Amy Bell

Mindful policies

Blogs, Legal Compliance, Risk Management /

This morning I was looking at a post on LinkedIn which generated a lot of comments and interest. The post is about a mobile phone policy which a content marketing business felt it needed to implement, apparently written, according to the managing director, by the younger staff, and not by management.

Now, reading the comments, it’s suggested by some that this is a clever piece of content marketing to demonstrate the businesses ability to get engagement, but whether it is or not, I’ve seen that policy before, often, in law firms.

“Failure to close the photocopier lid is a disciplinary offence.” “No more than 1 person in the kitchen at any one time.” “The toilet roll is kept in the managing partners office and must be returned after use.”

These examples of policies are not made up for clickbait. They are policies which were in place in the first law firm I worked in. Now we’re talking 22 years ago, but just last year someone sent me a picture of a sign on the back of a bathroom door (which clients can use) which said in red capitals – DO NOT LEAVE THIS TOILET WITHOUT CHECKING IT HAS FLUSHED PROPERLY. IF NECESSARY, FLUSH AGAIN.

I find myself reflecting on what is happening in these businesses to motivate people to write such things, what are their frustrations, concerns, worries? Worries about productivity, wasted costs, cleanliness, and in respect of the mobile phone policy, possibly security. These are absolutely legitimate issues which need to be addressed, but I would suggest that sometimes the ways these policies are written is counterproductive.

Whilst the policy or notice itself may have the desired effect – we never left the photocopier lid up for example, what does this do for morale, and culture. Now this isn’t my area, I know people much better placed to talk about culture, but I do know about policies, and I would urge anyone writing them to think about the unintended consequences. Whenever we introduce controls, unless people properly understand the rationale, there is a risk they won’t comply. That they’ll dismiss it and will work around it.

Also consider how the policy might be interpreted. Avoid writing them when you’re frustrated! In one of the comments the MD of the company with the mobile policy was asked did it apply to him, and he said, he needed his mobile phone on the desk, and he could “restrain himself” from getting drawn into social interaction during the day.

I recently caught a Simon Sinek (who I love!) video about allowing our children access to mobile phones is damaging them and ultimately causing a problem for managers in the work place as people are addicted to them. I don’t disagree with him, but dismissing this as – they can’t restrain themselves, so I am going to threaten them with a ban – doesn’t seem to me to be the best way of tackling this.

Communication, explaining the impact, understanding why it is an issue, and arriving at a negotiated solution is going to be much better than issuing policies which can alienate people, breed resentment, and cause exactly the lack of productivity you were afraid of in the first place.

Be mindful when writing your policies, leave aside for a moment what your intention is, and put your self in the mind of the reader. Am I saying what I mean, will they understand why we need it to be this way, will they feel talked down to by the language? The more engaged the reader is, the more likely they are to comply.

Get in touch

If you’d like help with your policies and procedures, simply get in touch with one of our helpful experts today.

Mindful policies Read More »

Two men calculating an invoice

The new transparency rules: what you need to know

Blogs, Legal Compliance, Regulatory Compliance, Risk Management /

The Legal Services Board have approved the SRA’s proposed change to the transparency rules. But, what does this mean for your law firm and how are you going to ensure you comply with the new rules by the December 2018 deadline?

What’s the aim of the transparency rules?

The aim of the changes is to assist clients by providing clarity in relation to their legal fees.

The rationale came from the recent Competition and Market Authority report, where it was apparent that consumers wanted more information to enable them to make informed decisions about the range of services available to them when accessing legal services. The report found that the prices charged and the services offered were unclear, descriptions were ambiguous and that the client was not always getting what they expected.

What are the changes?

Under the rules, law firms will be required to publish on their website, their price and service information for specified legal services which include:

  • Debt recovery (up to £100,000)
  • Employee and employer tribunal claims (unfair/wrongful dismissal)
  • Immigration
  • Licensing applications for business premises
  • Probate
  • Residential conveyancing
  • Road traffic offences

The rules do not apply for publicly funded work.

