What is A Data Protection Impact Assessment (DPIA)? Data Protection Impact Assessments (DPIA) are a requirement of the UK GDPR. The assessment aids in compliance with the data protection requirements and obligations. It’s aim is to help firms identify the risks associated with data processing and those posed to data subjects. Completing a DPIA is […]
What is Information Security? Given the digital scope of business today, most firms are heavily invested in their Information Security programs and procedures. Ensuring that data, systems and infastructures are safe and secure should be run of the mill and a top priority, regardless of size or sector. Information Security in its broadest sense is […]
What is a Fitness & Propriety Test? The FCA make it mandatory for certain firms to assessing and verify the fitness and propriety of any employee who is (or will be) carryng out a Controlled Function; Senior Management Function; and/or a Certification Function. This requirement ensures that roles posing a significant impact or risk to […]
Regardless of the industry or sector you work in, having a structured and effective Complaints Procedure is an imperative part of good customer service. Most complaint handling procedures follow a similar pattern which include acknowledgments, timeframes, investigation processes and final responses. Some business types are regulated or governed by a professional body and will have […]
Businesses and sole traders with obligations under the Money Laundering Regulations (MLR) are required to be regulated by a supervisory authority. These include bodies such as the FCA, HMRC, The Gambling Commission and certain professional bodies. Businesses operating as an accountancy service provider are overseen by the HMRC and in additon to the MLR obligations, have specific requirements they must comply with.
Where a business has obligations under the Money Laundering Regulations (MLR), they must use a risk-based approach to identify, assess and prevent money laundering. Carrying out an AML Risk Assessment involves several steps, which can include (but are not limited to): –
– Identifying the money laundering risks relevant to your business.
– Completing a company-wide risk assessment which includes areas such as delivery channels, transactions, products/services, customer behaviour etc.
– Assessing the risks associated with your customers.
PECR Breaches So far throughout 2021/22, the Information Commissioner’s Office (ICO) has issued over £1,700,000 in fines for breaches of direct marketing laws. The ICO has powers under the Privacy and Electronic Communications Regulations 2003 (PECR) which enables them to take action to change the behaviour of anyone who breaches the regulation. The regulator’s enforcement […]
What is a Responsibilities Map? There are numerous mandatory requirements in the FCA’s Senior Managers & Certification Regime (SMCR). Whilst the FCA provide a free template for completing the Statement of Responsibility (SoR), enhanced firms also need a Management Responsibilities Map to support the individual Statements of Responsibility (SoR). The Responsibilities Map template should consist […]
Any policy within a business should start by defining what the included content covers. The introduction does not need to be extensive. However, it should give anyone referring to the policy sufficient information to understand what the policy relates to.
Money laundering is the term used to describe the process or act of disguising or hiding the original ownership of money that has been obtained through criminal acts such as terrorism, corruption or fraud. Such monies are then moved through legitimate businesses or sources to make it appear ‘clean’.
Most firms will have an Outsourcing Policy Template that is used to document their objectives and procedures for outsourced services and functions. The term ‘outsourcing’ refers to any business function or service that is provided by, or contracted out to an external provider or supplier.
Common examples of functions that are outsourced or are provided by an external supplier include postal and mailing services; shredding and confidential waste disposal; IT services and disaster recovery; debt collection and translations.