Try 10 focused Series 24 questions on Customer Activity Supervision, with explanations, then continue with the full Securities Prep practice test.
Series 24 Customer Activity Supervision questions help you isolate one part of the FINRA outline before returning to a mixed practice test. The questions below are original Securities Prep practice items aligned to this topic and are not copied from any exam sponsor.
| Item | Detail |
|---|---|
| Exam | FINRA Series 24 |
| Official topic | Function 3 — Supervision of Retail and Institutional Customer-Related Activities |
| Blueprint weighting | 21% |
| Questions on this page | 10 |
Which statement about supervising social media and other electronic communications is most accurate?
Best answer: C
Explanation: Static posts are generally pre-use approved as retail communications, while interactive posts are supervised as correspondence through risk-based review and oversight.
Supervision differs based on whether the content is static or interactive. Static content is generally handled like retail communication and is typically subject to pre-use principal approval. Interactive communications are typically handled like correspondence, meaning they are supervised and reviewed under the firm’s procedures rather than pre-approved message-by-message.
A principal must understand how the communication’s format affects classification and supervision. Static content (for example, a profile page, banner, or a planned post that remains viewable until changed) is generally treated like a retail communication and is subject to pre-use approval and other content standards. Interactive content (for example, real-time posts, comments, or replies) is generally treated like correspondence, so firms supervise it using written procedures that typically rely on risk-based post-use review, surveillance, and escalation.
Regardless of format, firms must have controls to capture and retain required records of business-related communications, train associated persons on permitted use, and address third-party content (links, shares, and endorsements) consistent with firm policies.
A firm is updating its written supervisory procedures (WSPs) for documenting supervision of retail account opening and ongoing account maintenance (address changes, suitability updates, and delivery-instruction changes). Which approach is NOT an appropriate way for a principal to document this supervision?
Best answer: A
Explanation: Supervisory review must be evidenced and retained; verbal assurances alone do not document principal supervision.
Principals must be able to evidence and retain that required account-opening and maintenance reviews occurred and were reasonably designed and executed. Acceptable documentation includes checklists, exception reporting with follow-up, and audit/testing records with remediation tracking. Depending on verbal confirmations instead of keeping review evidence fails the documentation and accountability purpose of supervisory records.
Documentation of supervision for account opening and maintenance should create a clear, retrievable record that (1) the firm performed the required reviews, (2) exceptions were identified and resolved, and (3) issues were remediated and validated. Common tools include standardized checklists with principal approval, exception reports that are reviewed and evidenced with follow-up notes, and periodic audits/inspections with written findings and tracked corrective actions. A principal cannot “supervise by conversation” alone; without retained evidence, the firm cannot demonstrate that supervision occurred or that identified issues were addressed. The key takeaway is that supervision must be both performed and documented in a way that supports oversight, testing, and remediation.
A firm plans to let registered reps use LinkedIn through an approved vendor that captures and archives posts and direct messages. Business management wants “real-time” social engagement, so the WSP proposes (1) no principal pre-use approval of reps’ LinkedIn profiles or pinned posts, and (2) a monthly post-use sampling review of all activity.
Which option best states the primary supervisory risk/tradeoff the principal must address with this setup?
Best answer: A
Explanation: Treating static social media content as “interactive” to avoid pre-use approval creates the greatest compliance gap in the proposed workflow.
Social media pages can contain both static and interactive communications, and the supervision standard differs. The firm’s desire for speed is a legitimate objective, but it cannot eliminate required principal pre-use approval where the content is static (e.g., profiles, background, pinned/promotional posts). The most important tradeoff to solve is enabling real-time interaction while still preventing unapproved static advertising from going live.
The key supervisory concept is distinguishing static versus interactive electronic communications and aligning controls to each. Interactive content (e.g., real-time comments and back-and-forth messaging) is generally supervised through policies, training, surveillance, and post-use review rather than principal pre-approval of each communication. Static content (e.g., profiles, headers, bios, pinned posts, and other fixed promotional material) is treated more like an advertisement and generally requires registered principal approval before first use.
In the scenario, the firm is trying to achieve faster engagement by removing pre-use review for items that are likely static. That creates the biggest control weakness because a post-use sampling program does not substitute for required pre-approval of static content. A workable design usually combines pre-approval of static elements with ongoing monitoring/lexicon surveillance and post-use review for interactive activity, plus recordkeeping for both.
The closest distractor is recordkeeping, but the vendor archive control described reduces that as the primary risk here.
A Series 24 principal is reviewing a proposed retail social media post for a bond mutual fund.
Exhibit: Pre-use review packet (excerpt)
WSP: Use of investment company rankings and bond fund volatility ratings
- Rankings must disclose: ranking entity, ranking category, time period, ranking date, and number of funds ranked.
- Volatility ratings must: identify the rating provider, explain the meaning of the rating and the scale used,
and state the time period measured; the communication may not imply the rating predicts future performance.