In addition, firms will be required to display the new SRA digital badge which essentially provides a layer of protection against fraudulent activities,

Other changes include the requirement to publish the firm’s complaints procedures, including how and when complaints may be made.

As a firm, you will be required to publish:

  1. A full description of services offered, which also should be included in your Client Care Letter/Terms of Engagement
  2. The costs of services: These must be clear, no more hidden additional fees. If it is not possible to provide the total costs, you should provide details of the costs in stages, and what each stage entails.
  3. Hourly rates -v- fixed fee: If the firm is charging on an hourly rate basis these will need to be published. Consider placing these on the profiles of the fee earners on the service pages, so potential clients can see the information sooner rather than later. Firms may also want to consider an hourly rates table on their website. If you are offering fixed fees, ensure that you clearly set out what is and isn’t included in the fee.
  4. Disbursements: Provide clarity and certainty (where possible) as to what the disbursements will be during the matter. For example, for conveyancing transactions firms may want to consider providing a full list on the website of possible disbursements. In other matters, the firm may want to consider listing the types of disbursements that may need to be funded, so that it does not come as a surprise to the client.
  5. VAT: Be clear as to what will have VAT added.
  6. Referral Arrangements: You will need to disclosure any referral agreement you have in place, including how much you will receive. This information should also be in the Client Care letter/Terms of Business.

How can you make this work on your website?

Firms will be considering how to achieve this. You should consider the “user experience” how will your clients find out this information. The draft guidance to support these rules suggests the information should be easily navigable if it is not on your home page. Some firms are creating specific pages, others are building this into an online quote tool, or are considering connecting to price comparison sites. There is an increasing number of firms that are white labelled under other organisations and they will all need to align, particularly in relation to conveyancing where clients can obtain online quotes.

Complaints information must also be published and should include your complaints handling procedure as well as details about how and when a complaint can be made to the Legal Ombudsman.

Firms must also display in a prominent place its SRA number and digital badge.

What if I don’t have a website?

If a firm does not have a website the firm must make the information available on request. Firms are not expected to create a website simply to comply with these rules.

Get in touch

If you require any help or assistance in navigating the new rules, or wish to speak to us about risk management, or find out more about our website auditing service, then feel free to get in touch with our experts today. An initial chat is always free.

The new transparency rules: what you need to know Read More »

Side view of silver laptop

Technology for compliance

Blogs, Legal Compliance, Risk Management /

At the recent Teal Annual Conference, I spoke to the delegates about Technology in Compliance. I’d like to pose some of the questions we talked about during the session. How would your firm answer?

  1. How do your current systems and processes work for you?

  2. As a firm, are you all working on the same system or is it a mix?

  3. Are you confident that all your employees are using the same versions of documents such as your Client care letters and Terms of Business?

  4. How often do you review your systems and processes?

The answers to the above questions are fairly self explanatory when it comes to assessing how effectively a firm is using technology to support their compliance function.

There are common themes for the majority of firms I meet. Firstly, there are still many firms that do not have a case management system (actually there are a lot) and who operate with a “S – Drive” where everyone can access and save documents. Secondly, there are those that have a mixture of different systems, and different levels of take up of those systems depending on the department.  There are of course some firms that use their CMS to the best of their advantage. This takes a significant amount of work, but the firms that make the effort, reap the rewards. Personally, I would like to see compliance embedded into the IT systems and processes within all firms.

By investing in people, processes and systems it allows compliance to become second nature, providing an additional layer to internal risk management, and an audit trail if something were to happen.

In addition, it can also help increase profitability – so what is there not to like?

With so many different systems on the market, if you do not have a system, or are looking to change, how do you choose the right one for your firm? Here are some pointers:

  • Select the project team in-house – have a mix of staff covering support staff, fee earners, IT, management. You need to have a complete overview from all perspectives. Also ensure you include different disciplines, as each will have their own requirements.
  • Scope the list of features you must have, should have and would like to have. A project cannot always be completed in one hit, and taking a phased implementation approach is often more successful.
  • Do your research into providers or bring in an independent consultant who can assist. It is not a case of one size fits all.
  • Know your budget – there is a vast difference between “out the box” and custom built.
  • Shortlist the systems that you consider will assist you in your business and arrange a beauty parade.
  • Have a selection of staff at demonstrations.
  • Take your time to work through the pros and cons.
  • Consider the change management that will be needed within the firm to implement the new system.

