X

SIFMA Urges SEC to Impose Liability on SROs for Security Breaches in CAT

In a comment letter, SIFMA argued that self-regulatory organizations ("SROs") that control the Consolidated Audit Trail ("CAT") should be subject to full liability for damages that result from data breaches that might occur when an SRO uses the CAT for commercial purposes.

SIFMA urged the SEC to reject the SROs' attempts to limit their liability or potential payments for damages. SIFMA cautioned that any limitation on the SROs' liability would dis-incentivize the organizations from investing in appropriate security measures. SIFMA suggested that SROs are telling industry members and the SEC that the CAT system is protected from data breaches, but are unwilling to be held responsible for such breaches.

Primary Sources

  1. SIFMA Comment Letter: Re: SIFMA Comment Letter Addressing Notice of Filing of Amendment to the National Market System Plan Governing the Consolidated Audit Trail
  2. SIFMA Press Release: Opposes Limitation of Liability Provisions in CAT Reporter Agreement

Related Articles

  • SEC Disapproves CAT LLC's Proposed Limited Liability Provisions

    The SEC disapproved proposed amendments to the National Market System Plan Governing the Consolidated Audit Trail ("CAT"). The amendments would have provided for limited liability to industry members reporting to the CAT, and limited the liability of the Operating Committee and its participants in the case of a systems breach or misuse.

Premium Content

Available only to Premium subscribers.

 

Join Premium

US Regulatory Intelligence combines regulatory and enforcement news, analysis, and practical work tools on an easy-to-use digital platform.

Request a Free Trial

Tags

Regulated Activities
Data Protection / Cybersecurity Trade Reporting
Sub-Activity
CAT
Jurisdiction
US - Federal
Organization
Trade / Industry Associations
Sub-Author
SIFMA