CSI Conduct and Practices Handbook (CPH) Practice Test

CPH rewards candidates who can identify the first correct action, document the file properly, and escalate complaints, conflicts, or red flags before they become bigger conduct failures. If you are searching for CPH sample questions, a practice test, mock exam, or simulator, this is the main Securities Prep page to start on web and continue on iOS or Android with the same Securities Prep account. This page includes 24 sample questions with detailed explanations so you can try the exam style before opening the full practice route.

Interactive Practice Center

Start a practice session for CPH below, or open the full app in a new tab. For the best experience, open the full app in a new tab and navigate with swipes/gestures or the mouse wheel—just like on your phone or tablet.

▶ Click to Load Interactive App

Open Full App in a New Tab

A small set of questions is available for free preview. Subscribers can unlock full access by signing in with the same app-family account they use on web and mobile.

Prefer to practice on your phone or tablet? Download the Securities Prep app:

Scan for iOS (Canada)

Scan for Android (Canada)

• iOS: Canada · United States
• Android: Canada · United States

If you already subscribed on web or mobile, sign in with the same Securities Prep account here to continue on desktop.

Free diagnostic: Try the 100-question CPH full-length practice exam before subscribing. Use it as one conduct baseline, then return to Securities Prep for timed mocks, topic drills, explanations, and the full Conduct and Practices Handbook question bank.

What this CPH practice page gives you

• a direct route into Securities Prep practice for Conduct and Practices Handbook
• 24 sample questions with detailed explanations across the main CPH conduct buckets
• targeted practice around KYC, suitability, disclosure, complaints, conflicts, and prohibited activities
• detailed explanations that show why the safest compliant next step is stronger than the tempting shortcut
• a clear free-preview path before you subscribe
• the same Securities Prep subscription across web and mobile

CPH exam snapshot

• Provider: CSI
• Exam: Conduct and Practices Handbook
• Format: 100 multiple-choice questions in 3 hours
• Passing target: 60%
• Pacing target: about 108 seconds per question

Topic coverage for CPH practice

• Conduct and regulation: standards of conduct, ethics, ethical decision making, and the Canadian regulatory framework
• Clients and account opening: working with clients, discovery, account opening, and documentation discipline
• Recommendations and trading: product due diligence, recommendations, advice, trading, settlement, and prohibited activities
• Relationship maintenance: complaints, conflicts, ongoing client relationships, and escalation expectations

What CPH is really testing

CPH is primarily a conduct-and-judgment exam:

• identifying the client-protection issue before jumping to the transaction
• recognizing when current KYC, disclosure, or documentation is too weak to support a recommendation
• separating service issues from suitability, complaint, supervision, or market-integrity issues
• choosing the most defensible next step instead of the fastest sales-friendly shortcut
• knowing when to explain, document, refuse, or escalate

Common question styles

• What is the strongest first step?: incomplete account-opening files, stale KYC, missing disclosures, or complaint intake
• Is this recommendation defensible now?: suitability, concentration, liquidity, leverage, and product-cost tradeoffs
• What should be disclosed or documented?: fees, conflicts, complaint routes, account authority, and rationale
• Is this conduct prohibited?: discretionary trading, front running, misuse of confidential information, or weak public communications
• Which workflow applies?: complaint handling, transfer processing, escalation, or recordkeeping

High-yield pitfalls

• treating client enthusiasm as proof of suitability
• using stale KYC to support a new recommendation
• assuming an unsolicited instruction ends the analysis
• giving vague conflict or fee disclosure instead of clear specific disclosure
• delaying a valid transfer request because a complaint is open
• failing to document the reasoning behind the action taken

How CPH differs from similar routes

How to use the CPH simulator efficiently

1. Start with account-opening, suitability, and complaint drills so the core compliance workflow becomes automatic.
2. Review every miss until you can explain what should be documented, what should be escalated, and why the best answer is the most defensible.
3. Move into mixed sets once you can switch between disclosure, conflict, complaint, and trading scenarios without hesitation.
4. Finish with timed runs so the 3-hour exam pace feels steady.

CPH decision checklists

• Client-protection issue: identify whether the problem is KYC, suitability, disclosure, conflict, complaint, communication, trading, or supervision.
• Defensible next step: prefer document, clarify, disclose, refuse, or escalate when the file does not support the action.
• Authority and consent: check account authority, discretionary behavior, client instructions, privacy, and required acknowledgement.
• Conduct risk: avoid sales-friendly shortcuts when the safer answer protects the client, firm, market integrity, and record.

When CPH practice is enough

If several unseen mixed attempts are above roughly 75% and you can explain the conduct issue, documentation need, escalation path, or suitability logic behind each answer, you are likely ready. More practice should improve compliance judgment, not memorized conduct slogans.

Free preview vs premium

• Free preview: 24 public sample questions on this page plus the web app entry so you can validate the question style and explanation depth.
• Premium: the full CPH practice bank, focused drills, mixed sets, timed mock exams, detailed explanations, and progress tracking across web and mobile.

Focused sample questions

Use these child pages when you want focused Securities Prep practice before returning to mixed sets and timed mocks.

• Free CPH Full-Length Practice Exam
• CPH: Conduct, Ethics, and Decision Making
• CPH: The Canadian Regulatory Framework
• CPH: Working with Clients
• CPH: Client Discovery and Account Opening
• CPH: Product Due Diligence, Recommendations, and Advice
• CPH: Trading, Settlement, and Prohibited Activities
• CPH: Maintaining Client Accounts and Relationships

Free review resources

Use these free SecuritiesMastery.com resources for concept review, then return to this page when you are ready to practice in Securities Prep.

