Skip to the content


OPAL is a low risk partner and will be a trusted extension of your business. We recognise that having external verification and regulatory responsibilities provide you with much more comfort than us just telling you we are good!

Therefore OPAL is:

Authorised and regulated by the Financial Conduct Authority and its predecessor since 2007.

A registered Data Controller with the Information Commissioner’s Office since 2005.

Accredited by the British Standards Institute since November 2009 as demonstrating compliance with the Information Security Management System standard ISO/IEC 27001:2013



We also have a highly experienced compliance team which has tremendous depth and breadth of regulatory and TCF knowledge gained over a combined 30 year period working for businesses large and small. It undertakes a range of compliance tasks at the request of our clients (relating to their business that we administer) as well as ensuring that OPAL remains compliant at all times, including:

Anti-Money Laundering Controls:

  • Using a fully automated system
  • Suspicious Activity reporting

Complaint Handling and Resolution:

  • A full service can be provided
  • Root Cause analysis


  • Risk-based monitoring plan
  • Call monitoring, Service Level reviews, regulatory, process reviews

Data Protection:

  • Data Protection regulation compliant processes

Breach and Risk Reporting:

  • Identification and Root Cause analysis

Management Information:

  • Monthly reporting, statistical and trend analysis

Special Investigations:

  • Ad-hoc projects to provide reassurance

Adding Value:

  • Reducing costs through efficient and effective recommendations
  • Feedback to enhance training
  • Implementation assistance and ongoing effectiveness review