Regulatory Compliance | Teal Compliance

Handy Hints for those new to the role of a COLP and MLRO in a law firm

New to the role of COLP and MLRO?

Anti-Money Laundering, Blogs, Legal Compliance, Regulatory Compliance, Risk Management / Mark

Firstly, if you’re new to the role of a compliance officer in your law firm, congratulations! If you’re the MLRO or the COLP, which are key positions in a law firm, getting to grips with our Handy Hints will help you stay on top of regulatory expectations and best practices.

If you haven’t downloaded already, our Guide to Source of Wealth & Funds for Law Firm Compliance is a must have.

Here are some of our key tips, plus practical guidance written for you, if you’re new to the role in a law firm in England or Wales.

1. Understand Your Core Responsibilities

As MLRO, your primary duties include:

Receiving and assessing Suspicious Activity Reports (SARs) from staff
Deciding whether to report suspicions to the National Crime Agency (NCA)
Keeping a clear and auditable record of decisions
Ensuring compliance with the Money Laundering Regulations 2017 (as amended)
Keeping up-to-date with Sanctions Regimes (especially in light of post-Brexit UK sanctions)

As COLP, your duties include:

Ensuring compliance with the SRA Code of Conduct and SRA Principles
Reporting serious compliance breaches to the SRA
Acting as the firm’s ‘whistleblower’ for misconduct

If you don’t already have a TOOLKIT then you can get hold of our TEAL TRACKER HERE which will get you off to a great start.

2. Keep on Top of Key Legislation & Guidance

Some key documents and sources you must be familiar with:

The Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 (as amended)
Proceeds of Crime Act 2002 (POCA) – especially on offences like failure to report and tipping off
SRA’s Anti-Money Laundering (AML) Guidance
Legal Sector Affinity Group (LSAG) AML Guidance – this is tailored for law firms
Sanctions and Financial Crime Guidance from the Office of Financial Sanctions Implementation (OFSI)

3. Risk Assessment & Client Due Diligence (CDD)

Ensure your firm-wide AML risk assessment is up-to-date
Make sure your firm is risk-based – i.e., clients, transactions, and matters are assessed for risk at the outset and on an ongoing basis
Implement proper Know Your Client (KYC) checks – ID verification, beneficial ownership checks, source of funds/wealth assessments
Make use of electronic verification tools, but don’t rely on them alone
High-risk clients (PEPs, high-net-worth individuals, complex structures) require enhanced due diligence (EDD)
Have a clear matter risk assessment process that all fee-earners follow

4. SARs & Internal Reporting

Train staff on how to spot red flags (e.g., unusual payments, urgent last minute changes in payments, complex company structures, reluctance to provide information)
Have a clear SAR reporting process – encourage staff to report suspicions internally first (to you as MLRO)

If you file a SAR to the NCA, remember:

You mustn’t tip off the client
You may need a Defence Against Money Laundering (DAML) before proceeding with a transaction
Keep a clear record of why you did/didn’t report

HOW WE CAN SOLVE YOUR COMPLIANCE HEADACHES

AML SORTED Programme (for medium to large sized law firms) CLICK HERE
AML SORTED Programme (for small law firms) CLICK HERE
Regulatory SORTED Programme (for medium to large sized law firms) CLICK HERE
Regulatory SORTED for Small Firms Programme (for small law firms) CLICK HERE

5. Training & Staff Engagement

Provide regular AML training for all fee-earners and staff
Training should be practical – use real-life examples of risks in legal work
Ensure all new joiners get AML training as part of induction
Encourage an open culture where staff feel comfortable raising concerns

6. Staying Compliant with the SRA

Be prepared for SRA AML Audits – they’ve increased spot checks on firms
Ensure your Policies, Controls, and Procedures (PCPs) are documented and kept up-to-date
If you’re ever unsure about an issue, document your reasoning before making a decision
Keep a register of AML breaches and near-misses
Attend their Compliance Conference each year

AML AUDITS WITH TEAL COMPLIANCE

7. Managing Stress & Your Own Risk

Keep an audit trail of key AML decisions – this protects you if questioned by the regulator
Use external resources and networks – join MLRO/COLP forums for peer support
If in doubt, seek external legal or compliance advice rather than making risky decisions alone
LawCare is the legal sector’s charity, supporting us in our roles in law firms. Their helplines are confidential, if you’re struggling with stress please contact them. They’re excellent and all the volunteers on the helplines have either worked in law, or still do, i.e. they “get it”.

READ THIS ARTICLE FOR FURTHER INSIGHTS

Need Help?

Did you know that Teal provides specialist training to both COLPs and MLROs? If you want to find out more, simply GET IN TOUCH HERE.

New to the role of COLP and MLRO? Read More »

How to master the tricky world of source of funds and wealth

How to Master the Tricky World of the Source of Funds and Wealth

Anti-Money Laundering, Blogs, Legal Compliance, Regulatory Compliance, Risk Management / Mark

AML compliance can feel like walking a tightrope, right? Especially when it comes to a client’s source of funds and wealth. It’s a balancing act: you need to be flexible enough to handle all sorts of clients, but you also need a rock-solid strategy for managing risk.

At Teal Compliance we hear that it can be hard to have the conversation around source of funds and source of wealth with a well paying existing client, or those who have a high net worth.

If you haven’t downloaded already, our Guide to Source of Wealth & Funds for Law Firm Compliance is a must have.

Here are my thoughts on how law firms should nail the risk-based approach to source of funds and wealth verification, keeping you compliant without slowing things down.

Step 1: Build Your Risk-Assessment Toolkit

Think of your clients and transactions like a deck of cards – some are higher risk than others. Maybe you’ve got clients from countries with shaky AML rules, or maybe their business structure is a bit of a maze.

Whatever the reason, I suggest you begin by categorising them.

Once you’ve sorted them, decide what level of due diligence each category needs. Basic checks for some, the full nine yards for others. And don’t forget to keep your toolkit updated! Regulations change, the market shifts, and new risks pop up all the time.

If you don’t already have a TOOLKIT then you can get hold of our TEAL TRACKER HERE which will get you off to a great start.

Step 2: Set Clear Rules for High-Risk Transactions

Certain transactions, like residential conveyancing (a classic money laundering route as you will know) and corporate acquisitions, just scream “high risk.” For these, you need clear, standardised policies.

Within your AML Policy, you should spell out exactly what you consider is acceptable proof of source of funds and wealth. For example, if funds are coming from somewhere from a sale being handled by another law firm you may want your fee earners to get a completion statement from the law firm along with a bank statement from the client to show the funds being deposited. You should also build flexibility into your policy too because what happens when a transaction throws you a curveball? Your policy should tell you how to handle it.

Our SORTED Programmes can help you spot the gaps in your compliance and fix them.

Step 3: Train Your Team – Make Them Risk Detectives!

Handling High-Risk Transactions

Your team needs to be sharp when it comes to risk. I can’t emphasise enough how your training should be FIRMWIDE.

From your MLROs and COLPS to your receptionists, each one should be able to spot risk at the start a new client onboarding process and a new transaction, whilst keeping an eye on it during ongoing monitoring, and double-check everything whilst having the confidence to ask for help or back up if they need it. No fear culture is seriously important.

And here’s my pro tip: document everything. Why did they assess the risk the way they did? Write it down. It not only protects your firm but also shows you’re serious about compliance. Your PII firm will appreciate your documented communications and it will help should you ever get a visit from your regulator.

HOW WE CAN SOLVE YOUR COMPLIANCE HEADACHES

AML SORTED Programme (for medium to large sized law firms) CLICK HERE
AML SORTED Programme (for small law firms) CLICK HERE
Regulatory SORTED Programme (for medium to large sized law firms) CLICK HERE
Regulatory SORTED for Small Firms Programme (for small law firms) CLICK HERE

The UK Bank Account Myth: Don't Get Caught Out!

Let’s bust a myth that’s been doing the rounds for way too long: just because money’s in a UK bank account doesn’t mean it’s clean. Big banks have been in hot water for money laundering, so don’t assume anything.

Myth #1: UK Bank Account = Clean Money

Nope. Even the most reputable banks can have dirty money flowing through them. Just because it’s in a UK account doesn’t automatically make it legit.

Action: Always do your own due diligence on the source of funds, no matter where they’re held. Trace the money back to its origin and make sure the client’s story matches the documents.

Myth #2: The Bank’s Already Checked It

Maybe the bank did file a Suspicious Activity Report (SAR), but they might still have to release the funds. It doesn’t mean you’re off the hook.

Action: Treat every transaction like it’s brand new. Even if a bank has cleared the funds, your firm needs to verify the source and make sure everything is AML-compliant.

Bottom Line: Don’t fall for the UK bank account myth! It’s a trap. By understanding the limitations of relying on bank checks and doing your own thorough due diligence, you can keep your firm safe.

In conclusion....

If you find you are procrastinating from having that awkward conversation with a client (or indeed that well paying existing or high net worth client) about having to do some comprehensive checks as to where their funds are coming from, you can simply blame it on legislation! Come what may, you, as a solicitor, compliance officer, CILEx lawyer, paralegal, Senior Partner…have to adhere to the AML regulations by performing comprehensive checks to authenticate identities, proof of address, and source of funds and wealth.

Would you rather have a short, possibly tricky conversation with a client, or potentially face a serious consequence (no one wants a huge fine or go to prison).

As an example, if you are a conveyancer, you have to follow the rules to make sure the money used to buy a property isn’t from the proceeds of crime. It’s not just about ticking boxes for your law firm, you have to be smart and proactive in the fight against financial crime.

Let’s be honest, nobody wants their firm involved in money laundering. That’s where risk assessments come in. They’re like a health check for your business, helping you identify potential vulnerabilities so you can take action. By understanding the risks, you can put smart controls in place and keep things running smoothly (and legally!).

It’s never too late to get compliant, and it’s definitely never too early to begin the process.

You can email me directly, or any of my team to find out how Teal can help support you, your reputation and your clients.

Please remember that Teal Compliance is your go-to AML and Risk Management Partner and we have a variety of packages available to support you, your colleagues and of course, your clients!

