Skip to main content
Question

How Can an Ats Operationally Separate System Level Access from Trade Level Discretion in an Rfq Protocol?

An ATS separates access from discretion via a tiered entitlement system, using roles and attributes to enforce who can enter the system versus who can commit capital.
Greeks.LiveOctober 27, 202516 min

A modular component, resembling an RFQ gateway, with multiple connection points, intersects a high-fidelity execution pathway. This pathway extends towards a deep, optimized liquidity pool, illustrating robust market microstructure for institutional digital asset derivatives trading and atomic settlement
Intersecting metallic components symbolize an institutional RFQ Protocol framework. This system enables High-Fidelity Execution and Atomic Settlement for Digital Asset Derivatives

Concept

An Alternative Trading System’s (ATS) capacity to architecturally segregate system-level access from trade-level discretion within a Request for Quote (RFQ) protocol is the foundational element of its institutional viability. This separation addresses the core operational imperative of institutional finance ▴ enabling seamless market access while imposing granular control over transactional authority. The challenge originates in the dual requirements of modern trading.

On one hand, a wide array of personnel ▴ from portfolio managers and analysts to compliance officers and technology administrators ▴ requires access to the trading system for analytics, oversight, and operational support. This is system-level access, the basic permission to enter the environment.

On the other hand, the actual commitment of capital through a trade is a highly restricted, high-consequence action. This is trade-level discretion, the specific authority to solicit quotes, negotiate terms, and execute orders. Conflating these two tiers of permission creates an unacceptable operational risk surface. It is the digital equivalent of giving every employee in a bank a key to the vault.

A robust ATS architecture, therefore, treats these as distinct, non-overlapping domains of authority, managed through a sophisticated permissions framework. The objective is to build a system where access is granted broadly but authority is delegated with surgical precision, ensuring that only specific, mandated individuals can engage in the bilateral price discovery process that defines the RFQ protocol.

A system’s integrity is defined by its ability to grant access without conceding control.

This architectural philosophy moves beyond simple user-and-password paradigms. It involves creating a multi-layered entitlement system where user roles, specific permissions, and even data visibility are meticulously defined and enforced by the system’s core logic. For an RFQ protocol, this means the system must be able to differentiate between a user who can view historical trade blotters for performance analysis and a user who can initiate a multi-million dollar block trade for an illiquid asset.

The former requires read-only access to post-trade data, while the latter demands write-access to the order execution machinery. The operational separation is the mechanism that makes this differentiation possible, providing the structural integrity required for secure, compliant, and efficient institutional trading.


Stacked, distinct components, subtly tilted, symbolize the multi-tiered institutional digital asset derivatives architecture. Layers represent RFQ protocols, private quotation aggregation, core liquidity pools, and atomic settlement
Central teal-lit mechanism with radiating pathways embodies a Prime RFQ for institutional digital asset derivatives. It signifies RFQ protocol processing, liquidity aggregation, and high-fidelity execution for multi-leg spread trades, enabling atomic settlement within market microstructure via quantitative analysis

Strategy

The strategic implementation of separated access and discretion within an ATS hinges on the adoption of a robust authorization model. The two predominant frameworks for this purpose are Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC). The choice between them, or a hybrid approach, dictates the system’s flexibility, scalability, and ability to enforce complex institutional policies. An effective strategy is not merely about preventing unauthorized actions but about creating an operational environment that is both secure and efficient, minimizing friction for legitimate activities while erecting insurmountable barriers for illegitimate ones.

A luminous blue Bitcoin coin rests precisely within a sleek, multi-layered platform. This embodies high-fidelity execution of digital asset derivatives via an RFQ protocol, highlighting price discovery and atomic settlement

Role-Based Access Control a Foundational Approach

RBAC is the most common strategic starting point for designing institutional systems. It operates on a straightforward principle ▴ permissions are associated with roles, and users are assigned to roles. This model aligns well with the hierarchical structure of most financial institutions.

For instance, an asset management firm might define roles such as Portfolio Manager, Trader, Compliance Officer, and Operations Analyst. Each role is granted a specific set of permissions within the ATS.

This approach provides a clear and manageable structure. Administrators can manage permissions at the role level, which is far more scalable than managing them for each individual user. In the context of an RFQ protocol, the RBAC model would define which roles can perform actions like CreateRFQ, RespondToQuote, ViewMarketData, and ApproveExecution.

