About Risk & Compliance
Lexis+ Risk & Compliance is an online practical guidance product for in-house legal and compliance teams dealing with the ever-increasing and ever-shifting burden of risk and compliance.
Risk management guides
Each guide identifies five key priorities for the area of risk, and gives a heads-up on why each is a priority area. The priority is explained in further detail, with a series of mini-checklists and action points.
Competition & antitrust law compliance
Having a clear understanding of the nature of competition law compliance and the associated risks/challenges for businesses is the first step to setting effective compliance arrangements. We help organisations with this.
GDPR compliance
Practical guidance tools, registers, training aids and other templates to help you comply with data protection law and manage privacy risks
Regulation
Helping in-house counsel, privacy and compliance professionals manage the regulatory burden. GDPR, BA, MLR and plenty more, we've got it covered.
Topics We Cover
Latest Risk & Compliance News
Our new Risk & Compliance forecast (as at 17 June 2025) is now live. This month we report on items including (1) FATF actions following the conclusion...
The Office of Financial Sanctions Implementation (OFSI) has published guidance assessing threats to UK financial sanctions compliance in the art...
The Data (Use and Access) Bill (DUA) is set to receive Royal Assent and become an Act of Parliament on Thursday 19 June 2025. This follows its...
The Prime Minister's Office (PMO) has announced a new package of 30 sanctions targeting Russia's financial, military and energy sectors. The measures...
The latest Financial Action Task Force (FATF) plenary has announced, among other developments, that it has approved revisions to Recommendation 16 of...
Latest Risk & Compliance Practice Notes
Brexit—cybersecurity [Archived]ARCHIVED: This Practice Note has been archived and is not maintained.This Practice Note explores the effect of Brexit...
List of data protection clauses and agreements for commercial transactions and personal data processing and sharingThis Practice Note is a...
Personal data sharing between controllersThis Practice Note explores issues and best practice relating to the sharing of personal data between...
Children and data protection lawIn briefData protection laws in the UK seek to ensure information about living individuals (within the definition of...
Supply chains under data protection law—arrangements between controllers and processorsThis Practice Note introduces the requirements of the United...
Latest Risk & Compliance Precedents
Personal data sharing schedule—controller to controller—pro-disclosing partyDefined terms: This precedent schedule uses the additional defined terms...
Personal data sharing clause—controller to controller—pro-receiving partyDefined terms: This Precedent clause uses the additional defined terms...
Competition law compliance training recordPlease click for an Excel version of this register.GeneralCourse name/description and reason for...
Risk scorecard (matrix)Risk scorecard (matrix)Probability ratingScoreLikelihood of risk materialisingBenchmark1Very lowOnly expected to occur in...
Risk management policy1Introduction1.1Risk management is central to the way we operate and [insert organisation’s name] is committed to ensuring...
Latest Risk & Compliance Q&As
Featured Risk & Compliance content
Can I charge a fee for dealing with a data subject access request?
How to plan and conduct an internal investigation
How to plan and conduct an internal investigationAn internal investigation is a legal process undertaken by an organisation (with or without outside...
Can a limited company make a subject access request? Can a director of a limited company ask for recordings of calls with us? If yes, what personal data must we provide?
Anti-bribery and corruption—post-training assessment answers
Anti-bribery and corruption—post-training assessment answersQuestionCorrect answer1. How many new offences does the Bribery Act 2010 create? (b)...
Who can certify identification documents (passports, driving licences, utility bills, etc)?
Money Laundering Regulations 2017—scope and application
Money Laundering Regulations 2017—scope and applicationThis Practice Note sets out the scope and application of the Money Laundering, Terrorist...
Money Laundering Regulations 2017—nominated officer
Money Laundering Regulations 2017—nominated officerThis Practice Note sets out when organisations must appoint a nominated officer (sometimes referred...
Sanctions regime—Russia
Sanctions regime—RussiaThe Russia (Sanctions) (EU Exit) Regulations 2019, SI 2019/855, made under the Sanctions and Anti-Money Laundering Act 2018...
How to manage legal risk
How to manage legal riskIt is often said that running a business means taking risks and that the biggest risk an entrepreneur can take is not to think...
Contract management risk management guide
Contract management risk management guideWhy you need to manage this riskContract management is often seen by the business as an activity which is...
Competition law compliance—post-training assessment answers
Competition law compliance—post-training assessment answersQuestionCorrect answer1. Competition law protects business and consumers from...
SRA Code of Conduct for Solicitors, RELs and RFLs—for in-house lawyers
SRA Code of Conduct for Solicitors, RELs and RFLs—for in-house lawyersThis Practice Note provides guidance for in-house solicitors on the SRA Code of...
Anti-bribery and corruption—post-training assessment questions
Anti-bribery and corruption—post-training assessment questionsHow to use this testThese questions are designed to test your understanding after your...
How to create a legal risk register
How to create a legal risk registerThis Practice Note is intended for in-house lawyers. It explains how to create a legal risk register, a tool that...
Tipping-off and prejudicing an investigation
Tipping-off and prejudicing an investigationThere are several offences of tipping-off and prejudicing an investigation that apply to the regulated...
Confidentiality risk management guide
Confidentiality risk management guideWhy you need to manage this riskConfidential information is one of the most valuable assets of any business....
Records retention schedule
Records retention schedule1Introduction1.1This Record retention schedule accompanies and is incorporated into [insert organisation’s name]’s Records...
Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017—key information for businesses
Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017—key information for businessesThe Money...
Associated legal terms
EEA
European Economic Area, consisting of: Austria, Belgium, Bulgaria, Croatia, Republic of Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Liechtenstein, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden and the UK.
Engineer, procure and construct contract (EPC contract)
In an EPC contract, the contractor engineers, procures, constructs and commissions a project from its inception to completion. EPC contracts are also referred to as turnkey contracts because the concept is that once the project is complete and ready to be handed over to the user, it will require only the 'turn of a key' for the user to operate it. This is a form of procurement frequently used for large international infrastructure or power projects, particularly where project financing is involved. For more information, see subtopic: EPC contracts. The most common standard form EPC contract is the FIDIC Silver Book.
Funeral plan contract
This is a type of regulated investment as defined in article 87 of the Regulated Activities Order.
CONTACT US
