The FSCA finally published drafts of their new compliance reports and in line with all things bureaucratic decided to call them Conduct of Business Reports or CBR for short. This report seems like it will attempt to enable all financial institutions ranging from Banks to one-man run FSPs to fill it in. It will do this by changing the content of the report depending on the input of the person filling it in.
At first glance the report seems broken as certain fields do not work and some of the auto selection an population content does not activate when it should. What we can see at this stage is that the information asked for is copious and some of it does not seem related to aspects of legislation.
The content was informed by overseas regulators in western developed nations. Although this is a good base to start from, one must significantly adapt as we are not a western developed nation. We must still develop and overregulation will not get us there. Our President recently embarked on a campaign of cutting red tape to enhance business creation and operation. I do not think this complex reporting approach is in line with this goal.
Much more action and responsibility needs to be taken by the authorities when malfeasance is brought to their attention instead of placing a heavy regulatory reporting burden on financial services providers. And in these economic times there is even less breathing space for businesses as it is. We'll publish our comments via our industry bodies in line with this approach but please feel free to comment on your own as well or via your industry bodies.
Their documentation states that they will only commence Phase 2 of the Consultation in Q1 2023 and that first reporting will likely only start in 2024.
There are workshops on the CBR reports and we will attend them on your behalf but anyone can attend them and voice their opinions if they’d like. Please see the links and documents at the end of this post.
Their documentation states that they will only commence Phase 2 of the Consultation Process in Q1 2023 and that first reporting will likely only start in 2024.
Written comments must be submitted via the secure FSCA “Comments” portal, available on the FSCA website under Home > Regulated Entities > E-services or by clicking here. The comments template is web-based and is available for completion by any individual on behalf of a licensed financial institution or industry association.
The “Comments” portal will only be available from 10 June 2022 and all written comments must be submitted by 10 August 2022. The portal will be closed for any further submissions after this date.
Workshops can be booked for here:
Large FSPs (turnover >R5)
Smaller FSPs (turnover <R5m)
For more information about this Communication please contact Ms Juanita Smit at Juanita.Smit@fsca.co.za and copy FSCA_Omni_CBR_Comments@fsca.co.za
What is this?
The FSTC recently sent out important reporting changes and information. See the original communication here. To be clear, the FSTC is not to be confused with the FSCA. Although this does not fall in the realm of FAIS compliance, we thought it is a good idea to perhaps just summarise the requirements and application thereof.
Usually the BEE components of a business is handled internally/with HR or accountants in consultation with Verification Agents (BEE Compliance Officers) if need be.
The FSTC is mandated to obtain BBBEE statistical data from entities operating in the financial services sphere on their progress relating to BBBEE. They send out a request once a year for statistical data so they can compile their annual report on the progress of Financial Institutions with the Financial Sector BBBEE codes.
Who does this apply to?
The sectors/companies asked to report are:
This does not apply to:
How do I report if I need/want to?
Changes in Submission of Reports:
It is extremely important to note that the FSTC changed the method for companies to submit reports. The FSTC will NO LONGER accept reports via the reporting email.
The reports and supporting documents should be submitted as a folder through Drop Box. All report should now be submitted electronically to the Drop Box link: https://www.dropbox.com/request/YYZggWgIZT3BwJrh4AP5 with the folder named: FSTC 2020/21 Reporting– (name of entity).
FIs were requested to submit the full final verification reports, to the FSTC no later than the end of the business Friday, 12 August 2022. All reports are to be submitted electronically to the Drop Box link.
***Avoid editing and saving online into one drive. ***
Should an entity encounter difficulty in providing the above-requested information they should contact the FSTC at email@example.com, or call (011)838 6696 or get in touch with their respective Trade Associations for more clarity
2022 Compliance Reports
The FSCA has confirmed that there will be no compliance reports yet for this year. They are still busy drafting the new Conduct of Business Reports it seems. The last compliance reports were issued in 2018. It is not clear why it is taking them 4 years + so far to draft new CBR reports. My guess is that they are waiting for the COFI Act first, which still has to become law. Or maybe some more coffee is needed, post-haste. But that is just an educated guess at this stage. In the meantime we continue to make sure our clients are compliant in terms of what the law requires of them.
You can read more here.
FICA FATF Review
In other news, the FIC issued a document with a complicated title: "Important communication regarding FATF Mutual Evaluation: Immediate Outcome 4 - Preventative Measure". I am going to save you the time you would have spent to read the 10 page document and summarise if for you.
The document basically details that the Financial Action Task Force (the global rule maker responsible for FICA being in your lives) did an assessment on the compliance in South Africa and found us wanting. They say that entities do not understand the money laundering risk and also fail to identify reportable transactions and fail to report them to the FIC.
What does this mean? If South Africa (meaning, effectively, our regulators) does not pull up it's socks, then South Africa might get grey listed. Just know - this is not good. This also means the FIC and FSCA might do more intensive inspections of their own to prevent this. On the bright side, they will also assist the industry more. So expect more guidance and perhaps more changes to come.