To find out more, click HERE and come what may, we look forward to supporting you soon.

SORTED: Compliance Services

Training and Education

Ask Teal: Consultation Services

Legal Compliance Audit

Policy Review & Writing Services

Website Audit Services

Teal Tracker

Let us support you, your team and your clients.

How to Master the Tricky World of the Source of Funds and Wealth Read More »

Hidden costs of inadequate risk management in a uk law firm by AMY BELL

The Hidden Costs of Inadequate Risk Management in Law Firms

Anti-Money Laundering, Legal Compliance, Regulatory Compliance, Risk Management / Mark

What keeps a lawyer up at night? The answer will depend on where they sit in their role in a law firm. As a solicitor and AML compliance specialist, I get it.

Senior partners might focus on cashflow and reputation. Newly qualifieds might be struggling with imposter syndrome. Practice managers may be spinning their plates with software integration and IT headaches, whereas compliance officers will have their own plethora of worries.

From my experience, it depends on whether you’re specifically a COFA, COLP, or MLRO (of course many small high street firms have one person covering all the compliance and risk management pathways in a firm whilst fee earning).

Does your firm focus on conveyancing and private client work? You’ve got a whole host of challenges just by default. Are you involved in litigation and dispute resolution? Then you’ve got the “sham litigation” scenarios abounding. Onboarding overseas’ clients from possible “risk” territories? You’ve got some serious CDD work there. Have a senior partner that also holds the role of the compliance officer and looks after client accounts? Let’s not even go there…

It’s great that I’m seeing so many more firms come to me and my team asking for support in compliance training, more onboarding with our Teal Tracker software and generally being more proactive with their firm’s visibility in understanding and staying compliant, but there are so many that are still focused on the pounding billable hour and 100% client focused, rather than 85% on client work and 15% training and compliance.

The concept of “sustainable effort” is the idea of working at 85% capacity, as we can maintain the perfect equilibrium of high performance and well-being, i.e. if you are working at 100% then this leads to burnout, which of course leads to risk. McKinsey’s Burnout Tool is handy HERE.

It’s too easy to use AML templates and not tailor them to your firm, your clientele, and of course your employees and colleagues. I designed our AML software, TEAL TRACKER, with you in mind….if you’re reading this, then why not have a look at our software HERE.

We can all rely on those basic templates, ask new employees to read the policy online, run a tick box exercise, but what happens when it’s too late? When risk has crashed through your door.

Ultimately, overseeing risk management in your law firm is about finding a balance that works for you and your employees, whilst seriously considering factors like workload, regulator fines, insider (and outsider) threats, and workplace culture.

As the CEO of Teal Compliance and Chair of the Law Society’s Money Laundering Task Force, I can only continue to support my peers in the legal profession and impart my insights and expertise.

Sometimes if you look at scenarios and work backwards it helps to identify the stages of how to feel secure in your firm’s compliance processes and controls. Know the saying “I never thought it would happen to me?”. My advice is to assume it will be you and deter the baddies whilst appeasing the regulators.

Some of the “hidden costs”, i.e. consequences of inadequate risk management include:

Regulatory penalties: Firms that fail to comply with AML regulations can face significant fines and penalties. All you need to do is look at the SRA’s website or a search in Legal Futures to hear the latest. The law firm Ashfords LLP had a largely unblemished regulatory and disciplinary history and so it is regretful that they were then fined more than £100,000 for failing to comply with AML regulations
Reputational damage: A firm’s “brand” reputation can be devastatingly damaged if it has been involved in money laundering or other illegal activities, whether or not the crime was due to naivety or planned. We are in a digital age where social media and Google reviews can be detrimental, leading to a loss of clients, difficulty attracting new business, and a decline in overall firm value – you want succession and have worked so hard but then you’re fined, possibly struck off and another firm sweeps in at a price that’s hard to swallow.
Client money losses: The responsibility for client account monies falls on the law firm and its managers, including the Compliance Officer for Finance and Administration (COFA) and the Compliance Officer for Legal Practice (COLP). If client monies are stolen or laundered, and the SRA finds out, the firm and its responsible individuals can face serious consequences, including disciplinary action and potential referral to the Solicitors Disciplinary Tribunal (SDT). If the loss of client money is due to dishonesty or negligence by your firm, then you and your firm would be responsible for reimbursing the client. Consequences are hidden from this obvious painful financial strain, but brand reputation, personal life stresses and recruitment are key players.
Cybersecurity threats: Inadequate risk management can leave firms really open and vulnerable to dreaded cyber-attacks and data breaches. These can cause significant financial losses, including the cost of remediation, legal fees, and potential fines.
Internal fraud: This is a painful one because it forces us to look at insider threats. Common types of internal fraud include administering the accounts of individual clients where a single person has sole authority, and unofficial “borrowing” from client account or billing fraud. Billing fraud is where fee earners might inflate time spent and/or fees charged to meet or exceed targets. In the latter scenario it goes back to the pressures put on lawyers and therefore workplace culture might need more looking into.
Increased scrutiny: Time in a law firm is hard to come by, especially if there aren’t enough fee earners to cover the amount of work. It’s back to the balance of 85% output. If your firm has a history of compliance issues that aren’t rectified or evidenced to be doing more to manage risk, that firm faces increased scrutiny from the regulators. That is time-consuming in itself, as well costly. Your firm might be incurring higher costs to bring your practice into a healthy compliance model after failing to manage all risks adequately.
Difficulty obtaining insurance: If you have poor compliance records then it stands to reason that you might find it more difficult to obtain professional indemnity insurance or cyber insurance, or may face higher premiums. Insurers prefer continued transparency and openness. They better serve you when you come to them quickly with a possible breach. If they see you are in communication with them with anything seemingly risky, they’ll be able to help you navigate the process better.
Recruitment and Talent: Ask anyone in law and they’ll tell you that recruiting is a headache but then keeping great people in your firm is a migraine. A poor risk management culture leads to employee dissatisfaction, burnout, and ultimately, loss of your talented peers and colleagues. You don’t want to see your colleagues heading off to a competitor who offers continued training that’s engaging, and focuses on the 85% model at work do you?
Operational Inefficiencies: Practice managers have many plates to spin, therefore if part of their role is to ensure the operational running of your firm lacks effective risk management the plates begin to drop. Billing errors, CMS glitches, delayed disbursements, increased administrative workloads, and no controls to track and measure for compliance policies and processes.
Clients: We are all consumers of law in some way or another, yes, even us solicitors, i.e. we are all human. We observe, we listen, we trust, we lose trust…. clients may lose trust in a firm that fails to manage risks effectively. Remember social media, and insider gossip? It happens, people talk. If there’s a local newspaper with a budding journalist reading to crawl the disciplinary pages or court documents for their “business section”, and you’re in a firm of high street residential conveyancers, before you know it, the reputation is damaged, leading to loss of business and an impact on your firm’s market value. Whether you might be thinking of succession or investment, poor risk management has many hidden costs that include your future.

It’s never too late to invest in your firm’s compliance and manage risk effectively.

Amy

The Hidden Costs of Inadequate Risk Management in Law Firms Read More »

Guide to Source of Wealth & Funds for Law Firm Compliance

Anti-Money Laundering, Blogs, Legal Compliance, Regulatory Compliance, Risk Management / Mark

As many of you will know I am the Chair of the Law Society’s Economic Crime Taskforce which allows me to share with Team Teal and our clients inside intelligence regarding updates on source of funds checks. Your source of funds checks are crucial for verifying the origins of money used in your regulated matters. These checks ensure that funds come from legitimate sources which help to combat money laundering and other financial crimes. Basically, it’s the way to stop the baddies.

The guide I’ve put together below explains the purpose of source of funds checks, it outlines their key components, and discusses best practices for keeping on top of your compliance.

Key Takeaways

Source of Funds (SoF) checks are vital for understanding and verifying the legitimacy of funds in transactions, helping to prevent money laundering and ensure compliance.
Key components of effective SoF checks include Client Due Diligence (CDD), Enhanced Due Diligence (EDD), and ongoing monitoring to identify high-risk transactions.
Thorough documentation is crucial to evidence compliance, and firms must be prepared to report suspicious activities while avoiding ‘tipping off’ clients.

Understanding Source of Funds (SoF)

In the complex realm of law firm financial activities, Source of Funds (SoF) checks play an instrumental role in maintaining transparency and integrity for the regulators, your clients and your reputation.

These checks aim to mitigate the risk of financial crime by ensuring that all the funds used in transactions are legitimate and not derived from illicit activities.

But what exactly does SoF mean, and why is it so important in today’s financial landscape? SoF checks focus on verifying where the money for a specific transaction originates. This prevents criminals from using illegal funds and protects the financial system’s integrity.

Understanding the definition and importance of SoF checks reveals their critical role.

Definition and Importance

At its core, Source of Funds refers to the process of checking where the money for a particular transaction comes from. This involves ensuring that the funds are not from illegal activities and verifying their legitimacy. For instance, if a client is purchasing a property, the SoF check would involve verifying that the money used is not from criminal activities.

The importance of SoF checks cannot be overstated. They are essential in preventing money laundering and terrorist financing, which means your firm is proving it is maintaining the integrity of the financial system. Verifying the Source of Funds minimises the chance of criminal property being used in transactions, safeguarding a law firm’s reputation and the broader financial market.

Legal Framework

The legal framework surrounding Source of Funds checks is robust, designed to combat financial crime effectively. The Proceeds of Crime Act 2002 (POCA) is a key piece of legislation that makes concealing criminal property an offence along with being involved in an arrangement that facilitates criminal property and the acquisition, use and possession of criminal property. The Money Laundering Regulations (MLR) then set out the steps that are required to avoid becoming involved with the proceeds of crime. The MLR mandates that businesses must conduct SoF checks to ensure that funds used in transactions are legally obtained.

In addition, payments from certain high-risk countries might not be accepted due to the elevated money laundering risks they present. This highlights the importance of understanding the legal requirements and implementing thorough SoF checks to comply with anti-money laundering legislation and avoid severe penalties.

