A registered representative is recommending a 30-year U.S. Treasury bond to a customer concerned about credit risk. Which of the following statements is permissible under FINRA Rule 2210?

Direct obligations of the U.S. Treasury are guaranteed by the full faith and credit of the United States, and this is a specific true statement naming the guarantor — therefore permissible. A personal guarantee against loss is always prohibited under FINRA Rule 2210(d). Promising specific future returns is prohibited. Stating that the SEC has approved a security violates the rule against representing that registration confers approval.

Under Securities Act Section 134, which of the following may be included in a tombstone advertisement published during a registered securities offering?

Securities Act Section 134 permits a tombstone advertisement to identify the issuer, the title and amount of the securities offered, the per-unit price, the names of the underwriters, and the date the prospectus becomes available. Recommendations to buy, performance projections, and any solicitation language are explicitly outside the scope of the tombstone safe harbor. The advertisement must also disclaim that it is not an offer to sell or a solicitation of an offer to buy.

An agent uses the title "Certified Senior Financial Advisor" on business cards. The designation was issued after attending a one-day seminar and paying a $499 fee, with no ongoing education or disciplinary process. Under the NASAA Senior-Specific Certifications and Professional Designations Model Rule, this use of the designation is:

The NASAA Model Rule on Senior Designations permits a credential only if it was issued by an accredited organization with reasonable qualifications, continuing education, and a public disciplinary process. A designation obtained by paying a fee and attending a short seminar fails all three tests. Registration in the state and Form U4 disclosure do not cure the violation — the prohibition applies to use of the credential itself, regardless of registration status.

A registered representative recommends a high-yield (junk) corporate bond to a retail customer. Which of the following must be disclosed at or before the time of the recommendation?

Required product disclosures must include material risks (for a high-yield bond, particularly credit risk and liquidity risk), fees and expenses, and any material conflicts of interest. The maturity date and coupon rate are part of the disclosure but are not sufficient on their own. Bondholder identities are not a required disclosure. State disclosure rules are not preempted at the customer-recommendation level.

A broker-dealer is opening a new individual brokerage account for a customer who will receive recommendations. Under FINRA Rule 4512, which of the following must be collected and recorded at account opening?

FINRA Rule 4512 requires the firm to collect customer identifying information (name, address, age confirmation, tax ID, occupation and employer) plus a registered representative signature and principal approval. For accounts where the firm will make recommendations, the firm must also collect the customer's investment profile — annual income, net worth, investment objectives, risk tolerance, time horizon, and similar information. The records must be sent to the customer within 30 days and updated at least every 36 months.

A customer wants to purchase 1,000 shares of a marginable stock at $40 per share in a margin account. Under Regulation T, what is the minimum initial cash deposit required?

Regulation T (set by the Federal Reserve) requires an initial margin of 50% on marginable equity securities. For a $40,000 purchase, the customer must deposit at least $20,000, with the remaining $20,000 financed by the broker-dealer. The $2,000 minimum equity is a separate requirement for opening a margin account, not the per-trade initial margin. FINRA's 25% applies to ongoing maintenance margin, not initial margin.

A customer holds 500 shares of a $30 long stock position in a margin account. Under FINRA Rule 4210, what is the minimum maintenance margin requirement?

FINRA Rule 4210 sets minimum maintenance margin at 25% of the current market value for long positions. The position has a market value of $15,000 (500 shares times $30), so the maintenance margin minimum is $3,750. The 30% rate applies to short positions of stock priced $5 or more. The 50% rate is Regulation T initial margin, applied at the time of purchase, not maintenance. Firms may set house requirements above the FINRA minimum.

A customer's new options account is approved by the Registered Options Principal on May 1. The Options Account Document (OAD) was delivered on May 1, but the customer has not yet returned the signed Options Account Agreement. As of May 20, under FINRA Rule 2360:

FINRA Rule 2360 requires the signed Options Account Agreement to be returned within 15 calendar days after account approval. May 20 is 19 days after the May 1 approval, so the agreement has not been returned in time. The consequence is that the account may continue to trade options but only on a closing-transaction-only basis — the customer may close existing positions but may not open new ones until the signed agreement is received. The account is not frozen entirely, nor is it closed.

