Home » Features » Is my business compliant? How to reduce the risk of a fine
Products & Services

Is my business compliant? How to reduce the risk of a fine

Covering your company against professional risks can be a moving target. Oliver Wharmby of brokers Lonsdale outlines some new threats.

Oliver Wharmby

Professional Risks image

Feedback from our client base over the last 12 months suggests that property professionals have faced some of the most challenging trading conditions and are likely to experience continued uncertainty and turbulent times over the next 12 months.

With new legislation such as GDPR, the lettings fee ban, mandatory CMP and regulation, our third edition of Professional Risk Associated With Property Professionals discusses the ever-evolving risks attached to running a property services business and how to best anticipate and mitigate risk going forward.


The new legislation is designed to help provide the consumer with more protection and comes with penalties for those who do not conform. We are all aware of GDPR, we also now know a lettings fee ban is going to be introduced and CMP is to be made mandatory. For those who do not comply, GDPR comes with financial penalties of up to four per cent of turnover or £20m, whichever the higher, for the most serious breaches.

The Consumer Rights Act requires agents to display clearly, online and in their office, which redress scheme they are part of and whether they do or do not form part of a CMP scheme. Trading Standards are entitled to impose fines of £5,000 per breach which could mean £20,000 if an agent does not disclose their redress scheme in the office and online and the same for CMP.

With new legislation, social media, online claims, chat rooms, blogs and No Win No Fee firms, claimants are far more educated and aware of their rights. Oliver Wharmby, Lonsdale.

Oliver Wharmby - Lonsdale - image

Oliver Wharmby

In our experience, having viewed many agents websites, under half of agents in England do not display their CMP position clearly and would therefore be liable for a fine if trading standards were to visit.

It is important to note that whilst most agents will have a PI policy, it will not cover the policyholder for fines. Whilst a PI policy does not cover fines, subject to policy terms and conditions, it should respond where a claim is brought by a third party who has suffered a loss as a result of the agent’s breach. Note: Some cyber liability policies are picking up GDPR fines, however this may not last long.


The chart on the next page shows the changes in claims frequency since 2010 categorised in to various activities.

Property management claims continue to show consistent frequency, however the most notable development in the last six to twelve months comes from the surge in claims due to deposits not being lodged on time and prescribed information being issued incorrectly. In only the first quarter of 2018 DAC has seen 25 per cent of their claims come from deposits not being lodged on time. This is up from three per cent for the whole year in 2017.

It has been well documented that the courts can award up to three times the value of the deposit where a deposit has not been lodged on time, therefore tenants are being much more attentive and especially if prompted by a No Win No Fee law firm.

It’s interesting to also note the reduction in personal injury claims which have typically been associated with No Win No Fee law firms. Perhaps they have switched allegiance.


The chart does not include cyber claims as cyber liability is not typically included under a PI policy, however it is important to note the increasing threat of cyber liability and especially now GDPR has come in to force.

  • Europol, the government agency responsible for monitoring crime across Europe, announced that cyber crime was the biggest threat facing computer users.
  • The PwC’s Global Economic Crime Survey (GECS) revealed that cyber crime is now the most common type of fraud for businesses in the UK.
  • Results found that 50 per cent of UK businesses were victims of cyber criminals in 2017 therefore one in every two UK businesses suffered a breach. The survey revealed 49per cent of all UK fraud related to cybercrime, whilst globally it accounted per cent for 31 per cent.

Nobody is immune to the threat of cyber-crime. It is important to ensure basic controls are in place:

  • Regular password updates on all devices.
  • Staff training to be aware of phishing emails and the damage they represent.
  • Software updates.
  • Ensure files are encrypted.
  • Monitoring of mobile and home working procedures
  • Cyber Liability Insurance

Cyber criminals are becoming increasingly sophisticated and would appear to have switched their attention from large international corporates to SME’s. The reason being SME’s are, typically, more vulnerable with weaker defences which make it easier for the hacker to penetrate IT systems.

The Cyber Liability insurance market is changing constantly. Policies are currently widely available, however vary in price and coverage. We recommend your cyber policy includes social engineering claims, cybercrime cover, business interruption, instant response cover and brand reputational damage protection.


Consumer protection is important and should be encouraged, however we are seeing an increasingly worrying trend where claimants are pursuing agents regardless of whether there is any substance to the claim, in the hope insurers shall settle. Typically, the claim values are low eg £2,500-£5,000 where going to court would cost the insurers more in defence costs therefore they settle out of court.

Record keeping
The importance of keeping up to date and accurate records is imperative when running any business, however when faced with a claim and especially a spurious claim it can be very difficult not to take it personally. To help defend your position, It is absolutely essential to always have accurate records in place including dated and timed phone notes. If insurers cannot mount a robust defence with good written evidence due to poor record keeping, this may result in a settlement regardless of whether the insured is at fault.

Terms of business
Review your terms of business (with a solicitor) to ensure they are as thorough as possible. Recently we have seen claims brought under PI policies that could have been avoided had the terms of business been more robust.

Example 1: Agents should protect their position as much as possible where market appraisals are provided. A market appraisal is an estimate only and not to be relied upon as an accurate assessment of value in place of a professional valuation. It should not be relied upon by a third party nor should it be used for loan purposes.

Example 2: Property owners insurance is taken out by a landlord to protect their rental property and the tenant that occupies it. A property manager has a duty of care to ensure the property they manage is suitably insured, however they cannot always rely upon the landlord to take out the correct policy, therefore it is sensible to clarify in the terms of business that the onus is on the landlord to ensure the correct insurance is in place for a rental property and that the property manager cannot be held responsible

Lodging deposits
We have already highlighted above the increased frequency of claims being brought against agents for failure to lodge deposits on time. Letting agents should have written and documented controls and procedures in place which are followed by all staff responsible for collecting deposits to ensure deposits are lodged and prescribed information issued within the required thirty day timeframe.

Check what system you have in place for lodging deposits. Can you improve your system through better diary systems, introducing internal audits, client account reconciliation?

We are seeing many agents choose to remove the risk entirely by outsourcing their client accounting functions.

  • Notify a circumstance as soon as you are made aware of it.
  • Disclose your business activities fully when applying and renewing your policy.
  • Pay the premium before the settlement due date.
  • Check with staff ahead of renewal to make sure there are no notifiable circumstances.
  • Check your policy is accurate and reflects the instructions given to the broker.
  • Review data processing and security procedures to ensure GDPR compliant.
  • Leave the renewal exercise until the last minute.
  • Admit liability or agree to a settlement without insurers authority.
  • Disclose insurers involvement when dealing with a claimant unless authorised to do so
  • Hide information regarding historical claims.
  • Leave viewers unattended and be especially vigilant on open days

There is no doubt we live in a litigious society where there is an ever-increasing claims culture. Advanced technology and extensive choice has influenced the consumer to become increasingly demanding.

With all the new legislation coupled with the assistance of social media, online claim centres, chat rooms, blogging, and No Win No Fee law firms, the claimant is far more educated and aware of their rights.

Whilst it is impossible to totally remove the risk of a claim being brought, there are measures and controls that can be implemented to help mitigate potential threats and we hope the above paper provides some useful guidance.

Lonsdale Insurance Brokers Ltd is a registered Lloyd’s broker, specialising in servicing the insurance needs of property professionals.

August 31, 2018

What's your opinion?

Please note: This is a site for professional discussion. Comments will carry your full name and company.

This site uses Akismet to reduce spam. Learn how your comment data is processed.