Unauthorized trading: client risks, liabilities and how you prevent them
Unauthorized trading — executing trades without a client's written consent — can quickly escalate into regulatory, legal and reputational crises. This article explains the definition, likely enforcement outcomes (rescission, disgorgement, fines) and the supervisory controls and documentation needed to prevent liability.
Introduction
Hook: Unauthorized trading is one of the fastest ways to turn a client relationship into a regulatory or legal crisis. As a student or practitioner preparing for the CIRE exam, you need to recognise not just the definition but the real-world consequences and the controls that stop it.
Friendly definition: "Unauthorized trading" is defined in the regulatory materials as: "Execution of trades in a client account without the client’s authorization or without proper discretionary authority, in breach of dealer rules." That exact definition matters — regulators treat any trade without proper written authority as unauthorized and potentially voidable.
Core Concepts (Recall)
- Unauthorized trading: "Execution of trades in a client account without the client’s authorization or without proper discretionary authority, in breach of dealer rules." (Key Terms)
- Discretionary trading: "Trading by a representative granted written authority to make investment decisions for a client’s account; must be properly authorized and supervised." (Key Terms)
- Suitability is continuous: recommendations must match current, documented KYC facts and be defensible with contemporaneous records.
- Typical enforcement outcomes: rescission of trades, disgorgement, fines, suspensions, restitution orders and referrals to law enforcement.
- Supervisory failure escalates liability from the individual to the firm and to managers.
Detailed Analysis (Understand)
Why unauthorized trading matters
-
Regulatory exposure is immediate. Without written discretionary authority and supervisory controls, trades are treated as unauthorized and may be rescinded, disgorged, or otherwise remedied by regulators and tribunals. This is not theoretical — IIROC/CIRO decisions routinely order disgorgement and rescission where written authority is absent.
-
Remedies are varied and severe. Regulators can order rescission of transactions, disgorgement of ill‑gotten gains, fines, suspensions and permanent licensing bans. Serious misappropriation usually triggers criminal referrals in addition to regulatory sanctions.
How unauthorized trading typically happens
- Executing trades after a manager verbally refuses approval, or acting on informal or verbal client consent that isn’t recorded in writing.
- Relying on a purported discretionary arrangement that lacks signed documentation and defined supervisory controls.
- Letting unregistered persons influence trading decisions (stealth advising), which masks lack of authority and can produce unauthorized activity.
Why supervisors and firms get blamed
- Supervision and surveillance are firm obligations. Regulators expect active monitoring, complete trading blotters, communications records, escalation paths and prompt investigations. Where these controls fail, the firm and supervisors face sanctions — not just the front‑line rep.
Legal interplay with suitability and KYC
- Unauthorized trades almost always trigger a suitability review. If KYC is outdated or incomplete, recommendations become indefensible. Suitability is continuous — you can’t rely on a one‑time checklist. Failing to document contemporaneous rationale is a common exam and enforcement pitfall.
Regulatory sources and guidance
- See IIROC/CIRO Dealer Member Rules and guidance on discretionary authority and supervision for specifics (e.g., The Rules of the Investment Industry Regulatory Organization of Canada and Paul Maurice, CIRO guidance notes and enforcement reports at CIRO's site: https://www.ciro.ca/media/13356/download?inline= and https://www.ciro.ca/media/21/download?inline). These documents outline required written authority, supervisory expectations and common penalties.
Practical Application (Real‑world scenarios)
Scenario 1 — Verbal client consent
You receive a client phone approval for several trades but you don’t record the call or get written confirmation. Later the client disputes the trades after losses. Likely outcome: trades treated as unauthorized; regulator may order rescission or disgorgement unless you have contemporaneous evidence.
Scenario 2 — Purported discretionary authority
A manager tells you informally you can trade for a client. No written discretionary form exists and the firm’s surveillance misses the activity. Likely outcome: unauthorized trading finding; both you and the firm face disciplinary action for lack of written authority and supervision.
Scenario 3 — Stealth advising
An unregistered relative directs a client’s account and you follow instructions. Likely outcome: rules breach for allowing unregistered advising plus unauthorized trading exposure; regulators may impose fines and referrals.
Key Takeaways
- Treat unauthorized trading as a critical compliance red flag: get signed discretionary authority, record client instructions and document contemporaneous suitability rationale.
- Suitability is continuous — update KYC whenever client circumstances change and keep the records.
- Strong supervision, surveillance and clear escalation paths protect you and your firm; failures transfer liability up the chain.
- Remedies for unauthorized trading include rescission, disgorgement, fines, suspensions and criminal referrals; prevention matters more than remediation.
Stay current with CIRO/IIROC rules and guidance (see linked materials) so you can recognise, prevent and properly remediate unauthorized trading before it becomes a career‑ending problem.