CCC: Corporate Legislation and Governance

Topic snapshot

Governance checklist before the questions

Governance questions are usually about accountability, information flow, and whether the registered entity can prove that oversight is working. Avoid answers that let management screen serious compliance issues before the board or committee can see them.

• Look for direct reporting paths for material compliance matters.
• Ask whether board or committee records would show timely oversight.
• Distinguish parent-company influence from accountability at the registered entity.

What to drill next after governance misses

If you miss these questions, practise identifying who needs to know, when they need to know, and what record should exist. Then move to financial condition and compliance-regime questions to connect governance to control design.

Sample questions

These questions are original Securities Prep practice items aligned to this topic area. They are designed for self-assessment and are not official exam questions.

Question 1

Topic: Corporate Legislation and Governance

A portfolio manager registered in Canada has a board and a risk committee. Its committee charters cover investment and audit matters, but no approved governance document states when significant compliance breaches, complaint trends, or conflicts issues must be reported upward. In practice, the CCO sends issues to the COO, who decides what reaches the board. After a regulator review questioned this information flow, what is the single best compliance action?

• A. Adopt a board-approved escalation and reporting protocol for direct CCO reporting to the board or a designated committee and the UDP
• B. Route compliance matters through internal audit before any board reporting
• C. Require the COO to give the board a quarterly summary of compliance matters
• D. Wait for the next annual policy review because senior management already receives the issues

Best answer: A

What this tests: Corporate Legislation and Governance

Explanation: The main issue is not just reporting frequency; it is the lack of an approved governance document and a clear path for material compliance information to reach oversight bodies. A board-approved protocol that gives the CCO direct, defined reporting and escalation access best addresses the regulator’s concern.

Good governance requires more than informal practice. When a registered firm cannot show who must receive material compliance information, when they must receive it, and how escalation works, board oversight is weakened. In this scenario, the COO acts as an unofficial gatekeeper, which can delay or filter important information about breaches, complaint trends, and conflicts.

The strongest response is to formalize the information flow in an approved governance document, such as a committee mandate or reporting protocol, that sets out:

• direct CCO reporting to the board or designated committee
• reporting to the UDP
• scheduled reporting and event-driven escalation triggers
• evidence that reporting occurred

That approach improves accountability, supports oversight, and gives the firm a defensible governance record for future regulatory review. Simply increasing management summaries or diverting matters to another function does not solve the core documentation and escalation problem.

• COO filter risk remains because a management summary still leaves the board dependent on an intermediary rather than a defined direct compliance reporting line.
• Delay is weak because a regulator has already identified the weakness, so waiting for an annual review does not show timely remediation.
• Wrong channel because internal audit may provide assurance, but it should not replace the CCO’s direct escalation of material compliance matters.

This is best because it fixes both governance-document and information-flow weaknesses by formalizing direct, documented escalation of material compliance matters.

Question 2

Topic: Corporate Legislation and Governance

A portfolio manager incorporated under the CBCA is preparing for a regulatory review. The CCO reads this governance memo excerpt:

• Board meeting: March 3, 2026
• Proposed contract: 3-year administration-services agreement with Maple Ops Ltd.
• Related-party note: Maple Ops Ltd. is wholly owned by CEO/director Daniel Chen’s spouse.
• Minutes summary: Chen presented pricing, remained for the discussion, and voted in favour.
• Minutes summary: No disclosure of Chen’s interest is recorded.

What deficiency is best supported by the memo?

• A. The contract needed shareholder approval before any board review.
• B. The approval is acceptable because the remaining directors formed a majority.
• C. The board process is deficient because Chen’s conflict was not properly handled.
• D. The contract is automatically barred because Chen’s spouse owns the vendor.

Best answer: C

What this tests: Corporate Legislation and Governance

Explanation: The strongest conclusion is a board-process deficiency involving a director’s material interest. The memo shows an indirect related-party interest through Chen’s spouse, no recorded disclosure, and participation by Chen in the approval decision.

