Wendy De Cruz
Businesses across APAC today face a complex and ever-evolving risk landscape, characterised by shifting geopolitical tensions, economic uncertainty and an evolving global regulatory curve. Alongside this, rapid advancements in technology are enabling rising levels of fraud and threat actors are growing in sophistication.
- These shifts in the risk landscape are structural and will require businesses to navigate these challenging times cautiously, while at the same time not losing sight of the need to refine and tighten their due diligence efforts on third parties.
- Compliance and legal professionals can embrace agility and take on proactive roles in strategic business decisions.
- Using a six-step action plan, teams can meet compliance obligations in times of uncertainty.
Against this backdrop, our customers in APAC are facing ferocious headwinds as investors, shareholders continue to have a strong focus on growth. In addition, regulations continue to dynamically evolve coupled with increased oversight and regulatory action. By way of example, the Monetary Authority of Singapore (MAS) taking regulatory action for AML related breaches against 9 financial institutions and persons of interest (POIs). See MAS Takes Regulatory Actions against 9 Financial Institutions for AML-Related Breaches
In addition, we are also seeing an increase in regulatory and trade fragmentation as countries and businesses revisit their trade relationships and policy frameworks to enhance resilience. APAC customers, especially those with international exposure, are no exception and are increasingly reassessing their business and operational structure. This is driving a focus on trade compliance across the value chain particularly in technology, AI, semiconductors, biotech, and the critical minerals sectors.
With businesses diversifying trade relationships, developing new products, re-shoring production and entering new markets; Legal, risk and compliance professionals who can speak the business language and can navigate through emerging risks will set themselves apart. A deep and comprehensive understanding of the organisation's "trade flow” will enable them to:
- Provide valuable input into developing new products and solutions.
- Proactively evaluate current suppliers and possibly shift supply chains and/or reshore production.
- Suggest and enter new markets by onboarding new partnerships.
- Work with finance teams to verify identities and account verification prior to any transaction.
Drilling down: third-party risk
Third parties play a fundamental role in most businesses today – from suppliers to agents, to re-sellers and more. Third parties add substantial value to the bottom-line but can also introduce new risks.
It is therefore imperative that businesses conduct robust due diligence on all third parties – not just at the onboarding stage, but throughout the lifecycle. This demand for dynamic oversight means that risk and compliance teams are working with the business to increasingly identify any potential new risks, spot gaps and close loopholes as they sign business deals.
A six-step action plan can be a useful framework for corporate organisations to meet their compliance obligations while adapting through periods of uncertainty. Such steps generally include:
- Onboarding
At the onboarding stage, it is crucial to identify every third party. It is also an ideal time to refresh questionnaires so that they are designed with questions that can be verified, written free from legalese and are scored.
- Automated Screening
Focus on the first line of defence. Beyond access to a risk intelligence subscription database that covers global PEP, sanctions, law enforcement and negative media profiles; consider the ability to on a “need to know” basis identify bank accounts and IDs?
With cost under severe scrutiny, this is not the time to be asking for more resources. Organisations should think about how to integrate (as much as possible) reliable data into customer, supplier and finance ERP technology systems to screen and monitor third parties faster.
- Risk Ranking
Many firms rank their third parties according to risk factors which help them to identify higher risk relationships. Since sales and channel teams are in a race to bring in more topline revenue, this is an opportunity to recalibrate the firm’s risk methodology to reassess the new risks with new business goals and constraints.
- Enhanced Due Diligence (EDD)
EDD is often misunderstood as the costliest control. But the potential fines and/or penalties and reputational damage will be costlier. If a risk-based approach is in place, the scope of work will correlate to the risk tiers so that cost is appropriately justified.
- Ongoing Monitoring
Often an overlooked control - ongoing monitoring is especially essential since new risks can emerge at any time. Ongoing monitoring can be externalised to a trusted vendor. This will allow for scarce and valuable resources to be rediverted to higher value work.
- Test, Audit, Document
Controls that are often ignored until there is a lapse. If the approach to compliance obligations change, documentation is key to provide regulator with proof of action and comprehensive internal control.
Uncertainty in today’s global landscape isn’t a temporary disruption – it is a lasting structural shift. Regulators are making clear that they expect clear actions based on comprehensive framework, policies and tools. As scrutiny intensifies, the most successful organisations will be those that have solid foundations and agile compliance strategies, able to scale with trusted partners and make timely, confident decisions.
Read more about
Legal Disclaimer
Republication or redistribution of LSE Group content is prohibited without our prior written consent.
The content of this publication is for informational purposes only and has no legal effect, does not form part of any contract, does not, and does not seek to constitute advice of any nature and no reliance should be placed upon statements contained herein. Whilst reasonable efforts have been taken to ensure that the contents of this publication are accurate and reliable, LSE Group does not guarantee that this document is free from errors or omissions; therefore, you may not rely upon the content of this document under any circumstances and you should seek your own independent legal, investment, tax and other advice. Neither We nor our affiliates shall be liable for any errors, inaccuracies or delays in the publication or any other content, or for any actions taken by you in reliance thereon.
Copyright © 2025 London Stock Exchange Group. All rights reserved.
The content of this publication is provided by London Stock Exchange Group plc, its applicable group undertakings and/or its affiliates or licensors (the “LSE Group” or “We”) exclusively.
Neither We nor our affiliates guarantee the accuracy of or endorse the views or opinions given by any third party content provider, advertiser, sponsor or other user. We may link to, reference, or promote websites, applications and/or services from third parties. You agree that We are not responsible for, and do not control such non-LSE Group websites, applications or services.
The content of this publication is for informational purposes only. All information and data contained in this publication is obtained by LSE Group from sources believed by it to be accurate and reliable. Because of the possibility of human and mechanical error as well as other factors, however, such information and data are provided "as is" without warranty of any kind. You understand and agree that this publication does not, and does not seek to, constitute advice of any nature. You may not rely upon the content of this document under any circumstances and should seek your own independent legal, tax or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither We nor our affiliates shall be liable for any errors, inaccuracies or delays in the publication or any other content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the publication and its content is at your sole risk.
To the fullest extent permitted by applicable law, LSE Group, expressly disclaims any representation or warranties, express or implied, including, without limitation, any representations or warranties of performance, merchantability, fitness for a particular purpose, accuracy, completeness, reliability and non-infringement. LSE Group, its subsidiaries, its affiliates and their respective shareholders, directors, officers employees, agents, advertisers, content providers and licensors (collectively referred to as the “LSE Group Parties”) disclaim all responsibility for any loss, liability or damage of any kind resulting from or related to access, use or the unavailability of the publication (or any part of it); and none of the LSE Group Parties will be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, howsoever arising, even if any member of the LSE Group Parties are advised in advance of the possibility of such damages or could have foreseen any such damages arising or resulting from the use of, or inability to use, the information contained in the publication. For the avoidance of doubt, the LSE Group Parties shall have no liability for any losses, claims, demands, actions, proceedings, damages, costs or expenses arising out of, or in any way connected with, the information contained in this document.
LSE Group is the owner of various intellectual property rights ("IPR”), including but not limited to, numerous trademarks that are used to identify, advertise, and promote LSE Group products, services and activities. Nothing contained herein should be construed as granting any licence or right to use any of the trademarks or any other LSE Group IPR for any purpose whatsoever without the written permission or applicable licence terms.
