The SEC’s new and proposed rules on cybersecurity and cyber-incident reporting will have a dual impact on private investment advisers and funds. 

First, the proposal by the SEC will impose cybersecurity related obligations on investment advisers, registered investment companies and business development companies, with a final rule in this sector (the “adviser cybersecurity rule”) expected in April 2024. 

ESG continues to be a hot topic for 2024 for investors and regulators alike. The specific concerns investors and regulators have – and what they expect to develop over the coming months – differ, however, across jurisdictions, including because of the different maturity of existing regulation between the EU/UK and the US.

Earlier today, the SEC’s Private Fund Adviser Rules were published in the Federal Register. As with all federal regulations, publication in the Federal Register begins the countdown to the Rules’ compliance dates. These dates are listed in the table below. Please see our prior alerts for an overview of

On Friday, September 1, 2023, a lawsuit was filed with the federal Court of Appeals in the Fifth Circuit challenging the validity and enforceability of the recently adopted Private Fund Adviser Rules under the Investment Advisers Act of 1940 (the “Advisers Act”).  (Please see our prior alerts for a description of the Rules’ provisions and their applicability to non-U.S. investment advisers.)  The lawsuit was filed in the form of a Petition for Review pursuant to Section 213(a) of the Advisers Act, which authorizes such a petition for persons “aggrieved” by the actions of the Securities and Exchange Commission (the “Commission” or the “SEC”).

SEC Emblem

Yesterday, the five SEC commissioners voted 3-2, along party lines, to approve the Private Fund Adviser Rules. The final Rules scale back from what was initially proposed 18 months ago, in ways that are likely to be a relief to many private fund advisers. (For a summary of the initial proposal, please see our previous Alert.) Even in their current form, however, the Rules still impose many new obligations and introduce new prohibitions that are likely to significantly alter business practices, and impose new administrative burdens and costs, across many registered and exempt private fund advisers. All private fund advisers should therefore review their practices in light of the new Rules in order to assess whether and how their practices and documentation will need to change before the Rules’ compliance dates.

Recent enforcement actions highlight the increased regulatory scrutiny that private funds may face with respect to internal cybersecurity protocols and responses to cyber-crimes and cyber incidents under new and updated cybersecurity laws. 

It’s a pattern we often see in boom-and-bust cycles—disputes rising in the period after a wave crests. SPAC deal volume hit an unprecedented high in 2021, but then slowed down in 2022 alongside IPOs. However, the fallout from the SPAC wave will continue to unfold this year, generating increased regulatory attention and a growing number of disputes.

The SEC’s Enforcement Division is conducting a sweep investigation of large investment advisers regarding their employees’ use of “off-channel” communications.  The sweep, which has been widely reported in the press, focuses on text messages from personal phones, personal email, WhatsApp and other platforms not typically captured or monitored by advisers.  The sweep is causing considerable industry concern, following the SEC’s announcement of settlements against a number of large broker-dealers for use of off-channel communications, that resulted in $1.235 billion of cumulative penalties. 

Implications of SEC attempt to curb indemnification for private fund managers

The SEC spent 2022 making multiple and sweeping proposals to amend rules under the Advisers Act, many of which have the ability to significantly re-shape market standards for private funds.  Here, we focus on the SEC’s proposal to undo a common protection for private fund advisers – the ability to rely, as against the private fund or its investors, on exculpatory and indemnification provisions for a breach of fiduciary duty, willful misfeasance, recklessness, or simple negligence in providing services to the private fund.  This prohibition would relate not just to liability under the Advisers Act, but to all causes of action.

Amid rising interest rates, tightening credit markets, geopolitical concerns in Europe and Asia, stubborn inflation and continuing supply chain issues, there is a growing sense of economic uncertainty.  This uncertainty will no doubt increase the frequency of valuation disputes in the year ahead. We generally see valuation disputes spring from four primary sources:

  1. breach of representations and warranties in purchase agreements, which raise questions as to company value absent the breach;
  2. unfair prejudice to minority investors or limited partners;
  3. disagreements about price paid at exit, including earn out disputes; and
  4. increased regulatory focus on exams, which may assess valuation policies and require recurring asset valuations.

Valuation disputes tend to be centered on disagreements about accounting practices, dates of assessed value, and valuation methodology.