Operating a bank in the UK requires dual authorisation from the Prudential Regulation Authority (PRA) and the Financial Conduct Authority (FCA). This is not optional - accepting deposits without authorisation is a criminal offence under the Financial Services and Markets Act 2000 (FSMA).

The PRA supervises prudential matters including capital adequacy, liquidity, and risk management. The FCA supervises conduct matters including customer treatment, market integrity, and Consumer Duty compliance. You must obtain both authorisations to operate as a bank.

Choosing your authorisation route

The PRA offers two routes for new bank applications. Your choice depends on your capital position, business model, and how quickly you need to start operating.

PRA Bank Authorisation Options

Two routes for UK bank authorisation - Option A (full authorisation) and Option B (mobilisation) with their capital requirements and restrictions.

The Prudential Regulation Authority (PRA) authorises UK banks under Part 4A of the Financial Services and Markets Act 2000 (FSMA). The PRA works with the FCA on dual authorisation. Two main routes are available for new bank applications.

Option A - Full Authorisation Route: Standard route for overseas banks and larger entrants
Option A - Capital Requirement: Full regulatory capital from day one
Option A - Business Restrictions: None (subject to meeting all prudential requirements)
Option B - Mobilisation Route: Restricted licence with business limitations
Option B - Duration: Up to 12 months
Option B - Capital Requirement: Lower initial capital (exact amount case-by-case)
Option B - Benefits: Lower initial capital, develop systems during mobilisation period
Option B - Restrictions: Limited deposit-taking, restricted business scope
Typical Application Timeline: 12-24 months for new bank applications
PRA Role: Authorisation for deposit-taking (Part 4A FSMA permission)
FCA Role: Conduct permissions and consumer credit authorisation

Option A - Full Authorisation: Applicants must meet all capital requirements and prudential standards from day one. This route is typically chosen by overseas banks establishing UK subsidiaries or well-capitalised new entrants. No business restrictions apply once authorised, subject to ongoing compliance with all PRA requirements.

Option B - Mobilisation: Allows applicants to obtain a restricted banking licence with lower initial capital requirements. During the mobilisation period (up to 12 months), the bank can develop systems, hire staff, and test operations under live regulatory supervision but with strict limits on deposit-taking and business scope. Must transition to full authorisation and meet full capital requirements before unrestricted operation.

Dual regulation: UK banks are dual-regulated. The PRA supervises prudential matters (capital, liquidity, risk management) and grants the deposit-taking permission. The FCA supervises conduct matters (customer treatment, market integrity) and grants conduct permissions. Both authorisations must be obtained.

Which route is right for you?

Choose Option A if you have full capital available from day one, are an overseas bank establishing a UK subsidiary, or need unrestricted operations immediately after authorisation.
Choose Option B if you're a new bank with limited initial capital, need time to develop systems under live regulatory supervision, or want to test your business model before scaling up.

Most new UK challenger banks use Option B mobilisation to reduce initial capital requirements and develop their infrastructure during the 12-month restricted period. Once ready, they transition to full authorisation with unrestricted deposit-taking.

Capital requirements

Regardless of which authorisation route you choose, all UK banks must ultimately meet minimum capital ratios to absorb potential losses and protect depositors.

UK Bank Capital Requirements 2025

Minimum capital ratios for UK banks - CET1, Tier 1, Total Capital, and leverage ratio requirements under PRA regulation.

UK banks must maintain minimum capital ratios as a percentage of Risk-Weighted Assets (RWA) under Prudential Regulation Authority (PRA) supervision. These requirements implement Basel III standards and ensure banks hold sufficient capital buffers to absorb losses.

CET1 Capital Minimum: 4.5% of RWA
Tier 1 Capital Minimum: 6% of RWA
Total Capital Minimum: 8% of RWA
Leverage Ratio Requirement: 3.25%
Leverage Ratio Composition: At least 75% must be CET1
Capital Conservation Buffer: 2.5% (CET1)
Countercyclical Buffer (CCyB): 0-2.5% (CET1, discretionary)
FPC System-Wide Tier 1 Benchmark: Approximately 13% of RWA (CET1 approximately 11%)
FPC Benchmark Effective Date: December 2025
Basel 3.1 UK Implementation Date: 1 January 2027

Key changes: The Financial Policy Committee (FPC) reduced the system-wide Tier 1 benchmark from 14% (2019) to approximately 13% in December 2025, reflecting improved risk measurement. Basel 3.1 implementation was delayed from 1 January 2026 to 1 January 2027 (announced January 2025).

