UK Corporate Governance Code Consultation

On 24 May 2023 the Financial Reporting Council launched a consultation on proposed revisions to the UK Corporate Governance Code, the comply-or-explain framework that establishes governance expectations for companies with premium listings on the London Stock Exchange. The proposed changes emphasize board accountability for internal controls, sustainability integration into governance, and improved transparency on remuneration and succession planning.

Proposed Internal Control Enhancements

The most significant proposed changes strengthen board responsibilities for internal control and risk management systems. Building on lessons from corporate failures, the proposals would require more explicit board attestations and documentation of control effectiveness.

• Board declaration requirements. The revised Code would require boards to make an annual declaration on the effectiveness of material internal controls, moving beyond the current focus on financial reporting controls to encompass operational and compliance controls.
• Documentation expectations. Boards would need to document their basis for internal control effectiveness declarations, including the monitoring activities, testing results, and remediation actions supporting their conclusions.
• Control over financial reporting. Enhanced provisions address controls over the financial reporting process specifically, reflecting regulatory expectations for reliable financial statements and audit readiness.

Sustainability Governance Integration

The proposed revisions explicitly integrate sustainability and ESG considerations into the governance framework, reflecting the growing importance of environmental and social factors to long-term value creation and risk management.

• Board sustainability oversight. The Code would establish explicit expectations for board-level oversight of sustainability risks and opportunities, including climate-related factors.
• Strategy integration. Sustainability considerations should be integrated into strategic decision-making rather than treated as separate compliance exercises.
• Reporting alignment. Governance disclosures should support and align with sustainability reporting under other frameworks including TCFD and emerging ISSB standards.

Remuneration and Succession Changes

The proposals address executive remuneration practices and succession planning, areas where stakeholder expectations have evolved since the last Code revision.

• Malus and clawback provisions. Enhanced expectations for remuneration policies to include strong malus and clawback provisions, with clearer disclosure of circumstances triggering these mechanisms.
• Succession planning transparency. Boards would provide more detailed disclosure on succession planning processes for executive and board roles, demonstrating systematic approaches to leadership continuity.
• Stakeholder engagement. Remuneration committees should show consideration of stakeholder perspectives, including workforce views, when setting executive compensation.

Implications for Listed Companies

Premium-listed companies should assess current governance practices against proposed changes and engage with the consultation process to influence final requirements. Even before Code revisions take effect, investor expectations may shift based on consultation themes.

• Gap assessment. Review current internal control documentation, board oversight processes, and sustainability governance against proposed provisions to identify improvement opportunities.
• Consultation participation. Prepare and submit consultation responses addressing setup concerns and practical suggestions for effective requirements.
• Investor communication. Consider early communication with major shareholders regarding governance improvements underway, demonstrating responsiveness to evolving expectations.

Timeline and Next Steps

The FRC will consider consultation responses before publishing final revised Code provisions, with setup timelines providing companies transition periods for compliance preparation. Companies should monitor FRC communications for final requirements and effective dates while beginning preliminary compliance planning based on consultation proposals.

How to implement

Successful implementation requires a structured approach that addresses technical, operational, and organizational considerations. Organizations should establish dedicated implementation teams with clear responsibilities and sufficient authority to drive necessary changes across the enterprise.

Project governance should include regular status reviews, risk assessments, and stakeholder communications. Executive sponsorship is essential for securing resources and removing organizational barriers that might impede progress.

Change management practices help ensure smooth transitions and stakeholder acceptance. Training programs, communication plans, and feedback mechanisms all contribute to effective change management outcomes.

How to verify compliance

Compliance verification involves systematic evaluation of implemented controls against applicable requirements. Organizations should establish verification procedures that provide objective evidence of compliance status and identify areas requiring remediation.

Internal audit functions play an important role in providing independent assurance over compliance activities. Audit plans should incorporate risk-based prioritization and coordination with external audit requirements where applicable.

Continuous compliance monitoring capabilities enable early detection of control failures or compliance drift. Automated monitoring tools can provide real-time visibility into compliance status across multiple control domains.

Supply chain factors

Third-party relationships require careful management to ensure compliance obligations are properly addressed throughout the vendor ecosystem. Due diligence procedures should evaluate vendor compliance capabilities before engagement.

