Bovill’s RegTech partnership with Grath helps firms manage compliance with CASS and safeguarding regulations. The service includes a comprehensive health check, help with developing risk and control frameworks, and support in ensuring effective oversight.
The FCA’s latest Dear CEO letter shows CASS compliance remains high on the regulator’s list. The letter re-iterates that whatever the impact of Covid-19, investment firms must “maintain adequate arrangements” to look after client assets.
And when it comes to safeguarding customers’ funds, the FCA’s new guidance for electronic money and payment institutions shows it expects more, and seems to be looking to the CASS regulations for inspiration.
Whether you fall under the CASS regime or the safeguarding guidance, it’s the responsibility of senior management to have robust systems and controls in place to look after your clients’ money.
Grath and Bovill’s RegTech solution for CASS and safeguarding
We have joined forces with Grath to offer their real-time regulatory assurance platform alongside our regulatory advice to equip firms with the all the tools they need to ensure their client assets and safeguarding arrangements stack up.
With Grath and Bovill, you can map rules, risks and controls against the relevant requirements. And focused assurance and testing will help identify where control improvements can be made and give senior management the assurance they need.
We can assess the adequacy of your controls, either by carrying out a high-level review of your safeguarding or client asset arrangements or a full bottom-up review of processes. This can lead to proportionate and effective recommendations for improvements to your processes.
Risk and control frameworks
We can create a risk and control framework that provides a functional tool to feed into your compliance oversight arrangements. Create and track actions through to completion by assigning tasks to risk, control and process owners.
Governance and oversight
Assess whether your governance and oversight is adequate, including review of management information, breach escalation, committee terms of reference and the responsibilities of senior management.
To find out more about our work with Grath and other work we’re doing in RegTech, please get in touch.