Skip to main content

How to configure the Risk Assessment settings in Legl

Learn how to manage your firm's Risk Assessment settings in Legl, including escalation contacts, manual rating overrides, and default reassessment periods.

Written by Michelle Rufer
Updated this week

Overview

The Risk Assessment settings page allows admin users to configure how Risk Assessments behave across your firm, without needing to contact Legl. These settings ensure your Risk Assessment framework reflects your internal compliance policies and escalation rules.

How to access Risk Assessment settings

  1. Log in to Legl as an admin user.

  2. Navigate to Settings in the left-hand menu.

  3. Select Risk Assessments.

What you can configure

1. Manual risk rating overrides

You can control whether users are permitted to override a calculated risk rating.

To configure this setting:

  1. Go to Settings → Risk Assessments → Manual Risk Rating.

  2. Toggle the setting on or off depending on your firm's policy.

When overrides are enabled, authorised users can change a calculated rating and must record a rationale. All overrides are time-stamped and logged for audit purposes.

2. Escalation contacts

Escalation contacts receive an email notification whenever a Risk Assessment is rated as High risk.

To configure escalation contacts:

  1. Go to Settings → Risk Assessments → Escalation.

  2. Add or update the email addresses of the individuals who should be notified (for example, your MLRO or AMLCO).

  3. Save your changes.

ℹ️ Note - Escalation notifications are sent automatically when a High-risk rating is calculated or manually assigned.

3. Default reassessment periods

You can set default reassessment time periods (in days) for each risk level — Low, Medium, and High. This removes the need for fee-earners to manually calculate and enter a reassessment date each time.

To configure default reassessment periods:

  1. Go to Settings → Risk Assessments → Default Reassessment Periods.

  2. Enter the number of days for each risk rating (for example: Low: 365 days, Medium: 180 days, High: 90 days).

  3. Save your changes.

Once set, the reassessment date will be auto-populated when a Risk Assessment is completed, based on the final risk rating. Fee-earners can still adjust the date manually if needed.

ℹ️ Note - One week before a reassessment is due, the assigned user will receive an email reminder.

What happens next

Once your settings are saved:

  • Manual override permissions will be enforced across all Risk Assessments for your firm

  • Escalation emails will be sent to the configured contacts whenever a High-risk assessment is completed

  • Default reassessment dates will be pre-populated automatically on completion of a Risk Assessment

These settings can be updated at any time by an admin user.

Important information

  • Only admin users can access and edit Risk Assessment settings

  • Changes to settings apply to all Risk Assessments going forward and do not affect previously completed assessments

  • Escalation contacts and reassessment periods should be reviewed periodically to ensure they remain aligned with your firm's AML policies

Related Articles
What are Risk Assessments in Legl?
How to complete a Risk Assessment
Understanding the Risk Assessments dashboard
Understanding how Risk Assessments work in Legl
Reporting on risk assessments
Did this answer your question?