1A firm must establish, implement and maintain adequate policies and procedures sufficient to ensure compliance of the firm including its managers, employees and appointed representatives (or where applicable, tied agents)3 with its obligations under the regulatory system and for countering the risk that the firm might be used to further financial crime.242
A common platform firm must, taking into4account the nature, scale and complexity of its business, and the nature and range of investment services and activities undertaken in the course of that business, establish, implement and maintain adequate policies and procedures designed to detect any risk of failure by the firm to comply with its obligations under the regulatory system, as well as associated risks, and put in place adequate measures and procedures designed to minimise such risks and to enable the FSA to exercise its powers effectively under the regulatory system and to enable any other competent authority to exercise its powers effectively under MiFID.
[Note: article 6(1) of the MiFID implementing Directive]4
A common platform firm must maintain a permanent and effective compliance function which operates independently and which has the following responsibilities:
to monitor and, on a regular basis, to assess the adequacy and effectiveness of the measures and procedures put in place in accordance with SYSC 6.1.2 R, and the actions taken to address any deficiencies in the firm's compliance with its obligations;
article 6(2) of the MiFID implementing Directive]
Notwithstanding SYSC 6.1.3 R, as it applies under (1), depending on the nature, scale and complexity of its business, it may be appropriate for a firm to have a separate compliance function. Where a firm has a separate compliance function the firm should also take into account SYSC 6.1.3 R and SYSC 6.1.4 R as guidance.
In order to enable the compliance function to discharge its responsibilities properly and independently, a common platform firm must ensure that the following conditions are satisfied:
the compliance function must have the necessary authority, resources, expertise and access to all relevant information;
a compliance officer must be appointed and must be responsible for the compliance function and for any reporting as to compliance required by SYSC 4.3.2 R;
the relevant persons involved in the compliance functions must not be involved in the performance of services or activities they monitor;
the method of determining the remuneration of the relevant persons involved in the compliance function must not compromise their objectivity and must not be likely to do so.
article 6(3) first paragraph of the MiFID implementing Directive]
4A firm which is not a common platform firm and which carries on designated investment business with or for retail clients or professional clients must allocate to a director or senior manager the function of:
In SYSC 6.1.4A R (1) compliance means compliance with the rules in:
A common platform firm need not comply with SYSC 6.1.4 R (3) or SYSC 6.1.4 R (4) if it is able to demonstrate that in view of the nature, scale and complexity of its business, and the nature and range of (for a common platform firm)4 investment services and activities or (for every other firm) financial services and activities,4 the requirements under those rules are not proportionate and that its compliance function continues to be effective.
article 6(3) second paragraph of the MiFID implementing Directive]