a. Describe the written safeguards and written procedures to protect the confidential trading information of Subscribers to the NMS Stock ATS, including:
i. written standards controlling employees of the ATS that trade for employees' accounts; and
ii. written oversight procedures to ensure that the safeguards and procedures described above are implemented and followed.
| GENERAL BACKGROUND AND SCOPE OF SUBSCRIBER CONFIDENTIAL TRADING INFORMATION Instinct X is comprised of a standalone hardware (i.e., server) and software application (collectively, the operating plant). Instinct X does not share an operating plant with any other BofAS system, but it is housed in the same data center as other BofAS systems. BofAS maintains physical restrictions and policies and procedures designed to safeguard the confidential trading information of Subscribers. BofAS considers a Subscriber's identity, orders, and conditional placements routed to, and trades effected by, Instinct X (including data analytics related to a Subscriber's transactions) confidential trading information. However, BofAS may include certain post-execution information involving Instinct X transactions in various reports, data, and commentary communicated internally and externally to Clients directly or through vendors, provided BofAS has anonymized (i.e., does not identify an individual Subscriber) such information, aggregated such information with execution information from other desks or from BofAS as a whole (such that no individual trade, Client, or Subscriber is identifiable), and communicated such information with appropriate delay. As noted in "Systems with Access to Subscriber Confidential Trading Information" in Part II, Item 7, the BofAS algorithms and SOR can transmit Subscribers' confidential trading information to the extent these systems route Subscribers' orders or conditional placements and related messages to Instinct X. Subject to the above, access to Subscriber confidential trading information is limited to BofAS employees and systems responsible for operating Instinct X or responsible for its compliance with applicable rules. Set forth below are the BofAS employees and systems with access to Subscriber confidential trading information, as well as a description of the applicable safeguards and oversight procedures. Subject to the above, access to Subscriber confidential trading information is limited to BofAS employees and systems responsible for operating Instinct X or responsible for its compliance with applicable rules. Set forth below are the BofAS employees and systems with access to Subscriber confidential trading information, as well as a description of the applicable safeguards and oversight procedures. EMPLOYEES WITH ACCESS TO SUBSCRIBER CONFIDENTIAL TRADING INFORMATION BofAS does not have any employees solely responsible for Instinct X. The shared employees described in response to Part II, Item 6(a) are the only employees who have access to Subscriber confidential trading information. These employees are prohibited from sharing any Subscriber confidential trading information with Persons not authorized to receive such information. BofAS does not provide Subscriber confidential trading information to BofAS business units or BANA authorized traders in furtherance of BofAS principal trading activities or BANA trading activity. SYSTEMS WITH ACCESS TO SUBSCRIBER CONFIDENTIAL TRADING INFORMATION BofAS offers third-party external direct market access gateways to customers and clients which are used by some Direct Subscribers to transmit orders and/or conditional placements, including Subscriber confidential trading information, to Instinct X. These gateways communicate to the employees of the third-party responsible for managing the health of the respective gateway (as described in response to Part II, Item 7(d)), real-time information about where the Direct Subscriber's orders and/or conditional placements were routed and or executed, which could be Instinct X or any other market center. The order and execution management systems used by the Sales and Trading employees described in response to Part II, Item 6(a) can transmit Indirect Subscribers' confidential trading information to the extent orders handled by a Sales and Trading employee is routed to Instinct X. These systems communicate information to Sales and Trading employees with respect to where their Clients' orders were routed and/or executed, which could be Instinct X or any other market center. Separately, BofAS algorithms and the BofAS SOR can transmit Indirect Subscribers' confidential trading information to the extent these systems route Indirect Subscribers' orders or conditional placements to Instinct X. Neither the BofAS algorithms nor the BofAS SOR make routing determinations based on information about orders or conditional placements the respective system routes to Instinct X. All Subscriber orders and conditional placements entering Instinct X pass through the FIX interface. The FIX interface does not retain information about the orders or conditional placements entering Instinct X. The FIX interface