A broker-dealer agent sends a single email to 30 different retail customers in one month describing a new mutual fund. Under FINRA Rule 2210, this communication is categorized as:

FINRA Rule 2210 defines retail communication as any communication distributed or made available to more than 25 retail investors within a 30-calendar-day period. The email reaches 30 retail customers in one month, exceeding the 25-investor threshold, so it is retail communication — requiring principal approval before first use and, in many cases, filing with FINRA. Correspondence is limited to 25 or fewer retail investors in 30 days. The medium (email vs. mail vs. social) does not change the category — audience and volume do.

Under SEC Rule 17a-4, customer account records (the Rule 4512 information) must be retained for:

SEC Rule 17a-4 requires customer account records to be retained for 6 years, with the first 2 years easily accessible. The 3-year retention applies to most other records including order tickets, confirmations, communications with the public (Rule 2210 records), and customer complaints. The lifetime-plus-2-years standard applies to organizational documents (partnership articles, corporate charters, minute books). The WORM (write once, read many) format applies to electronic storage but not as a substitute for the retention period.

Under SEC Regulation S-P, when must a broker-dealer deliver its initial privacy notice to a new retail customer?

Regulation S-P requires the initial privacy notice to be delivered no later than the establishment of the customer relationship — typically at or before the time of account opening. An annual privacy notice must also be delivered while the customer relationship continues, subject to limited exceptions for firms that have not changed disclosed practices and share only within enumerated exceptions. The notice must describe what information is collected, how it is used, and with whom it is shared, regardless of whether sharing occurs with affiliates or third parties.

A registered representative's personal LinkedIn profile prominently displays the agent's title and the firm's name and describes the firm's investment services. Under FINRA Rule 2210, this content is most likely:

Static social media content that describes the firm or its services and is broadly accessible is treated as retail communication under FINRA Rule 2210 — even when posted on a personal account. The content must be approved by a principal before first use and must comply with the rule's content standards and recordkeeping requirements. Personal social media is out of scope only when it does not contain business-related communications. Interactive social media exchanges (live replies, real-time comments) are typically treated as correspondence rather than retail communication.

Section 4 Laws, Regulations, and Guidelines

Communication with Clients and Prospects

50 min read · Lesson 7 of 8

Communication with clients and prospects is the second-heaviest category on the Series 66 — 20% of the exam, roughly 1 in 5 questions. It covers what you must disclose, what you cannot say, how customer accounts are opened and maintained, how communications are categorized and supervised, and how records are kept and privacy is protected.

The chapter is organized around three lenses. Section 1 covers the affirmative disclosures professionals must make and the representations they cannot. Section 2 covers the documents and agreements required to open and maintain new accounts, margin accounts, and options accounts. Section 3 covers how communications are categorized, approved, supervised, retained, and how customer privacy is protected.

In this chapter

50 min · 15 concept checks

§1

Disclosures & Representations

Communications & Recordkeeping

Section 1 of 3 ~14 min · 5 concept checks

Required disclosures and prohibited representations

Required product and relationship disclosures

Both advisers and broker-dealers owe affirmative disclosure obligations to clients and prospects. The Series 66 tests three layers of required disclosure: product, relationship, and changes in circumstances.

Product disclosures — what must accompany every recommendation:

Material risks associated with the recommended security, including market risk, credit risk, liquidity risk, and product-specific risks (interest-rate risk for bonds, leverage risk for options)
Fees and expenses — management fees, 12b-1 fees, sales loads, surrender charges, and any other ongoing expenses that reduce return
Material conflicts of interest related to the product, including compensation arrangements that may bias the recommendation
Tax treatment where material to the recommendation (e.g., municipal bond interest, qualified dividends, IRA distributions)

Relationship disclosures — the documents that frame the engagement:

Form ADV Part 2A (the Brochure) — must be delivered to advisory clients before or at the time of entering into the advisory contract; annual update plus interim amendments for material changes
Form ADV Part 2B (Brochure Supplement) — biographical and disciplinary information about the specific IAR servicing the account
Form CRS (Client Relationship Summary) — required for both BDs and IAs; a short, plain-English summary of services, fees, conflicts, standard of conduct, and disciplinary history; must be delivered at account opening and updated within 30 days of material change

Ongoing disclosures — changes that must be reported:

Changes in financial condition that may impair the firm's ability to meet obligations to clients
Disciplinary history and material legal proceedings (Form ADV Item 11, Form BD Item 11, Form U4 disclosure questions)
Material changes to compensation arrangements or services offered