A cutaway reveals the intricate market microstructure of an institutional-grade platform. Internal components signify algorithmic trading logic, supporting high-fidelity execution via a streamlined RFQ protocol for aggregated inquiry and price discovery within a Prime RFQ

How Does Role Based Access Control Compare to Other Systems?

While RBAC provides a solid foundation, its rigidity can be a limitation in dynamic trading environments. A trader’s authority might need to change based on context that a simple role cannot capture, such as the notional value of the trade, the specific instrument, or the time of day. This is where a more granular strategy becomes necessary.

Robust metallic infrastructure symbolizes Prime RFQ for High-Fidelity Execution in Market Microstructure. An overlaid translucent teal prism represents RFQ for Price Discovery, optimizing Liquidity Pool access, Multi-Leg Spread strategies, and Portfolio Margin efficiency

Attribute-Based Access Control for Dynamic Granularity

ABAC represents a more advanced strategic framework. Instead of relying on static roles, ABAC grants permissions based on a combination of attributes. These attributes can relate to the user (e.g. seniority, certification), the resource being accessed (e.g. asset class, currency), the action being taken (e.g. trade size), and the environment (e.g. time of day, IP address).

This model allows for the creation of highly sophisticated and context-aware rules. For example, a policy could be written that states ▴ “A user with the attribute ‘Trader’ can initiate an RFQ for ‘BTC Options’ with a notional value up to ‘$5M’ during ‘US Trading Hours’.” This dynamic and granular control is exceptionally powerful for managing risk in an RFQ environment, where trades are often large and bespoke.

The optimal strategy combines the clarity of roles with the precision of attributes.

The following table illustrates a comparative analysis of RBAC and ABAC in the context of an ATS RFQ protocol:

Table 1 ▴ Comparison of RBAC and ABAC Authorization Models
Feature Role-Based Access Control (RBAC) Attribute-Based Access Control (ABAC)
Control Mechanism Permissions are assigned to predefined roles. Users inherit permissions from their assigned roles. Permissions are granted based on policies that evaluate attributes of the user, resource, and environment.
Granularity Coarse-grained. A role has a fixed set of permissions, which can lead to over-provisioning. Fine-grained. Allows for highly specific and context-aware rules (e.g. based on trade size, time, or asset).
Flexibility Limited. Changes in policy often require creating new roles, leading to “role explosion.” Highly flexible. New policies can be created by defining new combinations of attributes without altering the core structure.
Implementation Complexity Relatively straightforward to implement for well-defined organizational structures. More complex to design and implement due to the need for a sophisticated policy engine and attribute management.
Ideal Use Case Systems with stable, hierarchical user functions and clear lines of authority. Complex, dynamic environments requiring nuanced risk controls and adaptive permissions.
Abstract visualization of institutional digital asset derivatives. Intersecting planes illustrate 'RFQ protocol' pathways, enabling 'price discovery' within 'market microstructure'

A Hybrid Strategy RBAC with Attribute Overlays

For many institutions, the most effective strategy is a hybrid model that uses RBAC for broad, baseline entitlements and ABAC for fine-grained, high-risk scenarios. In this model, a user is assigned a ‘Trader’ role (RBAC), which grants them general access to the trading interface. However, the ability to execute a trade above a certain notional threshold or in a particularly volatile asset might require an ABAC policy check that verifies additional attributes, such as the trader’s specific desk or a secondary approval from a risk manager. This layered approach provides the clarity and manageability of RBAC while incorporating the powerful, context-aware security of ABAC where it is most needed.


Polished metallic rods, spherical joints, and reflective blue components within beige casings, depict a Crypto Derivatives OS. This engine drives institutional digital asset derivatives, optimizing RFQ protocols for high-fidelity execution, robust price discovery, and capital efficiency within complex market microstructure via algorithmic trading
A dark blue sphere, representing a deep liquidity pool for digital asset derivatives, opens via a translucent teal RFQ protocol. This unveils a principal's operational framework, detailing algorithmic trading for high-fidelity execution and atomic settlement, optimizing market microstructure

Execution

The execution of a segregated access control model within an ATS is a matter of meticulous architectural design and operational procedure. It requires translating the chosen strategy (RBAC, ABAC, or a hybrid) into a concrete, enforceable system of rules, permissions, and workflows. This is where the theoretical separation of access and discretion becomes a tangible reality, enforced by the system’s code and integrated into the firm’s daily operations.