• CPH Cheat Sheet
• CPH Study Guide

Free samples and full practice

• Live now: this practice route is available in Securities Prep on web, iOS, and Android.
• On-page sample set: this page includes 24 public sample questions for this route.
• Full practice: open the Securities Prep web app or mobile app for mixed sets, topic drills, and timed mocks.

Good next pages after CPH

• CIRE if you are comparing the older CSI conduct route against the current CIRO registration baseline
• CCC if your path is moving from representative conduct into firm compliance and governance
• BCO if the real target is branch supervision and review control
• CSI if you want the broader Canada route map before choosing the next specialization

24 CPH sample questions with detailed explanations

These are original Securities Prep practice questions aligned to CPH conduct, ethics, Canadian regulation, client discovery, account opening, recommendations, trading, settlement, complaints, conflicts, and escalation decisions. They are not CSI exam questions and are not copied from any exam sponsor. Use them to check readiness here, then continue in Securities Prep with mixed sets, topic drills, and timed mocks.

Question 1

Topic: Trading, Settlement, and Prohibited Activities

A client calls with a limit order to buy 5,000 shares of a thinly traded TSX-listed stock at a maximum price of \(\le\) $10.05 and says they would like it done “as quickly as possible.” Your firm can route to multiple Canadian marketplaces, including one affiliated venue that pays the dealer a small per-share rebate.

Which action best aligns with high-level best execution standards?

• A. Hold the order until more liquidity appears later today
• B. Enter a market order to prioritize speed over price
• C. Use smart routing, seek liquidity, and respect the limit
• D. Route only to the affiliated venue to earn rebates

Best answer: C

Explanation: Best execution is a process obligation to take reasonable steps to obtain the best overall result for the client, considering price, speed, and likelihood of execution while following client instructions. Here, the client’s limit constrains price, so the appropriate action is to use available routing tools to access liquidity across venues, monitor execution quality, and avoid letting rebates drive the routing decision.

Best execution means the dealer/registered individual must use reasonable diligence to achieve the best overall outcome for the client, commonly balancing price improvement, speed, likelihood of execution, and overall execution quality-while complying with the client’s explicit instructions (such as a limit price). In a thinly traded security, order-handling choices (venue selection, routing logic, and whether to post or take liquidity) can materially change fill probability and price.

A sound approach is to route the order using tools designed to access displayed liquidity across marketplaces, respect the \(\le\) $10.05 limit, and monitor/manage the order as market conditions change. Any potential conflict (such as rebates from an affiliated venue) must not override the client’s best interest and execution quality.

The key takeaway is that best execution focuses on the client’s outcome, not the dealer’s routing incentives.

Question 2

Topic: Maintaining Client Accounts and Relationships

A client phones you and instructs you to transfer her entire account to another investment dealer immediately. During the same call, she alleges that a trade placed last week was unauthorized and says she is “making a complaint,” but refuses to send anything in writing. What is the best next step to follow proper recordkeeping and preserve an audit trail?

• A. Document the call, open a complaint record, escalate per policy, and obtain proper transfer authorization before initiating the transfer
• B. Initiate the transfer based on the verbal instruction and document it after the transfer is complete
• C. Start the transfer and delay logging the complaint until the account has left the firm
• D. Refuse to discuss or record the complaint until the client submits a written complaint letter

Best answer: A

Explanation: Account maintenance actions require a clear, retrievable audit trail showing what the client requested, when it was received, what verification/approvals occurred, and what actions were taken. Complaints must be captured and escalated promptly using the firm’s complaint process, even if the client complains verbally. A transfer should only be initiated once the required client authorization is obtained and retained.

Recordkeeping for account maintenance is about creating a contemporaneous, end-to-end audit trail: the client instruction (or a detailed note of a verbal instruction), identity verification, required forms/authorizations, internal escalations/approvals, and timestamps of actions taken. Here, the client has made a verbal complaint and given a verbal transfer instruction. The registered individual should (1) document the call in the firm’s records, (2) open and escalate the complaint through the firm’s complaint-handling process, and (3) request and retain the required transfer authorization before initiating the transfer. The key takeaway is that you cannot substitute “later notes” or “wait for something in writing” for timely documentation and escalation when a complaint or transfer request is received.

Question 3

Topic: Maintaining Client Accounts and Relationships

On Monday, March 10, 2026, a client sells 5,000 shares of a Canadian-listed stock in a cash account. Your firm’s standard settlement for Canadian listed equity trades is T+1. One hour after the trade, the client asks you to send the full sale proceeds by electronic funds transfer today to pay a bill.

What is the best next step?

• A. Explain funds are available on settlement (T+1) and arrange the transfer for that date or discuss short-term financing if needed
• B. Process the transfer today because the trade has already been executed
• C. Refuse the request and instruct the client to contact the bank directly
• D. Tell the client settlement occurs on the trade date, so there is no timing issue

Best answer: A

Explanation: Trade date is when the order is executed; settlement date is when cash and securities are exchanged and the client’s cash becomes available. Because this sale settles T+1, sending the proceeds on trade date could create a temporary debit balance. The next step is to explain the timing and any interest implications and then take instructions on whether to wait for settlement or use financing.

The key conduct point is to distinguish trade date from settlement date and communicate what that means for client cash movements. Even though the sale is done on trade date, the cash does not become fully available (as settled funds) until settlement (here, T+1). If the firm sends money out before settlement, the account may go into a debit position until the trade settles, and the client may be charged debit interest (or require an approved credit facility) for that period. The appropriate workflow is to set expectations, disclose potential costs, and then either schedule the transfer for settlement date or, if the client must pay today, discuss an approved financing alternative and document the client’s instruction.

Question 4

Topic: The Canadian Regulatory Framework

A registered individual at an investment dealer notices a colleague repeatedly entering small buy orders in the final minute of trading in a thinly traded stock, and an internal chat message says “need the close above 10.00 today.” You are not the colleague’s supervisor.

