SFO Points Up to date Steerage on Evaluating Company Compliance Programmes

On 26 November 2025, the Severe Fraud Workplace (SFO) revealed up to date Steerage on Evaluating a Company Compliance Programme.

The brand new steerage replaces the earlier steerage launched in January 2020 and units out six eventualities through which the SFO could assess an organisation’s compliance programme.

Following the introduction of the “failure to forestall fraud” offence (efficient 1 September 2025), the up to date steerage features a state of affairs for evaluating whether or not an organisation has in place “cheap procedures” to fulfill the edge for a defence below the failure to forestall fraud offence.

The Six Situations

The steerage states that there are six eventualities through which the SFO could assessment an organisation’s compliance programme:

1. Deciding whether or not to carry a prosecution: in deciding whether or not to carry a prosecution, the SFO can have regard to the Full Code Take a look at throughout the Code for Crown Prosecutors and the elements set out within the Company Prosecution Steerage (which was additionally just lately up to date, in August 2025). Whether or not an organisation has in place an efficient compliance programme and its administration takes a proactive method to that programme – each on the time the offence was doubtlessly dedicated and on the time of the cost – are elements that shall be taken under consideration below each the evidential and public curiosity limbs of the take a look at.
2. Contemplating an organisation’s eligibility for a Deferred Prosecution Settlement (DPA): the SFO will even bear in mind whether or not an organisation had a proactive and efficient compliance programme on the time the potential offence was dedicated in contemplating whether or not to supply a DPA as a substitute of prosecuting, in accordance with the DPA Code.
3. Evaluating the appropriateness of a monitorship below any DPA: a DPA can embody phrases requiring an organisation to implement a compliance programme or make modifications to its current programme, and it could additionally require the appointment of a monitor. In in search of to incorporate such phrases in a DPA, the SFO might want to consider the existence or adequacy of an organisation’s compliance programme.
4. Evaluating whether or not an organisation has a defence of “ample procedures” to a cost of failure to forestall bribery: the defence to the failure to forestall bribery offence below part 7 of the Bribery Act 2010 is that if an organisation had in place, on the time of the bribe, “ample procedures” to forestall bribery. The statutory steerage issued by the Ministry of Justice units out six ideas in opposition to which this shall be evaluated and the SFO’s steerage cites the six ideas.
5. Evaluating whether or not an organisation has a defence of “cheap procedures” to a cost of failure to forestall fraud: the defence to the failure to forestall fraud offence below part 199 of the Financial Crime and Company Transparency Act 2023 is that if an organisation had in place, on the time of the fraud, “cheap procedures” to forestall fraud. The statutory steerage issued by the Residence Workplace units out six ideas in opposition to which this shall be evaluated. These ideas are comparable, however not similar, to the ideas within the steerage on failure to forestall bribery talked about above and the SFO’s steerage additionally cites these ideas.
6. Sentencing: in contemplating what sentence to hunt in respect of an organisation that has been efficiently prosecuted, the SFO can have regard to the Sentencing Council tips, which require dedication of an organisation’s culpability and hurt. The degrees of culpability and hurt shall be assessed to an extent on the effectiveness of an organisation’s compliance programme.

Along with now addressing the brand new offence of failure to forestall fraud, the up to date steerage builds upon the earlier steerage launched in January 2020 with extra sensible hints for corporates within the type of an FAQ.

Whereas the up to date steerage doesn’t reveal any notably novel insights into the best way through which the SFO will assess an organisation’s compliance programme (aside from that it is going to be “based mostly on the organisation’s particular person circumstances”), it does helpfully pull collectively the assorted totally different (and rising variety of) government-issued steerage notes on company compliance programmes (in addition to together with hyperlinks to steerage on compliance programmes issued by the US DOJ and the French AFA) and neatly outlines the circumstances through which an organisation’s compliance programme could be assessed.

A key takeaway for corporates is that the steerage reiterates the purpose that merely having insurance policies, procedures and controls in place will not be enough by itself to deem a compliance programme efficient, and that the SFO shall be wanting past this to “decide how insurance policies and procedures translate into conduct on the bottom.” This makes clear that corporates ought to guarantee they’re, at the least:

• repeatedly speaking their insurance policies and procedures to their workers members and related related individuals;
• conducting coaching on these insurance policies and procedures; and
• taking steps to measure their effectiveness inside their enterprise.

Moreover, the steerage states that the SFO will take into account any potential for circumvention of the methods and controls in place, for instance “having an approval course of in addition to a system for checking that needed approvals are in place and adhered to, for instance by way of periodic audits.”

General the replace reinforces the significance of organisations sustaining sturdy compliance programmes and repeatedly assessing whether or not they’re fit-for-purpose, to make sure they don’t fall brief within the occasion of an evaluation by the SFO.

