Alert: UK Serious Fraud Office publishes new guidance on self-reporting

On 24 April 2025, the Serious Fraud Office (SFO) published new guidance on how it intends to deal with bribery-related offences. The new guidance, called the ‘SFO External Guidance on Corporate Co-Operation and Enforcement in relation to Corporate Criminal Offending’, has some interesting indications of the SFO’s policy on self-reporting.

What does the new guidance say?

The new guidance seems to be aimed at giving organisations more certainty about the likely outcome if they self-report matters to the SFO. The most notable part of this guidance is the statement that “if a corporate self-reports promptly to the SFO and co-operates fully we will invite it to negotiate a DPA (deferred prosecution agreement) rather than prosecute, unless exceptional circumstances apply.”

The guidance makes clear that each case will turn on its own facts, but prompt self-reporting and co-operation will always weigh heavily in favour of a DPA over prosecution.

What about the organisation’s internal investigation?

According to the guidance, the SFO recognises that organisations may sometimes feel it is necessary to investigate suspicions of suspected offending prior to making a self-report in order to understand the nature and extent of any offending. However, there is no expectation for organisations to fully investigate the matter prior to self-reporting. In fact, in matters where there is direct evidence of corporate offending, the SFO expects the self-report to be made soon after the organisation learns about it. When the position is less clear-cut, the SFO is likely to recognise the need for further investigation.

What is “genuine co-operation”?

“Genuine co-operation” is a term we’ve heard before from regulators and prosecutors notably in connection with anti-trust/competition matters and with bribery investigations. This guidance also provides more clarity on what the SFO considers “genuine co-operation”.

This clarification will no doubt be extremely welcome as the level of co-operation is such a key factor influencing the likely outcome, and the SFO makes it clear that only “genuinely co-operative” corporates will be invited to DPA negotiations. The SFO says that co-operation means going “over and beyond what the law requires”.

The guidance provides a non-exhaustive list of examples of co-operative conduct, including:

• Proactively and promptly preserving all digital and hard copy materials likely to be relevant to the SFO;
• Providing translations of relevant foreign language documents;
• Informing the SFO of the proposed steps in any ongoing investigation with timely updates; and
• Interestingly, a waiver of legal professional privilege will be considered a significant co-operative act, though valid claims of privilege will not be penalised.

The guidance also provides a short list of examples of uncooperative conduct, which includes forum shopping jurisdictions for strategic reasons and any attempts at obfuscation.

What happens after a self-report?

The guidance also offers some service level commitments from the SFO. Whilst our experience of self-reporting to the SFO has been positive this offers welcome certainty in terms of timescale for organisations.

The guidance suggests the SFO will:

• Contact self-reporting corporates within 48 business hours of a self-report or other initial contact.
• Regularly update a self-reporting corporate throughout the process.
• Decide whether or not to open an investigation within six months of a self-report.
• Conclude its investigation within a reasonably swift time frame.
• Conclude DPA negotiations within six months of sending an invitation.

Whether the SFO will be able to stick to these timelines, especially in an international investigation when other law enforcement agencies are involved remains to be seen. There are signs that the SFO has moved more quickly recently – for example the investigation into failed law firm Axiom Ince moved from initial investigation to individuals being charged in just 15 months. But the international element in an investigation often adds complexity especially if foreign agencies need formal co-operation requests or an attempt is made, like in cases like Rolls-Royce or Airbus, to reach the conclusion of a joint investigation in different countries at the same time.

What is the SFO’s current approach to prosecutions?

The current Director of the SFO is Nick Ephgrave QPM. Unlike his predecessors Mr. Ephgrave is a former high-ranking policeman and his enforcement activity to date has featured high levels of co-operation with the police and more emphasis on dawn raids and early interviews than his predecessors. The SFO has also not been afraid to take on new cases – for example on 17 April 2025 the SFO charged a UK-based insurance company, United Insurance Brokers Limited with failure to prevent bribery in connection with its international reinsurance activity in Ecuador.

The SFO also has some new money. In November 2024 the UK government announced that the SFO would receive an additional £9.3 million of funding to tackle complex fraud, bribery and corruption.

The new guidance perhaps shows an element of carrot and stick. There is no doubt that the SFO feels like a renewed organisation under Mr. Ephgrave with more teeth and perhaps that, coupled with greater certainty of outcome, will lead to speedier resolutions of investigations.

What does this mean?

The guidance is helpful for organisations trying to decide what to do when an incident of bribery occurs. It is not perhaps a significant change from the approach adopted by the SFO when David Green was Director but goes some way to deal with the perceived confusion at the SFO under the previous Director Lisa Osofsky.

The new guidance means that in most cases it is important to investigate allegations quickly and efficiently. The way in which the UK deals with fraud offences also changes in September with the introduction of a new failure to prevent fraud offence which makes it even more important for organisations to have the right procedures in place to identify and investigate wrongdoing.

Amongst the steps and organisations will want to consider will be:

1. Training relevant employees at the organisation in spotting the signs of bribery and other wrongdoing.
2. Reacting quickly and appropriately to any tip offs or whistleblower reports. Investigations will need to be constructed to ensure that evidence is gathered in a way which will allow the SFO to act should that be necessary whilst also taking into account the rights of the whistleblower and the accused.
3. Allocating appropriate resources to an investigation. This may include specialist external counsel, technology and translation services. Even if waiving privilege can be a factor the SFO will take into consideration it is likely that most organisations will want to do all that they can to preserve privilege, especially if other enforcement bodies and/or litigation are in play.
4. Making sure that there is top-level commitment to stamping out bad behaviour. Senior management must be committed to preventing bribery by fostering a culture in which bribery is never acceptable. We have talked about some of those cultural aspects in our film with Richard Bistrong here Head to Head: Richard Bistrong on lessons learned from a convicted bribe payer.
5. Reinforcing the need to do proper due diligence especially when engaging agents and intermediaries in high-risk areas.

Additional information

The full guidance can be found at GOV.UK: SFO Corporate Guidance.

There is more information on the new failure to prevent fraud offence at UK Home Office Guidance: Failure to Prevent Fraud, and see Jonathan Armstrong’s discussion at Life With GDPR Podcast: Understanding the UK’s Failure to Prevent Fraud.

There is more information on UK bribery issues more generally in the SCCE’s Complete Compliance and Ethics Manual where Jonathan Armstrong wrote the bribery section.

Bribery and Corruption Legal Advice

If you require advice, visit Bribery & Corruption to learn more about our services or Contact Us to arrange a consultation.