Required Disclosures

Product Disclosures

Material risks associated with a recommended security
Fees and expenses (management fees, 12b-1 fees, loads)
Conflicts of interest related to the product

Other Required Disclosures

Form ADV Part 2A (Brochure): Must be delivered to clients before or at the time of entering into an advisory contract
Form ADV Part 2B (Brochure Supplement): Information about the specific IAR who will service the account
Form CRS (Client Relationship Summary): Brief document describing the firm's services, fees, conflicts, and disciplinary history
Changes in financial condition that may impair ability to meet obligations
Disciplinary history and legal proceedings

Performance guarantees

No promise of return or against loss

×"Guaranteed 8% annual return"

×"You cannot lose principal"

✓"Guaranteed by the U.S. Treasury" (direct Treasury obligations)

✓"FDIC-insured up to $250,000" (insured deposits)

USA §101; FINRA Rule 2210(d)

Registration as approval

Registration is paperwork, not endorsement

×"SEC-registered, ensuring quality"

×"State-approved investment strategy"

✓"Registered with the SEC"

✓"Registered as an investment adviser in [state]"

USA §404; SA §23

SIPC misrepresentations

Insolvency coverage, not market loss

×"SIPC protects against market losses"

×"SIPC insures my recommendations"

✓"$500K total / $250K cash limit"

✓"Protects against BD insolvency"

SIPA; 15 U.S.C. §78aaa

Senior designations

Must reflect actual credentials

×Unaccredited "senior specialist" titles

×Implying expertise not actually held

✓Accredited designations (CFP, CFA, ChFC)

✓Clear factual descriptions of services

NASAA Model Rule on Senior Designations

Performance guarantees and the "no warranty of outcome" rule

FINRA Rule 2210(d) and the NASAA Statement of Policy both prohibit any representation that guarantees future investment performance or protects against loss. The prohibition is broader than candidates often realize — it covers any statement, written or oral, that explicitly or by implication promises a result.

Always prohibited:

"You will earn X% annually" or "This will outperform the market"
"You cannot lose principal" or "Your money is safe"
"This strategy has never had a losing year" (even if literally true, it implies a future guarantee)
Personal indemnification — an agent personally promising to make the customer whole on any loss

Permitted — specific true statements about specific products:

"Direct obligations of the U.S. Treasury are guaranteed by the full faith and credit of the United States"
"Bank deposits at this institution are FDIC-insured up to $250,000 per depositor"
"This callable bond is guaranteed by [the issuer]" — if literally true and the guarantor's name is disclosed

The single-question diagnostic: is the guarantee a specific true statement about a specific product, naming the guarantor? If yes, permitted. If it is a general promise of outcome by the firm or agent, prohibited.

Unlawful registration representations

USA §404 and Securities Act §23 both prohibit any representation that registration with the state or the SEC constitutes approval of the registrant's qualifications, the merits of any security, or the accuracy of any disclosure. The rule is counterintuitive because registration is a regulatory event — candidates expect it to confer some endorsement. It does not.

Always prohibited:

"SEC-registered, ensuring the quality of our advice"
"This security has been approved by the state securities administrator"
"Our registration is your assurance of integrity"
"State-approved investment strategy"

Permitted — factual statements about registration status:

"Registered with the SEC as an investment adviser"
"Registered in [State] as a broker-dealer"
"A registered representative of [BD] since [date]"

This prohibition applies equally to direct statements, indirect implications, and disclaimers crafted to suggest endorsement. The same rule appears in the NASAA Statement of Policy on Dishonest or Unethical Business Practices of Broker-Dealers and Agents.

NASAA Senior-Specific Certifications and Professional Designations Rule

The NASAA Model Rule on the Use of Senior-Specific Certifications and Professional Designations (2008) restricts how financial professionals may use titles that imply expertise in advising senior clients. The Rule was adopted in response to widespread misuse of credentials like "Certified Senior Adviser" by professionals targeting older investors.

