About a-team Marketing Services
The knowledge platform for the financial technology industry
The knowledge platform for the financial technology industry

A-Team Insight Blogs

98% of Firms Not Ready for SM&CR, Finds ACA Compliance

Subscribe to our newsletter

Less than 2% of affected firms have completed sufficient preparation for the FCA’s upcoming Senior Managers and Certification Regime (SM&CR) while only 2% of employees have sufficient awareness of the new rules and their implications across the organisation, according to a new survey from ACA Compliance.

The new regulation is due to come into force in December this year, with a submissions deadline of November 24 for conversion from the Approved Persons Regime and a deadline of December 9 for solo-regulated firms (and December 10 for dual-regulated firms) to upload their data. With its shift towards individual responsibility, the regulation is expected to have a substantial impact on data management due to the increased personal data requirements, while it may also correlate with the growing focus on financial crime – the FCA in 2016 specifically highlighted financial crime as an area where senior management functions and prescribed responsibilities were not always assigned to sufficiently senior individuals.

But is the industry taking it seriously enough? From a pool of over 70 respondents including asset managers, hedge funds, private equity firms, broker-dealers and wealth managers, more than a quarter admitted that there is minimal general awareness of SM&CR outside of their compliance teams – and almost 60% are less than a third of the way through their SM&CR projects, despite implementation looming just four months away.

“Without a doubt, solo-regulated firms need to accelerate the pace at which they are preparing for the SM&CR in the UK. It’s a long road ahead for 98% of firms and it’s clear the amount of work required ahead of the deadline is being underestimated. For some, the coming of this new regime will necessitate substantial changes to both governance and culture,” says Adam Palmer, partner at ACA Compliance.

“There are new policies, processes, and documentation that solo-regulated firms must implement. The engagement that must take place with certain individual employees will take time if firms are prepared to make the necessary changes to their overall business culture required by the regulator. In addition, employees across the firm need to be trained on SM&CR individually, as it will in many cases touch on their day-to-day roles. It’s important for firms to start working on SM&CR in earnest today.”

Subscribe to our newsletter

Related content

WEBINAR

Recorded Webinar: Managing Off-Channel Communications Compliance

Managing off-channel communications – business interactions occurring outside of approved corporate systems – continues to challenge firms’ compliance efforts. The rise of personal messaging apps, social media, and other unmonitored channels – for example, messaging functionality embedded in an order management system – exposes firms to substantial regulatory risk. Enforcement actions by regulatory bodies, such...

BLOG

Fenergo Enhances Financial Crime Compliance Capabilities with Agentic AI Integration

Fenergo has introduced an updated financial crime solution – the FinCrime Operating System (FinCrime OS) – featuring a new agentic AI layer aimed at significantly improving operational efficiency within financial institutions. This development comes against a background of spiralling operational costs and rising compliance demands enhanced by geopolitical tension and regulatory flux. Marc Murphy, CEO,...

EVENT

AI in Capital Markets Summit London

The AI in Capital Markets Summit will explore current and emerging trends in AI, the potential of Generative AI and LLMs and how AI can be applied for efficiencies and business value across a number of use cases, in the front and back office of financial institutions. The agenda will explore the risks and challenges of adopting AI and the foundational technologies and data management capabilities that underpin successful deployment.

GUIDE

The DORA Implementation Playbook: A Practitioner’s Guide to Demonstrating Resilience Beyond the Deadline

The Digital Operational Resilience Act (DORA) has fundamentally reshaped the European Union’s financial regulatory landscape, with its full application beginning on January 17, 2025. This regulation goes beyond traditional risk management, explicitly acknowledging that digital incidents can threaten the stability of the entire financial system. As the deadline has passed, the focus is now shifting...