Explore our content centres
Browse specially collated resources across key compliance topics to support your staff compliance training.
Explore alll topics: Cybersecurity, Employment Rights Act, and Fraud Prevention
.png)
Cybersecurity Content Centre
Access our collection of cybersecurity resources to help your organisation reduce human risk, strengthen security culture, and improve incident readiness.
-
Cybersecurity Incident Response Guide: A practical approach to documentation, communications, testing and the core response lifecycle.
-
Cyber Culture Clash Index Report: Insights into the gap between cybersecurity policy and real‑world practice, and how to close it.
-
Careless Clicks Report: Survey findings on risky clicks, weak password habits and training gaps — plus practical actions to reduce exposure.
-
Cybersecurity Toolkit: Checklists, phishing red flags, FAQs and training guidance to embed secure behaviours across teams.
-
Microlearning: Spot a Phishing Attempt: How to spot phishing indicators, verify safely, and escalate quickly if unsure or compromised.
-
FAQs: Preparing for a Cybersecurity Incident: What a strong response plan should include, roles & comms, exercises, and key regulatory considerations.
Employment Rights Act Content Centre
Access our collection of ERA‑focused resources to help your organisation meet the new prevention and accountability standards.
- ERA Employer Guide: Key changes and prevention duties under ERA 2025
- ERA Employer Checklist: Clear steps to evidence compliance in practice
- The Silence Report: UK‑wide whistleblowing and harassment insights
- Understanding Harassment: Microlearning training aligned to ERA’s prevention standard
.png)
Fraud Prevention Content Centre
Access resources from compliance insights to practical tools, guides, and reports designed to help your organisation prevent fraud.
- Seminar: Inside the Mind of a Fraudster featuring Alex Wood (BBC Scam Secrets)
- Understanding Fraud Compliance (EU): Microlearning training available in multiple languages
- Fraud Prevention Guide: Practical steps to strengthen controls and improve fraud awareness
- Social Engineering and Fraud Risk: How evolving scams, deepfakes, and new EU regulations are reshaping fraud risk
Explore our guides
Review our collection of guides across key compliance topics and compliance e-learning insights.
Employment Rights Act UK: An employer guide
What does it include:
- A concise overview of how ERA 2025 raises employer accountability and makes prevention a legal duty
- Practical guidance on managing harassment as a systemic risk with tailored, environment‑specific controls
- Clear steps for handling sexual‑harassment disclosures as protected whistleblowing from 2026
- UK‑wide insights revealing reporting gaps and cultural barriers from FOI‑based whistleblowing analysis
- Checklists to help evidence compliance and maintain auditable prevention measures
Guide: Social Engineering and Fraud Risk
What does it include:
- A clear breakdown of today's most common social‑engineering tactics, from enriched impersonation to deepfakes and AI‑generated fraud scripts.
- Insight into how fraud is shifting from technical breaches to psychological manipulation, and why this makes customers and employees more vulnerable.
- A practical overview of upcoming PSD3/PSR requirements, including liability changes, name‑matching rules, and expectations for human‑led fraud support.
Who's it for?
- Compliance & Risk leaders
- L&D/Training managers
- HR & People teams
- Customer‑facing teams who need to recognise manipulation cues
Cybersecurity Incident Response Guide
What does it include:
- Why a written incident response plan reduces confusion, speeds recovery, and protects evidence during the first critical day
- What good response documentation looks like, including how incidents are detected, who is notified, and how systems are restored
- Practical guidance on strong incident communications and core response lifecycle steps
- The value of tabletop exercises and practice scenarios
- Considerations for external support (e.g., forensics) and meeting legal/regulatory reporting requirements
Who's it for?
- Incident response leads and technical responders
- IT, Security and operational resilience teams
- Legal, compliance and communications stakeholders
- Senior leaders who sponsor incident readiness and recovery
Fraud Prevention Good Practices Guide
What does it include:
- Overview of UK Fraud Act and ECCTA 2023
- Common fraud types and warning signs
- The Fraud Triangle explained
- Fraud prevention strategy framework
- Risk assessment checklists for internal and external threats
- Links to official fraud prevention resources
Who's it for?