I can’t emphasise enough the importance of training for your compliance officers and support staff. TRAINING INFORMATION

Key Components of Source of Funds Checks

Conducting effective Source of Funds checks involves several key components, each playing a super vital role in ensuring compliance and mitigating risks. These components include Client Due Diligence (CDD), Enhanced Due Diligence (EDD), and ongoing monitoring. Each of these elements works together to create a comprehensive approach to SoF checks.

Documentation is a vital part of this process, as it provides the necessary evidence to verify the source of funds. Depending on the risk level of the transaction, the type of documentation required can vary significantly. Keeping on top of updates and sanctions is so important because as you know, there’s always loads going on in AML!

Subscribe to Teal Compliance Newsletter HERE.

Exploring these components in detail reveals their significance.

Client Due Diligence (CDD)

Client Due Diligence (CDD) is the first line of defence in identifying and verifying clients to eliminate anonymity and identify potential risks of money laundering. This process involves obtaining official documents such as passports and utility bills to confirm the client’s identity. Regulation 28 mandates that firms must also scrutinise transactions throughout the client relationship to ensure they align with the client’s risk profile.

Implementing robust customer due diligence procedures is particularly important for high-risk transactions. It helps firms understand their clients’ backgrounds and transaction patterns, thereby identifying any anomalies that might indicate money laundering, i.e., ongoing monitoring.

Enhanced Due Diligence (EDD)

Enhanced Due Diligence (EDD) comes into play when dealing with clients who pose a higher risk, such as politically exposed persons (PEPs) or individuals linked to high-risk jurisdictions. EDD requires additional scrutiny and verification steps to ensure the legitimacy of the client’s source of wealth and funds.

When dealing with PEPs, extra vigilance is necessary to uncover potential connections to corruption or abuse of power. This includes verifying their source of wealth and funds to mitigate potential money laundering risks.

By implementing EDD, firms can better manage and mitigate the risks associated with high-risk clients.

Ongoing Monitoring

Ongoing monitoring is a continuous process that helps firms detect and address any suspicious activities promptly. Continuous transaction monitoring allows firms to identify and prevent potential money laundering activities. This ongoing vigilance is crucial for effective risk management and compliance with anti-money laundering regulations.

Transactions involving high-risk jurisdictions require heightened scrutiny and additional verification steps due to the increased money laundering risks they present. Firms must conduct thorough investigations and maintain a thorough understanding of their clients’ financial histories to ensure compliance and mitigate risks.

Documentation and Evidence Requirements

Thorough documentation is the backbone of effective Source of Funds checks. Acceptable documentation for verifying SoF can include bank statements, recent tax returns, and proof of sale for acquired assets. The type of documents required can vary based on the assessed risk level of the transaction.

Documenting all interactions and materials received during the SoF verification process is crucial for compliance. This documentation helps firms verify legitimate financial activities and provides a defence against potential regulatory scrutiny.

Bank Statements and Pay Slips

Bank statements and pay slips are fundamental documents for verifying the source of funds. Recent bank statements that reveal the source of funds are significant for verifying financial activities. Typically, a minimum of six months of bank account statements might be requested during the verification process, although more extended periods may be required for thorough scrutiny and checks.

Pay slips and employment contracts are also essential for verifying employment income. These documents provide a clear picture of a client’s financial stability and help ensure compliance with anti-money laundering regulations.

Letters Confirming Employment Income

Letters confirming employment income are another major piece of evidence for SoF checks. These letters serve as official documentation of a client’s regular income, providing important information for verifying financial stability. Documents needed for employment income verification can include official pay slips and contracts from the employer.

Ensuring that these documents are accurate and up-to-date is vital for compliance. They help verify that the funds used in transactions are legitimate and not derived from illegal activities.

Loans from Regulated Financial Institutions

Loans from regulated financial institutions provide a reliable source of funds, helping to establish financial security in transactions. Different types of loans, such as personal loans, mortgages, and auto loans, can serve as acceptable proof of funds, provided they are well-documented. It’s all about the evidence!

Essential documentation for validating loans as a source of funds includes loan agreements, statements showing the release of funds, and repayment schedules. Thorough verification of these loans is needed to comply with the AML regulations as well as to prevent the financial criminals.

Handling High-Risk Transactions

Handling high-risk transactions requires a meticulous approach to ensure that the funds used are legitimate. Legal regulations (Money Laundering) mandate that law firms conduct enhanced monitoring and due diligence when dealing with clients identified as high-risk. This involves obtaining additional details to explain the nature of significant deposits and scrutinizing large or regular deposits in bank statements.

It’s worth having a look at Teal’s partnership programmes with have with law firms:

AML SORTED Programme (for medium to large sized law firms) CLICK HERE

AML SORTED Programme (for small law firms) CLICK HERE

Regulatory SORTED Programme (for medium to large sized law firms) CLICK HERE

Regulatory SORTED for Small Firms Programme (for small law firms) CLICK HERE

More information may be requested if there are large cash payments or funding from third parties without a clear purpose, as these raise significant concerns and warrant closer investigation.

Identifying Red Flags

Identifying red flags is crucial for detecting potential money laundering activities. Clients who are secretive about their identity or the purpose of the transaction may display a red flag for suspicion. Unusual payments from third parties or large cash transactions are also indicators that warrant further investigation.

Transactions that exhibit unusual features, such as excessive urgency or last-minute changes, can be grounds for further inquiry. Early identification of these red flags allows firms to take appropriate measures to ensure compliance and mitigate risks.

Enhanced Scrutiny for High-Risk Jurisdictions

Transactions involving high-risk jurisdictions and high-risk third countries require enhanced scrutiny to mitigate risks. Risk assessments for these transactions should analyse various factors, including country risk and customer risk profiles. Conducting thorough due diligence is crucial to ensure compliance with anti-money laundering regulations.

The level of due diligence required for counter-parties in high-risk transactions should be determined based on the risk assessment conducted. This helps firms manage and mitigate the risks associated with high-risk jurisdictions.

Politically Exposed Persons (PEPs)

Politically Exposed Persons (PEPs) are individuals who hold prominent public positions and are subject to additional regulatory scrutiny due to their potential for corruption or misuse of entrusted power. When dealing with a politically exposed person, it is crucial to conduct enhanced due diligence to identify and mitigate associated risks.

Transactions involving PEPs require enhanced scrutiny to ensure compliance with anti-money laundering regulations and identify any irregularities. This includes looking for information about corruption or misuse of government funds when conducting due diligence on PEPs.

Don’t forget, the definition of a PEP also extends to immediate family members and known close associates.

Practical Tips for Effective SoF Checks

Conducting thorough Source of Funds checks requires a clear understanding of both the client’s financial history and the transaction in question. Businesses must implement internal controls and monitoring systems tailored to their size and complexity to meet AML regulations.

Here are some practical tips to help you navigate this process effectively.

Tailoring Enquiries Based on Risk Profiles

Employing a risk-based approach is essential for managing high-risk clients and/or matters effectively. It is important to establish if the funds are consistent with the client’s risk profile and the nature of the transaction.

Client and matter risk assessments are critical for apply a risk based approach to Source of Funds enquiries to match the specific risks associated with a client or matter. By tailoring enquiries based on risk profiles, firms can improve compliance and implement efficient risk management strategies.

Utilising Technology Providers

Choosing an appropriate technology provider is crucial for streamlining due diligence processes effectively. Factors for choosing a digital client due diligence provider include assurance levels, system understanding, and training requirements.

Staff must be trained on entering information correctly and interpreting results. When deciding to use a digital client due diligence provider, consider assurance levels, system understanding, staff training, and decision-making responsibility.

Documentation and Record-Keeping

Effective documentation and record-keeping are essential for compliance with anti-money laundering regulations. Documenting all interactions and materials received during the verification of Source of Funds is crucial for compliance. This includes questions asked, answers given, and supporting material received during the SoF verification process.

Detailed records of Source of Funds checks help firms defend against potential regulatory scrutiny and demonstrate compliance efforts. Thorough documentation of inquiries and responses is crucial for compliance and audit purposes.

It is important to ensure that any who picks up the file would be able to understand the person who is dealing with the matters understanding of where the Source of Funds are coming from.

Addressing Concerns and Reporting Suspicious Activity

Addressing concerns and reporting suspicious activity are critical components of a robust anti-money laundering framework. Large amounts of private funding that do not align with the client profile can raise concerns. This is particularly true if there is no legitimate explanation, as it may indicate potential money laundering during Source of Funds checks. If a client cannot provide paperwork for their source of funds, continue assessing the situation; lack of documentation does not automatically imply money laundering but further enquiries may be required.

If there is a suspicion of criminal property, it is critical to consider making a Suspicious Activity Report (SAR) to the National Crime Agency and determine if consent is needed to proceed. For specific compliance questions or uncertainties regarding suspicious activities, contact the Professional Ethics team or seek independent legal advice. Contact the Professional Ethics team or seek independent legal advice.

When to Submit a Suspicious Activity Report (SAR)

Suspicious Activity Reports (SARs) are submitted to the National Crime Agency and other relevant authorities when a regulated entity suspects that a client is involved in prohibited activities. Submit SARs when there is reasonable suspicion of money laundering or terrorist financing based on the client’s transaction patterns or other behaviours.

Failing to report suspicious activities can result in legal implications and potential sanctions against the reporting entity. SARs are governed by a different regime than sanctions reporting.

Avoiding ‘Tipping Off’

The term ‘tipping off’ refers to the act of disclosing to a client that they are under investigation after a report has been filed, either internally or externally, which is prohibited by law. Avoiding tipping off is crucial to protect both the firm and the client from potential repercussions and can result in prejudicing an investigation.

Communicate with clients in a manner that does not arouse suspicion. General language about compliance processes, without directly referencing any enquiries, helps avoid ‘tipping off’.

Internal policies should guide staff on handling client communication related to sensitive compliance issues while preventing breaches of confidentiality.

