Presentation is loading. Please wait.

Presentation is loading. Please wait.

How to be an effective COLP Peter Scott Consulting www.peterscottconsult.co.uk.

Published byUrsula Daniel Modified over 8 years ago

Similar presentations

Presentation on theme: "How to be an effective COLP Peter Scott Consulting www.peterscottconsult.co.uk."— Presentation transcript:

1 How to be an effective COLP Peter Scott Consulting www.peterscottconsult.co.uk

2 Why manage compliance risks? “The pursuit of excellence, with the aim of doing things better for the clients” Director of Risk of a ‘top ten’ UK law firm

3 Compliance needs to be ‘lived’ on a daily basis by everyone and there can be no exceptions to following procedures. Otherwise everyone is at risk.

4 Your challenges as the COLP 1.Understanding your role and responsibilities as the COLP 2.Planning how you will fulfil your role as the COLP 3.Securing ‘buy-in’ and ‘accountability’ from everyone in your firm 4.Identifying and assessing your firm’s compliance risks 5.Implementing and managing your ‘compliance plan’ - in order to be able to DEMONSTRATE to the SRA that your firm is compliant

5 1. Understanding your role and responsibilities as the COLP The scope of your role The potential consequences if you do not carry out your role effectively – - for you - your firm - everyone in your firm

6 The scope of your role as COLP under Rule 8 of the SRA Authorisation Rules is extensive and very wide 8.5.(c) SRA Authorisation Rules (i)Take all reasonable steps to: (A) ensure compliance with the terms and conditions of the authorised body’s authorisation except any obligations under the SRA Accounts Rules (B) ensure compliance with any statutory obligations of the body, its managers, employees or interest holders in relation to the body’s carrying on of authorised activities (C) record any failure so to comply and make such records available to the SRA on request;

7 For example, Chapter 7 of the SRA Code includes the following outcomes.... - you have appropriate systems and controls in place to achieve and comply with all Principles, rules and outcomes and other requirements of the Handbook - you identify, monitor and manage risks to the achievement of all outcomes, rules, Principles and other requirements in the Handbook if applicable and take steps to address issues identified Are you achieving these outcomes?

8 8.5.(c) SRA Authorisation Rules (continued) (ii) As soon as reasonably practicable, report to the SRA any failure so to comply provided that: (A) in the case of non-material failures, these shall be taken to have been reported as soon as reasonably practicable if they are reported to the SRA together with such other information as the SRA may require in accordance with Rule 8.7(a): and (B) a failure may be material either taken on its own or as part of a pattern of failures so to comply.

9 What is a ‘material’ failure to comply? Guidance Notes to Rule 8 provide: (x) In considering whether a failure is “material” and therefore reportable, the COLP or COFA, as appropriate, will need to take account of various factors, such as: the detriment, or risk of detriment, to clients the extent of any risk of loss of confidence in the firm or in the provision of legal services the scale of the issue the overall impact on the firm, its clients and third parties. In addition, the COLP/COFA will need to keep appropriate records of failures in compliance to: monitor overall compliance with obligations assess the effectiveness of the firm’s systems be able to comply with the duty to report breaches which are material because they form a pattern.

10 For example, Chapter 10 of the SRA Code includes the following Outcome O(10.1) you ensure that you comply with all the reporting and notification requirements in the Handbook that apply to you; Indicative behaviour IB(10.1) - actively monitoring your achievement of the outcomes in order to improve standards and identify non-achievement of the outcomes may tend to show that you have achieved these outcomes and therefore complied with the Principles NB - 8.5.(c) SRA Authorisation Rules …. (ii) As soon as reasonably practicable, report to the SRA any failure so to comply

11 Consider the impact of Disciplinary action Bad publicity and loss of reputation Lost clients Complaints and claims Increased P.I. premiums

12 2. Planning how to fulfil your role as the COLP What are your compliance risks? Where does the knowledge of your compliance risks reside? Can you access that knowledge? Do you have systems to monitor, review and upgrade your knowledge of your compliance risks? Do you have the resources to effectively carry out your role?

13 Carry out a cost / benefit analysis to establish the most resource effective method for you to manage your role as COLP for your firm to be compliant For example: Internal or external? Part time partners or professionals? Paper records or use of IT

14 3. Securing internal buy-in as a condition of your agreement to carry out the role of COLP Needs to be management driven, with top level buy-in Zero tolerance is required – just do it! Managing compliance risk needs to be seen as ‘everyone’s job’ – a mind set change is needed Need a ‘no blame’ culture to encourage disclosure Above all – identify your ‘big gorillas’ and deal with them o therwise everyone is at risk

15 “That’s a great idea …for the rest of you!”

16 “Heavyweight gorilla” “You can’t manage me. I’m a big biller!”

17 Accountability “We have no room for those who put their own personal agenda ahead of the interests of the clients or the office” David Maister’s “Predictive package”

18 An ‘accountability undertaking’ may be required from partners Your role as the COLP will only be capable of being effectively carried out by you if your partners (other owners) accept that they must be ‘accountable’ by, for example, undertaking to support and comply with in the fullest possible way: The implementation of all regulatory compliance procedures agreed by our firm; Those mandated with the onerous task of managing regulatory compliance within the firm; and Every other partner and individual in the firm as each endeavours to fulfil their respective roles in the firm in order to ensure full and complete regulatory compliance.