Under the Rule, a designation may be used only if all of the following are true:

The designation was issued by an accredited organization with reasonable qualifications, continuing education, and a public disciplinary process
The credential has not been issued solely on the basis of paying a fee or attending a marketing session
The designation is not used in a way that misleads investors about the holder's level of expertise

Designations that meet the test — CFP (Certified Financial Planner), CFA (Chartered Financial Analyst), ChFC (Chartered Financial Consultant), CLU (Chartered Life Underwriter), and CPA/PFS (Personal Financial Specialist) — remain permissible. Designations that do not meet the test — including many seminar-issued "senior specialist" titles — may not be used in any communication with clients or prospects.

Tombstone advertisements — Securities Act §134

Securities Act §134 carves out a narrow exception to the general rule that no offering communication may be made before a registration statement is effective. A tombstone advertisement — named for its plain black-rule visual style — is a written communication that simply announces a securities offering and identifies the underwriter without soliciting orders.

A tombstone ad may include:

Name of the issuer and the title and amount of the securities
Per-unit offering price
The names of the underwriters
The date of public availability of the prospectus
A statement directing readers to obtain the prospectus before investing
A disclaimer that the advertisement is not an offer to sell or a solicitation of an offer to buy

A tombstone ad may not include:

Recommendations to buy
Forecasts of issuer performance or projected returns
Solicitations of indications of interest (those are handled separately under Rule 134(d))
Any content not authorized by the rule's enumerated list

Prohibited-representation answer framework

When a question asks whether a statement violates the rules, run it through three filters in order:

Does it guarantee a return or against loss? → Violation unless naming a specific true guarantee (Treasury, FDIC, named guarantor).
Does it claim registration confers approval or quality? → Violation. Registration is paperwork, not endorsement.
Does it use a credential or title not actually held, or use a non-accredited "senior specialist" type designation? → Violation under NASAA Model Rule on Senior Designations.

If a statement passes all three filters, it is most likely permitted. If it fails any one, it is a violation regardless of intent or disclaimer.

Section 2 of 3 ~18 min · 5 concept checks

Customer accounts

New account opening — FINRA Rule 4512

FINRA Rule 4512 (Customer Account Information) establishes what a broker-dealer must collect, record, and update for every customer account. The rule's purpose is twofold: enable suitability and best-interest determinations, and create the audit trail regulators rely on in examinations and enforcement actions.

Information required at account opening:

Customer's name and residence address
Whether the customer is of legal age
Customer's tax identification number (typically SSN for individuals, EIN for entities)
Occupation of the customer, and the name and address of the employer
Signature of the registered representative responsible for the account
Signature of a principal of the firm signifying acceptance of the account

Information required for accounts where the firm will make recommendations (typically all retail accounts):

Annual income and net worth (and liquid net worth)
Investment objectives
Risk tolerance
Investment time horizon and liquidity needs
Other holdings, investment experience, and tax status

Maintenance and update requirements:

Customers must be sent the recorded account information within 30 days of opening and at least every 36 months thereafter
The firm must request updates and incorporate any material changes the customer reports
Records must be retained for at least 6 years after the account is closed

New account opening

FINRA Rule 4512 · SEC Rule 17a-3(a)(17)

Collect customer information, profile, and signatures

Form 4512 customer info Customer profile (income, NW, objectives) RR signature Principal approval

Margin upgrade

Reg T · FINRA Rule 4210

Add margin authority — customer must sign before any margin trade

Margin agreement (credit agreement) Hypothecation agreement Reg T initial 50% FINRA 25% maintenance long / 30% short Loan consent (optional)

Options upgrade

FINRA Rule 2360 · OCC OAD

Options approval requires ROP signoff and disclosure delivery

OAD delivered at or before approval Signed Options Account Agreement within 15 days ROP (Registered Options Principal) approval Suitability for options strategy

Margin accounts — Regulation T and FINRA Rule 4210

A margin account permits a customer to borrow part of the purchase price of a security from the broker-dealer, with the security itself serving as collateral. Two separate regulatory layers apply: the Federal Reserve's Regulation T sets initial margin requirements, and FINRA Rule 4210 sets ongoing maintenance requirements.

