Comply Launches Financial Services' First Agentic Compliance Platform MCP Server, Enabling Teams to Build Custom AI Agents Without Developers 
Private markets have grown at an extraordinary pace over the past decade. In the UK alone, assets under management in private markets have tripled, and similar trends are visible across Europe and globally.
This expansion has transformed private markets from traditionally institutional spaces into a more retail-accessible environment. However, with that growth comes an increasing level of regulatory focus – particularly around conflicts of interest and the management of inside information.
Why Regulators Are Turning Up the Heat
Private markets have historically operated with less transparency than listed markets. Information flows are more restricted, valuation processes are more subjective, and oversight frameworks are often less formalised. Regulators have become increasingly concerned about how firms manage risks in these areas.
Recent regulatory activity has included thematic reviews on private credit, the handling of inside information, and valuation practices within private market firms. A further review focused on conflicts of interest – both at the employee and fund level – is on the horizon.
At the heart of these reviews lies one consistent theme: regulators want to ensure firms have robust frameworks for managing inside information and conflicts of interest. Each of these risks is distinct, but in private markets, they often overlap and amplify one another.
The Interplay Between Market Abuse and Conflicts of Interest
Market abuse risk and conflicts of interest risk are deeply intertwined. Where information is limited and valuations are judgment-based, even small lapses in governance can have outsized effects.
For example, if employees or investment teams have access to material non-public information (MNPI) about portfolio companies or transactions, this can create a risk of insider dealing or unlawful disclosure. At the same time, if those individuals hold personal investments or have other financial interests linked to the same assets, they may face conflicts between personal benefit and professional duty.
In short, poor management of conflicts often increases the risk of market abuse, and vice versa. A modern compliance framework must therefore treat these risks as connected, not isolated.
Laying the Foundations: Risk Assessment and Proportionate Controls
Effective control begins with a risk assessment. Firms should map their business models against applicable rules and expectations, identifying where risks of inside information or conflicts may arise.
A sound framework should then be built on proportionate, tailored controls, including:
- Personal account dealing oversight, ensuring staff pre-clear trades, observe holding periods, and disclose broker accounts.
- Restricted and watch lists, supported by clear wall-crossing and information-sharing procedures.
- Controls around inside information flows, including folder security, audit trails, and a clear “need-to-know” approach.
- Monitoring of outside business interests, gifts, and entertainment, supported by a compliance system that gives transparency to potential conflicts.
- Consequences for breaches, backed by a culture where compliance expectations are taken seriously at all levels.
Training should reinforce these principles and focus on the specific risks that arise in private markets rather than relying on generic MAR concepts designed for public trading environments.
Recognising Amber Flags – and Acting Before They Turn Red
Monitoring is not just about catching misconduct; it’s about spotting trends that signal weak understanding or poor adoption of policies. For example, very low volumes of disclosures or pre-clearance requests – whether they be related to client entertainment or personal account dealing – could indicate that employees are not declaring activity.
Likewise, a compliance breaches register showing no recorded breaches may not always be good news – it could signal insufficient oversight or under-reporting. Firms should review data holistically, considering whether controls are being used, understood, and enforced effectively.
A more proactive approach is also key. Waiting for red flags or regulatory audits to expose weaknesses can be costly. Instead, firms should watch for “amber flags” – early signs of misalignment or non-adoption – and address them before they escalate. Compliance policies only work if employees understand and engage with them, not simply tick boxes.
Three Practical Steps to Strengthen Frameworks
- Start with a robust, business-specific risk assessment.
Map information flows and employee roles to pinpoint where inside information and conflicts risks intersect. - Build clear, tailored policies and controls.
Focus on the firm’s actual activities – from valuations to co-investments – and make policies understandable, relevant, and easy to follow. - Monitor intelligently and embed a culture of accountability.
Use data, systems, and breach analysis to identify trends early. Reinforce expectations through leadership example, training, and consistent enforcement.