Which action best aligns with Canadian conduct standards and the expected regulatory escalation pathway?

• A. Wait to see if the trade surveillance system flags it before acting
• B. Escalate immediately to your supervisor/compliance and preserve all related records
• C. Tell the colleague to delete the chat to avoid misunderstandings
• D. Confront the colleague and ask them to stop, without escalating

Best answer: B

Explanation: The facts suggest a potential attempt to influence the closing price, which is a serious conduct issue. The appropriate pathway is to escalate promptly through supervision/compliance and preserve records so the firm can investigate and determine any required external reporting to CIRO and/or securities regulators.

When you observe potentially improper trading (e.g., activity that appears intended to move the close), your role is to escalate through the firm’s supervisory channels and protect the integrity of evidence. The firm (through compliance/supervision) is responsible for investigating, applying controls (e.g., restricting activity), and determining whether and how to report to external parties such as CIRO and applicable securities regulators.

Key actions are:

• Escalate immediately to your supervisor/compliance (do not “self-investigate” or handle it informally).
• Preserve relevant records (chat messages, order details, timestamps).
• Avoid any step that could be viewed as concealing evidence or tipping off.

Informal handling or delaying action undermines supervision and can create additional misconduct exposure beyond the underlying trading concern.

Question 5

Topic: Standards of Conduct and Ethics, Ethical Decision Making, and Putting it All Together

A registered individual is preparing a client slide that shows a “Model Portfolio” annualized return of 9.0% over the last 3 years. The slide does not show fees, taxes, or whether the result is hypothetical versus actual client performance.

Which caption best matches a fair, balanced, and not misleading client communication?

• A. This low-risk model consistently beats the market in any conditions.
• B. Returns shown are hypothetical and before fees; results vary; no guarantees.
• C. Projected 9% returns are expected each year with this strategy.
• D. Our proven model is ideal for conservative investors seeking steady income.

Best answer: B

Explanation: Fair, balanced communications must not overstate certainty or omit material context that could mislead a client. A suitable caption clarifies key limitations (such as hypothetical results and exclusion of fees) and reminds clients that outcomes can differ and are not guaranteed.

Client communications must be accurate and complete enough that a reasonable client is not misled. When presenting performance-like figures, the main risks are (1) implying certainty (guarantees), (2) using exaggerated language (e.g., “low risk” or “consistently beats the market”), and (3) omitting material qualifiers (e.g., whether results are hypothetical/model-based and whether fees and taxes are included).

A compliant caption addresses the material limitations and avoids any promise of future results. In this scenario, the most appropriate caption clarifies that the return is hypothetical and before fees and states that actual results can vary with no guarantees. The key takeaway is that disclosures should correct potentially misleading impressions, not create them.

Question 6

Topic: Client Discovery and Account Opening

A registered individual is opening a new non-registered account for a client who wants to “start investing right away.” The client has provided personal identification and employment details, but the application is missing information about investable assets, time horizon, liquidity needs, and investment knowledge. The client also selected “capital preservation” as an objective but asks about “higher-return, aggressive ideas.”

What is the best next step?

• A. Complete and document the missing KYC details and resolve the inconsistency before proceeding
• B. Open the account now and plan to update the missing KYC information after the first trade
• C. Provide a general risk disclosure and proceed since the client requested aggressive investments
• D. Assign a standard “moderate” profile based on age and employment and finalize the account

Best answer: A

Explanation: Before proceeding with account opening steps, the registered individual must collect and document complete KYC information and ensure it is internally consistent. Here, key KYC elements are missing and the stated objective conflicts with the client’s expressed interest, so the next step is to clarify, obtain, and record the required KYC details with the client.

KYC is the foundation of the client relationship and must be completed and documented during account opening. The information must cover the client’s financial situation (including investable assets and net worth context), investment knowledge, objectives, time horizon, liquidity needs, and risk tolerance, and it must be consistent.

In this scenario, the application is incomplete (missing investable assets, time horizon, liquidity needs, and knowledge) and contains a potential inconsistency (capital preservation vs. interest in aggressive returns). The proper workflow is to pause and complete a KYC discussion to clarify the client’s situation and preferences, record the answers, and resolve any inconsistencies before moving to subsequent steps (such as finalizing the account setup or discussing specific products).

Question 7

Topic: Standards of Conduct and Ethics, Ethical Decision Making, and Putting it All Together

A long-standing retail client calls at 3:45 p.m. ET demanding you sell securities and wire the proceeds today to a “consultant” at a new bank account number the client provides verbally. The account is non-discretionary and there is no power of attorney or trading authority on file, and the client sounds confused and is being coached in the background. The client also asks you to immediately change their phone number and email address “because I lost access.”

What is the single best action?

• A. Ask for an emailed instruction and process if it matches the request
• B. Change contact details first, then process the client’s verbal wire request
• C. Execute the sale and wire to meet the client’s same-day deadline
• D. Place a temporary hold, verify identity via existing contacts, and escalate

Best answer: D

Explanation: The combination of urgency, third-party payment instructions, contact-detail changes, and apparent confusion/coaching are key red flags. In a non-discretionary account with no authority on file, the appropriate response is to pause the transaction, use reliable authentication steps (not newly provided contacts), document, and escalate to supervision/compliance before taking any action.

Registered individuals must be alert to red flags that suggest fraud, impersonation, or undue influence-especially urgent requests, third-party transfers, unexplained changes to client contact information, and a client who appears confused or coached. Because the account is non-discretionary and there is no documented authority, you cannot rely on verbal instructions that you cannot properly authenticate.

