Wednesday, April 13, 2011

SEC Charges David C. Levine, Frederick O. Kraus and Marc A. Ellis With Failing to Protect Confidential Customer Information


Source- http://www.sec.gov/news/press/2011/2011-86.htm

Washington, D.C., April 7, 2011 – The Securities and Exchange Commission today charged three former brokerage executives for failing to protect confidential information about their customers.

The SEC’s investigation found that while Tampa-based GunnAllen Financial Inc. was winding down its business operations last year, former president Frederick O. Kraus and former national sales manager David C. Levine violated customer privacy rules by improperly transferring customer records to another firm. The SEC also found that former chief compliance officer Mark A. Ellis failed to ensure that the firm’s policies and procedures were reasonably designed to safeguard confidential customer information.

Kraus, Levine, and Ellis each agreed to settle the SEC’s charges against them. This is the first time that the SEC has assessed financial penalties against individuals charged solely with violations of Regulation S-P, an SEC rule that requires financial firms to protect confidential customer information from unauthorized release to unaffiliated third parties.

“Brokerage customers should be able to trust that sufficient safeguards are in place to protect their private information from unauthorized access and misuse,” said Eric I. Bustillo, Director of the SEC’s Miami Regional Office. “Protecting confidential customer information is particularly important when a broker-dealer is winding down operations.”

Glenn S. Gordon, Associate Director of the Miami Regional Office, added, “Kraus and Levine violated the law by transferring customers’ private information without giving them reasonable notice to opt out. GunnAllen did not have adequate policies or procedures in place to safeguard client information, ignoring several red flags from security breaches at the firm in prior years.”

According to the SEC’s orders instituting administrative proceedings, Kraus authorized Levine to take information from more than 16,000 GunnAllen accounts to his new employer as the firm wound down operations in April 2010. Levine downloaded customer names and addresses, account numbers, and asset values to a portable thumb drive, and provided the records to his new employer after resigning from GunnAllen. The SEC found that the record transfer violated Regulation S-P because account holders were only informed about it after the fact. The cases against Kraus and Levine mark the first time that the SEC has charged individuals with Regulation S-P violations arising when a departing representative takes customer information to a new employer without providing sufficient notice and opt-out procedures.

According to the SEC’s order against Ellis, GunnAllen’s policies and procedures to protect customer information were vague and did little more than recite a provision of Regulation S-P known as the Safeguard Rule. There were several serious security breaches at GunnAllen from July 2005 to February 2009, including the theft of three laptop computers belonging to GunnAllen’s registered representatives and the unlawful access of its e-mail system by a terminated employee using stolen password credentials. Despite the security breaches, Ellis failed to revise or supplement GunnAllen’s policies and procedures for safeguarding customer information.

The SEC’s orders found that Kraus, Levine, and Ellis willfully aided and abetted and caused GunnAllen’s violations of Rule 30(a) of Regulation S-P under the Securities Exchange Act of 1934, and that Kraus and Levine willfully aided and abetted the firm’s violations of Rules 7(a) and 10(a) of the same regulation.

Without admitting or denying the SEC’s findings, Kraus, Levine, and Ellis each consented to the entry of an SEC order that censures them and requires them to cease and desist from committing or causing any violations or future violations of the provisions charged. Kraus and Levine have been ordered to pay penalties of $20,000 each, and Ellis has been ordered to pay a $15,000 penalty.


************************************************************************
Report Securities Fraud by Calling 1-888-482-6825 or by visiting
www.reportsecuritiesfraud.net
 

No comments:

Post a Comment