- Compliance and risk teams
- Finance and audit professionals
- HR and procurement managers
- Senior leaders seeking robust fraud controls
Guide to Senior Managers and Certification Regime (SMCR)
Why it matters: SMCR places personal accountability on individuals, making it essential that firms clearly allocate responsibilities, embed good conduct, and demonstrate effective oversight.
What you get: Clear, practical guidance on senior manager responsibilities, certification requirements, conduct rules, statements of responsibilities, and ongoing governance under SMCR.
Key benefit: Greater clarity, consistency and confidence in meeting SMCR obligations, helping firms reduce regulatory risk and withstand scrutiny.
Financial Crime Prevention Best Practice
Why it matters: Regulatory inspections and new legislation demand more tailored, data-driven training approaches.
What you get: Research-based insights on current practices, future trends, and practical steps for improving financial crime training.
Key benefit: Benchmark your approach against industry best practice and prepare for upcoming regulatory expectations.
Buyers Guide to Compliance
Why it matters: A poorly chosen platform can lead to inefficiencies, compliance gaps, and wasted investment.
What you get: A structured approach to evaluating systems, engaging stakeholders, and managing vendor trials.
Key benefit: Streamline decision-making, avoid common pitfalls, and choose a platform that meets your business needs.
Enhancing ROI with FastTrack
Why it matters: Mandatory training often feels repetitive and drains productivity. FastTrack streamlines learning while maintaining compliance integrity.
What you get: A practical guide to pre-course assessments, adaptive learning, and ROI reporting.
Key benefit: Demonstrate cost savings and efficiency gains with clear, data-driven insights.
Innovating Compliance with Enhanced Learning
Why it matters: Traditional compliance training often overwhelms staff and fails to engage. Enhanced Learning makes it smarter and more effective.
What you get: Practical strategies for diagnostics, FastTrack, microlearning, and AI-powered support.
Key benefit: Reduce training fatigue, personalise learning, and improve compliance outcomes.
Browse our reports
Read the research findings from essential areas of compliance and e-learning.
Leeds Reforms: Reshaping UK Financial Services Regulation
Why it matters: The UK is simplifying regulation to boost global competitiveness, speed up authorisations, enhance Consumer Duty, and modernise market infrastructure. Firms must understand the regulatory direction to stay compliant and competitive.
What you get: Clear explanations of the reforms, FCA and PRA priorities, changes to SMCR, payment ecosystem modernisation, and market shifts.
Key benefit: Understand what’s changing and how to adapt your compliance framework for the years ahead.
Cyber Culture Clash Index Report
What does it include:
- Analysis of the gap between what organisations say they do on cybersecurity and what happens in practice.
- Findings on where “robust” cyber strategies break down when policies don’t translate into real‑world action.
- Practical insight into how weak cyber culture and insufficient training increase risk — and what stronger organisations do differently.
- Sector comparisons showing where policy and practice are aligned (or misaligned) and what that means for resilience.
Who's it for?
- Senior leaders responsible for cyber resilience and culture
- CISOs, IT and Security leaders
- Compliance, risk and operational resilience teams
- L&D teams supporting security behaviour change
Careless Clicks Report
What does it include:
- Survey insights from UK financial services on confidence vs real cyber habits, including risky click behaviour.
- Key findings on weak password practices and gaps in regular cybersecurity training.
- Practical actions organisations can take to close behaviour gaps using training and scenario‑based reinforcement.
- “Test your knowledge” style phishing scenario and a concise action set for teams.
Who's it for?
- CISOs, IT security and operational resilience leaders
- Compliance, conduct risk and culture teams
- Business unit leaders accountable for staff cyber readiness
- L&D teams shaping security training programmes
Cost of Compliance Report
Why it matters: Fines hit record levels in 2024, yet many teams still lack executive buy‑in and rely on manual tools that increase risk. Turning compliance into value requires better data, smarter training and stronger culture. [
What you get: Clear arguments, evidence and examples to support investment and modernise training.
