FCA Board Focuses on AI

by A new publication from the UK’s financial regulator signals to firms that they should take steps to manage risks in the use of AI.

Share this post

The UK’s Financial Conduct Authority (FCA) has published its latest board minutes highlighting its increasing focus on artificial intelligence (AI), in which it “raised the question of how one could ‘foresee harm’ (under the new Consumer Duty), and also give customers appropriate disclosure, in the context of the operation of AI”. This publication indicates that AI continues to be a key area of attention within the FCA. It also demonstrates that the FCA believes its existing powers and rules already impose substantive requirements on regulated firms considering deploying AI in their services.

In particular, the FCA’s new Consumer Duty imposes broad “cross-cutting” obligations on firms, including the obligation to avoid causing foreseeable harm to consumers, and the FCA has enforcement powers to ensure firms comply with these requirements. Although the board minutes state that the FCA “considered it was important to discuss opportunities for achieving good outcomes for customers, integrity in markets, as well as efficiencies in firms,” the clear focus of the FCA’s discussion is on consumer protection.

This position sits within the context of UK regulators’ continuing attention to the impact of AI on financial services and its consequences for consumers, and follows two other significant developments in this area:

  • the FCA’s August 2022 Discussion Paper with the Bank of England and the Prudential Regulation Authority, which considered the benefits of AI in financial services and the relevance of regulatory requirements in mitigating associated risks; and
  • the July 2023 speech by Nikhil Rathi, the FCA’s Chief Executive, setting out the FCA’s regulatory approach to Big Tech and AI.

The board minutes reference the July 2023 speech, which also emphasised that the FCA regards existing UK regulatory frameworks as addressing many AI-associated risks — in that case highlighting both the Consumer Duty and the Senior Managers & Certification Regime (SMCR) which imposes requirements for senior managers to be ultimately accountable for a firm’s activities.

The FCA has in the past used its board minutes to flag its high-level regulatory approach, and the current board minutes are therefore significant in providing a clear signal to firms that the FCA expects them to take steps to manage risks in the use of AI under the existing regulatory regime, even while discussions are ongoing around the extent to which new rules will be required to address specific AI issues.

Article by Latham & Watkins (London) LLP

More To Explore


Are you a member of The Payments Association?

Member benefits include free tickets, discounts to more tickets, elevated brand visibility and more. Sign in to book tickets and find out more.


Log in to access complimentary passes or discounts and access exclusive content as part of your membership. An auto-login link will be sent directly to your email.

Having trouble signing?

We use an auto-login link to ensure optimum security for your members hub. Simply enter your professional work e-mail address into the input area and you’ll receive a link to directly access your account.

First things first

Have you set up your Member account yet? If not, click here to do so.

Still not receiving your auto-login link?

Instead of using passwords, we e-mail you a link to log in to the site. This allows us to automatically verify you and apply member benefits based on your e-mail domain name.

Please click the button below which relates to the issue you’re having.

I didn't receive an e-mail

Tip: Check your spam

Sometimes our e-mails end up in spam. Make sure to check your spam folder for e-mails from The Payments Association

Tip: Check “other” tabs

Most modern e-mail clients now separate e-mails into different tabs. For example, Outlook has an “Other” tab, and Gmail has tabs for different types of e-mails, such as promotional.

Tip: Click the link within 60 minutes

For security reasons the link will expire after 60 minutes. Try submitting the login form again and wait a few seconds for the e-mail to arrive.

Tip: Only click once

The link will only work one time – once it’s been clicked, the link won’t log you in again. Instead, you’ll need to go back to the login screen and generate a new link.

Tip: Delete old login e-mails

Make sure you’re clicking the link on the most recent e-mail that’s been sent to you. We recommend deleting the e-mail once you’ve clicked the link.

Tip: Check your security policies

Some security systems will automatically click on links in e-mails to check for phishing, malware, viruses and other malicious threats. If these have been clicked, it won’t work when you try to click on the link.

Need to change your e-mail address?

For security reasons, e-mail address changes can only be complete by your Member Engagement Manager. Please contact the team directly for further help.

Still got a question?