Determining whether and how financial services regulation applies to your business may not be top of your list in the early stages but it is a crucial hurdle to jump if you are starting-up in the FinTech space.
Starting any new business or ground-breaking project is exciting and there are many issues to juggle. Grappling with financial services regulation is unlikely to be top of most people's to-do lists. In recent years, though, the UK has seen a rapid evolution in FinTech, attracting the attention of the Financial Conduct Authority (FCA) and bringing an extra range of considerations for FinTech businesses. Right from the early start-up days and throughout the lifecycle of the business, entrepreneurs should be aiming to build a sustainable business model that, where required, operates in compliance with financial services regulation.
Determining if, and how, regulation applies to your FinTech business is key. Checking the UK FCA's authorisation requirements at the outset allows you to adopt a framework that is effective today and flexible enough for the future.
The UK regulates certain activities carried on in relation to a range of payment, investment and lending propositions which means, as a general rule, a FinTech business needs to consider at an early stage whether it requires regulatory approval to conduct business in the UK. A surprising range of business models need regulatory approval to operate in the UK – even when they are not based in the UK.
The FCA's application process, if managed well, need not be overly complicated or intrusive. The typical authorisation timeframe with appropriate resources in place can comprise a six week pre-submission preparation period, followed by a statutory post-submission period (of up to six months) for the FCA to consider the application.
A culture of compliance should not impede innovation
Authorisation usually brings firms within a range of rules and requirements about how their business is run. These issues are not unique to FinTech businesses – the UK regulators generally intend their rules to be business model neutral. The FCA, with its consumer protection objective, is particularly keen that firms can demonstrate they have a compliance culture at their core. Firms may feel the regulatory regime constricts them with rules that are often perceived to be vague (and, therefore, difficult to comply with). But the outcomes-based theme to most UK regulation can actually benefit the FinTech sector, as it leaves the door open for creativity and a new, proportionate approach to compliance.
What does compliance look like for FinTech businesses?
The basic starting point has to be an intention to put consumer protection at the heart of your firm's approach and following the FCA's mantra of "doing the right thing". From this point the FCA expects the firms it regulates, even if small and entrepreneurial, to implement effective compliance policies and procedures. In small entrepreneurial businesses, this might include:
- ensuring the management team has the intention to comply with regulation, supported by appropriate training and systems and controls;
- understanding how your services may cause unfair outcomes for consumers even if you do not have direct consumer interaction;
- designing an approach to sales and marketing activities which includes processes to review client communications for compliance with financial promotions requirements and to minimise mis-selling risks;
- ensuring terms and conditions are fair and can be easily understood;
- ensuring your complaints process meets FCA requirements;
- setting a reward and incentives structure that does not encourage excessive risk; and
- regularly reviewing your systems and controls processes (e.g. to address risks from bribery and money laundering).
Controlling legal and regulatory risk is the senior management's responsibility even in a small business. This means establishing the right environment and attitude to ensure the strategic aims of the business provide fair and sustainable outcomes for consumers. See our article, "Moving to a culture of individual accountability and doing the right thing".
What can happen if you get it wrong?
While it is easy to balk at the idea of compliance, the costs and drain on time of getting it wrong can be drastic for both businesses and individuals and you are likely to face:
- a high degree of regulatory scrutiny;
- legal and regulatory sanctions, including personal prohibitions, criminal penalties, fines, restrictions on activities and business closure;
- adverse publicity and reputational damage;
- difficulty obtaining investment or leverage;
- deals to sell the business falling through; and/or
- the value of the business being impaired.
Influence the future
A really significant way to ensure that regulation develops in a proportionate way is to help set the regulatory agenda. Firms will want to consider influencing the UK's national policy and strategy towards FinTech. In this vein, the FCA's Project Innovate is designed to encourage firms to bring innovation to the financial services market. This initiative captures the concept of sharing expertise and nurturing learning on a two-way basis.
In August 2014, the Chancellor of the Exchequer, George Osborne, launched a new industry trade body, Innovate Finance, established to promote the interests of the UK's FinTech sector. At the launch, the UK government announced initiatives to help FinTech businesses prosper, with the intention of placing London and the UK at the forefront of a significant transformation in the provision of financial services. See our article, "Support for UK's FinTech Sector".
The door is open for FinTech
We believe there is an abundance of opportunity in this sector for innovative businesses. The way consumers interact with financial services products will change beyond all recognition in the years to come. Regulatory compliance has the potential to absorb management time and can be seen as a diversion from the core objectives of the business, but getting the culture right from the outset will pay dividends in the future.