On 26 November 2025, the Severe Fraud Workplace (SFO) revealed up to date Steerage on Evaluating a Company Compliance Programme.

The brand new steerage replaces the earlier steerage launched in January 2020 and units out six eventualities through which the SFO could assess an organisation’s compliance programme.

Following the introduction of the “failure to forestall fraud” offence (efficient 1 September 2025), the up to date steerage features a state of affairs for evaluating whether or not an organisation has in place “cheap procedures” to fulfill the edge for a defence below the failure to forestall fraud offence.

The Six Situations

The steerage states that there are six eventualities through which the SFO could assessment an organisation’s compliance programme:

1. Deciding whether or not to carry a prosecution: in deciding whether or not to carry a prosecution, the SFO can have regard to the Full Code Take a look at throughout the Code for Crown Prosecutors and the elements set out within the Company Prosecution Steerage (which was additionally just lately up to date, in August 2025). Whether or not an organisation has in place an efficient compliance programme and its administration takes a proactive method to that programme – each on the time the offence was doubtlessly dedicated and on the time of the cost – are elements that shall be taken under consideration below each the evidential and public curiosity limbs of the take a look at.
2. Contemplating an organisation’s eligibility for a Deferred Prosecution Settlement (DPA): the SFO will even bear in mind whether or not an organisation had a proactive and efficient compliance programme on the time the potential offence was dedicated in contemplating whether or not to supply a DPA as a substitute of prosecuting, in accordance with the DPA Code.
3. Evaluating the appropriateness of a monitorship below any DPA: a DPA can embody phrases requiring an organisation to implement a compliance programme or make modifications to its current programme, and it could additionally require the appointment of a monitor. In in search of to incorporate such phrases in a DPA, the SFO might want to consider the existence or adequacy of an organisation’s compliance programme.
4. Evaluating whether or not an organisation has a defence of “ample procedures” to a cost of failure to forestall bribery: the defence to the failure to forestall bribery offence below part 7 of the Bribery Act 2010 is that if an organisation had in place, on the time of the bribe, “ample procedures” to forestall bribery. The statutory steerage issued by the Ministry of Justice units out six ideas in opposition to which this shall be evaluated and the SFO’s steerage cites the six ideas.
5. Evaluating whether or not an organisation has a defence of “cheap procedures” to a cost of failure to forestall fraud: the defence to the failure to forestall fraud offence below part 199 of the Financial Crime and Company Transparency Act 2023 is that if an organisation had in place, on the time of the fraud, “cheap procedures” to forestall fraud. The statutory steerage issued by the Residence Workplace units out six ideas in opposition to which this shall be evaluated. These ideas are comparable, however not similar, to the ideas within the steerage on failure to forestall bribery talked about above and the SFO’s steerage additionally cites these ideas.
6. Sentencing: in contemplating what sentence to hunt in respect of an organisation that has been efficiently prosecuted, the SFO can have regard to the Sentencing Council tips, which require dedication of an organisation’s culpability and hurt. The degrees of culpability and hurt shall be assessed to an extent on the effectiveness of an organisation’s compliance programme.

Along with now addressing the brand new offence of failure to forestall fraud, the up to date steerage builds upon the earlier steerage launched in January 2020 with extra sensible hints for corporates within the type of an FAQ.

Whereas the up to date steerage doesn’t reveal any notably novel insights into the best way through which the SFO will assess an organisation’s compliance programme (aside from that it is going to be “based mostly on the organisation’s particular person circumstances”), it does helpfully pull collectively the assorted totally different (and rising variety of) government-issued steerage notes on company compliance programmes (in addition to together with hyperlinks to steerage on compliance programmes issued by the US DOJ and the French AFA) and neatly outlines the circumstances through which an organisation’s compliance programme could be assessed.

A key takeaway for corporates is that the steerage reiterates the purpose that merely having insurance policies, procedures and controls in place will not be enough by itself to deem a compliance programme efficient, and that the SFO shall be wanting past this to “decide how insurance policies and procedures translate into conduct on the bottom.” This makes clear that corporates ought to guarantee they’re, at the least:

• repeatedly speaking their insurance policies and procedures to their workers members and related related individuals;
• conducting coaching on these insurance policies and procedures; and
• taking steps to measure their effectiveness inside their enterprise.

Moreover, the steerage states that the SFO will take into account any potential for circumvention of the methods and controls in place, for instance “having an approval course of in addition to a system for checking that needed approvals are in place and adhered to, for instance by way of periodic audits.”

General the replace reinforces the significance of organisations sustaining sturdy compliance programmes and repeatedly assessing whether or not they’re fit-for-purpose, to make sure they don’t fall brief within the occasion of an evaluation by the SFO.