Crisis management

Crisis management

When a crisis hits, you will be under pressure—pressure to act, pressure to respond, pressure from those to whom you answer internally and potentially from external stakeholders as well. You may be out of your comfort zone, unsure of your reporting obligations, what to divulge, to whom and when and the order in which to do things. Your first instinct may be to try and react immediately in response to the agendas of others or, conversely, to clam up and adopt a legal position.

What is a crisis?

There is no officially accepted definition of crisis. Generally it will involve a time of intense difficulty or danger when a difficult or important decision must be made.

For guidance on specific types of crises, see subtopics:

•
Internal investigations
•
Dawn raids & external investigations
•
Data breaches—compliance
•
Business continuity plan

The first 12 hours

The first 12 hours of a crisis are pivotal. Things happen quickly; they can get out of control. Worse still, mistakes can be made.

If you get things right, you can seize control of the problem and set and drive

To view the latest version of this document and thousands of others like it, sign-in with LexisNexis or register for a free trial.

TAKE A FREE TRIAL

Latest Risk & Compliance News

Export Control Joint Unit announces Syria sanctions amendments and licence revocation

The Export Control Joint Unit has announced that amendments to Syria sanctions by the Foreign, Commonwealth and Development Office (FCDO) took effect from 25 April 2025. The changes include the removal of certain export prohibitions and the revocation of the general trade licence previously issued for earthquake relief efforts in Syria. The notice forms part of the ongoing notices to exporters collection addressing embargoes and sanctions.

Main challenges of EU AI Act-GDPR interplay identified by Member States

MLex: Potentially conflicting legal requirements, national governance approaches to ensure regulatory consistency, as well as clear legal advice to minimise the compliance burden, are the main issues seen by EU Member States in the interplay between the EU AI Act and the EU’s General Data Protection Regulation, Regulation (EU) 2016/679 (EU GDPR). European governments have pointed out that the two laws' diverging regulatory approaches might lead to conflicting outcomes, which should be avoided with systematic cooperation between the responsible authorities.

Fess up, or wait and see? SFO policy shift stirs DPA debate

Law360, London: The Serious Fraud Office's 'cast iron' promise that companies self-reporting wrongdoing will duck prosecution could lead to a new wave of settlements—but only if other controversial reforms push businesses to the negotiation table, lawyers say.

OFSI announces new and updated General Licences

The Office of Financial Sanctions Implementation (OFSI) has issued new General licence INT/2025/6135848, updated INT/2025/6160920 and amended licence INT/2025/5855272. General licence INT/2025/6135848 permits asset and liability transfers for the UBS-Credit Suisse integration under Russia sanctions regulations. General licence INT/2025/6160920 updates the framework for legal services, replacing the previous licence. OFSI also amended licence INT/2025/5855272 to include the International Maritime Organisation in permitted membership fee payments to international organisations.

View Risk & Compliance by content type :

News