Anti-Bribery Compliance
Verified against 4 sources
- Bribery Act 2010
- Ministry of Justice Guidance on Adequate Procedures (2011)
- Economic Crime and Corporate Transparency Act 2023 s.199
- SFO guidance on corporate co-operation
The Bribery Act 2010 is one of the toughest anti-bribery laws in the world. It applies to all UK businesses and to foreign companies that do business in the UK. Understanding your obligations and implementing proportionate anti-bribery procedures is essential to avoid criminal liability.
Key points
- The Bribery Act 2010 created a corporate offence of failing to prevent bribery by associated persons — the only defence is having adequate procedures.
- Bribing a public official, bribing any person, and accepting a bribe are all criminal offences with unlimited fines and up to 10 years' imprisonment.
- Facilitation payments — small payments to speed up routine processes — are bribes under UK law, unlike under US law.
- The Ministry of Justice has published six principles to guide businesses in implementing adequate anti-bribery procedures.
The Four Offences Under the Bribery Act
The Bribery Act 2010 creates four criminal offences: bribing another person (s.1); being bribed (s.2); bribing a foreign public official (s.6); and the corporate offence of failing to prevent bribery by an associated person (s.7). The first three apply to individuals and organisations alike. The fourth applies only to commercial organisations and is strict liability — the prosecution does not need to prove the company knew about or authorised the bribery.
The penalties are severe: individuals face up to 10 years' imprisonment and unlimited fines; organisations face unlimited fines. Conviction can also trigger debarment from public procurement contracts. The Act applies extraterritorially — it can apply to bribery committed anywhere in the world by UK-connected businesses.
The "Adequate Procedures" Defence
The only defence to the s.7 corporate offence is that the company had adequate procedures in place to prevent bribery. The Ministry of Justice has published guidance setting out six principles for adequate procedures:
- Proportionate procedures — tailored to the actual bribery risks the business faces
- Top-level commitment — senior management lead the anti-bribery culture
- Risk assessment — the organisation identifies and assesses its bribery risks
- Due diligence — on persons acting on the organisation's behalf
- Communication and training — staff are aware of the policy and procedures
- Monitoring and review — the procedures are kept under review and updated
For small businesses with low bribery risk, "adequate procedures" may simply mean a written anti-bribery policy and basic training. Larger businesses or those operating in high-risk sectors or countries will need more comprehensive programmes.
Practical Anti-Bribery Steps for Small Businesses
Most small UK businesses face relatively low bribery risk, but some basic steps are still advisable and may be required by larger clients or public sector contracts. At a minimum you should:
- Adopt a written anti-bribery policy stating zero tolerance for bribery, applicable to employees, contractors, and agents
- Train staff on what constitutes bribery and how to report concerns
- Review your gifts and hospitality arrangements — modest hospitality is generally acceptable but excessive gifts to win business are not
- Conduct basic due diligence on agents or intermediaries who act on your behalf, particularly in higher-risk countries
- Provide a confidential way for staff to report suspected bribery (a whistleblowing channel)
The Serious Fraud Office (SFO) and Crown Prosecution Service (CPS) have both prosecuted companies under the Act — compliance is not merely theoretical.
The Economic Crime and Corporate Transparency Act 2023
The Economic Crime and Corporate Transparency Act 2023 (ECCTA) significantly strengthens the UK's corporate criminal liability framework. Most significantly for businesses, it creates a new failure to prevent fraud offence under section 199 (in force from 1 September 2025 for large organisations). This mirrors the structure of the Bribery Act's s.7 offence: a large organisation is criminally liable if a person associated with it commits fraud for the organisation's benefit, unless the organisation can demonstrate it had reasonable fraud prevention procedures in place.
For the purposes of the fraud prevention offence, a "large organisation" is one that meets at least two of: more than 250 employees; more than £36 million annual turnover; more than £18 million total assets. Smaller businesses are currently outside the direct scope, but supply chain pressure from larger customers — who must demonstrate due diligence over their associates — will increasingly push the standard down the chain.
ECCTA also introduces a new identification doctrine for economic crimes: companies can now be held criminally liable when a "senior manager" (not just the board) commits fraud or false accounting in the course of their functions. This is a major expansion of corporate criminal liability and substantially increases the risk of prosecution for large professional services firms, financial institutions, and corporates. Businesses should review their fraud risk assessment alongside their anti-bribery risk assessment and consider whether their existing adequate procedures would also satisfy the fraud prevention standard — the two frameworks are closely aligned.
Frequently asked questions
Are corporate hospitality and gifts allowed?
What is a facilitation payment?
Does the Bribery Act apply to my overseas operations?
What is the new failure to prevent fraud offence and does it affect my business?
What records should we keep to demonstrate adequate procedures?
What to do next
- 1
- 2
- 3
Official bodies and resources
Companies House
GovernmentIncorporates and dissolves limited companies, registers company information, and makes it available to the public.
HM Revenue & Customs
GovernmentResponsible for collecting taxes, paying some forms of state support, and administering national insurance.
Was this page helpful?
Related guides
Modern Slavery Statements
The Modern Slavery Act 2015 requires larger UK businesses to publish an annual transparency statement setting out what steps they have taken to ensure their supply chains and operations are free from modern slavery and human trafficking.
5 min
Essential Workplace Policies
Well-drafted workplace policies protect your business from legal claims, set clear expectations for staff, and demonstrate compliance with employment law. Some policies are required by law; others are best practice. This guide covers what you need.
6 min
Equality Act Duties for Employers
The Equality Act 2010 consolidates and strengthens discrimination law in Great Britain. As an employer you have legal duties not to discriminate against workers or job applicants based on any of the nine protected characteristics, and to make reasonable adjustments for disabled people.
6 min
Whistleblowing Policies for Employers
Whistleblowing — the reporting of wrongdoing in an organisation — is protected by the Public Interest Disclosure Act 1998 (PIDA). Workers who make a protected disclosure cannot lawfully be dismissed or subjected to any detriment. Employers who retaliate face potentially unlimited tribunal awards.
5 min
Disclaimer