What is Operational Resilience? Operational resilience framework and templates can help a business to continue trading in the event of one or more operational or business incidents. Operational resilience is a company’s ability to identify, control, mitigate and manage operational disruptions. All businesses should have an operational resilience framework that identifies potential vulnerabilities and the […]
The Senior Managers and Certification Regime (SMCR) Undertsanding how to write an SMF handover policy is just one of the aspects required to comply with the Senior Managers and Certification Regime (SMCR). Most dual and solo-regulated firms are required to comply with the SMCR and COCON rules set out in the FCA Handbook. There are […]
What is Complaint Handling? Successful complaint handling means giving customers a forum to raise concerns and issues in a simple and meaningful way. Mistakes happen! The best way to deal with them is to resolve them and learn from them. Complaints are not about assigning blame or pointing the finger! Free complaint handling process article. […]
Introduction to the Client Asset Sourcebook (CASS) Where certain regulated firms hold or control client money or safe custody assets as part of their business, they are required to comply with the FCA’s Client Assets Sourcebook (CASS) rules. The guidance, rules and requirements set out in CASS have been created to ensure that adequate protections […]
Introduction Vulnerabilities come in many different forms, including those created by permanent and temporary circumstances. Certain customers need additional support or guidance when purchasing financial products and services. Vulnerabilities vary by individual and group, meaning a vulnerable customer checklist is an essential tool for gap analysis and risk assessment. All FCA regulated firms are expected […]
What is a Data Protection Impact Assessment? A Data Protection Impact Assessment (DPIA) is a mandatory requirement under the UK GDPR for certain types of data processing and activities. Article 35 states that a DPIA must be carried out where the type of processing is likely to result in a high risk to the rights […]
What is the Consumer Duty? Knowing how to write a product approval process is an essential function for the FCA’s latest retail market rules. The Consumer Duty (‘the Duty’) came into force on 31st July 2023 for new and existing retail products and services. The Duty only applies to retail market customers and aims to […]
Why Do You Need a CCTV Policy? If you are using CCTV surveillance across any business area you should know how to write a CCTV policy. You have a legal obligation to notify individuals that you are using CCTV! You should implement a CCTV policy which defines how, why and when you use CCTV and […]
What is Cyber Essentials? Backed by the Government, Cyber Essentials is a scheme which aims to helps businesses protect themselves from the most common cyber attacks. The scheme incorporates cyber essentials assessment tools, arming firms with the knowledge and understanding to implement policies and controls designed to identify vulnerabilities and implement measures. Whilst there are […]
The Financial Conduct Authority (FCA) have always had a robust approach to the way vulnerable customers are managed by regulated firms. However, following on from reviews and the Covid-19 crisis, the FCA have said “we want to drive improvements in the way firms treat vulnerable consumers and bring about a practical shift in firms’ actions and behaviour.”