Imagine a City boss was shown the door not for fraud or financial loss, but because their off-duty conduct eroded trust and drew regulatory attention. In today’s UK and EU markets, that’s no longer hypothetical. Non-financial misconduct, such as bullying, harassment or other harmful behaviour, has leapt from HR concern to boardroom risk, capable of triggering fitness and propriety questions, damaged reputations and regulatory scrutiny. The UK’s Financial Conduct Authority (FCA) has finalised new rules and guidance making clear that serious non-financial misconduct can breach Conduct Rules and affect regulatory assessments. Across the EU, supervisors increasingly tie culture and conduct to firm resilience and market confidence. In this article we explore why the shift is happening, what’s new and how firms must adapt.
Why Regulators Now Care So Much About Behaviour
Regulators increasingly view personal behaviour as a predictor of professional risk. Patterns of bullying, harassment or intimidation are no longer dismissed as “style”; they are treated as warning signs of how individuals behave under pressure and whether challenge is welcomed or suppressed. UK supervisors argue that poor behaviour often sits upstream of governance failures and reckless risk-taking, rather than appearing in isolation.
This reflects a broader shift in thinking. Behaviour is now seen as a leading indicator, not a moral side issue. Leaders who silence dissent or misuse power can distort decision-making, weaken controls and undermine risk culture. These are the kind of dynamics highlighted in recent UK enforcement commentary on toxic workplace cultures.
Approaches differ across jurisdictions. In the UK, the emphasis is on individual accountability, fitness and propriety, and the conduct of senior managers. Across the EU, regulators focus more on collective culture, psychological safety and governance integrity, embedding these expectations in internal governance frameworks.
This matters now because hybrid working, social media visibility and rising employee expectations have made behaviour harder to hide, and ethical leadership harder to fake.
What Counts as Non-Financial Misconduct Currently?
Non-financial misconduct now extends well beyond traditional examples such as harassment or bullying. Regulators increasingly focus on how power is exercised, particularly where behaviour undermines trust, fairness or effective challenge. UK guidance from the FCA confirms that off-duty conduct may be relevant where it creates reputational risk or calls integrity into question, including aggressive social media behaviour.
Boards are scrutinising leadership styles once tolerated as “demanding” or “high performance”. Senior managers who intimidate staff, discourage dissent or reward loyalty over competence may deliver short-term results while quietly damaging risk culture. This is a pattern highlighted in supervisory commentary on toxic workplaces.
New risks are emerging. Discriminatory outcomes driven by poorly governed AI tools or biased data can amount to misconduct even without malicious intent, particularly where decisions affect recruitment or promotion. Retaliation against whistleblowers or those who raise concerns is now treated as a serious governance failure across the UK and EU.
Crucially, regulators assess context and pattern, not isolated incidents. Intent matters less than impact. Non-financial misconduct is behaviour that erodes trust, suppresses challenge or misuses authority.
From Personal Conduct to Career Consequences
Personal behaviour is increasingly shaping careers in regulated firms. Regulators now draw a direct connecting line between non-financial misconduct and fitness and propriety, particularly for senior managers. A pattern of bullying, intimidation or misuse of power can derail senior appointments, even where technical competence is strong. Regulatory references increasingly reflect behavioural concerns, making it harder for individuals to move quietly between firms. The long-term impact can be career-defining, as informal warnings or unresolved complaints resurface years later.
Boards face parallel exposure. Failure to act promptly on known issues can itself become a governance breach. Supervisors have criticised delayed investigations, exemptions for “star performers”, and quiet settlements that later unravel under scrutiny. In several cases, boards believed they were containing reputational risk, only to trigger enforcement action for weak oversight.
The message is clear. Personal conduct now follows individuals across roles, while board inaction is increasingly treated as evidence of cultural failure. Guidance from the FCA reinforces that misconduct decisions, once documented, shape both individual credibility and board accountability long after the original incident has faded. This shift has altered expectations across the sector.
The Regulatory Line in the Sand
In the UK and EU, regulators have drawn a clearer behavioural line than ever before. Recent guidance expands the scope of non-financial misconduct to cover off-duty conduct, misuse of power and behaviour that damages trust, even where no financial harm is proven. Firms are now expected to document decisions rigorously, explain judgement calls and evidence why outcomes are reasonable.
What has changed is tolerance. Supervisors are less willing to accept vague conclusions, informal resolutions or reliance on policies that look strong on paper but weak in practice. Investigations are scrutinised for independence, speed and consistency, with boards expected to challenge outcomes rather than simply endorse them.
Across the EU, similar expectations appear in governance reforms emphasising culture, psychological safety and credible challenge. Together, these developments mark 2026 as a turning point. Behavioural risk is no longer treated as peripheral or subjective. It is regulated, reviewable and enforceable, forcing firms to move to accountability.
Managing What You Can’t Easily Measure
Behaviour is notoriously difficult to quantify, which is why firms have historically defaulted to policies, training and staff surveys. Regulators are now pushing for more sophisticated approaches that identify behavioural risk before it escalates.
Leading firms are experimenting with behavioural risk mapping, plotting hotspots such as aggressive sales cultures or dominant individuals with unchecked influence. Others track culture through data on grievance patterns, exit interviews and speak-up activity, rather than relying on annual engagement scores alone.
Early-intervention mechanisms also matter. Clear escalation routes, informal mediation and manager coaching can stop issues hardening into misconduct cases.
Critically, boards are expected to oversee behaviour with the same discipline as financial risk. Board-level dashboards increasingly include culture indicators, while middle managers are recognised as key controls within informal power structures. Psychological safety is now treated as a governance tool, not a “soft” benefit, for sustainable risk management in complex organisations.
The Leadership Test No One Can Delegate
Non-financial misconduct is no longer a peripheral HR concern; it is a regulatory issue, a leadership issue and a material strategic risk. Recent enforcement actions show that bullying, harassment or cultural failures can trigger fines, senior manager sanctions and lasting reputational damage. Policies and training modules alone will not protect firms if poor behaviour is tolerated behind strong financial results. In several high-profile cases, organisations had formal frameworks in place, yet leaders failed to act on warning signs raised by staff. Ultimately, this is the leadership test no one can delegate. How behaviour is noticed, challenged and addressed in practice will define trust, organisational resilience and long-term success far more than any written code ever could.
And what about you…?
- If a member of your team raised a concern about bullying, harassment or intimidation tomorrow, how confident are you that it would be handled quickly, fairly and without retaliation?
- What early warning signs of cultural or behavioural risk might you be missing because they are uncomfortable, inconvenient or hard to measure?
