Overview
Completing a Risk Assessment in Legl allows your firm to assess, record, and manage client or matter risk in line with your internal policies.
Risk Assessments pull through existing data from across the platform to reduce manual input and support consistent, auditable decision-making.
Before you start
Before completing a Risk Assessment, ensure that:
You have access to the Risk Assessments area in Legl
The relevant client or business contact already exists in the platform
Any required CDD or business checks have been completed (where applicable)
Your firm has either:
Enabled the standard SRA-based template, or
Had your own Risk Assessment template digitised by Legl
ℹ️ Further guidance
For detailed information on how to set up your Risk Assessments and what custom settings are available, see the guide below:
How to complete a Risk Assessment
1. Start a new Risk Assessment
Go to Risk Assessments in Legl.
Select Start risk assessment.
Choose the relevant Risk Assessment template from the dropdown.
Select the client or business you are assessing.
Click Start risk assessment.
2. Review auto-populated information
Some questions are automatically answered using existing data in Legl, such as:
Whether the client is an individual or a business
The date Client Due Diligence (CDD) was last completed
Sanctions and PEP screening results
Whether the client is based in a high-risk country
These fields are clearly highlighted so you can review and verify them when reviewing inputted fields.
3. Complete the risk questions
Work through each section of the Risk Assessment.
Due to the conditional logic, depending on your answers:
Additional questions may appear
Irrelevant questions may be hidden automatically
ℹ️ Important
Your firm can choose which questions are optional or mandatory, and add guidance text to support consistent completion.
Click Continue to next step once all questions are completed.
4. View the calculated risk rating
Legl automatically calculates a risk rating based on your firm’s configured weightings. This is displayed in a Low/Medium/High rating.
Review the risk factors that contributed to the rating.
If required, authorised users can:
Select Change rating
Record a rationale for any manual override
All changes are time-stamped and logged for audit purposes.
5. Complete the Risk Assessment
Before completing the Risk Assessment, you must record:
How the identified risks will be mitigated or managed
Any additional controls or follow-up actions
This information becomes part of the permanent audit trail.
Select Complete risk assessment.
Complete Risk Assessment
Select a reviewer (if enabled)
This will notify the reviewer and set the Risk Assessment as 'Ready for Review'.
Set a reassessment date (optional)
If selected,L egl will send an email reminder one week before the reassessment is due to the person who completed the Risk Assessment.
Confirm that the Risk Assessment information provided is correct to the best of your knowledge.
Select Complete risk assessment.
The Risk Assessment status updates immediately in the platform.
What happens next
The Risk Assessment appears on the Risk Assessments dashboard
The final risk rating is visible at a glance
If a high-risk factor was identified:
The Risk Assessment is marked as Escalated
A notification email is sent to the designated reviewer (for example, MLRO or compliance)
The completed Risk Assessment can be:
Viewed at any time
Updated at any time
Downloaded as a PDF for external storage or audits
Important information
Risk Assessments can be started by one user and completed by another
High-risk assessments may require review by a different user, depending on your firm’s escalation rules
Updating an existing Risk Assessment creates a new version, preserving the full history and audit trail
Manual risk rating overrides are clearly marked in the dashboard