Appropriate steps are to:

• Stop and do not process the sale/wire immediately
• Verify the client’s identity using trusted information already on file
• Escalate promptly to a supervisor/compliance/AML channel per firm policy
• Document the interaction and the rationale for the hold

The key takeaway is client-first conduct: protect the client and the firm by verifying and escalating before acting on high-risk instructions.

Question 8

Topic: Standards of Conduct and Ethics, Ethical Decision Making, and Putting it All Together

A privacy and cybersecurity control requires the registered individual to confirm a client’s identity and a sensitive instruction (e.g., wire details change) by using a second communication method that is independent from the original request and uses contact information already on file.

Which option best matches this control’s function?

• A. Out-of-band verification using a trusted channel on record
• B. Secure disposal of client records at end of retention
• C. Data minimization when collecting personal information
• D. Escalation of a suspected privacy incident to Compliance/IT

Best answer: A

Explanation: This control is an authentication safeguard designed to prevent social engineering and account-takeover attempts. By validating the instruction through an independent, trusted channel already on record, it avoids relying on potentially compromised contact details embedded in the request. The key function is strong client authentication for high-risk changes.

The core concept is strong client authentication using secure, firm-approved channels. When a request involves sensitive account changes, a common safeguard is to verify it “out of band”-meaning you confirm the client and the instruction through a separate channel that wasn’t initiated by (and can’t be controlled by) the attacker, using contact information already on record. This helps prevent fraud where an email, text, or call is spoofed or where the requester supplies new contact details.

The other concepts are real privacy/cyber controls, but they serve different functions: limiting data collection, securely disposing of records, and escalating suspected incidents. The key takeaway is to match the control to its purpose: authentication and channel integrity.

Question 9

Topic: Product Due Diligence, Recommendations, and Advice

A client with a growth profile calls and says, “I want to buy $30,000 of QRS Biotech today.” The registered individual replies, “Based on your objectives and risk tolerance, I think QRS is a good fit and I recommend it.” The client then says, “Okay-put the order in.”

What is the best next step before entering the trade?

• A. Mark the order as unsolicited because the client requested QRS first
• B. Treat it as a recommendation and document suitability and required disclosures
• C. Decline the order unless the client signs a waiver acknowledging it is unsolicited
• D. Enter the order immediately and document the discussion only after execution

Best answer: B

Explanation: Once the registered individual says the trade is a good fit and recommends it, the order is no longer purely client-initiated. Recommendations require a documented suitability assessment (based on KYC and product understanding) and any required disclosures tied to the recommendation. Labelling it “unsolicited” would mischaracterize the interaction and weaken the audit trail.

The key distinction is who is driving the decision and whether advice is being given. A true unsolicited order is client-directed, with no recommendation from the registrant; documentation focuses on noting the instruction was unsolicited and any factual information or risk warnings provided.

Here, the registrant explicitly states it is a good fit and makes a recommendation. Before placing the trade, the registrant should ensure the recommendation is supportable (KYC current, product understood, and suitability rationale recorded) and provide/document any required disclosures relevant to the recommendation (for example, conflicts of interest, if applicable). The file should clearly show the basis for the advice, not just that the client agreed to proceed.

The closest trap is trying to rely on the fact the client mentioned the security first; the recommendation language changes the documentation and disclosure obligations.

Question 10

Topic: Maintaining Client Accounts and Relationships

A client is transferring a non-registered account to your investment dealer and asks whether the transfer should be in-kind or in cash. The registered individual replies, “We should always transfer in cash-it’s faster and there are no tax consequences, and then we can reinvest once the money arrives.”

What is the primary conduct risk/red flag in this situation?

• A. Unauthorized trading by recommending a transfer option
• B. Privacy breach from discussing the transfer over email
• C. AML red flag because the account is moving between dealers
• D. Misleading communication about in-kind vs cash transfer tradeoffs

Best answer: D

Explanation: In-kind and cash transfers have different client impacts, and a registrant must communicate those differences fairly and accurately. A cash transfer typically requires selling positions, which can create taxable dispositions in a non-registered account and leave the client out of the market during the transfer. Presenting cash transfers as “always” faster with “no tax consequences” is misleading.

The core issue is fair, balanced, and not misleading communication when explaining account transfer choices. An in-kind transfer generally moves the existing securities “as is,” helping avoid being out of the market and avoiding a forced sale (which can be important for non-registered accounts), but it may be limited by whether the receiving firm can custody/support the positions. A cash transfer typically involves liquidating positions before (or as part of) the transfer, which can:

• trigger capital gains/losses in a non-registered account
• create time out of the market while funds move and are reinvested
• lead to transaction costs or potential fund redemption charges, depending on holdings

A registrant should outline these practical tradeoffs and confirm the client’s informed instruction rather than making absolute claims.

Question 11

Topic: Trading, Settlement, and Prohibited Activities

A client emails you on February 19, 2026: “I sold my shares today-can you transfer the cash to my bank today?” You review the trade confirmation below.

Exhibit: Trade confirmation excerpt (CAD)

Security: XYZ Corp (TSX) common shares
Side: SELL 1,000 @ 12.50
Trade date: February 19, 2026
Settlement date: February 20, 2026
Net proceeds: \$12,480.00

Which response is the most appropriate based on the exhibit and Canadian settlement conventions?

• A. Use the stated settlement date to set cash availability.
• B. Wait one business day after settlement to release funds.
• C. Assume all Canadian sells settle T+1 without checking.
• D. Confirm proceeds are available immediately on trade date.

Best answer: A

Explanation: Cash proceeds from a trade are generally available when the trade settles, not when it is executed. The confirmation explicitly states the settlement date, so that is the supportable basis for setting client expectations. Because settlement timing can vary by product and transaction, it should be stated (or confirmed) when it matters.