As a starter for ten, here are some of the features which you should consider embedding into your systems:

  • Conflict checks
  • AML – check the integration with AML providers
  • Streamline your systems and have mandatory workflows to embed compliance
  • Versioning control
  • Workflows
  • File reviews
  • KPIs
  • Key dates
  • Client feedback
  • Risk assessments
  • Outlook functionality
  • HR plugins
  • Office manual
  • Training and development
  • Risk register

I am strongly of the view that we can effectively use technology within our compliance systems to minimise the risks involved in running a law firm. Why make things more difficult for yourselves, your firm, your staff, and your clients than they need to be!

Get in touch

Teal Compliance offers a compliance technology platform which is built specifically for law firms. Find out more about Teal Tracker, or alternatively contact one of our helpful advisers.

Technology for compliance Read More »

Corner of a UK driving licence

Identification: The differences between AML, KYC, CDD & CID

Anti-Money Laundering, Blogs, Legal Compliance /

Call me pedantic, but I like precision when I’m talking about compliance. Don’t get me started on 5MLD (which does not currently exist!).

Yesterday I was invited to speak at the Internet of Agreements conference on Identity. I was giving the legal perspective, specifically around AML/KYC.

The audience was, in the main, people working on blockchain solutions. It was absolutely fascinating to be in a room with people trying to solve issues with technology, and this group specifically were concerned with ensuring people involved in a blockchain contract could trust the other person was who they said they were.

Most of the technical content went over my head if I’m honest, I don’t know one end of code from another!

Of course identity from an AML perspective has a very specific meaning and purpose, and it became clear to me that having been immersed in this regulated world for 13 years, that perhaps other people don’t appreciate the nuances of it. If people are looking to create solutions, then they need to understand the problem.

The terms CDD/KYC/AML are used interchangeably by non AML people, to mean the same thing, that one approach to identity will work for all three, but I hope I explained yesterday that it’s not that straightforward, and on reflection, I think we should all be mindful of the difference.

AML – Anti money laundering, does what it says on the tin, an AML policy is a policy which sets out how you are going to prevent money laundering. An AML procedure will be something you have in place to prevent money laundering.
KYC – Know your client, this is understanding who your client is, what their goals are, so you can advise them properly.
CDD – this is a combination of identity verification and understanding the purpose and nature of the business relationship you have with the client, both at the beginning of the matter and ongoing.
CID – Client ID – this is identifying and verifying your client based on documents or information which is independent of the client.

The reason I think it is important to break this down into these 4 parts is that CID does not prevent money laundering. It might prevent identity fraud, but not money laundering. Baddies live somewhere. CDD does not necessarily prevent money laundering. Sure, if you are carrying out source of funds enquiries you might see something which might make you suspicious and withdraw from acting, but we don’t always, when conducting CDD ask for or have the full picture of the client’s affairs.

KYC is more likely to prevent money laundering. Getting to know your client, understanding how they have made their money is where you will detect money laundering. Understanding their past transactions and business activities is where you will spot suspicious circumstances.

Therefore, as I said yesterday, CID is important, it’s required by the law (so the Police know which door to knock on to find your client), but if we deploy AML policies which are just designed to comply with CDD requirements we will miss signs of money laundering. We should be looking to understand the client’s source of wealth as well as funds if we want to disrupt money laundering. We should understand how have they got to the position they are in today, and what are their plans for the future. This is not only good businesses sense in terms of ensuring your advice meets properly the clients needs, but will make it more difficult for the criminals to use you to launder money.

There are a lot of very interesting companies trying to provide Client ID solutions for AML, but if you’re one of those clever techy people I would urge you to consider what can be done to prevent money laundering rather than just making compliance easier – although that’s great too!