Regulation T — initial margin:

50% initial margin requirement for marginable equity securities (long or short)
Reg T applies at the time of purchase — the customer must deposit at least 50% of the purchase price, with the remainder financed by the firm
The minimum equity to open a margin account is $2,000, or 100% of the purchase if the security costs less than $2,000
Not all securities are marginable: most listed equities and many OTC securities are; new IPO shares are not marginable for 30 days; options generally cannot be purchased on margin (premium paid in full)

FINRA Rule 4210 — maintenance margin:

25% minimum maintenance margin for long positions
30% minimum maintenance margin for short positions of stock priced $5 or more
If equity falls below the maintenance level, a maintenance margin call requires the customer to deposit additional funds or have positions liquidated
Firms may set house requirements above the FINRA minimums

Required customer agreements before any margin trade:

Margin (Credit) Agreement — sets the terms of the lending arrangement, interest rate calculation, and the firm's right to liquidate
Hypothecation Agreement — authorizes the firm to pledge customer securities as collateral for loans the firm takes to finance the margin
Loan Consent Agreement — optional; authorizes the firm to lend the customer's securities to third parties for short selling

Options accounts — FINRA Rule 2360 and the OAD

Options trading carries unique leverage and loss profiles, so options accounts are subject to additional disclosure and supervisory requirements beyond standard FINRA Rule 4512. FINRA Rule 2360 governs the entire options sales practice.

The Options Account Document (OAD) — formerly called the OCC Options Disclosure Document (ODD) — is the standardized risk disclosure prepared by the Options Clearing Corporation. It must be delivered to a customer at or before the time the firm approves the customer's account for options trading. The OAD covers the risks, characteristics, and strategies of standardized options.

The Options Account Agreement is a separate, customer-signed document confirming the customer's understanding of the OAD and acknowledging the special risks. Under Rule 2360, the signed Options Account Agreement must be returned by the customer within 15 days after the account is approved. If not returned within 15 days, the customer's account may continue trading but only on a closing-transaction-only basis.

Approval workflow:

Customer profile information collected, including investment objectives, experience, and risk tolerance specific to options
OAD delivered at or before approval
Account approved by a Registered Options Principal (ROP) — the supervisor responsible for options activity
Options Account Agreement returned within 15 days
Suitability determination tied to the specific options strategy permitted (Level 1 covered calls and protective puts; up through Level 4 uncovered writing for sophisticated customers)

Options valuation basics

The Series 66 tests a small set of options valuation concepts — not full pricing models, but the language and arithmetic of premiums.

The premium of any option is the sum of two components:

Intrinsic value — the option's in-the-money amount, which is the positive difference between the market price and the strike price. A call has intrinsic value when market > strike; a put has intrinsic value when market < strike. Intrinsic value is never negative.
Time value (also called extrinsic value) — the portion of premium attributable to remaining time until expiration. Time value erodes ("decays") as expiration approaches.

Moneyness terminology:

In-the-money (ITM) — the option has intrinsic value. Call ITM when market > strike; put ITM when market < strike.
At-the-money (ATM) — market price equals strike price.
Out-of-the-money (OTM) — the option has no intrinsic value. Call OTM when market < strike; put OTM when market > strike. The entire premium of an OTM option is time value.

Worked example. A call option on XYZ has a $50 strike. XYZ is trading at $54. The call is in-the-money by $4 (intrinsic value). If the premium is $5.50, the time value is $1.50 ($5.50 premium minus $4 intrinsic). If XYZ falls to $48, the same call becomes out-of-the-money — intrinsic value is now $0 and the entire remaining premium is time value.

What Advisory Contracts Must Include

All investment advisory contracts must contain:

Description of services to be provided
Compensation arrangement — how fees are calculated and when they are charged
Term and termination clause — the contract must allow the client to terminate without penalty within 5 business days
No assignment without consent: The contract cannot be assigned to another adviser without the client's written consent
Disclosure of conflicts of interest

"Assignment" includes: A change in control of the adviser (e.g., a sale of the advisory firm) that constitutes an assignment under the law. If an adviser is acquired by another firm, each client must consent before the new firm can manage their assets.

Customer-account answer framework

Account questions almost always test a specific document or rule — identify the account type first, then the document:

Cash account → FINRA Rule 4512 customer info + Form CRS at account opening.
Margin account → Add the margin (credit) agreement and hypothecation agreement. Reg T initial 50%, FINRA 25% maintenance long / 30% short.
Options account → Add the OAD at or before approval, and the signed Options Account Agreement within 15 days. ROP approves the account.
Advisory account → Form ADV Part 2A delivered before or at contract; written contract describing services, compensation, and assignment terms.

