The policies and procedures required by the Proposed Rules should take into consideration the nature of each organization's operations.27 They should be designed to prevent violations (by, for example, separating operational functions such as trading and reporting), detect violations of securities laws (by, for example, requiring a supervisor to review employees' personal securities transactions),