Draft post text
"ABC Total Bond Fund was ranked #1 of 312 Intermediate Core Bond Funds (5-year) by FundRanker as of 12/31/2025.
Volatility Rating: 1 (Low) — Source: VolCheck. Past performance is not a guarantee of future results."
Based on the exhibit, what is the best supervisory interpretation before approving this post?
Best answer: C
Explanation: Volatility ratings require disclosure of the scale’s meaning and the measurement period, which the draft post omits.
The draft already includes the key ranking disclosures listed in the WSP (source, category, 5-year period, date, and number ranked). However, it does not explain what “1 (Low)” means on the VolCheck scale or state the period the volatility rating measures. The post should not be approved until those volatility-rating disclosures are added.
Communications that use third-party fund rankings and bond fund volatility ratings must provide enough context to keep the presentation fair and not misleading. Here, the ranking portion aligns with the WSP because it identifies the ranking entity, category, time period, ranking date, and the number of funds in the ranking.
The volatility-rating portion is incomplete because it only names the provider and states “1 (Low)” without explaining the rating scale (what values represent and what “1” signifies) and without stating the measurement period used to calculate the rating. A principal should require those missing disclosures before approving the post, and ensure the language does not suggest the rating predicts future performance.
A registered representative asks the principal to approve a $15,000 payment to an online newsletter to publish a “special report” highlighting a thinly traded microcap that the firm makes a market in and currently holds in inventory. The rep says the newsletter will run the piece within 24 hours but “doesn’t label sponsored content or disclose compensation.” The firm also has an active investment banking relationship with the issuer.
Which is the best supervisory response?
Best answer: A
Explanation: Paying for undisclosed promotional coverage is a market-manipulation red flag that requires immediate escalation and controls before any communication or trading continues.
An undisclosed payment for a publication that could move a thinly traded stock is a significant manipulation and communications risk, especially where the firm is a market maker and has an investment banking relationship. The appropriate principal action is to stop the activity and escalate to Compliance/Legal for review, require clear compensation disclosure if any piece is ever used, and implement trading controls (e.g., restricted/watch) while concerns are evaluated.
When a broker-dealer (or its associated persons) pays for publicity intended to influence interest in a security, it creates heightened risks of misleading communications and potential market manipulation. Those risks are amplified when the security is thinly traded and the firm has conflicts such as market making inventory and an investment banking relationship.
At a high level, the principal should respond by:
A simple principal “advertising approval” or customer-facing disclosure alone does not address the undisclosed-pay structure and manipulation concerns.
A broker-dealer sells mutual fund Class A shares that offer breakpoint discounts based on the customer’s aggregated purchases in the fund family (including eligible household accounts), and the prospectus permits Rights of Accumulation (ROA) and Letters of Intent (LOI). The firm’s supervisory surveillance only reviews each account individually and only flags a purchase when a single order is $50,000.
During a branch review, a principal finds multiple customers with two purchases of $45,000 in the same fund family placed within days of each other across related household accounts, resulting in higher front-end sales charges than if the purchases had been aggregated.
What is the most likely outcome of this supervisory control failure?
Best answer: B
Explanation: Breakpoint supervision must reasonably detect and prevent missed discounts (including ROA/LOI/householding), and failures typically result in overcharges, restitution, and supervisory deficiencies.
Because the firm’s surveillance ignores household aggregation and ROA/LOI, it is likely to miss breakpoint eligibility and charge customers excessive front-end loads. That creates direct customer harm and a supervisory deficiency. The typical consequence is regulatory findings with restitution and strengthened WSPs/monitoring to prevent recurrence.
Breakpoint discounts are designed to reduce mutual fund front-end sales charges when a customer’s purchases (often across eligible related/household accounts) reach certain levels, including via ROA and, when used, an LOI. A principal must reasonably supervise for breakpoint and share class sales practices by having WSPs and surveillance that can identify eligible aggregation and patterns such as multiple purchases just below a breakpoint across related accounts.
If a firm’s controls only look at single-account, single-order thresholds, the predictable result is missed breakpoint pricing, customer overcharges, and documentation gaps around ROA/LOI handling. In exams or investigations, that control failure commonly leads to supervisory findings, customer remediation (e.g., refunds of excess sales charges), and required enhancements to monitoring and principal review, rather than automatic correction by the fund company.
A Series 24 principal reviews a 6-month trade surveillance alert for a retail customer account. The firm’s WSP requires a documented investigation and escalation to Compliance when either (1) 6-month turnover rate exceeds 4.0 or (2) 6-month cost-to-equity is 9.0% or higher.
Account summary (last 6 months):
Based on the calculations, what should the principal do next?
Best answer: D
Explanation: Turnover is 5.5 and cost-to-equity is 9.0%, so WSPs require a documented investigation and escalation.
The trading metrics meet the firm’s escalation triggers: turnover exceeds 4.0 and cost-to-equity is at the 9.0% threshold. Those results, combined with rapid in-and-out activity, are red flags for excessive trading/churning. The appropriate supervisory response is to open a documented investigation, gather facts (including customer confirmation), and escalate per WSPs.
