AML Risk & Compliance @ the Botanics

9:00 am – 3:45 pm on 20th June @ The Royal Botanical Gardens

Programme also available in PDF format.

It will be an informative and enjoyable day. You will depart the Botanics with an action plan of 4 or 5 items and that feeling of well-being you get when you know you have been part of something special.

09:00 – 09:30

Coffee/Tea, Bacon Rolls/Pastries and Registration

09:30 – 09:45


Introductions and Purpose of the Day

Graham Gibson, Kirklands, Perth

Protecting your firm, staff and partners/directors from

  • Regulatory breaches under the new 2017 AML Regulations
  • Fraudsters, including cyber criminals targeting your firm
  • Coming under Police suspicion as a “professional enabler” because you did not recognise or report criminal activity

Practical solutions for busy practitioners is the order of the day.

09:45 – 10:25


The current threats to businesses in Scotland from Fraudsters and Cyber Criminals

Mandy Haeburn-Little, CEO, Scottish Business Resilience Centre Ltd (SBRC)

Before you can start drafting your firm’s Risk Assessment and the "policies, controls and procedures" you are required to put in place to mitigate these risks, you need to know what the current threats are to businesses in Scotland.

  • The type of criminal activity that clients or related parties might be or might have been involved in to accumulate the criminal funds they are seeking to launder through you.
  • The threats to the firms themselves from fraudsters, including cyber criminals.

10:25 – 10:45


Briefing Note: Drafting and maintaining your firm’s new Risk Assessment

Graham Gibson, Kirklands, Perth

Under the 2017 Regulations the firm’s Risk Assessment will become the most important document in your AML Manual. In it you set out the risks facing your firm.

The rest of your AML Manual contains the policies, procedures and controls you have put in place to mitigate the risks you have identified.

  • Risk Assessment needs to be in place for next week!
  • Requirements of Regulations 18 and 19
  • Store, Keep up to date, Show Workings, prove distributed

10:45 – 11:05

20 min Refreshment break until 11:05

11:05 – 11:35


Current cyber security threats and how to combat them

Matthew Armsby, Head of Cyber Security at BC Technologies LLP, London

  • What are the main cyber threats facing solicitors in Scotland?
  • Insight into some of the cyber criminals’ methods and Tech.
  • Cyber Essentials you should have in place.

11:35 – 11:50


Briefing Notes: New requirements for Companies (& Trusts)

Graham Gibson, Kirklands, Perth

  • What CDD Information and Documents are required?
  • What information will you need from Company clients?
  • Which Officers/Beneficial owners do you need to ID & V?

11:50 – 12:30


Reporting Duties Workshop

Lindsay MacNeill, Pinsent Masons LLP, Edinburgh

Do you know when you have a duty to report? Do you know the penalties for failing to report?

  • Proceeds of Crime Act 2002
  • Criminal Justice and Licensing (Scotland) Act 2010
  • Financial sanctions

12:30 – 13:30

Lunch – Resume 13:30 (60 mins)

13:30 – 14:00


A post prandial PEP talk

Graham Gibson, Kirklands, Perth

Regulation 21 requires that you carry out screening of relevant employees and agents. This includes assessing the “skills, knowledge and expertise of the individual to carry out their function effectively”.

Here is a thought on how you might do this and (as importantly) record that you have done so. We will use Regulation 35 [PEPs (foreign and domestic)] as our Training Topic.

14:00 – 14:40

NCA Officer

The anatomy of a fraud. The warning signs that you are the target of a fraud

A Forensic Accountant, National Crime Agency

Many professionals believe their training will have made them immune to fraudsters, and that it won’t happen to them. The weakest link in all fraud prevention strategies is undoubtedly the human element.

If someone in your firm is being conned they are unlikely to see the overall plan until it is too late but, with training, they might spot some of the warning signs.

The officer will share knowledge of recent frauds perpetrated against professionals and the warning signs that should ring alarm bells.

14:40 – 15:00

Stretch break - resume 15:00

15:00 – 15:15


A heads up on the General Data Protection Regulation

Matthew Armsby, Head of Cyber Security at BC Technologies LLP, London

The GDPR will come into force on 25th May 2018. The fines that can be imposed for a breach makes this a business risk you will want to ensure is covered as part of your Risk and Compliance.

  • What changes will have most impact on legal businesses
  • What you need to start thinking about

15:15 – 15:35

All Speakers

Panel Session

  • An opportunity to re-visit a topic & clear the Parking Lot
  • Feedback Form

15:35 – 15:45


Review of the Day

  • Where to from here?
  • A Collaborative Risk Assessment for next week?

Conference closes at 15:45


A Private Tour of the Market Garden in the Botanics.

Drinks Reception at John Hope Gateway until 17:30.

Gardens close at 18:00.


We are particularly pleased to be an approved supplier with the Law Society of Scotland