ResourcesMenu
A senior member of staff uses WeChat for business leading a a fine from FINRA for off-channel comms

FINRA fine shows off-channel comms are still on the record

Despite a global push towards reduced regulation, a recent FINRA-issued fine for off-channel communication shows that recordkeeping and surveillance remain a regulatory priority.

Article
07 July 2025 7 mins read
By Jennie Clarke
Written by humans

Written by a human

In brief:

  • FINRA has issued a $500,000 fine to Velox Clearing LLC for its failure to capture and retain off-channel communications
  • The clearing firm “failed to implement a system of supervision and surveillance to identify potentially manipulative trading”
  • Off-channel communications were perpetuated by senior leadership, and instructions from compliance teams to stop were ignored

After a quiet few months on the enforcement front, firms may have been starting to wonder whether regulators – challenged with new growth agendas – had shifted their focus from enforcement to enterprise.

This month, however, the Financial Industry Regulatory Authority (FINRA) has issued a $500,000 fine to Velox Clearing LLC (Velox) in a case that covers the holy trinity of compliance infractions:

  • Off-channel communications
  • Senior leadership failing to set ‘tone from the top’
  • Failure to invest in robust compliance and surveillance programs

Why was Velox fined?

Over the course of a FINRA cycle exam, the regulator uncovered a series of compliance and supervision failings, notably that the firm “failed to preserve or reasonably supervise its employees’ use of off-channel, business-related communications” in line with FINRA Rule 4511, Rule 3110, and Securities and Exchange Commission (SEC) Exchange Act Rule 17a-4.

Velox has been a FINRA member since 2018. During its investigation, FINRA found that – since January 2019 – the firm had failed to have a number of critical retention and supervision policies and processes in place to detect manipulative trading – especially across off-channel communications.

The clearing firm’s policies had said that all business communication must be made through “firm-provided platforms.” Despite this, FINRA found that employees had used SMS/text messages and WeChat both for core business communications and external communications with clients. In one example, a joint WeChat group had been set up between the sales team and the trade desk to discuss “business-related topics.”

As is commonly the case in instances of off-channel communications, FINRA also found that the firm’s CEO and senior staff had “routinely engaged” with customers through WeChat. The communications included requests by customers to move securities, place orders, and/or withdraw funds.

These off-channel communications were no secret to the organization, who were aware that such channels were being used but “failed to take any steps to implement a system to capture, retain, or review” the messages. In 2022, the compliance team at the time had instructed all staff to stop using unapproved channels – an instruction that was ignored.

Also in 2022, the firm’s AMLCO identified the lack of trade surveillance tools as a weakness in Velox’s compliance program and made several requests to senior management for dedicated staff and resources, which the firm did not provide.

As a result, Velox failed to capture or review over 10,000 off-channel communications.

Further failures: lack of resource, staff, and investigation

Velox’s failure to preserve or monitor off-channel communications marked a clear breach of several well-established regulatory principles – the likes of which have led to similar fines cumulatively reaching almost $3 billion.

As well as uncovering persistent off-channel communications, perpetuated by senior leaders, FINRA found that:

  • Velox had failed to create and implement an AML program that could detect and report suspicious transactions in keeping with FINRA Rule 3310 and the Bank Secrecy Act (BSA).
  • Velox had not designed an AML program that could address its high-risk customer base, or that was suitable for customers trading in volatile, low-priced securities, nor had it tailored its procedures to its business operations.
  • Owing to its lack of a suitable AML program, Velox failed to detect numerous red flags of potentially suspicious trading, including those suggestive of spoofing, layering, or bid support. In instances where red flags were identified, they were not investigated.
  • The firm did not have the adequate number of staff or resources to manage its AML program and had a series of ever-changing AML compliance officers, which “contributed to the firm’s inability to maintain an AML program.”

Further to the $500,000 fine, Velox agreed to hire a third-party consultant to review its systems, policies, and procedures specifically relating to “the detection and prevention of potentially manipulative trading activity.”

Three key takeaways from Velox’s fine

The enforcement action taken against Velox is now an all-too-familiar tale of compliance infractions. Among the lengthy list of failures, there are three clear lessons for compliance teams:

With the FCA’s rules around non-financial misconduct expanding to apply to even more firms, ensuring that you have the right tools in place to monitor and detect the tell tale signs of NFM is a business imperative. The right surveillance solutions can help your teams flag and escalate warning signs of misconduct – so you can act on them before it becomes a regulatory matter.

1. Learn how to prove return on investment for compliance infrastructure to the C-suite

A percentage of Velox’s failures are easily attributable to far-reaching resourcing issues. They did not have adequate staff, resource, or budget to sufficiently conduct effective compliance and surveillance. Much of this was owing to the executive team’s refusal to provide such resource.

Compliance teams must find a way to make the case for sufficient investment in their department, or the wider business will find out the perils of under-investment the hard way. Under the U.S. Department of Justice’s new Self-Disclosure Plan, organizations will be rewarded for self-disclosure, which means spotting misconduct as it happens is now a commercial advantage. Invest now – save later.

2. Senior leadership is not above the law and should set the tone from the top

Good cultures often stem from good “tone from the top” – a fact recognized by regulators in near-countless speeches and letters. The Financial Conduct Authority (FCA)’s newly proposed rules around non-financial misconduct will likely see bad conduct factored into whether individuals should be allowed to hold senior positions within financial services.

This case is among a swathe of similar cases that show that the bad conduct of senior leaders is both contagious and does not go uncounted. The U.K. Upper Tribunal recently upheld a ban for former Barclay CEO Jes Staley from senior roles in financial services for lying about his relationship with Jeffrey Epstein. Daley had denied a relationship with Epstein, only for the FCA to find “hundreds of emails” including those in which Daley described Epstein as one of his “most cherished friends.” Senior leaders are subject to the same – if not more stringent – regulatory expectations as all staff, and should act as such to avoid direct, personal enforcement outcomes.

3. Recordkeeping and surveillance remain regulatory priorities – and should be treated as such

This latest enforcement from FINRA shows that off-channel communication remains a priority for regulators. Over past months, we have seen some firms looking to have historic penalties for recordkeeping failures reduced or “equalized” in line with more recent enforcement outcomes – a move that the SEC has denied.

Despite new growth agendas and a reduction of some regulatory expectation, it is clear that recordkeeping and surveillance persists as a priority – and firms should similarly prioritize investment in end-to-end archiving and surveillance technology.

Part of Velox’s compliance failure lay in prohibiting channels like WeChat from being used for business communications. Global Relay’s extensive range of data Connectors allows firms to capture communication from hundreds of channels.

About Article

Published 07 July 2025

About Author

Jennie Clarke Head of Content

Tags

Industry

Share Article

Related Articles

The Conduct Chronicles – Conduct and Culture: Insights from the US Record Keeping fines

Article
White Compliance Hub Glossary text on black background

Material non-public information: protect your integrity

Article
Eliminate the potential for data gaps by building strong surveillance strategies.

Surveillance Snippets: Mind the data capture gap with surveillance strategies 

Article
SUPPORT 24 Hour