A securities firm shall adopt internal control and internal auditing regimes in accordance with the working procedures and mechanisms. The internal audit department or legal compliance department shall regularly review the content of the various rules to ensure compliance with laws and regulations, and intensify the auditing of the implementation of wealth management business, to control and manage the compliance of work procedures and transaction procedures with internal rules and with laws and regulations.
The internal audit department shall intensify auditing of the implementation of work procedures relating to "Know Your Customers" evaluation, suitability of customer investment amounts and scope, and anti-money laundering procedures, and review the effectiveness of the establishment of related controls and mechanisms.
When a securities firm conducts wealth management business, the person in charge of its legal compliance department shall be responsible for planning and surveillance of relevant money laundering control matters, and shall report to the board of directors at least once annually on the status of implementation of related work by the business department.
A securities firm, when applying to conduct wealth management business by means of trusts, shall appoint at least one individual dedicated to internal auditing.
The internal auditor as referred to in the preceding paragraph may concurrently hold the position of internal auditor for both wealth management business and securities businesses.