Compliance with Anti Money Laundering Legislation

Compliance with anti-money laundering legislation is a cornerstone of financial integrity. Source of funds obligations are part of a broader framework to ensure financial integrity and compliance with anti-money laundering regulations. Thorough Source of Funds checks ensure compliance with anti-money laundering regulations and help avoid financial penalties.

The Solicitors Regulation Authority (SRA) uses a risk-based approach for AML supervision. Firms should refer to the Legal Sector Affinity Group guidance for information on how to comply with the money laundering regulations.

Role of the Money Laundering Compliance Officer (MLCO)

MLCO and MLRO Compliance Officer TRAINING

Risk assessments should consider minimizing exposure to sanctions breaches. When suspecting proceeds of crime or money laundering, it is necessary to file a Suspicious Activity Report (SAR). A SAR is required to be submitted when there is a belief that funds are linked to crime or money laundering.

Independent Audits and Assessments

Independent audits are required under Regulation 21 of the MLR depending on the firm’s size and nature. Firms can record their reasoning if they believe an independent audit is not necessary however, the SRA have previously said that the majority of firms they supervise will require one.

Independent audits help firms ensure their AML policies and procedures are effective and compliant with regulations. These audits provide an objective assessment of the firm’s AML compliance framework and identify areas for improvement.

Summary

In summary, Source of Funds checks are an essential component of the fight against the baddies who operate in financial crime. By understanding and implementing best practices in SoF checks, businesses (and make no mistake, law firms are businesses!) can ensure compliance with anti-money laundering regulations, POCA and protect themselves from potential risks.

Remember, thorough documentation, ongoing monitoring, and a risk-based approach are key to effective SoF checks. Stay vigilant, stay compliant, and contribute to a transparent and secure financial system.

As a final sign off, data for root cause analysis in AML compliance is why I built TEAL TRACKER software.

The Tracker’s features include:

Incident management – Report incidents and suspicious circumstances
Training needs – Record training needs, training record and training plan
File reviews – Records of all file reviews and steps forward
Gifts and hospitality register – Register of any gifts of hospitality received
Own conflicts register – Register of affiliations to carry out conflict checks against
Undertakings register – Details of the firms’ undertakings
High-risk client register – Register of any high-risk clients

Book a DEMO with our brilliant team HERE.

Please remember that Teal Compliance is your go-to AML and Risk Management Partner and we have a variety of packages available to support you, your colleagues and of course, your clients!

To find out more, click HERE and come what may, we look forward to supporting you soon.

SORTED: Compliance Services

Training and Education

Ask Teal: Consultation Services

Legal Compliance Audit

Policy Review & Writing Services

Website Audit Services

Teal Tracker

Let us support you, your team and your clients.

Guide to Source of Wealth & Funds for Law Firm Compliance Read More »

SRA Consultation Response Tips on client accounts from Teal Compliance and Amy Bell

SRA Consultation Response Tips for Client Account Changes

Anti-Money Laundering, Blogs, Legal Compliance, Regulatory Compliance, Risk Management / Mark

Further to the SRA’s January Consultation latest round, Amy Bell at Teal Compliance would like to impart her insights best practice for responses.

It’s a hot topic for 2025 and beyond for law firms, their legal cashiers and compliance officers.

I ran an online debrief of the latest round of the SRA’s consultation on Wednesday 8 January 2025 and this article is an outline of the insights.

For those that don’t know me, I am the second time Chair of the Economic Crime Task Force (ECTF) and one of the roles of chairing this committee at the Law Society is that I need to assist with consultation responses. The SRA’s consultation is one that could have a significant impact on you and your practice. I wanted to share my insights that have been flagged within responses to the consultation and share my hints and tips for getting further consultation responses to the SRA effectively. One skillset I have learnt through my role in the ECTF is how to lobby persuasive arguments and how to make sure our arguments aren’t dismissed.

Content Guide for Top Tips

Show the evidence
Get Organised
Don’t give false impressions
It’s a fine line

How to construct a consultation response

How do we construct a consultation response which hits the right notation and points that are serious? Our questions are always valid, but sometimes that SRA assumes we are simply venting or ranting. I’m going to give you my tips on how best to get your point across.

Pre-Christmas I had a few people ask me if they believed the consultation was happening because the SRA didn’t manage Axiom Ince properly. If I’m honest, I don’t think it is specifically because of this as the SRA has had accounts rules on their agenda for quite a long time now. The Axiom case has definitely brought the conversation around law firms holding client monies on account into the forefront however.

Top Tip #1 – show me the evidence

When we look at the compliance officer and their roles and responsibilities, within the consultation, suggests that the SRA are going to do thematic work before they make any decisions.

One of my concerns (about any proposal to change anything) is, where’s the evidence?

If you want my top tips on guiding your response, then asking where the evidence is would be at the top of the list.

Where is the evidence for the point the SRA is making? Ask them to prove it to you.

As legal professionals, we do have accidents and human error mistakes. We also know that in regard to Axiom, they have been charged by the Serious Fraud Office in relation to that, and in the fullness of time, we will find out what happened.

Yes, something went terribly wrong there with client money, and the consequences are going to cost all of us in the profession through compensation it already has done through the contributions. However, it is an isolated issue.

New models of law firms with no client accounts

75% of law firms currently have a client account.

The more research I do however, shows that more and more firms are moving away from a client account. Our American firm colleagues that have launched practices in London tend not to have a client account at all.

What we know is that 1000 firms will have more than a million pounds in the client account at any one time.

There are approximately 3500 to 4000 firms that are servicing areas of high-volume transactional conveyancing work on a regular basis. If your firm offers conveyancing, you know client account changes are going to affect you.

Maybe you are in a regional firm, or a local high street practice that does conveyancing. When it comes to law firm risk by holding monies on client account, there are substantial sums of money being transacted, and the regulator is hot on your heels.

If you hold more than £100m, or as some do, more than £100b, on client account, your risk is high.

Of course, there are thousands of firms that hold less than £100,000 on client account, and keep it that way as a constant precaution. To those firms, it might not be such an issue for this consultation.

The bottom line and the question we need to ask is did we get the amendments to the Account Rules right? Maybe we didn’t.

One of conversational themes around the Accounts Rules is perhaps to take away some of the flexibility that the SRA sought to introduce back in 2019.

When we move to outcome-focus regulation and look deeper at specifics, law firm compliance professionals will embrace and go, yeah amazing! Specifics is where risk management can get behind and tell their senior partners and the overall business plan about.

That being said, by doing this you are also hamstrung by the specifics, as you must meet them.

Top Tip #2 - get organised

The consultation runs until 21 February 2025, so you have a few weeks to respond.

There are 19 questions just in relation to client money. From there it then depends which parts you want to answer. It’s a lot for one person to do, which is why my consultation webinar came in handy for tips. I’d also suggest that if you’re part of a decent sized firm, drag some other colleagues in to help you – divvy up the questions and collaborate effectively.

WATCH IT AGAIN HERE.

The question “What impacts might arise from notifying us of changes in advance? Please provide specific examples of where firms provide information about changes to other third parties, e.g. insurers.?” will take a fair bit of time to gather the evidence, so sharing the need for documented responses will need time and colleagues!

One thing that we do at the Law Society is make sure it’s all signed off by the Law Society “sign off” procedures. You may want to have something similar.

If this is your first consultation, you may want to have the managing partner, and/or the management team, sign off on the response as a whole, especially if you’re putting your name to it. Getting organised in this will help the flow of tracking the responses. Do make time to organise that because preparation is key and often takes the longest.

The drafting
The agreeing
The final sign-off

If you haven’t already started, I highly urge you to start the process now if you are going to do it and want the SRA to seriously take your response into regard.

Now you have the process in place, you can split the questions down into different topics.

Have a “KICKOFF” meeting with those that you have (cross fingers) brought on board to help you. Next, divvy up the work and questions, give them the 1 – 3 process (drafting > agreeing > final sign off) process and deadline dates.

Give your colleagues a couple of weeks to come back with their first draft, then collate that draft into one document. Next, circulate it and see if you all agree on the answers. Here, you are looking at an effective workflow based on consistency. Yes, that takes time too so factor that in – maybe give yourself a week just for that.

What if you have no opinion?

You don’t have to answer all of the questions. If you have no opinion, you can do two things.

You can either do a consultation response that says, these are the questions I’m answering,
Or you could do a consultation response that says wherever there are questions you don’t want to answer we will add “We have no comment on this” or “We have no answer in relation to this question”.

There is nothing in the consultation that says you have got to answer them all.

Residual Balance Questions

The regulator knows and has mentioned in the consultation that they’ve heard anecdotally that residual balances are a problem.

The SRA knows residual balances on client account are problematic because it is flagged when they get requests from law firms to pay funds sitting in client accounts to charity. The SRA can see how long residual balances of more than £500 have been sitting in your firm’s client account, and also what you’ve been doing with it.

The regulator is aware that for us in the law firms up and down the country that trying to get hold of clients and chasing them for details to give them the balances sitting on their client accounts is an issue. Essentially, even if we are evidenced to be chasing for details, the SRA knows we are holding onto those funds longer than we need to.

The consultation seems to be suggesting this is all about interest and earning interest.

The SRA is concerned that if we’re not prompt with our residual balances, and we’re not motivated to crack on with detecting where the funds rightfully need to go, or that we’re not encouraged to do it, then we’re just not doing it and there’s a fine line with earning interest at the same time.

In April 2024, the SRA published its news update on interest rates and client accounts. It went on to mention The Law Society’s recent Financial Benchmarking Survey in which many firms said that they had been propped up by “abnormally high interest rates”.

2023 saw a steep increase in interest received on money held in client accounts. The Law Society’s findings showed a total net interest income rose over 1,000% to £27.5 million, compared to £2.6 million in 2022.

The question of law firms benefitting from financial gain on client accounts keeps surfacing and if you, like me, attended the SRA Compliance Conference in November 2024, the topic was searingly hot.

Rule 7 of the SRA Accounts Rules says:

You account to interest on any client money held by you on their behalf.
You may by a written agreement come to a different arrangement with the client or the third party for whom the money is held as to the payment of interest, but you must provide sufficient information to enable them to give informed consent.