When a question gives a fact pattern about an existing customer who wants to trade a new product, the answer is almost always: deliver the relevant disclosure, get the relevant agreement signed, and obtain principal/ROP approval — in that order.

Section 3 of 3 ~18 min · 5 concept checks

Communications, records, and privacy

FINRA Rule 2210 — the framework for everything a BD says publicly

FINRA Rule 2210 (Communications with the Public) is the master rule governing how broker-dealers and their agents may communicate with customers and prospects. It divides every communication into one of three categories — each with different supervisory, recordkeeping, and filing requirements.

The three categories are defined by audience and volume, not by medium. A single tweet, a one-on-one email, and a televised commercial may each fall into different categories depending on who sees the communication and how widely it is distributed.

Most restricted

Retail communication

FINRA Rule 2210(a)(5)

Audience> 25 retail investors / 30 days

ApprovalPrincipal before first use

FilingFINRA in many cases

Examples

Advertisements, TV, print
Public websites
Mass-distributed sales lit
Social media broadcasts

Specialized audience

Institutional communication

FINRA Rule 2210(a)(3)

AudienceOnly institutional investors

ApprovalWritten supervisory procedures

FilingNot filed with FINRA

Examples

Bank/IA/insurance comms
Govt entities, big plans
Person/entity ≥ $50M assets
Other registered BDs

Most permissive

Correspondence

FINRA Rule 2210(a)(2)

Audience≤ 25 retail investors / 30 days

ApprovalSample review

FilingNot filed with FINRA

Examples

One-on-one emails
Letters to specific clients
Texts to a few customers
Low-volume comm

Approval, filing, and recordkeeping

Each FINRA 2210 category triggers different approval and filing obligations, and candidates should be able to map a fact pattern to the correct requirement.

Approval requirements:

Retail communication — principal approval required before first use in most cases. Limited exceptions for previously-filed templates and certain research reports.
Institutional communication — principal approval not required, but the firm must establish and enforce written supervisory procedures and conduct sample reviews.
Correspondence — principal approval not required at the individual-message level. The firm must instead establish supervisory procedures for review of a representative sample.

Filing with FINRA:

Pre-use filing within 10 business days before first use: retail communications about closed-end funds during the offering period, security futures, and certain BD performance rankings
Post-use filing within 10 business days of first use: most other retail communications about registered investment companies, public DPP offerings, and similar products
No filing for institutional communications, correspondence, or retail communications that fall within enumerated exemptions

Content standards apply across all categories:

No false or misleading statements
No predictions or projections of investment performance (limited exceptions)
Fair and balanced presentation of risks and benefits
Required disclosures included when relevant (e.g., past performance disclosures, fee disclosures)

SEC Marketing Rule — Testimonials and Endorsements

The SEC's revised Marketing Rule (effective November 2022) modernized how investment advisers can advertise. Key changes:

Testimonials now permitted (previously banned) — with required disclosures about whether the person was compensated, any material conflicts, and that past experience may not be representative
Endorsements permitted — with similar disclosures
Performance advertising rules modernized:
- Gross and net performance must be shown with equal prominence
- Performance must include at least 1-, 5-, and 10-year periods (or since inception if less)
- Hypothetical performance is permitted but only with extensive disclosures about methodology and limitations
Social media: Advisers must supervise and archive social media content. An adviser's social media post is advertising and must comply with all marketing rules.

Social media, email, and digital messaging

Electronic communications are subject to the same Rule 2210 categorization framework as any other communication — the medium does not change the category, the audience and volume do. The supervisory challenge is operational, not regulatory: making sure the firm captures and retains every business-related electronic message.

Social media:

Static content (profile information, biographical posts, advertising-style content) is typically retail communication and requires pre-use principal approval
Interactive content (live tweets, comments, real-time replies) is typically treated as correspondence subject to supervisory review
The firm must archive all business-related social media communications and have the ability to retrieve them on demand
Personal social media accounts are out of scope unless they are used for business communications, in which case the firm's policies apply

Email and digital messaging:

All business-related electronic communications must be captured and retained under SEC Rules 17a-3 and 17a-4 (covered below)
The firm is responsible for adopting and enforcing acceptable-use policies, including prohibitions on conducting business through personal email or unmonitored messaging apps
"Off-channel" communications — business conducted through unmonitored channels — have been a major recent enforcement area, with billions in fines across the industry

Website communications:

The firm's public website is retail communication, fully subject to pre-use approval, filing where required, and the 2210 content standards
Linked content that the firm endorses, controls, or systematically references becomes the firm's responsibility under FINRA's "entanglement" and "adoption" doctrines

Books and records — SEC Rules 17a-3 and 17a-4

SEC Rule 17a-3 specifies the records a broker-dealer must make. SEC Rule 17a-4 specifies how those records must be preserved. Together they form the backbone of the BD recordkeeping regime, and FINRA examinations begin and end with the records they require.

