About Risk & Compliance
Lexis+ Risk & Compliance is an online practical guidance product for in-house legal and compliance teams dealing with the ever-increasing and ever-shifting burden of risk and compliance.
Risk management guides
Each guide identifies five key priorities for the area of risk, and gives a heads-up on why each is a priority area. The priority is explained in further detail, with a series of mini-checklists and action points.
Competition & antitrust law compliance
Having a clear understanding of the nature of competition law compliance and the associated risks/challenges for businesses is the first step to setting effective compliance arrangements. We help organisations with this.
GDPR compliance
Practical guidance tools, registers, training aids and other templates to help you comply with data protection law and manage privacy risks
Regulation
Helping in-house counsel, privacy and compliance professionals manage the regulatory burden. GDPR, BA, MLR and plenty more, we've got it covered.
Topics We Cover
Latest Risk & Compliance News
The Export Control Joint Unit has announced that amendments to Syria sanctions by the Foreign, Commonwealth and Development Office (FCDO) took effect...
MLex: Potentially conflicting legal requirements, national governance approaches to ensure regulatory consistency, as well as clear legal advice to...
Law360, London: The Serious Fraud Office's 'cast iron' promise that companies self-reporting wrongdoing will duck prosecution could lead to a new wave...
The Office of Financial Sanctions Implementation (OFSI) has issued new General licence INT/2025/6135848, updated INT/2025/6160920 and amended licence...
TMT analysis: This analysis considers the role of technical standards in the ICT sector and in particular in relation to artificial intelligence (AI)....
Latest Risk & Compliance Practice Notes
Data subject access requests—issues in employmentAssimilated law is the name given to retained EU law which remains in force after the end of 2023....
Summary of SFO's bribery guidance and policiesForthcoming change alert: the Serious Fraud Office (SFO) is in the process of updating its guidances for...
What’s new and what’s changed in 2018—Risk & Compliance [Archived]ARCHIVED: This Practice Note has been archived and is not maintained. For more...
Failure to prevent bribery—the offenceThis Practice Note explains the corporate criminal offence of failing to prevent bribery under section 7 of the...
OFSI General Licence trackerThis Practice Note tracks General Licences issued by the Office of Financial Sanctions Implementation (OFSI) under the UK...
Latest Risk & Compliance Precedents
Dawn raid—IT Director—flowchartThis Precedent Dawn raid Flowchart guides the IT director (or other designated IT representative) through the IT issues...
Dawn raid—Response Team Leaders—flowchartNote 1[Lawyers AND/OR Compliance team members] should be present for the entirety of the investigation. If...
Cookie policyPlease read this cookie policy carefully as it contains important information on who we are and how we use cookies and other similar...
Policy—equality, diversity and inclusion (short form)1Policy statement1.1The Company is fully committed to promoting equality, diversity and inclusion...
Code of ethics—annual board reportDate of report[insert date of report]Report prepared by[Insert name and role]1IntroductionOur Code of ethics sets...
Latest Risk & Compliance Q&As
Featured Risk & Compliance content
How to manage legal risk
How to manage legal riskIt is often said that running a business means taking risks and that the biggest risk an entrepreneur can take is not to think...
Can a limited company make a subject access request? Can a director of a limited company ask for recordings of calls with us? If yes, what personal data must we provide?
Can I charge a fee for dealing with a data subject access request?
Tipping-off and prejudicing an investigation
Tipping-off and prejudicing an investigationThere are several offences of tipping-off and prejudicing an investigation that apply to the regulated...
Dawn raid—who can raid my organisation and why?
Dawn raid—who can raid my organisation and why?The UK Government has legislated to permit a number of UK authorities to obtain search warrants to...
Contract management risk management guide
Contract management risk management guideWhy you need to manage this riskContract management is often seen by the business as an activity which is...
Confidentiality risk management guide
Confidentiality risk management guideWhy you need to manage this riskConfidential information is one of the most valuable assets of any business....
Money Laundering Regulations 2017—simplified due diligence
Money Laundering Regulations 2017—simplified due diligenceYou may apply simplified customer due diligence (SDD) measures in relation to particular...
SRA Code of Conduct for Solicitors, RELs and RFLs—for in-house lawyers
SRA Code of Conduct for Solicitors, RELs and RFLs—for in-house lawyersThis Practice Note provides guidance for in-house solicitors on the SRA Code of...
Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017—key information for businesses
Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017—key information for businessesThe Money...
Dealing with the National Crime Agency
Dealing with the National Crime AgencyThis Practice Note provides high-level guidance on dealing with the National Crime Agency. It sets out the role,...
Public statement on data breach
Public statement on data breachStatement by [insert name of organisation] concerning a significant [cyber attack OR data protection breach] on [insert...
Money Laundering Regulations 2017—nominated officer
Money Laundering Regulations 2017—nominated officerThis Practice Note sets out when organisations must appoint a nominated officer (sometimes referred...
Dealing with the Serious Fraud Office
Dealing with the Serious Fraud OfficeSFO—role and powersRoleThe Serious Fraud Office (SFO) is the authority in England, Wales and Northern Ireland...
How to conduct a legitimate interest assessment (LIA)
How to conduct a legitimate interest assessment (LIA)The UK General Data Protection Regulation (UK GDPR) permits processing of personal data where...
Refusing a data subject request—what is ‘manifestly unfounded or excessive’?
If a multinational company with entities in a number of EU states has registered a data protection officer (DPO) with the Information Commissioner’s Office (ICO), does it need to register a DPO in the other EU states where it has entities or is registration in one country sufficient?
Dealing with dawn raids by the Information Commissioner’s Office
Dealing with dawn raids by the Information Commissioner’s OfficeThis document reflects the UK GDPR regime. References and links to the GDPR refer to...
Associated legal terms
Active satellite
A functioning satellite that receives and transmits or retransmits radio-communication signals to or from a base station.
Infringement of EU Law
A procedure initiated by the EU Commission when it considers that a member state has failed to comply with its EU obligations. It seeks to bring the infringement to an end and is linked to a specific provision of the Treaties, secondary legislation or EU judgment.
NNA
National Nuclear Archive: A project funded by the NDA to build a new purpose-built archive facility at Wick to provide long-term storage of records and other archive material from civil nuclear sites in the UK from 2016.
CONTACT US
