The end of the Shareholder Rule: How the Privy Council redefined legal privilege in corporate law
In a decision that has reset the boundaries of corporate privilege, the Judicial Committee of the Privy Council has abrogated the so-called “Shareholder Rule” — a principle long thought to be embedded in English law. For more than a century, companies were prevented from asserting legal privilege against their shareholders, based on the idea that […]
The metadata trap: Why word docs won’t save you from an SRA fine
It’s a compliance horror story just waiting to happen. A firm receives notice of an inspection from the SRA. In response, they quickly pull together their AML policy or firm-wide risk assessment, convert it to a PDF, and send it off. The PDF, of course, was created that morning. And therein lies the […]
Astute LXP July 2025 Release Notes: Previous LMS Records and Platform Speed Boosts
Import historic training data and keep training cycles uninterrupted Moving to a new platform should never mean losing sight of your past results. With the July 2025 release, our new Previous LMS Records lets you bring every completion, score and expiry date from your former system straight into Astute. A single, secure upload […]
Local authorities and failure to prevent fraud: preparing for scrutiny
From 1 September 2025, a new corporate offence comes into force in the UK: failure to prevent fraud. Introduced under the Economic Crime and Corporate Transparency Act 2023 (ECCTA), the offence is designed to tackle the corporate enablers of fraud by imposing criminal liability on organisations that profit, whether intentionally or not, from fraudulent conduct […]
Data protection in Africa: key regulatory developments
The African landscape of data protection has shifted from peripheral concern to core business risk. As Africa’s digital economy surges, set to top $180 billion by 2025, data is now a key asset, and governance around it is becoming a major compliance frontier. While traditional risks like bribery and money laundering still matter, data protection […]
Conversational Learning and communities of practice
Most workplace learning doesn’t happen in a classroom, a webinar, or a formal module. It happens informally; in conversations with colleagues, quick questions over Slack, shared how-to videos, and lessons picked up on the job. This invisible learning makes up the bulk of real knowledge transfer inside organisations. According to the 70:20:10 model, just […]
Compliance alert: Is your firm ready for the 2026 internal controls declaration requirement?
The UK Corporate Governance Code 2024 has introduced a major shift in compliance and reporting expectations for companies listed under the “Equity Shares (Commercial Companies)” category on the London Stock Exchange. From financial years beginning on or after 1 January 2026, companies must include a formal board declaration in their annual reports on the effectiveness of […]
The Data (Use and Access) Act 2025: Implementation timelines for your business
The UK’s Data (Use and Access) Act 2025, which received Royal Assent on 19 June 2025, marks one of the biggest data governance reforms since the Data Protection Act 2018. Its rollout is being staged, with certain provisions coming into force immediately and others subject to secondary legislation over the coming year. Here’s a deeper […]
Compliance with failure to prevent fraud offence: Key questions your firm must answer
The failure to prevent fraud offence, coming into force on 1 September 2025, places a clear responsibility on large organisations to proactively prevent fraud by associated persons. The offence does not require knowledge or involvement by senior management; it is enough that fraud was committed with an intent to benefit the organisation or its clients. […]
Wilko’s costly collapse: The Employment Rights Bill and collective consultation
In June 2025, an employment tribunal handed down a costly lesson to Wilko, the household retail name whose 2023 collapse resulted in thousands of redundancies. The tribunal found Wilko had breached its collective consultation duties, exposing the company to protective awards topping £2 million. While £2 million might feel significant on paper, the Employment […]