Get in touch

For more information about AML Compliance, simply contact one of our helpful advisers.

Identification: The differences between AML, KYC, CDD & CID Read More »

People sat talking and laughing in a group

Compliance Culture: Communication is key!

Blogs, Compliance Training, Legal Compliance /

The legal industry can be a mixture of things, both good and not so good.   People tend to focus on the things that drive them, whether it’s the bottom line of fee income, helping clients or having to make what some people may see as ruthless decisions for the success of the business. However, I also see leaders in firms who consider people as their biggest asset, whether that is their staff, suppliers or their clients, and who lead by example and deal with making decisions in an ethical way.

There will always be occasions where decision makers in a firm and managers/supervisors must deliver difficult news.   It is often the case that is not the news itself that can leave individuals disappointed or upset, but the way that news was delivered.

Throughout my career I have always tried to put myself in the shoes of the person at the receiving end of the news, good or bad, and consider how that person may be feeling.   And key to that is wherever possible engage in face to face conversations. With the technology we have around us, I do think that we sometimes use it as a barrier to avoid these difficult conversations.  However, emails and instant messages can easily come across in a way that we didn’t intend, and where they have used them to “save time” can be counterproductive, leaving us to deal with the fall out from the miscommunication.   Worse still, I have seen individuals delegate the task to someone else who is clearly not equipped to handle such situations.

The key to successful communication is to have considered the best approach beforehand and considered the best interests of the recipient.   We may not always get it right, but this can be a great starting point.  We all hold the key to effective communication within our firm – have you revisited yours to make sure the key is used in the best way?

 

Get in touch

For more information about our services, simply contact one of our experts today.

Get in touch

Compliance Culture: Communication is key! Read More »

Delegates sat at a conference

Teal Compliance and Lockton Conference 2018

Blogs, Compliance Training, Legal Compliance /

 

The Teal Compliance and Lockton Conference 2018 takes place on the 26th April 2018 in London.  With so much change afoot in the world of compliance, the theme for this year’s conference is ‘Navigating a year of change’.

As a team we have all been working hard to pull together an agenda which covers all the key updates and provides perspectives from industry experts on practical application of the changes to regulations – from AML to GDRP to Code of Conduct.

The agenda

The full agenda has now been released:

  • Chair’s Welcome
  • Opening Comments – Robert Bourns, Chair of the Law Society Board and former President.
  • Session 1 – Anti Money Laundering update – Amy Bell, Chair of Law Society’s AML Taskforce and Mark Heffer, AML Consultant with Teal Compliance.
  • Session 2 – The Importance of Ethics – Sarah Mumford, Interim Director of Risk, Trowers & Hamlins LLP and independent legal risk consultant
  • Session 3 – All Things Data – Emma Willis, GDPR Consultant at Teal Compliance and Edward Whittingham, Business Fraud Prevention Partnership
  • Session 4 – Cyber Risk Mitigation – Dave Williams, TrustedIA and Mark Hawksworth, Cunningham Lindsey
  • Session 5 – Managing Risk: The Insurers View – Panel: Adam Curran, Inter Hannover, Jay Bowey, Pelican, Anthony Judge, Omnyy
  • Session 6 – New Code of Conduct – Ian Johnson, The Institute of Legal Financial Management and Paul Wilkinson, Audit Compliance Ltd
  • Session 7 – Getting it Right! – Amy Bell
  • Session 8 – Technology in Compliance – Vicky Simpson, Teal Compliance, Matt Hodges-Long, CEO TrackMyRisks, Graeme Port, Head of Product at encompass Corporation
  • Closing remarks and drinks reception

In addition the whole of the Teal Team will be available throughout the the day and many of our associates will be leading speaking session, alongside high profile external speakers from the world of risk, compliance, insurance and regulation.

The aim

The aim of the Conference is to prepare you for the year of change and to challenge you in terms of thinking about risk and compliance.   There are firms who are taking unnecessary risks by not having sufficient “know how” or resources.  This is of course something that Team Teal can assist you with.

