The Daily Compliance Routine That Keeps a $500M RIA Out of the SEC's Crosshairs

The compliance programs at RIAs that consistently pass SEC examinations without major findings share a characteristic that is not visible in their written policies: they run compliance as a continuous process, not an event. Here is what that routine actually looks like at a $400M to $600M RIA with one dedicated CCO and no in-house compliance staff beyond that role.

Every Morning: The Regulatory Review (15-20 Minutes)

The CCO starts each morning with a regulatory monitoring digest — the output of an automated system that scanned the SEC, Federal Register, state regulators, and applicable industry publications overnight. The digest is pre-classified: items requiring immediate attention, items for the weekly review queue, and informational items. On most mornings, nothing in the immediate attention category. When something material appears — a new enforcement action against an RIA for a practice similar to the firm's, a new risk alert — the CCO reads it, assesses applicability, and decides whether it goes into the compliance task tracker as a policy review item or the weekly review log.

Before the automated monitoring system, this same coverage took 60 to 90 minutes of manual website checking — and still produced incomplete coverage of state regulators.

Every Morning: Trade and Account Review (20-30 Minutes)

The portfolio management system generates a daily exception report flagging trades outside defined parameters: trades in accounts where the investment policy statement appears to conflict with the trade, trades in securities on the restricted list, large redemptions, concentration alerts. The CCO reviews the exception report, investigates flagged items, and documents review and resolution. Most days the report is short — a handful of items with obvious explanations. The value is catching the items that are not obvious before they compound into patterns.

Weekly: Correspondence and Communications Review

Every week, the CCO conducts a sample review of client correspondence from the past seven days. The sample is structured — specific advisors rotate through the review schedule so every advisor's communications are sampled at least monthly. The review looks for: unsolicited performance representations, recommendations inconsistent with client objectives, off-channel communications that should have been sent through firm systems, and any language that could be construed as a promise or guarantee.

Weekly: Compliance Task Tracker Review

Every week, the CCO reviews the compliance task tracker — the running list of open items from regulatory monitoring, internal findings, vendor assessments, and annual review action items. Each item has an owner and due date. The weekly review confirms progress, identifies at-risk items, and closes completed ones. Without the task tracker, open items live in someone's memory — and memories fail under the pressure of managing a $500M book of business.

Monthly: Fee Billing Audit

Every month, the CCO audits a sample of client fee calculations — verifying that advisory fees were calculated correctly, charged to correct accounts, and disclosed consistent with Form ADV. Fee billing errors, even unintentional ones, are among the most consistent SEC examination findings. Monthly audits catch errors before they become patterns and before a client calls.

What This Routine Produces at Examination

When the SEC examination notice arrives, exam preparation is largely organizing existing documentation. Regulatory monitoring logs show continuous awareness of the regulatory environment. The task tracker shows issues identified and addressed. The billing audit records show proactive quality control. The annual review report shows a deliberate compliance program. Examiners consistently distinguish between documentation produced because an exam was coming and documentation maintained because the firm runs compliance this way all the time. The distinction is obvious from the date patterns alone.