Sleek, dark grey mechanism, pivoted centrally, embodies an RFQ protocol engine for institutional digital asset derivatives. Diagonally intersecting planes of dark, beige, teal symbolize diverse liquidity pools and complex market microstructure

The Operational Playbook

Implementing this separation requires a clear, step-by-step process. This playbook outlines the critical stages for building an operationally sound permissions framework within an RFQ-based ATS.

  1. Define User Personas and Roles ▴ The first step is to exhaustively identify every type of user who will interact with the system. This goes beyond simple job titles. It involves creating detailed personas that describe their responsibilities, objectives, and required interactions with the ATS.
    • System Administrator ▴ Manages user accounts, configures system-level settings, and monitors system health. Does not have trading authority.
    • Portfolio Manager (PM) ▴ Requires high-level visibility into positions, performance, and market data. May have authority to set trading strategy and approve large trades but not execute them directly.
    • Execution Trader ▴ The primary user of the RFQ protocol. Has the authority to initiate RFQs, negotiate with dealers, and execute trades within predefined limits.
    • Compliance Officer ▴ Requires read-only access to all trading activity, communication logs, and audit trails to ensure regulatory adherence. Cannot initiate or alter trades.
    • Operations Analyst ▴ Manages post-trade settlement and reconciliation. Requires access to confirmed trade details but not pre-trade negotiation data.
  2. Construct a Granular Permission Matrix ▴ With roles defined, the next step is to map each role to every possible action within the system. This matrix is the core of the RBAC framework and must be exhaustively detailed. Actions should be as granular as possible (e.g. ViewRFQ, CreateRFQ, AmendRFQ, CancelRFQ ).
  3. Implement an Entitlements Engine ▴ This is the software component that enforces the rules defined in the permission matrix. When a user attempts an action, the entitlements engine checks their role and associated permissions before allowing or denying the request. For ABAC, this engine is more complex, evaluating a policy against a set of real-time attributes.
  4. Design Approval Workflows ▴ For high-risk actions, the system must enforce multi-step approval workflows. For example, an RFQ for a trade exceeding a trader’s notional limit should automatically be routed to their designated Portfolio Manager for explicit approval before it can be sent to dealers. This workflow must be hard-coded into the system to ensure it cannot be bypassed.
  5. Establish a Rigorous Audit Trail ▴ Every action taken by any user must be logged immutably. This includes login attempts, data views, RFQ creations, quote responses, and trade executions. The audit trail is critical for compliance, forensic analysis, and dispute resolution. It must be protected from tampering, even by System Administrators.
Abstract planes delineate dark liquidity and a bright price discovery zone. Concentric circles signify volatility surface and order book dynamics for digital asset derivatives

Quantitative Modeling and Data Analysis

The permissioning model can be represented quantitatively in a detailed matrix. This provides an unambiguous specification for developers and a clear reference for auditors. The following table models a permission matrix for an institutional ATS, demonstrating the principle of least privilege where roles are granted only the permissions essential to their function.

Table 2 ▴ Detailed Role-Permission Matrix for an RFQ ATS
System Action / Data Resource System Admin Portfolio Manager Execution Trader Compliance Officer Operations Analyst
User Account Management Create/Modify/Delete None None View Only None
View Live Market Data View Only View Only View Only View Only View Only
View Historical Blotter (Own Desk) None View Only View Only View Only View Only (Post-T)
View Historical Blotter (Firm-Wide) None View Only None View Only None
Initiate RFQ (Under $10M Notional) None None Execute None None
Initiate RFQ (Over $10M Notional) None Requires Approval Requires Approval None None
Respond to Incoming Quote None None Execute None None
Approve Trade Execution None Execute None None None
Access Pre-Trade Comm Logs None View Only View Only View Only None
Access Post-Trade Settlement Data None View Only View Only View Only View/Modify
Access Full Audit Trail View Only None None View Only None
Modular, metallic components interconnected by glowing green channels represent a robust Principal's operational framework for institutional digital asset derivatives. This signifies active low-latency data flow, critical for high-fidelity execution and atomic settlement via RFQ protocols across diverse liquidity pools, ensuring optimal price discovery

Predictive Scenario Analysis

Consider a realistic case study ▴ a multi-billion dollar asset manager, “Global Alpha Investors,” needs to execute a large, complex options strategy ▴ a three-leg collar on a technology stock ▴ with a notional value of $50 million. The firm uses a sophisticated ATS with a hybrid RBAC/ABAC model to manage this process.