Settlement conventions determine when securities and cash actually exchange hands, so proceeds are typically available on (or after) the settlement date rather than the trade date. Here, the trade confirmation provides the key field: the settlement date is February 20, 2026, so the compliant response is to set availability based on that stated settlement date. At a high level, settlement timing can differ across products and transaction types (and can change over time), so when timing affects a client action-like withdrawing or transferring cash-the registered individual should rely on the settlement date shown on the confirmation (or the firm’s stated convention for that product) rather than making blanket assumptions.

Question 12

Topic: The Canadian Regulatory Framework

You are a registered individual at an investment dealer. A client emails: “I’m unhappy with the advice and losses in my account. I want to make a complaint and be compensated.”

Exhibit: Firm WSP excerpt (complaints handling)

• A complaint is any written expression of dissatisfaction about products or services.
• Registered individuals must forward complaints to Compliance and must not attempt to settle or offer compensation directly.
• Compliance investigates and issues the firm’s written response and any client remediation.
• If the client is not satisfied with the firm’s response, the response must include information about OBSI as an independent dispute-resolution service.

Based on the exhibit, what is the most compliant action?

• A. Tell the client to file directly with CIRO so the regulator can order compensation
• B. Ask the client to resubmit the complaint as a signed letter before the firm will act
• C. Forward the email to Compliance and provide an acknowledgement without offering compensation
• D. Offer to reimburse the client’s losses personally to resolve the matter quickly

Best answer: C

Explanation: The exhibit makes complaint handling a supervised, firm-level process: the registered individual must escalate the written complaint to Compliance and avoid settling it personally. Client remediation, if any, is determined and communicated by the firm after investigation. If unresolved, the firm’s response must point the client to OBSI for independent dispute resolution.

Client remediation and dispute resolution fit into the Canadian framework as layered investor-protection mechanisms. At the first layer, CIRO-regulated dealers must have policies and supervision for complaint intake, investigation, recordkeeping, and fair outcomes; this is why the exhibit directs complaints to Compliance and restricts individual representatives from “handling it off-book.”

At the next layer, if the client remains dissatisfied after the dealer’s written response, the client can use an independent dispute-resolution service (OBSI) identified in the firm’s response. Regulators oversee the dealer’s obligations to have and follow a complaint process, while external dispute resolution provides an additional avenue for clients without the representative promising or negotiating compensation directly.

The key takeaway is to follow the firm’s supervised complaint process and ensure the client is informed of external escalation options where applicable.

Question 13

Topic: Working with Clients

A registered individual at a Canadian investment dealer receives an email that appears to be from an existing client. The sender address is a free webmail account (not the email on file) and the message says the client “changed phones,” needs access “today,” and asks the registered individual to email a temporary password or verification code so the client can log in and place a trade.

What is the primary cybersecurity risk/red flag in this situation?

• A. A market abuse concern because the trade might move the market
• B. Social engineering to steal credentials and take over the account
• C. A suitability concern because the client wants to trade urgently
• D. A conflict of interest because the trade may generate commission

Best answer: B

Explanation: The request to send a temporary password or verification code is a strong social-engineering indicator. If the registered individual complies, the attacker can obtain credentials or bypass multi-factor authentication to access the client portal. That can result in account takeover, unauthorized trading, and potential withdrawal or exposure of client information.

This scenario is most consistent with phishing/social engineering aimed at credential theft. Legitimate firms and clients should not ask a registered individual to share passwords, temporary passwords, or one-time verification codes; providing them can defeat authentication controls and enable an account takeover.

Appropriate handling typically includes:

• Do not send credentials or codes by email or any channel.
• Verify the client’s identity using trusted contact information already on file.
• Escalate to the firm’s supervisory/IT/security process and document the incident.

The key takeaway is that bypass requests around login/MFA are a primary red flag because they can directly lead to unauthorized access and transactions.

Question 14

Topic: Standards of Conduct and Ethics, Ethical Decision Making, and Putting it All Together

A registered individual is on the deal team for a public issuer’s upcoming financing. They receive the following message.

Exhibit: Email + firm WSP excerpt

From: Issuer IR
Subject: Thanks!

We'd love to thank you for your help on our financing. Please join us in a suite at a Leafs game next week.
Estimated value: \$350 per ticket. We can also provide a \$1,000 honorarium for a short client presentation.

--- Firm WSP (Gifts/Entertainment/Issuer interactions) ---
- Do not accept any benefit from an issuer that could reasonably appear connected to a distribution.
- Any gift/entertainment over \$100 requires pre-approval from your supervisor/compliance.
- If you are unsure whether a situation is permitted, consult your supervisor/compliance BEFORE responding.

Based on the exhibit, what is the most compliant action?

• A. Accept the honorarium but donate it to charity
• B. Accept if you record the tickets as a personal gift
• C. Consult supervisor/compliance before responding and do not accept
• D. Decline immediately; no need to document or escalate

Best answer: C

Explanation: The exhibit shows a high-value benefit offered by an issuer while the registered individual is working on that issuer’s financing, which creates an obvious conflict and appearance issue. The WSP directs the individual to consult supervisor/compliance before responding and requires pre-approval for benefits over the stated threshold to ensure consistent, ethical handling.

Consulting policies and escalating to a supervisor/compliance is required when a situation triggers a WSP condition (such as gifts/entertainment limits) or when there is uncertainty about permissibility. Here, the issuer’s offer is high value and occurs in the context of an active financing, which the WSP warns could reasonably appear connected to a distribution.

The compliant workflow is:

• Pause and review the applicable WSP.
• Escalate to supervisor/compliance for direction and documentation.
• Do not accept (and do not commit) until guidance is received.

This consultation supports consistent ethical outcomes by applying firm standards uniformly, reducing conflicts of interest, and creating an appropriate record of how the issue was handled.

