Operational Playbook · 14 min read

FCA AI Governance Playbook: SM&CR, Consumer Duty, Model Risk

An operational playbook for AI deployment under the FCA AI Approach — Senior Manager mapping (SMF4/SMF24), Consumer Duty outcome rubric, AI Risk Register schema, and the controls UK regulated firms are actually expected to operate.

Published 30 April 2026 · By Sunny Patel, Founder, Agentic AI Associates

This page is informational, not legal advice. Confirm all interpretations with your firm\'s legal and compliance functions.

Why this playbook exists

Most published material on FCA AI governance is written by law firms describing what the regulation says. That is necessary, but it is not sufficient. The Heads of Risk, COOs, and CTOs we work with at FCA-supervised firms in 2026 know what the regulation says. What they do not have is a clean operational map of what to actually run: which controls, which registers, which review cadences, which Senior Manager attests to what, and which artefacts a supervisor will ask to see when the firm is reviewed.

This page is that map. It is the operational view we have built and tested across 2025–2026 engagements with UK fintech, wealth, payments, and insurance firms. It does not replace legal advice or your firm\'s own compliance interpretation. It does give you a defensible starting point.

The regulatory stack you are operating against

For UK financial services firms in 2026, AI governance sits at the intersection of several regimes:

  • FCA AI Approach (published April 2024 and updated through 2025) — the FCA\'s articulation of how existing rules apply to AI
  • Senior Managers and Certification Regime (SM&CR) — accountability for AI outcomes attaches to named Senior Managers
  • Consumer Duty (PRIN 2A) — outcome-based standards applying to AI-influenced consumer touchpoints
  • SS1/23 model risk management (PRA, applicable to dual-regulated firms) — model risk principles, frequently used as a template even by FCA-only firms
  • UK GDPR + Article 22 — automated decision-making rights, including AI-driven decisions producing legal or similarly significant effects
  • Operational Resilience (PS21/3 and related) — important business services, including those underpinned by AI, must remain within impact tolerance
  • EU AI Act (where you have EU market or user exposure)

Operationally, the firms that implement this well treat the FCA AI Approach as the umbrella and pull specific obligations from the regimes underneath. The playbook below follows that pattern.

The FCA AI Controls Map

Eight control domains. Inside each, the specific controls we install in firms going through Phase-Gate Diagnostic engagements. Adjust to your tier and risk profile, but the domains themselves are non-negotiable.

Domain Controls
Identification
  • · Maintain an AI Inventory of every model, agent, and AI-influenced decision flow in production
  • · Each entry has owner, model + version, data classes, regulatory perimeter, deployment date, last-review date
Risk classification
  • · Classify each AI system on a 4-tier scale: Minimal / Limited / Significant / Material
  • · Material-tier systems require Board-level approval and a Model Risk attestation pack
Senior Manager accountability
  • · Each AI system has a named SMF owner (typically SMF24, SMF4, or SMF18)
  • · SMF holders attest quarterly that systems operated within boundary
Model risk
  • · Independent model validation for Significant and Material tiers
  • · Annual model review with documented re-attestation
  • · Performance drift monitoring with thresholds and escalation paths
Consumer Duty outcomes
  • · Outcome 1 — Products & services: AI-driven product features designed to consumer benefit
  • · Outcome 2 — Price & value: AI-driven pricing decisions tested for fair value
  • · Outcome 3 — Consumer understanding: AI-influenced communications meet plain-English standards
  • · Outcome 4 — Consumer support: AI-driven support flows tested for vulnerable customers
Audit & evidence
  • · Tamper-evident audit trail with 7-year retention
  • · Sample reviews of AI decisions feeding the Model Risk Committee
  • · Incident log linking AI events to firm-wide incident management
Third-party AI
  • · Outsourcing register entry for every external AI vendor
  • · Operational resilience assessment: what happens if vendor fails, raises prices 5×, or deprecates
Customer-facing transparency
  • · Disclosure to customers when AI materially influences a decision affecting them
  • · Right-to-human-review clearly documented and operational

The AI Risk Register schema

The single most-asked-for artefact in supervisory engagements. Every Material- and Significant-tier AI system in your firm has a record with these fields.

