E*Trade Securities

The Securities and Exchange Commission says that Morgan Stanley Smith Barney LLC (MS) will pay a $1M penalty to resolve charges involving its purported failure to protect customer data. Some of this information was hacked and violators attempted to sell the data online.

According to the regulator, the firm did not put into place written policies and procedures that were designed in a manner reasonable enough to protect customer information. Because of this, said the SEC, from ’11 to ’14, former Morgan Stanley employee Galen J. Marsh was able to access without permission information regarding approximately 730,000 accounts and move them to his own server. This made it possible for third parties to access and hack the information from there.

The Commission said that Morgan Stanley had two internal portals that made it possible for employees such as Marsh to access confidential customer account information and it was for these internal applications that the firm lacked the needed authorization modules that would have restricted which employees could see this information. This deficiency existed for over a decade.

It was just last week that the Financial Industry Regulatory Authority said that it was censuring and fining E*Trade Securities LLC for supervisory violations related to customer order information protection and for not performing sufficient review of the quality of customer order executions. As a firm that offers online services for securities investing and trading to retail customers, E*Trade is supposed to evaluate the competing markets that it routes customer orders to, including exchange and non-exchange market centers. Firms such as E*Trade are also supposed to conduct periodic and stringent reviews of the quality of customer order executions to see if there are any differences among the markets, which is why the firm set up a Best Execution Committee to do this job.

Earlier this month, the U.S. Securities and Exchange Commission put out a Risk Alert reminding brokerage firms about their duties when they take part in unregistered transactions for customers. The guidance came, along with the announcement that the agency had filed an enforcement action against former and current E*TRADE Financial Corporation (ETFC) brokerage subsidiaries that did not successfully act as gatekeepers and improperly engaged in the unregistered sales of microcap stock for customers.

According to the SEC, E*TRADE Capital Markets and E*TRADE Securities sold billions of penny stock shares for customers between 2007 and 2011. During this time, there were numerous occasions when they disregarded red flags indicating that the offerings were taking place without an applicable exemption from federal securities laws’ registration provisions.

The two brokerage firms consented to repay over $1.5 million in disgorgement plus prejudgment interest from commissions they made on the improper sales. They also have to pay a $1 million combined penalty.

Articles Posted in E*Trade Securities

Morgan Stanley and E*Trade Securities Face Penalties for Inadequate Customer Information Protection

SEC Fines E*TRADE Subsidiaries Over $1M Penalty for Unregistered Microcap Securities Sales, Puts Out Risk Alert Regarding Broker-Dealer Duties To Clients