Buffers: The Capital Conservation Buffer (2.5% CET1) is mandatory. The Countercyclical Buffer is discretionary and set by the FPC based on credit conditions, ranging from 0-2.5%.

What this means in practice: Your bank must hold capital (shareholder equity and retained earnings) equal to at least 8% of your Risk-Weighted Assets (RWA). Higher-risk lending (unsecured personal loans, for example) carries higher RWA weighting than lower-risk lending (mortgages with substantial deposits).

The Capital Conservation Buffer adds another 2.5% requirement, bringing the practical minimum to 10.5% for CET1 capital. The FPC's system-wide benchmark of approximately 13% Tier 1 capital (11% CET1) reflects supervisory expectations for adequately capitalised banks.

Basel 3.1 implementation: From 1 January 2027, updated capital calculation methods take effect. Banks should begin preparations in 2025-2026 to ensure compliance with the new framework.

Senior Managers and Certification Regime

All UK banks must comply with the Senior Managers and Certification Regime (SM&CR), which creates individual accountability for senior decision-makers and ensures key staff are fit and proper for their roles.

Senior Managers and Certification Regime for Banks

SM&CR requirements for UK banks - Senior Managers Regime, Certification Regime, Conduct Rules, and 2025 reforms.

The Senior Managers and Certification Regime (SM&CR) applies to all UK banks and requires individual accountability for senior managers, annual certification of key staff, and conduct rules for almost all employees. The regime is jointly supervised by the FCA and PRA.

Senior Managers Regime: Senior Management Functions (SMFs) require FCA/PRA pre-approval before starting role
Statement of Responsibilities Required: Yes - for each SMF holder
Fit and Proper Assessment Frequency: Annual
Duty of Responsibility: SMFs held personally accountable for areas under their control
Certification Regime: Firms must certify staff in Certification Functions annually
2025 Reform - Certification Roles Reduction: 15% reduction in certification roles through deduplication
Conduct Rules Scope: Apply to almost all staff
Individual Conduct Rules Count: 5 rules (integrity, skill/care/diligence, regulatory cooperation, customer interests, market conduct)
12-Week Rule (Reformed 2025): 12 weeks to submit SMF application (not obtain decision)
Criminal Record Check Validity (Reformed 2025): Extended from 3 months to 6 months
SM&CR Reform Consultation Deadline: 7 October 2025
Expected Reform Implementation: Mid-2026

Three SM&CR components:

Senior Managers Regime: Individuals in Senior Management Functions (SMFs) must be pre-approved by the FCA/PRA. Each must have a Statement of Responsibilities (SoR) clearly defining their areas of accountability. Annual fit and proper assessments required.
Certification Regime: Firms must assess and certify annually that staff in Certification Functions remain fit and proper. No regulator approval needed, but firms liable for certification decisions.
Conduct Rules: Five Individual Conduct Rules apply to almost all staff - act with integrity, act with due skill/care/diligence, be open and cooperative with regulators, pay due regard to customer interests, and observe proper standards of market conduct.

2025 Reforms: The FCA consulted on SM&CR improvements (consultation closed 7 October 2025, implementation expected mid-2026). Key changes include clarifying the 12-week rule (12 weeks to submit application, not receive decision), extending criminal record check validity from 3 months to 6 months, and reducing certification roles by approximately 15% through deduplication of overlapping definitions.

Firm categories: Banks are typically categorised as Enhanced (larger/more complex firms with additional requirements) or Core (standard SM&CR requirements). Limited Scope applies to simpler firms with reduced requirements.