Under Canadian corporate legislation, a director with a material interest in a proposed contract or transaction must deal with that conflict through proper disclosure, and the board record should clearly show that this was done. Here, the vendor is owned by the CEO/director’s spouse, which supports an indirect material interest. The memo then says Chen stayed for the discussion, voted in favour, and had no recorded disclosure in the minutes. That points to a governance and corporate-law process gap the CCO should escalate and have corrected in the board record and approval process.

A related-party contract is not automatically prohibited, and shareholder approval is not the default answer for an ordinary service contract. The key issue is whether the board handled the conflicted director appropriately and documented that handling.

• The shareholder-approval option overstates the rule; this fact pattern points first to a board conflict-handling issue.
• The automatic-ban option confuses a related-party transaction with a prohibited transaction; proper process may allow it.
• The majority-support option ignores that a conflict problem is not cured simply because other directors were present.

A director with a material interest in a proposed contract should disclose it, and the memo also shows Chen voted on the approval.

Question 3

Topic: Corporate Legislation and Governance

A Canadian portfolio manager discusses complaints, trade errors, and conflicts exceptions at separate management committees. Repeated client complaints about one advising representative were recorded in minutes, but the board was not told until quarter-end. The CCO is asked to strengthen governance. Which action best aligns with sound governance-document and information-flow principles?

• A. Increase meeting frequency and keep escalation decisions informal.
• B. Adopt written mandates with escalation triggers and standing reports to the CCO and board.
• C. Require the CEO to screen committee issues before directors are informed.
• D. Report matters only after remediation is complete.

Best answer: B

What this tests: Corporate Legislation and Governance

Explanation: Good governance depends on documented mandates and reliable escalation, not ad hoc updates. Because repeated complaints were known at committee level but not reported promptly, the strongest response is to define material-issue triggers, required recipients, and regular written reporting so the CCO and board receive timely information.

The core concept is that governance documents should make information flow predictable, not discretionary. When a committee sees repeated complaints about one advising representative, the firm should have a written mandate stating the committee’s role, what events are material, who must be notified, when reporting must occur, and how actions are tracked in minutes. That supports timely oversight by the CCO and the board and creates evidence that the issue was escalated and followed up. Simply meeting more often does not fix unclear accountability. Filtering compliance information through one executive can delay or reshape it. Waiting until an issue is fully resolved deprives directors of visibility into open risks and remediation progress. The key takeaway is to document both decision authority and escalation pathways.

• More meetings fails because frequency does not solve unclear reporting lines or escalation criteria.
• CEO screening is weaker because it can delay or filter compliance information before it reaches directors.
• Resolved matters only is inadequate because boards need timely visibility into significant open issues and remediation status.

Formal mandates and escalation criteria create reliable information flow and evidence that material issues reach decision-makers promptly.

Question 4

Topic: Corporate Legislation and Governance

A Canadian portfolio manager and investment fund manager receives a securities regulator review comment that trade-surveillance exceptions were not consistently escalated. Board minutes also show directors have been approving the closure of individual exceptions. At the next meeting, the chair proposes that the board review all daily exception reports until the issue is fixed, while management can prepare a written remediation plan and monthly metrics. What is the CCO’s best recommendation?

• A. Have directors review and close daily surveillance exceptions until escalation quality improves.
• B. Wait for the next annual compliance report before changing roles because no client loss is identified.
• C. Have the board approve the remediation direction, assign implementation to management, and monitor progress through regular reporting.
• D. Ask the CCO to resolve the issue independently and update the board only after remediation is complete.

Best answer: C

What this tests: Corporate Legislation and Governance

Explanation: The board should oversee the firm’s response to a material control weakness, not take over daily supervisory work. Here, the best approach is for directors to set expectations, approve the remediation direction, and hold management accountable through ongoing reporting.

The core governance distinction is that the board provides strategic oversight, while management runs the firm’s day-to-day operations and controls. In this scenario, the regulator’s comment and the board’s involvement in closing individual exceptions show blurred roles. The better response is for the board to require a remediation plan, confirm who in management is accountable for execution, and receive regular reporting from management and the CCO on progress, exceptions, and unresolved issues. That allows directors to challenge, monitor, and escalate if needed without becoming operational supervisors themselves. A material supervisory weakness requires active board oversight, but not director-level handling of daily exception review.

