Regulatory change is no longer something firms respond to periodically. It is now a permanent feature of the landscape. Whether it is capital treatment for small depositors, Basel 3.1, or the wider direction of prudential reform, the cumulative effect is a steady reshaping of expectations around capital, reporting, governance and, crucially, implementation.
The Prudential Regulation Authority’s Strong and Simple framework is a good example of intent meeting reality. It is designed to create a more proportionate regime for smaller, domestically focused banks and building societies, simplifying areas such as capital, liquidity, reporting and disclosure, while maintaining resilience.
In principle, that is welcome. In practice, even simplification requires interpretation, and interpretation carries cost.
Basel 3.1 brings a different kind of pressure. Changes to capital calculations, credit and operational risk, reporting requirements and the introduction of the output floor will be felt most keenly by lenders focused on core activities such as mortgages and savings.
These are not abstract regulatory concepts. They go directly to how firms price risk, allocate capital and run their businesses day to day.
CHALLENGES
The real challenge is not understanding what the rules say. It is translating them into something that works across the business, within the time available, and without creating unintended consequences elsewhere.
That requires a coherent approach across operating models, policies, systems and, perhaps most importantly, the people expected to deliver the change.
This is where pressure tends to build. Regulatory change does not sit neatly in one part of the organisation. It cuts across risk, finance, compliance, operations, technology and the front line. Firms often respond by creating multiple workstreams covering interpretation, systems, controls and training.
Sensible in structure, but in practice this can still result in fragmented delivery. Policies evolve in one place, processes in another, and data requirements somewhere else entirely.
Capacity only compounds the issue. Few firms are dealing with a single reform in isolation. Most are managing overlapping programmes with limited specialist resource and constant prioritisation decisions. The same individuals are asked to interpret regulation, redesign processes, support governance and oversee implementation.
The result is predictable: bottlenecks, compromises and a tendency towards tactical fixes rather than sustainable solutions.
DATA
Data sits at the centre of much of this. Both Basel 3.1 and the small depositors framework rely on accurate product mapping, clear customer identification, robust capital calculations and defensible regulatory reporting.
Where data lineage is weak, or information is fragmented across systems, delivery becomes slower, more expensive and harder to stand behind.
There is also a well-established gap between policy and practice. Updating governance papers and policy documents is rarely the difficult part. Embedding those changes into day-to-day operations is where firms tend to struggle.
Procedures, controls and training do not always keep pace with written frameworks, which can leave firms technically compliant on paper but operationally exposed.
Supervisory expectations have moved on accordingly. Regulators are less interested in whether a programme has been completed and more focused on whether the outcome is genuinely embedded, controlled and sustainable.
SUCCESS
In that sense, success is no longer about activity, it is about coherence. The firms that navigate this well will be those that resist the temptation to treat regulatory change as a series of isolated workstreams.
Instead, they will focus on simplification where possible, integration where necessary, and alignment between regulation, operations and accountability throughout.
That is what turns compliance into something credible, rather than simply complete.