Rule 17a-3 — records that must be made:

Blotters (records of original entry) showing all purchases and sales of securities, receipts and deliveries of securities, receipts and disbursements of cash
Ledgers showing all customer assets, liabilities, capital, income, and expense accounts
Securities records showing each security long or short with its location
Order tickets capturing every order received
Confirmations and account statements sent to customers
Customer account records (the 4512 information)

Rule 17a-4 — retention periods:

Lifetime of the firm plus 2 years — partnership articles, corporate charters, minute books, stock certificate books
6 years, with the first 2 years easily accessible — customer account records, blotters, ledgers, securities records, customer correspondence
3 years, with the first 2 years easily accessible — most other records including order tickets, trade confirmations, communications with the public (Rule 2210 records), trial balances, and customer complaints

Storage media requirements:

Electronic storage must use a non-rewritable, non-erasable format (WORM — Write Once, Read Many), or any electronic system that meets the SEC's audit-trail requirements
Records must be readily producible to examiners on demand
An independent third-party access undertaking is required if records are maintained electronically

Regulation S-P — customer privacy

SEC Regulation S-P governs how broker-dealers and investment advisers may collect, use, and share customer nonpublic personal information. State law (USA §403 and the NASAA Investment Adviser Information and Security Privacy Rule) imposes parallel obligations for state-registered firms.

Initial and annual privacy notices:

An initial privacy notice must be delivered to each customer not later than the establishment of the customer relationship
An annual privacy notice must be delivered while the customer relationship continues, unless the firm has not changed its disclosed sharing practices and shares only within permitted exceptions
Notices must describe what information is collected, how it is used, with whom it is shared, and how it is protected

Opt-out rights:

Customers have the right to opt out of sharing their nonpublic personal information with nonaffiliated third parties (with limited exceptions for service providers and joint marketing arrangements)
The opt-out notice must be clear, conspicuous, and provide a reasonable means to exercise the right
A reasonable period (typically 30 days) must be provided before any nonexempt sharing begins

Safeguards Rule:

Firms must adopt written policies and procedures reasonably designed to protect customer records and information
The Safeguards Rule covers administrative, technical, and physical safeguards
The 2024 amendments require written incident response programs and notification of affected individuals within 30 days of a covered breach

FINRA 2210 answer framework

Communication-category questions are won by mapping the fact pattern in two steps:

Step 1: Who is the audience? Only institutional investors → institutional. Any retail investors → count them.
Step 2: How many retail investors? > 25 in 30 days → retail communication (most restricted, principal approval, possible filing). ≤ 25 → correspondence (sample-review supervision only).

Records and privacy quick rules:

Customer account records: 6 years, first 2 easily accessible
Most other records (orders, confirms, 2210 comms): 3 years, first 2 easily accessible
Organizational documents: lifetime + 2 years
Reg S-P: initial notice at relationship start, annual thereafter, opt-out for nonaffiliated sharing

Summary Exam essentials · consolidated exam traps

Chapter summary

Ch 4-7 Exam Essentials — Communication with Clients and Prospects

Required disclosures. Product (risks, fees, conflicts, tax), relationship (Form ADV 2A/2B, Form CRS, advisory contract), and changes in circumstances. Form CRS delivered at account opening; ADV 2A before or at contract.

Performance guarantees. Prohibited unless naming a specific true guarantor (U.S. Treasury direct obligations, FDIC-insured deposits, named issuer guarantor).

Registration as approval. Always prohibited. Registration is paperwork, not endorsement.

Senior designations. NASAA Model Rule permits only accredited designations (CFP, CFA, ChFC, CLU, CPA/PFS). Non-accredited "senior specialist" titles prohibited.

Tombstone ads (SA §134). May include issuer, security, price, underwriters, prospectus availability date. No recommendations, no projections.

