The FCA’s proposed new ‘Consumer Duty’ – what does it mean?

The FCA has published its long-awaited consultation on 'duty of care' which has morphed into a proposed package of measures intended to deliver better outcomes for consumers – together a new 'Consumer Duty'. The consultation, which is open until 31 July 2021, proposes: a new Consumer Principle that provides an overarching standard of conduct; and a set of Cross‑cutting Rules and four Outcomes that support the Consumer Principle. The proposals apply to regulated products and services sold to 'retail clients' which would include SMEs. Read more

The PRA’s expectations on outsourcing and third party risk management

At the end of March, the Prudential Regulation Authority (PRA) published the Policy Statement (PS7/21) and the Supervisory Statement (SS2/21) which set out its expectations of PRA-regulated firms regarding outsourcing and third party risk management. The publications are part of the wider operational resilience policy package released jointly with the Bank of England (the Bank) and the UK Financial Conduct Authority (FCA). In this post, we briefly explain the background to these publications and review the implications for both PRA-regulated firms and service providers. Read more

Operational Resilience: respond, enhance, thrive

Operational resilience is the next phase in the evolution of financial services regulatory policy. Regulators’ expectations are increasing – but it’s an evolution rather than a revolution; firms – more specifically firms’ senior managers – must “join the dots” across a range of practical risk management and governance activities. To help keep you up to date on the upcoming regulatory expectations, we are pleased to announce the launch of our new #OperationalResilience hub. Read more

#OperationalResilience Asia Webinar: How to Manage and Prevent Disruptive Digital Events

In our 24 February webinar, our cross-practice panel of experts from Hong Kong, Singapore and London will discuss operational resilience. This webinar will be of interest to senior management, legal, compliance, risk management, regulatory, data privacy, information security and corporate communications professionals who are responsible for managing, responding to and preventing significant disruptive incidents. Read more