Read more about this here.
By now it is old news that many of Russia's Politically Exposed Persons, entities and Prominent Influential Persons have been sanctioned. In terms of FICA, you may not deal with any sanctioned person and this may also be a reportable activity if any financial transactions are attempted.
This is just a reminder that all FSP's must check if their clients are sanctioned at onboarding stage (and keep proof of this) and whenever you are updating FICA information in line with the client risk rating being low medium or high.
If you are not using AML software to onboard clients you can search for sanctioned persons and entities on the following websites. The links work as a time of publishing this blog post.
The OFAC sanctions list is most up to date and works best:
The FIC search function exists but in my opinion is not 100% reliable and has some bug (for instance, it does not return results if all information is not entered):
We've recently attempted to register a number or Juristic Representatives in terms of the FAIS Act for our clients and were met with a rather peculiar situation. Previously, after we conducted a Due Diligence and all parties signed the necessary agreements one needed to merely add the JR on the register via the FSCA E-portal.
Much to our own surprise, it seems like this function is no longer available on the online system. When we phoned the FSCA we were told: "We no longer do it that way - you have to send it in for review.". Interesting.
There seems to have been no communication to anyone that this would change beforehand. And this seems to be a trend with the FSCA in terms of their licensing departments not communicating changes to their own stakeholders. As a further example of this we see many different kinds of documents being asked of FSP's without informing them beforehand so they can get them ready. There also does not seem to be an even playing field regarding this as the items they ask for can differ in substance and form.
When asked if they can perhaps publish these new requirements beforehand we are always met with the same answer: "in terms of Section 8(2) of the FAIS Act, The Authority may require an applicant to furnish such additional information, or require such information to be verified, as the Authority may deem necessary."
I am just taking an educated guess and that is the main problem here - if you do not communicate, people guess and speculate.
Now, in my opinion I do not think this section means you can just make up random requirements or nit-pick with regards to headings and file formats (we were recently asked to provide a statement of financial position in three different formats by three different analysts in three different license applications - there seems to be no internal communication or alignment about what is indeed required). In one recent case they asked for a Tax Clearance certificate - but for no other applications have I ever seen this in 10+ years of applications.
My friendly suggestion to the FSCA would be this: Decide on your formats, communicate it to everyone beforehand and be consistent in the application of your rules - you will have a much smoother process with happier stakeholders.
So what do the online cancellation of JR registrations mean? Maybe that they want to review the applications and maybe scrutinize it more closely, I suppose. It certainly means it will take longer than it did in the past. It could also be in preparation for COFI. I am just taking an educated guess and that is the main problem here - if you do not communicate, people guess and speculate. But, that being said - communication about these things still seems to be a problem and can be hugely improved.
We'll keep you posted on developments.
Long ago in a land not so far away the FSCA decided that it no longer wanted the obligation to investigate and debar people that should not be in the industry. One can only ponder as to why this is. Lack of resources is my best guess (as a person that used to, among others, work with and in a department that used to do this). As a result, this is something that now befell the FSP to do in 90% of the instances.
This has some unintended consequences such as:
In the recent case of NJ Du Plessis Wessels v African Wealth Organisation (Pty) Ltd and Others a person was debarred for a breach of restraint of trade. This is not grounds for the debarment of a person as this is a civil contractual matter and not something that affects the Fit and Proper status of the person. The appeal was granted as a result.
I've even seen stranger things like that time a person complaining about a cheating husband which must be debarred. Although this is uncouth and perhaps morally reprehensible, it is not grounds for debarment and has nothing to do with the person's work.
Be aware of your rights as a person that has been debarred - certain processes need to be followed to make this lawful. And if you are working in an FSP make sure your debarments are lawful as you may end up red-faced in the end.
We've seen many brokers use debarments as a way of getting back at each other and this is the unfortunate consequence of outsourcing your regulatory responsibilities to FSP's instead of having that power sit with the Regulator that can impartially look at cases with an expert eye.
Earlier this year the coming into effect of PAIA (Promotion of Access to Information Act) for all companies, private or public was extended to December. This meant certain companies were exempt (most companies) and others where not depending on staff size and turnover as well as industry.
This extension of exemption lapses on the 31st of December this year. Many thought they might extend this further but there has been no mention made of any further extensions. Thus, practically all companies in South Africa must as of 1 January 2022 have a PAIA manual on their website or, if they do not have one, they must have it available at their place of business.
Luckily the Information Regulator has made a template available as a suggestion of how this should look so one does not have to fork out money or wonder about the content. It is easy to implement and not much drafting is needed. One can view it here at the bottom of the page - be sure to fill it in correctly and add to your website under the legal section. Compared to POPI, PAIA basically consists of signing off the policy prescribed by the regulator and sticking it on your web page.
Or our clients can access our conveniently formatted version we sent to them and that we've made available on our client portal. If you are not a client you can buy one here.
