SEC Rule 17a-4 Records Retention

United States

1934

Tax & Reporting

Cybersecurity

Overview

SEC Rule 17a-4, under the Securities Exchange Act of 1934, establishes the recordkeeping and retention requirements for broker-dealers. Enacted in 1997 and amended over time, it ensures that firms maintain and preserve electronic records in a manner that supports regulatory oversight and investor protection.

The rule applies to broker-dealers, investment banks, alternative trading systems (ATSs), and other registered securities firms operating in the United States. It complements SEC Rule 17a-3, which defines the types of records to be made, and requires firms to implement comprehensive digital record management systems with proper document verification and authentication protocols to ensure regulatory compliance and data integrity.

Key Obligations

Preserve specific records (e.g., communications, trade blotters, account documents) for defined retention periods
Store electronic records in a tamper-evident, non-rewritable, and non-erasable format (WORM)
Use a third-party access provider or designate a compliance officer for data retrieval

Ensure availability of records to the SEC upon request
Maintain backup systems and retrieval indexes for efficient record access
Notify the SEC of changes to recordkeeping systems

FAQ

Related Regulations

SEC Reg SCI Systems Compliance

Sarbanes-Oxley Act Internal Controls Law

GLBA Safeguards Rule Compliance

Stay ahead of risk with Signzy

Explore tools that help you onboard, monitor, and verify with confidence

Identity Verification

Use facial match and liveness checks paired with government ID verification to make sure the person holding the document is the person you're onboarding.

GRC

Governance, Risk, and Compliance solutions to streamline regulatory adherence and maintain operational excellence across your organization.

Bank Account Verification

Secure and instant bank account verification to confirm account ownership and validity for seamless financial transactions.