The UK government's £200m AI skills push is genuine commitment, but it sidesteps the harder problem. Regulated firms need compliance frameworks and vendor clarity before they need more training programmes.
AI Governance  Trovix WatchLegal · Insurance · Financial Services · Accountancy

The government's £200m fund, backed by partnerships with Cisco, IBM and major corporates from BT to HSBC, sends a clear signal: AI adoption matters to national economic strategy. That matters for mid-market legal, insurance, financial services and accountancy firms, because it means AI will increasingly feature in FCA policy, SRA guidance, PRA supervisory expectations and ICO enforcement. The fact that 30 firms have committed to data-sharing on AI usage is particularly significant — this data will shape future regulation. But here is the uncomfortable truth: throwing money at training programmes and vendor partnerships does not address what actually stops regulated firms from moving faster on AI. It is not skills. It is risk uncertainty.

Look at what has happened in the past 18 months. Generative AI products — from Harvey and Legora in legal to Luminance and proprietary LLMs in insurance and asset management — have proliferated. Some are genuinely useful. Many are not. The problem is that regulated firms cannot easily compare them, validate their safety against their own regulatory obligations, or understand how using them changes their compliance posture under FCA Consumer Duty PS22/9 or SRA Code obligations. The government funding announcement comes at a moment when the EU AI Act is tightening definitions of high-risk systems, the ICO is clarifying UK GDPR implications for training data, and the FRC's ISA UK auditing standards are creating new questions about how AI-assisted work gets signed off. The policy framework is still fragmented. Training and vendor partnerships will not fix that fragmentation.

Trovix's view: this fund should accelerate a different conversation. Regulated firms need three things, in this order. First, they need clarity on which regulatory body owns each dimension of AI risk — is it FCA on algorithmic fairness in credit decisions, or ICO on data lineage, or SRA on competence under professional conduct rules? Second, they need standardised evaluation frameworks so they can assess whether a given AI product or approach actually meets their obligations. Third, they need monitoring tools that flag regulatory changes in real time, because the ground is shifting monthly. Microsoft Copilot for Microsoft 365 gives you more integrations; it does not give you this. Harvey streamlines contract review; it does not tell you whether your training data governance satisfies the ICO's latest interpretation. Trovix Watch exists precisely because this monitoring gap is where most mid-market firms stumble.

What should you do now? Do not wait for the government fund to trickle down into a training programme your junior fee-earners attend in Q4. Instead: (1) Audit which AI tools you are already using informally — spreadsheet macros, ChatGPT, existing vendor LLMs. (2) Map those tools against your specific regulatory obligations. If you are a law firm, check SRA Code sections 1B and 5. If you are an insurer, check PRA SS1/23 and FCA expectations on model risk governance. If you are in accountancy, check your ISA UK compliance under FRC rules. (3) Establish a vendor evaluation process that includes compliance, not just capability. (4) Subscribe to regulatory change monitoring so you are not caught flat-footed when the FCA, SRA, PRA or ICO clarify their position on your specific use case. The £200m is real. But it is not a substitute for internal governance.

Source: Computer Weekly

Related Trovix product:

Trovix Watch →Book a demo →