The speakers on the day will guide you through a series of perspectives from a risk/insurance point of view to GDPR and Cyber Crime. Panel Discussions will take place and will provide you with the opportunity to ask questions and the Team will be available after the Event to follow up on any requirements.

Get in touch

Early Bird tickets are on sale from now until the 18th March and can be found on our events page.

Alternatively, find out more about our training packages or contact our experts today.

Teal Compliance and Lockton Conference 2018 Read More »

Back of two police officers

Do we need to ‘change up’ AML Training?

Anti-Money Laundering, Blogs, Compliance Training, Legal Compliance /

 

I have been training in AML for 13 years. I love it, I love spreading the word, helping staff in law firms understand the risks they face, and what to look out for to try and identify someone trying to use them to launder money.

Sopranos, The Wire, Breaking Bad and McMafia have all played a part in raising the awareness of how the baddies launder money, but we need to make sure that the training is relevant to lawyers, and their staff.

I’ve trained countless numbers of MLROs in those 13 years. I’ve never met any who did not accept and appreciate the need to have their firm understand the anti money laundering legislation and how to apply it in their firm.

That said, I have been talking about the same methods in which the money launderers operate for most of those years, car washes, take-aways, and memorably (if you’ve been on the course you’ll remember) nail bars. All of those are still relevant, but there are new ways in which the criminals are operating and it is critical that we gain an understanding of those in order to protect our firms, the people who work for us and the wider society who are damaged by money laundering and the activities of serious and organised crime.

What about your construction clients who are using sub-contracted labour, who are in turn victims of human trafficking, what about the person who is lucky on fixed odds betting machines, who has really been pumping the machine with the proceeds of selling drugs on bicycles on street corners in your town. It’s on your doorstep, I just want to help you see it.

For that reason, I am delighted to have Mark Heffer join us at Teal Compliance. Mark is a Financial Crime Consultant, Accredited Financial Investigator and former Detective Constable. He served for over 25 years with the Devon and Cornwall Constabulary with the Serious and Organised Crime Branch and specialised in crime such as money laundering, complex fraud, human trafficking, drug trafficking, bribery and corruption.  He is an expert in all aspects of POCA, money laundering, confiscation, restraint, and SARs and has a reputation for bringing a very real world, hands on approach to his consulting work.

He supports law firms with a range of services including:

  • Expert training and investigation in all aspects of Financial Crime, Anti Money Laundering, Compliance and Fraud.

  • Bespoke investigations for Business and Private Clients – managing reputational risk

  • Assisting firms with the perils of Restraint/Production Orders

Together, we have written new AML courses, which focus on these new tactics being deployed by the baddies, and how they target not just you, but manipulate the banks, accountants and estate agents, before they get to you, the lawyers, adding layers of legitimacy which can be difficult to unravel. We’re running a webinar for MLROs on the 8th March which will focus on these tactics, and how to spot and avoid them. Visit our events page for more details.

Mark and I are also taking bookings for our brand new in house course. It is a 90 minute course, fully incorporating the 2017 regulations and full of relevant examples of how firms are targeted. In house training can be incredibly cost effective, with up to 100 people trained a day for £1250 plus VAT (and travel expenses)

Get in touch

If you need help with AML compliance or need compliance training, simply get in touch with one of our experts today.

Do we need to ‘change up’ AML Training? Read More »

two large skyscraper buildings

AML – the size and nature test

Anti-Money Laundering, Blogs, Legal Compliance /

 

Regulation 21 of the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 requires that a firm which is regulated, implements internal controls where appropriate to the size and nature of the firm.

These controls are:

  1. Appoint a person to be responsible for compliance with the regulations
  2. Screen relevant employees, both before the appointment is made and ongoing thereafter
  3. Establish an independent audit function

So, what should the ‘controls’ look like and what is the appropriate ‘size and nature’?