Question 15

Topic: The Canadian Regulatory Framework

A registered individual at a CIRO dealer is trying to reassure a nervous client about buying a high-volatility equity. The client asks, “What if this investment goes down?” The registered individual replies, “Don’t worry-CIPF is there, so you can’t really lose money.”

What is the primary conduct concern in this situation?

• A. An AML red flag because the client is risk-averse
• B. Unauthorized trading because the client is nervous
• C. Misleading communication about what an investor protection fund covers
• D. A privacy breach because the client asked a personal question

Best answer: C

Explanation: The key issue is a misrepresentation of the purpose of an investor protection fund. Investor protection funds (such as CIPF) are designed to protect client property if a member firm becomes insolvent, which supports confidence in the marketplace. They do not insure against declines in market value, so the reassurance given is misleading.

Investor protection funds are investor confidence mechanisms: they help maintain trust in Canadian markets by providing protection for client assets when a participating dealer fails financially. Their purpose is not to guarantee investment performance or eliminate market risk.

In this scenario, the registered individual implies the client “can’t really lose money,” which incorrectly suggests coverage for market losses. A fair, balanced, and not misleading explanation would clarify that the protection is tied to dealer insolvency (and subject to the fund’s terms and limits), not to losses from price movements. The closest temptation is to treat the client’s anxiety as a suitability issue, but the specific red flag tested here is the inaccurate description of investor protection fund coverage.

Question 16

Topic: Maintaining Client Accounts and Relationships

You are the registered individual for a client’s margin account. The client forwards you the message below and asks you to “hold off on selling anything until next week.” All amounts are in CAD.

Exhibit: Margin department email (excerpt)

Subject: Margin Call Notice - Action Required
Account: 7H2K (Margin)
Call amount: \$8,450
Due: 2:00 p.m. ET next business day
If not met by the due time, the firm may liquidate securities or cover positions
without further notice to reduce the deficiency. Client remains responsible for
any shortfall.

Which response best sets appropriate expectations and reduces conduct risk?

• A. Agree to delay any liquidation until the client returns next week
• B. Tell the client the firm must get consent before selling securities
• C. Explain the due time and that liquidation may occur without notice
• D. Advise waiting to see if markets rebound before adding funds

Best answer: C

Explanation: The email sets a specific margin call deadline and states the firm may liquidate without further notice if the call is not met. A compliant response must be clear, fair, and not misleading, and must not promise that liquidation will be delayed. It should set expectations about timing and the client’s responsibility for any shortfall.

Margin communications should reflect what the firm has disclosed and avoid creating false assurances. Here, the record shows a defined due time and an explicit statement that the firm may liquidate without further notice to address a deficiency, and that the client is responsible for any remaining shortfall.

A conduct-risk-reducing response would:

• Confirm the call amount and due time shown in the notice.
• Explain that liquidation can occur if the call is not met (no promises).
• Discuss practical ways to meet the call (deposit funds or reduce positions) and document the conversation.

The key is aligning your message to the written margin notice and not implying the client can override the firm’s margin-rights by request.

Question 17

Topic: Standards of Conduct and Ethics, Ethical Decision Making, and Putting it All Together

A registered individual (RI) is preparing a trade recommendation for a long-time client who wants to buy shares of MapleTech Inc. Before the call, the RI’s friend (an employee at MapleTech) says, “Don’t wait-big contract news is coming next week,” but provides no public source. The RI is unsure whether this is material non-public information and is under pressure to act quickly.

Which action best aligns with a structured ethical decision-making process?

• A. Pause the recommendation, consult compliance, document, then proceed
• B. Ask the friend for more details so the RI can decide faster
• C. Recommend the purchase now, and update the file afterward
• D. Tell the client the rumour and let the client decide

Best answer: A

Explanation: The RI should slow down, clarify the facts, identify the ethical issue (potential MNPI), and consult an appropriate internal resource before taking any client-facing action. A defensible decision also requires documenting the issue, the advice received, and the outcome to support record integrity and supervision.

A structured ethical decision-making process is designed to prevent rushed decisions that can harm clients and markets. Here, the key issue is that the information may be material and non-public, which raises serious concerns about using it in a recommendation.

A durable approach is:

• Clarify facts and sources (what was said, by whom, and whether it is public)
• Identify issues (potential MNPI, fair dealing, reputational and regulatory risk)
• Generate and evaluate options (including doing nothing until guidance is received)
• Consult (supervisor/compliance) before any recommendation or trade
• Decide and document (what you did, why, and who you consulted)

Even if the information later proves immaterial or public, escalating and documenting is the best practice compared with acting first and “fixing” the file later.

Question 18

Topic: Client Discovery and Account Opening

A long-time client suffered a stroke and is no longer able to communicate reliably. The client’s daughter comes to the branch to open a new non-registered account in the client’s name and says she is authorized under a continuing power of attorney for property, but she did not bring any documentation. She asks you to proceed now and says she will email the document later.

What is the best next step?

• A. Accept the daughter’s instructions with a note on file
• B. Open a joint account with the daughter instead
• C. Open the account and backfill documents later
• D. Obtain and review the POA before proceeding

Best answer: D

Explanation: When a client may be incapacitated, the registered individual must confirm who has legal authority to act. A verbal assertion of being an attorney under a power of attorney is not sufficient for account opening or taking instructions. The proper workflow is to obtain, review, and retain the power of attorney (and any required internal approvals) before proceeding.

For clients with special circumstances such as incapacity, the key conduct-and-practice requirement at account opening is to confirm and document the authority of the person attempting to act for the client. Before opening the account or accepting any instructions, you must obtain the relevant legal document (e.g., a continuing power of attorney for property), review it for validity and scope, and retain it in the client record (often with compliance review per firm policy). Until that authority is verified, instructions from the family member must not be acted on, because doing so risks unauthorized account activity and weakens the audit trail. The closest temptation is “open now and fix later,” but documentation must come first.