Practical implications for new banks:

Before launch: Identify which roles are Senior Management Functions (SMFs). Typical SMFs include CEO, CFO, CRO (Chief Risk Officer), MLRO (Money Laundering Reporting Officer), and Compliance Oversight Function holder. Each SMF holder needs FCA/PRA pre-approval before starting their role.
Statements of Responsibilities: Document exactly what each SMF holder is personally accountable for. These must be clear, comprehensive, and updated when responsibilities change.
Certification roles: Identify staff in Certification Functions (typically customer-facing roles with significant influence). You must assess and certify annually that these individuals remain fit and proper.
Conduct Rules training: Almost all staff must understand and comply with the Individual Conduct Rules. Build training programmes and monitoring processes to demonstrate compliance.

The 2025 reforms (expected mid-2026) will simplify certification requirements by removing duplicative role definitions, reducing the compliance burden for smaller banks.

Consumer Duty obligations

The FCA's Consumer Duty represents a higher standard of care for retail banking customers. You must design products and services that deliver good outcomes, not just avoid causing harm.

FCA Consumer Duty for Banks

Consumer Duty higher standard of care for retail banking customers - four key outcomes and 2025 focus areas.

The Consumer Duty applies to all FCA-authorised banks and requires firms to act to deliver good outcomes for retail customers. This represents a higher standard of care than previous conduct rules.

Implementation Date - New Products: 31 July 2023
Implementation Date - Closed Products: 31 July 2024
Core Principle: Act to deliver good outcomes for retail customers
Outcome 1 - Products and Services: Designed to meet customer needs
Outcome 2 - Price and Value: Fair value for customers
Outcome 3 - Consumer Understanding: Clear communications that help customers understand
Outcome 4 - Consumer Support: Accessible and responsive support
2025 Banking Focus Area 1: Small business current accounts - price and value review
2025 Banking Focus Area 2: Credit card terms and conditions - consumer understanding
2025 Banking Focus Area 3: Savings account summary box - disclosure flexibility review

2025 FCA priorities for banking: The FCA is conducting targeted reviews of small business current account pricing and value, credit card terms and conditions for consumer understanding, and flexibility in savings account summary box disclosures. Banks should review these areas proactively to ensure Consumer Duty compliance.

What this means for new banks:

Product design: Before launching current accounts, savings accounts, or lending products, demonstrate they meet identified customer needs. Conduct needs assessments and target market identification.
Price and value: Regularly review whether customers are getting fair value. This isn't just about low prices - it's about reasonable price relative to the benefits provided and the costs of production.
Clear communications: Test customer communications to ensure they're understandable. Avoid jargon and complex terms and conditions that obscure important information.
Accessible support: Design support channels (phone, online chat, branch access) that meet customer needs. Monitor response times and resolution rates.

The FCA's 2025 focus areas (small business current accounts, credit card T&Cs, savings account disclosure) indicate where the regulator expects improvements. Build these considerations into your product development from the start rather than retrospectively fixing issues.

Deposit protection

All UK-authorised banks must participate in the Financial Services Compensation Scheme (FSCS), which protects customer deposits if your bank fails.

FSCS deposit protection limits (2025)

Financial Services Compensation Scheme protects deposits up to £120,000 per eligible person per authorised firm, increased from £85,000 on 1 December 2025.

The Financial Services Compensation Scheme (FSCS) provides depositor protection for UK-authorised banks, building societies, and credit unions. The Banking Reform Act 2013 strengthened FSCS provisions by requiring faster payouts and better information for depositors. From 1 December 2025, the PRA increased the protection limit from £85,000 to £120,000 to reflect inflation since the limit was last set in January 2017.

Standard deposit protection (from 1 Dec 2025): £120,000 per eligible person per authorised firm
Previous limit (1 Jan 2017 - 30 Nov 2025): £85,000
Joint account protection (from 1 Dec 2025): £240,000 (£120,000 per person)
Temporary high balance protection: Up to £1,400,000 for 6 months
Previous temporary high balance: £1,000,000
Temporary high balance qualifying events: House sale, inheritance, insurance payout, redundancy, compensation award
Temporary protection period: 6 months from date of deposit
Coverage basis: Per eligible person per authorised firm (not per account)
Eligible depositors: Individuals, small businesses, charities, pension schemes, credit unions
Single Customer View (SCV) requirement: Banks must maintain records enabling 7-day payout
Banking Reform Act contribution: Strengthened depositor protection and 7-day payout requirement

Important - banking groups: Different bank brands may share the same banking licence. If multiple accounts are held with banks in the same group, the £120,000 limit applies to the combined total across all brands, not each brand separately. Check the FSCS Protection Checker to verify which banks share authorisation.

