Table of Contents
SERIES 7 | SERIES 65 | FINANCIAL REGULATION COURSES
FINRA Rule 4512 — Customer Account Information — requires every FINRA member firm to collect and maintain specified essential facts about each customer whose account they carry, establishing the minimum information that must be obtained at account opening and kept current throughout the customer relationship — including personal identifying information, financial profile data, investment objectives, and the name and contact information for a trusted contact person for every non-institutional customer account — creating the foundational customer knowledge infrastructure that enables member firms to fulfil their suitability obligations under FINRA Rule 2111, to comply with their anti-money laundering requirements under FINRA Rule 3310, and to protect vulnerable customers from financial exploitation through the trusted contact framework that connects Rule 4512 directly to the temporary hold authority of FINRA Rule 2165.
Rule 4512 is the recordkeeping complement to the know your customer obligation of FINRA Rule 2090 — where Rule 2090 establishes the affirmative obligation to know and retain essential facts about every customer, Rule 4512 specifies precisely which facts must be collected and maintained and in what form. Together the two rules create the complete customer knowledge framework that underlies virtually every other conduct obligation in the FINRA rulebook — from suitability to anti-money laundering to elder investor protection.
The trusted contact person requirement — added to Rule 4512 by amendments effective February 5, 2018 and substantially discussed in subsequent FINRA examination guidance — represents the most significant addition to the rule's requirements in recent years, reflecting FINRA's increasingly focused attention on protecting senior and vulnerable investors from the financial exploitation that their demographic characteristics make them disproportionately susceptible to.
For non-institutional customer accounts Rule 4512(a) specifies the minimum information that member firms must collect and maintain — establishing the essential facts that every customer-facing registered representative must gather before a new account can be accepted and that must be kept current throughout the customer relationship.
The required information includes the customer's full name — used to identify the customer in all regulatory and account records — and residential address — used for communications and for the geographic element of customer profile analysis. Date of birth must be collected for every customer — enabling the age verification required for regulatory purposes and providing context for the time horizon and risk capacity dimensions of suitability analysis.
Employment status and occupation must be collected — providing the employment context that affects the customer's income stability, investment experience, and potential for access to material non-public information through their professional activities. The customer's employer must be identified — along with whether the customer or any member of their immediate family is an employee of a FINRA member firm or securities exchange, which triggers the account notification requirements of FINRA Rule 3210.
Annual income and net worth must be estimated — providing the quantitative financial profile elements that determine the customer's capacity to bear investment risk and to absorb potential investment losses. Investment objectives must be documented — specifying whether the customer's primary objective is capital preservation, income, growth and income, growth, or speculation — establishing the overarching investment purpose against which the suitability of all recommendations must be assessed.
FINRA Rule 4512(a)(1)(F) — the most significant recent addition to the rule's requirements — requires member firms to make a reasonable effort to obtain the name and contact information for a trusted contact person who is at least eighteen years of age for every non-institutional customer account at the time of account opening.
The trusted contact person is an individual designated by the customer — typically a family member, close friend, or other trusted person — whom the member firm is authorised to contact in specified circumstances to protect the customer's account and interests. The trusted contact is emphatically not an authorised person on the account — they cannot give trading instructions, direct account transactions, or access account information for investment purposes. Their role is purely protective — providing the firm with a resource to contact when concerns arise about the customer's wellbeing, the security of their account, or the possibility of financial exploitation.
The circumstances in which the member firm and its associated persons are specifically authorised to contact the trusted contact person and to disclose information about the customer's account are limited to four specific purposes — addressing possible financial exploitation of the customer, confirming the specifics of the customer's current contact information when the customer has become unreachable, confirming the customer's health status when there are concerns about diminished capacity, and confirming the identity of any legal guardian, executor, trustee, or holder of a power of attorney for the customer's account.
At the time of account opening the member firm must disclose in writing to the customer that the firm and its associated persons are authorised to contact the trusted contact person and to disclose account information for these specified purposes. This disclosure ensures that customers understand the circumstances under which their designee may be contacted and their account information shared — providing informed consent to the protective framework the trusted contact relationship creates.
Rule 4512's trusted contact person requirement imposes a reasonable efforts obligation — not an absolute obligation to obtain trusted contact information from every customer regardless of the customer's willingness to provide it. Member firms must make a genuine effort to collect trusted contact information — asking for it at account opening, explaining its purpose and the circumstances under which it will be used, and documenting the effort made — but are not required to refuse to open an account if a customer declines to designate a trusted contact.
The reasonable efforts standard recognises that some customers will be unwilling to designate a trusted contact for reasons that may include privacy concerns, family circumstances, or simply a preference not to have a third party informed about their account activities. A firm that asks for trusted contact information, explains its protective purpose, and documents the customer's decision not to designate one has satisfied the reasonable efforts requirement — even though no trusted contact has been obtained.
FINRA's examination findings in the trusted contact area have consistently identified two categories of firm failure — firms that are not asking for trusted contact information at all, and firms that are asking but not documenting the asking or the customer's response. Both failures represent violations of Rule 4512 — even when the outcome would have been the same if the procedure had been properly followed.
