The Senior Managers and Certification Regime (SMCR) Undertsanding how to write an SMF handover policy is just one of the aspects required to comply with the Senior Managers and Certification Regime (SMCR). Most dual and solo-regulated firms are required to comply with the SMCR and COCON rules set out in the FCA Handbook. There are […]
What is a Data Protection Impact Assessment? A Data Protection Impact Assessment (DPIA) is a mandatory requirement under the UK GDPR for certain types of data processing and activities. Article 35 states that a DPIA must be carried out where the type of processing is likely to result in a high risk to the rights […]
Why Do You Need a CCTV Policy? If you are using CCTV surveillance across any business area you should know how to write a CCTV policy. You have a legal obligation to notify individuals that you are using CCTV! You should implement a CCTV policy which defines how, why and when you use CCTV and […]
What is Cyber Essentials? Backed by the Government, Cyber Essentials is a scheme which aims to helps businesses protect themselves from the most common cyber attacks. The scheme incorporates cyber essentials assessment tools, arming firms with the knowledge and understanding to implement policies and controls designed to identify vulnerabilities and implement measures. Whilst there are […]
Lawful Basis for Processing Why do you need to understand the legitimate interests assessment process? When processing personal information, it is a legal requirement to comply with the UK GDPR and data protection laws. Specifically, adhering to the Article 6 lawfulness of processing obligations. Businesses processing personal data should identify which legal basis they are […]
Anti Money Laundering templates for small firms should provide ready-to-use content that is easily customised. Many of the smaller firms who have obligations under the Money Laundering Regulations are supervised by the HMRC. However, some have other supervisory authorities such as the FCA or professional bodies. Whoever your AML supervisor is, you will need to […]
Skills Gap Analysis Overview If you are wondering how to carry out a skills gap analysis, this article will provide you with the generic stages and criteria. Completing a skills gap analysis is a key business function that is applicable to all business types and industries. The starting point is to identify what skills your […]
GDPR and Digital Information Bill Summary After tabling and then withdrawing the initial data protection reform bill, the revised Data Protection and Digital Information (No. 2) Bill (“the Bill) is now making its way through the parlimentary channels. The second version of the Bill provides some additional clarifications on its predecessor. It aims to make […]
All businesses with obligations under the Money Laundering Regulations are required to have certain policies and controls in place. Under The Proceeds of Crime Act 2002 (POCA) and The Terrorism Act 2000, such firms are required to report money laundering suspicions via a Suspicious Activity Report (SAR). Where a company has concerns over potential or […]
Surprisingly, some firms are still not complying with the Money Laundering Regulations and the FCA’s oversight requirements for anti-money laundering compliance. For organisations such as Guaranty Trust Bank (UK) Limited, it appears that a past FCA fine totalling £525,000 in August 2013 for major AML systemic failings, was insufficient to make the bank review and revise […]