest that may arise;

(iii) Establishing and administering written policies and procedures reasonably designed to prevent violation of the Act;

(iv) Taking reasonable steps to ensure compliance with the Act and Commission regulations relating to agreements, contracts, or transactions, and with Commission regulations prescribed under section 5b of the Act;

(v) Establishing procedures for the remediation of noncompliance issues identified by the chief compliance officer through any compliance office review, look-back, internal or external audit finding, self-reported error, or validated complaint; and

(vi) Establishing and following appropriate procedures for the handling, management response, remediation, retesting, and closing of noncompliance issues.

(3) Annual report. The chief compliance officer shall, not less than annually, prepare and sign a written report that covers the most recently completed fiscal year of the derivatives clearing organization. The annual report shall, at a minimum:

(i) Contain a description of the derivatives clearing organization's written policies and procedures, including the code of ethics and conflict of interest policies; provided that, to the extent that the derivatives clearing organization's written policies and procedures have not materially changed since they were most recently described in an annual report to the Commission, and if the annual report containing the most recent description was submitted within the last five years, the annual report may instead incorporate by reference the relevant descriptions from the most recent annual report containing the description;

(ii) Review each core principle and applicable Commission regulation in this chapter including, in the case of systemically important derivatives clearing organizations and subpart C derivatives clearing organizations, regulations in subpart C of this part, and with respect to each:

(A) Identify, by name, rule number, or other identifier, the compliance policies and procedures that are designed to ensure compliance with each core principle and applicable regulation in this chapter;

(B) Provide an assessment as to the effectiveness of these policies and procedures;

(C) Discuss areas for improvement, and recommend potential or prospective changes or improvements to the derivatives clearing organization's compliance program and resources allocated to compliance;

(iii) List any material changes to compliance policies and procedures since the last annual report;

(iv) Describe the financial, managerial, and operational resources set aside for compliance with the Act and Commission regulations; and

(v) Describe any material compliance matters, including incidents of noncompliance, since the date of the last annual report, and describe the corresponding action taken.

(4) Submission of annual report to the Commission. (i) Prior to submitting the annual report to the Commission, the chief compliance officer shall provide the annual report to the board of directors or the senior officer of the derivatives clearing organization or, if the derivatives clearing organization engages in substantial activities not related to clearing, the senior officer responsible for the derivatives clearing organization's clearing activities, for review. Submission of the report to the board of directors or the senior officer shall be recorded in the board minutes or otherwise, as evidence of compliance with the requirement in this paragraph (c)(4)(i). The annual report shall describe the process by which it was submitted to the board of directors or the senior officer. When submitted to the Commission, the annual report shall be accompanied by a cover letter, notice, or other document that specifies the date on which it was submitted to the board of directors or the senior officer.

(ii) The annual report shall be submitted to the Secretary of the Commission in the format and manner specified by the Commission not more than 90 days after the end of the derivatives clearing organization's fiscal year. The report shall include a certification by the chief compliance officer that, to the best of his or her knowledge and reasonable belief, and under penalty of law, the annual report is accurate and complete.

(iii) The derivatives clearing organization shall promptly submit an amended annual report if material errors or omissions in the report are identified after submission. An amendment must contain the certification required under paragraph (c)(4)(ii) of this section.

(iv) A derivatives clearing organization may request from the Commission an extension of time to submit its annual report in accordance with § 39.19(c)(3) of this part.

(5) Recordkeeping. (i) The derivatives clearing organization shall maintain:

(A) A copy of all compliance policies and procedures and all other policies and procedures adopted in furtherance of compliance with the Act and Commission regulations;

(B) Copies of materials, including written reports provided to the board of directors or the senior officer in connection with the review of the annual report under paragraph (c)(4)(i) of this section; and

(C) Any records relevant to the annual report, including, but not limited to, work papers and other documents that form the basis of the report, and memoranda, correspondence, other documents, and records that are created, sent, or received in connection with the annual report and contain conclusions, opinions, analyses, or financial data related to the annual report.

(ii) The derivatives clearing organization shall maintain records in accordance with § 1.31 of this chapter and § 39.20 of this part.

(d) Enterprise risk management - (1) General. A derivatives clearing organization shall have an enterprise risk management program that identifies and assesses sources of risk and their potential impact on the operations and services of the derivatives clearing organization. The derivatives clearing organization shall measure, monitor, and manage identified sources of risk on an ongoing basis, including through the development and use of appropriate information systems. The derivatives clearing organization shall test the effectiveness of any mitigating controls employed to reduce identified sources of risk to ensure that the risks are properly mitigated.

(2) Enterprise risk management framework. A derivatives clearing organization shall establish and maintain written policies and procedures, approved by its board of directors or a committee of the board of directors that establish an appropriate enterprise risk management framework. The framework shall be reviewed at least annually by the board of directors or committee of the board of directors and updated as necessary.

(3) Standards for enterprise risk management framework. A derivatives clearing organization shall follow generally accepted standards and industry best practices in the development and review of its enterprise risk management framework, assessment of the performance of its enterprise risk management program, and management and mitigation of risk to the derivatives clearing organization.

(4) Enterprise risk officer. A derivatives clearing organization shall identify as its enterprise risk officer an appropriate individual that exercises the full responsibility and authority to manage the enterprise risk management program of the derivatives clearing organization. The enterprise risk officer shall have the authority, independence, resources, expertise, and access to relevant information necessary to fulfill the responsibilities of the position, including access to the board of directors of the organization for which the enterprise risk officer is responsible for managing the risks or an appropriate committee thereof, consistent with the requirements of this section.

[76 FR 69430, Nov. 8, 2011, as amended at 85 FR 4852, Jan. 27, 2020]