19 4. Identifying and assessing your compliance risks Use ‘Top down – bottom up’ brainstorming sessions in each group in your firm as a method of identifying and assessing compliance risks - to identify every compliance risk area - are we achieving every Outcome under the new Code? - are we compliant in every area? - do we have gaps? - what will be required to fully comply? - to what standards should we comply? - how should we prioritise our efforts?

20 Some examples of compliance risks Lack of management commitment to best practice and compliance risk management Lack of knowledge by management Lack of supervision High risk work Lack of client vetting / fraud Lack of client care / matter care Lack of resource capability Lack of knowledge / expertise / experience Precedents / multiple use of advice International work / overseas offices Mergers

21 Compliance Risk Mapping

22 5. Managing your ‘compliance plan’ A systematic approach is required Put in place a formal compliance risk management process to identify and manage every area of compliance risk for the SRA Handbook and Code Establish a comprehensive database covering all compliance risk areas Standards such as Lexel and ISO 9000 are likely to help

23 Advantages of a formal compliance risk management process for the new SRA Code? A structured approach focuses on key compliance risk areas Can demonstrate how a firm is complying and the effectiveness of compliance / outcomes Continuous monitoring ensures management of compliance and risk is “lived” day to day Universal application to all compliance and risk areas Comfort / assurance to PI insurers [and SRA?]

24 Use of IT systems for compliance risk management? Use an integrated compliance risk management system to cost effectively manage compliance risk areas by: – creating and maintaining one central, up to date compliance and risk database – providing information access to all who need it in relation to exposure to risk – embedding compliance and risk management procedures – e.g. client inception procedures – streamlining identification, assessment, mitigation and monitoring of compliance risks

25 Above all, as a COLP you will need to continuously challenge the effectiveness of your compliance management

26 Any questions?

Download ppt "How to be an effective COLP Peter Scott Consulting www.peterscottconsult.co.uk."

Similar presentations

The Compliance & Risk Functions In Credit Unions What Supervisors need to know? Michael Mullen ILCU Learning Advisor.

The Compliance & Risk Functions In Credit Unions What Supervisors need to know? Michael Mullen ILCU Learning Advisor.
How to put in place a compliance plan

How to put in place a compliance plan
Internal Control–Integrated Framework

Internal Control–Integrated Framework
Auditing, Assurance and Governance in Local Government

Auditing, Assurance and Governance in Local Government
Effective people and productivity management Peter Scott Peter Scott Consulting.

Effective people and productivity management Peter Scott Peter Scott Consulting.
HR Manager – HR Business Partners Role Description

HR Manager – HR Business Partners Role Description
Complaints An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.

Complaints An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.
Risk Management Policy & Procedures An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.

Risk Management Policy & Procedures An Overview for Staff Prepared by MSM Compliance Services Pty Ltd.
How to approach outcomes focused regulation and the new Code of Conduct Peter Scott Consulting www.peterscottconsult.co.uk.

How to approach outcomes focused regulation and the new Code of Conduct Peter Scott Consulting
Risk Management and Internal Controls ASSAL 20 November 2014 Annick Teubner Chair, IAIS Governance Working Group.

Risk Management and Internal Controls ASSAL 20 November 2014 Annick Teubner Chair, IAIS Governance Working Group.
What makes for a successful merger? Peter Scott Peter Scott consulting www.peterscottconsult.co.uk.

What makes for a successful merger? Peter Scott Peter Scott consulting
Outcomes focused regulation and compliance in practice Peter Scott Peter Scott Consulting www.peterscottconsult.co.uk.

Outcomes focused regulation and compliance in practice Peter Scott Peter Scott Consulting
ACCOUNTING ETHICS Lect. Victor-Octavian Müller, Ph.D.

ACCOUNTING ETHICS Lect. Victor-Octavian Müller, Ph.D.
How to Audit an ERP System via the Risk Management Route Presented by: Gabriel Lung ISACA London Chapter Events 2003/2004 ABN-AMRO, 250 Bishopsgate, London.

How to Audit an ERP System via the Risk Management Route Presented by: Gabriel Lung ISACA London Chapter Events 2003/2004 ABN-AMRO, 250 Bishopsgate, London.
Partner reward – a help or a hindrance to effective business development? Peter Scott Peter Scott Consulting www.peterscottconsult.co.uk.

Partner reward – a help or a hindrance to effective business development? Peter Scott Peter Scott Consulting
Operational compliance Key to successful use of an LLP Peter Scott Consulting www.peterscottconsult.co.uk.

Operational compliance Key to successful use of an LLP Peter Scott Consulting
Www.oaic.gov.au Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.

Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.
Office of Inspector General (OIG) Internal Audit

Office of Inspector General (OIG) Internal Audit
SAFA- IFAC Regional SMP Forum

SAFA- IFAC Regional SMP Forum
PETER SCOTT CONSULTING Business Management Systemize your compliance with Rule 5 Peter Scott Peter Scott Consulting www.peterscottconsult.co.uk.

PETER SCOTT CONSULTING Business Management Systemize your compliance with Rule 5 Peter Scott Peter Scott Consulting

Similar presentations

Ads by Google