does not communicate order or conditional placement information to any other BofAS system. BofAS maintains a research database containing historical trading information. The ET Products team uses this database to run queries and generate reports as described above. This database includes post-trade Subscriber confidential trading information. BofAS maintains an internal system containing order, conditional placement, and execution information routed through the BofAS SOR. The ET Consulting group uses this internal system to run queries and generate reports at the request of BofAS business units and Clients using the BofAS algorithms or SOR, including Indirect Subscribers. BofAS employs a proprietary application for real-time monitoring of Instinct X. The MAG team uses this application to research Subscriber's orders, conditional placements, and executions and monitor the health of Instinct X (e.g., monitor the number of rejections, pending orders or conditional placements, order-to-fill ratios). BofAS uses internal and external systems to comply with its books and records, trade reporting, surveillance and supervisory obligations. These systems can receive Subscriber order and execution information for purposes of creating surveillance, supervisory and OATS reports. SAFEGUARDING AND OVERSEEING SUBSCRIBER CONFIDENTIAL TRADING INFORMATION Access to Instinct X, Other Relevant BofAS Systems, and Subscriber Confidential Trading Information: BofAS requires permissioned logins to access Instinct X. In addition, BANA's global cyber security efforts, including measures to detect and prevent unauthorized intrusions of BANA systems, apply to BofAS, including the operation of Instinct X. Relevant Business Control Officers and Compliance control functions must approve all employee access to Instinct X, including the operating plant, development code (including the FIX interface), and production logs. Any individual seeking access to Instinct X must submit a request through BofAS's Access Review Management System ("ARMS"). A registered principal must review and approve such request before an individual is granted access to Instinct X. In reviewing access requests, the registered principal considers factors including the employee's current role and whether the employee performs a function related to Instinct X. An employee's request to gain access may be denied if it is deemed to be unnecessary or inappropriate. Employees granted access to a system will have access to all Subscriber confidential trading information available in the system. If an employee changes roles, both the prior supervisor and new supervisor are required to review and adjust the employee's access entitlements to appropriately reflect the employee's new role. Additionally, all approved access requests are subject to a periodic review pursuant to BofAS's written supervisory procedures ("WSPs") described below. Pursuant to the BofAS WSPs, on a quarterly basis, the ATS Supervisor or delegate conducts a review to confirm the appropriateness of user access entitlements to Instinct X, including verification that users whose roles have changed and/or, employees who have been inactive, transferred or terminated have their permissioned access removed from the system. This WSP governs access to the interface used to view and/or interact with Instinct X's order book and how the access entitlements to Instinct X should be handled once an individual submits a request for access through the ARMS process, as well as on an ongoing basis after a registered principal has granted access to an individual. Based on this review, the ATS Supervisor or delegate may revoke access rights to Instinct X's order book. Pursuant to another BofAS WSP, on a quarterly basis, the ATS Supervisor or delegate conducts a review to confirm the appropriateness of user access entitlements to Instinct X's server logs, including verification that users whose roles have changed and/or, employees who have been inactive, transferred or terminated have their permissioned access removed from the system. This WSP governs access to the server logs and those with direct business responsibility, or who provide development or other technology support to Instinct X. Based on this review, the ATS Supervisor or delegate may revoke access rights to Instinct X's server logs. Additionally, BofAS's contracts with the third-party external market access gateway providers and the third-party service providers described above require such providers to protect Subscriber confidential trading information. Specifically, and among other things, these third-parties must: (i) keep Subscriber trading information confidential, (ii) not share Subscriber confidential trading information with any Person who does not have a reasonable need to know or access such information, and (iii) not use or act on Subscriber confidential trading information other than to perform their responsibilities under their agreements (including the use of aggregated and anonymous data for internal statistical, forensic and similar purposes). These third-parties also perform periodic reviews