Contractual provisions should clearly allocate compliance responsibilities and establish appropriate oversight mechanisms. Service level agreements should address compliance-relevant performance metrics and reporting requirements.

Ongoing vendor monitoring ensures continued compliance throughout the relationship lifecycle. Periodic assessments, audit rights, and incident response procedures all contribute to effective third-party risk management.

Planning notes

Strategic alignment ensures that compliance initiatives support broader organizational objectives while addressing regulatory requirements. Leadership should evaluate how this development affects competitive positioning, operational efficiency, and stakeholder relationships.

Resource planning should account for both immediate implementation needs and ongoing operational requirements. Organizations should develop realistic timelines that balance urgency with practical constraints on resource availability and organizational capacity for change.

Monitoring approach

Effective monitoring programs provide visibility into compliance status and control effectiveness. Key performance indicators should be established for critical control areas, with regular reporting to appropriate stakeholders.

Metrics should address both compliance outcomes and process efficiency, enabling continuous improvement of compliance operations. Trend analysis helps identify emerging issues and evaluate the impact of improvement initiatives.

Where to go from here

Organizations should prioritize assessment of their current posture against the requirements outlined above and develop actionable plans to address identified gaps. Regular progress reviews and stakeholder communications help maintain momentum and accountability throughout the implementation journey.

Continued engagement with industry peers, professional associations, and regulatory bodies provides valuable opportunities for knowledge sharing and influence on future policy developments. Organizations that address emerging requirements position themselves favorably relative to competitors and build stakeholder confidence.

Iterate and adapt

Compliance programs should incorporate mechanisms for continuous improvement based on lessons learned, emerging best practices, and evolving requirements. Regular program assessments help identify enhancement opportunities and ensure sustained effectiveness over time.

Organizations that approach this development strategically, with appropriate attention to governance, risk management, and operational excellence, will be well-positioned to achieve compliance objectives while supporting broader business goals.

Related articles

Curated signals from the same pillar or overlapping topics.

Governance · Credibility 93/100 · January 1, 2025

UK Corporate Governance Code

The updated UK Corporate Governance Code took effect for financial years starting January 1, 2025. Key changes include more rigorous internal control assessments, expanded board declarations on fraud risk and material…

Governance · Credibility 86/100 · January 1, 2025

UK Internal Controls Code

UK premium-listed companies face new internal control disclosure requirements under Provision 29. The 2025 reporting cycle is your build year—get control inventories, testing frameworks, and evidence management in place…

Governance · Credibility 73/100 · January 22, 2024

United Kingdom governance

The UK's 2024 Corporate Governance Code revision takes effect for periods starting January 1, 2025. New provisions address board composition, internal controls, and audit committee responsibilities.

Governance · Credibility 73/100 · May 28, 2024

Nigeria and Nonprofit governance

Nigeria issued a dedicated corporate governance code for nonprofits, formalising board fiduciary duties, internal controls, and stakeholder reporting for charities and foundations.

Governance · Credibility 73/100 · January 5, 2022

China and Corporate governance

China’s updated CSRC Corporate Governance Code took effect 5 January 2022, compelling listed companies to sharpen board oversight, internal controls, and supplier transparency to meet Mainland capital market…

Continue in the Governance pillar

Return to the hub for curated research and deep-dive guides.

Visit pillar hub

Latest guides

• Board Oversight Governance Blueprint

  Unify Basel Committee, PRA, SEC, and ISSB oversight mandates into an auditable board governance operating model with data lineage, assurance cadences, and regulatory source packs.

• Governance, Risk, and Oversight Playbook

  Operationalise board-level governance, risk oversight, and resilience reporting aligned with Basel Committee principles, ECB supervisory expectations, U.S. SR 21-3, and OCC…

• Third-Party Governance Control Blueprint

  Deliver OCC, Federal Reserve, PRA, EBA, DORA, MAS, and OSFI third-party governance requirements through board reporting, lifecycle controls, and resilience evidence.

References

1. Consultation on the UK Corporate Governance Code — Financial Reporting Council
2. FRC consults on revisions to the UK Corporate Governance Code — Financial Reporting Council
3. ISO 37000:2021 — Governance of Organizations — International Organization for Standardization