Question 19

Topic: Client Discovery and Account Opening

A NAAF field is used to document who is permitted to provide trading instructions (and any limits on that authority) so the firm can refuse instructions from unauthorized people and maintain an audit trail.

Which NAAF component best matches this purpose?

• A. Client financial circumstances (income and net worth)
• B. Account operating authority / authorized persons
• C. Investment objectives and risk tolerance
• D. Delivery instructions for confirmations and statements

Best answer: B

Explanation: The NAAF should capture account operating authority so the dealer knows exactly who can instruct on the account and under what conditions. This helps prevent unauthorized trading and supports supervisory review and recordkeeping if instructions are questioned later.

A key purpose of the NAAF is to create clear, durable account “operating instructions” that control how the account may be serviced. Documenting account operating authority (for example, which individuals are authorized to place orders or otherwise instruct, and any constraints) is essential because registered individuals must accept instructions only from properly authorized parties.

This protects the client and the firm by:

• reducing the risk of unauthorized trading or withdrawals
• providing evidence for supervision, investigations, and complaint handling
• enabling consistent servicing across branches and staff changes

KYC items like objectives, risk tolerance, and financial circumstances support suitability, but they do not establish who can legally instruct on the account.

Question 20

Topic: The Canadian Regulatory Framework

A registered individual at a CIRO-regulated investment dealer is alleged to have made unsuitable recommendations and breached CIRO conduct rules. Which body is most likely responsible for investigating and disciplining this conduct in the first instance?

• A. The provincial or territorial securities commission
• B. The Canadian Investor Protection Fund (CIPF)
• C. Law enforcement (police)
• D. CIRO

Best answer: D

Explanation: CIRO is responsible for day-to-day oversight, compliance reviews, and disciplinary proceedings for conduct-rule breaches by CIRO-regulated investment dealers and their registered individuals. Securities commissions primarily enforce securities legislation and oversee the overall regulatory regime, while police focus on potential Criminal Code matters. CIPF is an investor protection fund related to dealer insolvency, not discipline.

In Canada, responsibility depends on the nature of the issue and the entity involved. CIRO is the front-line supervisor for investment dealers and their registered individuals, including investigating and disciplining breaches of CIRO requirements (for example, suitability-related misconduct, supervision failures, and other conduct-rule violations).

Provincial/territorial securities commissions (coordinated through the CSA) administer and enforce securities legislation (for example, public-interest orders and enforcement for securities-law breaches). Law enforcement becomes the lead when the facts suggest potential Criminal Code offences (for example, fraud or forgery). CIPF’s role is investor protection in the event of a member firm’s insolvency, not regulating conduct.

Where facts raise both regulatory and criminal issues, matters may be escalated, but the first-line discipline for CIRO rule breaches sits with CIRO.

Question 21

Topic: Standards of Conduct and Ethics, Ethical Decision Making, and Putting it All Together

A long-time client, Mr. Chen, holds an individual cash account at your investment dealer. His adult daughter phones saying Mr. Chen is unconscious and asks you to sell all his holdings today and send the cash to her bank account. Your records show no power of attorney or trading authorization for the daughter. What is the best next step?

• A. Accept the daughter’s verbal instructions and document the call
• B. Sell holdings now and hold cash in the account pending documents
• C. Contact Mr. Chen and obtain documented authority before trading
• D. Enter protective orders using your judgment to limit losses

Best answer: C

Explanation: Client instructions must be honoured only when they come from the client or someone with properly documented authority. Because the account is individual and no authority is on file for the daughter, the registered individual must not trade or transfer funds based on her request. The next step is to contact the client using verified information and/or obtain valid written authorization before acting.

A registered individual cannot take trading or withdrawal instructions from a third party unless that person’s authority is properly established and documented (for example, a valid power of attorney or trading authorization accepted by the firm). In an individual account, verbal assertions of authority are not enough, even in urgent circumstances. The proper workflow is to pause the requested action, authenticate and contact the client using reliable, pre-existing contact details, and follow the firm’s process to obtain, review, and record the required documentation before placing orders or transferring funds. Discretionary actions (trading based on your judgment) are not permitted in a regular client account without the appropriate discretionary arrangement and documentation. The key safeguard is acting only on properly authorized instructions.

Question 22

Topic: Maintaining Client Accounts and Relationships

Which statement best distinguishes a trade date from a settlement date and the main implication for client cash and interest?

• A. Trade date and settlement date are the same; “settlement date” is just a reporting label on the confirmation.
• B. Trade date is when cash and securities are exchanged; settlement date is when the price and quantity are agreed.
• C. Settlement date is when the order is entered; trade date is when the client’s account is debited or credited.
• D. Trade date is when the order is executed and the contract is created; settlement date is when cash and securities are exchanged and when the client’s cash balance (and related interest) typically becomes effective.

Best answer: D

Explanation: Trade date is the execution/contract date that locks in the trade’s details. Settlement date is the delivery-versus-payment date when securities and cash actually move, which is why firms communicate when funds must be available and why interest on resulting cash debits/credits generally starts from settlement.

Trade date (also called contract date) is the day the trade is executed on the marketplace and the trade details (security, quantity, price) are finalized. Settlement date is the agreed date when the seller delivers the securities and the buyer delivers payment; this is when the client’s account is typically debited/credited for the transaction.

Implications:

• Cash availability: clients must have sufficient funds available by settlement date for purchases.
• Interest: interest on any resulting cash debit/credit generally starts when the balance becomes effective, typically at settlement.
• Client communication: confirmations and statements show both dates, and clients should be told funding is due by settlement, not merely when the trade is placed.