of platform access to confirm the system access entitlements remain accurate, i.e., verify that users whose roles have changed and/or, employees who have been inactive, transferred or terminated have their permissioned access removed from the system. SEPARATION: BofAS has physical and information barriers in place to separate employees and systems with access to Subscriber confidential trading information from those not permitted to access such information. Technology department employees are located in a separate physical location from other BofAS business units--either a different building or a different floor. MAG and ET Product and Consulting employees are located in the same building as other BofAS business units, but in a separate area. As noted above, Instinct X does not share an operating plant with any other BofAS system, but it is housed in the same data center as other BofAS systems. PERSONAL TRADING RESTRICTIONS: BofAS prohibits all employees, including those with access to Subscriber confidential trading information, from trading based on non-public or other confidential information, which would include Subscriber confidential trading information. Pursuant to the Associate Investment Policy these employees must enter a trade pre-approval request via the Associate Investment Monitoring ("AIM") website for every purchase and sale of a security executed in an employee investment account, which among other things, requires the approval of the employee's supervisor and the AIM Group. When requesting approval for a trade, the employee must provide certain attestations, depending on the employee's role, including whether he or she: (i) reviewed the restricted list and that there are no restrictions, (ii) has no material non-public information, (iii) is not aware that Firm is effecting or proposing to effect a principal or customer trade in the security, and (iv) has held the security for 30 days (for sells). Prior to approving any request, the employee's supervisor and the AIM Group review the attestations. BofAS imposes a 30-day minimum holding period on any approved trades. Pursuant to a BofAS WSP, on a daily basis, the registered principal (or delegate) with supervisory oversight responsibility for the relevant employee conducts a review of the employee's personal trading activity. Specifically, the relevant supervisor or delegate receives a daily report reflecting the prior day's trade activity for each such employee. The relevant supervisor or delegate assesses whether the employee obtained the appropriate pre-approval or pre-clearance for such trades and for any red flags (e.g., excessive trading). FIRM-WIDE CONFIDENTIAL INFORMATION RESTRICTIONS: As a general matter, BofAS requires all employees to undergo a comprehensive screening before commencing employment and each BofAS employee is bound by and required to observe the BAC Code of Conduct, which includes provisions that address the handling of Client information and impose a duty of confidentiality. |
d. Provide a summary of the roles and responsibilities of any Persons that have access to confidential trading information, the confidential trading information that is accessible by them, and the basis for the access.
| The shared employees described in response to Part II, Item 6(a) have access to Subscriber confidential trading information. THIRD-PARTY EXTERNAL MARKET ACCESS GATEWAY PROVIDERS: As noted in response to Part II, Item 7(a), BofAS operates external direct market access gateways, which are managed by third-parties, that can transmit Direct Subscriber confidential trading information. These platforms receive information about Direct Subscribers' orders, conditional placements, and executions to the extent such information is routed to Instinct X. Similar to systems used by Sales and Trading personnel, these gateways handle orders that may, based on the direction of the Direct Subscriber, be routed directly to Instinct X. Dedicated support personnel for these gateways are responsible for addressing BofAS inquiries related to Direct Subscribers' orders or conditional placements routed to Instinct X and for managing the health of the platform. These employees can access real-time order, conditional placement, and execution information through the respective activity logs for Direct Subscribers using the respective gateway. However, they do not have access to the Instinct X order book. THIRD-PARTY BOFAS SERVICE PROVIDERS: As noted in response to Part II, Item 7(a), BofAS uses third parties to store the trading information associated with BofAS's electronic trading business, which includes trading activity on Instinct X, i.e., Subscriber confidential trading information. As requested by BofAS, dedicated support personnel from the third-party are responsible for generating reports, e.g., regulatory reports, client reports, booking records, based on the stored trading information. Through activity logs, these dedicated support personnel can access real-time order, conditional placement, and execution information. However, they do not have access to the Instinct X order book. |