Field Type Description
system_id string (uuid) Internal identifier
name string Human-readable name
description string What it does, in plain English
tier enum: minimal | limited | significant | material Risk classification
smf_owner string Senior Manager Function holder
model + version string e.g. claude-opus-4-7@2026-01-15
grounding_sources array<string> Knowledge bases, vector stores, retrieval indices
data_classes set<string> e.g. {public, internal, customer_pii, financial}
regulatory_perimeter array<string> e.g. [Consumer_Duty, FSMA_Article_3, GDPR_Art_22]
consumer_facing boolean Does output reach a retail customer?
deployment_date date Production live date
last_review_date date Last Model Risk Committee review
next_review_due date Computed from tier (Material = 6mo, Significant = 12mo, lower = 24mo)
attestation_record string (link) Latest SMF attestation document
incident_log_link string (link) Reference to firm incident system
kill_switch string Documented procedure to disable the system in <60 minutes

A spreadsheet is fine for under 20 systems. Beyond that, you want a small internal application with versioning and event hooks into your existing GRC tooling. Whatever you build, make sure: (1) every record has a designated SMF owner; (2) the next-review-due date is enforced; (3) the record is referenced from every related artefact (model card, vendor contract, incident report).

SM&CR mapping in practice

The mapping between AI systems and Senior Manager Functions varies by firm structure. The patterns we see most often:

  • SMF24 (Chief Operations) — owns operational AI, including engineering automation, RPA, and back-office processing AI. In firms without SMF24, this commonly falls to SMF18 with the CTO carrying the responsibility
  • SMF4 (Chief Risk) — owns model risk attestation across the firm, the AI Risk Register itself, and the model validation function
  • SMF16 (Compliance Oversight) — owns the controls that ensure AI does not breach regulatory perimeter (financial promotions, advice boundaries, customer suitability)
  • SMF17 (MLRO) — for AI in financial crime detection, false-positive review, and SAR drafting
  • SMF3 (Executive Director) or SMF1 (CEO) — for Material-tier AI affecting strategic decision-making or significant customer outcomes

Whichever mapping you choose, document the rationale. When the regulator asks "why is SMF24 accountable for this AI?", the answer cannot be "because that\'s where it landed."

Consumer Duty for AI — the outcome rubric

Translating the four Consumer Duty outcomes into AI-specific tests:

  • Outcome 1 — Products and services. Does the AI feature deliver to the target market? Test: AI feature usage and outcomes broken down by customer segment, with vulnerable-customer cohorts identifiable. Evidence: quarterly product-outcome review with AI-specific section.
  • Outcome 2 — Price and value. If AI influences pricing or value (e.g. dynamic pricing, AI underwriting), is the outcome fair value? Test: comparative analysis of AI vs non-AI cohort outcomes; statistical fairness testing. Evidence: fair-value review packs include an AI dimension.
  • Outcome 3 — Consumer understanding. Are AI-generated or AI-shaped communications understandable? Test: readability scoring (Flesch-Kincaid or equivalent), comprehension testing on a sample, vulnerable-customer reviewer panel. Evidence: communication review log with AI-touched items flagged.
  • Outcome 4 — Consumer support. Do AI-driven support flows treat vulnerable customers no worse than non-AI flows? Test: vulnerable-customer outcome metrics on AI-handled vs human-handled cases; explicit escalation paths to human review. Evidence: customer support outcome reports with AI vs human comparison.

The hardest of these in practice is outcome 4. It requires the operational data to compare AI-handled and human-handled cases on like-for-like vulnerable-customer cohorts. Most firms do not have this data. Building it is a six-month effort and needs to start before AI-driven support reaches Material tier, not after.