New account opening (FINRA 4512). Name, address, age, SSN/EIN, occupation/employer, RR signature, principal approval; plus profile (income, NW, objectives, risk tolerance) for accounts where firm makes recommendations. Update every 36 months.

Margin (Reg T + FINRA 4210). Reg T initial 50%. FINRA maintenance: 25% long, 30% short. $2,000 minimum equity to open. Required: margin (credit) agreement, hypothecation agreement; optional: loan consent.

Options (FINRA 2360). OAD delivered at or before account approval. Signed Options Account Agreement within 15 days, else closing-only. ROP approval required.

Options valuation. Premium = intrinsic + time. ITM call: market > strike. ITM put: market < strike. OTM premium is 100% time value.

FINRA 2210 categories. Retail = > 25 retail in 30 days (principal approval, possible filing). Institutional = institutional only (supervisory procedures). Correspondence = ≤ 25 retail in 30 days (sample review).

Books and records (SEC 17a-3, 17a-4). Customer account records 6 years (first 2 easily accessible). Order tickets, confirms, 2210 comms 3 years. Org documents lifetime + 2 years.

Regulation S-P. Initial privacy notice at relationship start; annual notice thereafter (with exceptions); opt-out for nonaffiliated sharing; Safeguards Rule with written policies and breach notification.

Communications exam traps — consolidated

"SEC-registered, ensuring quality" — always a violation. Registration confers no endorsement.
"Guaranteed 8% return" — always prohibited. Naming a specific true guarantor (Treasury, FDIC) is the only safe path.
"OAD must be signed within 15 days." Wrong — the OAD is delivered, not signed. The Options Account Agreement is the document signed within 15 days.
"Maintenance margin is 50%." Wrong. Reg T initial is 50%. FINRA maintenance is 25% long, 30% short.
"A tombstone ad may include a buy recommendation." Wrong. SA §134 enumerates exactly what may be included; recommendations are not on the list.
"Correspondence requires principal approval before each message." Wrong. Sample-review supervision is the standard; pre-use approval is required for retail communications.
"Customer account records are kept 3 years." Wrong. Account records are 6 years; orders/confirms are 3 years.
"Annual privacy notice can be skipped if customer consents." Wrong. The exception is for firms that have not changed their disclosed practices and share only within permitted exceptions — not customer waiver.
"Margin call satisfied by buying more stock." Wrong. A maintenance call requires deposit of cash or marginable securities, not new purchases.
"A static social media post is correspondence." Wrong. Static social content is typically retail communication (advertising-style); interactive replies may be correspondence.

Concept Check

An investment adviser states on their website: "Registered with the state securities department, ensuring the highest quality of advice." This statement is:

Under both the Uniform Securities Act and the Investment Advisers Act, no person may represent that registration constitutes approval of their qualifications or quality of services. Registration is a legal requirement, not an endorsement.

Concept Check

Under the SEC Marketing Rule, an investment adviser may use client testimonials in advertising if:

The SEC's Marketing Rule permits testimonials and endorsements with required disclosures: whether the person was compensated, material conflicts of interest, and that the experience may not be representative of other clients. The old blanket ban on testimonials was lifted in November 2022.

Concept Check

An adviser sells their practice to another advisory firm. Before the new firm can manage existing client accounts, it must:

Advisory contracts cannot be assigned without the client's consent. A change in ownership of the advisory firm constitutes an assignment. Each client must provide written consent before the new firm can manage their assets.

Prohibited Representations and Guarantees

Unlawful representations: Cannot state or imply that registration with a state or the SEC constitutes approval of the person's qualifications or endorsement of their services
Performance guarantees: Cannot guarantee future performance or promise that a loss will not occur

Client Contracts and Agreements

Advisory contracts must be in writing
Must disclose compensation arrangement and services provided
Cannot assign the contract without client consent
Must include a provision for termination without penalty

Advertising and Correspondence

Social media: Must be supervised and archived; same rules as other advertising — no misleading claims or guarantees
Email and digital messaging: Must comply with recordkeeping requirements and be subject to firm review
Website communications: Must be accurate, not misleading, and include required disclosures
Testimonials and endorsements now permitted under the SEC's Marketing Rule (with required disclosures)

Previous Next

Practice what you just learned

Test yourself with exam-style questions on this topic.

Practice Questions