• Direct oversight drift Having directors close daily exceptions turns the board into operational management rather than an oversight body.
• CCO-only approach Leaving remediation solely with the CCO skips management accountability and weakens board monitoring of a material deficiency.
• Delay trap Waiting for the annual report is too passive once a regulator has already identified a supervisory gap.

This preserves the board’s strategic oversight role while keeping day-to-day supervision and remediation execution with management.

Question 5

Topic: Corporate Legislation and Governance

At a Canadian portfolio manager, the board receives the following quarterly governance dashboard. The CEO says each business head is handling the items separately, but no consolidated remediation plan or target dates have been set.

Exhibit: Quarterly governance dashboard

Which follow-up is most appropriate?

• A. Treat the items as CCO-owned exceptions because the business heads are already addressing them separately.
• B. Have the board rewrite the affected procedures and direct the sequence of operational fixes.
• C. Defer further action because the number of items in each area is still limited.
• D. Require senior management to submit a firmwide remediation plan with owners and dates, then oversee and challenge progress.

Best answer: D

What this tests: Corporate Legislation and Governance

Explanation: The dashboard shows overdue high-risk issues increasing across several control areas, and management has not produced a coordinated plan. That supports stronger board oversight of senior management, not board involvement in day-to-day operations.

This is a governance oversight issue because the exhibit shows aging high-risk items across multiple areas and a worsening trend from the prior quarter. Senior management is responsible for organizing and executing remediation: assigning owners, setting timelines, allocating resources, and reporting status. The board’s role is to oversee that response by challenging management, requiring clear accountability, and monitoring whether remediation is effective.

Here, the absence of a consolidated plan or target dates is the key condition. That means the board should press senior management for a firmwide remediation plan and then track progress through regular reporting. The closest trap is having the board rewrite procedures, but that would move the board into management’s operating role.

• Board as operator fails because the board should oversee and challenge management, not run the control redesign itself.
• CCO-only ownership fails because cross-functional remediation is a senior management responsibility, even when compliance helps coordinate it.
• Wait-and-see fails because the trend is worsening across several areas and already includes overdue high-risk items.

Senior management must execute remediation, while the board should require accountability and monitor whether management resolves the persistent control issues.

Question 6

Topic: Corporate Legislation and Governance

A portfolio manager that is also an investment fund manager has doubled in size over 18 months. New product approvals, valuation overrides, and conflict matters are discussed in weekly executive calls, but the firm has no written committee charters, no defined escalation thresholds, and board packages vary by meeting. During a recent securities regulator review, staff asked how management information flows to the board and who is accountable for reviewing material issues. What is the single best compliance response?

• A. Have the CEO approve all material issues temporarily
• B. Report only confirmed breaches to the board
• C. Adopt board-approved governance documents and formal committee mandates
• D. Keep current meetings and add email summaries

Best answer: C

What this tests: Corporate Legislation and Governance

Explanation: Governance documents and formal committee structures clarify authority, accountability, and information flow. Because this firm handles material issues informally and cannot show how matters reach the board, it should formalize mandates, escalation criteria, and reporting expectations in board-approved documents.

The purpose of governance documents and formal committee structures is to make oversight repeatable, accountable, and defensible. Here, the core weakness is not that issues are ignored; it is that product, valuation, and conflict matters are handled through informal calls with no documented mandate, no clear escalation path, and inconsistent reporting to the board. A formal governance framework helps the firm show regulators and directors who reviews what, when matters must be escalated, and how decisions are recorded.

• define each committee’s mandate, membership, and authority
• set reporting lines and escalation triggers
• standardize board reporting, agendas, and minutes

That is stronger than simply adding more discussion or concentrating approvals with one executive.

• Keeping current meetings and adding email summaries preserves an informal process and still leaves accountability and escalation unclear.
• Having the CEO approve everything may centralize decisions, but it does not create durable governance or proper board information flow.
• Reporting only confirmed breaches is too narrow because directors also need visibility into material conflicts, exceptions, and emerging issues.

