About Risk & Compliance
Lexis+ Risk & Compliance is an online practical guidance product for in-house legal and compliance teams dealing with the ever-increasing and ever-shifting burden of risk and compliance.
Risk management guides
Each guide identifies five key priorities for the area of risk, and gives a heads-up on why each is a priority area. The priority is explained in further detail, with a series of mini-checklists and action points.
Competition & antitrust law compliance
Having a clear understanding of the nature of competition law compliance and the associated risks/challenges for businesses is the first step to setting effective compliance arrangements. We help organisations with this.
GDPR compliance
Practical guidance tools, registers, training aids and other templates to help you comply with data protection law and manage privacy risks
Regulation
Helping in-house counsel, privacy and compliance professionals manage the regulatory burden. GDPR, BA, MLR and plenty more, we've got it covered.
Topics We Cover
Latest Risk & Compliance News
This week's edition of Risk and Compliance weekly highlights includes: the new Risk & Compliance forecast, the latest on data protection, financial...
EU Law analysis: The European Commission has issued long awaited comprehensive guidelines on the definition of AI systems, as established by...
Our new Risk & Compliance forecast (as at 18 February 2025) is now live. This month we report on items including: (1) plans to launch a Data...
The European Data Protection Board (EDPB) has announced the creation of a task force on AI enforcement, expanding the scope of its existing ChatGPT...
The European Data Protection Board (EDPB) has adopted a statement on age assurance, outlining ten principles for the compliant processing of personal...
Latest Risk & Compliance Practice Notes
Digital advertising channels—introductionFORTHCOMING CHANGE: On 24 May 2024, the Digital Markets, Competition and Consumers Bill received Royal...
Supply chains under data protection law—arrangements between controllers and processorsThis Practice Note introduces the requirements of the United...
New and updated content 2025—Risk & ComplianceThis Practice Note tells you, on a month-by-month basis, whether we have made substantive amendments to...
Direct marketing risk management guideLike most organisations, you are likely to invest substantial time and effort in your marketing activities, but...
Exclusion and limitation of liability—business-to-consumerFORTHCOMING CHANGE: On 24 May 2024, the Digital Markets, Competition and Consumers Bill...
Latest Risk & Compliance Precedents
Competition law concern report registerThis Competition law concern report register is designed to help you keep a record of suspected competition law...
Competition law compliance—tying/bundling checklist for staffAs products become more technically complex and contain integrated technologies and...
Competition law compliance—post-training assessment questions1How to use this testThese questions are designed to test your understanding after your...
Competition law compliance—post-training assessment answersQuestionCorrect answer1. Competition law protects business and consumers from...
PESTLE analysisThis Precedent PESTLE analysis contains a blank PESTLE analysis worksheet for completion along with a worked example to illustrate how...
Latest Risk & Compliance Q&As
Featured Risk & Compliance content
How to manage legal risk
How to manage legal riskIt is often said that running a business means taking risks and that the biggest risk an entrepreneur can take is not to think...
Can a limited company make a subject access request? Can a director of a limited company ask for recordings of calls with us? If yes, what personal data must we provide?
Can I charge a fee for dealing with a data subject access request?
Tipping-off and prejudicing an investigation
Tipping-off and prejudicing an investigationThere are several offences of tipping-off and prejudicing an investigation that apply to the regulated...
Dawn raid—who can raid my organisation and why?
Dawn raid—who can raid my organisation and why?The UK Government has legislated to permit a number of UK authorities to obtain search warrants to...
Contract management risk management guide
Contract management risk management guideWhy you need to manage this riskContract management is often seen by the business as an activity which is...
Confidentiality risk management guide
Confidentiality risk management guideWhy you need to manage this riskConfidential information is one of the most valuable assets of any business....
Money Laundering Regulations 2017—simplified due diligence
Money Laundering Regulations 2017—simplified due diligenceYou may apply simplified customer due diligence (SDD) measures in relation to particular...
SRA Code of Conduct for Solicitors, RELs and RFLs—for in-house lawyers
SRA Code of Conduct for Solicitors, RELs and RFLs—for in-house lawyersThis Practice Note provides guidance for in-house solicitors on the SRA Code of...
Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017—key information for businesses
Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017—key information for businessesThe Money...
Dealing with the National Crime Agency
Dealing with the National Crime AgencyThis Practice Note provides high-level guidance on dealing with the National Crime Agency. It sets out the role,...
Public statement on data breach
Public statement on data breachStatement by [insert name of organisation] concerning a significant [cyber attack OR data protection breach] on [insert...
Money Laundering Regulations 2017—nominated officer
Money Laundering Regulations 2017—nominated officerThis Practice Note sets out when organisations must appoint a nominated officer (sometimes referred...
Dealing with the Serious Fraud Office
Dealing with the Serious Fraud OfficeSFO—role and powersRoleThe Serious Fraud Office (SFO) is the authority in England, Wales and Northern Ireland...
How to conduct a legitimate interest assessment (LIA)
How to conduct a legitimate interest assessment (LIA)The UK General Data Protection Regulation (UK GDPR) permits processing of personal data where...
Refusing a data subject request—what is ‘manifestly unfounded or excessive’?
If a multinational company with entities in a number of EU states has registered a data protection officer (DPO) with the Information Commissioner’s Office (ICO), does it need to register a DPO in the other EU states where it has entities or is registration in one country sufficient?
Dealing with dawn raids by the Information Commissioner’s Office
Dealing with dawn raids by the Information Commissioner’s OfficeThis document reflects the UK GDPR regime. References and links to the GDPR refer to...
Associated legal terms
Advance payment bond
A financial guarantee provided when part payment against goods is made in advance of delivery.
Directive Wastes
Waste subject to the provisions of the Waste Framework Directive 2008/98/EC of 19 November 2008.
LIFT
NHS Local Improvement Finance Trust. LIFT is a vehicle for improving and developing frontline primary and community care facilities.
CONTACT US
