Each guide identifies five key priorities for the area of risk, and gives a heads-up on why each is a priority area. The priority is explained in further detail, with a series of mini-checklists and action points.
Having a clear understanding of the nature of competition law compliance and the associated risks/challenges for businesses is the first step to setting effective compliance arrangements. We help organisations with this.
Practical guidance tools, registers, training aids and other templates to help you comply with data protection law and manage privacy risks
Helping in-house counsel, privacy and compliance professionals manage the regulatory burden. GDPR, BA, MLR and plenty more, we've got it covered.
The Office of Financial Sanctions Implementation (OFSI) has updated its UK financial sanctions general guidance. Section 6 of the guidance, which...
The Information Commissioner’s Office (ICO) has released a report containing data about the prevalence of data breaches. The report has practical...
The Foreign, Commonwealth and Development Office (FCDO) has published a joint statement from the UK Department of State and UK FCDO following the...
MLex: Guidance for companies on the UK's new offence of failure to prevent fraud should be issued in summer 2024, the country's home affairs ministry...
The Law Society of England and Wales has made recommendations in response to the Treasury Select Committee’s inquiry on Russian Financial Sanctions....
The EU AML/CTF package—AMLA, AML/CTF single rulebook, MLD6 and Recast EU WTR2The European Commission’s 2020 Action Plan for a Comprehensive EU policy...
Responding to a UK GDPR compensation claim—a practical guideSTOP PRESS—Impact of the Retained EU Law (Revocation and Reform) Act 2023: This Practice...
Children and data protection law—the age appropriate design code (children’s code)The UK data protection authority, the Information Commissioner’s...
Doing business in: IrelandUpdated in September 2020IntroductionIreland is consistently ranked as one of the most attractive locations globally in...
Appointing a European representative—data protectionThis Practice Note is intended for commercial organisations in the UK. It sets out the obligation...
Records retention schedule (employment)STOP PRESS: The Information Commissioner’s Office (ICO) has published draft guidance on keeping employment...
Data protection privacy notice (recruitment)FORTHCOMING CHANGE: The ICO has published draft guidance on recruitment and selection, which is out for...
Policy—bring your own device (BYOD)This material considers the UK GDPR regime, and legislative links are to Assimilated Regulation (EU) 2016/679, UK...
External data protection officer (DPO) appointment terms—company to individual—pro-clientDelete clause 3.6 of Precedent: Consultancy agreement—company...
Policy—health and safetyCoronavirus (COVID-19): For guidance on health and safety issues in the relation to coronavirus (COVID-19), see Practice Note:...
How to manage legal riskIt is often said that running a business means taking risks and that the biggest risk an entrepreneur can take is not to think...
Tipping-off and prejudicing an investigationThere are several offences of tipping-off and prejudicing an investigation that apply to the regulated...
Dawn raid—who can raid my organisation and why?The UK Government has legislated to permit a number of UK authorities to obtain search warrants to...
Contract management risk management guideWhy you need to manage this riskContract management is often seen by the business as an activity which is...
Confidentiality risk management guideWhy you need to manage this riskConfidential information is one of the most valuable assets of any business....
Money Laundering Regulations 2017—simplified due diligenceYou may apply simplified customer due diligence (SDD) measures in relation to particular...
SRA Code of Conduct for Solicitors, RELs and RFLs—for in-house lawyersThis Practice Note provides guidance for in-house solicitors on the SRA Code of...
Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017—key information for businessesThe Money...
Dealing with the National Crime AgencyThis Practice Note provides high-level guidance on dealing with the National Crime Agency. It sets out the role,...
Public statement on data breachStatement by [insert name of organisation] concerning a significant [cyber attack OR data protection breach] on [insert...
Money Laundering Regulations 2017—nominated officerThis Practice Note sets out when organisations must appoint a nominated officer (sometimes referred...
Dealing with the Serious Fraud OfficeSFO—role and powersRoleThe Serious Fraud Office (SFO) is the authority in England, Wales and Northern Ireland...
How to conduct a legitimate interest assessment (LIA)The UK General Data Protection Regulation (UK GDPR) permits processing of personal data where...
Dealing with dawn raids by the Information Commissioner’s OfficeThis document reflects the UK GDPR regime. References and links to the GDPR refer to...
The control centre for a cable system where signals such as terrestrial and satellite TV channels are received, processed and sent for distribution down the cable system.
Introduced by Pensions Act 2004, s 69 this regime requires trustees and sponsoring employers of certain defined benefit schemes to report independently in writing to the Pensions Regulator specified events.
The analysis of historical price movements and trends to predict future price action.