The FCA’s 2026/27 work programme is most useful not for any single measure, but for what it reveals about the regulator’s direction of travel. The message is clear: supervision is becoming faster, more digital, and more reliant on data. For firms, that is not an abstract shift. It affects how they handle authorisations, maintain records, organise compliance, and respond to regulatory scrutiny.
This is the real story. The FCA is not simply adding new technology to existing processes; it is reshaping the way it supervises firms.
According to the programme, the FCA is developing an internal tool to speed up authorisations, using generative AI to review documents submitted by firms, testing automated data feeds, expanding sandbox activity, improving case handling, and moving more regulatory tasks into My FCA. It says these changes should support quicker, more consistent decisions, earlier identification of harm, and less unnecessary administration for firms.
Taken together, the programme points to a regulator changing its operating model, not just updating its systems.
A shift in method
Many firms still read regulatory change through a familiar lens: new rules, fresh consultations, or tougher enforcement. That misses the bigger point here. The FCA is changing how supervision works. It wants to handle information more quickly, assess intelligence more effectively, and move sooner when it sees risk.
A regulator does not need a major rewrite of the rulebook to become tougher in practice. If it can review submissions faster and sort cases more efficiently, weaknesses inside firms are more likely to come to the surface. Poor applications, inconsistent documentation, weak record-keeping, and muddled governance may be exposed more quickly in that sort of system.
The FCA says human judgement will remain central to decision-making. That is an important distinction. On the material published, this is not regulation by machine. It is supervision supported by better tools. Firms should not take much comfort from that alone. Better tools can still lead to closer, faster, and more exacting scrutiny.
Less admin does not mean less pressure
One of the more telling parts of the FCA’s announcement is its promise to cut friction. It says it will remove three regular data returns, reduce the frequency of another, simplify forms, and move more tasks into My FCA. That sounds helpful, and for many firms it may be.
But firms should be careful how they read it. A regulator can reduce routine administration and still become more demanding in practice. If standard reporting falls away while digital triage improves, the pressure does not disappear. It moves. Less time may be spent on repetitive returns, but more may be required for data quality, document control, internal coordination, and general readiness for quicker regulatory contact. That is still a heavier compliance demand, just in a different form.
The real lesson is that simplification should not be mistaken for a softer approach. In some cases, it may mean fewer low-value tasks and less patience for weak records, inconsistent submissions, and loose internal processes.
Authorisations may become a sharper test of readiness
The FCA puts clear emphasis on authorisations. It is building a new internal tool for that process and says generative AI will support document review across authorisations and supervision. It also points to faster authorisation timelines.
That has commercial weight. Delays in authorisation can affect launch plans, staffing, product development, funding, and revenue timing. A faster system may help firms that are ready. It may also expose weak applications more quickly.
That makes authorisation less of a narrow legal process and more of an organisational test. Firms need to show that the business model is coherent, the governance is credible, the controls are clear, and the supporting documents line up with what the business says it is doing.
The FCA does not explain exactly how its tools will work in practice or how much faster the process will become. That uncertainty should be acknowledged. But the direction is clear enough. Firms should expect readiness to matter more, not less.
Low fee growth does not mean a static regulator
The FCA says it is proposing to raise minimum and flat fees, along with application fees, by 1%. It says the annual funding requirement would rise by 0.7%, which it describes as the lowest increase in a decade. It also says it has kept budgeted headcount flat while investing in analytics and digital tools.
That combination is worth noting. The regulator is trying to improve its capability while keeping fee growth low. For firms, the important point is not whether the increase is modest. It is what the FCA is spending on and what that says about future supervision.
The answer, based on the material provided, is straightforward: the regulator is investing in digital workflows, analytics, intelligence handling, and process speed. That points to a regulator that may become more efficient internally while still becoming more exacting externally.
Boards and senior management should not measure regulatory change by fees alone. A modest increase in formal cost can sit alongside a more demanding supervisory environment.
The perimeter questions matter
The work programme sits alongside the FCA’s 2026/27 perimeter report. That is important because it shows the regulator is not only focused on improving internal processes. It is also identifying areas where the boundary of regulation may need to change.
The FCA says it is asking for government action in 15 areas, including Financial Promotion Order exemptions, trustees, sports and non-financial spread betting, and payments. It also links payments reform to open banking and open finance, arguing for a framework that can deal with new and existing risks while supporting innovation and secure data sharing.
That matters because perimeter issues are rarely abstract. They shape which firms are in scope, which products are regulated, how consumer protections work, and where legal uncertainty sits. For firms near the edge of the perimeter, or exposed through distribution, promotions, counterparties, or technology, these questions are strategic.
The FCA also highlights risks outside its perimeter, including Annex 1 firms regulated only for money laundering purposes, the growing use of general-purpose AI for guidance on borrowing, saving, and investing, and speculative prediction market products expanding overseas.
The material provided does not say what immediate policy action will follow. So no stronger claim should be made. But once the regulator flags boundary gaps in public, firms in adjacent areas should pay attention.
Growth and protection are being pursued at the same time
The FCA is trying to present growth, competitiveness, and consumer protection as compatible aims. The programme refers to unlocking capital investment and liquidity, speeding up IPO applications, expanding overseas presence, beginning regulation of deferred payment credit from July, and building a more intelligence-led service to identify and stop harmful financial promotions.
That does not amount to simple deregulation. Nor does it read as blanket tightening. What it suggests is a more selective approach: ease friction where the regulator thinks processes are clumsy, then focus more sharply where it sees consumer harm, market weakness, or perimeter risk.
That is a more useful way for firms to read the announcement. Not as “lighter touch” or “tougher stance” in the abstract, but as a shift towards more selective pressure.
What firms should take from it
There are several practical lessons here. First, compliance is becoming more operational. Firms will need better data, cleaner records, and tighter internal coordination if they want to deal well with a more digital regulator. Second, administrative simplification does not remove supervisory pressure. It may just move it. Third, authorisation should be treated as a serious business process, not a filing exercise handled at the edge of the organisation. Fourth, perimeter issues deserve closer attention than they often get. They can signal where future regulatory exposure may develop. Finally, firms should pay attention not just to new rules but to changes in supervisory machinery. Regulators can alter the pressure on firms by changing how they process information, prioritise risk, and make decisions.
That is what makes this programme worth reading. It is not important because it uses the language of AI. It is important because it shows how the FCA wants to supervise.
In closing the FCA’s 2026/27 work programme points to a regulator that wants to be faster, more digital, and more targeted, while keeping people at the centre of decisions. For firms, that means the quality of internal systems, records, and governance may matter even more in regulatory engagement.
The deeper point is that supervision is changing at the level of method. The FCA is not just adjusting individual requirements. It is reworking the machinery around authorisations, intelligence, reporting, and risk detection. Firms that recognise that early will be better placed than those still treating compliance as a box-ticking exercise.
More from Finance Monthly: FCA Crypto Regulation: Guidance Sets Compliance Path Ahead of UK’s 2027 Regime