What is not covered: Deposits with non-UK authorised firms, financial institutions, local authorities, large companies (over EU thresholds), and overseas depositors (generally).

FSCS deposit protection - what is covered

FSCS Protection Checker

Your obligations:

FSCS membership: Mandatory for all deposit-taking institutions. You'll pay annual levies based on your deposit base.
Customer disclosure: You must inform customers about FSCS protection - the £120,000 limit, the per-person-per-firm basis, and that the limit applies across all accounts they hold with your bank.
Excluded deposits: Certain deposits aren't protected (large corporations, financial institutions, public authorities). Make this clear to affected customers.

FSCS protection is a key competitive advantage for authorised banks versus unregulated payment institutions and e-money firms, which don't offer the same level of depositor protection.

PROFESSIONAL & FINANCIAL… Requirement

If your bank grows to hold core deposits over £25 billion, you'll become subject to ring-fencing requirements under the Banking Act 2009.

Ring-fencing requires:

Separation of retail banking into a ring-fenced body (RFB) legally and operationally separate from investment banking
Excluded activities (investment banking, trading, commodities) must be conducted outside the RFB
Protected services (retail deposits, overdrafts, credit cards, SME lending) must remain in the RFB

Purpose: Protects retail customers and small businesses by isolating them from riskier investment banking activities. If the investment banking part fails, the retail bank can continue independently.

Who this applies to: Only banks with core deposits exceeding £25 billion. Most new challenger banks won't reach this threshold for many years, if ever.

Enforcement: PRA supervision and enforcement. Structural separation must be complete before reaching the threshold.

Application timeline and costs

Expect the authorisation process to take 12-24 months from initial application to approval. During this time, you'll incur significant costs:

Application fees: Higher than standard FCA authorisation due to dual regulation
External advisers: Budget £100,000-£500,000+ for legal, compliance, and consulting support
Management time: Senior team will spend substantial time on authorisation process
System development: Building compliant banking systems, risk management frameworks, and governance structures

Option B mobilisation reduces initial capital requirements but doesn't reduce these other costs. You still need robust systems and governance before the PRA will grant even a restricted licence.

Determine which authorisation route suits your business

Assess your capital position and business model. Contact the PRA's New Bank Unit for pre-application discussions to understand which route (Option A or Option B) is appropriate.
Engage specialist legal and regulatory advisers

Bank authorisation is complex. Hire advisers with proven PRA/FCA authorisation experience to guide your application and avoid costly mistakes or delays.
Identify Senior Management Functions and start approval process

Map out your governance structure and identify which roles are SMFs. Begin preparing Statements of Responsibilities and fit and proper assessments for each SMF holder.
Design products with Consumer Duty compliance built in

Don't retrofit Consumer Duty after product launch. Build needs assessments, value reviews, and customer outcome monitoring into your product development process from the start.
Build capital and governance frameworks

Develop capital planning, risk management, and internal governance frameworks that meet PRA supervisory expectations. These take months to build and must be operational before authorisation.

UNDER CONSTRUCTION

Content Graph

Guvnor

Banking regulation and PRA authorisation

Choosing your authorisation route

Capital requirements

Senior Managers and Certification Regime

Consumer Duty obligations

Deposit protection

Ring-fencing requirements for large banks

Application timeline and costs

Determine which authorisation route suits your business

Engage specialist legal and regulatory advisers

Identify Senior Management Functions and start approval process

Design products with Consumer Duty compliance built in

Build capital and governance frameworks

Compliance Assistant

🚧 UNDER CONSTRUCTION

◉ Content Graph

Choosing your authorisation route

Capital requirements

Senior Managers and Certification Regime

Consumer Duty obligations

Deposit protection

Ring-fencing requirements for large banks

Application timeline and costs

Determine which authorisation route suits your business

Engage specialist legal and regulatory advisers

Identify Senior Management Functions and start approval process

Design products with Consumer Duty compliance built in

Build capital and governance frameworks

Related guides in Tax & Finance

UNDER CONSTRUCTION

Content Graph