Senior-led AI governance for broker-dealers running trade-surveillance models, AI-assisted research, and AI in customer communications. When a FINRA examiner asks how an AI tool is supervised, or the 2024 Reg S-P amendments put your incident-response program under a clock, we get your AI to a place you can defend.
Broker-dealers answer to two masters on AI at once: the SEC through Reg S-P and Reg BI, and FINRA through its supervision and books-and-records rules. We build one program that satisfies both.
A broker-dealer's AI exposure is split across two regulators with overlapping reach. The SEC sets the data-protection and conduct rules; FINRA supervises how you run the firm day to day. AI now sits inside both.
The deadline-driving change is the Reg S-P 2024 amendments. The SEC amended Regulation S-P to require broker-dealers, registered investment companies, and SEC-registered advisers to adopt written incident-response programs and to provide customer breach notification. The notification provision requires affected individuals to be notified as soon as practicable, but no later than 30 days, and the clock is the part firms most often get wrong. It runs from the firm's determination that unauthorized access to or use of customer information has occurred and that the sensitive customer information was or is reasonably likely to be used in a way that would cause substantial harm or inconvenience, not from mere discovery of an event. Because the precise trigger turns on statutory wording, we always confirm it against the SEC adopting release as part of the legal-review pass on an engagement rather than asserting a fixed deadline from memory. The amendments also expand what counts as sensitive customer information, which widens the population of incidents that can trip the program.
Layered on the SEC's data-protection regime are the FINRA AI examination priorities. FINRA has signaled close attention to AI in customer communications, the supervision of AI-generated research and the AI tools registered representatives use, and AI inside trading algorithms. Those priorities reach back into FINRA's existing rulebook. FINRA Rule 3110 requires a supervisory system reasonably designed to achieve compliance, and an AI tool that drafts a research summary or a client message does not escape supervision because a model produced the words. FINRA Rule 4370 requires a business-continuity plan, and AI systems that have become load-bearing in trading or surveillance are now part of what that plan must contemplate.
Then there are the books-and-records rules, SEC Rule 17a-3 and Rule 17a-4, which govern what a broker-dealer must create and retain and in what form. When an AI generates a communication, a research note, or a recommendation, that output can be a record the firm is obligated to capture and preserve in a compliant, non-rewriteable format. Many firms deploy AI chat and drafting tools long before their retention architecture is set up to capture what those tools produce. Add the intersection of AI-driven recommendations with Regulation Best Interest, where an AI tool that nudges a customer toward a product implicates the same care, conflict, and disclosure obligations a human recommendation would, and the SEC's 2023 cybersecurity risk-management proposals that sit over the whole stack, and the picture is a firm being examined on AI from several directions before it has inventoried where the AI even is.
These are the recurring failure modes a compliance officer at a broker-dealer recognizes immediately. Each one shows up in an exam request or a deficiency letter.
AI trade-surveillance false positives. Surveillance models that flag potential manipulation or insider activity generate enormous false-positive volume, and a firm that cannot explain why a model fired, or document that alerts were reviewed and dispositioned, has a supervision problem rather than a technology problem. The model is supposed to make supervision better, not create an unreviewed backlog an examiner can point to.
Reg BI suitability with AI in the loop. When an AI tool surfaces or ranks products for a representative, the care obligation under Reg BI still attaches. Firms struggle to show that an AI-assisted recommendation accounted for the customer's profile, that conflicts were managed, and that the representative, not the model, owns the recommendation.
FINRA exam readiness for algorithmic trading. Firms running execution or trading algorithms are asked to demonstrate testing, change control, kill-switch governance, and supervision over the models. The gap is usually documentation: the algorithm works, but the evidence that it is governed does not exist in a form an examiner accepts.
17a-4 retention for AI-generated communications. AI chat assistants and drafting tools produce communications with customers and internal research the firm may be obligated to retain under 17a-3 and 17a-4. If those outputs are not captured into a compliant, tamper-evident archive, the firm has a books-and-records gap that is easy for an examiner to test and hard to remediate after the fact.
Reg S-P deadline pressure. The 2024 amendments forced firms to stand up written incident-response programs and a defensible breach-notification process on a timeline. Many firms have a policy on paper but have never tested whether they could actually make the determination, scope the affected population, and notify within the window the rule contemplates.
The same five-step method runs every engagement, scaled to the tier. For a broker-dealer it is built to drop straight into your written supervisory procedures rather than sit beside them.
Discovery. We map your registration profile, whether you are introducing or clearing, whether you are a dual-registrant, and where AI already touches surveillance, research, communications, and trading. AI use-case inventory. We name every AI tool in the firm, including the representative-level tools that compliance did not procure and the third-party models embedded in vendor platforms. Control mapping. We map each system onto Reg S-P, the FINRA examination priorities, Rules 3110 and 4370, the 17a-3 and 17a-4 retention obligations, and Reg BI, and we fold those controls into your written supervisory procedures so one rulebook governs the AI. Testing. We test what FINRA tests: surveillance-alert review and disposition, supervisory coverage of AI-generated communications and research, retention capture of AI outputs, and whether your incident-response program can actually make a Reg S-P determination on a clock. Remediation roadmap. We sequence the fixes so the most examinable gap closes first, usually retention or supervision, and you leave with a defensible inventory and a roadmap your principal can sign.
Most firms start with a fixed-fee use inventory and triage, then decide whether to redesign supervisory procedures or build the full framework into the surveillance stack. You choose the depth.