Formal governance documents and committee charters establish accountability, consistent information flow, and documented escalation of material issues to the board.

Question 7

Topic: Corporate Legislation and Governance

A Canadian portfolio manager’s board-approved compliance committee charter requires quarterly meetings, escalation of material compliance issues, and documented decisions. The CCO reviews the last four quarters below.

Exhibit

Which interpretation is best supported?

• A. The main weakness is missing governance documents rather than execution.
• B. The committee is functioning effectively because required meetings were held.
• C. The exhibit mainly points to a financial-condition concern.
• D. The firm has formal governance, but information flow and oversight are weak in practice.

Best answer: D

What this tests: Corporate Legislation and Governance

Explanation: The exhibit shows a governance framework exists on paper because meetings were held as required. But late board materials, rising unresolved issues, limited ownership of those issues, and no recorded challenge or decisions indicate weak practical oversight.

A formal governance framework is not effective just because the committee meets on schedule. Here, the charter appears to be in place and the required meetings occurred, but the operating evidence is poor: materials were provided too late for meaningful review, unresolved compliance issues increased each quarter, few issues had clear owners and deadlines, and the minutes show no challenge or decisions. Those facts point to weak information flow and weak committee effectiveness in practice.

• Timely reporting supports informed oversight.
• Documented challenge and decisions show active governance.
• Owners and due dates turn escalation into accountable remediation.

The key takeaway is that governance should be judged by how decisions, challenge, and follow-up occur, not only by whether meetings are scheduled.

• Meeting cadence only overweights the fact that meetings occurred and ignores the weak evidence of challenge and follow-up.
• Missing documents is unsupported because the charter already exists; the problem is execution of the framework.
• Financial condition is a different concept, and the exhibit contains governance-process indicators rather than solvency data.

The charter and meeting cadence exist, but late packages, no recorded challenge, and weak action ownership show ineffective governance execution.

Question 8

Topic: Corporate Legislation and Governance

A portfolio manager and exempt market dealer is reviewing whether its compliance function has enough independence from the business. Based on the exhibit, which interpretation is best supported?

Exhibit: Governance snapshot

• A. Routing issues through senior management before the board strengthens governance.
• B. The data supports more surveillance only, not a governance concern.
• C. Distribution’s influence over CCO reporting, pay, and remediation weakens oversight.
• D. The exhibit shows a remediation-capacity issue, not an independence issue.

Best answer: C

What this tests: Corporate Legislation and Governance

Explanation: The exhibit shows the Head of Distribution can affect what reaches the board, how the CCO is assessed, and when Distribution findings are remediated. Because Distribution also generates most exceptions, those reporting lines weaken the independence needed for effective governance.

A key governance principle is that compliance must be able to challenge the business without undue influence from the area being reviewed. Here, the Head of Distribution oversees the business line producing most exceptions and also controls three important levers affecting compliance independence: the CCO’s path to the board, the CCO’s compensation review, and approval of remediation extensions for Distribution issues.

• Board reporting should allow direct escalation of material compliance matters.
• A revenue-generating business head should not control the CCO’s incentives when that area is under review.
• Remediation timing for findings in a business line should be subject to independent oversight.

Extra testing may be useful, but it does not fix a governance structure that can blunt compliance challenge.

• Management filter misreads the exhibit because routing the CCO’s report through the revenue head can restrict direct escalation rather than strengthen governance.
• Capacity only ignores that the main red flag is who controls reporting, compensation, and remediation decisions for the line with most exceptions.
• More surveillance only is incomplete because increased monitoring does not address the weakened reporting and oversight structure.

The same business head tied to most exceptions can influence the CCO’s reporting path, incentives, and remediation timing, undermining independent oversight.

Question 9

Topic: Corporate Legislation and Governance

A registered investment fund manager reviews its related-party service contracts. Compliance finds that staff followed the approval workflow, but the CEO approves contracts with a vendor he partly owns, and the board receives no conflict analysis or approval rationale. Which action best aligns with Canadian compliance principles?