Controls

In my experience, in legal services we don’t have many controls in place. Our colleagues in other industries, such as financial services have lots. A control exists to check the efficacy of a policy and procedure. By way of an example, I am betting your firm has a confidential waste policy, “you must not put client information or confidential data in the normal waste paper bin”. You will have a procedure which says “You must put confidential waste in the bin for confidential shredding”. Very few firms however have a control which says “we will check the waste paper bins weekly to ensure that no confidential data has been put in there”.

It’s great to have policies and procedures, but we usually only find out if they are effective when something goes wrong, by which time it’s too late to avoid the damage that the policy and procedure was designed to avoid.

The Regulation 21 controls are designed to make sure you have someone who is tasked with making sure that the regulations are complied with, we have people who know how to comply with them, and that we check that they are working.

Size and Nature

Implementation of these controls depends on the size and nature of the firm. When we were drafting the guidance at the Money Laundering Task Force we grappled with how does a firm decide on the size and nature. It’s not an easy thing to define. The Legal Sector Affinity Group decided on:

Factors you may consider when determining whether it is appropriate to apply those controls include:

  • The number of staff members your practice has

  • The number of offices your practice has and where they are located (including whether your practice has overseas offices)

  • Your client demographic

  • The nature and complexity of work your practice undertakes

  • The level of visibility and control that senior management has over client matters

(taken from the draft Legal Sector Affinity Group Guidance).

Sole practitioners who do not employ any staff are not caught by this by virtue of regulation 21(6).

In practice, I think firms will have appointed their COLP as being responsible for compliance (which is arguably already their job by virtue of the SRA authorisation rules). I think firms will be obtaining references for new staff, at times carrying out more rigorous criminal records type checks, and will be thinking about testing staff understanding after training courses.

I think less straight forward is establishing whether a firm needs an independent audit function. My personal view, (rather than of the Law Society) is that a firm does not have to be very big in order to be required to do this. Take this example, a firm that has about 50 people, across 2 offices, with all the staff collecting and recording their own due diligence, and lawyers making decisions about what sorts of inquiries to make regarding the purpose and nature of the transaction. Does the MLRO know that his policies are adhered to and are effective? If, hand on heart, he would say no, an audit would give him that visibility. The mischief the control is trying to get at is to ensure that the firm knows if the Policies, Controls and Procedures they have in place are working.

So if you decide you are the size and nature to need an independent, who is going to do it?  Do you have staff the with requisite knowledge and capacity to carry out the audit? Are they able to acting independently? I think that resourcing alone would be a struggle for many of the smaller firms, and indeed a fair few of the larger firms, who might have an audit function, but without the necessary experience in AML.

An audit should include review of the policies and procedures, interviewing staff and reviewing files and accounts processes to ensure that the policies and procedures are deployed correctly.

Help

With that in mind, we have put together a package of support for firms who can’t resource their audit internally. We can:

  • Review existing policies and procedures, including firm and matter risk assessments

  • Carry out on site review of systems, policies and procedures

  • Interview staff members to test understanding

  • Provide feedback of observations and recommendations for improvement

In addition we can help

  • Rectify policies and procedures

  • Develop controls to ensure constant visibility as to compliance

  • Provide tailored in-house training to all staff members to embed learning

  • Provide ongoing support and monitoring

Get in touch

If you are still unsure how the AML size and nature test applies to your firm, get in touch with one of our experts today.

AML – the size and nature test Read More »

Pinboard with a note pinned on saying "What's your goal?"

What are your compliance goals?

Blogs, Legal Compliance, Risk Management /

 

At the start of 2018 most us will have sat down and set personal new year resolutions. There are two questions I would ask:

  1. How many of those resolutions are you maintaining?

  2. Out of those resolutions, were any of them business focused?

Whether you are the decision maker in the firm or an employee it is always good to have goals to focus on.  Compliance underpins both the individual and firm wide goals, without it you are almost certainly not going to succeed.

At the very least whilst you may think you are succeeding without compliance, it will only take one complaint that leads to a negligence action or a rogue fee earner that will bring the walls tumbling down.  The foundation of any law firm is Compliance – how good would it be to achieve all your goals and sleep at night without the worry of “what if”?

