In April 2026, the final report of the UK's Risk Warnings Review - commissioned by HM Treasury as part of the Leeds Reforms, led by the Investment Association, and supported by the FCA - landed with a finding that should be on every financial services compliance team's radar: standardized, formulaic risk warnings are widely misunderstood by consumers, routinely ignored, and in many cases actively deter people from investing without helping them understand what they're actually risking.

This shift changes the nature of compliance review itself - from a binary checkbox to a contextual judgment. And that distinction is everything. Because contextual judgment, applied consistently at scale, is exactly what AI-powered compliance review is built for. The firms that respond well to this update won't be the ones that rewrite their disclaimer template. They'll be the ones that rebuild their review infrastructure around the new standard - before the FCA's enforcement posture catches up.

The Finding

Warnings That Warn Nobody

The review's core finding is simple: the same three words, appearing identically across every promotion, every channel, every product, have trained consumers to treat them as visual noise. When consumers do engage with standardized warnings, they frequently misunderstand them. The warning is doing neither job: it's not protecting consumers who need protection, and it's not informing consumers who would benefit from the product.

The FCA has also clarified a related misconception driving years of over-cautious compliance behaviour: for mainstream, non-restricted investments, there is no prescribed wording requirement and no obligation for a separate disclaimer at all. Firms must make clear that capital is at risk - but that can happen within the body of the promotion as part of a balanced explanation. Many firms have been adding boilerplate out of habit, not obligation. The FCA is explicitly signalling that under Consumer Duty, it may not even be what good looks like.

"The FCA has spent years policing disclaimers. Now they want to know if your customers actually understood what they were getting into. Those are very different questions."

Kunal Vankadara

CEO, Haast

One important boundary: this shift applies to mainstream investment promotions. For restricted mass-market investments (crypto, peer-to-peer, non-readily-realisable securities) the prescribed requirements under COBS 4.12A remain firmly in place. Getting that distinction wrong in either direction creates its own exposure.

The Operational Problem

Contextualized Risk Can't be Reviewed With a Checkbox

Here's where the April update stops being a policy question and becomes an operational one, and where the compliance challenge becomes significantly harder than it first appears.

The old model was binary. Is the disclaimer present? Yes or no. Tick the box, approve the asset, move on. It was blunt, but it was scalable. A reviewer could assess dozens of assets a day against a simple, fixed standard.

The new model is contextual. The question is now whether the risk communication is appropriate for this product, this audience, and this channel. And that's a fundamentally different kind of review.

Consider what that means in practice. An ETF promotion targeting retail investors with a moderate risk profile requires a different risk framing than a promotion for a high-yield bond fund. The same product promoted to a sophisticated investor in Leeds and a first-time investor in London may need different contextualization to meet Consumer Duty expectations. 

The compliance question has changed: It's no longer "is capital at risk mentioned?" It's "is the risk sufficiently and appropriately communicated for this specific product, audience, and context?" That's a judgment call, and it needs to be made consistently, at scale, across every promotion in market.

This is precisely the kind of nuanced, context-dependent analysis that rule-based, checkbox compliance tools were never designed to handle. A system that flags the absence of a disclaimer can be built with a simple rule. Instead, tools like Haast assess whether risk is communicated proportionately - balancing product risk profile, audience vulnerability, channel reach, and regulatory expectation. Our AI can read context and understand risk tolerance, not just check boxes.

Why This Matters Now

Every Promotion in Market Needs a Second Look

This new review obligation applies to all content - including what’s already live. 

For example, a financial services firm might have dozens of live promotions across digital, social, email, and owned channels - each of which now needs to be assessed against a standard that is more nuanced, more contextual, and more judgment-intensive than anything that came before it. 

That's a content review exercise at scale. And applied manually at the same volume isn't manageable. Something will not get reviewed - and under Consumer Duty, "we didn't have capacity" is not a defence that will carry weight with the FCA.

The Bigger Picture

This isn't Just a UK Story

The regulatory shift in the UK reflects that of other markets too.

In the United States, the SEC's plain-language disclosure push and FINRA's ongoing scrutiny of retail investment marketing are moving along a similar axis. The question regulators are increasingly asking is whether the promotion as a whole gave a retail investor a fair and accurate picture of what they were buying. The precise regulatory mechanisms differ, but the underlying philosophy is converging.

Can Your Process Keep Up?

The FCA has given firms the practical toolkit they need to start now. What most compliance teams don't yet have is a review process capable of making consistent, contextualized judgments across the volume of content their marketing teams are producing.

Checkbox compliance tools won't get you there. Neither will adding more reviewers to a manual process that was already stretched. The firms that respond well to the Risk Warnings Review won't be the ones that update their disclaimer template. They'll be the ones that rebuild their review layer around the kind of nuanced, product-aware, audience-aware analysis the FCA is now asking for - and do it at a scale that keeps pace with the business.

That's what AI-powered compliance review tools like Haast are built for. Not replacing legal judgment, but augmenting it with the consistency and context-sensitivity that the new standard demands, applied across every asset, every time.