A common confusion is assuming the execution date is also the date cash changes hands.

Question 23

Topic: Client Discovery and Account Opening

You are opening accounts for two new clients at an investment dealer (all amounts in CAD).

Client A provides consistent KYC, government ID, and funds a new TFSA with a personal cheque from their own Canadian bank account.

Client B provides ID, but their stated annual income is $45,000 while their stated net worth is $2.5 million. They want to deposit $150,000 by wire from an unrelated corporation and ask that statements be emailed to a third party “for recordkeeping.” When asked for documentation on the relationship and source of funds, Client B says it is “private” and wants to start trading immediately.

Which action best reflects appropriate handling of account-opening red flags in these circumstances?

• A. Open Client B’s account but delay trading until the first statement is issued
• B. Escalate Client B for enhanced due diligence before accepting the deposit or trading
• C. Decline Client A’s TFSA because income proof is required
• D. Open both accounts because identity has been verified

Best answer: B

Explanation: Client B presents multiple account-opening red flags: inconsistent KYC information, unusual third-party funding, and suspicious third-party involvement in account communications. The appropriate response is to escalate for enhanced due diligence and resolve/document concerns before accepting the funds or permitting trading.

At account opening, you must identify and escalate red flags that suggest the KYC information may be unreliable or that a third party may be improperly involved. Client B’s scenario combines several high-risk indicators: a large wire from an unrelated entity, a request to route statements to a third party, and refusal to provide documentation explaining the relationship and source of funds. These are triggers to stop and escalate for enhanced due diligence (per firm policy), document the concern, and avoid accepting the deposit or acting on instructions until the issue is resolved. Client A’s funding method and documentation are consistent with routine account opening. The key takeaway is that unexplained third-party funding/communications are decisive escalation factors, even if ID is provided.

Question 24

Topic: Working with Clients

Amira is a CIRO-registered dealing representative, but she is not yet approved by her firm to trade listed options because she has not completed the required proficiency course. At 3:50 p.m., a client asks Amira to recommend and enter an order to buy 10 ABC call options before the market close. The client insists it is urgent and says, “Just put it through as unsolicited if you have to.”

What is the best action for Amira?

• A. Enter the order as unsolicited because the client initiated the trade
• B. Tell the client to place the options order online and follow up later
• C. Recommend the option trade and obtain supervisory approval after execution
• D. Transfer the request to an options-proficient registrant/supervisor and document the interaction

Best answer: D

Explanation: Registration and proficiency define what a registered individual is permitted to do, and limits are not waived by client pressure or by labeling something “unsolicited.” Because Amira is not approved/proficient for listed options, she should not recommend or accept the options order herself. The client’s request should be handled by an appropriately proficient registrant under the firm’s supervision framework, with proper documentation.

A registered individual must act only within the scope of their registration category and their approved proficiencies. If an activity (such as listed options trading) requires additional proficiency/approval, the registrant who lacks that proficiency must not recommend, accept, or execute the trade, even if the client insists or asks to label it “unsolicited.” Supervision is a control framework for permitted activities; it does not cure performing an activity you are not authorized or proficient to perform.

In this case, the client is requesting both a recommendation and execution of a listed options order, and Amira is not approved for that activity. The client-first, compliant response is to promptly involve an appropriately proficient registered individual (and/or the supervisor) to handle the request and to record what occurred.

CPH conduct and compliance map

Use this map after the sample questions to connect individual items to ethics, professional conduct, client dealings, conflicts, supervision, complaint handling, and regulatory expectations these Securities Prep samples test.

    flowchart LR
	  S1["Conduct issue or client interaction"] --> S2
	  S2["Identify duty rule and conflict risk"] --> S3
	  S3["Apply client-first and disclosure standard"] --> S4
	  S4["Escalate complaint exception or outside activity"] --> S5
	  S5["Document decision and communication"] --> S6
	  S6["Monitor supervision and remediation"]

Quick Cheat Sheet

Mini Glossary

• Conflict of interest: Situation where incentives or relationships may compromise client-first judgment.
• Supervision: Firm review, approval, escalation, and recordkeeping process.
• KYC: Know-your-client facts used to assess recommendations and account activity.
• Suitability: Assessment that a recommendation fits client objectives, risk, horizon, constraints, and interests.
• KYP: Know-your-product review of product features, costs, risks, and conflicts.

In this section

• CPH: Conduct, Ethics, and Decision Making
  Try 10 focused CPH questions on Conduct, Ethics, and Decision Making, with answers and explanations, then continue with Securities Prep.
• CPH: The Canadian Regulatory Framework
  Try 10 focused CPH questions on The Canadian Regulatory Framework, with answers and explanations, then continue with Securities Prep.
• CPH: Working with Clients
  Try 10 focused CPH questions on Working with Clients, with answers and explanations, then continue with Securities Prep.
• CPH: Client Discovery and Account Opening
  Try 10 focused CPH questions on Client Discovery and Account Opening, with answers and explanations, then continue with Securities Prep.
• CPH: Product Due Diligence, Recommendations, and Advice
  Try 10 focused CPH questions on Product Due Diligence, Recommendations, and Advice, with answers and explanations, then continue with Securities Prep.
• CPH: Trading, Settlement, and Prohibited Activities
  Try 10 focused CPH questions on Trading, Settlement, and Prohibited Activities, with answers and explanations, then continue with Securities Prep.
• CPH: Maintaining Client Accounts and Relationships
  Try 10 focused CPH questions on Maintaining Client Accounts and Relationships, with answers and explanations, then continue with Securities Prep.
• Free CPH Full-Length Practice Exam: 100 Questions
  Try 100 free CPH questions across the exam domains, with answers and explanations, then continue in Securities Prep.