I think therefore, it’s definitely worth thinking about how residual balance changes will impact you and your firm if the SRA does go forward with some of these proposals.

On one hand, wouldn’t it be absolutely lovely to be able to tell everyone including the legal cashiers, we’ve got 12 weeks to get our files closed down and with zero balances?

But if you can’t do that within 12 weeks and might possibly breach the requirements, where do you stand, and more importantly what does that look like for you? Here are some thoughts:

Will this require additional resources?
Will it necessitate changes to your file opening processes?
How will you monitor this to meet the 12-week deadline?
What actions will you take in your firm with those who fail to comply or cannot comply?

Key issues to address:

Mechanisms for tracing clients.
Keeping client data up to date.
Possible need to sign up for a tracing agent service to locate clients.
Proactively checking clients’ addresses periodically throughout a matter.
Ensuring address verification just before completing a transaction to confirm where funds are being sent.
DWP delays in forwarding letters.
Concerns about increased costs and the justification for these additional expenses.
Seeking evidence of the problem’s impact on clients and operations.
Gathering insights from the accounts team to identify any trends or patterns.

Furthermore, when it comes to ensuring client information is up to date I’d ask:

What actions are taken to keep client information current?
Are all systems connected to ensure consistent information across platforms?
What are the potential discrepancies between systems (e.g., case management vs. accounts management).

What are your processes for tracking down and tracing clients? My suggestions:

Having a process in place for tracing clients.
Taking steps that are reasonable and proportionate to the amount of money being returned (see further down in blog).
Considering what the tracing process would entail.
Ensuring lawyers know what to do in this process.

Before I ask some key questions, as a reminder, I do know that the term “promptly” in accounts rules pops up:

Evaluating the need to replace “promptly” with more prescriptive requirements for returning funds to clients and third parties.
Determining if more detailed guidelines are necessary for timely and accurate return of funds.

“Promptly” being defined as “without delay”.

My key questions to you right now would be:

How do you ensure systems are updated uniformly?
What process do you have for tracing clients?
What steps should be taken based on the amount of money involved?
How can you make sure lawyers and business support colleagues are aware of and follow the process?
Should the term “promptly” be replaced with more specific and prescriptive requirements in the Accounts Rules?

Here are some examples of why client accounts have residual balances:

Unknown HMRC fees for probate matters.
Aborted residential property purchases.
Balance as a result of an M&A with your firm – original fee earner no longer involved
You have sent a cheque to client and they have not cashed it
Your client has changed their contact details without telling you
Your client is deceased, and the executors are unknown

Residual Balance Review Questions

My team and I here at Teal Compliance recommend that for every outstanding residual balance you hold to evidence:

That you have made reasonable attempts to establish the rightful owner of the money
That you have recorded the steps taken to return the money to the rightful owner and retained those records
That you retain information and all relevant documentation, including receipts from any charity that you have paid the balance to
That you have entered the balance onto a central residual balance register

Even when it comes to residual balances of £500 or less, it’s important that you take the appropriate action in paying the money to charity (where the SRA’s conditions for doing so have been met of course).

AML and Compliance Training is so important – do let Team Teal help.

TRAINING INFORMATION

Outcome Focused Regulation

I’d like to focus a little on outcome-focused regulation versus prescriptive standards.

The idea behind reducing prescriptiveness when Jatinder Loyal rewrote the Accounts Rules in 2019 was to allow firms to decide what is reasonable and appropriate in given circumstances. The theory was, by taking away some of the prescription, firms could differentiate themselves.

However, we’ve seen instances where people and firms did not act as expected, leading to questions on whether we should revert to more prescriptive measures.

Differences of outcome focused regulation and prescriptive standards

Outcome-Focused Regulation: Initially aimed at letting firms determine what’s appropriate based on their unique circumstances.
Prescriptive Standards: Were removed to allow service differentiation, as part of the Clement reforms. This enabled firms to make decisions tailored to their businesses, rather than following a one-size-fits-all approach.

Reflecting on these changes, it’s evident that many firms have anchored their processes over time, despite regulatory shifts. This raises the question as I’ve mentioned above, should the term “promptly” in the Accounts Rules be replaced with more specific requirements to ensure compliance and consistency?

You may already have a process in place that stipulates tasks should be completed within 12 weeks, including tracing clients.

If you’ve defined and adhered to a specific time frame rather than interpreting “promptly” loosely, you can better gauge whether the 12-week period is sufficient for you. As always, I’d say it’s crucial to communicate expectations clearly within the business firmwide, replacing vague terms like “promptly” with exact numbers to ensure everyone understands their responsibilities.

We all know that working in a law firm, and when residual balances are involved, those funds can easily drop to the bottom of the to-do list and as attention shifts to active matters.

I’d argue that they should be thought of as “active” in our minds, whilst implementing and sticking to defined timescales. By doing this it ensures the residual balances are deemed as active tasks and therefore monitored better and completed efficiently.

Back in the day, I actually used to train our trainees how to manage residual balances. Why is training so important for trainees? Because the trainees always get the job of trying to get the files to a nil balance for the legal finance team!

It’s all about processes for me in my experience in compliance, risk management and AML.

Overseas Clients | CDD | High-Risk Third Countries

Those of you with firms where you are trying to trace a person who is overseas and get money to them, I know that’s probably going to take you more than 12 weeks.

If what you need out of the consultation is flexibility to be able to adapt to different work types, different departments, different client types, etc. then I think you need to say just that and resist any prescription on that basis. Of course, I would encourage you to make sure you’ve got some examples of why that would be difficult.

What you’re trying to say to the SRA in essence is that, hey, we’re all right as we are. We’re NOT prejudicing any clients. There are no third parties that are prejudiced by our current regime. If you want to keep it as it is with a promptly and without the prescription, I recommend you need to find evidence why that works for your firm. Always back up your responses.

Even if you are thinking that whilst you are tracing your overseas’ clients and taking instructions to pay them their funds that you rather like the interest you are earning on it…. just be careful when responding to the consultations.

Customer Due Diligence (CDD) and High-Risk Third Countries

Law firms have to continually remain vigilant about financial crime, particularly in high-risk third countries. Those baddies are always one step ahead of us. Therefore, it’s essential to implement robust CDD procedures to ensure compliance with regulatory standards and mitigate risks associated with high-risk jurisdictions. Back to policies, procedures and my favourite, CONTROLS!

With the consultation in mind and your responses, here’s an example of residual balances and accounts rules that are more flexible and you give them reasons.

Say a high risk third country comes onto the list, and you have an existing overseas’ client on your files for 12 months that wasn’t on the list, but now, suddenly, is. What then?

Enhanced due diligence, that’s what. However, the risk from that client matter hasn’t changed just because the country has gone on the list. Yet, you’re going to now have to spend a fair chunk of money carrying out the enhanced due diligence. Simply because your existing client’s geographical status is now on the list; although their matter is not risk based.

The above example is a good basis to respond to the consultation if you have clients already on board. The reasoning is that it’s going to cost more and will impact your firm’s cashflow. The interest earned on a residual balance pays for all extra work processing the existing client’s enhanced due diligence. You will need to absorb that cost.

Work backwards and dig deeper into your reasoning for any response. Getting organised and showing the evidence and costs of extra work required.

Third Party Managed Accounts (TPMAs)

Third party managed accounts (TPMAs) are accounts managed by a third party that handle funds on behalf of clients and law firms, which offer an alternative to holding client money in our usual traditional law firm client accounts.

The Financial Conduct Authority (FCA) regulates TPMAs. Any law firms using TPMAs must integrate robust Customer Due Diligence (CDD) procedures, particularly when dealing with high-risk third countries.

My issue with TPMAs is the actual number of providers currently out there. Six TPMA providers holding monies versus 10,000 law firms with varying funds sitting in client account, if I was a cyber-criminal I know which one I’d target.

If the regulator touches on suggestions that law firms hold monies on account for interest purposes, it suggests to me that it believes we are all ignoring the principle about acting in the client’s best interest.

I ran an anonymous poll on this subject and the resounding results were that nobody takes money on account just to earn interest on it.

If a law firm’s unethical behaviour is that they taking money from clients just to earn interest on it, and they are ignoring any breaches in the reporting process, in line with the code of conduct about, including paying fair interest, this is no reason to change the whole account rules’ system as there are already mechanisms with which the regulators should be made aware of.

My point is, the SRA could deal with the firms rather than changing the whole rule. That works fine for everybody.

The other issue that I see around interest is a minimization of the issue of dealing with the interest: the time it takes to deal with the interest. When we moved to outcome focused regulation, we got “fair” wording, and a lot of firms set a de minimis. Many firms just stopped with the old table originally set; it’s not broken, so why fix it?

I think the issues arise when we have to ask the SRA the question if you are saying we can’t earn any interest at all (every single matter), there is a complicated interest calculation, we then pay it, trace clients, give the interest to them…and so on. It’s a hugely complicated system. If you are a conveyancing firm, you might ask how best to neatly sort out payments, i.e. on the day of completion or something else?

Who is taking into consideration and accountability of all the extra costs you will need to absorb by carrying out this extra, convoluted work?

Other alternatives to holding client money

It’s clear from the consultation that the regulator’s ambition is to remove the ability for solicitors to hold client monies on account. They admit that it’s never going to be an overnight change and I, like you no doubt, will have been looking at alternatives.

Let’s have a look and evaluate the impact of the Australian model when it comes to conveyancing. There’s an organization in Australia called PEXA that is essentially a big pot where all the money for conveyancing is thrown into, and it’s PEXA that is thereafter responsible for distributing the funds.

By using this model it means that completions happen quicker, because money moves quicker. No one is waiting for transaction monies to go from one firm to the next firm.

It also means that purchasers are getting the keys earlier in the day. PEXA is responsible for the security of those monies, and for us in the UK, PEXA are here.

If you don’t know of them already, PEXA is conducting test pilot cases with the Bank of England to see if they can implement their model here in the UK. I have heard that the PEXA model might not work if there are chains, and so finding case studies in this regard to back your response would be helpful.