• A. Escalate to the board and require independent conflict approval.
• B. Increase invoice testing under the existing approval structure.
• C. Add a finance co-signature before vendor payments are released.
• D. Retrain staff on completing the contract approval checklist.

Best answer: A

What this tests: Corporate Legislation and Governance

Explanation: This is a governance issue, not mainly a business-process issue. Staff followed the workflow, but the workflow itself gives conflicted authority to management and bypasses meaningful board oversight, so the best response is escalation and a governance fix.

Corporate-governance issues concern decision rights, independence, oversight, and how conflicts are supervised by the board or equivalent governing body. In this scenario, the main problem is not that employees failed to follow procedure; compliance found that the procedure was followed. The weakness is that a conflicted CEO has approval authority over related-party contracts and the board is not receiving enough information to challenge or oversee that decision.

• Treat the matter as a governance escalation.
• Recommend independent review or approval of related-party arrangements.
• Document the conflict, the oversight gap, and the remediation plan.

More testing, extra signatures, or staff retraining may improve operations, but they do not correct flawed authority and oversight.

• Retraining staff misses the key issue because the review found staff were already following the existing process.
• More invoice testing is a surveillance step, but it leaves the conflicted approval structure unchanged.
• A finance co-signature adds an operational control, not independent oversight of a related-party conflict.

The issue is the conflicted approval authority and lack of oversight, so it requires governance escalation and an independent approval structure.

Question 10

Topic: Corporate Legislation and Governance

The CCO of Riverside Asset Management Inc., a portfolio manager and investment fund manager, is reviewing governance issues arising from the firm’s legal structure. Riverside is a wholly owned subsidiary of Riverside Holdings Inc.

Exhibit: Governance review tracker

Which follow-up is most appropriate?

• A. Assign complaint oversight to parent counsel.
• B. Treat the issue mainly as a capital adequacy matter.
• C. Formalize shared services and registrant escalation authority.
• D. Rely on parent governance because ownership is common.

Best answer: C

What this tests: Corporate Legislation and Governance

Explanation: A wholly owned subsidiary may use parent services, but it still needs clear governance and accountability. The exhibit shows full board overlap, undocumented parent-provided control functions, and escalation of complaints and regulatory matters to the parent, which supports formalizing responsibilities and authority.

A firm’s legal structure can create governance risk when a registered subsidiary depends heavily on its parent for directors, staff, or control functions. Here, full board overlap is not automatically improper, but the combination of undocumented finance and legal support and the practice of sending complaints and regulatory inquiries first to parent counsel makes accountability unclear. The right follow-up is to document the intercompany arrangements and confirm who at the registrant has authority to supervise, escalate, and respond.

• Define services, reporting lines, and decision rights.
• Preserve the registrant’s own oversight of complaints and regulatory interactions.
• Ensure the registrant’s board receives direct information on these matters.

The key issue is not common ownership alone; it is whether the structure blurs responsibility for governance and compliance.

• Parent reliance fails because common ownership does not replace the registrant’s own governance and oversight duties.
• Capital focus fails because the exhibit shows accountability gaps, not evidence of a solvency or liquidity problem.
• Counsel as supervisor fails because legal support can assist, but complaint and regulatory oversight cannot simply be handed to parent counsel.

The exhibit shows blurred accountability from parent control and informal intercompany arrangements, so roles, reporting lines, and retained authority should be documented.

Continue with full practice

Use the CCC Practice Test page for the full Securities Prep route, mixed-topic practice, timed mock exams, explanations, and web/mobile app access.

Related focused pages

• Free CCC Full-Length Practice Exam
• CCC: The Role of Compliance
• CCC: The Regulators
• CCC: Financial Condition
• CCC: The Compliance Regime
• CCC: Key Principles for Compliance Supervision
• CCC: Compliance Supervision
• CCC: Surveillance and Reviews
• CCC: Conflicts of Interest
• CCC: Complaints
• CCC: Dealing with the Regulators
• CCC: Legal Actions

Free review resource

Read the CCC guide on SecuritiesMastery.com, then return to Securities Prep for timed practice.