The review cadence

What runs when, in a firm with mature AI governance:

  • Daily: automated drift and anomaly monitoring on Material- and Significant-tier systems, with on-call alerting
  • Weekly: incident triage if anything has been flagged; sample review of agent outputs feeding the next monthly review
  • Monthly: Model Risk Committee — reviews flagged samples, considers any tier changes, signs off changes to deployed agents
  • Quarterly: SMF attestations on each owned system; AI Risk Register full review; Consumer Duty AI section in the firm\'s outcome reports
  • Annually: independent model validation for Material tier; Board AI risk report; full kill-switch drill

Frequently asked questions

Who is accountable for AI under SM&CR?

A named Senior Manager Function holder for each AI system. The most common assignments in 2026 are SMF24 (Chief Operations) for operational AI, SMF4 (Chief Risk) for model risk and the AI Risk Register itself, SMF18 (Other Overall Responsibility) where SMF24 does not exist, and SMF16 (Compliance Oversight) for AI affecting regulatory perimeter such as financial promotions or advice. Accountability is not delegable — the SMF holder cannot push it to a vendor or to a junior team. They sign the attestation.

Does the FCA have an AI Register that firms have to file?

There is no public FCA-hosted register that firms file into as of April 2026. What the FCA does expect is that supervised firms maintain their own AI Inventory or AI Risk Register, available on request and aligned with the firm's governance and SM&CR responsibilities. The FCA AI Approach makes the inventory expectation explicit. Firms that cannot produce one within hours of a request are at supervisory risk.

How does Consumer Duty apply to AI-driven decisions?

Directly. The four Consumer Duty outcomes apply to any product, service, or communication that reaches a retail customer, including those influenced by AI. The most common operational gap is outcome 3 (consumer understanding) — AI-driven communications must be testable for plain-English clarity and for vulnerable-customer suitability. The second is outcome 4 (consumer support) — AI-driven support flows must not produce worse outcomes for vulnerable customers, and firms must be able to evidence this with data.

What is the difference between FCA Significant and Material AI risk tiers?

In our framework, Significant means the AI materially influences regulated decisions but is contained to a defined business unit; Material means the AI sits in a critical business service or directly produces customer-affecting outcomes at scale. Material tier triggers Board-level approval, an independent model validation, and a 6-month review cycle. The FCA does not mandate this 4-tier scheme — but it does expect firms to operate a risk-tiering approach proportionate to potential harm, and our scheme is one defensible interpretation.

Are large language models classified as Material risk by default?

No. The model is not the unit of analysis — the application is. A general-purpose LLM grounding internal documentation for a retrieval-augmented chatbot used by employees is typically Limited tier. The same model used to draft customer-facing responses without human review is Material tier. Tiering follows use, not technology.

Can we use ChatGPT Enterprise or Claude for Work and stay compliant?

Yes for non-regulated workloads, with controls. The vendor must be in your outsourcing register, the data classes that flow to the vendor must be approved, and the use case must sit in the appropriate risk tier. For regulated workloads — anything touching regulated decisions, customer data, financial promotions, or advice — you typically need an enterprise contract with explicit data residency, a UK or EU region, the vendor's SOC 2 / ISO 27001 evidence in your control library, and an attestation by the SMF owner that the use is bounded.

What is a "kill switch" and what makes one credible?

A kill switch is the documented procedure that disables an AI system in under 60 minutes from a single decision-maker. Credibility means it has been rehearsed, the access required to invoke it is held by a named on-call rota, and the action is audit-logged. Most firms write the procedure once at deployment and never test it. We recommend quarterly tabletop exercises and at least one annual live-trigger drill in a non-production-equivalent environment.

Where does the AI Act fit?

For UK firms, the EU AI Act applies if you place AI systems on the EU market or if your output reaches EU users. The Act's risk-tiering (Unacceptable / High / Limited / Minimal) is conceptually similar but legally distinct from FCA tiering. UK-only firms primarily follow the FCA AI Approach plus existing UK GDPR, FSMA, and Consumer Duty. Firms with EU exposure must operate both regimes, which usually means the stricter of the two becomes the operational standard.

Operationalise this in your firm

A Phase-Gate Diagnostic implements the controls map, AI Risk Register, and SMF attestation pack against your specific regulatory perimeter. Two weeks, £6,500, written deliverables your Senior Managers can sign on.

Book a Fit Call →