Now here’s the thing, there’s been an assumption that if you remove the client account us lawyers then there will be certain benefits that come with those significant changes. There is an argument that professional indemnity fees will come down if the client account is moved, but I’d always say be cautious and research well. There’s a chapter further down in this article about professional indemnity insurance.

Top Tip #3 – it’s a fine line

My top tip number three is to consider and highlight that there’s a finely balanced way of responding to proposals to explain and evidence that there are going to be added costs and complexities to what your firm is currently doing.

By this I mean, rather than a knee jerk “I’m not doing that,” or “It’s going to hit my pocket” argument, your biggest issue is that responses given are received via a fine line.

The regulator is not interested in how deep your pockets are but, for example, how any changes might impact your clients.

The questions in the consultation have been engineered in a way for us to agree with the regulator. For them, it’s difficult to think of circumstances where retaining interest could benefit the client. Therefore, really do your evidenced research into all the repercussions of what changes would mean to your firm and your clients. The regulator never wants a law firm to rely on interest earned on client accounts, because of course, this leads to risk. If your firm knows that taking away client accounts in your firm because you have been relying on interest and that changes will significantly impact cash flow then your firm possibly needs a whole new business plan in any event.

If you say you will have to up the cashiering team and the services to absorb new costs or add to accounting because of the changes, you’re admitting to the regulator that you were relying on interest. It’s easy to respond in this manner but it’s a fine line. Just be super careful about how you answer the question. Don’t lie or mislead but just work harder on your response preparation and research time. Think how your response would land for the regulator?

Any questions asked, give examples and be mindful of the “fine line”. Don’t give answers that

paint you in a worse picture than you actually mean to convey.

This leads me onto my top tip number four.

Top Tip #4 – don’t give false impressions

What is the regulator going to do with your answer? My tip here is ensuring you don’t give a false impressing of what your firm is currently doing.

Let’s talk about moving money between the client account to the office account. A personal interest of mine as I remember the earlier consultation where they were removing the section in the old accounts rules about fixed fees, and copies paid straight into the office account.

We now find ourselves back with questions on that very same subject.

What if you take all the money on account for a divorce upfront and the firm folds? Where’s the client protection? In the consultation questions we’ve got now, what if a firm takes all the money straight away, moves into the office and then goes under …. what’s the protection in place for the money?

The consultation suggests that the SRA is looking for there to be more control over moving money on the basis that they assume people are just moving monies between accounts in their firms, willy nilly.

The answer is actually not a problem for us. My question to you to think hard about for a response, is why would you change this?

The Axiom Ince knee jerk reaction from the regulator is palpable. How does the profession avoid other

Axioms without the regulator putting every single lawyer as a potential criminal in their eyes? Of course they won’t be thinking that, but it’s what we, as hard-working lawyers, feel we are doing the time for, because of one hugely bad apple.

For our responses, I think it’s important for us to split this up. What approaches do firms take when calculating the money, and the amount of money they request from clients in advance.

You might want to survey your department heads and ask them about it, to see what they think and how they would work out a reasonable amount, and how they would make sure they don’t go above it.

For a compliance and AML reason, we would always advise you to never take any more money than you think you’re going to need to spend in money on account situations:

Should they be more prescriptive
Should they set a limit
Should they set a new rule

What would a more prescriptive process look like in the short and long term to your firm? Remember, be careful what you wish for. You may be in favour of the previous style of prescriptive workings, but be mindful that in that scenario, you lose control.

A discussion you might want to have: what’s your firm’s perspective on “prescription rules”, and dovetail that discussion as to whether it’s just a policy position or a culture position.

Professional Indemnity Insurance (pii)

The majority of you will have heard and followed Jatinder Loyal (former SRA Accounts Rules Policy Advisor). Although he’s now moved to the GMC, Jatinder still gives opinions and comments frequently, especially on LinkedIn. Jatinder commented and tagged me in a post saying there was no evidence from the professional indemnity insurers that removing the client account, or the ability of law firms to hold client money, will have a short-term impact on your law firm’s PII premium.

The reason for this is that it’s not the money disappearing out of the client account that is pushing your premium up.

The main reason is the ability for a (in conveyancing terms) property to be resold at the value for which it was acquired.

We all know that conveyancing, wills & probate, and commercial property are generally the top three causes for insurance claims, and they’re not as a result of money being stolen out of the client account. It’s a result of some legal issue arising in relation to those matters or transactions.

In theory therefore, if you hold no monies on client account, then a partner can’t just run off with the money and therefore the Comp Fund wouldn’t have to pay out.

However, it’s really not the massive contributing factor into your PII premium that everyone’s making it out to be. In my opinion, there are other issues.

I mentioned TPMAs earlier in this article, and for a few reasons, this model has never taken off because of the additional cost to consumers. In the early days of third party managed account models the costs were on a per transaction basis, and were adding potentially £100 – £200 per transaction. From what I understand now the firms who currently use third party managed accounts are ones that don’t ordinarily have a client account, i.e. they are being used where firms already hold a client account. Or, from research I have done, firms are choosing TPMAs on select jobs where they don’t want it going through the client account for whatever reason.

What we are seeing is that the firms using TPMAs tend to be the larger organisations, e.g. the top 1,000 size firms and that’s because their clients aren’t as price sensitive to them adding a disbursement cost. A high street conveyancing firm’s client might choose a different firm without understanding the reasoning behind the difference.

I can be a little skeptical that the SRA’s consumer research says consumers are happy to pay a little bit more if their money has better protection via a TPMA. What’s interesting at the consultation is that they say 79% of clients say that they’re comfortable with the money staying with the solicitor. Breaking it down then, only 21% of clients aren’t comfortable with monies held in a law firm’s client account yet the SRA wants to make a change that affects everybody else.

Back to my Top Tip #1 – where’s their evidence if that really is a problem (surveys can be misleading if the questions are vague). They want to change, but why and where’s the evidence?

As always, please do get in touch with me, or one of my team. We are continually learning and researching, together with working on client audits as well as offering a whole host of other services.

More Information and Expertise Here

We will update you throughout the course of the consultation and thereafter as well.

Please remember that Teal Compliance is your go-to AML and Risk Management Partner and we have a variety of packages available to support you, your colleagues and of course, your clients!

To find out more, click HERE and come what may, we look forward to supporting you soon.

Amy

SORTED: Compliance Services

Training and Education

Ask Teal: Consultation Services

Legal Compliance Audit

Policy Review & Writing Services

Website Audit Services

Teal Tracker

Let us support you, your team and your clients.

SRA Consultation Response Tips for Client Account Changes Read More »

Why Culture is the Foundation of Compliance in Law Firms

Anti-Money Laundering, Legal Compliance, Regulatory Compliance, Risk Management / Mark

The word “culture” in terms of how a law firm is run, shouldn’t be a simple trending buzz word, or used for soft skills in marketing and for recruitment requirements. Law firm culture encompasses how effectively your firm looks after its staff, stakeholders and of course its clients.

When we think about compliance in law firms, it’s easy to get caught up in the details, and offload and delegate all the risk “stuff” to the MLRO or Compliance Officers. There are policies, procedures, and training sessions to control and deliver firmwide, true, but here’s the thing, none of that matters if the culture of your firm doesn’t support those risk management requirements holistically.

Compliance should never be about ticking boxes for the SRA or Lexcel. Compliance is about creating an environment where following the rules should be second nature. Why? It’s simply how things are done and what law firms and consumers of law expect and require.

Compliance Training Information READ HERE

Culture Drives Compliance

Culture is that invisible force that guides the behaviours of your firmwide solicitors, partners, associates, business support employees and stakeholders. If your culture values compliance, then sticking to the rules becomes effortless.

However, if compliance is seen as a chore or something to “get around”, you’re asking for trouble. The SRA will sniff you out.

Think about it, you can have the best policies in the world, but if your team doesn’t buy into them, they’re worthless.

Why should your law firm culture and risk management matter so much when you are already so busy working flat out on client work? A culture that supports compliance isn’t just nice to have—it’s essential. It reduces risk, protects your reputation, and keeps you on the right side of the regulators. Plus, it creates a workplace where everyone knows where they stand and what’s expected of them.

The cultural challenges of law firm leadership READ HERE

The SRA’s “Professional Obligations Thematic Review” published in December 2024, it reinforced that it expects firms it regulates to adhere to a positive workplace culture where employees felt safe to speak up, especially when there is a risk of:

mistakes being made
clients receiving poor outcomes
serious ethical concerns being raised

The regulator says it is rewarding and promoting positive behaviours of law firms looking at culture and compliance effectively together. It stated that:

SRA’s “Professional Obligations Thematic Review”

The SRA found a broad range of considerations reviewed by firms, including:

financials (65%)
contributions to the firm’s culture (50%)
training (85%)
career development (40%).

In the review it was interesting to note that some of the firms were confused about compliance and regulations, and to which organisation they should be adhering. As some law firms are regulated and audited by the Financial Conduct Authority (FCA), and some by the Legal Aid Agency, others mistook requirements from these agencies to that of the SRA’s.

It’s worth understanding exactly who a firm (as well as areas within a firm) must adhere to. We explain everything in our training. You can read more about Teal Compliance training HERE.

The SRA’s Upholding Professional Standards Annual Report 2022/23 was published on 20 December 2024 and it reported that when it came to anti-money laundering (AML) out of the 250 firms it checked on this specific subject, 47 of those firms had regulatory action taken against them.

That’s a massive 18.8% of the law firms it reviewed that weren’t compliant.

You can read the SRA’s annual report HERE.

The Bottom Line for Law Firm Culture and Compliance

Your firm’s culture should be intentionally shaped to make compliance a natural part of the day-to-day workings of your firm. It’s not just about having rules; it’s about embedding those rules into the very fabric of your firm and its people. In a digital world where reputations can be damaged in a moment in time, now, more than ever, integrate your compliance into your positive workplace culture. If you’d rather we kick start this for you and track your risk then why not have a look out our carefully curated and crafted software, TEAL TRACKER.