Key benefit: A practical narrative to secure sponsorship, reduce remediation costs and lift confidence across customers, investors and staff.
The Silence Report: Whistleblowing and Harassment Across the UK
What does it include:
- UK‑wide analysis of whistleblowing activity and harassment reporting trends, based on FOI data from councils across the UK
- Evidence showing rising harassment concerns but very few internal whistleblowing disclosures, highlighting major reporting gaps
- Insights into cultural barriers such as fear of retaliation, unclear reporting routes and low confidence in internal systems
- Context on how ERA 2025 strengthens protections for sexual‑harassment disclosures by treating them as protected whistleblowing
.png)
Moving from Policy to Proof: Employment Rights Act
What does it include:
- Shift from policy-based compliance to evidence-based “proof” of harassment prevention under ERA 2025.
- A full end-to-end operating framework covering policies, reporting routes (including anonymous), investigations, escalation paths, and anti-retaliation controls.
- Strong focus on measurement and data use, including tracking training completion, case timelines, reporting trends, and maintaining auditable records.
- Guidance on culture, governance, and risk management, including third-party conduct, contracts, documentation standards, and continuous monitoring systems.
Who's it for?
- HR / People teams
- Compliance & Legal teams
- Senior leadership
- Line managers / supervisors
Annual Benchmarking Report 2026
What does it include:
- Executive summary: the three actions most likely to improve compliance training outcomes.
- Survey analysis across 17 questions, organised by four pillars: Innovation, Data‑led Compliance, Culture, Conduct & Ethics, and Value.
- Topical deep dives: reinforcement, training impact, AI adoption, data & tooling, regulatory requests, speak‑up channels.
- Sector view: Financial Services vs Non‑FS — adoption patterns and board engagement.
Who's it for?
- Compliance & Risk leaders
- L&D/Training managers
- HR & People teams
- And anyone tasked with evidencing compliance effectiveness
ECCTA Regulations Report
Why it matters: ECCTA shifts the burden onto companies to prove they have strong fraud prevention controls. Poor governance, overdue filings, and opaque ownership can trigger investigations and prosecution.
What you get: A breakdown of sector readiness, red flags, and practical recommendations to improve ECCTA compliance.
Key benefit: Benchmark your organisation against UK industry performance and identify urgent areas for reform.
The DORA Readiness Report
Why it matters: DORA enforces consistent ICT risk management, testing and incident reporting for EU‑facing firms and critical third‑party providers. Weak complaint handling, low certification uptake and incident spikes are red flags.
What you get: A ranked readiness index and sub‑sector‑specific weaknesses to address.
Key benefit: Prioritised actions to raise resilience and meet supervisory expectations.
See our toolkits
Review collated resources from checklists, posters, and other components designed to support your staff compliance.
Anti-Bribery Toolkit
Why it matters: Anti-bribery compliance is critical for ethical business and legal protection.
What you get: Red-flag checklist, FCA training guide, gifts & hospitality rules, due diligence templates.
Key benefit: Prevent corruption, embed ethics, and stay audit-ready.
Cybersecurity Toolkit
Why it matters: Cyber threats like phishing, ransomware, and social engineering put every organisation at risk. Technology alone isn’t enough — your people are the first line of defence.
What you get: Staff cybersecurity checklist, phishing prevention guide, PCI DSS essentials, expert FAQs, and practical tips to reduce risk.
Key benefit: Strengthen resilience, embed secure behaviours, and protect your organisation from costly breaches.
GDPR Toolkit
Why it matters: GDPR protects privacy and builds trust; non-compliance risks severe penalties.
What you get: Self-assessment checklist, DSAR guide, cookie compliance tips, training pointers.
Key benefit: Reduce risk, save time, and stay audit-ready.