In closing, I am baffled as to why all companies have to have this kind of policy as it is entirely likely that it will never be used by 99% of all companies. It is very useful if you want to obtain information as a journalist from state owned entities where our rights as citizens are concerned. However, persons will rarely use this as a method of obtaining their own information (freely available from the entities). By the way, people's own information is usually the only information that they care about and this is catered for by POPI.
Like with POPI, I do not see that the regulator will be checking all companies from the get-go to see if this is in place. Better safe than sorry though.
I am a fan of regulations and compliance that have reasons and make sense. I am also a fan of "less is more" when it comes to regulation. In that vein I do believe much of our current financial services regulation in South Africa over-corrects to protect investors at the expense of economic activity and innovation. I've written a previous blog post about it that you can find here.
It seems like Crypto is heading the same way if some voices of reason do not speak up. It is not new that a country wants to control or outright ban Crypto. China has banned, un-banned and re-banned it many times over. Other countries have seen the light and provided enabling regulations for Crypto to flourish and grow. Mainstream adoption is growing exponentially in the form of ETF's being issued and even card issuers like Visa joining the party. Some Crypto Exchanges have even listed on major stock exchanges.
So, what have our regulators done so far? They have issued zero final regulations. To their credit, there was a draft regulation on the advice and intermediary services on Cryptocurrencies issued in November of last year. But nothing has been said of that since a year ago. All that happened in the meantime is that the FSCA issued another draft regulation barring Pension Funds from holding Crypto assets. I would assume this includes NFT's (non-fungible tokens) in the form of Art which had sales of $10.7 billion in Q3 of 2021. The Reserve Bank has also reportedly pushed banks to prevent customers from buying Crypto with their cards and from buying Crypto from any company domiciled overseas.
So basically we only have confusion and frustrated businesses. I can't begin to tell you how many Crypto businesses approached us in the last two years to find out how they can comply and get licensed. Unfortunately you can't yet.
I understand that many people have been taken for a ride by Crypto scammers. But, many people have also been taken for a ride by money scammers. Does declaring investing in normal fiat money a crime, solve the problem? No, you but can rather provide trust by licensing exchanges and funds at best. One cannot eliminate all crime by force over-regulation as the criminals will still find ways to do the crime (rather beef up the criminal justice system). What you will accomplish with this heavy handed regulatory approach is overburden those that want to comply en ensure that less people are economically active in this space.
Instead, enable the industry through a measured approach with limited regulation that is both practical and that encourages new entrants to the market.
Blockchain technology is already changing the world and offering better use cases, privacy and trust for all involved. Cryptocurrency is just one use case of blockchain technology and we are at risk of getting left behind if do not create a better space for it to grow.
Category 1 FSPs may no longer subtract subordinated loans from the current liabilities
What are the financial soundness requirements?
The FAIS Act explains the Financial Soundness requirements for FSPs in Chapter 6 of the Fit and Proper Board Notice 194 of 2017. The FSP must meet the financial soundness requirements at all times.
There are different requirements for different types of FSPs, however the three main categories for most of the FSPs are as follows:
What important changes took place regarding subordinated loans?
The most important change that we come face to face with almost monthly is the change where Category 1 FSPs may no longer subtract subordinated loans from the current liabilities in the working capital requirements. This requirement is applicable to Category 1 FSPs Holding Client Funds, and Category 1 FSPs Not Holding Client Funds.
How can an FSP ensure it meets the requirements?
The FAIS Act states that all FSPs should maintain monthly management accounts if these accounts are continuously monitored and compared with the financial soundness requirements the FSP should be able to maintain the financial soundness requirements.
What can an FSP do if they suspect that the requirements are not being met?
It is immensely important that the FSP follow one of these two steps as soon as the FSP suspects or foresees that the financial soundness requirements are not being, or will not be met, these are listed and explained as follows:
In addition to the above, the FSP must submit the following items every 6 months from the date that
the FSP relied on the exemption:
How to calculate an FSPs Financial Soundness Requirements?
The Financial Soundness requirements can be explained and calculated as follows:
*Liquid Assets are calculated as follows:
*Annual Expenditure is calculated as follows:
Contact us for any information on the Compliance Officer services we provide for information on the financial soundness requirements, our team at Horizon Compliance are always keen to help.
a reminder to accountable institutions to regularly submit CTRs, risk-rate clients (and potential clients) and comply with your own RMCP
This blog is about the recently imposed administrative sanctions on Momentum Wealth (Pty) Ltd and Momentum Collective Investments RF (Pty) Ltd by the FSCA.
The broad reason for the sanctions was the ineffective money laundering/terrorist financing control measures of both accountable institutions, as required by the FIC Act. The total financial penalty imposed by the regulator on these institutions amounted to R11,100,000.00 (excluding an amount of R100,000.00 which is suspended for three years).
The breaches identified by the FSCA were the following:
These cases serve as a reminder to accountable institutions to regularly submit cash threshold reports, risk-rate clients(and potential clients) and comply with your own RMCP.
For more information click here
by: Horizon Compliance team