Thanks for reading and as always, any questions, please feel free to get in touch with me or one of my specialist AML colleagues – hello@tealcompliance.com

Get in touch

We will update you throughout the course of the consultation and thereafter as well.

Please remember that Teal Compliance is your go-to AML and Risk Management Partner and we have a variety of packages available to support you, your colleagues and of course, your clients!

To find out more, click HERE and come what may, we look forward to supporting you soon.

Amy

Why Culture is the Foundation of Compliance in Law Firms Read More »

Risks of Law Firm Client Accounts and why the SRA is concerned January 2024

Risks of Law Firm Client Accounts: Why the SRA is concerned

Audit, Legal Compliance, Regulatory Compliance, Risk Management / Mark

You will have read at the tail-end of 2024 that the Solicitors Regulation Authority (SRA) has raised concerns over the management of client accounts held by law firms, prompting a significant discussion within the legal community.

Amy Bell ran a free, online webinar breaking down the details and giving her tips on how to respond. This took place on 8 January 2025. You can read the comprehensive GUIDE HERE, or you can catch up and watch the session by emailing the team directly at hello@tealcompliance.com.

But why is the SRA so worried about these accounts? The answer lies in the multiple risks associated with them, which range from money laundering and cyber attacks to internal fraud.

Money Laundering Risks

Client accounts have long been seen as attractive targets for money launderers and financial criminals. The government’s national risk assessment has flagged these accounts as potential conduits for illicit money because they allow funds to move through the banking system under the law firm’s name rather than that of the launderer.

What is deemed as “suspicious” when it comes to money laundering?

Suspicious activity use of a law firm’s client account makes it difficult to trace the origins of the funds, thus making law firms inadvertent participants in money laundering schemes.

Just one read of Legal Futures and you’ll hear about the latest fine from the SRA in this regard.

Cyber Attacks and Fraud

Cybersecurity threats also play a significant role in the SRA’s concerns.

Law firms have become targets for cybercriminals who aim to access funds within client accounts.

One common scam, known as “Friday afternoon fraud,” involves hackers intercepting payment instructions and redirecting funds to fraudulent accounts. A classic example of an easy hit for financial criminals, having researched if a legal cashier might be dealing with property transactions late in the day without COFA support.

Despite efforts to combat these schemes, law firms remain vulnerable to sophisticated cyber attacks.

In addition to external threats, internal fraud is another pressing issue. There have been cases where individuals within law firms have managed to manipulate client accounts for personal gain. These internal breaches highlight the importance of robust internal controls and oversight.

High-Profile Failures

Unless you’ve been hiding under a rock, you will be aware that the legal sector has seen some high-profile law firm failures where the misuse of client accounts was a contributing factor. Axiom Ince is the biggest we have all witnessed of course, and the case is still on-going but it has made a significant impact on how the SRA see client accounts and protecting the consumer.

Although not all details of these cases have been made public, the SRA’s concerns are exacerbated by these failures. The misuse of client funds for purposes other than their intended use, such as financing deals, has brought the role of client accounts under greater scrutiny.

The SRA's Response

Given these risks, the SRA has periodically questioned whether solicitors should continue to manage client accounts. This isn’t a new concern; there have been previous efforts to encourage law firms to explore alternatives, such as third-party managed accounts. However, the recent increase in government focus on anti-money laundering (AML) and fraud has added urgency to the discussion.

In conclusion, the SRA’s concerns about client accounts stem from the significant risks they pose to both law firms and their clients. These risks include exposure to money laundering, cyber attacks, and internal fraud, all of which have serious implications for the legal profession. As the debate continues, law firms must remain vigilant in managing these risks and consider whether alternative arrangements might better protect their clients and their business.

Get in touch

We will update you throughout the course of the consultation and thereafter as well.

Please remember that Teal Compliance is your go-to AML and Risk Management Partner and we have a variety of packages available to support you, your colleagues and of course, your clients!

Have a look HERE and we look forward to supporting you soon.

Amy

Risks of Law Firm Client Accounts: Why the SRA is concerned Read More »

Two anonymous people discussing paperwork at a desk

New SRA Notice Warns Against Funds Missing From Client Account

Audit, Legal Compliance, Regulatory Compliance / Rachel Craig

The SRA has published its new Warning Notice (21 June) warns against funds missing from a firm’s client account. The SRA has made it clear shortages will not be tolerated.

Whilst the SRA hasn’t reported any sanctions decisions relating to this issue in particular recently, the warning notice outlines the risks of firms failing to quickly address a shortage.

Firms will note the relatively recent closure of Axiom Ince last year, where the SRA reported the largest shortage in client account funds of £64m.

SRA's Warnings

The SRA’s warnings are as follows:

Firms have an obligation to replace immediately any money missing from a client account
Replacement of funds is to be carried out regardless of the underlying reasons – even where there’s been circumstances beyond the firm’s control for example by way of a cyber-attack, or administrative errors or, dishonest acts by employees
There’s a clear duty in the accounts rules to replace a deficiency, and managers of a firm are jointly responsible for doing so
Firms that continue to transact with a shortfall on their client account risk using other clients’ funds to facilitate those transactions

Employee Behaviour

The SRA provides indicators when identifying behaviour amongst employees that may indicate a problem. This includes failure to deliver bills or a written notification of costs, any suggestion of over-charging, and a sweeping up of residual balances.

Steps To Take

Paul Philip, chief executive at the SRA has said: “Caselaw is very clear that the client account is sacrosanct. However, firms do report shortages on the client account for a variety of reasons. Our rules are also very clear – you must make good on any deficit promptly. A shortage on the client account presents a risk to all clients for whom you hold money.”

Managers are advised to immediately investigate and take action against any member of staff who may have acted dishonestly regarding the client account, and to take regular steps to monitor, review and manage risks
If you identify that money is missing, you have a duty to take steps to ensure it’s replaced, in full, immediately
If you’re a manager of the firm, you have a duty to replace missing client money from your own resources. It may be necessary for you to obtain a loan to do this. It’s irrelevant that fault may not lie with you personally
You need to notify your insurer. You may be able to make a claim on your professional indemnity insurance. The obligation to remedy a breach of the SRA Accounts Rules 2011 is treated as civil liability for the purposes of clause 1 of the Minimum Terms and Conditions
If you identify a shortage, you should report the matter to the SRA in line with your obligations under paragraph 7.7 of the Code of Conduct for Solicitors, RELs and RFLs and paragraph 3.9 of the Code of Conduct for Firms

Enforcement Action

On enforcement action, the SRA warns that failing to replace client money will usually lead to an intervention. Even if money has been replaced, it may be that an intervention is necessary to deal with what caused the problem, such as dishonesty, in order to protect the clients and the public.

Firm Closures

The SRA has also addressed the issue in the context of firms heading for closure, given this can’t happen if there are client balances remaining in a firm’s account.

The SRA has advised any firms seeking to close that they should send all client money to clients, pay counsel fees and bill for outstanding costs.

The notice adds: “If your client account has a shortage, you cannot undertake any of these actions and therefore you cannot close your firm until the shortage is replaced.”

Get in touch

At Teal, we’re here to support your journey towards compliance that works.

We understand that compliance can be a daunting word, but it’s also the key to unlocking your firm’s full potential.

Our experts at Teal Compliance are here to help. Get in touch today to explore tailored solutions and ensure your firm stays ahead of regulatory requirements.

New SRA Notice Warns Against Funds Missing From Client Account Read More »

Is your law firm’s website compliant with the SRA Price Transparency Rules?

Audit, Legal Compliance, Regulatory Compliance / Rachel Craig

If you’re involved in managing compliance at a UK law firm, you’re probably no stranger to the SRA Price Transparency Rules. But just how compliant is your website? In this blog post, we dive into what you need to know and how you can ensure your firm meets the requirements.

Understanding the SRA Price Transparency Rules

The SRA Transparency Rules, which came into force in December 2018, marked a significant shift in how law firms should communicate pricing and service details to their clients. Instructed by the Solicitors Regulation Authority (SRA), these rules aim to improve transparency within the legal sector enabling clients to make informed decisions about their legal matters.

Covering a range of practice areas, law firms must disclose price and service information in a clear and accessible manner. These areas include:

Residential conveyancing
Probate (uncontested)
Motoring offences (summary offences)
Immigration (excluding asylum)
Employment tribunals (unfair/ wrongful dismissal)
Debt recovery (up to £100,000)
Licensing applications (business premises)

Also, it’s crucial to note that even if your firm doesn’t have an online presence through a website, you’re still required to provide this information upon request in alternative formats. This ensures that regardless of the means of communication, clients have access to transparent pricing information.

What the SRA Price Transparency Rules entail

The SRA Price Transparency Rules include a multifaceted approach to transparency and accountability within the legal sector. Beyond the disclosure of pricing and service information, firms have to adhere to additional requirements to enhance clarity and trust. Alongside publishing price and service details, firms must prominently display the SRA’s digital logo on their website, serving as a visual indicator of compliance. This badge reassures clients that the firm operates within regulatory guidelines, instilling confidence in the transparency of legal fees and services offered.

Additionally, the Rules also require firms to publish details of their complaints procedure on their website. This includes comprehensive information on how and when a complaint can be lodged, both to the Legal Ombudsman and directly to the SRA. By offering clear guidance on the complaints process, firms prove a commitment to accountability and client satisfaction.

Teal’s new compliance culture services partnership

As well as ensuring such a damaging and toxic environment doesn’t exist, how can we further test and measure the true culture we have in our workplace?

At Teal we have always believed culture to be the bedrock of sound firm management and compliance. That’s why it’s the biggest, first, and most vital cog in our six Cs of compliance. Without a good culture, the others ‘Cs’ simply won’t work. It’s the foundation from which thriving firms are possible.

That’s why Teal is delighted to be launching its partnership with Gemma Ellison and the team at Heart Leadership.

Gemma said “I started Heart Leadership after spending 15 years in legal practice and so it is a profession I understand and deeply care about. I am committed to helping organisations create healthy and inspiring working environments, which I know, in turn, leads to enhanced wellbeing and higher performing teams. Often, as we move through the ranks of our industry, we are rarely told to fully consider culture and the fundamental impact it has on the working environment of our people. I want to help change that.”

