Risk and Compliance

Compliance Plans, Risk Register, Client Care, Code of Conduct, COLP/COFA, Business Continuity, Outcomes Focused Regulation! All terms we see all too often within the legal profession. “Compliance” has taken the industry by storm but has left lawyers in a state of confusion and anxiety. 
There are so many different facets to consider when referring to “compliance” within a firm. Practices will need to consider the code of conduct, Equality Act, Anti Bribery Legislation, the EU Commerce Directive and many other codes of practice, regulations and legislation. 
Even before a firm considers change they need to recognise that we are no longer in a profession where regulation and compliance can be avoided. Everyone within the practice is affected by the firm’s compliance status, not just the partners or qualified members of staff.   
Public perception:
The starting point for most firms is evaluating their public facing information, including websites, emails, letterheads and registration with the information commissioner and where applicable registration as an Exempt Professional Firm. 
From an SRA perspective each firm has a risk profile, and so when deciding which firms they wish to ‘supervise” or approach for a thematic review they will consider public facing information amongst other things; such as complaints, claims and any other dealings the firm may have had with the SRA. We would encourage firms to ensure that their pubic facing information is “compliant” to help minimise their risk rating. 
Client Care:
Once firms have ensured their public facing information is “compliant” the next consideration should be to the firm’s client care packs. 
A client care letter and terms of business plays a critical part of compliance with the client care provisions of the Code of Conduct, however so often when we review these documents we find large gaps and non compliances. 
But is it any wonder? Over the past 3 months there have been at least 3 required updates to Client Care Letters/Terms of Business; namely the changes to the Legal Ombudsman Scheme details in February 2013, the implementation of the Legal Aid, Sentencing and Punishment of Offenders (LAPSO) Act 2012 in April 2013 and the structural changes made at the Financial Services Authority.
Legal Eye has reviewed hundreds of Client Care Letters and Terms of Business documents over the past few years. Of those reviewed 84% did not contain accurate regulatory information. Common omissions and non-compliances include fee details, incorrect or incomplete complaint’s details both in the complaint’s section itself and the financial services paragraphs. Distance selling, cancellation rights, quality standards, equality and diversity, outsourcing and details of the Financial Services compensation Scheme were some of the other common paragraphs which we found needed to be updated. 
The firm’s COLP will need to ensure that the client care pack has been updated to reflect all of the compliance requirements, including those that have been recently updated. They will also need to demonstrate that the firm has a procedure in place to check and verify that fee earners are using the most up to date documents and procedures. 
File Reviews:
Documented audit trails are a key component to mitigating the regulatory risk exposed to a firm. With the compliance arena being so fast paced, firms are struggling to implement the changes as quick as new requirements are introduced and updated. 
Where we assist firms with their file review processes we are able to keep them updated and appraised of developments in the regulatory world with practical solutions. So with regards to the changes to the Financial Services Authority we advised all of our clients what the changes were and updated their terms of business, client care letters and demands and needs statements so that they could use the updated versions without any delay. 
However, whilst updates can be made and distributed firm-wide, it is the fee earning and support staff that need to use these documents, and therefore they need to find a way of ensuring that they are using the correct version at the time they send the initial documents to their clients. In practice this can be one of the biggest challenges firms face because fee earners are using example text or precedents from a whole host of references in their directories, so old templates, clauses and references creep in to new documentation. From a compliance perspective it is the COLP’s responsibility to ensure that there is an adequate system in place to prevent and mitigate the risk of out of date information being used, but it’s a time consuming task when there are so many compliance updates to consider. 
Legal Eye records show that 74% of firms that we have communicated with before any advice or feedback is rendered did not have any file review processes in place, which is a fundamental flaw to a firm’s risk management process. Of the 26% of firms that had file review processes in place only 5% actually followed up the corrective action, which is a congruent part of the supervision and risk management requirements under the code of conduct. The file review process not only reveals valuable information about practices and procedures undertaken by the firm but also it is a risk management tool which insurers expect firms to have in place. 
Today's Conveyancer