PennSure - cover summary

PennSure provides reassurance on an unrivalled range of legal and regulatory matters.



This affects you and your fellow directors, officers and even employees as they have an unlimited personal liability for decisions and actions you make on behalf of your business. These can be civil, criminal and regulatory in nature. Put simply, these give rights to others including shareholders, investors, employees, customers and creditors to take legal action against you if they believe you have acted negligently or not in the interests of your business. Criminal or regulatory claims are those that impose a personal liability on you for your actions and numerous government regulators have the power to investigate or prosecute you. In the most serious of cases, you can be imprisoned. Even if you have done nothing wrong, you will need to incur significant legal costs in obtaining the necessary legal expertise for your defence.


As a business, you are responsible for the actions of your directors, senior staff and employees. As such, most claims made involve the business, either as the sole target or jointly with one or more individuals. Key risks to your business include the following:

Employment claims

These are by far the most common type of management liability claims and include claims for unfair dismissal and sexual, racial, gender or age harassment or discrimination. With an average cost of £20,000, such claims can be financially damaging as well as draining on management resource and potentially harmful to your business’s reputation.

Regulatory investigations and prosecutions

Red tape is a fact of business life and a common concern to business owners. With the complex regulatory landscape affecting all UK businesses, it is easy to see why there has been an increase in investigations and prosecutions. Actions can come from government-led regulators or be more industry-specific. A small sample of active regulators includes the following, all of which have the power to close your business or impose financially crippling fines:

  • Health and Safety Executive
  • Her Majesty’s Revenue and Customs
  • The Environment Agency
  • Local authorities
  • The Financial Conduct Authority
  • Serious Fraud Office
  • The Information Commissioner’s Office.

Shareholder/investor claims

Typically such claims are made against both your business and you as a director. Common allegations are that some of the directors have acted in a way that prejudices the rights of another director forcing them to leave the business and that the value of their shares has been significantly reduced. An employment claim often follows.

Employee and third party fraud

Almost one in five small businesses has suffered from loss as a result of fraud by an employee at some point during their history (Source: Action Fraud). This can cause significant loss and in some cases can even destroy a business. It is those on the inside of your business who can often do the most damage, due to their access to your key assets and familiarity with your processes and ways around them.

Third party fraud losses are even greater with one in four businesses having experienced fraud, costing UK businesses billions of pounds per year. It can happen to any size of business in many different ways including the following - which could easily cost your business hundreds of thousands of pounds.


This is caused by inadequate firewall protection. Bank accounts are accessed and standing order payments set up to pay money into a fraudster’s bank account.

Non-internet identity fraud

For example, a fraudster purports to be one of your suppliers.

Procurement fraud

Collusion between corrupt employees and suppliers on purchase invoices.

Contract disputes

Minor disputes can escalate, damaging relationships or even threatening the survival of your business. No matter how hard you try to avoid it, you and your business could unfortunately end up in court over a contract dispute. These can be extremely complicated, involve large sums of money and arise from any contracts you agree to (whether purchases, supply of services or goods, property transactions or other agreements).

Data protection breaches

If you hold and process information about your clients, employees or suppliers, you are legally obliged to protect that information. Failure to do so can lead to claims from the Information Commissioner’s Office or the third parties affected by any breach. In addition, businesses which have committed a breach will be required to contact those affected by it, leading to significant costs and a likely increase in third party claims.

Pensions claims

With the recent introduction of auto-enrolment, the risks to UK businesses from the provision of pension facilities to their employees have changed from affecting only those with large numbers of employees to now impacting all employers. Perhaps the greatest risk for the majority is not adding an employee into the agreed pension scheme. Should that employee subsequently be killed in a road accident, the business would be left facing a large payment that should have been covered by the pension scheme had the error not occurred. For those businesses with pension schemes with trustees, whether defined contribution or defined benefit schemes, additional responsibilities and risks arise. This brings with it increased potential for claims against the trustees, the pension plan or the business including claims alleging negligent use of the funds affecting the employees’ or ex-employees’ future pensions.

Cyber liability

As a business of any size, it is likely you will rely on IT infrastructure to some degree and in doing so expose your business to additional third party risks including allegations of:

  • security and privacy breaches
  • defamation, breach of privacy or negligence in publication in electronic or print media
  • transmission of a virus or malware. 

Such claims incur substantial investigation and legal costs with the potential of large compensatory payments and significant damage to your reputation. In addition, loss of electronic data following a virus or cyber-attack could lead to an interruption to your business.

Pollution claims

Businesses found guilty of causing pollution face the prospect of a significant criminal fine being imposed on them, with fines and even imprisonment for the directors in the most serious cases of negligence. In addition, should a pollution incident occur, you may well be responsible for the immediate clean-up of the affected area, even if it is later proved you were not at fault. You could also face costly claims from third parties seeking compensation alleging you have polluted their land.

Related expertise

Latest tweets by @penningtonslaw

Penningtons Manches Cooper LLP

Penningtons Manches Cooper LLP is a limited liability partnership registered in England and Wales with registered number OC311575 and is authorised and regulated by the Solicitors Regulation Authority.

Penningtons Manches Cooper LLP