Key Takeaways
- The U.S. Securities and Exchange Commission (SEC or Commission) continues to focus on insider trading in the era of remote work and the use of personal devices.
- The use of data analytics has allowed the SEC to ramp up its detection and enforcement efforts on insider trading violations, regardless of the size or scope of the transactions.
- Companies should expect to see continued enforcement actions arising from the use of off-channel communications by employees.
Material Nonpublic Information in the Age of Remote Work
The new flexible work environment created in the post-pandemic years poses unique challenges for companies and individuals who work outside a traditional office. The SEC knows this and is actively enforcing the securities laws if violations result. In two recent high-profile cases, the SEC announced charges against individuals who traded on material nonpublic information (MNPI) obtained from partners or spouses while working from home.
In February 2024, the SEC charged Tyler Loudon for allegedly trading on MNPI he acquired from his wife while the two were working from home. The complaint alleges that Loudon “took advantage of his remote working conditions” to obtain the MNPI from his wife’s work materials, making $1.76 million in profits from insider trading. Loudon’s wife was a BP mergers and acquisitions manager, and the complaint details that Loudon overheard many of his wife’s work-related conversations about the BP merger, and without his wife’s knowledge, he purchased 46,450 shares of TravelCenters stock before the announcement that BP was acquiring TravelCenters of America Inc.
In a similar case, in June 2023, the SEC brought charges against Jordan Meadow, a registered representative for a New York-based broker-dealer, and Steven Teixeira, the chief compliance officer of an international payment-processing company. The SEC alleged that the two men traded based on MNPI that Teixeira accessed from his girlfriend’s laptop while the two were working at home. Specifically, the complaint alleges that Teixeira retrieved nonpublic information on possible upcoming mergers and acquisitions of public companies from the laptop of his girlfriend, who was employed at a New York-based investment bank. Allegedly Teixeira used the information to purchase options on different issuers ahead of the announcement of the deal and then told his friends, including Meadow. Allegedly Teixeira made $28,600 in profits, with Meadow bringing in more than $730,000. Meadow also allegedly passed the information along to his brokerage customers, which resulted in millions of dollars in profit for them and hundreds of thousands of dollars in commissions for Meadow. In a parallel action, the Southern District of New York is criminally charging Meadow and Teixeira.
Notably, the use of increasingly sophisticated data analytics has allowed the SEC to detect potential insider trading violations with greater speed and efficiency. The Commission has been highlighting its data analytics capabilities over the past year, particularly in the unprecedented enforcement action and parallel indictment of Terren Peizer for insider trading based on a Rule 10b5-1 plan in March 2023, and the Commission announcing charges against 13 individuals the same day for insider trading. These cases illustrate that the SEC is increasing the sophistication of their enforcement efforts by utilizing advanced data analytics tools.
Off-Channel Communications
Exposure of MNPI is not the only potential hazard in the work-from-home era. As hybrid and remote work appear to be here to stay, the Commission’s continued focus on off-channel communications and the use of personal devices shows no signs of stopping. The Commission brought a plethora of charges arising from off-channel communications violations in 2023, including multimillion-dollar settlements with HSBC and Scotia Capital and 10 broker-dealers in August 2023. In the announcement accompanying the August 2023 enforcement actions, the SEC emphasized that by failing to maintain and preserve these records, the firms likely “deprived the Commission of these off-channel communications in various SEC investigations.”
More recently, the SEC announced charges against Senvest Management LLC for alleged “widespread and longstanding failures to maintain and preserve certain electronic communications.” As a result, the firm agreed to pay a $6.5 million penalty and to retain a compliance consultant in order to conduct a review of the company’s personal device and electronic communications policies.
These enforcement actions were brought pursuant to long-standing books and records requirements of the SEC regulating the maintenance and preservation of documents. Specifically, Section 17(a)(1) of the Securities Exchange Act of 1934 and Rule 17a-4 require that broker-dealers preserve all communications received and sent relating to a firm’s business. Similarly, Section 204 of and Rule 204-2(a)(7) under the Investment Advisers Act of 1940 require registered investment advisers to retain certain specific categories of business-related communications.
Mitigating Risk in the Work-From-Home Era
While flexible work environments and the convenience of personal devices can be beneficial, companies must consider the potential compliance pitfalls that accompany remote work and off-channel communications.
It is imperative that companies and individuals take steps to ensure MNPI remains confidential while they are working outside the office. Specifically, while individuals are working from home, meetings should be conducted in private. If privacy is limited, they should consider the best practices of wearing headphones; using room partitions or dividers, privacy computer and phone screens, and strong passwords; and being mindful to always lock devices when not in use. Employees should be trained on their duties to ensure that material nonpublic information remains confidential and on how to ensure confidentiality. Further, when working from home, it is important for individuals to remind those who may be near during confidential conversations that they may overhear confidential information, but they should not share it or act on the information.
Employees should also be trained regarding off-channel communications, and companies should evaluate what degree of control they have over the personal devices of their employees if such devices are used for business purposes. It is also important to ensure that all employees, including senior employees, are abiding by these policies. In their enforcement efforts, the SEC has focused on senior employees and their off-channel communications, suggesting that the SEC might view violations by senior personnel as an implication that the firm has widespread problems.
Companies would be well advised to adopt robust policies governing the protection of MNPI and the use of personal devices. Existing policies should be reviewed and updated by outside counsel to account for the unique challenges posed by remote work. Any program should meet applicable regulatory requirements, emphasize practicality, reflect the business needs of the corporation, and evidence meaningful training and enforcement. Given that the identification of potentially relevant documents and communications, including chats, instant messages and texts, implicates numerous technical and practical challenges, e-discovery counsel should be consulted, particularly when the need for preservation and collection arises.
Conclusion
In the age of remote work, companies and individuals have an added responsibility to ensure that MNPI remains confidential, especially when employees are working outside the traditional office. As the use of sophisticated data analytics allows the SEC to change the way they track trading patterns, we can expect existing cases to gain speed and new actions to be initiated swiftly. Further, as employees continue to use personal devices for business communications, the SEC is likely to continue its aggressive enforcement of recordkeeping requirements to limit off-channel communications.
[View source.]