A junior Execution Trader, Alex, is tasked with the execution. Alex’s role, defined by RBAC, grants him the ability to initiate RFQs. He logs into the ATS, and the system immediately recognizes his role and permissions. He constructs the three-leg collar order.

However, his individual trading limit, an attribute stored in his user profile, is capped at $20 million notional value. When he attempts to submit the RFQ, the system’s ABAC policy engine triggers. The policy states ▴ IF User.Role == ‘Trader’ AND Order.Notional > User.Limit THEN Action.Status = ‘RequiresApproval’. The system blocks the RFQ from being sent to liquidity providers. Instead, it is routed to the desk’s head Portfolio Manager, Maria, along with an alert.

Maria receives the alert on her dashboard. Her ‘Portfolio Manager’ role grants her the permission to Approve Trade Execution. She can see the full details of the proposed collar, the current market conditions, and Alex’s initial notes.

The system-level access provides her with the context, while her trade-level discretion empowers her to make the capital commitment decision. She analyzes the strategy against her portfolio’s objectives and clicks “Approve.”

Only after Maria’s approval does the entitlements engine change the status of the RFQ to ‘Approved’. Alex is now able to send the RFQ out to a curated list of five approved liquidity providers. The quotes return directly to Alex’s screen. The system ensures that other traders at the firm cannot see these live, sensitive quotes, enforcing data segregation.

Alex negotiates with two of the providers via the integrated chat function ▴ all of which is logged for compliance. He executes the trade with the provider offering the best price.

Throughout this entire process, a Compliance Officer, David, has been monitoring the firm’s activity from his own terminal. His role grants him read-only access to the entire workflow. He can see the initial RFQ attempt by Alex, the ABAC-triggered block, Maria’s approval, the anonymized communication with dealers, and the final execution report.

He cannot intervene or alter any part of the trade, but he has perfect observational capability. This scenario demonstrates the system in action ▴ system access is broad (all parties can see what they need to see), but trade discretion is precisely channeled through a multi-step, attribute-driven, and fully-auditable workflow, preventing both errors and misconduct.

A polished glass sphere reflecting diagonal beige, black, and cyan bands, rests on a metallic base against a dark background. This embodies RFQ-driven Price Discovery and High-Fidelity Execution for Digital Asset Derivatives, optimizing Market Microstructure and mitigating Counterparty Risk via Prime RFQ Private Quotation

System Integration and Technological Architecture

The technological backbone for this separation of duties relies on specific industry standards and robust architectural design.

  • FIX Protocol Integration ▴ The Financial Information eXchange (FIX) protocol is the lingua franca of electronic trading. To implement this permissioning model, the ATS must leverage specific FIX tags to carry user and authority information.
    • PartyID (448), PartyIDSource (447), PartyRole (452) ▴ This block of tags is critical. When an order is sent from the client’s OMS to the ATS, it must contain the PartyID of the individual trader and potentially the approving PM. The PartyRole tag explicitly defines their function in the transaction (e.g. 7 for ‘Introducer’, 17 for ‘Execution Venue’). The ATS entitlements engine uses these tags to verify authority.
    • TargetPartyID (1462) ▴ In an RFQ, this specifies which liquidity providers are authorized to receive the request, enforcing the curated list.
  • API Architecture ▴ The ATS must expose a secure set of Application Programming Interfaces (APIs) for user and entitlement management. These are typically RESTful APIs that allow the firm’s central user directory (e.g. Active Directory) to synchronize with the ATS.
    • /users/{userId}/roles ▴ An endpoint to assign or view roles for a specific user.
    • /roles/{roleId}/permissions ▴ An endpoint to manage the permissions associated with a role.
    • /policies ▴ For ABAC systems, an endpoint to create and manage the attribute-based rules.
  • OMS and EMS Integration ▴ The separation must extend to the client’s own systems. The Order Management System (OMS) is the system of record for portfolio decisions, while the Execution Management System (EMS) is used for executing trades. The ATS must integrate seamlessly, ensuring that the permissions hierarchy is consistent across the entire technology stack. An order originating from a PM in the OMS should carry the necessary credentials so that when it arrives at the trader’s EMS and is routed to the ATS, the chain of authority is preserved and verifiable at every step.