Even in the most compliant firms partners will still at one time or another have that feeling of something going wrong, usually in the middle of the night.  At Teal we are here to make sure that those 3.00am wake up calls are few and far between.

Prevention is better than cure and sometimes the not knowing how to deal with something is far worse than the issue itself.

If you were building a house or a block of flats, you would not do so without the appropriate planning permission or foundations.  Building a block of flats on the same foundations as a single or double story house is a risk that we can all see.

You may not be able to see the risks in your own firm, which is where Teal can assist.  We know what to look for, how to deal with the warning signs and put systems in place.  We will set goals for you which we know you will be able to achieve.

Compliance is not about setting people up to fail, it’s about being realistic in training your staff, so they know what to look out for and question.  It’s about being preventative and having the knowledge of what is truly happening in your firm.  Not turning a blind eye because that fee earner bills a higher amount.  It’s about the culture and fit of the employees within your firm.  It’s your integrity, ethics and your reputation.

So, if we were to look at your compliance goals – what would they be?

Get in touch

We can help you achieve your compliance goals through a range of services we have to offer. Simply get in touch with one of our experts today to find out more.

What are your compliance goals? Read More »

Hands typing on a laptop

Top 4 AML things you need to tackle in 2018

Anti-Money Laundering, Blogs, Legal Compliance /

The wicked, the criminals, are continuously innovating, and creating new ways to make money out of crime. They are also money laundering, on an epic scale. The scale of money laundering in the UK is thought to be £90bn a year.

2017 was a year of change in AML and financial crime, with the long awaited Money Laundering, Terrorist Financing, Transfer of Funds (Information on the Payer) Regulations 2017 (MLR), and the Criminal Finances Act. There was plenty to think about and do. But it doesn’t stop there. The wicked don’t, so we can’t. Here are 4 things you will need to tackle in 2018.

1. Final Guidance

The Legal Sector Affinity Group have prepared guidance for firms on MLR 2017, which is currently in draft form on the Law Society’s website. The guidance has been submitted to HM Treasury, and is currently going through the approval process. It is hoped the guidance will be finalised within the next couple of months. Once the final guidance is released, firms will need to take steps to finalise their policies and procedures.

2. Independent Audit Function

Regulation 21 MLR requires that a firm, where appropriate to the size and nature of its business, establish an independent audit function to examine and evaluate the adequacy and effectiveness of the policies, controls and procedures. Firms will need to consider how to resource this, whether they can do that internally or externally, and consider the scope. Many firms already include CDD in their file review process, but audit may be much wider, reviewing accounts and risk assessment processes.

3. Implementation of the Criminal Finances Act (CFA)

2017 saw the introduction of the CFA, and the Corporate Offence of Failing to Prevent the Criminal Facilitation of Tax Evasion. Firms also need to be aware of the provisions around the extension to the Moratorium Period (r10), the new Information Sharing Powers (r11) and Further Information Orders (r12) which came into force on the 31st October 2017. Policies and procedures for dealing with these may need to be introduced, and staff training delivered, particularly in relation to the Information Sharing Powers, and how to respond should someone seek to share information about a client with them.

4. Amending Directive to 4MLD

On the 15th December the amending directive to the fourth Money Laundering Directive was agreed. This revision of the 4MLD, aims to:

  • increasing transparency on who really owns companies and trusts by establishing beneficial ownership registers;
  • preventing risks associated with the use of virtual currencies for terrorist financing and limiting the use of pre-paid cards;
  • improving the safeguards for financial transactions to and from high-risk third countries;
  • enhancing the access of Financial Intelligence Units to information, including centralised bank account registers

Member states will have 18 months to implement these changes, so firms may need to make further changes to their policies and procedures soon.

It is clear we are a long way off from “Business as Usual” in AML, with a lot of change still to navigate and embed.

Get in touch

For more information about our AML services, simply get in touch with our experts today.

Top 4 AML things you need to tackle in 2018 Read More »