A principal should treat high turnover, high cost-to-equity, and frequent rapid round trips as red flags that require a documented supervisory investigation, not just monitoring. Here, both quantitative triggers in the firm’s WSP are met, so the principal should open a review, gather and preserve evidence (orders, communications, approvals), obtain the registered representative’s rationale, and contact the customer to confirm objectives/risk tolerance and awareness of the strategy and costs, then escalate to Compliance for next steps.
\[ \begin{aligned} \text{Turnover} &= \frac{220{,}000}{40{,}000}=5.5 \\ \text{Cost-to-equity} &= \frac{3{,}600}{40{,}000}=0.09=9.0\% \end{aligned} \]The key takeaway is to follow WSP-required escalation once the alert thresholds are actually met.
During a branch inspection, a principal finds that registered reps can mark an account “hold mail” based on a phone call from the customer, with no end date, and the branch does not retain records showing who is authorized to receive or endorse customer checks (negotiable instruments) generated from redemptions or account closings.
Which supervisory action best meets a customer-protection expectation?
Best answer: B
Explanation: Written, time-bounded authorizations with principal oversight and retained records help prevent concealment and misappropriation risks inherent in hold-mail and check-processing exceptions.
Hold-mail and negotiable-instrument exceptions are high-risk because they can conceal unauthorized activity and enable misdirection of funds. Strong supervision uses written, verifiable customer instructions, limits the duration of hold-mail, and applies principal approval, review, and exception reporting. The firm should also retain clear authorization records for who may receive or endorse checks tied to the account.
The core supervisory standard is to treat hold-mail and negotiable-instrument handling as exception processes that require heightened controls. Hold-mail can be used to hide unauthorized trading, address changes, or misappropriation by preventing the customer from seeing confirmations and statements. Similarly, weak documentation around who can receive or endorse checks increases the risk of forged endorsements and third-party diversion.
A sound WSP approach is to:
Key takeaway: document, time-limit, and supervise these exceptions rather than relying on informal notes or downstream processing controls.
A registered rep submits an internal request to enable “day-trading” capability (increased intraday buying power and rapid in-and-out trading features) for a retail margin customer. When the principal reviews the request, the file does not contain a day-trading risk disclosure acknowledgment, and there is no documented principal review of the customer’s experience, objectives, and financial ability to absorb losses.
What is the best next step for the principal?
Best answer: B
Explanation: Day-trading approval requires documented principal review and delivery/acknowledgment of the day-trading risk disclosure before the account is approved and functionality is turned on.
Before a retail customer is approved for day trading, the firm must provide the day-trading risk disclosure and obtain the customer’s written acknowledgment. The principal should also perform and document a reasonable review of the customer’s profile and ability to bear the risks, then approve the account and only then allow the day-trading functionality.
Day trading presents heightened risk, so firms must treat “approval for day trading” as a controlled supervisory decision. For a retail customer, the principal’s next step is to ensure the required day-trading risk disclosure is delivered and the customer’s written acknowledgment is obtained before approval is granted. The principal must also document a reasonable basis for approval (e.g., reviewing the customer’s financial situation, investment objectives, trading experience, and risk tolerance) and ensure WSP controls are in place to supervise the activity (such as exception reports for frequent intraday trading, margin/liquidation events, and account deficits). Only after the disclosure/acknowledgment and documented approval are complete should the firm enable day-trading features. A key takeaway is that disclosure and documented approval cannot be “cured” after the fact.
Which set of customer information is required to be obtained and maintained when opening a new non-institutional account and is used across identity verification (CIP), suitability/Reg BI customer profile, and operational processes such as tax reporting?
Best answer: D
Explanation: These core data elements support CIP identity verification, required account records, and customer-profile supervision for recommendations.
New account opening requires core “customer account information” records that also feed CIP identity verification and ongoing supervision. For an individual, firms generally must capture the customer’s identifying information (name, residential address, date of birth, taxpayer ID) and additional required account records (occupation/employer and investment objective) that support customer-profile and operational needs like tax reporting.
A principal should ensure the firm’s account-opening process collects and retains required customer account information that serves multiple controls. CIP relies on key identifying data (name, residential address, date of birth, and an identification number such as a taxpayer ID) to form a reasonable belief the firm knows the customer’s identity. Separately, required new-account records for non-institutional customers include information such as occupation/employer and the customer’s investment objective, which supports supervisory review of recommendations under Reg BI and helps the firm maintain accurate books and records for operations (including tax reporting and account maintenance). The best answer is the only one that combines the core CIP identifiers with required customer-profile/account-record elements.
Use the Series 24 Practice Test page for the full Securities Prep route, mixed-topic practice, timed mock exams, explanations, and web/mobile app access.
Use the Series 24 Cheat Sheet on SecuritiesMastery.com when you want a compact review before returning to the FINRA Series 24 Practice Test page.