A sleek Prime RFQ interface features a luminous teal display, signifying real-time RFQ Protocol data and dynamic Price Discovery within Market Microstructure. A detached sphere represents an optimized Block Trade, illustrating High-Fidelity Execution and Liquidity Aggregation for Institutional Digital Asset Derivatives

References

  • Sandhu, R. Ferraiolo, D. F. & Kuhn, D. R. (2000). The NIST model for role-based access control ▴ towards a unified standard. Proceedings of the fifth ACM workshop on Role-based access control, 47-63.
  • Hu, V. C. Ferraiolo, D. Kuhn, R. Schnitzer, A. Sandlin, K. Miller, R. & Scarfone, K. (2014). Guide to attribute based access control (ABAC) definition and considerations. NIST Special Publication 800-162.
  • Madan, B. B. Gonsalves, T. & Krishna, S. (2004). A survey of attribute based access control schemes. PES Institute of Technology.
  • The FIX Trading Community. (2019). FIX Protocol Specification Version 5.0 Service Pack 2. FIX Protocol Ltd.
  • Harris, L. (2003). Trading and Exchanges ▴ Market Microstructure for Practitioners. Oxford University Press.
  • O’Hara, M. (1995). Market Microstructure Theory. Blackwell Publishing.
  • U.S. Securities and Exchange Commission. (2018). Regulation ATS ▴ Alternative Trading Systems. SEC Release No. 34-83663.
Two distinct discs, symbolizing aggregated institutional liquidity pools, are bisected by a metallic blade. This represents high-fidelity execution via an RFQ protocol, enabling precise price discovery for multi-leg spread strategies and optimal capital efficiency within a Prime RFQ for digital asset derivatives

Reflection

Abstractly depicting an Institutional Grade Crypto Derivatives OS component. Its robust structure and metallic interface signify precise Market Microstructure for High-Fidelity Execution of RFQ Protocol and Block Trade orders

Is Your Architecture a Fortress or a Facade?

The technical and procedural architecture for separating access from discretion is a definitive measure of an institution’s operational maturity. Contemplating this framework compels a critical self-assessment. Does your current system truly enforce a granular, auditable chain of authority, or does it rely on operational workarounds and implicit trust? The principles outlined here provide a blueprint for constructing a fortress of control and compliance.

The ultimate value of such a system is not merely in the risks it mitigates but in the strategic confidence it confers. When the architecture is sound, portfolio managers and traders are empowered to focus on their primary function ▴ generating alpha ▴ secure in the knowledge that the system itself is the ultimate safeguard of capital and intent.

Abstract layers in grey, mint green, and deep blue visualize a Principal's operational framework for institutional digital asset derivatives. The textured grey signifies market microstructure, while the mint green layer with precise slots represents RFQ protocol parameters, enabling high-fidelity execution, private quotation, capital efficiency, and atomic settlement

Glossary

Beige module, dark data strip, teal reel, clear processing component. This illustrates an RFQ protocol's high-fidelity execution, facilitating principal-to-principal atomic settlement in market microstructure, essential for a Crypto Derivatives OS

Rfq Protocol

Meaning ▴ An RFQ Protocol, or Request for Quote Protocol, defines a standardized set of rules and communication procedures governing the electronic exchange of price inquiries and subsequent responses between market participants in a trading environment.
A transparent bar precisely intersects a dark blue circular module, symbolizing an RFQ protocol for institutional digital asset derivatives. This depicts high-fidelity execution within a dynamic liquidity pool, optimizing market microstructure via a Prime RFQ

Institutional Trading

Meaning ▴ Institutional Trading in the crypto landscape refers to the large-scale investment and trading activities undertaken by professional financial entities such as hedge funds, asset managers, pension funds, and family offices in cryptocurrencies and their derivatives.
A multi-layered device with translucent aqua dome and blue ring, on black. This represents an Institutional-Grade Prime RFQ Intelligence Layer for Digital Asset Derivatives