Rule 4512(b) establishes the ongoing obligation to update customer account information — requiring firms to update account records in the course of their routine and customary business or as otherwise required by applicable laws or rules.
The updating obligation recognises that customer circumstances change over time — financial situations improve or deteriorate, investment objectives evolve, employment changes, residential addresses change, and trusted contact designations may need to be revised. A customer profile that was accurate at account opening may be materially inaccurate years later if it has never been updated — and a suitability analysis conducted against an outdated profile may produce recommendations that are unsuitable for the customer's current circumstances even though they would have been appropriate based on the original profile.
SEC Exchange Act Rule 17a-3(a)(17) imposes a periodic updating requirement — requiring broker-dealers to attempt to obtain updated customer information at intervals of no longer than thirty-six months for certain account types. Rule 4512(c) requires member firms, with respect to accounts subject to the SEC updating requirement, to make reasonable efforts to obtain or update the trusted contact person information consistent with those requirements — connecting the trusted contact updating obligation to the SEC's general customer record updating framework.
Rule 4512 applies different requirements to institutional accounts — defined to include banks, savings and loans, insurance companies, registered investment companies, registered investment advisers, governmental entities, employee benefit plans with total assets of at least ten million dollars, and other specified entities — than to non-institutional customer accounts.
For institutional accounts the rule's information requirements are more limited — reflecting the regulatory recognition that institutional investors have different information needs and investor protection concerns than retail customers. The trusted contact person requirement — one of the rule's most significant investor protection provisions — does not apply to institutional accounts, recognising that institutions do not face the same financial exploitation vulnerabilities as individual retail customers.
Rule 4512 requires firms to preserve a record of any customer account information that is subsequently updated for at least six years after the date the information was updated — providing regulatory access to the history of changes in customer account information over time.
This six-year retention period for update records connects Rule 4512 to the general six-year default retention period of FINRA Rule 4511 — and ensures that FINRA examiners and securities regulators can reconstruct the history of a customer's account profile over the period most likely to encompass any examination, investigation, or arbitration that might require understanding what information the firm had about the customer at particular points in time.
Rule 4512's customer account information requirements serve three distinct but interconnected regulatory purposes that together explain why the rule's requirements are structured as they are.
The suitability purpose — the most foundational — connects Rule 4512 directly to the suitability obligations of FINRA Rule 2111. A complete and current customer investment profile is the prerequisite for a valid customer-specific suitability determination — the registered representative cannot assess whether a recommendation is appropriate for the specific customer without knowing the customer's financial situation, investment objectives, time horizon, liquidity needs, and risk tolerance. The investment profile elements required by Rule 4512 are exactly the elements that Rule 2111 requires for customer-specific suitability analysis.
The anti-money laundering purpose connects Rule 4512 to the customer identification programme requirements of the Bank Secrecy Act and the suspicious activity monitoring obligations of FINRA Rule 3310. Knowing the customer — including their identity, employment, financial profile, and typical account activity patterns — is the prerequisite for identifying when account activity is inconsistent with the established customer profile and therefore potentially suspicious. The customer account information required by Rule 4512 provides the baseline against which suspicious activity monitoring can identify anomalous transaction patterns.
The elder investor protection purpose connects Rule 4512 — specifically the trusted contact person requirement — directly to the temporary hold authority of FINRA Rule 2165. When a member firm suspects that financial exploitation of a specified adult customer is occurring it may place a temporary hold on account disbursements under Rule 2165 — and it must notify the trusted contact person designated under Rule 4512 within two business days of placing the hold. The trusted contact framework and the temporary hold authority are complementary tools that work together to protect vulnerable investors from exploitation — Rule 4512 ensures there is a trusted contact to notify, Rule 2165 provides the authority to act.
FINRA Rule 4512 is tested on the Series 7 and Series 65 examinations in the context of customer account information requirements, the trusted contact person framework, suitability, and elder investor protection.
The key points to retain are these.
FINRA Rule 4512 — Customer Account Information — requires member firms to collect and maintain essential facts about every customer account including full name, residential address, date of birth, employment status and employer, annual income, net worth, and investment objectives for non-institutional accounts. Member firms must make reasonable efforts to obtain the name and contact information for a trusted contact person aged eighteen or older for every non-institutional customer account at the time of account opening — disclosing in writing that the firm is authorised to contact the trusted contact person to address possible financial exploitation, to confirm current contact information, health status, or the identity of legal representatives.
The trusted contact person is not an authorised account participant — they cannot give trading instructions or access account information for investment purposes. Their role is purely protective — providing the firm with a resource for specified protective purposes only. The reasonable efforts standard does not require firms to refuse account opening when customers decline to designate a trusted contact — but requires firms to ask, explain the purpose, and document both the effort and the customer's response. Customer account information must be updated in the course of routine business and as required by SEC Exchange Act Rule 17a-3(a)(17)'s thirty-six month periodic update requirement. Records of updated customer account information must be preserved for at least six years after the date of update. Rule 4512 connects directly to FINRA Rule 2090's know your customer obligation — Rule 2090 establishes the affirmative duty to know essential facts, Rule 4512 specifies which facts must be collected and maintained.
