Accountants & Bookkeepers — Is your client data safe in the AI tools your team already uses?

Three UK regulators officially confirmed this week that AI has made cyberattacks faster, cheaper, and more convincing than any human hacker — and every business holding customer data or using online banking needs to do at least one concrete thing about it before the week is out.

Accountants & Bookkeepers — Is your client data safe in the AI tools your team already uses?

The FCA, Bank of England, and Treasury published a joint statement naming AI as the reason cyberattacks now outperform skilled human hackers — faster, at greater scale, and for less money. Your practice holds exactly what attackers want: client tax returns, bank details, and payroll records. The one check to do this week: confirm that client financial data isn't being pasted into standard ChatGPT or Copilot plans, which may use your inputs — that needs a GDPR lawful basis your privacy policy likely doesn't cover yet. While you're there, switch on two-factor authentication across every business email account; it stops the most common attack, takes ten minutes, and the FCA's warning makes "we hadn't got around to it" a harder position to hold with clients.

Trades — Does every driver on your team have real insurance?

The FCA confirmed this week that nearly half of drivers aged 17–25 have bought car insurance through social media or WhatsApp, and a significant share of those policies are fake. If anyone on your team drives a van, uses their own car for site visits, or handles deliveries, ask to see a Certificate of Motor Insurance direct from a recognised insurer — not a screenshot. One uninsured accident on your watch creates liability you don't want. On the AI side, it's a quiet week for new tools: use ChatGPT this week to draft one overdue invoice chase or one quote follow-up. Give it the real detail — the amount, how many weeks overdue, the tone you want — and you'll have a usable email in two minutes rather than fifteen.

Retail & Hospitality — Could a convincing fake call trick your team into a fraudulent payment?

The government's warning is blunt: AI-generated phishing emails and deepfake voice calls are now more convincing than a skilled human scammer, and they cost almost nothing to run at scale. If your team takes calls about changing supplier bank details, urgent invoices, or account updates, brief them this week to verify any unexpected request through a number you already hold — not one given in the call or email. Five minutes at the next team huddle stops the most common small-business fraud cold. If you have staff under 25 making deliveries or customer runs, the FCA's fake insurance warning applies too — ask for a real policy document, not a forwarded message.

Agencies & Marketing — Slow tool week: time to make the AI you use into something clients can see

No significant new AI tools launched this week worth pitching. That's actually useful. If ChatGPT, Claude, or Gemini is in your daily workflow but hasn't become a deliverable, try this: use Claude or ChatGPT to analyse a client's top five competitors' recent social posts and produce a one-page findings note. That's a billable 20-minute task framed as AI-enhanced competitive insight — not a pitch deck, a real output the client can act on. This was a near-zero week for new tools, which makes it the right moment to show one client one concrete thing your AI stack can already do.

Professional Services — Three regulators just made cyber resilience a compliance conversation, not a nice-to-have

The FCA, Bank of England, and Treasury speaking together in one statement is not routine. For solicitors, consultancies, surveyors, and healthcare practices, the message is direct: cyber resilience is moving toward something your regulator expects to see documented. The checklist they would look for includes an incident response plan, tested backups, Cyber Essentials certification, and a record of which software suppliers handle client data. If your team uses ChatGPT or Copilot for client-facing work, the ICO expects your privacy policy to reflect that — most small practices haven't updated theirs since AI tools became routine. Use Copilot in Word this week to draft that updated section: it takes twenty minutes and your insurer will thank you before your regulator does.

Manufacturing & Wholesale — Verify your young drivers' cover before something goes wrong

If you run a warehouse or distribution operation with staff under 25 driving vans or visiting clients in their own cars, the FCA's fake insurance warning lands on you directly. Ask for a printed Certificate of Motor Insurance from any young driver on your team who drives for work — one uninsured accident creates exposure your liability policy may not cover. On the AI front, it's a slow week for new tools. Use ChatGPT to draft a supplier negotiation email for any contract coming up for renewal: give it the current price, your order volume, and how long you've been a customer, and you'll have a solid opening position in two minutes that would otherwise take half a morning.

Money on the table this week

No major grants or Innovate UK competitions opened this week in our six sectors. The Help to Grow: Management programme remains open — a subsidised 50-hour leadership course with 90% of the cost government-funded, available to businesses with 5–249 employees. If you or a senior manager haven't looked at it, it's worth checking against the government's business support site. There is also a live grant competition supporting the HMCTS digital support service, aimed at legal and advice-sector organisations that help clients access digital court services — narrow in scope, so verify your organisation qualifies on GOV.UK before investing time in an application. No new R&D tax credit windows or sector-specific voucher schemes opened this week.

Bottom line

The single highest-value action you can take in the next 48 hours costs nothing and takes ten minutes: switch on two-factor authentication for every business email account — three regulators just confirmed the attacks are getting smarter and cheaper, and that one step stops the most common route in.

That's today's briefing. Subscribe free to get this in your inbox every morning.