Attribute-Based Access Control

Meaning ▴ Attribute-Based Access Control (ABAC) defines a security architecture where permissions for accessing digital assets or system functionalities are granted or denied based on the evaluation of attributes associated with the requester, the resource, and the prevailing environmental conditions.
A transparent, blue-tinted sphere, anchored to a metallic base on a light surface, symbolizes an RFQ inquiry for digital asset derivatives. A fine line represents low-latency FIX Protocol for high-fidelity execution, optimizing price discovery in market microstructure via Prime RFQ

Role-Based Access Control

Meaning ▴ Role-Based Access Control (RBAC) is a security mechanism that restricts system access to authorized users based on their specific roles within an organization.
Two smooth, teal spheres, representing institutional liquidity pools, precisely balance a metallic object, symbolizing a block trade executed via RFQ protocol. This depicts high-fidelity execution, optimizing price discovery and capital efficiency within a Principal's operational framework for digital asset derivatives

Portfolio Manager

Meaning ▴ A Portfolio Manager, within the specialized domain of crypto investing and institutional digital asset management, is a highly skilled financial professional or an advanced automated system charged with the comprehensive responsibility of constructing, actively managing, and continuously optimizing investment portfolios on behalf of clients or a proprietary firm.
Interlocking modular components symbolize a unified Prime RFQ for institutional digital asset derivatives. Different colored sections represent distinct liquidity pools and RFQ protocols, enabling multi-leg spread execution

Notional Value

Meaning ▴ Notional Value, within the analytical framework of crypto investing, institutional options trading, and derivatives, denotes the total underlying value of an asset or contract upon which a derivative instrument's payments or obligations are calculated.
Sleek teal and beige forms converge, embodying institutional digital asset derivatives platforms. A central RFQ protocol hub with metallic blades signifies high-fidelity execution and price discovery

Access Control

Meaning ▴ Access Control, within the systems architecture of crypto and digital asset platforms, refers to the systematic restriction of access to network resources, data, or functions based on predefined policies and authenticated identities.
A precise, multi-layered disk embodies a dynamic Volatility Surface or deep Liquidity Pool for Digital Asset Derivatives. Dual metallic probes symbolize Algorithmic Trading and RFQ protocol inquiries, driving Price Discovery and High-Fidelity Execution of Multi-Leg Spreads within a Principal's operational framework

Fix Protocol

Meaning ▴ The Financial Information eXchange (FIX) Protocol is a widely adopted industry standard for electronic communication of financial transactions, including orders, quotes, and trade executions.
A polished, light surface interfaces with a darker, contoured form on black. This signifies the RFQ protocol for institutional digital asset derivatives, embodying price discovery and high-fidelity execution

Execution Management System

Meaning ▴ An Execution Management System (EMS) in the context of crypto trading is a sophisticated software platform designed to optimize the routing and execution of institutional orders for digital assets and derivatives, including crypto options, across multiple liquidity venues.
A sleek, institutional-grade RFQ engine precisely interfaces with a dark blue sphere, symbolizing a deep latent liquidity pool for digital asset derivatives. This robust connection enables high-fidelity execution and price discovery for Bitcoin Options and multi-leg spread strategies

Order Management System

Meaning ▴ An Order Management System (OMS) is a sophisticated software application or platform designed to facilitate and manage the entire lifecycle of a trade order, from its initial creation and routing to execution and post-trade allocation, specifically engineered for the complexities of crypto investing and derivatives trading.

Tags:

About

Contact

Editorial Policy

Terms of Service

Privacy Policy

Cookie Policy

© 2025 Greeks.Live

All Rights Reserved

Greeks.Live RFQ

Build by Noo on Engine

Source: The content on this website is produced by Greeks.live's proprietary analysis systems, which utilize advanced Large Language Models (LLMs). This information might not be subject to a full human review before publication and may contain errors.
Responsibility: You should not make any financial decisions based solely on the content presented here. We strongly urge you to conduct your own rigorous due diligence and to consult a qualified, independent financial advisor.
Purpose: All information is intended for informational purposes only. It should not be construed as financial, investment, trading, or any other form of professional advice. News and data are not trading signals.
Risk: The cryptocurrency, derivatives, and options markets are highly volatile and carry significant risk. By using this site, you acknowledge these risks and agree that Greeks.live and its affiliates are not responsible for any financial losses you may incur.