Insights from the Year Three Evaluation

The Year Three Evaluation of the SRA Transparency Rules shed light on the full adoption of the rules. While progress has been made, there are still significant challenges that law firms must address to meet the requirements effectively.

The compliance landscape

According to the evaluation, a majority of firms reported compliance with various aspects of the transparency rules:

75% claimed to provide price and service information
88% displayed the SRA clickable logo
88% published complaints procedures
76% detailed how to complain to the SRA/ Legal Ombudsman

However, when it comes to price and service information specifically, only 42% of firms stated they published all required details. This highlights a significant gap in compliance, with more than half of firms falling short in this crucial area alone.

The reality of compliance

In 2021, the SRA took proactive steps by requiring all law firms with websites to complete a mandatory declaration confirming compliance with the transparency rules. Despite these declarations, spot checks conducted by the SRA revealed a different reality.

Common areas of non-compliance identified during spot checks include:

Partial compliance with certain aspects of the rules, such as publishing price and service information while omitting complaint information
Selective compliance with rules for specific service areas, particularly among firms with multiple websites or sections dedicated to different areas of law
Incomplete publication of information regarding how services will be delivered and by whom
Improper display of the SRA clickable logo, hindering the dynamic link to firm information on the SRA website

Ensuring compliance

Ensuring compliance with SRA Price Transparency Rules is essential for law firms to maintain trust and transparency with their clients, as well as meet their regulatory requirements.

So, how can your law firm ensure compliance with the transparency rules?

1. Review your website regularly

Regularly review your website to ensure all required information is up-to-date, accurate, and easily accessible to visitors. Keeping a vigilant eye on your online presence ensures that potential clients can find the information they need without any hassle.

2. Utilise SRA templates

Take advantage of the SRA’s provided templates for suggested text. These templates can be invaluable in identifying any missing information on your website, helping you align with the requirements of the Transparency Rules more effectively.

3. Consider user experience

Prioritise the user experience on your website to ensure that clients can easily navigate and find the necessary information. Whether through specific webpages, intuitive online quote tools, or seamless connections to price comparison sites, prioritising accessibility enhances client satisfaction.

4. Get expert help

If you’re unsure about compliance or need assistance, Teal Compliance offers website audit services. We can provide guidance and help you navigate any non-compliance issues, ensuring your firm remains aligned with regulatory standards.

Moving forward

The findings highlight the importance of ongoing vigilance and proactive measures to achieve full compliance with the SRA Transparency Rules. Law firms must not only ensure that they are meeting the minimum requirements but also strive for transparency and clarity across all aspects of their online presence.

As regulatory scrutiny intensifies and expectations evolve, firms need to review their compliance strategies, address identified gaps, and embrace best practices to uphold the principles of transparency and accountability.

Get in touch

At Teal, we’re here to support your journey towards compliance that works.

We understand that compliance can be a daunting word, but it’s also the key to unlocking your firm’s full potential.

Our experts at Teal Compliance are here to help. Get in touch today to explore tailored solutions and ensure your firm stays ahead of regulatory requirements.

Is your law firm’s website compliant with the SRA Price Transparency Rules? Read More »

Compliance Planning: Are you ‘regulator ready’ for 2024?

Blogs, Legal Compliance, Regulatory Compliance / Joanne

In 2023 we saw increased levels of guidance and new directives from our industry regulators along with new legislation and ongoing changes in areas such as sanctions. Therefore, it’s never been more important to be on top of your compliance. Choosing the right partner to assist you is an important part of developing ‘Compliance that Works’ for law firms in 2024. Here, we consider some of the things you might want to contemplate when compliance planning, to ensure you feel confident, safe and ‘Regulator Ready’.

Preparing an annual compliance plan will allow you to breakdown and design an ongoing effort that’s more likely to permeate the whole firm and its behaviours, rather than having the sugar rush and panic of concerted efforts or crisis avoidance.

Where to start compliance planning

Before you prepare your annual plan, you need to ensure you’re up-to-date with the following:

1. Guidance and legislation

Have you got round to reading the LSAG Guidance including the March and November updates and the significant areas covered including the 36 Principles and Proliferation Financing? Much has changed since the last version. There’s also been an update to some Sectoral AML Risk Assessments which you need to take account of, in addition to other guidance, including the results of Thematic Reviews.

Are you up to speed with the requirements of Sanctions legislation? Regulators are beginning to assess firms compliance, visiting them to see how they are coping, what their policies and procedures are.

So, make sure you’re up-to-date with these changes.

2. Policies and procedures

Another great way to start the year is giving your AML policies and procedures a health check.

Don’t forget to provide updated training (another area subject to Regulatory scrutiny at present) and ensure that changes you make are embedded in processes, particularly as we know the SRA, Law Society of Scotland and CLC are committed to carrying out audits and are testing against LSAG Guidance as well as the Regulations.

3. Audits

Carrying out audits is a a good way to start a year. Are people appropriately documenting source of wealth and funds, are matter risk assessments completed appropriately and do they reflect the new guidance and policies, is there documented ongoing monitoring of matters? How about undertaking AML file audits to get the year off to a good start?

4. Risk assessments

You may need to revise your firm wide risk assessment if its more than a year old and record your risk assessment relating to Proliferation Financing. Don’t forget to keep copies of the old one, to evidence it is a living document.

A Sanctions risk assessment would be good idea too!

Compliance planning

It’s now time get the diary out and plan your compliance activity for the year ahead.

January

Now might be a good time to remind everyone of the importance of ensuring that file reviews and supervision are done. Don’t let this drift. Ensure any trends are identified and dealt with. Is training up to date? As well as AML and information security, what about equality and diversity? Have you only undertaken your Bribery Act training just the once, all those years ago?

Regulators are now looking at how firms are dealing with a wide range of Economic Crime, not just AML – there’s Tax Evasion and Fraud too. Don’t forget recent recruits who might not have had all the required training. The Teal Tracker is designed to make this easy for firms to collate and track. Get in touch if you’d like to know more.

February

Are your information security measures adequate? They may well be tested – we know of firms that have been the victims of sophisticated hacking and ransomware, and it has lasting effects, taking many months (and disruption and expense) before things return to normal.

This isn’t simply ensuring homeworkers are updating their anti-virus software. More essentially, are they carefully checking emails and client instructions in order to spot attempts by fraudsters to intercept the movement of completion monies? Is your accounts team in the loop?

March

We know that March is year end for lots of firms, so much of this month could be used up ensuring time is recorded, bills are raised, and general housekeeping dealt with to ensure the figures look as good as possible. However, there are some things to consider if time allows:

If you have the CQS standard, now would be a good time to review your compliance with it. Why not also check your Lexcel compliance if it’s also a standard you have obtained. Remember the requirements for training.
It’s a year since the latest LSAG guidance was published. It might be worth giving it a once over, just to remind yourself what it says.

April

New financial year means a new budget. This is where training should be considered, especially if you haven’t done anything recently.

You may also want to consider that independent AML audit that you’ve been putting off. Regulators are of the opinion that the vast majority of firms need one, no matter how small the firm may be. If you do a reasonable amount of AML regulated work, you need one. If you do conveyancing, you will be caught.

May

May should be a good time to consider your risk management. Do you have a disaster recovery (business continuity) plan? Now would be a good time to test it and learn from the experience. If you can’t test the whole process, you should consider checking one of the greatest risks, such as cybersecurity. Consider:

Is all your IT running the most recent updates?
Have you arranged a Penetration Test with your external IT support?
Have you arranged a mock phishing exercise to see how many colleagues click on dubious links?
Have you considered ‘Friday Afternoon Fraud’?
Have you done any training?
Have you set training reminders?

June

Now’s the time to get to grips with all of that unbilled WIP. Close files, send them to storage, and destroy the really old records that went past their destroy date years ago.

Alongside this, ensure any client monies you have no reason to keep hold of are sent back to clients. You don’t want to get fined for failing to deal with residual client money!

July

Since you did get round to checking CQS issues in March, how about going one step further and organising an independent CQS audit? Contact us to organise one.

Perhaps consider training for your COFA. It’s a good idea to ensure they get specific training. Remember training is a hot topic for Regulators, so make sure the COFA gets some too.

August

Staff will no doubt want a well-earned break which can present additional risks which you should now consider. How will you deal with holiday cover? How will you adapt to people being unavailable?

For those needing to get away from the same four walls, foreign travel might well be on the cards, and they could be venturing to where mobile reception is poor, and Wi-Fi is not secure.

September

If you have spare time, you could look at improving your information security status by checking how you compare against the CyberEssentials standard, or CyberEssentials+.

However, renewal time is likely to keep you busy all month.

October

It’s the anniversary of the SRA Transparency Rules each December and it’s something the Regulator is keeping its eye on. So, now would be a good time to start your review.

Have staff changed? What about fee rates and other costs? Not just changes to your own firm, but think about delayed responses from third parties, busy Courts and other factors. Does your website need a review?

Remember, firms are being fined for lack of compliance.

November

It’s nearly the end of the year, so make sure those file reviews done.

If you have a considerable backlog, your colleagues really aren’t going to be grateful for another round of chasing them to get them done.

Why not get in touch with Teal to undertake some for you? We can help with both AML reviews and Regulatory ones, client care letters, conflict checking, costs updates and the like.

December

Now is as good a time as any to carry out a review of your risk register. If you don’t have one, it’s a good time to create one.

Your risk register should cover things like:

Complaints and claims
Identified trends from file audits and supervision
Business Continuity Plan review outcomes
SARs submitted (or not)
DSARs and information security issues
What went wrong and what went right
The year ahead – what are your audit and training plans for example?

It’s then back to that compliance planning for next year!

Get in touch

At Teal, we’re here to support your journey towards compliance that works by mitigating the risk of legal compliance issues.

Whatever time of year, if you need compliance assistance, our team of experts are on hand. We offer a range of compliance services to ensure you’re on track to achieve compliance success.

Compliance Planning: Are you ‘regulator ready’ for 2024? Read More »