A fixed-fee AI use inventory across surveillance, research, communications, and trading, a quick-risk triage that ranks each tool by exam exposure, and an incident-response program template aligned to the Reg S-P 2024 amendments that your firm can adopt and test. You leave knowing where the AI is and which gap an examiner would find first.
A redesign of the written supervisory procedures that govern AI surveillance and AI-assisted recommendations: alert-review and disposition controls, supervisory coverage of AI-generated research and communications, Reg BI care and conflict handling where AI is in the loop, and 17a-4 retention capture for AI outputs.
A complete AI governance framework integrated into the firm's WSPs and surveillance technology stack: a governed AI inventory, change control and testing standards for trading and surveillance models, a third-party AI risk regime, and the documentation a FINRA exam or an SEC cybersecurity review expects to see.
A small firm of senior practitioners, established 2026, that builds the tools it governs with.
Engagements run on a senior-only bench. There is no junior hand-off. The person who scopes the work is the person rewriting your surveillance WSPs and the person answering your principal's hardest question. In a FINRA-supervised setting, the quality of the answer to an examiner depends entirely on who is doing the work.
The firm also ships authored open-source IP. mcp-warden is DSE's public supply-chain integrity gate for AI tooling: it pins a tool surface, fails on drift, and inspects what a third-party tool actually returns at runtime. That is exactly the discipline a broker-dealer needs over the third-party AI inside its surveillance and research vendors, where a silent vendor model change can quietly undermine a control you certified. We govern AI by building the controls that govern AI, not by reselling someone else's framework. Established 2026, operator-led, and accountable on paper under a signed SOW or MSA.
Does Reg S-P's 30-day clock start at discovery or determination? At determination, not discovery. The Reg S-P 2024 amendments require notifying affected individuals as soon as practicable but no later than 30 days, and that window runs from the firm's determination that unauthorized access to or use of customer information has occurred and that the sensitive customer information was or is reasonably likely to be used in a way that would cause substantial harm or inconvenience. Discovering an event is not the same as making that determination. Because the precise trigger turns on the statutory language, we confirm it against the SEC adopting release as part of the legal-review pass on every engagement rather than asserting a fixed deadline from memory.
How do 17a-4 retention rules apply to AI-generated chat? If an AI chat or drafting tool produces a communication that meets the definition of a business record, a customer communication or internal research, for example, the firm has the same obligation to capture and preserve it that it would for any other communication, in a compliant, non-rewriteable format with the retention periods 17a-4 specifies. The practical failure is that firms deploy the AI tool first and discover later that its output never flowed into the compliant archive. We treat retention capture as a first-order control, not an afterthought.
Is an AI research summary subject to FINRA Rule 3110 supervision? Yes. Rule 3110 requires a supervisory system reasonably designed to achieve compliance, and that obligation does not lapse because a model drafted the content. An AI research summary that goes to a customer or informs a recommendation needs supervisory review, a documented review process, and a named supervisor, the same as research a human wrote. The model is a tool inside the supervisory system, not a substitute for it.
We use an AI surveillance vendor. Does that satisfy our supervision obligation? No. Buying a surveillance model does not transfer your supervisory responsibility under Rule 3110. The firm still has to show alerts are reviewed and dispositioned, that the model's coverage is appropriate to the firm's activity, and that someone is accountable for the surveillance program. A vendor SOC report describes the vendor's controls, not your supervision. We build the oversight layer that sits on top of the vendor tool.
Do AI trading algorithms need their own governance documentation? Yes. Firms running execution or trading algorithms are routinely asked to demonstrate pre-deployment testing, change control, kill-switch and limit governance, and ongoing supervision over the models. The algorithm working is not the same as the algorithm being governed. The Anchor and Moat tiers build the testing and change-control documentation an examiner expects to see for any model that touches order flow.
What does a typical engagement actually look like? A typical Anchor engagement for an introducing broker-dealer would inventory the AI in surveillance, communications, and research, redesign the written supervisory procedures so AI-generated communications get documented review and AI outputs flow into the 17a-4 archive, harden the Reg S-P incident-response program so the firm can actually make and document a determination on a clock, and deliver a remediation roadmap a principal can sign. That illustration is hypothetical and meant to show shape and sequence, not a specific client.
A compliance workbook covering the GLBA Safeguards Rule, the 2024 SEC Reg S-P amendments, and FINRA cybersecurity expectations for broker-dealer customer-data protection programs. Enter your work email and we will send the PDF.
The customer-data protection workbook for broker-dealers: GLBA, the 2024 Reg S-P incident-response and notification rules, and FINRA cybersecurity expectations in one place.
More workbooks in the full Financial Services Compliance Resource Library →
Regulatory content last reviewed: June 2026 · Maintained by DSE · Next review on material change to Reg S-P.
DSE provides AI governance and compliance readiness consulting and AI security testing for broker-dealers. We are not an accredited certification body and do not issue ISO/IEC 42001 certificates or certify Reg S-P, FINRA, or NIST AI RMF compliance. Only the relevant regulator or an accredited certification body can attest to that.
We cannot guarantee passing a FINRA or SEC exam or avoiding enforcement, and we do not provide legal advice. We work alongside your counsel and your firm's principals. Where we describe mapping to Reg S-P, FINRA Rules 3110 and 4370, SEC Rules 17a-3 and 17a-4, Reg BI, or the NIST AI RMF, that means advisory alignment, not certification, and the precise Reg S-P notification trigger is confirmed against the SEC adopting release with your counsel.
All engagements are governed by a signed SOW / MSA that includes a limitation of liability.